# This defines the different security domains to be installed, and for each security domain define the different login modules
#  security-domain ==> 1* ==> login modules
#
#  Example:
#     domain-a  
#	-  ldap
#	-  roleMapping
#     domain-b
#	-  realmDirect
#
#  Module name - value pairs will be defined by 2 properties.  
#  Example:
#           realmdirect_MODULE_OPTION_NAME_1="password-stacking"
#           realmdirect_MODULE_OPTION_VALUE_1="useFirstPass"
#
#  This is required because property names cannot have a dash (-) in the name

# props for secure transport
DATAVIRT_TRANSPORT_KEY_ALIAS=keyalias
DATAVIRT_TRANSPORT_KEYSTORE=keystore.jks
DATAVIRT_TRANSPORT_KEYSTORE_PASSWORD=P@ssword1
DATAVIRT_TRANSPORT_KEYSTORE_TYPE=JKS
DATAVIRT_TRANSPORT_KEYSTORE_DIR="/opt/eap/standalone"
DATAVIRT_TRANSPORT_AUTHENTICATION_MODE=1-way

# comma separated list of security domains to create
SECURITY_DOMAINS=teiid_security

# The following are the 3 Teiid transports for accessing JDV, and each has a defined named security domain (securty-domain)+LOGIN_MODULE_NAME
JDBC_SECURITY_DOMAIN=teiid-security
ODBC_SECURITY_DOMAIN=teiid-security
ODATA_SECURITY_DOMAIN=teiid-security


#### SECURITY DOMAINS ##########

teiid_security_SECURITY_DOMAIN_NAME=teiid-security

teiid_security_SECURITY_DOMAIN_CACHE_TYPE=default

teiid_security_SECURITY_DOMAIN_LOGIN_MODULES=ldap,rolemapping


#### LDAP #######

ldap_LOGIN_MODULE_CODE=LdapExtended

#  required, optional, sufficient
ldap_LOGIN_MODULE_FLAG=required

# ldap_LOGIN_MODULE_MODULE=

ldap_MODULE_OPTION_NAME_java_naming_provider_url="java.naming.provider.url"
ldap_MODULE_OPTION_VALUE_java_naming_provider_url="hosturl"



###### RoleMapping ########

rolemapping_LOGIN_MODULE_CODE=RoleMapping

#  required, optional, sufficient
rolemapping_LOGIN_MODULE_FLAG=optional

#rolemapping_MODULE_OPTION_NAME_rolesProperties="file:///${jboss.server.config.dir}/datavirt-roles.properties"
#rolemapping_MODULE_OPTION_VALUE_rolesProperties="file:///${jboss.server.config.dir}/datavirt-roles.properties"

rolemapping_MODULE_OPTION_NAME_replaceRole=false
rolemapping_MODULE_OPTION_VALUE_replaceRole=false