■ com.sun.identity.liberty.interaction.htmlStyleSheetLocation
Value is set during installation. Example:/opt/SUNWam/lib/is-html.xsl Specifies path to style sheet that renders the interaction page in HTML.
■ com.sun.identity.liberty.interaction.wmlStyleSheetLocation Value is set during installation. Example:/opt/SUNWam/lib/is-wml.xsl Specifies path to style sheet that renders the interaction page in WML.
Default value isinteractIfNeeded. Indicates whether a web service consumer participates in an interaction. Allowed values are:
interactIfNeeded Interacts only if required. Also used if an invalid value is specified.
doNotInteract No interaction.
doNotInteractForData No interaction for data.
■ com.sun.identity.liberty.interaction.wscSpecifiedMaxInteractionTime
Default value is80. Web service consumer's preference on the acceptable duration for interaction. The value is expressed in seconds. The default value is used if the value is not specified or if a non-integer value is specified.
■ com.sun.identity.liberty.interaction.wscWillEnforceHttpsCheck The default value isyes. Indicates whether a web service consumer enforces the
requirement that a request redirected to a URL uses HTTPS. Valid values areyesandno. The case is ignored. The Liberty specification requires the value to beyes. If no value is specified, the default value is used.
■ com.sun.identity.liberty.interaction.wscWillInlcudeUserInteractionHeader Default value isyes. If not value is specified, the default value is used. Indicates whether a web service consumer includesuserInteractionHeader. Allowable values areyesandno. The case is ignored.
■ com.sun.identity.liberty.interaction.wscWillRedirect
Default value isyes. Indicates whether the web service consumer redirects user for interaction. Valid values areyesandno. If not value is specified, the default value is used.
■ com.sun.identity.liberty.interaction.wspRedirectHandler Value is set during installation. Example:
http://hostName.domainName.com:portNumber/amserver/WSPRedirectHandler Specifies the URLWSPRedirectHandlerServletuses to handle Liberty WSF WSP-resource owner interactions based on user agent redirects. This should be running in the same JVM where the Liberty service provider is running.
■ com.sun.identity.liberty.interaction.wspRedirectTime
Default is30. Web service provider's expected duration for interaction. Expressed in seconds. If the value is not specified, or if the value is a non-integer, the default value is used.
■ com.sun.identity.liberty.interaction.wspWillEnforceHttpsCheck
Default value isyes. If no value is specified, the default value is used. Indicates whether the web service consumer enforces the requirement thatreturnToURLuse HTTPS. Valid values areyesandno. (case ignored) the Liberty specification requires the value to beyes.
wspWillEnforceReturnToHostEqualsRequestHost
The Liberty specification requires the value to beyes. Indicates whether the web service consumer enforces thatreturnToHostandrequestHostare the same. Valid values areyes andno.
■ com.sun.identity.liberty.interaction.wspWillRedirect
Default isyes. If no value is specified, the default value is used. Indicates whether a web service provider redirects the user for interaction. Valid values areyesandno. Case is ignored.
■ com.sun.identity.liberty.interaction.wspWillRedirectForData
Default value isyes. If no value is specified, the default value is used. Indicates whether the web service provider redirects the user for interaction for data. Valid values areyesandno. Case is ignored. ■ com.sun.identity.liberty.ws.jaxb.namespacePrefixMappingList Default value is =S=http://schemas.xmlsoap.org/soap/envelope/|sb=urn:liberty:sb:2003-08 |pp=urn:liberty:id-sis-pp:2003-08|ispp=http://www.sun.com/identity/ liberty/pp|is=urn:liberty:is:2003-08
. Specifies the namespace prefix mapping used when marshalling a JAXB content tree to a DOM tree. The syntax isprefix=namespace|prefix=namespace|...
■ com.sun.identity.liberty.ws.jaxb.packageList
Specifies JAXB package list used when constructingJAXBContext. Each package must be separated by a colon (:).
■ com.sun.identity.liberty.ws.security.TokenProviderImpl Default value is
com.sun.identity.liberty.ws.security.AMSecurityTokenProviderDescription.
■ com.sun.identity.liberty.ws.soap.certalias
Value is set during installation. Client certificate alias that will be used in SSL connection for Liberty SOAP Binding.
■ com.sun.identity.liberty.ws.soap.messageIDCacheCleanupInterval
Default value is60000. Specifies the number of milliseconds to elapse before cache cleanup events begin. Each message is stored in a cache with its ownmessageIDto avoid duplicate messages. When a message's current time less the received time exceeds thestaleTimeLimit value, the message is removed from the cache.
Default value is300000. Determines if a message is stale and thus no longer trustworthy. If the message timestamp is earlier than the current timestamp by the specified number of milliseconds, the message the considered to be stale.
■ com.sun.identity.liberty.ws.soap.supportedActors
Default value ishttp://schemas.xmlsoap.org/soap/actor/next. Specifies supported SOAP actors. Each actor must be separated by a pipe character (|).
■ com.sun.identity.liberty.ws.ta.certalias
Value is set during installation. Specifies certificate alias for the trusted authority that will be used to sign SAML or SAML. BEARER token of response message.
■ com.sun.identity.liberty.ws.wsc.certalias
Value is set during installation. Specifies default certificate alias for issuing web service security token for this web service client.
■ com.sun.identity.liberty.ws.ta.certalias
Value is set during installation. Specifies certificate alias for trusted authority that will be used to sign SAML or SAML. BEARER token of response message.
■ com.sun.identity.liberty.ws.trustedca.certaliases Value is set during installation.
Specifies certificate aliases for trusted CA. SAML or SAML BEARER token of incoming request. Message must be signed by a trusted CA in this list. The syntax is
cert alias 1[:issuer 1]|cert alias 2[:issuer 2]|...
Example:myalias1:myissuer1|myalias2|myalias3:myissuer3.
The valueissueris used when the token doesn't have aKeyInfoinside the signature. The issuer of the token must be in this list, and the corresponding certificate alias will be used to verify the signature. IfKeyInfoexists, the keystore must contain a certificate alias that matches theKeyInfoand the certificate alias must be in this list.
■ com.sun.identity.liberty.ws.security.TokenProviderImpl
Value is set during installation. Specifies implementation for security token provider.
■ com.sun.identity.saml.removeassertion
Default value istrue. A flag to indicate if de-referenced assertions should be removed from the cache. Applies to assertions that were created associated with artifacts, and have been de-referenced.