Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
documentation:latest:parameterlist [2019/09/23 22:38]
127.0.0.1 external edit
documentation:latest:parameterlist [2019/12/21 16:38] (current)
coudot
Line 51: Line 51:
 | casStorageOptions | Apache::​Session module parameters | ✔ |  |  |  | | casStorageOptions | Apache::​Session module parameters | ✔ |  |  |  |
 | cda | Enable Cross Domain Authentication | ✔ | ✔ |  |  | | cda | Enable Cross Domain Authentication | ✔ | ✔ |  |  |
 +| certificateResetByMailCeaAttribute |  | ✔ |  |  |  |
 +| certificateResetByMailCertificateAttribute |  | ✔ |  |  |  |
 +| certificateResetByMailReplyTo | URL of certificate reset page | ✔ |  |  |  |
 +| certificateResetByMailSender | URL of certificate reset page | ✔ |  |  |  |
 +| certificateResetByMailStep1Body | Custom Certificate reset mail body | ✔ |  |  |  |
 +| certificateResetByMailStep1Subject | Mail subject for certificate reset email | ✔ |  |  |  |
 +| certificateResetByMailStep2Body | Custom confirm Certificate reset mail body | ✔ |  |  |  |
 +| certificateResetByMailStep2Subject | Mail subject for reset confirmation | ✔ |  |  |  |
 +| certificateResetByMailURL | URL of certificate reset page | ✔ |  |  |  |
 +| certificateResetByMailValidityDelay |  | ✔ |  |  |  |
 | cfgAuthor | Name of the author of the current configuration | ✔ |  |  | ✔ | | cfgAuthor | Name of the author of the current configuration | ✔ |  |  | ✔ |
 | cfgAuthorIP | Uploader IP address of the current configuration | ✔ |  |  | ✔ | | cfgAuthorIP | Uploader IP address of the current configuration | ✔ |  |  | ✔ |
Line 94: Line 104:
 | customFunctions | List of custom functions | ✔ | ✔ | ✔ |  | | customFunctions | List of custom functions | ✔ | ✔ | ✔ |  |
 | customPassword | Custom password module | ✔ |  |  |  | | customPassword | Custom password module | ✔ |  |  |  |
 +| customPlugins | Custom plugins | ✔ |  |  |  |
 +| customPluginsParams | Custom plugins parameters | ✔ |  |  |  |
 | customRegister | Custom register module | ✔ |  |  |  | | customRegister | Custom register module | ✔ |  |  |  |
 | customToTrace | Session parameter used to fill REMOTE_CUSTOM | ✔ | ✔ |  |  | | customToTrace | Session parameter used to fill REMOTE_CUSTOM | ✔ | ✔ |  |  |
Line 115: Line 127:
 | dbiUserTable |  | ✔ |  |  |  | | dbiUserTable |  | ✔ |  |  |  |
 | dbiUserUser |  | ✔ |  |  |  | | dbiUserUser |  | ✔ |  |  |  |
 +| decryptValueFunctions | Custom function used for decrypting values | ✔ |  |  |  |
 +| decryptValueRule | Decrypt value activation rule | ✔ |  |  |  |
 | demoExportedVars | Demo exported variables | ✔ |  |  |  | | demoExportedVars | Demo exported variables | ✔ |  |  |  |
 | disablePersistentStorage | Enabled persistent storage | ✔ |  |  |  | | disablePersistentStorage | Enabled persistent storage | ✔ |  |  |  |
Line 134: Line 148:
 | facebookUserField |  | ✔ |  |  |  | | facebookUserField |  | ✔ |  |  |  |
 | failedLoginNumber | Number of failures stored in login history | ✔ |  |  |  | | failedLoginNumber | Number of failures stored in login history | ✔ |  |  |  |
-| forceGlobalStorageUpgradeOTT | Force upgrade ​tokens be stored into Global Storage | ✔ |  |  | ✔ |+| forceGlobalStorageIssuerOTT | Force Issuer tokens to be stored into Global Storage | ✔ |  |  | ✔ | 
 +| forceGlobalStorageUpgradeOTT | Force Upgrade ​tokens be stored into Global Storage | ✔ |  |  | ✔ |
 | formTimeout | Token timeout for forms | ✔ |  |  |  | | formTimeout | Token timeout for forms | ✔ |  |  |  |
 +| globalLogoutRule | Global logout activation rule | ✔ |  |  |  |
 +| globalLogoutTimer | Global logout auto accept time | ✔ |  |  |  |
 | globalStorage | Session backend module | ✔ | ✔ |  |  | | globalStorage | Session backend module | ✔ | ✔ |  |  |
 | globalStorageOptions | Session backend module options | ✔ | ✔ |  |  | | globalStorageOptions | Session backend module options | ✔ | ✔ |  |  |
Line 252: Line 269:
 | noAjaxHook | Avoid replacing 302 by 401 for Ajax responses | ✔ |  |  |  | | noAjaxHook | Avoid replacing 302 by 401 for Ajax responses | ✔ |  |  |  |
 | notification | Notification activation | ✔ |  |  |  | | notification | Notification activation | ✔ |  |  |  |
 +| notificationDefaultCond | Notification default condition | ✔ |  |  |  |
 | notificationServer | Notification server activation | ✔ |  |  |  | | notificationServer | Notification server activation | ✔ |  |  |  |
 | notificationServerDELETE | Notification server activation | ✔ |  |  |  | | notificationServerDELETE | Notification server activation | ✔ |  |  |  |
Line 269: Line 287:
 | oidcRPMetaDataOptions |  | ✔ |  |  | [1] | | oidcRPMetaDataOptions |  | ✔ |  |  | [1] |
 | oidcRPStateTimeout | OpenID Connect Timeout of state sessions | ✔ |  |  |  | | oidcRPStateTimeout | OpenID Connect Timeout of state sessions | ✔ |  |  |  |
 +| oidcServiceAccessTokenExpiration | OpenID Connect global access token TTL | ✔ |  |  |  |
 | oidcServiceAllowAuthorizationCodeFlow | OpenID Connect allow authorization code flow | ✔ |  |  |  | | oidcServiceAllowAuthorizationCodeFlow | OpenID Connect allow authorization code flow | ✔ |  |  |  |
 | oidcServiceAllowDynamicRegistration | OpenID Connect allow dynamic client registration | ✔ |  |  |  | | oidcServiceAllowDynamicRegistration | OpenID Connect allow dynamic client registration | ✔ |  |  |  |
 | oidcServiceAllowHybridFlow | OpenID Connect allow hybrid flow | ✔ |  |  |  | | oidcServiceAllowHybridFlow | OpenID Connect allow hybrid flow | ✔ |  |  |  |
 | oidcServiceAllowImplicitFlow | OpenID Connect allow implicit flow | ✔ |  |  |  | | oidcServiceAllowImplicitFlow | OpenID Connect allow implicit flow | ✔ |  |  |  |
 +| oidcServiceAuthorizationCodeExpiration | OpenID Connect global code TTL | ✔ |  |  |  |
 +| oidcServiceDynamicRegistrationExportedVars | OpenID Connect exported variables for dynamic registration | ✔ |  |  |  |
 +| oidcServiceDynamicRegistrationExtraClaims | OpenID Connect extra claims for dynamic registration | ✔ |  |  |  |
 +| oidcServiceIDTokenExpiration | OpenID Connect global ID token TTL | ✔ |  |  |  |
 | oidcServiceKeyIdSig | OpenID Connect Signature Key ID | ✔ |  |  |  | | oidcServiceKeyIdSig | OpenID Connect Signature Key ID | ✔ |  |  |  |
 | oidcServiceMetaDataAuthnContext | OpenID Connect Authentication Context Class Ref | ✔ |  |  |  | | oidcServiceMetaDataAuthnContext | OpenID Connect Authentication Context Class Ref | ✔ |  |  |  |
Line 286: Line 309:
 | oidcServiceMetaDataTokenURI | OpenID Connect token endpoint | ✔ |  |  |  | | oidcServiceMetaDataTokenURI | OpenID Connect token endpoint | ✔ |  |  |  |
 | oidcServiceMetaDataUserInfoURI | OpenID Connect user info endpoint | ✔ |  |  |  | | oidcServiceMetaDataUserInfoURI | OpenID Connect user info endpoint | ✔ |  |  |  |
 +| oidcServiceOfflineSessionExpiration | OpenID Connect global offline session TTL | ✔ |  |  |  |
 | oidcServicePrivateKeySig |  | ✔ |  |  |  | | oidcServicePrivateKeySig |  | ✔ |  |  |  |
 | oidcServicePublicKeySig |  | ✔ |  |  |  | | oidcServicePublicKeySig |  | ✔ |  |  |  |
Line 323: Line 347:
 | portalCheckLogins | Display login history checkbox in portal | ✔ |  |  |  | | portalCheckLogins | Display login history checkbox in portal | ✔ |  |  |  |
 | portalDisplayAppslist | Display applications tab in portal | ✔ |  |  |  | | portalDisplayAppslist | Display applications tab in portal | ✔ |  |  |  |
 +| portalDisplayCertificateResetByMail | Display Certificate Reset by mail tab in portal | ✔ |  |  |  |
 | portalDisplayChangePassword | Display password tab in portal | ✔ |  |  |  | | portalDisplayChangePassword | Display password tab in portal | ✔ |  |  |  |
 | portalDisplayGeneratePassword | Display password generate box in reset password form | ✔ |  |  |  | | portalDisplayGeneratePassword | Display password generate box in reset password form | ✔ |  |  |  |
Line 362: Line 387:
 | randomPasswordRegexp | Regular expression to create a random password | ✔ |  |  |  | | randomPasswordRegexp | Regular expression to create a random password | ✔ |  |  |  |
 | redirectFormMethod | HTTP method for redirect page form | ✔ |  |  |  | | redirectFormMethod | HTTP method for redirect page form | ✔ |  |  |  |
 +| refreshSessions | Refresh sessions plugin | ✔ |  |  |  |
 | registerConfirmSubject | Mail subject for register confirmation | ✔ |  |  |  | | registerConfirmSubject | Mail subject for register confirmation | ✔ |  |  |  |
 | registerDB | Register module | ✔ |  |  |  | | registerDB | Register module | ✔ |  |  |  |
Line 414: Line 440:
 | samlIDPSSODescriptorSingleSignOnServiceHTTPRedirect | SAML IDP SSO HTTP Redirect | ✔ |  |  |  | | samlIDPSSODescriptorSingleSignOnServiceHTTPRedirect | SAML IDP SSO HTTP Redirect | ✔ |  |  |  |
 | samlIDPSSODescriptorWantAuthnRequestsSigned | SAML IDP want authn request signed | ✔ |  |  |  | | samlIDPSSODescriptorWantAuthnRequestsSigned | SAML IDP want authn request signed | ✔ |  |  |  |
-| samlIdPResolveCookie | SAML IDP resolution cookie | ✔ |  |  |  | 
 | samlMetadataForceUTF8 | SAML force metadata UTF8 conversion | ✔ |  |  |  | | samlMetadataForceUTF8 | SAML force metadata UTF8 conversion | ✔ |  |  |  |
 | samlNameIDFormatMapEmail | SAML session parameter for NameID email | ✔ |  |  |  | | samlNameIDFormatMapEmail | SAML session parameter for NameID email | ✔ |  |  |  |
Line 588: Line 613:
 | SOAP user | User | ::: | | SOAP user | User | ::: |
 | SOAP password | Password | ::: | | SOAP password | Password | ::: |
-