185 lines
11 KiB
XML
185 lines
11 KiB
XML
<?xml version="1.0" encoding="utf-8"?>
|
|
<!--
|
|
NOTE: although OAuth/API is installed to the same _layouts folder as OAuth/Authenticated and OAuth/Public, it will be created
|
|
as separate site in IIS, which means that OAuth/API/web.config won't inherit OAuth/web.config. So if something is added here,
|
|
check that it may be also needed in other web.config because there is no inheritance.
|
|
|
|
NOTE: don't change this file without adding the same changes to production. Otherwise changes may be lost during next wsp update.
|
|
This file contains configuration for production, for dev env rename web.config_dev to web.config after each wsp update.
|
|
-->
|
|
|
|
<configuration>
|
|
<configSections>
|
|
<sectionGroup name="system.web.extensions" type="System.Web.Configuration.SystemWebExtensionsSectionGroup, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35">
|
|
<sectionGroup name="scripting" type="System.Web.Configuration.ScriptingSectionGroup, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35">
|
|
<section name="scriptResourceHandler" type="System.Web.Configuration.ScriptingScriptResourceHandlerSection, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" />
|
|
<sectionGroup name="webServices" type="System.Web.Configuration.ScriptingWebServicesSectionGroup, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35">
|
|
<section name="jsonSerialization" type="System.Web.Configuration.ScriptingJsonSerializationSection, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="Everywhere" />
|
|
<section name="profileService" type="System.Web.Configuration.ScriptingProfileServiceSection, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" />
|
|
<section name="authenticationService" type="System.Web.Configuration.ScriptingAuthenticationServiceSection, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" />
|
|
<section name="roleService" type="System.Web.Configuration.ScriptingRoleServiceSection, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" requirePermission="false" allowDefinition="MachineToApplication" />
|
|
</sectionGroup>
|
|
</sectionGroup>
|
|
</sectionGroup>
|
|
<!-- log4net section is needed because DotNetOpenAuth uses it internally -->
|
|
<section name="log4net" type="log4net.Config.Log4NetConfigurationSectionHandler, log4net, Version=1.2.11.0, Culture=neutral, PublicKeyToken=669e0ddf0bb1aa2a" requirePermission="false" />
|
|
<sectionGroup name="dotNetOpenAuth" type="DotNetOpenAuth.Configuration.DotNetOpenAuthSection, DotNetOpenAuth, Version=4.3.0.0, Culture=neutral, PublicKeyToken=2780ccd10d57b246">
|
|
<sectionGroup name="oauth2" type="DotNetOpenAuth.Configuration.OAuth2SectionGroup, DotNetOpenAuth, Version=4.3.0.0, Culture=neutral, PublicKeyToken=2780ccd10d57b246">
|
|
<section name="authorizationServer" type="DotNetOpenAuth.Configuration.OAuth2AuthorizationServerSection, DotNetOpenAuth, Version=4.3.0.0, Culture=neutral, PublicKeyToken=2780ccd10d57b246" requirePermission="false" allowLocation="true" />
|
|
</sectionGroup>
|
|
<section name="messaging" type="DotNetOpenAuth.Configuration.MessagingElement, DotNetOpenAuth, Version=4.3.0.0, Culture=neutral, PublicKeyToken=2780ccd10d57b246" requirePermission="false" allowLocation="true" />
|
|
</sectionGroup>
|
|
<section name="uri" type="System.Configuration.UriSection, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" />
|
|
</configSections>
|
|
|
|
<!-- this is an optional configuration section where aspects of dotnetopenauth can be customized -->
|
|
<dotNetOpenAuth>
|
|
|
|
<oauth2>
|
|
