From beeaef7573e393d812861be0a4d0b684bfec6e1a Mon Sep 17 00:00:00 2001 From: Ajay1596 <44763643+Ajay1596@users.noreply.github.com> Date: Tue, 2 Mar 2021 17:03:18 +0530 Subject: [PATCH 0001/1358] adding idschemaversion --- sandbox/pre-registration-demographic.json | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/sandbox/pre-registration-demographic.json b/sandbox/pre-registration-demographic.json index 6580384ab56..aba08a857ba 100644 --- a/sandbox/pre-registration-demographic.json +++ b/sandbox/pre-registration-demographic.json @@ -1,5 +1,16 @@ { "identity":[ + + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, { "id":"fullName", "description":"Enter Full Name", From 1034cc68f46856dc62857c28c0f4af64d03abf36 Mon Sep 17 00:00:00 2001 From: M1022006 <sowmya.goudar@mindtree.com> Date: Wed, 3 Mar 2021 11:06:03 +0530 Subject: [PATCH 0002/1358] updated PMS apis --- sandbox/data-share-mz.properties | 2 +- sandbox/id-repository-mz.properties | 4 ++-- sandbox/registration-processor-mz.properties | 4 ++-- sandbox/resident-mz.properties | 4 ++-- 4 files changed, 7 insertions(+), 7 deletions(-) diff --git a/sandbox/data-share-mz.properties b/sandbox/data-share-mz.properties index daebeac17bc..0cd6cc95616 100644 --- a/sandbox/data-share-mz.properties +++ b/sandbox/data-share-mz.properties @@ -4,7 +4,7 @@ mosip.data.share.service.version=1.0 #--------------URI-------------------------- CRYPTOMANAGER_ENCRYPT=http://kernel-keymanager-service/v1/keymanager/encrypt KEYMANAGER_JWTSIGN=http://kernel-keymanager-service/v1/keymanager/jwtSign -PARTNER_POLICY=http://pms-policy-management-service/partnermanagement/v1/policies/policies/partnerId/{partnerId}/policyId/{policyId} +PARTNER_POLICY=http://pms-policy-manager-service/v1/policymanager/policies/{policyId}/partner/{partnerId} KEYBASEDTOKENAPI=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey #---------config-data----------------------- diff --git a/sandbox/id-repository-mz.properties b/sandbox/id-repository-mz.properties index da98f405902..a021ac75a93 100644 --- a/sandbox/id-repository-mz.properties +++ b/sandbox/id-repository-mz.properties @@ -298,8 +298,8 @@ KEYBASEDTOKENAPI=http://kernel-auth-service/v1/authmanager/authenticate/clientid KEYMANAGER_JWTSIGN=http://kernel-keymanager-service/v1/keymanager/jwtSign KEYMANAGER_ENCRYPT_PIN=http://kernel-keymanager-service/v1/keymanager/encryptWithPin KEYMANAGER_ENCRYPT_ZK=http://kernel-keymanager-service/v1/keymanager/zkEncrypt -PARTNER_POLICY=http://pms-partner-service/partnermanagement/v1/partners/partners/partnerId/{partnerId}/credentialType/{credentialType} -PARTNER_EXTRACTION_POLICY=http://pms-partner-service/partnermanagement/v1/partners/partners/partnerId/{partnerId}/policyId/{policyId} +PARTNER_POLICY=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +PARTNER_EXTRACTION_POLICY=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} credential.service.token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index a55f9bda230..959f6515675 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -120,7 +120,7 @@ POSTALCODE=${MASTER}/locations/validate PROVINCE=${MASTER}/locations/validate USERDETAILS=${MASTER}/users TEMPLATES=${MASTER}/templates -DEVICEVALIDATEHISTORY=http://pms-partner-service/partnermanagement/v1/partners/deviceprovidermanagement/validate +DEVICEVALIDATEHISTORY=http://pms-partner-manager-service/v1/partnermanager/deviceprovidermanagement/validate #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest @@ -167,7 +167,7 @@ PACKETRECEIVER=${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/r SMSNOTIFIER=http://kernel-notification-service/v1/notifier/sms/send EMAILNOTIFIER=http://kernel-notification-service/v1/notifier/email/send -PMS=http://pms-policy-management-service/partnermanagement/v1/policies/policies/partnerId +PMS=http://pms-policy-manager-service/v1/policymanager/policies/{policyId}/partner/{partnerId} #---------Registration Status--------- diff --git a/sandbox/resident-mz.properties b/sandbox/resident-mz.properties index e09a0a0a8b2..fd01880cba8 100644 --- a/sandbox/resident-mz.properties +++ b/sandbox/resident-mz.properties @@ -76,13 +76,13 @@ REGISTRATIONSTATUSSEARCH=${dmz.ingress.base.url}/registrationprocessor/v1/regist resident.center.id=10001 resident.machine.id=10001 #Credential Req service -POLICY_REQ_URL=http://pms-partner-service/partnermanagement/v1/partners/partners +POLICY_REQ_URL=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies OTP_GEN_URL=http://ida-internal-service/idauthentication/v1/internal/otp CREDENTIAL_STATUS_URL=http://idrepo-credential-request-generator/v1/credentialrequest/get/ CREDENTIAL_REQ_URL=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator CREDENTIAL_CANCELREQ_URL=http://idrepo-credential-request-generator/v1/credentialrequest/cancel/ CREDENTIAL_TYPES_URL=http://idrepo-credential-service/v1/credentialservice/types -PARTNER_API_URL=http://pms-partner-service/partnermanagement/v1/partners/partners/ +PARTNER_API_URL=http://pms-partner-manager-service/v1/partnermanager/partners mosip.kernel.masterdata.audit-url=http://kernel-auditmanager-service/v1/auditmanager/audits #----------------------config data--------------------- From c79e0b7c9c6524358aaa3cc53135e5d5fe3b1f98 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <Loganathan.Sekar@mindtree.com> Date: Wed, 3 Mar 2021 12:00:20 +0530 Subject: [PATCH 0003/1358] Updated pms urls --- sandbox/id-authentication-mz.properties | 2 +- sandbox/id-repository-mz.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sandbox/id-authentication-mz.properties b/sandbox/id-authentication-mz.properties index 0d831d84288..84401290a82 100644 --- a/sandbox/id-authentication-mz.properties +++ b/sandbox/id-authentication-mz.properties @@ -183,7 +183,7 @@ auth-token-generator.rest.secretKey=${mosip.ida.auth.secretKey} auth-token-generator.rest.appId=${mosip.ida.auth.appId} # Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination -id-pmp-service.rest.uri=http://pms-partner-management-service/partnermanagement/v1/pmpartners/pmpartners/validatePartnerMisp/partnerId/{partner_id}/partnerApiKey/{partner_api_key}/mispLicenseKey/{misp_license_key}?needPartnerCert={need_partner_cert} +id-pmp-service.rest.uri=http://pms-partner-management-service/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET id-pmp-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-pmp-service.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/sandbox/id-repository-mz.properties b/sandbox/id-repository-mz.properties index da98f405902..90e4365c1bb 100644 --- a/sandbox/id-repository-mz.properties +++ b/sandbox/id-repository-mz.properties @@ -178,7 +178,7 @@ mosip.idrepo.syncdata-service.rest.httpMethod=GET mosip.idrepo.syncdata-service.rest.headers.mediaType=application/json mosip.idrepo.syncdata-service.rest.timeout=100 -mosip.idrepo.pmp.partner.rest.uri=http://pms-partner-management-service/partnermanagement/v1/pmpartners/pmpartners?partnerType=Online_Verification_Partner +mosip.idrepo.pmp.partner.rest.uri=http://pms-partner-management-service/v1/partnermanager/partners?partnerType=Online_Verification_Partner mosip.idrepo.pmp.partner.rest.httpMethod=GET mosip.idrepo.pmp.partner.rest.headers.mediaType=application/json mosip.idrepo.pmp.partner.rest.timeout=10 From e6499cfac3473ed2fe2725e1b44c59d9cbee4fcc Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <Loganathan.Sekar@mindtree.com> Date: Wed, 3 Mar 2021 12:39:50 +0530 Subject: [PATCH 0004/1358] Corrected pms base url --- sandbox/id-authentication-mz.properties | 2 +- sandbox/id-repository-mz.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/sandbox/id-authentication-mz.properties b/sandbox/id-authentication-mz.properties index 84401290a82..92b1eb41ac2 100644 --- a/sandbox/id-authentication-mz.properties +++ b/sandbox/id-authentication-mz.properties @@ -183,7 +183,7 @@ auth-token-generator.rest.secretKey=${mosip.ida.auth.secretKey} auth-token-generator.rest.appId=${mosip.ida.auth.appId} # Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination -id-pmp-service.rest.uri=http://pms-partner-management-service/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} +id-pmp-service.rest.uri=http://pms-partner-manager-service/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET id-pmp-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-pmp-service.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/sandbox/id-repository-mz.properties b/sandbox/id-repository-mz.properties index 90e4365c1bb..3446f9e5f56 100644 --- a/sandbox/id-repository-mz.properties +++ b/sandbox/id-repository-mz.properties @@ -178,7 +178,7 @@ mosip.idrepo.syncdata-service.rest.httpMethod=GET mosip.idrepo.syncdata-service.rest.headers.mediaType=application/json mosip.idrepo.syncdata-service.rest.timeout=100 -mosip.idrepo.pmp.partner.rest.uri=http://pms-partner-management-service/v1/partnermanager/partners?partnerType=Online_Verification_Partner +mosip.idrepo.pmp.partner.rest.uri=http://pms-partner-manager-service/v1/partnermanager/partners?partnerType=Online_Verification_Partner mosip.idrepo.pmp.partner.rest.httpMethod=GET mosip.idrepo.pmp.partner.rest.headers.mediaType=application/json mosip.idrepo.pmp.partner.rest.timeout=10 From f4feac860420f95e4f758aa7204482dd1952a182 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Wed, 3 Mar 2021 14:19:34 +0530 Subject: [PATCH 0005/1358] Update registration-processor-mz.properties --- sandbox/registration-processor-mz.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 959f6515675..75f3ab9120e 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -167,7 +167,7 @@ PACKETRECEIVER=${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/r SMSNOTIFIER=http://kernel-notification-service/v1/notifier/sms/send EMAILNOTIFIER=http://kernel-notification-service/v1/notifier/email/send -PMS=http://pms-policy-manager-service/v1/policymanager/policies/{policyId}/partner/{partnerId} +PMS=http://pms-policy-manager-service/v1/policymanager/policies #---------Registration Status--------- From d1189486deb8b94e7161788c839bab6df35e0cc5 Mon Sep 17 00:00:00 2001 From: Ajay1596 <44763643+Ajay1596@users.noreply.github.com> Date: Fri, 5 Mar 2021 16:59:39 +0530 Subject: [PATCH 0006/1358] adding multi lang config prop --- sandbox/pre-registration-mz.properties | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/sandbox/pre-registration-mz.properties b/sandbox/pre-registration-mz.properties index 6263a2d6a76..3c10013f29c 100644 --- a/sandbox/pre-registration-mz.properties +++ b/sandbox/pre-registration-mz.properties @@ -444,8 +444,14 @@ mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.t #------------UI params----------------------------- +------------to be removed later ------- +mosip.mandatory.languages=ara,fra +mosip.optional.languages= +mosip.min.languages.count=2 +mosip.max.languages.count=2 +------------------------------------------- # List of keys which UI will consume -ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version +ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version,mosip.mandatory.languages,mosip.max.languages.count,mosip.min.languages.count,mosip.optional.languages # This config is used for loading recommended centers based on the value of the config. # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded preregistration.recommended.centers.locCode=5 From 1abf7933dd7dd7b22bd746bf4af1b2c9ca5c7cce Mon Sep 17 00:00:00 2001 From: jpnayak007 <43367563+jpnayak007@users.noreply.github.com> Date: Tue, 16 Mar 2021 09:34:30 +0530 Subject: [PATCH 0007/1358] MOSIP-12132 --- sandbox/registration-processor-mz.properties | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 75f3ab9120e..89c2d5d2a15 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -370,6 +370,8 @@ registration.processor.reprocess.fetchsize=100 # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing registration.processor.reprocess.elapse.time=7200 +# The elapse time (in sec) beyond which the rids will be fall under deafault pause&resume action +registration.processor.default.action.elapse.time=300 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 # Reprocess type @@ -377,11 +379,11 @@ registration.processor.reprocess.type=cron #schedular seconds configuration registration.processor.reprocess.seconds=0 #schedular minutes configuration -registration.processor.reprocess.minutes=0 +registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 #schedular hours configuration # Under assumption of about 2 hrs of downtime for regproc on daily basis, the reprocessor # frequency is made to 3 hours once -registration.processor.reprocess.hours=0,3,6,9,12,15,18,21 +registration.processor.reprocess.hours=* #schedular days configuration registration.processor.reprocess.days_of_month=* #schedular months configuration From cdb272b09ae5616acd7e09b3331c08c6406d3cb5 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Tue, 16 Mar 2021 10:19:33 +0530 Subject: [PATCH 0008/1358] MOSIP-12133 config changes --- sandbox/registration-processor-mz.properties | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 75f3ab9120e..60dfd64a383 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -389,6 +389,20 @@ registration.processor.reprocess.months=* #schedular weeks configuration registration.processor.reprocess.days_of_week=* +# WorkflowAction api id +mosip.registration.processor.workflow.action.id=mosip.registration.processor.workflow.action + +# WorkflowAction api version +mosip.registration.processor.workflow.action.version=1.0 + +#WorkflowAction service hitlisted tagname +mosip.regproc.workflow.action.hotlisted.tag=test + +#WorkflowAction service beginning stage name +mosip.regproc.workflow.action.resumefrombeginning.stage=SecurezoneNotificationStage + +#WorkflowAction service websub topic name +mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event #Service Ids #Audit request id @@ -425,6 +439,7 @@ PACKETMANAGER_SEARCH_BIOMETRICS=${packetmanager.base.url}/v1/packetmanager/biome PACKETMANAGER_SEARCH_AUDITS=${packetmanager.base.url}/v1/packetmanager/audits PACKETMANAGER_INFO=${packetmanager.base.url}/v1/packetmanager/info PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdateTag +PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag DATASHARECREATEURL=http://datashare-service/v1/datashare/create DATASHAREGETEURL=http://datashare-service/v1/datashare/get registration.processor.policy.id=mpolicy-default-abis From 726266e728d14a696ec33f5ec88f65dc09039fc3 Mon Sep 17 00:00:00 2001 From: jpnayak007 <43367563+jpnayak007@users.noreply.github.com> Date: Tue, 16 Mar 2021 11:32:51 +0530 Subject: [PATCH 0009/1358] Update registration-processor-mz.properties --- sandbox/registration-processor-mz.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 89c2d5d2a15..7cc5adc4fdf 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -370,8 +370,6 @@ registration.processor.reprocess.fetchsize=100 # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing registration.processor.reprocess.elapse.time=7200 -# The elapse time (in sec) beyond which the rids will be fall under deafault pause&resume action -registration.processor.default.action.elapse.time=300 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 # Reprocess type From 710cd221246ade875437493775001480ce80e2d6 Mon Sep 17 00:00:00 2001 From: jpnayak007 <43367563+jpnayak007@users.noreply.github.com> Date: Tue, 16 Mar 2021 18:16:58 +0530 Subject: [PATCH 0010/1358] Update registration-processor-mz.properties --- sandbox/registration-processor-mz.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 7cc5adc4fdf..9e3741dc9cb 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -377,10 +377,9 @@ registration.processor.reprocess.type=cron #schedular seconds configuration registration.processor.reprocess.seconds=0 #schedular minutes configuration +#the frequency for reprocess has been updated to every 5 minutes for pause/resume feature registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 #schedular hours configuration -# Under assumption of about 2 hrs of downtime for regproc on daily basis, the reprocessor -# frequency is made to 3 hours once registration.processor.reprocess.hours=* #schedular days configuration registration.processor.reprocess.days_of_month=* From aaf414669d766f9ca511330edf74b4c16cb849ec Mon Sep 17 00:00:00 2001 From: Nagarjuna K <nagarjunabtechece@gmail.com> Date: Wed, 17 Mar 2021 02:51:29 +0530 Subject: [PATCH 0011/1358] mosip-12162 --- sandbox/admin-mz.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/sandbox/admin-mz.properties b/sandbox/admin-mz.properties index eb1f9ee9600..1264ab78979 100644 --- a/sandbox/admin-mz.properties +++ b/sandbox/admin-mz.properties @@ -186,6 +186,9 @@ mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/au mosip.admin-services.open-id.token_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true +#-------------------------------------------------------------------------------------- +mosip.ui.spec.default.domain=registration-client + #---------------------------------------Security Properties----------------------------- #CSRF switch From 0fb77ca2fc98b2f83e91c62eddee434700752f17 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Wed, 17 Mar 2021 13:19:48 +0530 Subject: [PATCH 0012/1358] MOSIP-12133 fixed as review comments --- sandbox/registration-processor-mz.