Next: Example of a complete
Up: Axis Authorization Handler
Previous: Internal structure
The configuration parameters of the Axis Authorization Handler are specified
in a text file, in ``key=value'' format. This file is loaded upon startup and
its content overrides the default values hardwired in the code.
Parameters:
- authzManagerConfig: mandatory.
String value that indicates the pathname of the XML configuration file for the
Authorization Manager.
- authzManagerConfigElement: optional.
String value that indicates the name of the XML element, in the XML
configuration file, that contains the Authorization Manager definition.
The default value is the root element.
- log4jConfigFile: mandatory.
String value that indicates the pathname of the configuration file to be used
by log4j.
- silent: optional.
Boolean value (`true'/`false') that indicates if the amount of log information
must be very small. The default value is `false'.
- defaultPolicy: optional.
String value that indicates the name of the Policy in Authorization Manager
to be used by default by the Authorization Handler. This Policy is used when
the SOAP header of the incoming request does not contain any element
specifying the Policy requested by the client.
The default value is `null', meaning the Authorization Handler uses the
default Policy of the Authorization Manager.
- shortcutOnError: optional.
Boolean value (`true'/`false') that indicates if the Authorization Handler
must block and terminate any SOAP request that fails the authorization.
The default value is `true', meaning that requests are blocked.
- authzAttributeNameSpace: optional.
String value that indicates the name space of the SOAP header element
containing the attribute requested by the client.
The default value is `http://soap.edg.org/security/authorization'.
- authzAttributeName: optional.
String value that indicates the name of the SOAP header element containing
the attribute requested by the client.
The default value is `role'.
- authzPolicyNameSpace: optional.
String value that indicates the name space of the SOAP header element
containing the Policy requested by the client.
The default value is `http://soap.edg.org/security/authorization'.
- authzPolicyName: optional.
String value that indicates the name of the SOAP header element containing
the Policy requested by the client.
The default value is `policy'.
- authzVomsNameSpace: optional.
String value that indicates the name space of the SOAP header element
containing the client VOMS header.
The default value is `http://soap.edg.org/security/authorization'.
- authzVomsName: optional.
String value that indicates the name of the SOAP header element containing
the client VOMS header.
The default value is `voms'.
- authzContextName: optional.
String value that indicates the name of the property of the MessageContext in
which the authorized attribute is stored.
The default value is `org.edg.security.authorization.value'.
- AuthorizedRole: optional.
String value that indicates the only role authorized to change the
configuration of the Authorization Manager.
The default value is `Administrator'.
- AuthorizedPolicy: optional.
String value that indicates the only Policy to be used for the authorization
of incoming client requests directed to the Administration GUI.
The default value is `adminPolicy'.
Subsections
Next: Example of a complete
Up: Axis Authorization Handler
Previous: Internal structure
2004-07-02