<authorizationServer></authorizationServer>
|
|
</oauth2>
|
|
<!-- Relaxing SSL requirements is useful for simple samples, but NOT a good idea in production. -->
|
|
<messaging relaxSslRequirements="false">
|
|
<untrustedWebRequest>
|
|
<whitelistHosts>
|
|
</whitelistHosts>
|
|
</untrustedWebRequest>
|
|
</messaging>
|
|
</dotNetOpenAuth>
|
|
|
|
<log4net>
|
|
<appender name="DBAppender" type="Taloyhtio.GeneralSSO.Server.CodeFiles.Services.Impl.Logger, Taloyhtio.GeneralSSO.Server, Version=1.0.0.0, Culture=neutral, PublicKeyToken=ecbf947198042521">
|
|
<layout type="log4net.Layout.PatternLayout, log4net, Version=1.2.11.0, Culture=neutral, PublicKeyToken=669e0ddf0bb1aa2a">
|
|
<param name="ConversionPattern" value="%m%n%l, line: %L%n%c" />
|
|
</layout>
|
|
</appender>
|
|
<root>
|
|
<level value="ALL" />
|
|
<appender-ref ref="DBAppender" />
|
|
</root>
|
|
<logger name="DotNetOpenAuth">
|
|
<level value="ALL" />
|
|
</logger>
|
|
</log4net>
|
|
|
|
<connectionStrings>
|
|
<add name="Taloyhtio.GeneralSSO.Database" connectionString="Data Source=mobimus-r710.howzee.local;Initial Catalog=GeneralSSO.Server;User ID=TaloyhtioMdbUser;Password=wo23s_x%S" providerName="System.Data.SqlClient" />
|
|
</connectionStrings>
|
|
|
|
<appSettings>
|
|
<add key="AuthServerSigningCert_SubjectName" value="TaloyhtioSSO AuthServer Signing" />
|
|
<add key="AuthServerSigningCert_StoreName" value="My" /> <!-- StoreName enum -->
|
|
<add key="AuthServerSigningCert_StoreLocation" value="LocalMachine" /> <!-- StoreLocation enum -->
|
|
<add key="ResourceServerEncryptionCert_SubjectName" value="TaloyhtioSSO ResourceServer Encryption" />
|
|
<add key="ResourceServerEncryptionCert_StoreName" value="My" /> <!-- StoreName enum -->
|
|
<add key="ResourceServerEncryptionCert_StoreLocation" value="LocalMachine" /> <!-- StoreLocation enum -->
|
|
<add key="AccessTokenLifeTimeMinutes" value="2" />
|
|
<add key="PMCBaseAddress" value="https://secure.taloyhtio.info" />
|
|
<add key="MembershipProviderName" value="taloyhtio" />
|
|
</appSettings>
|
|
|
|
<uri>
|
|
<!-- The uri section is necessary to turn on .NET 3.5 support for IDN (international domain names),
|
|
which is necessary for OpenID urls with unicode characters in the domain/host name.
|
|
It is also required to put the Uri class into RFC 3986 escaping mode, which OpenID and OAuth require. -->
|
|
<idn enabled="All" />
|
|
<iriParsing enabled="true" />
|
|
</uri>
|
|
|
|
<system.web>
|
|
<customErrors mode="Off" />
|
|
<httpModules>
|
|
<add name="ScriptModule" type="System.Web.Handlers.ScriptModule, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
|
|
<add name="InitializationModule" type="Taloyhtio.GeneralSSO.Server.CodeFiles.Infrastructure.Web.InitializationModule, Taloyhtio.GeneralSSO.Server, Version=1.0.0.0, Culture=neutral, PublicKeyToken=ecbf947198042521" />
|
|
</httpModules>
|
|
<authorization>
|
|
<allow users="*"/>
|
|
</authorization>
|
|
</system.web>
|
|
|
|
<system.web.extensions>
|
|
<scripting>
|
|
<webServices>
|
|
</webServices>
|
|
</scripting>
|
|
</system.web.extensions>
|
|
|
|
<system.webServer>
|
|
<validation validateIntegratedModeConfiguration="false" />
|
|
<modules>
|
|
<add name="ScriptModule" type="System.Web.Handlers.ScriptModule, System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
|
|
<add name="InitializationModule" type="Taloyhtio.GeneralSSO.Server.CodeFiles.Infrastructure.Web.InitializationModule, Taloyhtio.GeneralSSO.Server, Version=1.0.0.0, Culture=neutral, PublicKeyToken=ecbf947198042521" />
|
|
</modules>
|
|
<handlers>
|
|