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 60dfd64a383..68bb81c5265 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -390,13 +390,13 @@ registration.processor.reprocess.months=* registration.processor.reprocess.days_of_week=* # WorkflowAction api id -mosip.registration.processor.workflow.action.id=mosip.registration.processor.workflow.action +mosip.regproc.workflow.action.api-id=mosip.registration.processor.workflow.action # WorkflowAction api version -mosip.registration.processor.workflow.action.version=1.0 +mosip.regproc.workflow.action.version=1.0 #WorkflowAction service hitlisted tagname -mosip.regproc.workflow.action.hotlisted.tag=test +mosip.regproc.workflow.action.hotlisted-tag=test #WorkflowAction service beginning stage name mosip.regproc.workflow.action.resumefrombeginning.stage=SecurezoneNotificationStage From 2b14d8e4e8838cb6f537c207e5de12684c230529 Mon Sep 17 00:00:00 2001 From: Ajay1596 <44763643+Ajay1596@users.noreply.github.com> Date: Wed, 17 Mar 2021 14:33:51 +0530 Subject: [PATCH 0013/1358] removing multi lang properties --- sandbox/pre-registration-mz.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sandbox/pre-registration-mz.properties b/sandbox/pre-registration-mz.properties index 3c10013f29c..624cded0fc7 100644 --- a/sandbox/pre-registration-mz.properties +++ b/sandbox/pre-registration-mz.properties @@ -451,7 +451,7 @@ mosip.min.languages.count=2 mosip.max.languages.count=2 ------------------------------------------- # List of keys which UI will consume -ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version,mosip.mandatory.languages,mosip.max.languages.count,mosip.min.languages.count,mosip.optional.languages +ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version # This config is used for loading recommended centers based on the value of the config. # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded preregistration.recommended.centers.locCode=5 From 1703e3354bfac0d3e88578b59879a4fe1f69b862 Mon Sep 17 00:00:00 2001 From: Nagarjuna K <nagarjunabtechece@gmail.com> Date: Wed, 17 Mar 2021 14:40:56 +0530 Subject: [PATCH 0014/1358] config added for language translator --- sandbox/pre-registration-mz.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sandbox/pre-registration-mz.properties b/sandbox/pre-registration-mz.properties index 3c10013f29c..57ba31d9d31 100644 --- a/sandbox/pre-registration-mz.properties +++ b/sandbox/pre-registration-mz.properties @@ -440,7 +440,7 @@ por.url=proofOfRelationship # Determines request & response id of transliteration-service mosip.pre-registration.transliteration.transliterate.id=mosip.pre-registration.transliteration.transliterate mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.transliteration.transliterate - +mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.icu4j #------------UI params----------------------------- From da8d04028f3097491761d1e4305e718337c068e1 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <Loganathan.Sekar@mindtree.com> Date: Wed, 17 Mar 2021 15:13:15 +0530 Subject: [PATCH 0015/1358] added stage config --- sandbox/registration-processor-mz.properties | 25 ++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 9e3741dc9cb..e3a79350bd5 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -619,6 +619,30 @@ packetmanager.provider.uingenerator.proofOfIdentity=source:CNIE\/process:CORRECT packetmanager.provider.uingenerator.proofOfRelationship=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.provider.uingenerator.proofOfException=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +#Kafka event bus configruations +mosip.regproc.eventbus.kafka.commit.type=${mosip.regproc.packet.classifier.eventbus.kafka.commit.type} +mosip.regproc.eventbus.kafka.max.poll.records=${mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records} +mosip.regproc.eventbus.kafka.poll.frequency=${mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency} +mosip.regproc.eventbus.kafka.group.id=${mosip.regproc.packet.classifier.eventbus.kafka.group.id} + +# Default base packages for stage beans to be scanned in a stage group +mosip.regproc.stage-groups.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor +# Add any new base package specific to stage group as below +# mosip.regproc.stage-groups.stage-beans-base-packages.<stage_group_name>=${mosip.regproc.stage-groups.stage-beans-base-packages.default} +# Example: mosip.regproc.stage-groups.stage-beans-base-packages.stage-group-1=${mosip.regproc.stage-groups.stage-beans-base-packages.default},my.stage.bean.base.package + + +#### Stage Specific properties #### + +mosip.regproc.packet.classifier.server.port=8092 +mosip.regproc.packet.classifier.eventbus.port=5724 +mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/packetclassifier + + +mosip.regproc.packet.validator.server.port=8088 +mosip.regproc.packet.validator.eventbus.port=5715 +mosip.regproc.packet.validator.server.servlet.path=/registrationprocessor/v1/packetvalidator + # packet-classifier-stage # List of tag generator that should be run on every packet # Available tag generators MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus @@ -649,3 +673,4 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'CHILD':'0-17','ADULT': mosip.regproc.packet.classifier.tagging.supervisorapprovalstatus.tag-name=SUPERVISOR_APPROVAL_STATUS # Tag name that will be used while tagging exception biometrics mosip.regproc.packet.classifier.tagging.exceptionbiometrics.tag-name=EXCEPTION_BIOMETRICS + From a25f6fb1afc828888a50c26e3bbcfc167b575e30 Mon Sep 17 00:00:00 2001 From: Manoj SP <Manoj.SP@mindtree.com> Date: Wed, 17 Mar 2021 15:55:33 +0530 Subject: [PATCH 0016/1358] [MOSIP-12124] added ref ids of base keys for encryption/decryption --- sandbox/id-repository-mz.properties | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/sandbox/id-repository-mz.properties b/sandbox/id-repository-mz.properties index 5bff5b7cc1c..87776d5f671 100644 --- a/sandbox/id-repository-mz.properties +++ b/sandbox/id-repository-mz.properties @@ -50,6 +50,12 @@ mosip.idrepo.modulo-value=1000 #the requests originating from a system that is not in time-sync will be accepted for the time period mosip.idrepo.datetime.future-time-adjustment=2 +# Reference IDs of base keys used for encryption/decryption +mosip.idrepo.crypto.refId.uin=uin +mosip.idrepo.crypto.refId.uin-data=identity_data +mosip.idrepo.crypto.refId.demo-doc-data=demographic_data +mosip.idrepo.crypto.refId.bio-doc-data=biometric_data + #---------------------------Kernel Retry Configurations----------------------------------------------------# # The retry limit excluding the first attempt before attempting for retries. Default is set to 5. kernel.retry.attempts.limit=5 From 68f584fa3fc6e3c6d76550692558ca3531102457 Mon Sep 17 00:00:00 2001 From: nikhileshkumar0408 <68633957+nikhileshkumar0408@users.noreply.github.com> Date: Fri, 19 Mar 2021 09:00:13 +0530 Subject: [PATCH 0017/1358] MOSIP-12629 "added Mock ABIS key" --- sandbox/mock-abis-mz.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/sandbox/mock-abis-mz.properties b/sandbox/mock-abis-mz.properties index 4aba1514f87..9b768f5aecb 100644 --- a/sandbox/mock-abis-mz.properties +++ b/sandbox/mock-abis-mz.properties @@ -6,3 +6,4 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 +abis.return.duplicate=false From 98aae943ac9ae0b5a179f0f889615503c07edf5d Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Fri, 19 Mar 2021 14:05:59 +0530 Subject: [PATCH 0018/1358] MOSIP-12133 config changes --- sandbox/registration-processor-mz.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 68bb81c5265..1db9af6e5a1 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -399,7 +399,7 @@ mosip.regproc.workflow.action.version=1.0 mosip.regproc.workflow.action.hotlisted-tag=test #WorkflowAction service beginning stage name -mosip.regproc.workflow.action.resumefrombeginning.stage=SecurezoneNotificationStage +mosip.regproc.workflow.action.resumefrombeginning.stage=PacketUploaderStage #WorkflowAction service websub topic name mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event From 31460debc7fba45c4f461a41ed3a4a43bda10257 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Fri, 19 Mar 2021 14:45:01 +0530 Subject: [PATCH 0019/1358] MOSIP-12133 config changes --- sandbox/registration-processor-mz.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 1db9af6e5a1..b881ef2e2ee 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -396,7 +396,7 @@ mosip.regproc.workflow.action.api-id=mosip.registration.processor.workflow.actio mosip.regproc.workflow.action.version=1.0 #WorkflowAction service hitlisted tagname -mosip.regproc.workflow.action.hotlisted-tag=test +mosip.regproc.workflow.action.hotlisted-tag=HOTLISTED #WorkflowAction service beginning stage name mosip.regproc.workflow.action.resumefrombeginning.stage=PacketUploaderStage From e6ba88fe760de75d3ceceaa1141d52237108d064 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <Loganathan.Sekar@mindtree.com> Date: Fri, 19 Mar 2021 18:37:28 +0530 Subject: [PATCH 0020/1358] Added stage properties --- sandbox/registration-processor-dmz.properties | 7 + sandbox/registration-processor-mz.properties | 202 ++++++++++++++++-- 2 files changed, 191 insertions(+), 18 deletions(-) diff --git a/sandbox/registration-processor-dmz.properties b/sandbox/registration-processor-dmz.properties index 2f2240dacaf..364f92bebac 100644 --- a/sandbox/registration-processor-dmz.properties +++ b/sandbox/registration-processor-dmz.properties @@ -138,3 +138,10 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-brdige-dmz + +# Packet Recevier +mosip.regproc.message.tag.loading.disable=true + +mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver +mosip.regproc.packet.receiver.server.port=8081 +mosip.regproc.packet.receiver.eventbus.port=5711 \ No newline at end of file diff --git a/sandbox/registration-processor-mz.properties b/sandbox/registration-processor-mz.properties index 58ed3417c9c..0ead735c376 100644 --- a/sandbox/registration-processor-mz.properties +++ b/sandbox/registration-processor-mz.properties @@ -634,31 +634,14 @@ packetmanager.provider.uingenerator.proofOfIdentity=source:CNIE\/process:CORRECT packetmanager.provider.uingenerator.proofOfRelationship=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.provider.uingenerator.proofOfException=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -#Kafka event bus configruations -mosip.regproc.eventbus.kafka.commit.type=${mosip.regproc.packet.classifier.eventbus.kafka.commit.type} -mosip.regproc.eventbus.kafka.max.poll.records=${mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records} -mosip.regproc.eventbus.kafka.poll.frequency=${mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency} -mosip.regproc.eventbus.kafka.group.id=${mosip.regproc.packet.classifier.eventbus.kafka.group.id} - -# Default base packages for stage beans to be scanned in a stage group -mosip.regproc.stage-groups.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor -# Add any new base package specific to stage group as below -# mosip.regproc.stage-groups.stage-beans-base-packages.<stage_group_name>=${mosip.regproc.stage-groups.stage-beans-base-packages.default} -# Example: mosip.regproc.stage-groups.stage-beans-base-packages.stage-group-1=${mosip.regproc.stage-groups.stage-beans-base-packages.default},my.stage.bean.base.package - #### Stage Specific properties #### +# packet-classifier-stage mosip.regproc.packet.classifier.server.port=8092 mosip.regproc.packet.classifier.eventbus.port=5724 mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/packetclassifier - -mosip.regproc.packet.validator.server.port=8088 -mosip.regproc.packet.validator.eventbus.port=5715 -mosip.regproc.packet.validator.server.servlet.path=/registrationprocessor/v1/packetvalidator - -# packet-classifier-stage # List of tag generator that should be run on every packet # Available tag generators MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus mosip.regproc.packet.classifier.tag-generators=MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus @@ -689,3 +672,186 @@ mosip.regproc.packet.classifier.tagging.supervisorapprovalstatus.tag-name=SUPERV # Tag name that will be used while tagging exception biometrics mosip.regproc.packet.classifier.tagging.exceptionbiometrics.tag-name=EXCEPTION_BIOMETRICS +mosip.regproc.packet.classifier.eventbus.kafka.commit.type=${mosip.regproc.packet.classifier.eventbus.kafka.commit.type} +mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=${mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records} +mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=${mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency} +mosip.regproc.packet.classifier.eventbus.kafka.group.id=${mosip.regproc.packet.classifier.eventbus.kafka.group.id} + +# Packet Validator +mosip.regproc.packet.validator.server.port=8088 +mosip.regproc.packet.validator.eventbus.port=5715 +mosip.regproc.packet.validator.server.servlet.path=/registrationprocessor/v1/packetvalidator + +mosip.regproc.packet.validator.eventbus.kafka.commit.type=${mosip.regproc.packet.validator.eventbus.kafka.commit.type} +mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=${mosip.regproc.packet.validator.eventbus.kafka.max.poll.records} +mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=${mosip.regproc.packet.validator.eventbus.kafka.poll.frequency} +mosip.regproc.packet.validator.eventbus.kafka.group.id=${mosip.regproc.packet.validator.eventbus.kafka.group.id} + +mosip.kernel.jsonvalidator.property-source=APPLICATION_CONTEXT +mosip.kernel.jsonvalidator.schema-name=mosip-identity-json-schema.json +mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ + + +# External Stage +mosip.regproc.external.eventbus.port=5736 +mosip.regproc.external.server.port=8095 +mosip.regproc.external.server.servlet.path=/registrationprocessor/v1/external + + +mosip.regproc.external.eventbus.kafka.commit.type=${mosip.regproc.external.eventbus.kafka.commit.type} +mosip.regproc.external.eventbus.kafka.max.poll.records=${mosip.regproc.external.eventbus.kafka.max.poll.records} +mosip.regproc.external.eventbus.kafka.poll.frequency=${mosip.regproc.external.eventbus.kafka.poll.frequency} +mosip.regproc.external.eventbus.kafka.group.id=${mosip.regproc.external.eventbus.kafka.group.id} + +#Message Sender +mosip.regproc.message.sender.server.port=8088 +mosip.regproc.message.sender.eventbus.port=5721 +mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sender-stage + +mosip.regproc.message.sender.eventbus.kafka.commit.type=${mosip.regproc.message.sender.eventbus.kafka.commit.type} +mosip.regproc.message.sender.eventbus.kafka.max.poll.records=${mosip.regproc.message.sender.eventbus.kafka.max.poll.records} +mosip.regproc.message.sender.eventbus.kafka.poll.frequency=${mosip.regproc.message.sender.eventbus.kafka.poll.frequency} +mosip.regproc.message.sender.eventbus.kafka.group.id=${mosip.regproc.message.sender.eventbus.kafka.group.id} + +#OSI Validator +mosip.regproc.osi.validator.server.port=8089 +mosip.regproc.osi.validator.eventbus.port=5716 +mosip.regproc.osi.validator.server.servlet.path=/registrationprocessor/v1/osivalidator + +mosip.regproc.osi.validator.eventbus.kafka.commit.type=${mosip.regproc.osi.validator.eventbus.kafka.commit.type} +mosip.regproc.osi.validator.eventbus.kafka.max.poll.records=${mosip.regproc.osi.validator.eventbus.kafka.max.poll.records} +mosip.regproc.osi.validator.eventbus.kafka.poll.frequency=${mosip.regproc.osi.validator.eventbus.kafka.poll.frequency} +mosip.regproc.osi.validator.eventbus.kafka.group.id=${mosip.regproc.osi.validator.eventbus.kafka.group.id} + + +# packet-uploader-stage properties +packet.uploader.stage=registration-processor-packet-uploader-stage + +mosip.regproc.packet.uploader.server.port=8087 +mosip.regproc.packet.uploader.server.servlet.path=/registrationprocessor/v1/uploader +mosip.regproc.packet.uploader.eventbus.port=5714 + +mosip.regproc.packet.uploader.eventbus.kafka.commit.type=${mosip.regproc.packet.uploader.eventbus.kafka.commit.type} +mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=${mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records} +mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=${mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency} +mosip.regproc.packet.uploader.eventbus.kafka.group.id=${mosip.regproc.packet.uploader.eventbus.kafka.group.id} + +# Print Stage +mosip.regproc.printing.server.port=8099 +mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage +mosip.regproc.printing.eventbus.port=5722 + +mosip.regproc.printing.eventbus.kafka.commit.type=${mosip.regproc.printing.eventbus.kafka.commit.type} +mosip.regproc.printing.eventbus.kafka.max.poll.records=${mosip.regproc.printing.eventbus.kafka.max.poll.records} +mosip.regproc.printing.eventbus.kafka.poll.frequency=${mosip.regproc.printing.eventbus.kafka.poll.frequency} +mosip.regproc.printing.eventbus.kafka.group.id=${mosip.regproc.printing.eventbus.kafka.group.id} + +# Quality Checker +mosip.regproc.quality.checker.server.port=9072 +mosip.regproc.quality.checker.eventbus.port=5727 +mosip.regproc.quality.checker.server.servlet.path=/registrationprocessor/v1/qualitychecker + +mosip.regproc.quality.checker.eventbus.kafka.commit.type=${mosip.regproc.quality.checker.eventbus.kafka.commit.type} +mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=${mosip.regproc.quality.checker.eventbus.kafka.max.poll.records} +mosip.regproc.quality.checker.eventbus.kafka.poll.frequency=${mosip.regproc.quality.checker.eventbus.kafka.poll.frequency} +mosip.regproc.quality.checker.eventbus.kafka.group.id=${mosip.regproc.quality.checker.eventbus.kafka.group.id} + +# Secure Zone Notification Stage +mosip.regproc.securezone.notification.server.port=8090 +mosip.regproc.securezone.notification.server.servlet.path=/registrationprocessor/v1/securezone +mosip.regproc.securezone.notification.eventbus.port=5712 + +mosip.regproc.securezone.notification.eventbus.kafka.commit.type=${mosip.regproc.securezone.notification.eventbus.kafka.commit.type} +mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=${mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records} +mosip.regproc.securezone.notification.eventbus.kafka.poll.frequency=${mosip.regproc.securezone.notification.eventbus.kafka.poll.frequency} +mosip.regproc.securezone.notification.eventbus.kafka.group.id=${mosip.regproc.securezone.notification.eventbus.kafka.group.id} + +mosip.regproc.message.tag.loading.disable=true + +# UIN Generator Stage +mosip.regproc.uin.generator.server.port=8099 +mosip.regproc.uin.generator.eventbus.port=5719 +mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-generator + +mosip.regproc.uin.generator.eventbus.kafka.commit.type=${mosip.regproc.uin.generator.eventbus.kafka.commit.type} +mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=${mosip.regproc.uin.generator.eventbus.kafka.max.poll.records} +mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=${mosip.regproc.uin.generator.eventbus.kafka.poll.frequency} +mosip.regproc.uin.generator.eventbus.kafka.group.id=${mosip.regproc.uin.generator.eventbus.kafka.group.id} + +# Reporcessor Stage +mosip.regproc.reprocessor.server.port=8021 +mosip.regproc.reprocessor.eventbus.port=5750 +mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reprocessor + +mosip.regproc.reprocessor.eventbus.kafka.commit.type=${mosip.regproc.reprocessor.eventbus.kafka.commit.type} +mosip.regproc.reprocessor.eventbus.kafka.max.poll.records=${mosip.regproc.reprocessor.eventbus.kafka.max.poll.records} +mosip.regproc.reprocessor.eventbus.kafka.poll.frequency=${mosip.regproc.reprocessor.eventbus.kafka.poll.frequency} +mosip.regproc.reprocessor.eventbus.kafka.group.id=${mosip.regproc.reprocessor.eventbus.kafka.group.id} + +# Manual Stage +mosip.regproc.manual.verification.server.servlet.path=/registrationprocessor/v1/manualverification +mosip.regproc.manual.verification.server.port=8084 +mosip.regproc.manual.verification.eventbus.port=5720 + +mosip.regproc.manual.verification.eventbus.kafka.commit.type=${mosip.regproc.manual.verification.eventbus.kafka.commit.type} +mosip.regproc.manual.verification.eventbus.kafka.max.poll.records=${mosip.regproc.manual.verification.eventbus.kafka.max.poll.records} +mosip.regproc.manual.verification.eventbus.kafka.poll.frequency=${mosip.regproc.manual.verification.eventbus.kafka.poll.frequency} +mosip.regproc.manual.verification.eventbus.kafka.group.id=${mosip.regproc.manual.verification.eventbus.kafka.group.id} + +#Demo Dedupe +mosip.regproc.demo.dedupe.server.port=8091 +mosip.regproc.demo.dedupe.eventbus.port=5717 +mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedupe + +mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=${mosip.regproc.demo.dedupe.eventbus.kafka.commit.type} +mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=${mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records} +mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=${mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency} +mosip.regproc.demo.dedupe.eventbus.kafka.group.id=${mosip.regproc.demo.dedupe.eventbus.kafka.group.id} + +# Biometric Auth Stage +mosip.regproc.biometric.authentication.server.port=8020 +mosip.regproc.biometric.authentication.eventbus.port=5777 +mosip.regproc.biometric.authentication.server.servlet.path=/registrationprocessor/v1/bioauth + +mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=${mosip.regproc.biometric.authentication.eventbus.kafka.commit.type} +mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=${mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records} +mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=${mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency} +mosip.regproc.biometric.authentication.eventbus.kafka.group.id=${mosip.regproc.biometric.authentication.eventbus.kafka.group.id} + +# Bio Dedupe +mosip.regproc.bio.dedupe.server.port=9096 +mosip.regproc.bio.dedupe.eventbus.port=5718 +mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe + +mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=${mosip.regproc.bio.dedupe.eventbus.kafka.commit.type} +mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=${mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records} +mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=${mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency} +mosip.regproc.bio.dedupe.eventbus.kafka.group.id=${mosip.regproc.bio.dedupe.eventbus.kafka.group.id} + +# Abis Middleware +mosip.regproc.abis.middleware.server.port=8091 +mosip.regproc.abis.middleware.eventbus.port=5888 +mosip.regproc.abis.middleware.server.servlet.path=/registrationprocessor/v1/abismiddleware + +mosip.regproc.abis.middleware.eventbus.kafka.commit.type=${mosip.regproc.abis.middleware.eventbus.kafka.commit.type} +mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=${mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records} +mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=${mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency} +mosip.regproc.abis.middleware.eventbus.kafka.group.id=${mosip.regproc.abis.middleware.eventbus.kafka.group.id} + +# Abis Handler +mosip.regproc.abis.handler.server.port=9071 +mosip.regproc.abis.handler.eventbus.port=5726 +mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler + +mosip.regproc.abis.handler.eventbus.kafka.commit.type=${mosip.regproc.abis.handler.eventbus.kafka.commit.type} +mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=${mosip.regproc.abis.handler.eventbus.kafka.max.poll.records} +mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=${mosip.regproc.abis.handler.eventbus.kafka.poll.frequency} +mosip.regproc.abis.handler.eventbus.kafka.group.id=${mosip.regproc.abis.handler.eventbus.kafka.group.id} + + +# Stage Group Configuratoins +# Default base packages for stage beans to be scanned in a stage group +mosip.regproc.stage-groups.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor +# Add any new base package of Stage bean specific to stage group as below +# mosip.regproc.stage-groups.stage-beans-base-packages.<stage_group_name>=${mosip.regproc.stage-groups.stage-beans-base-packages.default} +# Example: mosip.regproc.stage-groups.stage-beans-base-packages.stage-group-1=${mosip.regproc.stage-groups.stage-beans-base-packages.default},my.stage.bean.base.package From 3c1127763afa8a3f3484b105c55dc94573f9a1e4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 21 Mar 2021 05:56:18 +0530 Subject: [PATCH 0021/1358] [MOSIP-12666] WIP. --- ...CredentialType.json => CredentialType.json | 0 README.md | 6 +- .../admin-mz.properties => admin.properties | 0 ...son => applicanttype-document-mapping.json | 0 .../applicanttype.mvel => applicanttype.mvel | 0 ...on-mz.properties => application.properties | 12 +- ...icy-schema.json => auth-policy-schema.json | 0 ...credentialdata.mvel => credentialdata.mvel | 0 ...hema.json => data-share-policy-schema.json | 0 ...are-mz.properties => data-share.properties | 0 sandbox/hazelcast_mz-mz.xml => hazelcast.xml | 0 ...elcast_cache-mz.xml => hazelcast_cache.xml | 0 ...otlist-mz.properties => hotlist.properties | 0 ...ing.json => id-authentication-mapping.json | 0 ...properties => id-authentication.properties | 0 ...-mz.properties => id-repository.properties | 0 ...=> idobject-document-category-mapping.json | 0 .../kernel-mz.properties => kernel.properties | 0 ...abis-mz.properties => mock-abis.properties | 0 sandbox/mosip-cbeff.xsd => mosip-cbeff.xsd | 0 ...chema.json => mosip-vid-policy-schema.json | 0 ...p-vid-policy.json => mosip-vid-policy.json | 0 ...roperties => partner-management.properties | 0 ....json => pre-registration-demographic.json | 0 ... => pre-registration-identity-mapping.json | 0 ....properties => pre-registration.properties | 0 .../print-mz.properties => print.properties | 0 ...s.json => registration-processor-abis.json | 0 ...ration-processor-camel-routes-activate.xml | 0 ...tion-processor-camel-routes-deactivate.xml | 0 ...gistration-processor-camel-routes-lost.xml | 0 ...egistration-processor-camel-routes-new.xml | 0 ...ion-processor-camel-routes-res-reprint.xml | 0 ...tion-processor-camel-routes-res-update.xml | 0 ...stration-processor-camel-routes-update.xml | 0 ...on => registration-processor-identity.json | 0 ...egistration-processor-print-text-file.json | 0 ...rties => registration-processor.properties | 230 +++-------- ...n-mz.properties => registration.properties | 0 ...ident-mz.properties => resident.properties | 0 sandbox/README.md | 12 - sandbox/application-dmz.properties | 360 ------------------ sandbox/hazelcast_dmz-dmz.xml | 37 -- sandbox/mosip-cbeff-env.xsd | 174 --------- ...on-processor-camel-routes-activate-dmz.xml | 34 -- ...-processor-camel-routes-deactivate-dmz.xml | 34 -- ...ration-processor-camel-routes-lost-dmz.xml | 34 -- ...tration-processor-camel-routes-new-dmz.xml | 34 -- ...processor-camel-routes-res-reprint-dmz.xml | 34 -- ...-processor-camel-routes-res-update-dmz.xml | 34 -- ...tion-processor-camel-routes-update-dmz.xml | 34 -- sandbox/registration-processor-dmz.properties | 147 ------- ...cdata-mz.properties => syncdata.properties | 0 53 files changed, 63 insertions(+), 1153 deletions(-) rename sandbox/CredentialType.json => CredentialType.json (100%) rename sandbox/admin-mz.properties => admin.properties (100%) rename sandbox/applicanttype-document-mapping.json => applicanttype-document-mapping.json (100%) rename sandbox/applicanttype.mvel => applicanttype.mvel (100%) rename sandbox/application-mz.properties => application.properties (98%) rename sandbox/auth-policy-schema.json => auth-policy-schema.json (100%) rename sandbox/credentialdata.mvel => credentialdata.mvel (100%) rename sandbox/data-share-policy-schema.json => data-share-policy-schema.json (100%) rename sandbox/data-share-mz.properties => data-share.properties (100%) rename sandbox/hazelcast_mz-mz.xml => hazelcast.xml (100%) rename sandbox/hazelcast_cache-mz.xml => hazelcast_cache.xml (100%) rename sandbox/hotlist-mz.properties => hotlist.properties (100%) rename sandbox/id-authentication-mapping.json => id-authentication-mapping.json (100%) rename sandbox/id-authentication-mz.properties => id-authentication.properties (100%) rename sandbox/id-repository-mz.properties => id-repository.properties (100%) rename sandbox/idobject-document-category-mapping.json => idobject-document-category-mapping.json (100%) rename sandbox/kernel-mz.properties => kernel.properties (100%) rename sandbox/mock-abis-mz.properties => mock-abis.properties (100%) rename sandbox/mosip-cbeff.xsd => mosip-cbeff.xsd (100%) rename sandbox/mosip-vid-policy-schema.json => mosip-vid-policy-schema.json (100%) rename sandbox/mosip-vid-policy.json => mosip-vid-policy.json (100%) rename sandbox/partner-management-mz.properties => partner-management.properties (100%) rename sandbox/pre-registration-demographic.json => pre-registration-demographic.json (100%) rename sandbox/pre-registration-identity-mapping.json => pre-registration-identity-mapping.json (100%) rename sandbox/pre-registration-mz.properties => pre-registration.properties (100%) rename sandbox/print-mz.properties => print.properties (100%) rename sandbox/registration-processor-abis.json => registration-processor-abis.json (100%) rename sandbox/registration-processor-camel-routes-activate-mz.xml => registration-processor-camel-routes-activate.xml (100%) rename sandbox/registration-processor-camel-routes-deactivate-mz.xml => registration-processor-camel-routes-deactivate.xml (100%) rename sandbox/registration-processor-camel-routes-lost-mz.xml => registration-processor-camel-routes-lost.xml (100%) rename sandbox/registration-processor-camel-routes-new-mz.xml => registration-processor-camel-routes-new.xml (100%) rename sandbox/registration-processor-camel-routes-res-reprint-mz.xml => registration-processor-camel-routes-res-reprint.xml (100%) rename sandbox/registration-processor-camel-routes-res-update-mz.xml => registration-processor-camel-routes-res-update.xml (100%) rename sandbox/registration-processor-camel-routes-update-mz.xml => registration-processor-camel-routes-update.xml (100%) rename sandbox/registration-processor-identity.json => registration-processor-identity.json (100%) rename sandbox/registration-processor-print-text-file.json => registration-processor-print-text-file.json (100%) rename sandbox/registration-processor-mz.properties => registration-processor.properties (89%) rename sandbox/registration-mz.properties => registration.properties (100%) rename sandbox/resident-mz.properties => resident.properties (100%) delete mode 100644 sandbox/README.md delete mode 100644 sandbox/application-dmz.properties delete mode 100644 sandbox/hazelcast_dmz-dmz.xml delete mode 100644 sandbox/mosip-cbeff-env.xsd delete mode 100644 sandbox/registration-processor-camel-routes-activate-dmz.xml delete mode 100644 sandbox/registration-processor-camel-routes-deactivate-dmz.xml delete mode 100644 sandbox/registration-processor-camel-routes-lost-dmz.xml delete mode 100644 sandbox/registration-processor-camel-routes-new-dmz.xml delete mode 100644 sandbox/registration-processor-camel-routes-res-reprint-dmz.xml delete mode 100644 sandbox/registration-processor-camel-routes-res-update-dmz.xml delete mode 100644 sandbox/registration-processor-camel-routes-update-dmz.xml delete mode 100644 sandbox/registration-processor-dmz.properties rename sandbox/syncdata-mz.properties => syncdata.properties (100%) diff --git a/sandbox/CredentialType.json b/CredentialType.json similarity index 100% rename from sandbox/CredentialType.json rename to CredentialType.json diff --git a/README.md b/README.md index b9eeaf9e30a..b80d6e49da9 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,4 @@ -# mosip-config +# MOSIP Configuration -Configuration files for mosip-platform. - -MOSIP uses Spring CLoud Config Server to read the properties files. So, to use the properties files in this repo, please updated the IP addresses, keys and passwords and then point to this repo in spring cloud config in kernel module. +MOSIP uses Spring CLoud Config Server to read the properties files. So, to use the properties files in this repo, please update the IP addresses, keys and passwords and then point to this repo in spring cloud config in kernel module. diff --git a/sandbox/admin-mz.properties b/admin.properties similarity index 100% rename from sandbox/admin-mz.properties rename to admin.properties diff --git a/sandbox/applicanttype-document-mapping.json b/applicanttype-document-mapping.json similarity index 100% rename from sandbox/applicanttype-document-mapping.json rename to applicanttype-document-mapping.json diff --git a/sandbox/applicanttype.mvel b/applicanttype.mvel similarity index 100% rename from sandbox/applicanttype.mvel rename to applicanttype.mvel diff --git a/sandbox/application-mz.properties b/application.properties similarity index 98% rename from sandbox/application-mz.properties rename to application.properties index 8c3de84757a..230ea44ef1c 100644 --- a/sandbox/application-mz.properties +++ b/application.properties @@ -223,8 +223,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 #------------------------Auth-Adapter----------------------------------------------- auth.server.