-
Notifications
You must be signed in to change notification settings - Fork 17
Expand file tree
/
Copy pathapplication.yml
More file actions
115 lines (115 loc) · 3.91 KB
/
application.yml
File metadata and controls
115 lines (115 loc) · 3.91 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
server:
port: 8000
shutdown: graceful
consentmanager:
consentservice:
defaultPageSize: ${DEFAULT_PAGE_SIZE}
maxPageSize: ${MAX_PAGE_SIZE}
url: ${CONSENT_SERVICE_URL}
purposeOfUseDefUrl: classpath:/static/ValueSet/purpose-of-use.json
hiTypesDefUrl: classpath:/static/ValueSet/health-info-type.json
#in minutes
consentRequestExpiry: ${CONSENT_REQUEST_EXPIRY}
name: ${CONSENT_SERVICE_NAME:PHR-App}
scheduler:
consent-artefact-expiry-enabled: ${CONSENT_EXPIRY_CRON_ENABLED:true}
consent-request-expiry-enabled: ${CONSENT_EXPIRY_CRON_ENABLED:true}
consentExpiryCronExpr: ${CONSENT_EXPIRY_CRON_EXPRESSION}
consentRequestExpiryCronExpr: ${CONSENT_REQUEST_EXPIRY_CRON_EXPRESSION}
clientregistry:
url: ${Client_Registry_Url}
gatewayservice:
baseUrl: ${GATEWAY_BASE_URL}
requestTimeout: ${GATEWAY_REQUEST_TIMEOUT}
clientSecret: ${GATEWAY_CLIENT_SECRET}
clientId: ${GATEWAY_CLIENT_ID}
jwkUrl: ${CENTRAL_REGISTRY_JWK_URL}
userservice:
url: ${User_Service_Url}
transactionPinDigitSize: ${TRANSACTION_PIN_DIGIT_SIZE}
transactionPinTokenValidity: ${TRANSACTION_PIN_TOKEN_VALIDITY}
userCreationTokenValidity: ${USER_CREATION_TOKEN_VALIDITY}
userIdSuffix: ${USER_ID_SUFFIX}
maxOtpAttempts: ${MAX_OTP_ATTEMPTS}
maxOtpAttemptsPeriodInMin: ${MAX_OTP_ATTEMPTS_PERIOD_IN_MIN}
otpAttemptsBlockPeriodInMin: ${OTP_ATTEMPTS_BLOCK_PERIOD_IN_MIN}
maxIncorrectPinAttempts: 5
otpInvalidAttemptsBlockPeriodInMin: ${OTP_INVALID_ATTEMPT_BLOCK_PERIOD_IN_MIN}
otpMaxInvalidAttempts: ${MAX_INVALID_OTP_ATTEMPTS}
lockeduserservice:
maximumInvalidAttempts: ${MAXIMUM_INVALID_ATTEMPTS}
coolOfPeriod: ${COOL_OF_PERIOD}
otpservice:
url: ${Otp_Service_Url}
identifiers:
- MOBILE
expiryInMinutes: ${OTP_EXPIRY_IN_MINUTES}
jwt:
secret: ${JWT_SECRET}
authorization:
header: ${AUTHORIZATION_HEADER:Authorization}
keycloak:
baseUrl: ${KEY_CLOAK_URL}
clientId: ${KEY_CLOAK_CONSENT_CLIENT_ID}
clientSecret: ${KEY_CLOAK_CONSENT_CLIENT_SECRET}
userName: ${KEY_CLOAK_CONSENT_USER_NAME}
password: ${KEY_CLOAK_CONSENT_PASSWORD}
jwkUrl: ${KEY_CLOAK_JWK_URL}
issuer: ${KEY_CLOAK_TOKEN_ISSUER}
db:
host: ${POSTGRES_HOST}
port: ${POSTGRES_PORT:5432}
schema: ${CONSENT_MANAGER_DB_NAME}
user: ${POSTGRES_USER}
password: ${POSTGRES_PASSWORD}
poolSize: ${MASTER_POOL_SIZE:5}
replica-read-enabled: {REPLICA_READ_ENABLED:false}
replica:
host: ${POSTGRES_HOST}
port: ${POSTGRES_PORT:5432}
user: ${POSTGRES_USER}
password: ${POSTGRES_PASSWORD}
poolSize: ${REPLICA_POOL_SIZE:3}
dataflow:
consentmanager:
url: ${CONSENT_MANAGER_URL}
linkservice:
url: ${LINK_SERVICE_URL}
txnTimeout: ${LINK_TRANSACTION_TIMEOUT}
#Valid values are guava(for local), redis
cacheMethod: ${CACHE_METHOD:guava}
redis:
#Will not be used if cacheMethod is guava
host: ${REDIS_HOST:localhost}
port: ${REDIS_PORT:6379}
password: ${REDIS_PASSWORD:password}
keep-alive-enabled: ${KEEP_ALIVE_ENABLED:false}
read-from: ${READ_FROM:UPSTREAM}
retry: ${REDIS_RETRY:0}
listeners:
maximumRetries: ${LISTENERS_MAXIMUM_RETRIES}
# In milliseconds
retryInterval: ${LISTENERS_RETRY_INTERVAL}
nhsproperties:
hiuid: ${NHS_HIU_ID:12342345}
linktokencache:
expiry: ${LINK_TOKEN_CACHE_EXPIRY:1440}
spring:
rabbitmq:
host: ${RABBITMQ_HOST}
port: ${RABBITMQ_PORT}
username: ${RABBITMQ_USERNAME:guest}
password: ${RABBITMQ_PASSWORD:guest}
lifecycle:
timeout-per-shutdown-phase: 30s
keystore:
file-path: ${KEYSTORE_PATH:consent-manager-keystore.p12}
password: ${KEYSTORE_PASSWORD}
sign-artefact-keypair:
store-type: PKCS12
alias: ${SIGN_ARTEFACT_KEYPAIR_ALIAS:cm-sign-artefact}
pin-verification-keypair:
store-type: PKCS12
alias: ${PIN_VERIFICATION_KEYPAIR_ALIAS:cm-pin-verification}
webclient:
keepAlive: ${CM_KEEP_ALIVE:true}