Update parameter list in documentation
This commit is contained in:
parent
c6fb1625b2
commit
d61567b585
|
@ -12,8 +12,6 @@ Parameter list
|
||||||
Main parameters
|
Main parameters
|
||||||
---------------
|
---------------
|
||||||
|
|
||||||
<sortable 1>
|
|
||||||
|
|
||||||
======================================================= ==================================================================================== ====== ======= ======= =============
|
======================================================= ==================================================================================== ====== ======= ======= =============
|
||||||
Key name Documentation Portal Handler Manager ini file only
|
Key name Documentation Portal Handler Manager ini file only
|
||||||
======================================================= ==================================================================================== ====== ======= ======= =============
|
======================================================= ==================================================================================== ====== ======= ======= =============
|
||||||
|
@ -43,11 +41,11 @@ available2FSelfRegistration Available self-registrat
|
||||||
browsersDontStorePassword Avoid browsers to store users password ✔
|
browsersDontStorePassword Avoid browsers to store users password ✔
|
||||||
bruteForceProtection Enable brute force attack protection ✔
|
bruteForceProtection Enable brute force attack protection ✔
|
||||||
bruteForceProtectionIncrementalTempo Enable incremental lock time for brute force attack protection ✔
|
bruteForceProtectionIncrementalTempo Enable incremental lock time for brute force attack protection ✔
|
||||||
bruteForceProtectionLockTimes Incremental lock time values for brute force attack protection ✔ ✔
|
bruteForceProtectionLockTimes Incremental lock time values for brute force attack protection ✔
|
||||||
bruteForceProtectionMaxAge Brute force attack protection -> Max age between last and first allowed failed login ✔ ✔
|
bruteForceProtectionMaxAge Brute force attack protection -> Max age between last and first allowed failed login ✔ ✔
|
||||||
bruteForceProtectionMaxFailed Brute force attack protection -> Max allowed failed login ✔ ✔
|
bruteForceProtectionMaxFailed Brute force attack protection -> Max allowed failed login ✔
|
||||||
bruteForceProtectionMaxLockTime Brute force attack protection -> Max lock time ✔ ✔
|
bruteForceProtectionMaxLockTime Brute force attack protection -> Max lock time ✔ ✔
|
||||||
bruteForceProtectionTempo Brute force attack protection -> Tempo before try again ✔ ✔
|
bruteForceProtectionTempo Brute force attack protection -> Tempo before try again ✔
|
||||||
captcha_login_enabled Captcha on login page ✔
|
captcha_login_enabled Captcha on login page ✔
|
||||||
captcha_mail_enabled Captcha on password reset page ✔
|
captcha_mail_enabled Captcha on password reset page ✔
|
||||||
captcha_register_enabled Captcha on account creation page ✔
|
captcha_register_enabled Captcha on account creation page ✔
|
||||||
|
@ -85,6 +83,7 @@ checkUserDisplayPersistentInfo Display persistent sessi
|
||||||
checkUserHiddenAttributes Attributes to hide in CheckUser plugin ✔
|
checkUserHiddenAttributes Attributes to hide in CheckUser plugin ✔
|
||||||
checkUserIdRule checkUser identities rule ✔
|
checkUserIdRule checkUser identities rule ✔
|
||||||
checkUserSearchAttributes Attributes used for retrieving sessions in user DataBase ✔
|
checkUserSearchAttributes Attributes used for retrieving sessions in user DataBase ✔
|
||||||
|
checkUserUnrestrictedUsersRule checkUser unrestricted users rule ✔
|
||||||
checkXSS Check XSS ✔
|
checkXSS Check XSS ✔
|
||||||
combModules Combination module description ✔
|
combModules Combination module description ✔
|
||||||
combination Combination rule ✔
|
combination Combination rule ✔
|
||||||
|
@ -95,6 +94,7 @@ contextSwitchingIdRule Context switching identi
|
||||||
contextSwitchingPrefix Prefix to store real session Id ✔ ✔