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken -mosip.keycloak.issuerUrl=${mosipbox.public.url}/auth/realms/mosip -auth-token-generator.rest.issuerUrl=${mosip.keycloak.issuerUrl} +auth-token-generator.rest.issuerUrl=${iam.url}/auth/realms/mosip #----------------------- Crypto -------------------------------------------------- #Crypto asymmetric algorithm name @@ -471,13 +470,6 @@ server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t" server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve #---------------- Web Sub properties ------------------------- -# The base URL of dmz ingress used to point to websub service -dmz.ingress.base.url=http://dmz.ingress:30080 -# Websub base url -websub.base.url=${dmz.ingress.base.url} -# Websub URL for Topic Subscriptions -websub.hub.url=${websub.base.url}/websub/hub -# Websub URL for Publishing/registering topics -websub.publish.url=${websub.base.url}/websub/publish +websub.publish.url=http://websub/publish #---------------- Web Sub property ---------------------------- packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} diff --git a/sandbox/auth-policy-schema.json b/auth-policy-schema.json similarity index 100% rename from sandbox/auth-policy-schema.json rename to auth-policy-schema.json diff --git a/sandbox/credentialdata.mvel b/credentialdata.mvel similarity index 100% rename from sandbox/credentialdata.mvel rename to credentialdata.mvel diff --git a/sandbox/data-share-policy-schema.json b/data-share-policy-schema.json similarity index 100% rename from sandbox/data-share-policy-schema.json rename to data-share-policy-schema.json diff --git a/sandbox/data-share-mz.properties b/data-share.properties similarity index 100% rename from sandbox/data-share-mz.properties rename to data-share.properties diff --git a/sandbox/hazelcast_mz-mz.xml b/hazelcast.xml similarity index 100% rename from sandbox/hazelcast_mz-mz.xml rename to hazelcast.xml diff --git a/sandbox/hazelcast_cache-mz.xml b/hazelcast_cache.xml similarity index 100% rename from sandbox/hazelcast_cache-mz.xml rename to hazelcast_cache.xml diff --git a/sandbox/hotlist-mz.properties b/hotlist.properties similarity index 100% rename from sandbox/hotlist-mz.properties rename to hotlist.properties diff --git a/sandbox/id-authentication-mapping.json b/id-authentication-mapping.json similarity index 100% rename from sandbox/id-authentication-mapping.json rename to id-authentication-mapping.json diff --git a/sandbox/id-authentication-mz.properties b/id-authentication.properties similarity index 100% rename from sandbox/id-authentication-mz.properties rename to id-authentication.properties diff --git a/sandbox/id-repository-mz.properties b/id-repository.properties similarity index 100% rename from sandbox/id-repository-mz.properties rename to id-repository.properties diff --git a/sandbox/idobject-document-category-mapping.json b/idobject-document-category-mapping.json similarity index 100% rename from sandbox/idobject-document-category-mapping.json rename to idobject-document-category-mapping.json diff --git a/sandbox/kernel-mz.properties b/kernel.properties similarity index 100% rename from sandbox/kernel-mz.properties rename to kernel.properties diff --git a/sandbox/mock-abis-mz.properties b/mock-abis.properties similarity index 100% rename from sandbox/mock-abis-mz.properties rename to mock-abis.properties diff --git a/sandbox/mosip-cbeff.xsd b/mosip-cbeff.xsd similarity index 100% rename from sandbox/mosip-cbeff.xsd rename to mosip-cbeff.xsd diff --git a/sandbox/mosip-vid-policy-schema.json b/mosip-vid-policy-schema.json similarity index 100% rename from sandbox/mosip-vid-policy-schema.json rename to mosip-vid-policy-schema.json diff --git a/sandbox/mosip-vid-policy.json b/mosip-vid-policy.json similarity index 100% rename from sandbox/mosip-vid-policy.json rename to mosip-vid-policy.json diff --git a/sandbox/partner-management-mz.properties b/partner-management.properties similarity index 100% rename from sandbox/partner-management-mz.properties rename to partner-management.properties diff --git a/sandbox/pre-registration-demographic.json b/pre-registration-demographic.json similarity index 100% rename from sandbox/pre-registration-demographic.json rename to pre-registration-demographic.json diff --git a/sandbox/pre-registration-identity-mapping.json b/pre-registration-identity-mapping.json similarity index 100% rename from sandbox/pre-registration-identity-mapping.json rename to pre-registration-identity-mapping.json diff --git a/sandbox/pre-registration-mz.properties b/pre-registration.properties similarity index 100% rename from sandbox/pre-registration-mz.properties rename to pre-registration.properties diff --git a/sandbox/print-mz.properties b/print.properties similarity index 100% rename from sandbox/print-mz.properties rename to print.properties diff --git a/sandbox/registration-processor-abis.json b/registration-processor-abis.json similarity index 100% rename from sandbox/registration-processor-abis.json rename to registration-processor-abis.json diff --git a/sandbox/registration-processor-camel-routes-activate-mz.xml b/registration-processor-camel-routes-activate.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-activate-mz.xml rename to registration-processor-camel-routes-activate.xml diff --git a/sandbox/registration-processor-camel-routes-deactivate-mz.xml b/registration-processor-camel-routes-deactivate.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-deactivate-mz.xml rename to registration-processor-camel-routes-deactivate.xml diff --git a/sandbox/registration-processor-camel-routes-lost-mz.xml b/registration-processor-camel-routes-lost.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-lost-mz.xml rename to registration-processor-camel-routes-lost.xml diff --git a/sandbox/registration-processor-camel-routes-new-mz.xml b/registration-processor-camel-routes-new.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-new-mz.xml rename to registration-processor-camel-routes-new.xml diff --git a/sandbox/registration-processor-camel-routes-res-reprint-mz.xml b/registration-processor-camel-routes-res-reprint.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-res-reprint-mz.xml rename to registration-processor-camel-routes-res-reprint.xml diff --git a/sandbox/registration-processor-camel-routes-res-update-mz.xml b/registration-processor-camel-routes-res-update.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-res-update-mz.xml rename to registration-processor-camel-routes-res-update.xml diff --git a/sandbox/registration-processor-camel-routes-update-mz.xml b/registration-processor-camel-routes-update.xml similarity index 100% rename from sandbox/registration-processor-camel-routes-update-mz.xml rename to registration-processor-camel-routes-update.xml diff --git a/sandbox/registration-processor-identity.json b/registration-processor-identity.json similarity index 100% rename from sandbox/registration-processor-identity.json rename to registration-processor-identity.json diff --git a/sandbox/registration-processor-print-text-file.json b/registration-processor-print-text-file.json similarity index 100% rename from sandbox/registration-processor-print-text-file.json rename to registration-processor-print-text-file.json diff --git a/sandbox/registration-processor-mz.properties b/registration-processor.properties similarity index 89% rename from sandbox/registration-processor-mz.properties rename to registration-processor.properties index 0ead735c376..20f59ecfa4f 100644 --- a/sandbox/registration-processor-mz.properties +++ b/registration-processor.properties @@ -1,100 +1,74 @@ dmz.ingress.base.url=http://dmz.ingress:30080 -# Database Host name -mosip.registration.processor.database.hostname=postgres - -# Database Port -mosip.registration.processor.database.port=80 - -registration.processor.zone=mz - -#-----------Health checker-------------- +## Health check management.endpoint.health.show-details=always management.endpoints.web.exposure.include=info,health,refresh -#------packet-bio-dedupe-service-------- -#Maximum abis records to be fetched at a time +## ABIS + +# Maximum abis records to be fetched at a time registration.processor.abis.maxResults=30 -#Dummy Tag for face in cbeff file +# Dummy Tag for face in cbeff file registration.processor.abis.targetFPIR=30 # supported 'byte' and 'text format activemq.message.format=text # Buffer time above the expiry for all queues to allow reprocessing (in seconds) registration.processor.bio.dedupe.reprocess.buffer.time=900 -# ---------DB connection--------------- -#Driver name +## Database +mosip.registration.processor.database.hostname=postgres +mosip.registration.processor.database.port=80 javax.persistence.jdbc.driver=org.postgresql.Driver - -# Database connection URL javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc - javax.persistence.jdbc.user=regprcuser -# TODO: user cipher below javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -#Hibernate properties +## Hibernate hibernate.hbm2ddl.auto=none hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.show_sql=false -#-----packet-manager---------- +## Packets registration.processor.LANDING_ZONE = /mnt/regproc/landing - -#Location to store the file which is consumed from the print and postal queue -registration.processor.PRINT_POSTAL_SERVICE=/home/ftp1/PRINIT_POSTAL_SERVICE - -#-----packet-utility---------- # The known packet sources. Should be set as all fieldCategory present in idschema # (NOTE : if fieldCategory is set as pvt then the source should be id) registration.processor.sourcepackets=id,evidence,optional -# The mandatory default source packet.(In default configuration this is thd id packet) +# The mandatory default source packet. (In default configuration this is thd id packet) packet.default.source=id # the default schema field cagegory (ex - private) schema.default.fieldCategory=pvt,none # The IDSchemaVersion used to create packets in reg-proc IDSchema.Version=0.1 +# Url from where packets need to be picked up DMZ (landing zone) +NGINXURL=${dmz.ingress.base.url}/registrationprocessor/v1/dmzpacketserver +packet.info.storage.service=* -#---------registration-processor-camel-bridge------------ - -#Url to cluster manager to enable this stage for joining the cluster in secure zone -cluster.manager.file.name=hazelcast_mz.xml - -#workel pool size to process multiple requests parallely +## Camel bridge +# Url to cluster manager to enable this stage for joining the cluster in secure zone +cluster.manager.file.name=hazelcast.xml +# Workel pool size to process multiple requests parallely worker.pool.size=10 - -#Route files corresponding to the secure flow +# Route files corresponding to the secure flow camel.secure.active.flows.file.names=registration-processor-camel-routes-new-mz.xml,registration-processor-camel-routes-update-mz.xml,registration-processor-camel-routes-activate-mz.xml,registration-processor-camel-routes-res-update-mz.xml,registration-processor-camel-routes-deactivate-mz.xml,registration-processor-camel-routes-lost-mz.xml,registration-processor-camel-routes-res-reprint-mz.xml -#-------------TOKEN GENERATION---------------- -#Token generation request id +## Token generation token.request.id=io.mosip.registration.processor -#Token generation app id token.request.appid=regproc -#Token generation username token.request.username=registrationprocessor -#Token generation password token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGVnY3M1DIeKGFAeBNfi6jH5qgj1KCUmFONLwSmfcrPx9m6MYXXQMYwyAeq13Msy1fcG1AtZQASKeLbuMCaRwinwdt7C/WYzvVVv47NojD+VmHHVTY3qBXJ4dwZ0/BqmUBPXyYrJPKTcdouxT76bgm5+fXXNcT7lciXgD1aCnWKziL5nDa6Y9dhc+ZPyM0d+I0JfS+emsByt7tWgcZukQkOEx8JWfcCR4eVpERYVa/ps/EAuQRXmxIvnr54GSCc/KKpwnYnjLtKIx/75I6pezBdKU/BBJG1syjQp9VQC9adSI5fdsn3ijkxJjC9TSIFJKDlTHqNCnJaxQXcSBWL4Y= -#Token generation version token.request.version=1.0 -#Token generation Client Id token.request.clientId=mosip-regproc-client -#Token generation secret key token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -#Token generation issuer url # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. - token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip -#--------Registration processor rest client API's-------------- - -#Audit Service +## Audit Service AUDIT=http://kernel-auditmanager-service/v1/auditmanager/audits -#Auth Service +## Auth Service authmanager.base.url=http://kernel-auth-service PASSWORDBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/useridPwd KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey @@ -102,7 +76,7 @@ TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateTok GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid INTERNALAUTH=http://ida-internal-service/idauthentication/v1/internal/auth -#Master Data Services +## Master Data Services MASTER=http://kernel-masterdata-service/v1/masterdata MACHINEHISTORY=${MASTER}/machineshistories CENTERHISTORY=${MASTER}/registrationcentershistory @@ -124,7 +98,7 @@ DEVICEVALIDATEHISTORY=http://pms-partner-manager-service/v1/partnermanager/devic #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest -#ID Repository Services +## ID Repository Services IDREPOSITORY=http://idrepo-identity-service/idrepository/v1/identity/ IDREPOGETIDBYUIN=http://idrepo-identity-service/idrepository/v1/identity/idvid UINGENERATOR=http://kernel-idgenerator-service/v1/idgenerator/uin @@ -135,190 +109,131 @@ GETUINBYVID=http://idrepo-vid-service/idrepository/v1/idvid CREDENTIALREQUEST=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator GETVIDSBYUIN=http://idrepo-vid-service/idrepository/v1/vid/uin -#Encrypt Services +## Encrypt Services ENCRYPTURL=http://kernel-keymanager-service/v1/keymanager/encrypt ENCRYPTIONSERVICE=http://kernel-keymanager-service/v1/keymanager/publickey PDFSIGN=http://kernel-keymanager-service/v1/keymanager/pdf/sign -#Digital Signature Service +## Digital Signature Service DIGITALSIGNATURE=http://kernel-keymanager-service/v1/keymanager/sign - -#Digital Signature Id mosip.registration.processor.digital.signature.id=io.mosip.registration.processor -# Url from where packets need to be picked up DMZ (landing zone) -NGINXDMZURL=${dmz.ingress.base.url}/registrationprocessor/v1/dmzpacketserver - -#--------Registration Processor Rest Client API's----------- +## Crypto CRYPTOMANAGERDECRYPT=http://kernel-keymanager-service/v1/keymanager/decrypt +crypto.PrependThumbprint.enable=true -#External Service +## External Service EISERVICE=http://regproc-external-integration-service/registrationprocessor/v1/eis/registration-processor/external-integration-service/v1.0 -#RID Generation Service +## RID Generation Service RIDGENERATION=http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid -#Registration Processor Status Services -# We specify Ingress location for dmz which is any worker node and a ingress port -SYNCSERVICE=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/registrationpackets +## Registration Processor Status Services +SYNCSERVICE=http://regproc-registration-status-service/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=http://regproc-packet-receiver-stage/registrationprocessor/v1/packetreceiver/registrationpackets -#SMS and EMAIL notification services +## SMS and EMAIL notification services SMSNOTIFIER=http://kernel-notification-service/v1/notifier/sms/send EMAILNOTIFIER=http://kernel-notification-service/v1/notifier/email/send +## PMS PMS=http://pms-policy-manager-service/v1/policymanager/policies -#---------Registration Status--------- - -#Maximum retry count for packet +## Registration status properties registration.processor.max.retry=10 -#Registration Status Id mosip.registration.processor.registration.status.id=mosip.registration.status -#Registration Sync Id mosip.registration.processor.registration.sync.id=mosip.registration.sync -#Registration Transaction Id mosip.registration.processor.registration.transaction.id=mosip.registration.transaction -#Registration Sync Version mosip.registration.processor.sync.version=1.0 -#Registration Status Version mosip.registration.processor.registration.status.version=1.0 -#Registration Transaction Version mosip.registration.processor.transaction.version=1.0 -#--------Demo Dedupe Stage--------- +## Demo dedupe application.id=REGISTRATION -#Status for matched records in demo dedupe stage +# Status for matched records in demo dedupe stage registration.processor.demodedupe.manualverification.status=REJECTED -#configuration parameter to disable or enable Demographic Deduplication mosip.registration.processor.demographic.deduplication.enable=true -#-----------Manual Verification Stage------------ -#Manual verification assignment request Id +## Manual verification mosip.registration.processor.manual.verification.assignment.id=mosip.manual.verification.assignment -#Manual verification decision request Id mosip.registration.processor.manual.verification.decision.id=mosip.manual.verification.decision -#Manual verification biometric request Id mosip.registration.processor.manual.verification.biometric.id=mosip.manual.verification.biometric -#Manual verification demographic request Id mosip.registration.processor.manual.verification.demographic.id=mosip.manual.verification.demographic -#Manual verification packetinfo request Id mosip.registration.processor.manual.verification.packetinfo.id=mosip.manual.verification.packetinfo - -#Manual verification queue message expiry in seconds, if given 0 then message will never expire +# Manual verification queue message expiry in seconds, if given 0 then message will never expire registration.processor.queue.manualverification.request.messageTTL=5400 # Buffer time above the expiry queue to allow reprocessing (in seconds) registration.processor.manual.verification.reprocess.buffer.time=900 - registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication registration.processor.manual.adjudication.json=registration-processor-abis.json -#packet.info.storage.service=registration-processor-packet-info-storage-service -packet.info.storage.service=* -config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ +config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ -#--------OSI Validation Stage---------- -#To enable or disable the Center working hour validation +## OSI validate mosip.workinghour.validation.required=true -#Applicant date of birth format registration.processor.applicant.dob.format=yyyy/MM/dd -#Internal Auth request id mosip.identity.auth.internal.requestid=mosip.identity.auth.internal registration.processor.validate.introducer=true mosip.kernel.device.validate.history.id="" -#UMC configuarble +## UMC: User, Machine, Center mosip.registartion.processor.validateUMC=true -crypto.PrependThumbprint.enable=true auth.PrependThumbprint.enable=false -#---------Packet Receiver Stage------------ -#Maximum file size to be upload from packet receiver +## Packet receiver registration.processor.max.file.size=5 -#Packet receiver application version mosip.registration.processor.application.version=1.0 -#Request Date Time format mosip.registration.processor.