Created
June 21, 2018 17:58
-
-
Save davidkrider/13bc8143ad2d79c189d88177be45fa4c to your computer and use it in GitHub Desktop.
Grails integration with SAML
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| grails: | |
| profile: web | |
| codegen: | |
| defaultPackage: cddm | |
| gorm: | |
| reactor: | |
| # Whether to translate GORM events into Reactor events | |
| # Disabled by default for performance reasons | |
| events: false | |
| plugin: | |
| springsecurity: | |
| providerNames: ['samlAuthenticationProvider'] | |
| userLookup: | |
| usernamePropertyName: 'username' | |
| userDomainClassName: 'cddm.User' | |
| authorityJoinClassName: 'cddm.UserRole' | |
| authority: | |
| className: 'cddm.Role' | |
| password: | |
| algorithm: bcrypt | |
| encodeHashAsBase64: true | |
| bcrypt.logrounds: 4 | |
| rejectIfNoRule: true | |
| fii.rejectPublicInvocations: false | |
| successHandler.defaultTargetUrl: / | |
| controllerAnnotations: | |
| staticRules: | |
| - pattern: '/**' | |
| access: ['permitAll'] | |
| saml: | |
| active: true | |
| autoCreate: | |
| active: true | |
| key: 'id' | |
| assignAuthorities: true | |
| afterLoginUrl: 'http://localhost:8080/' | |
| afterLogoutUrl: 'http://localhost:8080/' | |
| responseSkew: 10000 | |
| signatureAlgorithm: 'rsa-sha256' | |
| digestAlgorithm: 'sha256' | |
| keyManager: | |
| storeFile: "classpath:security/keystore.jks" | |
| storePass: 'nalle123' | |
| passwords: | |
| ping: 'ping123' | |
| defaultKey: 'ping' | |
| metadata: | |
| url: '/saml/metadata' | |
| providers: | |
| ping: 'security/idp.ssocircle.com.xml' | |
| defaultIdp: 'ping' | |
| sp: | |
| file: "security/sp.xml" | |
| defaults: | |
| local: true | |
| entityId: 'cddm_test' | |
| alias: 'cddm_test' | |
| securityProfile: 'pkix' | |
| signingKey: 'ping' | |
| encryptionKey: 'ping' | |
| tlsKey: 'ping' | |
| requireArtifactResolveSigned: false | |
| requireLogoutRequestSigned: false | |
| requireLogoutResponseSigned: false | |
| mail: | |
| host: "relay" | |
| port: 25 | |
| #username: "[email protected]" | |
| #password: "yourpassword" | |
| # props = ["mail.smtp.auth":"true", | |
| # "mail.smtp.socketFactory.port":"465", | |
| # "mail.smtp.socketFactory.class":"javax.net.ssl.SSLSocketFactory", | |
| # "mail.smtp.socketFactory.fallback":"false"] | |
| info: | |
| app: | |
| name: '@info.app.name@' | |
| version: '@info.app.version@' | |
| grailsVersion: '@info.app.grailsVersion@' | |
| spring: | |
| main: | |
| banner-mode: "off" | |
| groovy: | |
| template: | |
| check-template-location: false | |
| # Spring Actuator Endpoints are Disabled by Default | |
| endpoints: | |
| enabled: false | |
| jmx: | |
| enabled: true | |
| --- | |
| grails: | |
| mime: | |
| disable: | |
| accept: | |
| header: | |
| userAgents: | |
| - Gecko | |
| - WebKit | |
| - Presto | |
| - Trident | |
| types: | |
| all: '*/*' | |
| atom: application/atom+xml | |
| css: text/css | |
| csv: text/csv | |
| form: application/x-www-form-urlencoded | |
| html: | |
| - text/html | |
| - application/xhtml+xml | |
| js: text/javascript | |
| json: | |
| - application/json | |
| - text/json | |
| multipartForm: multipart/form-data | |
| pdf: application/pdf | |
| rss: application/rss+xml | |
| text: text/plain | |
| hal: | |
| - application/hal+json | |
| - application/hal+xml | |
| xml: | |
| - text/xml | |
| - application/xml | |
| urlmapping: | |
| cache: | |
| maxsize: 1000 | |
| controllers: | |
| defaultScope: singleton | |
| converters: | |
| encoding: UTF-8 | |
| views: | |
| default: | |
| codec: html | |
| gsp: | |
| encoding: UTF-8 | |
| htmlcodec: xml | |
| codecs: | |
| expression: html | |
| scriptlets: html | |
| taglib: none | |
| staticparts: none | |
| endpoints: | |
| jmx: | |
| unique-names: true | |
| --- | |
| hibernate: | |
| cache: | |
| queries: false | |
| use_second_level_cache: false | |
| use_query_cache: false | |
| dataSource: | |
| pooled: true | |
| jmxExport: true | |
| driverClassName: org.postgresql.Driver | |
| username: cdt2 | |
| password: '' | |
| environments: | |
| development: | |
| dataSource: | |
| #dbCreate: create-drop | |
| #url: jdbc:h2:mem:devDb;MVCC=TRUE;LOCK_TIMEOUT=10000;DB_CLOSE_ON_EXIT=FALSE | |
| dbCreate: update | |
| url: jdbc:postgresql:cddm_dev | |
| #logSql: true | |
| #grails.mail.port: 60025 | |
| #grails.serverURL: "http://localhost:8080/${appName}" | |
| test: | |
| dataSource: | |
| dbCreate: create-drop | |
| url: jdbc:h2:mem:testDb;MVCC=TRUE;LOCK_TIMEOUT=10000;DB_CLOSE_ON_EXIT=FALSE | |
| grails.plugin.greenmail.disabled: true | |
| # production: | |
| # dataSource: | |
| # dbCreate: none | |
| # url: jdbc:h2:./prodDb;MVCC=TRUE;LOCK_TIMEOUT=10000;DB_CLOSE_ON_EXIT=FALSE | |
| # properties: | |
| # jmxEnabled: true | |
| # initialSize: 5 | |
| # maxActive: 50 | |
| # minIdle: 5 | |
| # maxIdle: 25 | |
| # maxWait: 10000 | |
| # maxAge: 600000 | |
| # timeBetweenEvictionRunsMillis: 5000 | |
| # minEvictableIdleTimeMillis: 60000 | |
| # validationQuery: SELECT 1 | |
| # validationQueryTimeout: 3 | |
| # validationInterval: 15000 | |
| # testOnBorrow: true | |
| # testWhileIdle: true | |
| # testOnReturn: false | |
| # jdbcInterceptors: ConnectionState | |
| # defaultTransactionIsolation: 2 # TRANSACTION_READ_COMMITTED | |
| # dbCreate: update | |
| # url: jdbc:postgresql://... | |
| # grails.plugin.greenmail.disabled: true |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment