| <?xml version="1.0" encoding="UTF-8"?> |
| |
| <!-- |
| Licensed to the Apache Software Foundation (ASF) under one |
| or more contributor license agreements. See the NOTICE file |
| distributed with this work for additional information |
| regarding copyright ownership. The ASF licenses this file |
| to you under the Apache License, Version 2.0 (the |
| "License"); you may not use this file except in compliance |
| with the License. You may obtain a copy of the License at |
| |
| http://www.apache.org/licenses/LICENSE-2.0 |
| |
| Unless required by applicable law or agreed to in writing, |
| software distributed under the License is distributed on an |
| "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| KIND, either express or implied. See the License for the |
| specific language governing permissions and limitations |
| under the License. |
| --> |
| |
| |
| <spring:beans xmlns="http://apacheds.org/config/1.5.5-SNAPSHOT" |
| xmlns:spring="http://xbean.apache.org/schemas/spring/1.0" |
| xmlns:s="http://www.springframework.org/schema/beans"> |
| |
| <s:bean id="Db10gDataSource" class="oracle.jdbc.pool.OracleDataSource"> |
| <!-- configure oracle --> |
| <s:property name="user"><s:value>dsorapart2</s:value></s:property> |
| <s:property name="password"><s:value>dsorapart2</s:value></s:property> |
| <s:property name="driverType"><s:value>thin</s:value></s:property> |
| <s:property name="portNumber"><s:value>1521</s:value></s:property> |
| <s:property name="serverName"><s:value>localhost</s:value></s:property> |
| <s:property name="databaseName"><s:value>db10g</s:value></s:property> |
| </s:bean> |
| |
| <defaultDirectoryService id="directoryService" instanceId="default" |
| replicaId="1" |
| workingDirectory="example.com" |
| allowAnonymousAccess="true" |
| accessControlEnabled="false" |
| denormalizeOpAttrsEnabled="false" |
| maxPDUSize="2000000"> |
| <systemPartition> |
| <s:bean id="system" class="org.apache.directory.server.partition.impl.oracle.OraclePartition"> |
| <s:property name="id"><s:value>system</s:value></s:property> |
| <s:property name="dataSource"><s:ref bean="Db10gDataSource"/></s:property> |
| <s:property name="directoryService"><s:ref bean="directoryService"/></s:property> |
| <s:property name="suffix"><s:value>ou=system</s:value></s:property> |
| </s:bean> |
| |
| <!-- use the following partitionConfiguration to override defaults for --> |
| <!-- the system partition |
| <jdbmPartition id="system" cacheSize="100" suffix="ou=system" optimizerEnabled="true" syncOnWrite="true"> |
| <indexedAttributes> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.1" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.2" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.3" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.4" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.5" cacheSize="10"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.6" cacheSize="10"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.7" cacheSize="10"/> |
| <jdbmIndex attributeId="ou" cacheSize="100"/> |
| <jdbmIndex attributeId="uid" cacheSize="100"/> |
| <jdbmIndex attributeId="objectClass" cacheSize="100"/> |
| </indexedAttributes> |
| </jdbmPartition>--> |
| |
| |
| |
| </systemPartition> |
| |
| <partitions> |
| <!-- NOTE: when specifying new partitions you need not include those --> |
| <!-- attributes below with OID's which are the system indices, if left --> |
| <!-- out they will be automatically configured for you with defaults. --> |
| <!-- jdbmPartition id="example" cacheSize="100" suffix="dc=example,dc=com" optimizerEnabled="true" |
| syncOnWrite="true"> |
| <indexedAttributes> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.1" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.2" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.3" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.4" cacheSize="100"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.5" cacheSize="10"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.6" cacheSize="10"/> |
| <jdbmIndex attributeId="1.3.6.1.4.1.18060.0.4.1.2.7" cacheSize="10"/> |
| <jdbmIndex attributeId="dc" cacheSize="100"/> |
| <jdbmIndex attributeId="ou" cacheSize="100"/> |
| <jdbmIndex attributeId="krb5PrincipalName" cacheSize="100"/> |
| <jdbmIndex attributeId="uid" cacheSize="100"/> |
| <jdbmIndex attributeId="objectClass" cacheSize="100"/> |
| </indexedAttributes> |
| </jdbmPartition--> |
| <s:bean id="example" class="org.apache.directory.server.partition.impl.oracle.OraclePartition"> |
| <s:property name="id"><s:value>example</s:value></s:property> |
| <s:property name="dataSource"><s:ref bean="Db10gDataSource"/></s:property> |
| <s:property name="directoryService"><s:ref bean="directoryService"/></s:property> |
| <s:property name="suffix"><s:value>dc=example,dc=com</s:value></s:property> |
| </s:bean> |
| </partitions> |
| |
| <interceptors> |
| <normalizationInterceptor/> |
| <authenticationInterceptor/> |
| <referralInterceptor/> |
| <aciAuthorizationInterceptor/> |
| <defaultAuthorizationInterceptor/> |
| <exceptionInterceptor/> |
| <operationalAttributeInterceptor/> |
| |
| <!-- Uncomment to enable the password policy interceptor |