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -#Request Date Timezone mosip.registration.processor.timezone=GMT -#Packet Receiver request Id mosip.registration.processor.packet.id=mosip.registration.packet -#Request time grace period mosip.registration.processor.grace.period=10800 -#-----------Retry Stage----------- registration.processor.wait.period=1 -#----------Uin Generator Stage------------ -#Idrepo create request Id +## UIN generation registration.processor.id.repo.create=mosip.id.create -#Idrepo read request Id registration.processor.id.repo.read=mosip.id.read -#Idrepo update request Id registration.processor.id.repo.update=mosip.id.update -#Idrepo vidType request Id registration.processor.id.repo.vidType=Perpetual -#Idrepo generate request Id registration.processor.id.repo.generate=mosip.vid.create -#Idrepo vid version registration.processor.id.repo.vidVersion=v1 -#---------Virus Scanner Stage--------- -#Virus scanner packet extension +## Virus scanner registration.processor.packet.ext=.zip -#Virus scanner server host mosip.kernel.virus-scanner.host=clamav -#Virus scanner port mosip.kernel.virus-scanner.port=80 -#Virus scanner application request id registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 -#---------Message Sender Stage---------------------- -#Mapping Identity json to map with the applicant id json +## Message sender +# Mapping identity json to map with the applicant id json registration.processor.identityjson=registration-processor-identity.json -#create text print text file registration.processor.print.textfile=registration-processor-print-text-file.json -#Abis queue configuration json registration.processor.abis.json=registration-processor-abis.json -#Demographic identity label registration.processor.demographic.identity=identity registration.processor.notification.emails= -#Email subjects for success & failure scenario -#Uin generated subject +## Email registration.processor.uin.generated.subject=UIN Generated -#Duplicate Uin subject registration.processor.duplicate.uin.subject=Registration Failed because you have already Registered -#Applicant re-register subject registration.processor.reregister.subject=Re-Register because there was a Technical Issue -#Uin activated subject registration.processor.uin.activated.subject=Uin is activated successfully -#Uin deactivated subject registration.processor.uin.deactivated.subject=Uin is deactivated -#Uin details updated subject registration.processor.updated.subject=UIN Details Updated -#------------Queue----------------------- -#Queue username +## Queue registration.processor.queue.username=admin -#Queue Password registration.processor.queue.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 -#Queue Url registration.processor.queue.url=tcp://activemq:80 -#Type of the Queue registration.processor.queue.typeOfQueue=ACTIVEMQ -#Print Service address registration.processor.queue.address = print-service -#Post Service address registration.processor.queue.printpostaladdress = postal-service # Enable proxy postal service response for test environments where actual postal service wont be available # IMPORTANT : This should always be set as false in actual production environment registration.processor.enable.proxy.postalservice=true -#------------Packet Validator Stage----------- -#Attributes to be validated in master data validation +## Packet validator registration.processor.masterdata.validation.attributes = gender,region,province,city registration.processor.validateSchema=true registration.processor.validateFile=true @@ -326,80 +241,53 @@ registration.processor.validateChecksum=true registration.processor.validateApplicantDocument=true registration.processor.validateMasterData=false registration-processor.validatemandotary=true - registration.processor.document.category=idobject-document-category-mapping.json registration.processor.applicant.type=applicanttype-document-mapping.json -#------------Packet Generator----------------- -#Audit request id for packet generator +## Packet generator registration.processor.audit.applicationId=PACGEN -#Audit request application name for packet generator registration.processor.audit.applicationName=PACKET_GENERATOR -#Packet generator request id mosip.registration.processor.registration.packetgenerator.id=mosip.registration.packetgenerator -#Uin Card RePrint request id mosip.registration.processor.uincard.reprint.id = mosip.uincard.reprint -#Packet generator request version mosip.registration.processor.packetgenerator.version=1.0 -#resident update service id mosip.registration.processor.resident.service.id=mosip.registration.update -#resident lost service id mosip.registration.processor.lost.id=mosip.registration.lost - -#-------------Printing Service-------------------- +## Print stage mosip.registration.processor.print.service.id=mosip.registration.print -#unmasked uin length registration.processor.unMaskedUin.length=4 -#UIN card password mosip.registration.processor.print.service.uincard.password=postalCode|fullName -#header length to be removed from iso image to get actual image +# Header length to be removed from iso image to get actual image mosip.print.uin.header.length=73 -#Rectangle coordinates for pfd signataured data +# Rectangle coordinates for pfd signataured data mosip.registration.processor.print.service.uincard.lowerleftx=73 mosip.registration.processor.print.service.uincard.lowerlefty=100 mosip.registration.processor.print.service.uincard.upperrightx=300 mosip.registration.processor.print.service.uincard.upperrighty=300 mosip.registration.processor.print.service.uincard.signature.reason="signing" -#--------------Reprocessor stage---------------- - -#Number of the reprocess records to be fetched at a time +## Reprocessor stage +# Number of the reprocess records to be fetched at a time registration.processor.reprocess.fetchsize=100 - # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing registration.processor.reprocess.elapse.time=7200 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 -# Reprocess type registration.processor.reprocess.type=cron -#schedular seconds configuration registration.processor.reprocess.seconds=0 -#schedular minutes configuration -#the frequency for reprocess has been updated to every 5 minutes for pause/resume feature +# Frequency for reprocess has been updated to every 5 minutes for pause/resume feature registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 -#schedular hours configuration registration.processor.reprocess.hours=* -#schedular days configuration registration.processor.reprocess.days_of_month=* -#schedular months configuration registration.processor.reprocess.months=* -#schedular weeks configuration registration.processor.reprocess.days_of_week=* -# WorkflowAction api id +## WorkflowAction api id mosip.regproc.workflow.action.api-id=mosip.registration.processor.workflow.action - -# WorkflowAction api version mosip.regproc.workflow.action.version=1.0 - -#WorkflowAction service hitlisted tagname mosip.regproc.workflow.action.hotlisted-tag=HOTLISTED - -#WorkflowAction service beginning stage name mosip.regproc.workflow.action.resumefrombeginning.stage=PacketUploaderStage - #WorkflowAction service websub topic name mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event diff --git a/sandbox/registration-mz.properties b/registration.properties similarity index 100% rename from sandbox/registration-mz.properties rename to registration.properties diff --git a/sandbox/resident-mz.properties b/resident.properties similarity index 100% rename from sandbox/resident-mz.properties rename to resident.properties diff --git a/sandbox/README.md b/sandbox/README.md deleted file mode 100644 index 500c037d5ab..00000000000 --- a/sandbox/README.md +++ /dev/null @@ -1,12 +0,0 @@ -Since are working with 2 kubernetes clusters - mz and dmz, for registration process we have to replicate the property files with a suffix -dmz. - -Suffix: -* MZ (secure cluster): -mz -* DMZ : -dmz - - -* Properties for secure zone hazelcast have been duplicated as -dmz. Earlier hazelcast dmz assumed docker containers, not kubernetes. -* File name needs to have `_dmz` and `_mz`, e.g. `hazelcast_dmz-dmz.xml` as these suffixes are being searched in the code (hardcoded). - -Similarly registration-processor-mz.properties has been replicated to registration-processor-dmz.properties. Some of the links in the latter point to MZ cluster, hence the links are different. - diff --git a/sandbox/application-dmz.properties b/sandbox/application-dmz.properties deleted file mode 100644 index e02b234633a..00000000000 --- a/sandbox/application-dmz.properties +++ /dev/null @@ -1,360 +0,0 @@ -#---------------------------------------Common properties----------------------- -aplication.configuration.level.version=1.1.4 -mz.ingress.base.url: http://mz.ingress:30080 - -#Kernel-idobjectalidator -# Plug in property source as either 'LOCAL' or 'CONFIG_SERVER' or 'APPLICATION_CONTEXT' through this key -mosip.kernel.idobjectvalidator.property-source=APPLICATION_CONTEXT -mosip.kernel.idobjectvalidator.schema-name=mosip-identity-json-schema.json -mosip.kernel.idobjectvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ -mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable=NA - -mosip.masterdata.base.url = ${mz.ingress.base.url} -mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages -mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes -mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories -mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} -mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes - -mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics - -mosip.country.code=MOR - -# Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra - -mosip.primary-language=eng -mosip.secondary-language=ara - -# Application IDs -mosip.prereg.app-id=PRE_REGISTRATION -mosip.reg.app-id=REGISTRATION -mosip.regproc.app-id=REGISTRATION_PROCESSOR -mosip.ida.app-id=IDA -mosip.ida.ref-id=INTERNAL -mosip.idrepo.app-id=ID_REPO - -# UTC ISO Date Time Pattern -mosip.utc-datetime-pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -mosip.sign.header=response-signature -mosip.signed.response.header=response-signature - -#----------------------- CBEFF Util-------------------------------------------------- -# Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. -mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ -# Cbeff XSD file name in config server -mosip.kernel.xsdfile=mosip-cbeff.xsd - -#----------------------------- Applicant Type -------------------------------------------------- -mosip.kernel.applicant.type.age.limit = 5 - -#----------------------------- Static PIN -------------------------------------------------- -mosip.kernel.pin.length=6 - -#-----------------------------TspId ----------------------------------------------- -#length of the Tsp id -mosip.kernel.tspid.length=4 - -#-----------------------------partnerId ----------------------------------------------- -#length of the partner id -mosip.kernel.partnerid.length=4 - -#-----------------------------TOKEN-ID Properties--------------------------------- -#length of the token id -mosip.kernel.tokenid.length=36 - -#-----------------------------Registration Center Id ----------------------------------------------- -#length of the registration center id -mosip.kernel.registrationcenterid.length=5 - -#-----------------------------Machine Id ----------------------------------------------- -#length of the machine id -mosip.kernel.machineid.length=5 - -#-----------------------------RID Properties--------------------------------------- -# length of the rid -mosip.kernel.rid.length=29 -# length of the timestamp -mosip.kernel.rid.timestamp-length=14 -# rid sequence max digits -mosip.kernel.rid.sequence-length=5 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -mosip.kernel.tokenid.sequence-limit=3 - -#-----------------------------PRID Properties------------------------------------ -#prid-length -mosip.kernel.prid.length=14 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -#to disable validation assign zero or negative value -mosip.kernel.prid.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -#to disable validation assign zero or negative value -mosip.kernel.prid.repeating-block-limit=3 - - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) to disable validation assign zero or negative value -mosip.kernel.prid.repeating-limit=2 - -# list of number that id should not be start with to disable null -mosip.kernel.prid.not-start-with=0,1 - -#restricted numbers for prid -mosip.kernel.prid.restricted-numbers=786,666 - - -#-----------------------------VID Properties-------------------------------------- -# length of the vid -mosip.kernel.vid.length=16 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -# to disable sequence limit validation assign 0 or negative value -mosip.kernel.vid.length.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -# to disable repeating block validation assign 0 or negative value -mosip.kernel.vid.length.repeating-block-limit=2 - - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) -# to disable repeating limit validation, assign 0 or negative value -mosip.kernel.vid.length.repeating-limit=2 - -# list of number that id should not be start with -# to disable null -mosip.kernel.vid.not-start-with=0,1 - -#restricted numbers for vid -mosip.kernel.vid.restricted-numbers=786,666 - -#-----------------------------UIN Properties-------------------------------------- -#length of the uin -mosip.kernel.uin.length=10 -#minimum threshold of unused uin -mosip.kernel.uin.min-unused-threshold=200000 -#number of uins to generate -mosip.kernel.uin.uins-to-generate=500000 -#restricted numbers for uin -mosip.kernel.uin.restricted-numbers=786,666 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -# to disable sequence limit validation assign 0 or negative value -mosip.kernel.uin.length.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -#to disable validation assign zero or negative value -mosip.kernel.uin.length.repeating-block-limit=2 - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) -# to disable repeating limit validation, assign 0 or negative value -mosip.kernel.uin.length.repeating-limit=2 - -#reverse group digit limit for uin filter -mosip.kernel.uin.length.reverse-digits-limit=5 - -#group digit limit for uin filter -mosip.kernel.uin.length.digits-limit=5 - -#should not start with -mosip.kernel.uin.not-start-with=0,1 - -#adjacent even digit limit for uin filter -mosip.kernel.uin.length.conjugative-even-digits-limit=3 - - - -#------------------------Auth-Adapter----------------------------------------------- -auth.server.validate.url=${mz.ingress.base.url}/v1/authmanager/authorize/admin/validateToken -#----------------------- Crypto -------------------------------------------------- -#Crypto asymmetric algorithm name -mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING -#Crypto symmetric algorithm name -mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding -#Keygenerator asymmetric algorithm name -mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA -#Keygenerator symmetric algorithm name -mosip.kernel.keygenerator.symmetric-algorithm-name=AES -#Asymmetric algorithm key length -mosip.kernel.keygenerator.asymmetric-key-length=2048 -#Symmetric algorithm key length -mosip.kernel.keygenerator.symmetric-key-length=256 -#Keygenerator symmetric algorithm name -mosip.kernel.keygenerator.symmetric-algorithm-name=AES -# keygenerator asymmetric algorithm name -mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA -#Encrypted data and encrypted symmetric key separator -mosip.kernel.data-key-splitter=#KEY_SPLITTER# -#GCM tag length -mosip.kernel.crypto.gcm-tag-length=128 -#Hash algo name -mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 -#Symmtric key length used in hash -mosip.kernel.crypto.hash-symmetric-key-length=256 -#No of iterations in hash -mosip.kernel.crypto.hash-iteration=100000 -#Sign algo name -mosip.kernel.crypto.sign-algorithm-name=RS256 - -mosip.keymanager.base.url=http://kernel-keymanager-service -mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} -mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt -mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt -mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign -mosip.sign.applicationid=KERNEL -mosip.sign.refid=SIGN -mosip.kernel.cryptomanager.request_id=CRYPTOMANAGER.REQUEST -mosip.kernel.cryptomanager.request_version=v1.0 -mosip.kernel.signature.signature-request-id=SIGNATURE.REQUEST -mosip.kernel.signature.signature-version-id=v1.0 - - - -#----------------------------------ID Repo------------------------------------------ -mosip.idrepo.identity.uin-status.registered=ACTIVATED -mosip.idrepo.identity.uin-status=ACTIVATED,BLOCKED,DEACTIVATED - -#---------------------------------------otp manager service------------------------------- -#the default length for otp(in number) -mosip.kernel.otp.default-length=6 -#the default crypto function -#It can be: HmacSHA512, HmacSHA256, HmacSHA1. -mosip.kernel.otp.mac-algorithm=HmacSHA512 -#the OTP expires after the given time(in seconds). -mosip.kernel.otp.expiry-time=180 -#the key is freezed for the given time(in seconds). -mosip.kernel.otp.key-freeze-time=1800 -#the number of validation attempts allowed(in number). -#mosip.kernel.otp.validation-attempt-threshold =3 means , the validation and generation will be blocked from 4th time. -mosip.kernel.otp.validation-attempt-threshold=10 -#minimum length of key(in number). -mosip.kernel.otp.min-key-length=3 -#maximum length of key(in number). -mosip.kernel.otp.max-key-length=64 - - -#--------------------------------------Licensekeymanager Service-------------------------------------- -#the license key length. -mosip.kernel.licensekey.length=16 -#List of permissions -# NOTE: ',' in the below list is used as splitter in the implementation. -# Use of ',' in the values for below key should be avoided. -# Use of spaces before and after ',' also should be