CASA/CASA-auth-token/client/library/client.conf

#######################################################
#                                                     #
# CASA Authentication Token System configuration file #
# for client.                                         #
#                                                     #
#######################################################

#
# ATS-hostname setting.
#
# Description: Used to configure the address of the
#              ATS that should be used for obtaining
#              authentication tokens.
#
#              If this parameter is not set, the client
#              assummes that the ATS resides in the same
#              host as the authentication token consuming
#              services.
#
#ATS-hostname	hostname or IP address

#
# ATS-port setting.
#
# Description: Used to configure the port utilized by the
#              ATS to listen for connections.
#
#              If this parameter is not set ....
#
#ATS-port		2645

#
# DisableSecureConnections setting.
#
# Description: Used to disable the use of secure connections (SSL) between
#              the Client and ATSs.
#
#              If this parameter is not set to true, the client
#              defaults to communicating securedly with ATSs.
#
#              Security Note: Disabling secure connections allows
#              malicious users/processes to view confidential
#              information such as username/passwords and to tamper
#              with client-ATS communications without being detected.
#              You should not disable secure connections unless you are
#              trying to debug the authentication token infrastructure.
#
#DisableSecureConnections	false

#
# AllowUntrustedCerts setting.
#
# Description: Used to specify that the client should ignore
#              invalid certificates presented by ATSs when
#              performing SSL communications.
#
#              If this parameter is not set to true, the client defaults
#              to not ignoring invalid certificates presented by ATSs.
#              ATSs.
#
#              Security Note: Ignoring invalid certificates downgrades the
#              security of your infrastructure by allowing a malicious
#              process to impersonate an ATS and obtain information that
#              is confidential such as username and passwords.
#
AllowUntrustedCerts	true

#
# UsersCannotAllowInvalidCerts setting.
#
# Description: Used to specify that the client should not allow users to
#              decide that invalid certificates presented by ATSs should be
#              ignored.
#
#              If this parameter is not set to true, the client defaults
#              to allow users to choose whether or not invalid certificates
#              presented by ATSs.
#
#              If this parameter is set to true then users are not consulted
#              when an invalid server certificate is received and communications
#              between the client and the ATS fail.
#
#              Note: This parameter has no effect if the setting AllowInvalidCerts
#              is set to true.
#
#              THIS FUNCTIONALITY HAS NOT BEEN IMPLEMENTED
#
#UsersCannotAllowInvalidCerts	true

#
# DebugLevel setting.
#
# Description: Used to specify the level of logging utilized for debugging
#              purposes. A level of zero being the lowest debugging level.
#
#              If this parameter is not set, the client defaults
#              to use a debug level of zero.
#
#              Note: Under Linux, debug output is placed in the /ver/log/messages
#              file. Under Windoes, debug output is dumped to the debugger console
#              unless a folder is specified using the DebugLogFolderPath setting.
#              Output sent to the debug console under windows can be viewed by using
#              tools such as DbgView.
#
#DebugLevel	0

#
# DebugLogFolderPath setting.
#
# Description: Used to specify a path to a folder to be used for placing debug
#              log files under Windows.
#
#              If this parameter is not set on windows, the client defaults
#              to dumping debug output to the debug console.
#
#              Note: The folder specified must exist and all users that may
#              be writting to it should be given write privileges to it.
#
#DebugLogFolderPath   c:\logfolder
Splitted the non-java project into client and server projects in order to be able to deliver the client component onto distributions targeting desktops without having to deliver the server components. This commit is for the resulting client project. 2006-11-13 06:20:43 +01:00			`#######################################################`
			`# #`
			`# CASA Authentication Token System configuration file #`
			`# for client. #`
			`# #`
			`#######################################################`

			`#`
			`# ATS-hostname setting.`
			`#`
			`# Description: Used to configure the address of the`
			`# ATS that should be used for obtaining`
			`# authentication tokens.`
			`#`
			`# If this parameter is not set, the client`
			`# assummes that the ATS resides in the same`
			`# host as the authentication token consuming`
			`# services.`
			`#`
			`#ATS-hostname hostname or IP address`

			`#`
			`# ATS-port setting.`
			`#`
			`# Description: Used to configure the port utilized by the`
			`# ATS to listen for connections.`
			`#`
			`# If this parameter is not set ....`
			`#`
			`#ATS-port 2645`

			`#`
			`# DisableSecureConnections setting.`
			`#`
			`# Description: Used to disable the use of secure connections (SSL) between`
			`# the Client and ATSs.`
			`#`
			`# If this parameter is not set to true, the client`
			`# defaults to communicating securedly with ATSs.`
			`#`
			`# Security Note: Disabling secure connections allows`
			`# malicious users/processes to view confidential`
			`# information such as username/passwords and to tamper`
			`# with client-ATS communications without being detected.`
			`# You should not disable secure connections unless you are`
			`# trying to debug the authentication token infrastructure.`
			`#`
			`#DisableSecureConnections false`

			`#`
Made the following changes: - Use host name specified in ObtainAuthToken call instead of the normalized host name to connect to the ATS to avoid problems when the host name obtained through a reverse DNS lookup fails to resolve via a forward DNS lookup. - Added the capability log debug messages to a file. - Added method to the ConfigIf to free memory returned by calls to getEntryValue to avoid issues related to freeing memory allocated with a heap different than the one owned by the library freeing the memory. 2007-03-05 07:48:26 +01:00			`# AllowUntrustedCerts setting.`
Splitted the non-java project into client and server projects in order to be able to deliver the client component onto distributions targeting desktops without having to deliver the server components. This commit is for the resulting client project. 2006-11-13 06:20:43 +01:00			`#`
			`# Description: Used to specify that the client should ignore`
			`# invalid certificates presented by ATSs when`
			`# performing SSL communications.`
			`#`
			`# If this parameter is not set to true, the client defaults`
			`# to not ignoring invalid certificates presented by ATSs.`
			`# ATSs.`
			`#`
			`# Security Note: Ignoring invalid certificates downgrades the`
			`# security of your infrastructure by allowing a malicious`
			`# process to impersonate an ATS and obtain information that`
			`# is confidential such as username and passwords.`
			`#`
Made the following changes: - Use host name specified in ObtainAuthToken call instead of the normalized host name to connect to the ATS to avoid problems when the host name obtained through a reverse DNS lookup fails to resolve via a forward DNS lookup. - Added the capability log debug messages to a file. - Added method to the ConfigIf to free memory returned by calls to getEntryValue to avoid issues related to freeing memory allocated with a heap different than the one owned by the library freeing the memory. 2007-03-05 07:48:26 +01:00			`AllowUntrustedCerts true`
Splitted the non-java project into client and server projects in order to be able to deliver the client component onto distributions targeting desktops without having to deliver the server components. This commit is for the resulting client project. 2006-11-13 06:20:43 +01:00
			`#`
			`# UsersCannotAllowInvalidCerts setting.`
			`#`
			`# Description: Used to specify that the client should not allow users to`
			`# decide that invalid certificates presented by ATSs should be`
			`# ignored.`
			`#`
			`# If this parameter is not set to true, the client defaults`
			`# to allow users to choose whether or not invalid certificates`
			`# presented by ATSs.`
			`#`
			`# If this parameter is set to true then users are not consulted`
			`# when an invalid server certificate is received and communications`
			`# between the client and the ATS fail.`
			`#`
			`# Note: This parameter has no effect if the setting AllowInvalidCerts`
			`# is set to true.`
			`#`
			`# THIS FUNCTIONALITY HAS NOT BEEN IMPLEMENTED`
			`#`
			`#UsersCannotAllowInvalidCerts true`
Added the capability to modify the DebugLevel by changing the various .conf files. 2006-11-18 13:33:14 +01:00
			`#`
			`# DebugLevel setting.`
			`#`
			`# Description: Used to specify the level of logging utilized for debugging`
			`# purposes. A level of zero being the lowest debugging level.`
			`#`
			`# If this parameter is not set, the client defaults`
			`# to use a debug level of zero.`
			`#`
Made the following changes: - Use host name specified in ObtainAuthToken call instead of the normalized host name to connect to the ATS to avoid problems when the host name obtained through a reverse DNS lookup fails to resolve via a forward DNS lookup. - Added the capability log debug messages to a file. - Added method to the ConfigIf to free memory returned by calls to getEntryValue to avoid issues related to freeing memory allocated with a heap different than the one owned by the library freeing the memory. 2007-03-05 07:48:26 +01:00			`# Note: Under Linux, debug output is placed in the /ver/log/messages`
			`# file. Under Windoes, debug output is dumped to the debugger console`
			`# unless a folder is specified using the DebugLogFolderPath setting.`
			`# Output sent to the debug console under windows can be viewed by using`
			`# tools such as DbgView.`
Added the capability to modify the DebugLevel by changing the various .conf files. 2006-11-18 13:33:14 +01:00			`#`
			`#DebugLevel 0`
Made the following changes: - Use host name specified in ObtainAuthToken call instead of the normalized host name to connect to the ATS to avoid problems when the host name obtained through a reverse DNS lookup fails to resolve via a forward DNS lookup. - Added the capability log debug messages to a file. - Added method to the ConfigIf to free memory returned by calls to getEntryValue to avoid issues related to freeing memory allocated with a heap different than the one owned by the library freeing the memory. 2007-03-05 07:48:26 +01:00
			`#`
			`# DebugLogFolderPath setting.`
			`#`
			`# Description: Used to specify a path to a folder to be used for placing debug`
			`# log files under Windows.`
			`#`
			`# If this parameter is not set on windows, the client defaults`
			`# to dumping debug output to the debug console.`
			`#`
Resolved issues found during unit testing of file logging feature. 2007-03-05 19:01:32 +01:00			`# Note: The folder specified must exist and all users that may`
			`# be writting to it should be given write privileges to it.`
Made the following changes: - Use host name specified in ObtainAuthToken call instead of the normalized host name to connect to the ATS to avoid problems when the host name obtained through a reverse DNS lookup fails to resolve via a forward DNS lookup. - Added the capability log debug messages to a file. - Added method to the ConfigIf to free memory returned by calls to getEntryValue to avoid issues related to freeing memory allocated with a heap different than the one owned by the library freeing the memory. 2007-03-05 07:48:26 +01:00			`#`
			`#DebugLogFolderPath c:\logfolder`