From ab5ee2d4ce27ec1e0efb8e41957bda50cedae187 Mon Sep 17 00:00:00 2001 From: Jean-Noel Rouvignac <jean-noel.rouvignac@forgerock.com> Date: Fri, 12 Apr 2013 09:00:23 +0000 Subject: [PATCH] OPENDJ-830 (CR-1538) Implement authentication and authorization for HTTP connection handler --- opends/src/admin/messages/HTTPConnectionHandlerCfgDefn.properties | 4 +++- 1 files changed, 3 insertions(+), 1 deletions(-) diff --git a/opends/src/admin/messages/HTTPConnectionHandlerCfgDefn.properties b/opends/src/admin/messages/HTTPConnectionHandlerCfgDefn.properties index d606222..b3babda 100644 --- a/opends/src/admin/messages/HTTPConnectionHandlerCfgDefn.properties +++ b/opends/src/admin/messages/HTTPConnectionHandlerCfgDefn.properties @@ -12,6 +12,8 @@ property.allowed-client.requires-admin-action.synopsis=Changes to this property take effect immediately and do not interfere with connections that may have already been established. property.allow-tcp-reuse-address.synopsis=Indicates whether the HTTP Connection Handler should reuse socket descriptors. property.allow-tcp-reuse-address.description=If enabled, the SO_REUSEADDR socket option is used on the server listen socket to potentially allow the reuse of socket descriptors for clients in a TIME_WAIT state. This may help the server avoid temporarily running out of socket descriptors in cases in which a very large number of short-lived connections have been established from the same client system. +property.authentication-required.synopsis=Specifies whether only authenticated requests can be processed by the HTTP Connection Handler. +property.authentication-required.description=If true, only authenticated requests will be processed by the HTTP Connection Handler. If false, both authenticated requests and unauthenticated requests will be processed. All requests are subject to ACI limitations and unauthenticated requests are subject to server limits like maximum number of entries returned. Note that setting ds-cfg-reject-unauthenticated-requests to true will override the current setting. property.buffer-size.synopsis=Specifies the size in bytes of the HTTP response message write buffer. property.buffer-size.description=This property specifies write buffer size allocated by the server for each client connection and used to buffer HTTP response messages data when writing. property.config-file.synopsis=Specifies the name of the configuration file for the HTTP Connection Handler. @@ -31,7 +33,7 @@ property.listen-port.description=Only a single port number may be provided. property.max-blocked-write-time-limit.synopsis=Specifies the maximum length of time that attempts to write data to HTTP clients should be allowed to block. property.max-blocked-write-time-limit.description=If an attempt to write data to a client takes longer than this length of time, then the client connection is terminated. -property.max-request-size.synopsis=Specifies the size in bytes of the largest HTTP request message that will be allowed by this HTTP Connection handler. +property.max-request-size.synopsis=Specifies the size in bytes of the largest HTTP request message that will be allowed by the HTTP Connection Handler. property.max-request-size.description=This can help prevent denial-of-service attacks by clients that indicate they send extremely large requests to the server causing it to attempt to allocate large amounts of memory. property.ssl-cert-nickname.synopsis=Specifies the nickname (also called the alias) of the certificate that the HTTP Connection Handler should use when performing SSL communication. property.ssl-cert-nickname.description=This is only applicable when the HTTP Connection Handler is configured to use SSL. -- Gitblit v1.10.0