release version 1.11.0
This commit is contained in:
@ -0,0 +1,275 @@
|
||||
[server]
|
||||
hostname = "localhost"
|
||||
#offset=0
|
||||
base_path = "${carbon.protocol}://${carbon.host}:${carbon.management.port}"
|
||||
#discard_empty_caches = false
|
||||
server_role = "default"
|
||||
|
||||
[super_admin]
|
||||
username = "admin"
|
||||
password = "admin"
|
||||
create_admin_account = true
|
||||
|
||||
[user_store]
|
||||
type = "database_unique_id"
|
||||
|
||||
[database.apim_db]
|
||||
type = "h2"
|
||||
url = "jdbc:h2:./repository/database/WSO2AM_DB;AUTO_SERVER=TRUE;DB_CLOSE_ON_EXIT=FALSE"
|
||||
username = "wso2carbon"
|
||||
password = "wso2carbon"
|
||||
|
||||
[database.shared_db]
|
||||
type = "h2"
|
||||
url = "jdbc:h2:./repository/database/WSO2SHARED_DB;DB_CLOSE_ON_EXIT=FALSE"
|
||||
username = "wso2carbon"
|
||||
password = "wso2carbon"
|
||||
|
||||
[keystore.tls]
|
||||
file_name = "wso2carbon.jks"
|
||||
type = "JKS"
|
||||
password = "wso2carbon"
|
||||
alias = "wso2carbon"
|
||||
key_password = "wso2carbon"
|
||||
|
||||
#[keystore.listener_profile]
|
||||
#bind_address = "0.0.0.0"
|
||||
|
||||
#[keystore.primary]
|
||||
#file_name = "wso2carbon.jks"
|
||||
#type = "JKS"
|
||||
#password = "wso2carbon"
|
||||
#alias = "wso2carbon"
|
||||
#key_password = "wso2carbon"
|
||||
|
||||
#[keystore.internal]
|
||||
#file_name = "wso2carbon.jks"
|
||||
#type = "JKS"
|
||||
#password = "wso2carbon"
|
||||
#alias = "wso2carbon"
|
||||
#key_password = "wso2carbon"
|
||||
|
||||
[[apim.gateway.environment]]
|
||||
name = "Default"
|
||||
type = "hybrid"
|
||||
provider = "wso2"
|
||||
display_in_api_console = true
|
||||
description = "This is a hybrid gateway that handles both production and sandbox token traffic."
|
||||
show_as_token_endpoint_url = true
|
||||
service_url = "https://localhost:${mgt.transport.https.port}/services/"
|
||||
username= "${admin.username}"
|
||||
password= "${admin.password}"
|
||||
ws_endpoint = "ws://localhost:9099"
|
||||
wss_endpoint = "wss://localhost:8099"
|
||||
http_endpoint = "http://localhost:${http.nio.port}"
|
||||
https_endpoint = "https://localhost:${https.nio.port}"
|
||||
websub_event_receiver_http_endpoint = "http://localhost:9021"
|
||||
websub_event_receiver_https_endpoint = "https://localhost:8021"
|
||||
|
||||
[apim.sync_runtime_artifacts.gateway]
|
||||
gateway_labels =["Default"]
|
||||
|
||||
#[apim.cache.gateway_token]
|
||||
#enable = true
|
||||
#expiry_time = "900s"
|
||||
|
||||
#[apim.cache.resource]
|
||||
#enable = true
|
||||
#expiry_time = "900s"
|
||||
|
||||
#[apim.cache.km_token]
|
||||
#enable = false
|
||||
#expiry_time = "15m"
|
||||
|
||||
#[apim.cache.recent_apis]
|
||||
#enable = false
|
||||
|
||||
#[apim.cache.scopes]
|
||||
#enable = true
|
||||
|
||||
#[apim.cache.publisher_roles]
|
||||
#enable = true
|
||||
|
||||
#[apim.cache.jwt_claim]
|
||||
#enable = true
|
||||
#expiry_time = "15m"
|
||||
|
||||
#[apim.cache.tags]
|
||||
#expiry_time = "2m"
|
||||
|
||||
[apim.analytics]
|
||||
enable = false
|
||||
auth_token = ""
|
||||
|
||||
#[apim.key_manager]
|
||||
#service_url = "https://localhost:${mgt.transport.https.port}/services/"
|
||||
#username = "$ref{super_admin.username}"
|
||||
#password = "$ref{super_admin.password}"
|
||||
#pool.init_idle_capacity = 50
|
||||
#pool.max_idle = 100
|
||||
#key_validation_handler_type = "default"
|
||||
#key_validation_handler_type = "custom"
