### Example LDAPHttp context properties file ### This file is a commented description of a Java properties file for use in defining ### an L3D or SG8 context. To use it, uncomment and define appropriate values for any ### relevant properties below and place the file in your runtime CLASSPATH under ### com/mentata/l3d/ where foo is to be the name of your context. ### L3D properties ## The following property specifies where in the Java class hierarchy to find the L3D ## objects for this domain. If this property is not defined, the system will look for ## objects in the same package as this properties file (e.g. com.mentata.l3d.). # context_package=com.mentata.sg8.core # context_package=com.mydomain.myobjects ## The following properties together specify the locale (language, country, and/or variant) ## to be used by default with objects in the context. Each requires the preceding to be ## defined. By default, the system's local context is used. # context_lang=es # context_country=mx # context_variant=MAC ## The following property defines the base distinguished name for all entries that ## are to be accessed through the context. This property should always be defined. # ldap_base=dc=mydomain, dc=com ## The following property defines the hostname for the LDAP server to use with the ## context. If this property is not defined, the system will use localhost. # ldap_host=ldap.mydomain.com ## The following property defines the TCP/IP port to use in LDAP communication. If it is ## not defined, the system will use LDAP standard port 389. # ldap_port=636 ## The following property indicates whether the system should SSL/TLS encrypt all LDAP ## communications. If this property is not defined as true, the system will not ## use any encryption with the directory server. # ldap_encrypt=true ## The following property indicates whether the system should use StartTLS for all LDAP ## communications. If this property is not defined as true, the system will not ## initiate StartTLS on connections with the directory server. Setting this property ## as true automatically sets ldap_encrypt true as well. # ldap_tls=true ## The following property defines the version of LDAP to use when making connections. ## The system will use version 3 by default, which should serve most all cases. # ldap_version=2 ## The following property defines the base distinguished name for all authenticating ## user entries. This property must be defined for any context that uses authentication ## and does not assign explicit values to user_bind and user_bpwd (see below). # user_base=ou=People, dc=mydomain, dc=com ## The following property defines the userid attribute used to uniquely identify ## authenticating user entries, preferably the attribute used in user relative ## distinguished names. This property must be defined for any context that uses ## authentication and does not assign explicit values to user_bind and user_bpwd ## (see below). # user_identifier=cn ## The following property indicates whether the system should perform a search to ## determine the distinguished name for a given account. If this property is set to true, ## the system will search anonymously from the defined user base (above) with a scope of ## subtree for entries where the identifer attribute (above) matches the submitted ## userid value. If this property is not set, the user's distinguished name is ## constructed simply from the user base, identifier attribute, and submitted userid ## (e.g. =, ). # user_seek=true ## The following properties define a specific user distinguished name and password ## to use in binding all connections to the directory. For obvious reasons, this method ## is not recommended. If it is used, this properties file should be protected. # user_bind=uid=authuser, ou=People, dc=mydomain, dc=com # user_bpwd=secret ## The following properties characterize a shared pool of connections for use with the ## context. The size value specifies the number of physical connections in the pool, ## while the share value specifies a maximum number of logical connections that can ## share each physical connection. The connections are anonymous unless explicit values ## are given for user_bind and user_bpwd, in which case the connections bind as that ## identity instead. # pool_size=5 # pool_share=3 ### SG8 properties ## The following property names another context from which to borrow pooled connections. ## Obviously, this second context should be configured to use the same directory server. # sg8_share=othercontext ## The following property indicates whether all requests should require authentication. ## If this property is set to true, any servlet request including the retrieve servlet ## will redirect to the authentication JSP if the user's session is not authenticated to the ## named context. By default, this property is set to false so that requests to the retrieve ## or mail servlet do not require authentication. # sg8_closed=true ## The following properties name a cascading stylesheet, header include file, and footer ## include file to use in all of the default JSP output for objects in the context. These ## files must be located under subdirectories in the web application archive named styles/, ## includes/headers/, and includes/footers/ respectively. # sg8_stylesheet=mystyles.css # sg8_header=top.htm # sg8_footer=bottom.htm ## The following property lists the default JSP pages to override for all objects of the context ## with custom versions. The value should be a : separated list of JSP names with the .jsp ## extension left off. The custom versions of these pages should be located in the ## subdirectory in the web application archive named jsp// where is the name ## of the context. # sg8_jsp=search:display:disavow ## The following property sets the maximum column width of HTML form elements used in attribute ## updating. By default, this property is set to 70, which should serve most cases. # sg8_columns=80 ## The following properties configure a mail server and default from address to use in ## messages sent via the mail servlet in reference to objects of the context. By default, the ## system will use localhost as the mail server and will require a submitted from address for ## each message. # sg8_mailhost=mail.mydomain.com # sg8_mailfrom=me@mydomain.com #### OpenLDAP Root Service Example ## The following is a complete example context that uses the OpenLDAP root service to ## demonstrate referral handling. ## To configure, comment all prior lines, uncomment the following 3 lines... # context_package=com.mentata.sg8.core # ldap_host=root.openldap.org # ldap_base=dc=umich, dc=edu ## ... deploy and test against inetorgperson objects/attributes in the example context. #### Thank you for trying LDAPHttp.