...
Attribute description
| |||||
|---|---|---|---|---|---|
apId defines the Application Provider's unique URI-type identifier with which the AP is registered to use the AE's services.
| |||||
apPwd defines the password used in authenticating the Application Provider.
| |||||
Client.cert defines the path to the client certificate.
| |||||
Clientclient.cert.password defines the password used for protecting the client certificate and the private key.
| |||||
Sslssl-policy.xml defines the path to the XML file containing the MSSP root CA in base64 form. This certificate is used to check the MSSP server certificate when creating the SSL connection.
| |||||
Policypolicy.xml defines the path to the XML file containing the certificate that is used to confirm the signature the MSSP provides to Ubisecure SSO.
| |||||
Aeae.signatureUrl defines the URL for making signature requests to the MSSP.
| |||||
Aeae.statusUrl defines the URL for making status requests to the MSSP.
| |||||
personIdentityAttributes defines the attributes that SSO Server will query from the MSSP regarding the user. Multiple personIdentityAttributes are separated with a white space character. This is the only configuration string where you have to make a decision. It is essential to define this attribute if you are using an unregistered MPKI method.
| |||||
ae.timeout (optional) defines how long SSO keeps querying the MSSP before terminating the authentication process. The value is in minutes. Default value is 5.
| |||||
ae.signatureProfile (optional) defines the signature profile. The only supported signatureprofile is authentication profile (http://mss.ficom.fi/TS102206/v1.0.0/authentication-profile.xml). However, this profile can be overridden with the supplied value.
| |||||
xml.parser.validation (optional) defines whether the xml responses will be validated against the schema. Use for debugging purposes only.
| |||||
eventIdLength (optional) defines the length of generated EventID. Default value is 8.
| |||||
initialStatusRequestDelay (optional) defines the delay before the first status request is sent after the initial transaction request. The value is in milliseconds. Default value is 15000.
| |||||
consecutiveStatusRequestDelay (optional) defines the delay of the consecutive status requests after the first status request. The value is in milliseconds. Default value is 5000.
| |||||
threadPoolSize (optional) defines the number of threads available in the thread pool dedicated to processing ETSIMSS requests and responses. Minimum value is 1. Maximum value is 20. Default value is 1.
|
After all the necessary Attribute values in etsimss.properties configuration file have been set, the file's contents should look similar to the example below:
| Code Block | ||
|---|---|---|
| ||
apId = test.server.fi/rajapinta-xxxxxxxxx
apPwd = app_password
#cert = org
client.cert = client cert.p12
client.cert.password = password
ae.signatureUrl = https://localhost:444/MSS_Signature
ae.statusUrl = https://localhost:444/MSS_StatusPort
ae.receiptUrl = https://localhost:444/MSS_ReceiptPort
ssl-policy.xml = sslpolicy.xml
ae.timeout = 90
ae.msspId.dnsName = mssp2.localgost
policy.xml = policyxml.xml
personIdentityAttributes = http://mss.ficom.fi/TS102204/v1.0.0/PersonID#hetu http://mss.ficom.fi/TS102204/v1.0.0/PersonID#satu
http://mss.ficom.fi/TS102204/v1.0.0/PersonID#age http://mss.ficom.fi/TS102204/v1.0.0/PersonID#ageClass http://mss.ficom.fi/TS102204/v1.0.0/PersonID#gender http://mss.ficom.fi/TS102204/v1.0.0/PersonID#givenName http://mss.ficom.fi/TS102204/v1.0.0/PersonID#surName http://mss.ficom.fi/TS102204/v1.0.0/PersonID#subject http://mss.ficom.fi/TS102204/v1.0.0/PersonID#validUntil
eventIdLength = 7
initialStatusRequestDelay = 4000
consecutiveStatusRequestDelay = 1000
threadPoolSize = 2 |
Correct methods/etsimss Directory Contents
...