|
||||
#key_validation_handler_impl = "org.wso2.carbon.apimgt.keymgt.handlers.DefaultKeyValidationHandler"
|
||||
|
||||
#[apim.idp]
|
||||
#server_url = "https://localhost:${mgt.transport.https.port}"
|
||||
#authorize_endpoint = "https://localhost:${mgt.transport.https.port}/oauth2/authorize"
|
||||
#oidc_logout_endpoint = "https://localhost:${mgt.transport.https.port}/oidc/logout"
|
||||
#oidc_check_session_endpoint = "https://localhost:${mgt.transport.https.port}/oidc/checksession"
|
||||
|
||||
#[apim.jwt]
|
||||
#enable = true
|
||||
#encoding = "base64" # base64,base64url
|
||||
#generator_impl = "org.wso2.carbon.apimgt.keymgt.token.JWTGenerator"
|
||||
#claim_dialect = "http://wso2.org/claims"
|
||||
#convert_dialect = false
|
||||
#header = "X-JWT-Assertion"
|
||||
#signing_algorithm = "SHA256withRSA"
|
||||
#enable_user_claims = true
|
||||
#claims_extractor_impl = "org.wso2.carbon.apimgt.impl.token.ExtendedDefaultClaimsRetriever"
|
||||
|
||||
#[apim.oauth_config]
|
||||
#enable_outbound_auth_header = false
|
||||
#auth_header = "Authorization"
|
||||
#revoke_endpoint = "https://localhost:${https.nio.port}/revoke"
|
||||
#enable_token_encryption = false
|
||||
#enable_token_hashing = false
|
||||
|
||||
#[apim.devportal]
|
||||
#url = "https://localhost:${mgt.transport.https.port}/devportal"
|
||||
#enable_application_sharing = false
|
||||
#if application_sharing_type, application_sharing_impl both defined priority goes to application_sharing_impl
|
||||
#application_sharing_type = "default" #changed type, saml, default #todo: check the new config for rest api
|
||||
#application_sharing_impl = "org.wso2.carbon.apimgt.impl.SAMLGroupIDExtractorImpl"
|
||||
#display_multiple_versions = false
|
||||
#display_deprecated_apis = false
|
||||
#enable_comments = true
|
||||
#enable_ratings = true
|
||||
#enable_forum = true
|
||||
#enable_anonymous_mode=true
|
||||
#enable_cross_tenant_subscriptions = true
|
||||
#default_reserved_username = "apim_reserved_user"
|
||||
|
||||
[apim.cors]
|
||||
allow_origins = "*"
|
||||
allow_methods = ["GET","PUT","POST","DELETE","PATCH","OPTIONS"]
|
||||
allow_headers = ["authorization","Access-Control-Allow-Origin","Content-Type","SOAPAction","apikey","Internal-Key"]
|
||||
allow_credentials = false
|
||||
|
||||
#[apim.throttling]
|
||||
#enable_data_publishing = true
|
||||
#enable_policy_deploy = true
|
||||
#enable_blacklist_condition = true
|
||||
#enable_persistence = true
|
||||
#throttle_decision_endpoints = ["tcp://localhost:5672","tcp://localhost:5672"]
|
||||
|
||||
#[apim.throttling.blacklist_condition]
|
||||
#start_delay = "5m"
|
||||
#period = "1h"
|
||||
|
||||
#[apim.throttling.jms]
|
||||
#start_delay = "5m"
|
||||
|
||||
#[apim.throttling.event_sync]
|
||||
#hostName = "0.0.0.0"
|
||||
#port = 11224
|
||||
|
||||
#[apim.throttling.event_management]
|
||||
#hostName = "0.0.0.0"
|
||||
#port = 10005
|
||||
|
||||
#[[apim.throttling.url_group]]
|
||||
#traffic_manager_urls = ["tcp://localhost:9611","tcp://localhost:9611"]
|
||||
#traffic_manager_auth_urls = ["ssl://localhost:9711","ssl://localhost:9711"]
|
||||
#type = "loadbalance"
|
||||
|
||||
#[[apim.throttling.url_group]]
|
||||
#traffic_manager_urls = ["tcp://localhost:9611","tcp://localhost:9611"]
|
||||
#traffic_manager_auth_urls = ["ssl://localhost:9711","ssl://localhost:9711"]
|
||||
#type = "failover"
|
||||
|
||||
#[apim.workflow]
|
||||
