forked from AthenZ/athenz
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathathenz.properties
127 lines (93 loc) · 4.48 KB
/
athenz.properties
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
# Athenz Jetty Container properties file.
# If there is a value specified in the commented property line,
# then it indicates the default value
# The TLS port that Jetty will listen on for HTTPS connection
athenz.tls_port=4443
# The standard HTTP port for Jetty - disabled by default
athenz.port=0
# Set the number of days before rotated access log files are deleted
#athenz.access_log_retain_days=31
# Format of the access log filename
#athenz.access_log_name=access.yyyy_MM_dd.log
# If specified, the server will use SLF4J logger with the specified name
# to log events instead of using Jetty's NCSARequestLog class.
# The administrator then must configure the specified logger in the logback.xml
#athenz.access_slf4j_logger=
# Directory to store access log files
athenz.access_log_dir=/opt/athenz/zms/logs/zms_server
# Key Manager password
#athenz.ssl_key_manager_password=
# The path to the keystore file that contains the server's certificate
athenz.ssl_key_store=/opt/athenz/zms/var/certs/zms_keystore.pkcs12
# Specifies the type for the keystore specified in the
# athenz.ssl_key_store property
athenz.ssl_key_store_type=PKCS12
# Password for the keystore specified in the athenz.ssl_key_store property
#athenz.ssl_key_store_password=athenz
# The path to the trust store file that contains CA certificates
# trusted by this Jetty instance
athenz.ssl_trust_store=/opt/athenz/zms/var/certs/zms_truststore.jks
# Specifies the type for the truststore specified in the
# athenz.ssl_trust_store property
athenz.ssl_trust_store_type=JKS
# Password for the truststore specified in the athenz.ssl_trust_store property
#athenz.ssl_trust_store_password=athenz
# List of excluded cipher suites from TLS negotiation
#athenz.ssl_excluded_cipher_suites=
# List of cipher suites supported for TLS negotiation
#athenz.ssl_included_cipher_suites=
# Comma separated list of excluded ssl protocols
#athenz.ssl_excluded_protocols=SSLv2,SSLv3
# Specifies whether or not for data requests the server
# would require TLS client authentication rather than
# just wanting it
#athenz.ssl_need_client_auth=
# In milliseconds how long that connector will be allowed to
# remain idle with no traffic before it is shutdown
#athenz.http_idle_timeout=30000
# Boolean setting to specify whether or not the server should
# send the Server header in response
#athenz.http_send_server_version=false
# Boolean setting to specify whether or not the server should
# include the Date in HTTP headers
#athenz.http_send_date_header=false
# The size in bytes of the output buffer used to aggregate HTTP output
#athenz.http_output_buffer_size=32768
# The maximum allowed size in bytes for a HTTP request header
#athenz.http_request_header_size=8192
# The maximum allowed size in bytes for a HTTP response header
#athenz.http_response_header_size=8192
# For HTTP access specifies the IP address/Host for service to listen on.
# This could be necessary, for example, if the system administrator
# wants some proxy server (e.g. ATS) to handle TLS traffic and configure
# Jetty to listen on 127.0.0.1 loopback address only for HTTP connections
# from that proxy server
#athenz.listen_host=
# Boolean flag to indicate whether or not the container should honor
# the Keep Alive connection option or just connections right away
#athenz.keep_alive=false
# Max number of threads Jetty is allowed to spawn to handle incoming requests
#athenz.http_max_threads=1024
# Specify the FQDN/hostname of the server. This will be reported as part
# of the server banner notification in logs
#athenz.hostname=
# Default home directory for embedded Jetty Deployer. The container will look
# for any servlets in the webapps subdirectory of the configured directory
athenz.jetty_home=/opt/athenz/zms
# Boolean flag to enable debug log entries when deploying webapps
#athenz.debug=false
# Comma separated list of uris that are accessed by health check
# system. Used by the simple file based health check filter that
# returns 200/404 if the file exists or not
#athenz.health_check_uri_list=
# Directory name where the files specified in the athenz.health_check_uri_list
# setting are checked for
#athenz.health_check_path=
# Enable Proxy Protocol (used by HAProxy and environments such as Amazon Elastic Cloud)
# for the jetty container.
#athenz.proxy_protocol=false
# Enable graceful shutdown in the Jetty
athenz.graceful_shutdown=true
# How long to wait for the Jetty server to shutdown, in milliseconds
# If the athenz.graceful_shutdown is not true, this setting is invalid.
athenz.graceful_shutdown_timeout=30000