avoided. -mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authentication - Identity Data Match,Demo Authentication - Address Data Match,Demo Authentication - Full Address Data Match,Demo Authentication - Secondary Language Match,Biometric Authentication - FMR Data Match,Biometric Authentication - IIR Data Match,Biometric Authentication - FID Data Match,Static Pin Authentication,eKYC - limited,eKYC - Full,eKYC - No - - - -#-----------------------------Virus Scanner-------------------------------------- -mosip.kernel.virus-scanner.host=clamav -mosip.kernel.virus-scanner.port=80 - -#------------------------Transliteration----------------------------------------------- -mosip.kernel.transliteration.arabic-language-code=ara -mosip.kernel.transliteration.franch-language-code=fra - - - -#-------Registration processor Notification types------------ -mosip.registration.processor.notification.types=SMS|EMAIL - - -mosip.default.dob.month=01 -mosip.default.dob.day=01 -mosip.login.mode= email,mobile - - -#---Language orientation----- -mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng,fra - - -#**************** Notification Type ************* -#mosip.notificationtype=SMS|EMAIL -mosip.notificationtype=EMAIL -mosip.kernel.sms.proxy-sms=false -#******** Notification lanugage types - either PRIMARY or BOTH ******** -mosip.notification.language-type=BOTH - - -#-------------------System--------------- -logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO - -#-------------------Admin--------------- -mosip.min-digit-longitude-latitude=4 -mosip.kernel.filtervalue.max_columns=20 - -auth.server.admin.validate.url=${mz.ingress.base.url}/v1/authmanager/authorize/admin/validateToken - -#------------------PDF Genration----------------------------------------- -mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -#------------------Quality Check----------------------------------------- -#Quality threshold for applicant iris -mosip.iris_threshold=0 -#Quality threshold for applicant leftslap fingerprint -mosip.leftslap_fingerprint_threshold=0 -#Quality threshold for applicant rightslap fingerprint -mosip.rightslap_fingerprint_threshold=0 -#Quality threshold for applicant thumbs fingerprint -mosip.thumbs_fingerprint_threshold=0 -#Quality threshold for applicant face -mosip.facequalitythreshold=0 -#Bio SDK Integration -mosip.fingerprint.provider=io.mosip.kernel.bioapi.impl.BioApiImpl -mosip.face.provider=io.mosip.kernel.bioapi.impl.BioApiImpl -mosip.iris.provider=io.mosip.kernel.bioapi.impl.BioApiImpl - -#-------UIN Alias------------------- -mosip.uin.alias= - -#---------------------------------kernel Salt Generator---------------------------------------------------# -mosip.kernel.salt-generator.chunk-size=10 -mosip.kernel.salt-generator.start-sequence=0 -mosip.kernel.salt-generator.end-sequence=999 -#----------------------------------------------------------------------------------------------------------# -server.max-http-header-size=10000000 - -mosip.kernel.auth.adapter.ssl-bypass=true - -# device registration/deregistration config -mosip.stage.environment=Developer - -# log level -logging.level.root=WARN -logging.level.io.mosip=INFO -logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO - -#iam adapter -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter - -# tomcat access logs -server.tomcat.accesslog.enabled=true -server.tomcat.accesslog.directory=/dev -server.tomcat.accesslog.prefix=stdout -server.tomcat.accesslog.buffered=false -server.tomcat.accesslog.suffix= -server.tomcat.accesslog.file-date-format= -server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}"} -server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve diff --git a/sandbox/hazelcast_dmz-dmz.xml b/sandbox/hazelcast_dmz-dmz.xml deleted file mode 100644 index 160d06581f8..00000000000 --- a/sandbox/hazelcast_dmz-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!-- ~ Copyright 2017 Red Hat, Inc. ~ ~ Red Hat licenses this file to you - under the Apache License, version 2.0 ~ (the "License"); you may not use - this file except in compliance with the ~ License. You may obtain a copy - of the License at: ~ ~ http://www.apache.org/licenses/LICENSE-2.0 ~ ~ Unless - required by applicable law or agreed to in writing, software ~ distributed - under the License is distributed on an "AS IS" BASIS, WITHOUT ~ WARRANTIES - OR CONDITIONS OF ANY KIND, either express or implied. See the ~ License for - the specific language governing permissions and limitations ~ under the License. --> - -<hazelcast - xsi:schemaLocation="http://www.hazelcast.com/schema/config hazelcast-config-3.10.xsd" - xmlns="http://www.hazelcast.com/schema/config" - xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> - <properties> - <property name="hazelcast.discovery.enabled">true</property> - <property name="hazelcast.logging.type">slf4j</property> - </properties> -<group> - <name>k8s</name> - <password/> - </group> - <network> - <join> - <multicast enabled="false"/> - <tcp-ip enabled="false" /> - <discovery-strategies> - <discovery-strategy enabled="true" - class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> - <properties> - <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> - </properties> - </discovery-strategy> - </discovery-strategies> - </join> - </network> -</hazelcast> diff --git a/sandbox/mosip-cbeff-env.xsd b/sandbox/mosip-cbeff-env.xsd deleted file mode 100644 index 4f53d61be96..00000000000 --- a/sandbox/mosip-cbeff-env.xsd +++ /dev/null @@ -1,174 +0,0 @@ -<?xml version="1.0" encoding="utf-8"?> -<!-- -Permission is hereby granted, free of charge in perpetuity, to any person -obtaining a copy of the Schema, to use, copy, modify, merge and distribute free -of charge, copies of the Schema for the purposes of developing, implementing, -installing and using software based on the Schema, and to permit persons to -whom the Schema is furnished to do so, subject to the following conditions: - -THE SCHEMA IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR -IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, -FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE -AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER -LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, -OUT OF OR IN CONNECTION WITH THE SCHEMA OR THE USE OR OTHER DEALINGS IN THE -SCHEMA. ---> -<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" -xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http://standards.iso.org/iso-iec/19785/-3/ed-2/" elementFormDefault="qualified" attributeFormDefault="unqualified"> - <xs:element name="BIR" type="BIRType"/> - <xs:complexType name="BIRType"> - <xs:sequence> - <xs:element name="Version" type="VersionType" minOccurs="0"/> - <xs:element name="CBEFFVersion" type="VersionType" minOccurs="0"/> - <xs:any namespace="##other" processContents="skip" minOccurs="0" maxOccurs="unbounded"/> - <xs:element name="BIRInfo" type="BIRInfoType"/> - <xs:element name="BDBInfo" type="BDBInfoType" minOccurs="0"/> - <xs:element name="SBInfo" type="SBInfoType" minOccurs="0"/> - <xs:element name="BIR" type="BIRType" minOccurs="0" maxOccurs="unbounded"/> - <xs:element name="BDB" type="xs:base64Binary" minOccurs="0"/> - <xs:element name="SB" type="xs:base64Binary" minOccurs="0"/> - </xs:sequence> - </xs:complexType> - <xs:complexType name="VersionType"> - <xs:sequence> - <xs:element name="Major" type="xs:unsignedInt"/> - <xs:element name="Minor" type="xs:unsignedInt"/> - </xs:sequence> - </xs:complexType> - <xs:complexType name="BIRInfoType"> - <xs:sequence> - <xs:element name="Creator" type="xs:string" minOccurs="0"/> - <xs:element name="Index" type="UUIDType" minOccurs="0"/> - <xs:element name="Payload" type="xs:base64Binary" minOccurs="0"/> - <xs:element name="Integrity" type="xs:boolean"/> - <xs:element name="CreationDate" type="xs:dateTime" minOccurs="0"/> - <xs:element name="NotValidBefore" type="xs:dateTime" minOccurs="0"/> - <xs:element name="NotValidAfter" type="xs:dateTime" minOccurs="0"/> - </xs:sequence> - </xs:complexType> - <xs:complexType name="BDBInfoType"> - <xs:sequence> - <xs:element name="ChallengeResponse" type="xs:base64Binary" minOccurs="0"/> - <xs:element name="Index" type="UUIDType" minOccurs="0"/> - <xs:element name="Format" type="RegistryIDType" minOccurs="0"/> - <xs:element name="Encryption" type="xs:boolean" minOccurs="0"/> - <xs:element name="CreationDate" type="xs:dateTime" minOccurs="0"/> - <xs:element name="NotValidBefore" type="xs:dateTime" minOccurs="0"/> - <xs:element name="NotValidAfter" type="xs:dateTime" minOccurs="0"/> - <xs:element name="Type" type="MultipleTypesType" minOccurs="0"/> - <xs:element name="Subtype" type="SubtypeType" minOccurs="0"/> - <xs:element name="Level" type="ProcessedLevelType" minOccurs="0"/> - <xs:element name="Product" type="RegistryIDType" minOccurs="0"/> - <xs:element name="CaptureDevice" type="RegistryIDType" minOccurs="0"/> - <xs:element name="FeatureExtractionAlgorithm" type="RegistryIDType" minOccurs="0"/> - <xs:element name="ComparisonAlgorithm" type="RegistryIDType" minOccurs="0"/> - <xs:element name="CompressionAlgorithm" type="RegistryIDType" minOccurs="0"/> - <xs:element name="Purpose" type="PurposeType" minOccurs="0"/> - <xs:element name="Quality" type="QualityType" minOccurs="0"/> - </xs:sequence> - </xs:complexType> - <xs:complexType name="RegistryIDType"> - <xs:sequence> - <xs:element name="Organization" type="xs:string"/> - <xs:element name="Type" type="xs:string"/> - </xs:sequence> - </xs:complexType> - <xs:complexType name="SBInfoType"> - <xs:sequence> - <xs:element name="Format" type="RegistryIDType" minOccurs="0"/> - </xs:sequence> - </xs:complexType> - <xs:simpleType name="QualityScoreType"> - <xs:restriction base="xs:unsignedInt"> - <xs:maxInclusive value="100"/> - </xs:restriction> - </xs:simpleType> - <xs:complexType name="QualityType"> - <xs:sequence> - <xs:element name="Algorithm" type="RegistryIDType"/> - <xs:choice> - <xs:element name="Score" type="QualityScoreType"/> - <xs:element name="QualityCalculationFailed" type="xs:string"/> - </xs:choice> - </xs:sequence> - </xs:complexType> - <xs:simpleType name="SingleTypeType"> - <xs:restriction base="xs:string"> - <xs:enumeration value="Scent"/> - <xs:enumeration value="DNA"/> - <xs:enumeration value="Ear "/> - <xs:enumeration value="Face"/> - <xs:enumeration value="Finger"/> - <xs:enumeration value="Foot"/> - <xs:enumeration value="HandGeometry"/> - <xs:enumeration value="Vein"/> - <xs:enumeration value="Iris"/> - <xs:enumeration value="Retina"/> - <xs:enumeration value="Voice"/> - <xs:enumeration value="Gait"/> - <xs:enumeration value="Keystroke"/> - <xs:enumeration value="LipMovement"/> - <xs:enumeration value="SignatureSign"/> - <xs:enumeration value="Palm"/> - <xs:enumeration value="BackOfHand"/> - <xs:enumeration value="Wrist"/> - </xs:restriction> - </xs:simpleType> - <xs:simpleType name="MultipleTypesType"> - <xs:list itemType="SingleTypeType"/> - </xs:simpleType> - <xs:simpleType name="SingleAnySubtypeType"> - <xs:restriction base="xs:string"> - <xs:enumeration value="Left"/> - <xs:enumeration value="Right"/> - <xs:enumeration value="Thumb"/> - <xs:enumeration value="IndexFinger"/> - <xs:enumeration value="MiddleFinger"/> - <xs:enumeration value="RingFinger"/> - <xs:enumeration value="LittleFinger"/> - </xs:restriction> - </xs:simpleType> - <xs:simpleType name="SingleVeinOnlySubtypeType"> - <xs:restriction base="xs:string"> - <xs:enumeration value="LeftVein"/> - <xs:enumeration value="RightVein"/> - <xs:enumeration value="Palm"/> - <xs:enumeration value="BackOfHand"/> - <xs:enumeration value="Wrist"/> - <xs:enumeration value="Reserved1"/> - <xs:enumeration value="Reserved2"/> - </xs:restriction> - </xs:simpleType> - <xs:simpleType name="MultipleAnySubtypesType"> - <xs:list itemType="SingleAnySubtypeType"/> - </xs:simpleType> - <xs:simpleType name="MultipleVeinOnlySubtypesType"> - <xs:list itemType="SingleVeinOnlySubtypeType"/> - </xs:simpleType> - <xs:simpleType name="SubtypeType"> - <xs:union memberTypes="MultipleAnySubtypesType MultipleVeinOnlySubtypesType"/> - </xs:simpleType> - <xs:simpleType name="ProcessedLevelType"> - <xs:restriction base="xs:string"> - <xs:enumeration value="Raw"/> - <xs:enumeration value="Intermediate"/> - <xs:enumeration value="Processed"/> - </xs:restriction> - </xs:simpleType> - <xs:simpleType name="PurposeType"> - <xs:restriction base="xs:string"> - <xs:enumeration value="Verify"/> - <xs:enumeration value="Identify"/> - <xs:enumeration value="Enroll"/> - <xs:enumeration value="EnrollVerify"/> - <xs:enumeration value="EnrollIdentify"/> - <xs:enumeration value="Audit"/> - </xs:restriction> - </xs:simpleType> - <xs:simpleType name="UUIDType"> - <xs:restriction base="xs:string"> - <xs:pattern value="[a-fA-F0-9]{8}\-([a-fA-F0-9]{4}\-){3}[a-fA-F0-9]{12}"/> - </xs:restriction> - </xs:simpleType> -</xs:schema> diff --git a/sandbox/registration-processor-camel-routes-activate-dmz.xml b/sandbox/registration-processor-camel-routes-activate-dmz.xml deleted file mode 100644 index d332fa91532..00000000000 --- a/sandbox/registration-processor-camel-routes-activate-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader Route --> - <route id="packet-reciever-->packet-uploader activated route"> - <from uri="eventbus:packet-receiver-activated-bus-out" /> - <log - message="packet-reciever-->packet-uploader activated-route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-camel-routes-deactivate-dmz.xml b/sandbox/registration-processor-camel-routes-deactivate-dmz.xml deleted file mode 100644 index c61c7ba2a18..00000000000 --- a/sandbox/registration-processor-camel-routes-deactivate-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader Route --> - <route id="packet-reciever-->packet-uploader deactivated route"> - <from uri="eventbus:packet-receiver-deactivated-bus-out" /> - <log - message="packet-reciever-->packet-uploader deactivated-route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-camel-routes-lost-dmz.xml b/sandbox/registration-processor-camel-routes-lost-dmz.xml deleted file mode 100644 index ab3cb6e2166..00000000000 --- a/sandbox/registration-processor-camel-routes-lost-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader lost Route --> - <route id="packet-reciever-->packet-uploader lost route"> - <from uri="eventbus:packet-receiver-lost-bus-out" /> - <log - message="packet-reciever-->packet-uploader ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification"/> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-camel-routes-new-dmz.xml b/sandbox/registration-processor-camel-routes-new-dmz.xml deleted file mode 100644 index af8f1a77c11..00000000000 --- a/sandbox/registration-processor-camel-routes-new-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader Route --> - <route id="packet-reciever-->packet-uploader new route"> - <from uri="eventbus:packet-receiver-new-bus-out" /> - <log - message="packet-reciever-->packet-uploader new ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-camel-routes-res-reprint-dmz.xml b/sandbox/registration-processor-camel-routes-res-reprint-dmz.xml deleted file mode 100644 index e77e14c41c2..00000000000 --- a/sandbox/registration-processor-camel-routes-res-reprint-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader Route --> - <route id="packet-reciever-->packet-uploader res_reprint route"> - <from uri="eventbus:packet-receiver-res_reprint-bus-out" /> - <log - message="packet-reciever-->packet-uploader res_reprint ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" />` - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-camel-routes-res-update-dmz.xml b/sandbox/registration-processor-camel-routes-res-update-dmz.xml deleted file mode 100644 index 61d1c5da36b..00000000000 --- a/sandbox/registration-processor-camel-routes-res-update-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader Route --> - <route id="packet-reciever-->packet-uploader res_update route"> - <from uri="eventbus:packet-receiver-res_update-bus-out" /> - <log - message="packet-reciever-->packet-uploader res_update ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-camel-routes-update-dmz.xml b/sandbox/registration-processor-camel-routes-update-dmz.xml deleted file mode 100644 index 0142b6ee601..00000000000 --- a/sandbox/registration-processor-camel-routes-update-dmz.xml +++ /dev/null @@ -1,34 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to packet-uploader Route --> - <route id="packet-reciever-->packet-uploader update route"> - <from uri="eventbus:packet-receiver-update-bus-out" /> - <log - message="packet-reciever-->packet-uploader update ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <process ref="tokenGenerationProcessor"/> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/sandbox/registration-processor-dmz.properties b/sandbox/registration-processor-dmz.properties deleted file mode 100644 index 364f92bebac..00000000000 --- a/sandbox/registration-processor-dmz.properties +++ /dev/null @@ -1,147 +0,0 @@ -# DB -mosip.registration.processor.database.hostname=mz.ingress -mosip.registration.processor.database.port=30090 - -# To connect to services on other cluster -mz.ingress.url=http://mz.ingress:30080 - -registration.processor.zone=dmz - -#-----------Health checker-------------- -management.endpoint.health.show-details=always -management.endpoints.web.exposure.include=info,health,refresh - -# ---------DB connection--------------- -javax.persistence.jdbc.driver=org.postgresql.Driver -javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc -javax.persistence.jdbc.user=regprcuser -javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - -#Hibernate properties -hibernate.hbm2ddl.auto=none -hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect -hibernate.jdbc.lob.non_contextual_creation=true -hibernate.show_sql=false - -#-----packet-manager---------- - -registration.processor.LANDING_ZONE = /mnt/regproc/landing - -#-----packet-utility---------- -# The known packet sources. Should be set as all fieldCategory present in idschema -# (NOTE : if fieldCategory is set as pvt then the source should be id) -registration.processor.sourcepackets=id,evidence,optional -# The mandatory default source packet.