tvl-depot/third_party/apereo-cas/overlay/etc/cas/config/cas.properties
Luke Granger-Brown 85900e150e chore(3p/apereo-cas): move TVL config
There's some non-secret config that made its way into the secrets file.
This CL moves it into git so we can track it properly.

Change-Id: I3f5bf5e1f7addabb199997fb7b1f805b9157fbbe
Reviewed-on: https://cl.tvl.fyi/c/depot/+/2810
Tested-by: BuildkiteCI
Reviewed-by: tazjin <mail@tazj.in>
2021-04-03 21:51:58 +00:00

37 lines
1.1 KiB
Properties

cas.server.name=https://login.tvl.fyi
cas.server.prefix=${cas.server.name}
cas.server.scope=tvl.fyi
server.tomcat.basedir=/etc/cas/tomcat
server.servlet.context.path=/
cas.service-registry.json.location=file:/etc/cas/services
server.port=8443
server.address=127.0.0.1
server.ssl.enabled=false
# Enable X-Forwarded-For using Tomcat.
server.forward-headers-strategy=NATIVE
server.tomcat.remoteip.remote-ip-header=x-forwarded-for
server.tomcat.remoteip.protocol-header=x-forwarded-proto
server.tomcat.basedir=/etc/cas/tomcat
server.servlet.context-path=/
cas.authn.saml-idp.entity-id=https://login.tvl.fyi
cas.authn.accept.users=
cas.authn.attribute-repository.default-attributes-to-release=uid,mail,displayName
cas.authn.ldap[0].pool-passivator=NONE
cas.authn.ldap[0].principal-attribute-list=cn:uid,mail,displayName
cas.authn.ldap[0].ldap-url=ldap://localhost
cas.authn.ldap[0].use-start-tls=false
cas.authn.ldap[0].validator.base-dn=dc=tvl,dc=fyi
cas.authn.ldap[0].base-dn=dc=tvl,dc=fyi
cas.authn.ldap[0].search-filter=cn={user}
cas.authn.ldap[0].dn-format=cn=%s,ou=users,dc=tvl,dc=fyi
cas.authn.ldap[0].type=DIRECT
cas.authn.oidc.issuer=${cas.server.name}/oidc