#enable = false
|
||||
#service_url = "https://localhost:9445/bpmn"
|
||||
#username = "$ref{super_admin.username}"
|
||||
#password = "$ref{super_admin.password}"
|
||||
#callback_endpoint = "https://localhost:${mgt.transport.https.port}/api/am/admin/v0.17/workflows/update-workflow-status"
|
||||
#token_endpoint = "https://localhost:${https.nio.port}/token"
|
||||
#client_registration_endpoint = "https://localhost:${mgt.transport.https.port}/client-registration/v0.17/register"
|
||||
#client_registration_username = "$ref{super_admin.username}"
|
||||
#client_registration_password = "$ref{super_admin.password}"
|
||||
|
||||
#data bridge config
|
||||
#[transport.receiver]
|
||||
#type = "binary"
|
||||
#worker_threads = 10
|
||||
#session_timeout = "30m"
|
||||
#keystore.file_name = "$ref{keystore.tls.file_name}"
|
||||
#keystore.password = "$ref{keystore.tls.password}"
|
||||
#tcp_port = 9611
|
||||
#ssl_port = 9711
|
||||
#ssl_receiver_thread_pool_size = 100
|
||||
#tcp_receiver_thread_pool_size = 100
|
||||
#ssl_enabled_protocols = ["TLSv1","TLSv1.1","TLSv1.2"]
|
||||
#ciphers = ["SSL_RSA_WITH_RC4_128_MD5","SSL_RSA_WITH_RC4_128_SHA"]
|
||||
|
||||
#[apim.notification]
|
||||
#from_address = "APIM.com"
|
||||
#username = "APIM"
|
||||
#password = "APIM+123"
|
||||
#hostname = "localhost"
|
||||
#port = 3025
|
||||
#enable_start_tls = false
|
||||
#enable_authentication = true
|
||||
|
||||
#[apim.token.revocation]
|
||||
#notifier_impl = "org.wso2.carbon.apimgt.keymgt.events.TokenRevocationNotifierImpl"
|
||||
#enable_realtime_notifier = true
|
||||
#realtime_notifier.ttl = 5000
|
||||
#enable_persistent_notifier = true
|
||||
#persistent_notifier.hostname = "https://localhost:2379/v2/keys/jti/"
|
||||
#persistent_notifier.ttl = 5000
|
||||
#persistent_notifier.username = "root"
|
||||
#persistent_notifier.password = "root"
|
||||
|
||||
[[event_handler]]
|
||||
name="userPostSelfRegistration"
|
||||
subscriptions=["POST_ADD_USER"]
|
||||
|
||||
[service_provider]
|
||||
sp_name_regex = "^[\\sa-zA-Z0-9._-]*$"
|
||||
|
||||
[database.local]
|
||||
url = "jdbc:h2:./repository/database/WSO2CARBON_DB;DB_CLOSE_ON_EXIT=FALSE"
|
||||
|
||||
[[event_listener]]
|
||||
id = "token_revocation"
|
||||
type = "org.wso2.carbon.identity.core.handler.AbstractIdentityHandler"
|
||||
name = "org.wso2.is.notification.ApimOauthEventInterceptor"
|
||||
order = 1
|
||||
|
||||
[[event_listener]]
|
||||
id = "token_refresh"
|
||||
type = "org.wso2.carbon.identity.core.handler.AbstractIdentityHandler"
|
||||
name = "org.wso2.carbon.identity.data.publisher.oauth.listener.RefreshTokenGrantAuditLogger"
|
||||
order = 2
|
||||
|
||||
[[event_listener]]
|
||||
id = "token_refresh_revoke"
|
||||
type = "org.wso2.carbon.identity.core.handler.AbstractIdentityHandler"
|
||||
name = "org.wso2.carbon.identity.data.publisher.oauth.listener.TokenRevocationAuditLogger"
|
||||
order = 3
|
||||
|
||||
[event_listener.properties]
|
||||
notification_endpoint = "https://localhost:${mgt.transport.https.port}/internal/data/v1/notify"
|
||||
username = "${admin.username}"
|
||||
password = "${admin.password}"
|
||||
'header.X-WSO2-KEY-MANAGER' = "default"
|
||||
|
||||
[oauth.grant_type.token_exchange]
|
||||
enable = true
|
||||
allow_refresh_tokens = true
|
||||
iat_validity_period = "1h"
|
||||
|
||||
[apim.key_manager]
|
||||
enable_apikey_subscription_validation = true
|
||||
Reference in New Issue
Block a user