### Json2Ldap configuration ###


# Access control #

json2ldap.access.https.require = false
json2ldap.access.https.requireClientCert = false
json2ldap.access.https.clientCertPrincipal = cn=myapp,ou=apps,dc=example,dc=com

json2ldap.access.hosts.allow = *

json2ldap.access.apiKeys.require = false
json2ldap.access.apiKeys.exemptedMethods = ws.getName ws.getVersion ws.getTime
json2ldap.access.apiKeys.map.f70defbeb88141f88138bea52b6e1b9c = ldap.connect ldap.isConnected ldap.close ldap.getEntry
json2ldap.access.apiKeys.map.08d1e641b1c14d888796e47c06430efb = *


# Web API settings #

json2ldap.api.requireAuthentication = false
json2ldap.api.denyWriteRequests = false
json2ldap.api.denyReadRequests = false
json2ldap.api.denyBindRequests = false
json2ldap.api.denyPasswordModifyRequests = false
json2ldap.api.denyWhoAmIRequests = false
json2ldap.api.connectionQuotaPerIP = 0
json2ldap.api.connectionQuotaPerUser = 10
json2ldap.api.exposeExceptions = false
json2ldap.api.responseContentType = application/json;charset=utf-8
json2ldap.api.reportRequestProcTime = false


# LDAP connections #

json2ldap.ldap.allowedServerURLs = *
json2ldap.ldap.requireSecureAccess = false
json2ldap.ldap.autoReconnect = true
json2ldap.ldap.maxIdleTime = 60
json2ldap.ldap.maxConnectionTime = 1440


# Default LDAP server #

json2ldap.defaultLDAPServer.enable = true
json2ldap.defaultLDAPServer.url = ldap://localhost:10389 ldap://remotehost:10389
json2ldap.defaultLDAPServer.selectionAlgorithm = FAILOVER
json2ldap.defaultLDAPServer.security = NONE
json2ldap.defaultLDAPServer.connectTimeout = 0
json2ldap.defaultLDAPServer.trustSelfSignedCerts = false


# Custom trust and key store for TLS/SSL LDAP #

json2ldap.ldap.customTrustStore.enable = false
json2ldap.ldap.customTrustStore.file = WEB-INF/truststore.jks
json2ldap.ldap.customTrustStore.type = JKS
json2ldap.ldap.customTrustStore.password = secret

json2ldap.ldap.customKeyStore.enable = false
json2ldap.ldap.customKeyStore.file = WEB-INF/keystore.jks
json2ldap.ldap.customKeyStore.type = JKS
json2ldap.ldap.customKeyStore.password = secret


# Secure Remote Password (SRP-6a) authentication #

json2ldap.x.srp6.enable = true
json2ldap.x.srp6.dn = uid=alice,ou=people,dc=wonderland,dc=net
json2ldap.x.srp6.password = secret
json2ldap.x.srp6.attribute = srp6Verifier
json2ldap.x.srp6.primeSize = 256
json2ldap.x.srp6.saltSize = 16
json2ldap.x.srp6.hashAlgorithm = SHA-1
json2ldap.x.srp6.timeout = 300