Differences

This shows you the differences between two versions of the page.

--- devel:documentation:application_configuration:dev:backend [2019/10/23 21:25]
tomiskar [Reports]
+++ devel:documentation:application_configuration:dev:backend [2020/01/29 12:55]
tomiskar [Attachment storage]
@@ Line 218: / Line 218: @@
 # older temporary files will be purged, default 14 days
 idm.sec.core.attachment.tempTtl=1209600000
-#
-# Max file size of uploaded file. Values can use the suffixed "MB" or "KB" to indicate a Megabyte or Kilobyte size.
-multipart.max-file-size=1Mb
 </code>
@@ Line 229: / Line 225: @@
 #
 # Max file size of uploaded file. Values can use the suffixed "MB" or "KB" to indicate a Megabyte or Kilobyte size.
-multipart.max-file-size=1Mb
+multipart.max-file-size=100Mb
 </code>
@@ Line 681: / Line 677: @@
 idm.sec.core.authentication-filter.core-sso-authentication-filter.forbidden-uids=
 </code>
+=== Remote user authentication filter ===
+Login into IdM by preset request remote user by servlet container can be configured with following properties:
+<code properties>
+# Allow remote user authentication
+idm.sec.core.authentication-filter.core-remote-user-authentication-filter.enabled=false
+# The suffixes to remove from the login - usually domains
+idm.sec.core.authentication-filter.core-remote-user-authentication-filter.uid-suffixes=
+# The uids that can't be authenticated by SSO
+idm.sec.core.authentication-filter.core-remote-user-authentication-filter.forbidden-uids=
+</code>
+This authentication filter reuses SSO authentication filter behavior above (''uid-suffixes'', ''forbidden-uids''), but application administrator can be logged by this filter (identity with ''APP_ADMIN'' authority).
 ==== Backup ====