# --------------------------------------------------------------------------- # Database configuration # --------------------------------------------------------------------------- # The database instance local unique identifier. Used when the new database is created. database-instance = DEFAULT # The host and optionally port. Default is 'localhost'. # database.url-host-part = database.kind = prod # User who owns the database. Default: Operating system user running the server. database.owner = database.owner-password = # Superuser of the database. Default: database-dependent. database.admin-user = database.admin-password = # Max. number of active database connections. Default: 20. database.max-active-connections = # Max. number of idle database connections to keep open. Default: 20. database.max-idle-connections = # Log interval (in seconds) between two regular log entries of the number of active database # connections. Default: 3600s. database.active-connections-log-interval = # --------------------------------------------------------------------------- # Imaging database for screening and microscopy (optional, only used if screening technology switched on) # --------------------------------------------------------------------------- # imaging-database.url-host-part = localhost # imaging-database.kind = prod # imaging-database.owner = # imaging-database.password = # --------------------------------------------------------------------------- # Proteomics database (optional, only used if proteomics technology switched on) # --------------------------------------------------------------------------- # proteomics-basic-database-name = proteomics # proteomics-database-kind = productive # proteomics-database-owner = # proteomics-database-password = # --------------------------------------------------------------------------- # Authentication configuration # --------------------------------------------------------------------------- # Supported Authentication options are: # 'file-authentication-service' # 'ldap-authentication-service' # 'crowd-authentication-service' # 'file-crowd-authentication-service' # 'file-ldap-authentication-service' # 'stacked-authentication-service' : ldap - crowd # For a detailed description please have a look at the Installation and Administrator # Guide of the openBIS Server: https://wiki-bsse.ethz.ch/x/oYIUBQ authentication-service = file-authentication-service # --------------------------------------------------------------------------- # Crowd configuration # --------------------------------------------------------------------------- crowd.service.host = crowd-bsse.ethz.ch crowd.service.port = 8443 crowd.application.name = openbis crowd.application.password = # --------------------------------------------------------------------------- # LDAP configuration # --------------------------------------------------------------------------- # The URL of the LDAP server, e.g. "ldap://d.ethz.ch/DC=d,DC=ethz,DC=ch" ldap.server.url = # The distinguished name of the security principal, # e.g. "CN=carl,OU=EthUsers,DC=d,DC=ethz,DC=ch" ldap.security.principal.distinguished.name = # Password of the LDAP user account that will be used to login to the LDAP server to perform the queries ldap.security.principal.password = # The security protocol to use, use "ssl" or "none", default is "ssl" ldap.security.protocol = # The authentication method to use: "none" (no authentication), "simple", "strong" (SASL), defaults to "simple" ldap.security.authentication-method = # The referral mode: # "follow" - follow referrals automatically (the default) # "ignore" - ignore referrals # "throw" - throw ReferralException when a referral is encountered ldap.referral = # The attribute name for the user id, defaults to "uid" ldap.attributenames.user.id = # The attribute name for the email, defaults to "mail" ldap.attributenames.email = # The attribute name for the first name, defaults to "givenName" ldap.attributenames.first.name = # The attribute name for the last name, defaults to "sn" ldap.attributenames.last.name = # Set to true to also query for email aliases ldap.queryEmailForAliases = true # The query template, needs to contain %s which will be filled with the query term, e.g. uid=username # The default is: # ldap.queryTemplate = (&(objectClass=organizationalPerson)(objectCategory=person)(objectClass=user)(%s)) # which is known to work for many Active Directory installations. # For OpenLDAP, replace by: # ldap.queryTemplate = (&(%s)) # For restriction to BSSE accounts in OpenLDAP, set to: # ldap.queryTemplate = (&(objectClass=bssePosixAccount)(%s)) ldap.queryTemplate = # The number of times a failed LDAP query is retried at the max. Default: 1. ldap.maxRetries = # The timeout (in ms) to wait for an LDAP query to return, -1 for "wait indefinitely". Default: 10000. ldap.timeout = # Time time (in ms) to wait after a failure before retrying the query. Default: 10000. ldap.timeToWaitAfterFailure= # --------------------------------------------------------------------------- # Anonymous login configuration (optional) # --------------------------------------------------------------------------- # Login of the existing user whose settings will be used for anonymous login #user-for-anonymous-login = # --------------------------------------------------------------------------- # Client configuration # --------------------------------------------------------------------------- # Name of the file that stores Web Client configuration web-client-configuration-file = etc/web-client.properties # A comma-separated list of trusted cross-origin domains, that are allowed to # query openBIS content. Typically these are lightweight webapps that integrate with openBIS # via JSON-RPC services, but are not directly hosted within the openBIS application. # # Example 1 (two different domains configured): # # trusted-cross-origin-domains=https://myapp.domain.com:8443, http://other.domain.com # # Example 2 (match every domain): # # trusted-cross-origin-domains= * # # The '*' matches any arbitrary domain. It should be used with care as it opens openBIS # for potential cross-site scripting attacks. # #trusted-cross-origin-domains= # --------------------------------------------------------------------------- # Session configuration # --------------------------------------------------------------------------- # The time after which an inactive session is expired by the service (in minutes). session-timeout = 720 # Session time (in minutes) in case of presents of file etc/nologin.html. Should be < 30. #session-timeout-no-login = 10 # --------------------------------------------------------------------------- # Business rules configuration # --------------------------------------------------------------------------- # When set to "true" enables the system to store material codes containing non-alphanumeric characters. # Regardless of the value of this property no white spaces are allowed in the material codes. #material-relax-code-constraints=false # Comma-separated list of regular expression of data set types which do not require that the data set # is linked to an experiment. If not linked to an experiment a link to a sample with space is required. data-set-types-with-no-experiment-needed = .