|
7 | 7 | - service |
8 | 8 | - renew |
9 | 9 | - gateway |
| 10 | + - acceptStrengths |
10 | 11 | default_parameters: |
| 12 | + # Comma separated list of user strengths: PASSWORD, MOBILE_APP, PASSWORD_SMS, PASSWORD_TOKEN, PASSWORD_TOKEN_CRAM, PASSWORD_SOFTWARE_TOKEN, PASSWORD_MOBILE_APP, CLIENT_CERT, BASIC |
| 13 | + # For a mock-up server, use BASIC, default is PASSWORD. |
| 14 | + acceptStrengths: "PASSWORD" |
| 15 | + # Redirect the user to this path or URL after authentication. |
| 16 | + # This could be an URL or a Symfony route. |
11 | 17 | service: cas_bundle_homepage |
12 | 18 | serviceValidate: |
13 | 19 | allowed_parameters: |
14 | | - - service |
15 | | - - ticket |
| 20 | + - assuranceLevel |
| 21 | + - format |
| 22 | + - groups |
16 | 23 | - pgtUrl |
17 | 24 | - renew |
18 | | - - format |
19 | | - - userDetails |
| 25 | + - service |
| 26 | + - ticket |
20 | 27 | - ticketTypes |
21 | | - path: /serviceValidate |
| 28 | + - userDetails |
| 29 | + # Could be /serviceValidate, /strictValidate, /interinstitutionalValidate, /sponsorValidate, /laxValidate |
| 30 | + # Make sure to read the "ECAS Client Installation and Configuration Guide - Advanced.pdf" before changing those parameters. |
| 31 | + path: /laxValidate |
22 | 32 | default_parameters: |
23 | | - userDetails: "true" |
| 33 | + # Type of assurance level: TOP, HIGH, MEDIUM, LOW |
| 34 | + # Default is TOP. |
| 35 | + assuranceLevel: "LOW" |
| 36 | + # Do not change this parameter, it won't work with ECAS. |
24 | 37 | format: XML |
| 38 | + # Allowed user groups. "*" means all the groups. |
| 39 | + groups: "*" |
| 40 | + # Enable proxy authentication by setting this parameter. |
| 41 | + # Make sure you know what you're doing if you change this parameter. |
25 | 42 | #pgtUrl: cas_bundle_proxy_callback |
| 43 | + # Comma separated list of allowed ticket types: SERVICE, DESKTOP, PROXY. |
| 44 | + # Default is SERVICE,PROXY |
| 45 | + ticketTypes: "SERVICE,PROXY" |
| 46 | + # Boolean. If true, all the user fields will be retrieved from ECAS. |
| 47 | + userDetails: "true" |
26 | 48 | logout: |
27 | 49 | path: /logout |
28 | 50 | allowed_parameters: |
29 | 51 | - service |
30 | 52 | default_parameters: |
| 53 | + # Redirect the user to this path or URL after logout. |
| 54 | + # This could be an URL or a Symfony route. |
31 | 55 | service: cas_bundle_homepage |
32 | 56 | proxy: |
33 | 57 | path: /proxy |
|
37 | 61 | proxyValidate: |
38 | 62 | path: /proxyValidate |
39 | 63 | allowed_parameters: |
| 64 | + - assuranceLevel |
| 65 | + - format |
| 66 | + - groups |
| 67 | + - pgtUrl |
| 68 | + - renew |
40 | 69 | - service |
41 | 70 | - ticket |
| 71 | + - ticketTypes |
42 | 72 | - userDetails |
43 | | - - pgtUrl |
44 | | - - format |
| 73 | + - userStrengths |
45 | 74 | default_parameters: |
46 | | - userDetails: "true" |
| 75 | + # Type of assurance level: TOP, HIGH, MEDIUM, LOW |
| 76 | + # Default is LOW. |
| 77 | + assuranceLevel: "LOW" |
| 78 | + # Do not change this parameter, it won't work with ECAS. |
47 | 79 | format: XML |
| 80 | + # Allowed user groups. "*" means all the groups. |
| 81 | + groups: "*" |
| 82 | + # Enable proxy authentication by setting this parameter. |
| 83 | + # Make sure you know what you're doing if you change this parameter. |
48 | 84 | #pgtUrl: cas_bundle_proxy_callback |
| 85 | + # Comma separated list of allowed ticket types: SERVICE, DESKTOP, PROXY. |
| 86 | + # Default is SERVICE,PROXY |
| 87 | + ticketTypes: "SERVICE,PROXY" |
| 88 | + # Boolean. If true, all the user fields will be retrieved from ECAS. |
| 89 | + userDetails: "true" |
0 commit comments