|
contextSwitchingPrefix Prefix to store real session Id ✔ ✔
|
||||||
contextSwitchingRule Context switching activation rule ✔
|
contextSwitchingRule Context switching activation rule ✔
|
||||||
contextSwitchingStopWithLogout Stop context switching by logout ✔
|
contextSwitchingStopWithLogout Stop context switching by logout ✔
|
||||||
|
contextSwitchingUnrestrictedUsersRule Context switching unrestricted users rule ✔
|
||||||
cookieExpiration Cookie expiration ✔ ✔
|
cookieExpiration Cookie expiration ✔ ✔
|
||||||
cookieName Name of the main cookie ✔ ✔
|
cookieName Name of the main cookie ✔ ✔
|
||||||
corsAllow_Credentials Allow credentials for Cross-Origin Resource Sharing ✔
|
corsAllow_Credentials Allow credentials for Cross-Origin Resource Sharing ✔
|
||||||
|
@ -190,6 +190,7 @@ impersonationMergeSSOgroups Merge spoofed and real S
|
||||||
impersonationPrefix Prefix to rename real session attributes ✔ ✔
|
impersonationPrefix Prefix to rename real session attributes ✔ ✔
|
||||||
impersonationRule Impersonation activation rule ✔
|
impersonationRule Impersonation activation rule ✔
|
||||||
impersonationSkipEmptyValues Skip session empty values ✔
|
impersonationSkipEmptyValues Skip session empty values ✔
|
||||||
|
impersonationUnrestrictedUsersRule Impersonation unrestricted users rule ✔
|
||||||
infoFormMethod HTTP method for info page form ✔
|
infoFormMethod HTTP method for info page form ✔
|
||||||
issuerDBCASActivation CAS server activation ✔
|
issuerDBCASActivation CAS server activation ✔
|
||||||
issuerDBCASPath CAS server request path ✔
|
issuerDBCASPath CAS server request path ✔
|
||||||
|
@ -217,6 +218,8 @@ krbRemoveDomain Remove domain in Kerbero
|
||||||
ldapAllowResetExpiredPassword Allow a user to reset his expired password ✔
|
ldapAllowResetExpiredPassword Allow a user to reset his expired password ✔
|
||||||
ldapAuthnLevel LDAP authentication level ✔
|
ldapAuthnLevel LDAP authentication level ✔
|
||||||
ldapBase LDAP search base ✔
|
ldapBase LDAP search base ✔
|
||||||
|
ldapCAFile Location of the certificate file for LDAP connections ✔
|
||||||
|
ldapCAPath Location of the CA directory for LDAP connections ✔
|
||||||
ldapChangePasswordAsUser ✔
|
ldapChangePasswordAsUser ✔
|
||||||
ldapExportedVars LDAP exported variables ✔
|
ldapExportedVars LDAP exported variables ✔
|
||||||
ldapGroupAttributeName LDAP attribute name for member in groups ✔
|
ldapGroupAttributeName LDAP attribute name for member in groups ✔
|
||||||
|
@ -234,11 +237,12 @@ ldapPort LDAP port
|
||||||
ldapPpolicyControl ✔
|
ldapPpolicyControl ✔
|
||||||
ldapPwdEnc LDAP password encoding ✔
|
ldapPwdEnc LDAP password encoding ✔
|
||||||
ldapRaw ✔
|
ldapRaw ✔
|
||||||
ldapSearchDeref "deref" param of Net::LDAP::search () ✔
|
ldapSearchDeref "deref" param of Net::LDAP::search() ✔
|
||||||
ldapServer LDAP server (host or URI) ✔
|
ldapServer LDAP server (host or URI) ✔
|
||||||
ldapSetPassword ✔
|
ldapSetPassword ✔
|
||||||
ldapTimeout LDAP connection timeout ✔
|
ldapTimeout LDAP connection timeout ✔
|
||||||
ldapUsePasswordResetAttribute LDAP store reset flag in an attribute ✔
|
ldapUsePasswordResetAttribute LDAP store reset flag in an attribute ✔
|
||||||
|
ldapVerify Whether to validate LDAP certificates ✔
|
||||||
ldapVersion LDAP protocol version ✔
|
ldapVersion LDAP protocol version ✔
|
||||||
linkedInAuthnLevel LinkedIn authentication level ✔
|
linkedInAuthnLevel LinkedIn authentication level ✔
|
||||||
linkedInClientID ✔
|
linkedInClientID ✔
|
||||||
|
@ -434,11 +438,13 @@ rest2fLabel Portal label for REST se
|
||||||
rest2fLogo Custom logo for REST 2F ✔
|
rest2fLogo Custom logo for REST 2F ✔
|
||||||
rest2fVerifyArgs Args for REST 2F init ✔
|
rest2fVerifyArgs Args for REST 2F init ✔
|
||||||
rest2fVerifyUrl REST 2F init URL ✔
|
rest2fVerifyUrl REST 2F init URL ✔
|
||||||
|
restAuthServer Enable REST authentication server ✔
|
||||||
restAuthUrl ✔
|
restAuthUrl ✔
|
||||||
restAuthnLevel REST authentication level ✔
|
restAuthnLevel REST authentication level ✔
|
||||||
restClockTolerance How tolerant the REST session server will be to clock dift ✔
|
restClockTolerance How tolerant the REST session server will be to clock dift ✔
|
||||||
restConfigServer Enable REST config server ✔
|
restConfigServer Enable REST config server ✔
|
||||||
restExportSecretKeys Allow to export secret keys in REST session server ✔
|
restExportSecretKeys Allow to export secret keys in REST session server ✔
|
||||||
|
restPasswordServer Enable REST password reset server ✔
|
||||||
restPwdConfirmUrl ✔
|
restPwdConfirmUrl ✔
|
||||||
restPwdModifyUrl ✔
|
restPwdModifyUrl ✔
|
||||||
restSessionServer Enable REST session server ✔
|
restSessionServer Enable REST session server ✔
|
||||||
|
@ -509,6 +515,7 @@ sessionDataToRemember Data to remember in logi
|
||||||
sfEngine Second factor engine ✔ ✔
|
sfEngine Second factor engine ✔ ✔
|
||||||
sfExtra Extra second factors ✔
|
sfExtra Extra second factors ✔
|
||||||
sfManagerRule Rule to display second factor Manager link ✔
|
sfManagerRule Rule to display second factor Manager link ✔
|
||||||
|
sfOnlyUpgrade Only trigger second factor on session upgrade ✔
|
||||||
sfRemovedMsgRule Display a message if at leat one expired SF has been removed ✔
|
sfRemovedMsgRule Display a message if at leat one expired SF has been removed ✔
|
||||||
sfRemovedNotifMsg Notification message ✔
|
sfRemovedNotifMsg Notification message ✔
|
||||||
sfRemovedNotifRef Notification reference ✔
|
sfRemovedNotifRef Notification reference ✔
|
||||||
|
@ -520,6 +527,7 @@ singleIP Allow only one session p
|
||||||
singleSession Allow only one session per user ✔
|
singleSession Allow only one session per user ✔
|
||||||
singleUserByIP Allow only one user per IP ✔
|
singleUserByIP Allow only one user per IP ✔
|
||||||
skipRenewConfirmation Avoid asking confirmation when an Issuer asks to renew auth ✔
|
skipRenewConfirmation Avoid asking confirmation when an Issuer asks to renew auth ✔
|
||||||
|
skipUpgradeConfirmation Avoid asking confirmation during a session upgrade ✔
|
||||||
slaveAuthnLevel Slave authentication level ✔
|
slaveAuthnLevel Slave authentication level ✔
|
||||||
slaveDisplayLogo Display Slave authentication logo ✔
|
slaveDisplayLogo Display Slave authentication logo ✔
|
||||||
slaveExportedVars Slave exported variables ✔
|
slaveExportedVars Slave exported variables ✔
|
||||||
|
@ -593,6 +601,7 @@ wsdlServer Enable /portal.wsdl serv
|
||||||
yubikey2fActivation Yubikey second factor activation ✔
|
yubikey2fActivation Yubikey second factor activation ✔
|
||||||
yubikey2fAuthnLevel Authentication level for users authentified by Yubikey second factor ✔
|
yubikey2fAuthnLevel Authentication level for users authentified by Yubikey second factor ✔
|
||||||
yubikey2fClientID Yubico client ID ✔
|
yubikey2fClientID Yubico client ID ✔
|
||||||
|
yubikey2fFromSessionAttribute Provision yubikey from the given session variable ✔
|
||||||
yubikey2fLabel Portal label for Yubikey second factor ✔
|
yubikey2fLabel Portal label for Yubikey second factor ✔
|
||||||
yubikey2fLogo Custom logo for Yubikey 2F ✔
|
yubikey2fLogo Custom logo for Yubikey 2F ✔
|
||||||
yubikey2fNonce Yubico nonce ✔
|
yubikey2fNonce Yubico nonce ✔
|
||||||
|
@ -609,8 +618,6 @@ zimbraSsoUrl Zimbra local SSO URL pat
|
||||||
zimbraUrl Zimbra preauthentication URL ✔ ✔
|
zimbraUrl Zimbra preauthentication URL ✔ ✔
|
||||||
======================================================= ==================================================================================== ====== ======= ======= =============
|
======================================================= ==================================================================================== ====== ======= ======= =============
|
||||||
|
|
||||||
</sortable>
|
|
||||||
|
|
||||||
*[1]: complex nodes*
|
*[1]: complex nodes*
|
||||||
|
|
||||||
Configuration backend parameters
|
Configuration backend parameters
|
||||||
|
|
Loading…
Reference in New Issue
Block a user