1.4 KiB
1.4 KiB
<html lang="en">
<head>
</head>
</html>
#DeployDB Authentication
Basic HTTP Authentication for Administrator
-
Following configuration enables basic authentication for REST APIs available over the admin port.
deploydb.launch.yml
http:
adminUsername: admin1234
adminPassword: password1234
LDAP Authentication for Users
-
LDAP Authentication can be enabled on REST APIs using following configuration
-
The cache-policy should be configured to improve application’s performance. More details can be found at http://docs.guava-libraries.googlecode.com/git/javadoc/com/google/common/cache/CacheBuilderSpec.html [CacheBuilderSpec]
deploydb.launch.yml
ldap:
uri: ldap://server.example.com:10389
# Cache 10000 credentials for at least 10 minutes
cachePolicy: maximumSize=10000, expireAfterWrite=10m
baseDC: "dc=example,dc=com"
bindDN: "cn=admin"
bindPassword: "secret"
userNamePrefix: cn
# Filter groups by ObjectClass associated with user
userObjectClass: posixUser
groupNamePrefix: cn
# Attribute that defines the association
groupMembershipPrefix: memberUid
# Filter groups by ObjectClass associated with group
groupObjectClass: posixGroup
distinguishedNamePrefix: dn
connectTimeout: 500ms
readTimeout: 500ms
Security
-
The https can be enabled in the launch config for end-to-end security
-
All of the REST APIs are available over HTTPS.