ONE Web Application Configuration
In on-premise deployments, the following properties configure ONE Web Application and are provided in the one-webapp/etc/application.properties file.
In addition, the following properties can be specified for ONE Web Application as well:
General settings
| Property | Data type | Description |
|---|---|---|
|
Number |
The HTTP port where ONE Web Application is running.
Default value: |
Keycloak authentication
| Properties | Data type | Description |
|---|---|---|
|
String |
The URL of the server where Keycloak is running. Default value: |
|
String |
The name of the Keycloak realm. Default value: |
|
String |
The client identifier. Used to verify a user’s authorization token and to log in a user. Default value: |
|
String |
The secret key of the client.
Secret keys can be generated using Keycloak.
Used for Default value: |
|
String |
Specifies the issuer of the JWT token. Typically, Keycloak uses the URL of the realm as the token issuer. Default value: |
|
String |
The type of client token authentication.
Possible values: Default value: |
|
String |
Points to the keystore used for |
|
String |
The type of the keystore used for Default value: |
|
String |
The password of the keystore used for |
|
String |
The private key name specified in the keystore used for The default value is the client identifier. |
|
String |
The password for recovering the key.
Used for The default value is the keystore password. |
|
Boolean |
Enables creating an administration client for Keycloak. Default value: |
|
String |
Specifies for how long the JWT token used for authentication in Keycloak remains valid.
Used for Default value: |
|
String |
The expected recipients of the JWT token. Used for validating the token. |
|
String |
Defines for how long public keys retrieved from Keycloak are cached. Default value: |
|
String |
Defines the minimum time interval between two requests for retrieving new public keys from Keycloak. This helps prevent Denial-of-Service (DoS) attacks. Default value: |
Single sign-on
| Property | Data type | Description ` |
|---|---|---|
|
String |
The name of the Keycloak realm used for single sign-on (SSO). Default value: |
|
String |
The base URL where Keycloak is available. Used as a prefix for other SSO URLs. Default value: |
|
String |
The URL where users are redirected to provide authentication credentials. Default value: |
|
String |
The URL used to obtain authentication tokens from Keycloak. Default value:`${ataccama.one.webserver.sso.base-url}/realms/${ataccama.one.webserver.sso.realm}/protocol/openid-connect/token`. |
|
String |
The URL used for logging users out. Default value: |
|
String |
The client identifier used for verifying user authorization tokens and for logging in. Default value: |
GraphQL
| Property | Data type | Description |
|---|---|---|
|
String |
The URL of the GraphQL endpoint that is used by MMM Server. Default value: |
|
String |
The URL of the subscription endpoint of MMM Server. Default value: |
|
String |
The URL of the GraphQL endpoint that is used by the Audit module. Default value: |
|
Boolean |
To log requests made to GraphQL endpoints, set to Default value: |
|
Boolean |
Defines if logs for GraphQL endpoints store the request’s HTTP headers.
To log headers, set the value to Default value: |
|
Boolean |
Defines if logs for GraphQL endpoints store the request’s payload.
To log payloads, set the value to Default value: |
|
Number |
Sets the maximum length of the request’s payload expressed in characters. When the request’s payload exceeds this number, the payload is truncated and logs store only the characters within the limit. Default value: |
|
Boolean |
Defines if logs for GraphQL endpoints store the query string parameters sent with the request.
To log query string parameters, set the value to Default value: |
|
Boolean |
Defines if logs for GraphQL endpoints store information about the client that made the request. To log client information, set the value to true. Default value: |
Was this page useful?