<remove name="WebServiceHandlerFactory-Integrated" />
|
|
<add name="svc-ISAPI-2.0-64bit" path="*.svc" verb="*" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework64\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" preCondition="classicMode,runtimeVersionv2.0,bitness64" />
|
|
<add name="svc-ISAPI-2.0" path="*.svc" verb="*" modules="IsapiModule" scriptProcessor="%windir%\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" resourceType="Unspecified" preCondition="classicMode,runtimeVersionv2.0,bitness32" />
|
|
<add name="ScriptHandlerFactory" verb="*" path="*.asmx" preCondition="integratedMode" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
|
|
<add name="ScriptHandlerFactoryAppServices" verb="*" path="*_AppService.axd" preCondition="integratedMode" type="System.Web.Script.Services.ScriptHandlerFactory, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
|
|
<add name="ScriptResource" preCondition="integratedMode" verb="GET,HEAD" path="ScriptResource.axd" type="System.Web.Handlers.ScriptResourceHandler, System.Web.Extensions, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
|
|
</handlers>
|
|
</system.webServer>
|
|
|
|
<system.serviceModel>
|
|
<extensions>
|
|
<behaviorExtensions>
|
|
<add name="jsonExceptionHandling" type="Taloyhtio.GeneralSSO.Server.CodeFiles.Infrastructure.WCF.JsonExceptionHandlingBehavior, Taloyhtio.GeneralSSO.Server, Version=1.0.0.0, Culture=neutral, PublicKeyToken=0691fe8647b9ff9f" />
|
|
</behaviorExtensions>
|
|
</extensions>
|
|
|
|
<bindings>
|
|
<webHttpBinding>
|
|
<binding name="webBinding">
|
|
<security mode="Transport">
|
|
<transport clientCredentialType="None" />
|
|
</security>
|
|
</binding>
|
|
</webHttpBinding>
|
|
</bindings>
|
|
|
|
<behaviors>
|
|
<serviceBehaviors>
|
|
<behavior name="dataApiBehavior">
|
|
<serviceMetadata httpGetEnabled="false" httpsGetEnabled="true" />
|
|
<serviceDebug includeExceptionDetailInFaults="true" />
|
|
<serviceAuthorization serviceAuthorizationManagerType="Taloyhtio.GeneralSSO.Server.CodeFiles.Infrastructure.WCF.OAuthAuthorizationManager, Taloyhtio.GeneralSSO.Server, Version=1.0.0.0, Culture=neutral, PublicKeyToken=ecbf947198042521" principalPermissionMode="Custom" />
|
|
</behavior>
|
|
</serviceBehaviors>
|
|
|
|
<endpointBehaviors>
|
|
<behavior name="dataApiWebBehavior">
|
|
<enableWebScript />
|
|
<jsonExceptionHandling />
|
|
</behavior>
|
|
</endpointBehaviors>
|
|
</behaviors>
|
|
|
|
<services>
|
|
<service behaviorConfiguration="dataApiBehavior" name="Taloyhtio.GeneralSSO.Server.Layouts.Taloyhtio.OAuth.API.DataApi">
|
|
<host>
|
|
<baseAddresses>
|
|
<add baseAddress="https://api.taloyhtio.info/DataApi.svc" />
|
|
</baseAddresses>
|
|
</host>
|
|
<endpoint binding="webHttpBinding" bindingConfiguration="webBinding" behaviorConfiguration="dataApiWebBehavior" contract="Taloyhtio.GeneralSSO.Server.CodeFiles.Infrastructure.WCF.IDataApi" />
|
|
</service>
|
|
</services>
|
|
</system.serviceModel>
|
|
|
|
|
|
<runtime>
|
|
<assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
|
|
<dependentAssembly>
|
|
<assemblyIdentity name="log4net" publicKeyToken="692fbea5521e1304" culture="neutral" />
|
|
<bindingRedirect oldVersion="0.0.0.0-1.2.10.0" newVersion="1.2.11.0" />
|
|
</dependentAssembly>
|
|
</assemblyBinding>
|
|
<assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
|
|
<dependentAssembly>
|
|
<assemblyIdentity name="NHibernate" publicKeyToken="aa95f207798dfdb4" />
|
|
<bindingRedirect oldVersion="2.1.0.4000" newVersion="2.1.2.4000" />
|
|
</dependentAssembly>
|
|
</assemblyBinding>
|
|
</runtime>
|
|
|
|
</configuration> |