(In default configuration this is thd id packet) -packet.default.source=id -# the default schema field cagegory (ex - private) -schema.default.fieldCategory=pvt -# The IDSchemaVersion used to create packets in reg-proc -IDSchema.Version=1.0 - -#---------registration-processor-camel-bridge------------ - -#workel pool size to process multiple requests parallely -worker.pool.size=10 - -#Route files corresponding to the dmz flow -camel.dmz.active.flows.file.names=registration-processor-camel-routes-new-dmz.xml,registration-processor-camel-routes-update-dmz.xml,registration-processor-camel-routes-activate-dmz.xml,registration-processor-camel-routes-res-update-dmz.xml,registration-processor-camel-routes-deactivate-dmz.xml,registration-processor-camel-routes-lost-dmz.xml,registration-processor-camel-routes-res-reprint-dmz.xml - -#-------------TOKEN GENERATION---------------- -token.request.id=io.mosip.registration.processor -token.request.appid=regproc -token.request.version=1.0 -token.request.clientId=mosip-regproc-client -token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip - -#--------Registration processor rest client API's-------------- -CRYPTOMANAGERDECRYPT=${mz.ingress.url}/v1/keymanager/decrypt - -#Audit Service -AUDIT=${mz.ingress.url}/v1/auditmanager/audits - -#Auth Services -KEYBASEDTOKENAPI=${mz.ingress.url}/v1/authmanager/authenticate/clientidsecretkey -TOKENVALIDATE=${mz.ingress.url}/v1/authmanager/authorize/admin/validateToken -DIGITALSIGNATURE=${mz.ingress.url}/v1/keymanager/sign -mosip.registration.processor.digital.signature.id=io.mosip.registration.processor - -ida-internal-auth-uri=${mz.ingress.url}/idauthentication/v1/internal/auth -ida-internal-get-certificate-uri=${mz.ingress.url}/idauthentication/v1/internal/getCertificate - -#---------Registration Status--------- - -registration.processor.max.retry=3 -mosip.registration.processor.registration.status.id=mosip.registration.status -mosip.registration.processor.registration.sync.id=mosip.registration.sync -mosip.registration.processor.sync.version=1.0 -mosip.registration.processor.registration.status.version=1.0 - -#---------Packet Receiver Stage------------ -#Maximum file size to be upload from packet receiver -registration.processor.max.file.size=5 -mosip.registration.processor.application.version=1.0 -mosip.registration.processor.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -mosip.registration.processor.timezone=GMT -mosip.registration.processor.packet.id=mosip.registration.packet -mosip.registration.processor.grace.period=10800 - -#---------Virus Scanner Stage--------- -registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav -mosip.kernel.virus-scanner.port=80 -registration.processor.application.id=REGISTRATION -registration.processor.rid.machineidsubstring=10 - -#--------------Reprocessor stage---------------- - -# The reprocessor scheduler configurations -# The elapse time beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=300 - -#Service Ids -mosip.registration.processor.audit.id=mosip.applicanttype.getApplicantType -mosip.registration.processor.crypto.decrypt.id=mosip.cryptomanager.decrypt - -#Kernel Crypto signature -registration.processor.signature.isEnabled=true - -#--------Registration Processor Rest Client API's----------- -CRYPTOMANAGERDECRYPT=${mz.ingress.url}/v1/keymanager/decrypt -ENCRYPTURL=${mz.ingress.url}/v1/keymanager/encrypt - -#iam adapter -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter - -#----------------------------------Event Bus------------------------------------------ -#Supported eventbus types: vertx, kafka. Defaults to vertx if the config is not given -mosip.regproc.eventbus.type=kafka - -#Kafka event bus config, will be used only when the type is kafka -#Kafka cluster servers comma separated, common for all stages and camel -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default.svc.cluster.local:9092,kafka-1.kafka-headless.default.svc.cluster.local:9092,kafka-2.kafka-headless.default.svc.cluster.local:9092 - -#packet-receiver-stage -#Supported commmit config: auto, batch, single -mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single -#Maximum records that can be received in one poll to kafka -mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 -#Interval between each poll calls to kafka in milli sec -mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 -#kafka consumer group id, one unique id is required for for every stage -mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage - -#camel-bridge -mosip.regproc.camel.bridge.eventbus.kafka.commit.type=single -mosip.regproc.camel.bridge.eventbus.kafka.max.poll.records=100 -mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 -#Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends -#MosipVerticleAPIManager -mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-brdige-dmz - -# Packet Recevier -mosip.regproc.message.tag.loading.disable=true - -mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver -mosip.regproc.packet.receiver.server.port=8081 -mosip.regproc.packet.receiver.eventbus.port=5711 \ No newline at end of file diff --git a/sandbox/syncdata-mz.properties b/syncdata.properties similarity index 100% rename from sandbox/syncdata-mz.properties rename to syncdata.properties From 7232123ea7b5f6b10921ad7c0ecf431b392f9993 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 3 Apr 2021 15:45:19 +0530 Subject: [PATCH 0022/1358] Unused properties removed. --- kernel.properties | 4 ---- syncdata.properties | 4 ---- 2 files changed, 8 deletions(-) diff --git a/kernel.properties b/kernel.properties index 7cdd8c6dda1..3a3fa390d42 100644 --- a/kernel.properties +++ b/kernel.properties @@ -181,15 +181,11 @@ audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.k audit_database_username=audituser audit_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - #Database mappings masterdata masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -#masterdata_database_username=sysadmin -#masterdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 masterdata_database_username=masteruser masterdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - #Database mappings uin uin.swagger.base-url=https://qa.mosip.io uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel diff --git a/syncdata.properties b/syncdata.properties index 6ec4c545e73..47c381289aa 100644 --- a/syncdata.properties +++ b/syncdata.properties @@ -181,15 +181,11 @@ audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.k audit_database_username=audituser audit_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - #Database mappings masterdata masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -#masterdata_database_username=sysadmin -#masterdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 masterdata_database_username=masteruser masterdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - #Database mappings uin uin.swagger.base-url=https://qa.mosip.io uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel From be57b7c61e59f3cfce8b2a33fca926d50e9cf75a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 5 Apr 2021 10:54:04 +0530 Subject: [PATCH 0023/1358] [MOSIP-12666] Minior cleanup. --- id-repository.properties | 31 ------------------------------- 1 file changed, 31 deletions(-) diff --git a/id-repository.properties b/id-repository.properties index 87776d5f671..1c76f167437 100644 --- a/id-repository.properties +++ b/id-repository.properties @@ -1,55 +1,29 @@ management.endpoint.restart.enabled=true #----------------------------------ID Repo dynamic properties----------------------------------------------# - -# IDRepo database url mosip.idrepo.db.url=postgres - -# IDRepo database port mosip.idrepo.db.port=80 - -#IDRepo identity service database name mosip.idrepo.db.identity.db-name=mosip_idrepo - -#IDRepo identity service database username mosip.idrepo.db.identity.username=idrepouser - -#IDRepo database password (encrypted) mosip.idrepo.db.identity.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - -#IDRepo VID service database name mosip.idrepo.db.vid.db-name=mosip_idmap - -#IDRepo VID service database username mosip.idrepo.db.vid.username=idmapuser - -#IDRepo VID service database password (encrypted) mosip.idrepo.db.vid.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - -#IDRepo ObjectStore account name mosip.idrepo.objectstore.account-name=idrepo - -#IDRepo ObjectStore bucket name under which all idrepo objects are stored mosip.idrepo.objectstore.bucket-name=idrepo - -#IDRepo ObjectStore adapter name mosip.idrepo.objectstore.adapter-name=s3Adapter #----------------------------------ID Repo Service---------------------------------------------------------# # Application name using for auditing mosip.idrepo.application.name=ID-Repository - # Application version validation in ID-Repo requests mosip.idrepo.application.version.pattern=^v\\d+(\\.\\d+)?$ - # Modulo value used to evaluate expression (UIN % modulo) used to get the salt from salt table mosip.idrepo.modulo-value=1000 - # Configuration for +/- time period adjustment in minutes for the request time validation, so that #the requests originating from a system that is not in time-sync will be accepted for the time period mosip.idrepo.datetime.future-time-adjustment=2 - # Reference IDs of base keys used for encryption/decryption mosip.idrepo.crypto.refId.uin=uin mosip.idrepo.crypto.refId.uin-data=identity_data @@ -308,8 +282,6 @@ PARTNER_POLICY=http://pms-partner-manager-service/v1/partnermanager/partners/{pa PARTNER_EXTRACTION_POLICY=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} credential.service.token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip - - #--------------------------Credential-Service properties ends--------------------------------------------------# #--------------------------Bio SDK Integration - Bio extractor Service ----------------------------------------# @@ -342,8 +314,6 @@ mosip.biometric.sdk.provider.face.version=0.9 mosip.biometric.sdk.provider.face.format.url.mock-1.1=${mosip.biosdk.default.service.url} #------ - - # Credential issuance Event properties id-repo-ida-event-type-namespace=mosip id-repo-ida-event-type-name=ida @@ -354,4 +324,3 @@ id-repo-ida-credential-recepiant=IDA # Kernel token ID generator properties mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d - From 97e12fb4e69b774eb32e9a78838e16aabecc13ee Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 5 Apr 2021 17:38:19 +0530 Subject: [PATCH 0024/1358] [MOSIP-12666] Properties updated for various secrets. --- kernel.properties | 51 +++++++++++++++++++++++++---------------------- 1 file changed, 27 insertions(+), 24 deletions(-) diff --git a/kernel.properties b/kernel.properties index 3a3fa390d42..53e27663f6e 100644 --- a/kernel.properties +++ b/kernel.properties @@ -82,11 +82,11 @@ idrepo.api.getuindetails=http://idrepo-identity-service/idrepository/v1/identity mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +mosip.kernel.auth.secret.key=${mosip.mosip.auth.client.secret} mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} #------------------------Token id generation service salts--------------------------- mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf @@ -170,70 +170,70 @@ logging.level.org.hibernate.type=ERROR #Kernel admin service admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel admin_database_username=kerneluser -admin_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +admin_database_password=${db.user.password} syncjob_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master syncjob_database_username=masteruser -syncjob_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +syncjob_database_password=${db.user.password} #Database mappings audit audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_audit audit_database_username=audituser -audit_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +audit_database_password=${db.user.password} #Database mappings masterdata masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master masterdata_database_username=masteruser -masterdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +masterdata_database_password=${db.user.password} #Database mappings uin uin.swagger.base-url=https://qa.mosip.io uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel uin_database_username=kerneluser -uin_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +uin_database_password=${db.user.password} hibernate.current_session_context_class=org.springframework.orm.hibernate5.SpringSessionContext #Database mappings id id_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel id_database_username=kerneluser -id_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +id_database_password=${db.user.password} #Database mappings vid vid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel vid_database_username=kerneluser -vid_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +vid_database_password=${db.user.password} #Database mappings prid prid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel prid_database_username=kerneluser -prid_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +prid_database_password=${db.user.password} #Database mappings keymanager keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_keymgr -keymanager_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +keymanager_database_password=${db.user.password} keymanager_database_username= keymgruser #Database mappings otp manager otpmanager_database_username = kerneluser otpmanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -otpmanager_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +otpmanager_database_password=${db.user.password} #Database mappings syncdata syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master syncdata_database_username=masteruser -syncdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +syncdata_database_password=${db.user.password} #Database mappings licensekeymanager licensekeymanager.persistence.jdbc.driver=org.postgresql.Driver licensekeymanager_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master licensekeymanager_database_username=masteruser -licensekeymanager_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +licensekeymanager_database_password=${db.user.password} #Database mappings rid generator ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc -ridgenerator_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +ridgenerator_database_password=${db.user.password} #Database mappings authmanager @@ -245,21 +245,21 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam db_1_DS.datastore.username=iamuser -db_1_DS.datastore.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +db_1_DS.datastore.password=${db.user.password} db_1_DS.datastore.driverClassName=org.postgresql.Driver db_1_DS.datastore.schema=GOVT_OFFICERS db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam db_2_DS.datastore.username=iamuser -db_2_DS.datastore.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +db_2_DS.datastore.password=${db.user.password} db_2_DS.datastore.driverClassName=org.postgresql.Driver db_2_DS.datastore.schema=GOVT_OFFICERS #-------------------------------------------------------------------------------------------------# #------------------------KeyCloak Config changes---------------------------# - -mosip.iam.base-url=http://keycloak +# keycloak.host: env variable +mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ @@ -270,7 +270,7 @@ mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=http://keycloak/auth +keycloak.auth-server-url=${keycloak.host}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true @@ -284,7 +284,7 @@ mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret={cipher}46b4a98aac7347e6a2d4f723e281cfd1e7b859100cc17494fc7ed9fb357a6cd9 +mosip.admin.clientsecret=${mosip-mosip-admin-client-secret} mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ mosip.admin_realm_id=mosip @@ -300,7 +300,8 @@ db_3_DS.keycloak.driverClassName=org.postgresql.Driver mosip.keycloak.admin.client.id=admin-cli mosip.keycloak.admin.user.id=admin -mosip.keycloak.admin.secret.key={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +# env variable +mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl @@ -318,7 +319,8 @@ masterdata.registerdevice.timestamp.validate=+10 mosip.kernel.prereg.realm-id=preregistration mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +# env variable +mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} # UIN Schedular config kernel.uin.transfer-scheduler-type=cron @@ -401,7 +403,8 @@ mosip.syncdata.tpm.required=false mosip.kernel.registrationclient.app.id=registrationclient mosip.kernel.registrationclient.client.id=mosip-reg-client -mosip.kernel.registrationclient.