* # When set to 'true' the sequence of sample codes is gap less for each type if all samples are created by # batch registrations. #create-continuous-sample-codes = false # --------------------------------------------------------------------------- # CIFEX connection configuration. # --------------------------------------------------------------------------- # The URL of the CIFEX server cifex-url = https://cifex.ethz.ch:443 # Cifex users that will receive and automatically manage uploaded data. # The user names should be prepended with 'id:' prefix for example. # Example: # cifex-recipient = id:dropboxuser, id:backpuser cifex-recipient = # --------------------------------------------------------------------------- # Hibernate Search # --------------------------------------------------------------------------- # The working directory. hibernate.search.index-base = ./indices # One of NO_INDEX, SKIP_IF_MARKER_FOUND, INDEX_FROM_SCRATCH. # If not specified, default (SKIP_IF_MARKER_FOUND) is taken. hibernate.search.index-mode = SKIP_IF_MARKER_FOUND # Defines the maximum number of elements indexed before flushing the transaction-bound queue. # Default is 1000. hibernate.search.batch-size = 1000 # Maximum number of search results hibernate.search.maxResults = 100000 # If 'async', the update of indices will be done in a separate thread. hibernate.search.worker.execution=async # --------------------------------------------------------------------------- # Online Help # --------------------------------------------------------------------------- # Online help is broken into two sections -- generic and specific. Generic help links back to # the CISD. Specific help is provided by the host of the installation # # OpenBIS needs to know the root URL for the online help and a template for the individual pages. # The template should have on parameter, called title, and should be constructed to automatically # create the page if it does not already exist. # The template can be created by going to the root page, adding a new link to the page, and # replacing the title of the new page with the ${title} onlinehelp.generic.root-url = https://wiki-bsse.ethz.ch/display/CISDDoc/OnlineHelp onlinehelp.generic.page-template = https://wiki-bsse.ethz.ch/pages/createpage.action?spaceKey=CISDDoc&title=${title}&linkCreation=true&fromPageId=40633829 #onlinehelp.specific.root-url = https://wiki-bsse.ethz.ch/display/CISDDoc/OnlineHelp #onlinehelp.specific.page-template = https://wiki-bsse.ethz.ch/pages/createpage.action?spaceKey=CISDDoc&title=${title}&linkCreation=true&fromPageId=40633829 # --------------------------------------------------------------------------- # JMX memory monitor # --------------------------------------------------------------------------- # Interval between two runs of the memory monitor (in seconds). # Set to -1 to disable the memory monitor. memorymonitor-monitoring-interval = 60 # Interval between two regular log call of the memory monitor (in seconds). # Set to -1 to disable regular memory usage logging. memorymonitor-log-interval = 3600 # The percentage of memory that, if exceeded, triggers a notify log of the memory manager, # Set to 100 to disable. memorymonitor-high-watermark-percent = 90 # --------------------------------------------------------------------------- # Database Configurations for Query module (optional) # --------------------------------------------------------------------------- # Comma separated keys of databases configured for Query module. # Each database should have configuration properties prefixed with its key. # Mandatory properties for each include: # .label - name shown to the openBIS user when adding or editing a customized query # .database-driver - JDBC Driver of the database (e.g. org.postgresql.Driver) # .database-url - JDBC URL to the database (e.g. jdbc:postgresql://localhost/openbis) # Optional properties for each include: # .database-user - name of the database user (default: user.name from system properties) # .database-password - password of the database user # .creator-minimal-role - minimal role required to create/edit queries on this database (default: POWER_USER) # .data-space - If NOT specified OBSERVER of any space will be allowed to perform # queries and of any space will allowed # to create/edit queries on this DB. # - If specified only OBSERVER of the space will be allowed to perform # queries and of the space will allowed # to create/edit queries on this DB. #query-databases = openbisDB # #openbisDB.label = openBIS meta data #openbisDB.data-space = CISD #openbisDB.creator-minimal-role = SPACE_ADMIN #openbisDB.database-driver = org.postgresql.Driver #openbisDB.database-url = jdbc:postgresql://localhost/openbis_${database.kind} #openbisDB.database-username = #openbisDB.database-password = # --------------------------------------------------------------------------- # Maintenance plugins configuration (optional) # --------------------------------------------------------------------------- # Comma separated names of maintenance plugins. # Each plugin should have configuration properties prefixed with its name. # Mandatory properties for each include: # .class - Fully qualified plugin class name # .interval - The time between plugin executions (in seconds) # Optional properties for each include: # .start - Time of the first execution (HH:mm) # .execute-only-once - If true the task will be executed exactly once, # interval will be ignored. By default set to false. #maintenance-plugins = demo # #demo.class = ch.systemsx.cisd.openbis.generic.server.task.DemoMaintenanceTask #demo.interval = 60 #demo.property_1 = some value #demo.property_2 = some value 2 # # Internal - do not change # # Authorization # Supported: 'no-authorization' and 'active-authorization' authorization-component-factory = active-authorization script-folder = . jython-version=2.7