| <passwordPolicyInterceptor/> |
| <keyDerivationInterceptor/> |
| --> |
| |
| <schemaInterceptor/> |
| <subentryInterceptor/> |
| <collectiveAttributeInterceptor/> |
| <eventInterceptor/> |
| <triggerInterceptor/> |
| |
| <!-- Uncomment to enable replication interceptor |
| <replicationInterceptor> |
| <configuration> |
| <replicationConfiguration serverPort="10390" peerReplicas="instance_b@localhost:10392"> |
| <replicaId> |
| <replicaId id="instance_a"/> |
| </replicaId> |
| </replicationConfiguration> |
| </configuration> |
| </replicationInterceptor> |
| --> |
| </interceptors> |
| </defaultDirectoryService> |
| |
| <!-- |
| +============================================================+ |
| | ChangePassword server configuration | |
| +============================================================+ |
| --> |
| <!-- missing atou=users,dc=example,dc=com |
| <changePasswordServer> |
| <tcpTransport> |
| <tcpTransport port="60464" nbThreads="2" backLog="50"/> |
| </tcpTransport> |
| <udpTransport> |
| <udpTransport port="60464" nbThreads="2" backLog="50"/> |
| </udpTransport> |
| <directoryService>#directoryService</directoryService> |
| </changePasswordServer> |
| --> |
| |
| <!-- |
| +============================================================+ |
| | Kerberos server configuration | |
| +============================================================+ |
| --> |
| <!-- missing atou=users,dc=example,dc=com |
| <kdcServer> |
| <tcpTransport> |
| <tcpTransport port="60088" nbThreads="4" backLog="50"/> |
| </tcpTransport> |
| <udpTransport> |
| <udpTransport port="60088" nbThreads="4" backLog="50"/> |
| </udpTransport> |
| <directoryService>#directoryService</directoryService> |
| </kdcServer> |
| --> |
| |
| <!-- |
| +============================================================+ |
| | NtpServer configuration | |
| +============================================================+ |
| --> |
| <ntpServer> |
| <tcpTransport> |
| <tcpTransport port="60123"/> |
| </tcpTransport> |
| <udpTransport> |
| <udpTransport port="60123" nbThreads="1"/> |
| </udpTransport> |
| </ntpServer> |
| |
| <!-- |
| +============================================================+ |
| | DnsServer configuration | |
| +============================================================+ |
| --> |
| |
| <!-- missing atou=users,dc=example,dc=com |
| <dnsServer> |
| <tcpTransport> |
| <tcpTransport port="8053"/> |
| </tcpTransport> |
| <udpTransport> |
| <udpTransport port="8053"/> |
| </udpTransport> |
| <directoryService>#directoryService</directoryService> |
| </dnsServer> |
| --> |
| |
| <!-- |
| +============================================================+ |
| | LDAPS Service configuration | |
| +============================================================+ |
| --> |
| <ldapService id="ldapsService" |
| enabled="true" |
| enableLdaps="true"> |
| <tcpTransport> |
| <tcpTransport port="10686"/> |
| </tcpTransport> |
| <directoryService>#directoryService</directoryService> |
| </ldapService> |
| |
| <!-- |
| +============================================================+ |
| | LDAP Service configuration | |
| +============================================================+ |
| --> |
| <ldapService id="ldapService" |
| allowAnonymousAccess="false" |
| saslHost="ldap.example.com" |
| saslPrincipal="ldap/ldap.example.com@EXAMPLE.COM" |
| searchBaseDn="ou=users,ou=system" |
| maxTimeLimit="15000" |
| maxSizeLimit="1000"> |
| <tcpTransport> |
| <tcpTransport port="10389" nbThreads="8" backLog="50"/> |
| </tcpTransport> |
| |
| <directoryService>#directoryService</directoryService> |
| |
| <!-- The list of supported authentication mechanisms. --> |
| <saslMechanismHandlers> |
| <simpleMechanismHandler mech-name="SIMPLE"/> |
| <cramMd5MechanismHandler mech-name="CRAM-MD5" /> |
| <digestMd5MechanismHandler mech-name="DIGEST-MD5" /> |
| <gssapiMechanismHandler mech-name="GSSAPI" /> |
| <ntlmMechanismHandler mech-name="NTLM" ntlmProviderFqcn="com.foo.Bar"/> |
| <ntlmMechanismHandler mech-name="GSS-SPNEGO" ntlmProviderFqcn="com.foo.Bar"/> |
| </saslMechanismHandlers> |
| |
| <!-- The desired quality-of-protection, used by DIGEST-MD5 and GSSAPI. --> |
| <saslQop> |
| <s:value>auth</s:value> |
| <s:value>auth-int</s:value> |
| <s:value>auth-conf</s:value> |
| </saslQop> |
| |
| <!-- The realms serviced by this SASL host, used by DIGEST-MD5 and GSSAPI. --> |
| <saslRealms> |
| <s:value>example.com</s:value> |
| <s:value>apache.org</s:value> |
| </saslRealms> |
| |
| <!-- the collection of extended operation handlers to install --> |
| <extendedOperationHandlers> |
| <startTlsHandler/> |
| <gracefulShutdownHandler/> |
| <launchDiagnosticUiHandler/> |
| <!-- The Stored Procedure Extended Operation is not stable yet and it may cause security risks.--> |
| <!--storedProcedureExtendedOperationHandler/--> |
| </extendedOperationHandlers> |
| </ldapService> |
| |
| |
| <apacheDS id="apacheDS" |
| synchPeriodMillis="15000" |
| allowAnonymousAccess="false"> |
| |
| <directoryService>#directoryService</directoryService> |
| <ldapService>#ldapService</ldapService> |
| <ldapsService>#ldapsService</ldapsService> |
| </apacheDS> |
| </spring:beans> |