|
<< Click to Display Table of Contents >> Appendix |
  
|
|
<< Click to Display Table of Contents >> Appendix |
|
Configuration items for standard single sign-on, as shown in the following table:
(you can configure it in bi.properties if you want to use it)
Configuration item |
Type |
Default Value |
Correlation module |
description |
|---|---|---|---|---|
standardsso.enabled |
String |
true |
Standard single sign-on |
Whether to enable single sign-on,It is enabled by default. |
standardsso. callback.url |
String |
None |
Standard single sign-on |
The url, of the callback interface provided by the client system is used to verify that the token is legal. |
standardsso. callback.url. **** |
String |
None |
Standard single sign-on |
The value of the url,* of the multiple callback interfaces provided by the client system is the value of the incoming sysFlag. Select the corresponding callback url. based on different sysFlag For example, the incoming sysFlag is test, and the value for the standardsso.callback.url.test attribute is a callback url,. If sysFlag is empty, the address of the standardsso.callback.url will be read by default. |
standardsso. allowType |
String |
None |
Standard single sign-on |
Automatically create users need to set access to Yonghong system, otherwise nothing is allowed to view. These optional values are available: viewerDb,viewerManager,editor,query,conn,ml
ViewerDb: grants access to a report (for embedding a Yonghong report into a client system, you only want to give users access to that report. Reports in url are automatically granted to the current user view)
ViewerManager: grants permission to the viewing report function module (automatically grants users access to the function module when the function module is embedded in permanent flood to the customer system)
Editor: grants access to the edit report module (the system automatically grants users access to the function module when the function module is embedded in permanent flood to the customer system) Query: grants access to the new query module (the system automatically grants users access to the new query module when a function module embedded in permanent flood is added to the client system) Conn: authorizes access to the new data source module (the system automatically grants users access to the function module when a function module embedded in Yonghong is to the customer system) Ml: authorizes access depth analysis modules (the system automatically grants users access to the function module when the function module is embedded in permanent flood to the customer system) Automatically created users can be configured with one or more permissions, or not configured. When configured, Yonghong automatically grants view permissions when it detects that the user does not have permission to access these modules. The default is null, that is, no permissions are granted. |
standardsso. autoCreateUser |
String |
None |
Standard single sign-on |
Whether or not to create users automatically, there are only two optional values, true or false. When true is selected, the user returned from the Token interface is automatically created into the specified group if it does not exist in Yonghong, and the initial password of the new user is a random number of 8 bits. When you select false, the user is not automatically created and is prompted on the page that the user does not exist. |
standardsso. saveUserDir |
String |
None |
Standard single sign-on |
Automatically create a user under a user group. The default configuration group name is single sign-on. Note: this user group does not need to be manually created, the system will be automatically created, it is recommended to configure a directory, so it is easy to find out which users are created through a single login. Note: you cannot have\ /: *? "< > | Special characters." |
standardsso.autoUpdateGroup |
String |
false |
Standard single sign-on |
Whether or not to automatically update the group to which the user belongs, there are only two optional values, true or false. When you select true, the user group userGroups parameter that returns based on the interface, and when the parameter is not an empty or empty string, updates the user below the group (which is automatically created if the group does not exist). When you select false, the group information that the user belongs to is not updated according to this parameter. |
standardsso.autoUpdateRole |
String |
false |
Standard single sign-on |
Whether or not to update the user's role automatically, there are only two optional values, true or false. When true is selected, the user's role information is updated based on the user role userRoles parameter returned from the interface, and the parameter is not an empty or empty string (the role does not exist automatically created). When you select false, the user's role information is not updated according to this parameter. |
standardsso.autoUpdateUser |
String |
false |
Standard single sign-on |
Whether or not to update user information automatically, there are only two optional values, true or false. When you select true, the user information is updated based on the user information returned from the interface. When you select false, the user information is not updated. |
standardsso.anonymous.url |
String |
api,TokenChecked |
Standard single sign-on |
Url, without single sign-on blocking will be released directly when the user requests these url, without single sign-on authentication. Note to configure callback url, for example: api,TokenChecked |
standardsso.token.invalid.jumpurl |
String |
None |
Standard single sign-on |
If the token verification interface succeeds but returns the wrong state, if the jump address is configured, it jumps to the url. |