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +# env variable +mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service mosip.kernel.authtoken.NEW.internal.url=http://kernel-auth-service/v1/authmanager/authenticate/internal/useridPwd From eab75517a1f587f265f21a3969ac0866fe1ccd0c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 9 Apr 2021 18:50:46 +0530 Subject: [PATCH 0025/1358] [MOSIP-12666] Cleanup. --- kernel.properties | 194 ++++++++++++++++++---------------------------- 1 file changed, 74 insertions(+), 120 deletions(-) diff --git a/kernel.properties b/kernel.properties index 53e27663f6e..08898d1e29a 100644 --- a/kernel.properties +++ b/kernel.properties @@ -1,10 +1,17 @@ -#---------------------------------------kernel common properties----------------------- -# Inside Kubernetes services are exposed on port 80 (most of them) -# For external connection to postgres, nodePort must be used. -mosip.kernel.database.hostname=postgres -mosip.kernel.database.port=80 - -#---------------------------------------Sync Data service------------------------------- +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.host +# keycloak.admin.password +# mosip.mosip.auth.client.secret (convention: <namespace>.<keycloak client name>) +# mosip.mosip.ida.client.secret +# mosip.mosip.admin.client.secret +# mosip.mosip.reg.client.secret +# preregistration.mosip.prereg.client.secret + + +## Sync data mosip.kernel.syncdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails @@ -17,23 +24,20 @@ mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.p mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef mosip.kernel.syncdata-service-idschema-url=http://kernel-masterdata-service/v1/masterdata/idschema/latest - -#------------------------------------sms notification service------------------------------- +## SMS notification mosip.kernel.sms.enabled=false mosip.kernel.sms.country.code=91 mosip.kernel.sms.number.length=10 - #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=gateway - -#--msg91 gateway-- +## --msg91 gateway-- mosip.kernel.sms.api=smsapi mosip.kernel.sms.authkey=authkey mosip.kernel.sms.route=route mosip.kernel.sms.sender=sender mosip.kernel.sms.unicode=unicode -# -- Email notification ------- +## Email notification mosip.kernel.notification.email.from=mosipuser@gmail.com spring.mail.host=smtphost spring.mail.username=username @@ -47,23 +51,21 @@ spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB -#--------------------------------------Keymanager Service-------------------------------------- +## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE mosip.kernel.keymanager.hsm.keystore-type=PKCS11 - # For PKCS11 provide Path of config file. # For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. # For Offline & JCE property can be left blank, specified value will be ignored. mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf - # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. mosip.kernel.keymanager.hsm.keystore-pass={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f -#--------------------Audit Manager------------------------------------------------ +## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log -#--------------------Auth service -------------------------------------------------- +## Auth service auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token auth.jwt.expiry=6000000 @@ -88,61 +90,36 @@ mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} -#------------------------Token id generation service salts--------------------------- +## Token id salts mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d -#------------------------VID Generator Service--------------------------------------- -#minimum threshold of unused vid +## VID generator service mosip.kernel.vid.min-unused-threshold=100000 -#number of vids to generate mosip.kernel.vid.vids-to-generate=200000 -#time to release after expiry(in days) mosip.kernel.vid.time-to-release-after-expiry=5 -#for genaration on init vids timeout mosip.kernel.vid.pool-population-timeout=10000000 - kernel.vid.revoke-scheduler-type=cron -#schedular seconds configuration kernel.vid.revoke-scheduler-seconds=0 -#schedular minutes configuration kernel.vid.revoke-scheduler-minutes=0 -#schedular hours configuration kernel.vid.revoke-scheduler-hours=23 -#schedular days configuration kernel.vid.revoke-scheduler-days_of_month=* -#schedular months configuration kernel.vid.revoke-scheduler-months=* -#schedular weeks configuration kernel.vid.revoke-scheduler-days_of_week=* - kernel.vid.isolator-scheduler-type=cron -#schedular seconds configuration kernel.vid.isolator-scheduler-seconds=0 -#schedular minutes configuration kernel.vid.isolator-scheduler-minutes=0 -#schedular hours configuration kernel.vid.isolator-scheduler-hours=* -#schedular days configuration kernel.vid.isolator-scheduler-days_of_month=* -#schedular months configuration kernel.vid.isolator-scheduler-months=* -#schedular weeks configuration kernel.vid.isolator-scheduler-days_of_week=* -#------------------------PRID Properties-------------------------------------------- - -#minimum threshold of unused prid +## PRID properties mosip.kernel.prid.min-unused-threshold=1000 -#number of prids to generate mosip.kernel.prid.prids-to-generate=2000 -#for genaration on init prids timeout mosip.kernel.prid.pool-population-timeout=10000000 - mosip.kernel.prid.sequence-limit=3 kernel.prid.revoke-scheduler-type=cron - -# Schedular config kernel.prid.revoke-scheduler-seconds=0 kernel.prid.revoke-scheduler-minutes=0 kernel.prid.revoke-scheduler-hours=23 @@ -150,7 +127,12 @@ kernel.prid.revoke-scheduler-days_of_month=* kernel.prid.revoke-scheduler-months=* kernel.prid.revoke-scheduler-days_of_week=* -#------------------------DataBase Properties----------------------------------------- +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.kernel.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.kernel.database.port=5432 + javax.persistence.jdbc.driver=org.postgresql.Driver hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true @@ -163,80 +145,65 @@ hibernate.cache.use_query_cache=false hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false -#hibernate.ejb.interceptor=io.mosip.kernel.dataaccess.hibernate.config.EncryptionInterceptor logging.level.org.hibernate.SQL=ERROR logging.level.org.hibernate.type=ERROR -#Kernel admin service admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel admin_database_username=kerneluser -admin_database_password=${db.user.password} +admin_database_password=${db.dbuser.password} syncjob_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master syncjob_database_username=masteruser -syncjob_database_password=${db.user.password} +syncjob_database_password=${db.dbuser.password} -#Database mappings audit audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_audit audit_database_username=audituser -audit_database_password=${db.user.password} +audit_database_password=${db.dbuser.password} -#Database mappings masterdata masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master masterdata_database_username=masteruser -masterdata_database_password=${db.user.password} +masterdata_database_password=${db.dbuser.password} -#Database mappings uin uin.swagger.base-url=https://qa.mosip.io uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel uin_database_username=kerneluser -uin_database_password=${db.user.password} +uin_database_password=${db.dbuser.password} hibernate.current_session_context_class=org.springframework.orm.hibernate5.SpringSessionContext -#Database mappings id id_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel id_database_username=kerneluser -id_database_password=${db.user.password} +id_database_password=${db.dbuser.password} -#Database mappings vid vid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel vid_database_username=kerneluser -vid_database_password=${db.user.password} +vid_database_password=${db.dbuser.password} -#Database mappings prid prid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel prid_database_username=kerneluser -prid_database_password=${db.user.password} +prid_database_password=${db.dbuser.password} -#Database mappings keymanager keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_keymgr -keymanager_database_password=${db.user.password} +keymanager_database_password=${db.dbuser.password} keymanager_database_username= keymgruser -#Database mappings otp manager otpmanager_database_username = kerneluser otpmanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -otpmanager_database_password=${db.user.password} +otpmanager_database_password=${db.dbuser.password} -#Database mappings syncdata syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master syncdata_database_username=masteruser -syncdata_database_password=${db.user.password} +syncdata_database_password=${db.dbuser.password} -#Database mappings licensekeymanager licensekeymanager.persistence.jdbc.driver=org.postgresql.Driver licensekeymanager_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master licensekeymanager_database_username=masteruser -licensekeymanager_database_password=${db.user.password} +licensekeymanager_database_password=${db.dbuser.password} -#Database mappings rid generator ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc -ridgenerator_database_password=${db.user.password} - +ridgenerator_database_password=${db.dbuser.password} -#Database mappings authmanager iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam iam.datasource.username=iamuser iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 @@ -245,29 +212,28 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam db_1_DS.datastore.username=iamuser -db_1_DS.datastore.password=${db.user.password} +db_1_DS.datastore.password=${db.dbuser.password} db_1_DS.datastore.driverClassName=org.postgresql.Driver db_1_DS.datastore.schema=GOVT_OFFICERS db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam db_2_DS.datastore.username=iamuser -db_2_DS.datastore.password=${db.user.password} +db_2_DS.datastore.password=${db.dbuser.password} db_2_DS.datastore.driverClassName=org.postgresql.Driver db_2_DS.datastore.schema=GOVT_OFFICERS -#-------------------------------------------------------------------------------------------------# -#------------------------KeyCloak Config changes---------------------------# -# keycloak.host: env variable +## Keycloak properties mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/auth/admin/realms/{realmId} -mosip.iam.admin-url=${mosip.iam.base-url}/auth/admin/ +mosip.iam.open-id-url =${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/admin/realms/{realmId} +mosip.iam.admin-url=${mosip.iam.base-url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm + keycloak.realm=registration-client keycloak.resource=account keycloak.auth-server-url=${keycloak.host}/auth @@ -276,20 +242,9 @@ keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager - -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token -mosip.admin.login_flow.name=authorization_code -mosip.admin.login_flow.response_type=code -mosip.admin.login_flow.scope=cls -mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip-mosip-admin-client-secret} -mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ -mosip.admin_realm_id=mosip - +mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token mosip.iam.master.realm-id=master - mosip.iam.pre-reg_user_password=mosip db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak @@ -300,29 +255,35 @@ db_3_DS.keycloak.driverClassName=org.postgresql.Driver mosip.keycloak.admin.client.id=admin-cli mosip.keycloak.admin.user.id=admin -# env variable mosip.keycloak.admin.secret.key=${keycloak.admin.password} - mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -#---latest changes--# +mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager +mosip.admin.login_flow.name=authorization_code +mosip.admin.login_flow.response_type=code +mosip.admin.login_flow.scope=cls +mosip.admin.clientid=mosip-admin-client +mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} +mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ +mosip.admin_realm_id=mosip + master.search.maximum.rows=50 mosip.level=2 mosip.kernel.masterdata.audit-url= http://kernel-auditmanager-service/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 -#---Register device changes--# +## Register device mosip.kernel.sign-url=http://kernel-keymanager-service/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 +## Prereg mosip.kernel.prereg.realm-id=preregistration mosip.kernel.prereg.client.id=mosip-prereg-client -# env variable mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} -# UIN Schedular config +## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 kernel.uin.transfer-scheduler-minutes=48 @@ -331,33 +292,26 @@ kernel.uin.transfer-scheduler-days_of_month=* kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* -# UIN Auth adapter config +## UIN Auth adapter config auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken -# Proxy otp +## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy -#---------------------------------------Security Properties----------------------------- -#CSRF switch +## Security properties mosip.security.csrf-enable=false - -#CORS switch mosip.security.cors-enable=false - -#comma separated allowed origins mosip.security.origins=localhost:8080 - -#secure cookie switch mosip.security.secure-cookie=false -# ROOT key identifier +## ROOT key identifier mosip.root.key.applicationid=ROOT -# Certificate signing algorithm +## Certificate signing algorithm mosip.kernel.certificate.sign.algorithm=SHA256withRSA -# Default certificate params +## Default certificate params mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER mosip.kernel.keymanager.certificate.default.organization=IITB @@ -365,7 +319,7 @@ mosip.kernel.keymanager.certificate.default.location=BANGALORE mosip.kernel.keymanager.certificate.default.state=KA mosip.kernel.keymanager.certificate.default.country=IN -# Zero Knowledge Master & Public Key identifier. +## Zero Knowledge Master & Public Key identifier. mosip.kernel.zkcrypto.masterkey.application.id=KERNEL mosip.kernel.zkcrypto.masterkey.reference.id=IDENTITY_CACHE mosip.kernel.zkcrypto.publickey.application.id=IDA @@ -373,18 +327,18 @@ mosip.kernel.zkcrypto.publickey.reference.id=PUBLIC_KEY mosip.kernel.zkcrypto.wrap.algorithm-name=AES/ECB/NoPadding mosip.kernel.zkcrypto.derive.encrypt.algorithm-name=AES/ECB/PKCS5Padding -# Application Id for PMS master key. +## Application Id for PMS master key. mosip.kernel.partner.sign.masterkey.application.id=PMS datastores=ldap_1_DS,db_1_DS,db_2_DS -# Partner Management Service allowed partner domains +## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM -# List of keys to auto generate. +## List of keys to auto generate. mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS -# random keys required for ZK encrypt. +## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 datastores=db_1_DS,db_2_DS From 0c81c8fabad7fee1b8f07eaa7a7bc7567c0fd869 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 14 Apr 2021 09:59:13 +0530 Subject: [PATCH 0026/1358] [MOSIP-13230] Softhsm property added. --- kernel.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/kernel.properties b/kernel.properties index 08898d1e29a..f288ba69282 100644 --- a/kernel.properties +++ b/kernel.properties @@ -9,6 +9,7 @@ # mosip.mosip.admin.client.secret # mosip.mosip.reg.client.secret # preregistration.mosip.prereg.client.secret +# softhsm.kernel.pin ## Sync data @@ -60,7 +61,7 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.pin} ## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log From 2ce5edf994b8cb3434f6984121faeec213306cc7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 19 Apr 2021 18:57:41 +0530 Subject: [PATCH 0027/1358] [MOSIP-12666] 'default' suffix added to basename of properties. --- admin.properties => admin-default.properties | 0 application.properties => application-default.properties | 0 data-share.properties => data-share-default.properties | 0 hazelcast.xml => hazelcast-default.xml | 0 hazelcast_cache.xml => hazelcast_cache-default.xml | 0 hotlist.properties => hotlist-default.properties | 0 ...hentication.properties => id-authentication-default.properties | 0 id-repository.properties => id-repository-default.properties | 0 kernel.properties => kernel-default.properties | 0 mock-abis.properties => mock-abis-default.properties | 0 ...management.properties => partner-management-default.properties | 0 ...registration.properties => pre-registration-default.properties | 0 print.properties => print-default.properties | 0 registration.properties => registration-default.properties | 0 ...ml => registration-processor-camel-routes-activate-default.xml | 0 ... => registration-processor-camel-routes-deactivate-default.xml | 0 ...st.xml => registration-processor-camel-routes-lost-default.xml | 0 ...new.xml => registration-processor-camel-routes-new-default.xml | 0 ...=> registration-processor-camel-routes-res-reprint-default.xml | 0 ... => registration-processor-camel-routes-res-update-default.xml | 0 ....xml => registration-processor-camel-routes-update-default.xml | 0 ...cessor.properties => registration-processor-default.properties | 0 resident.properties => resident-default.properties | 0 syncdata.properties => syncdata-default.properties | 0 24 files changed, 0 insertions(+), 0 deletions(-) rename admin.properties => admin-default.properties (100%) rename application.properties => application-default.properties (100%) rename data-share.properties => data-share-default.properties (100%) rename hazelcast.xml => hazelcast-default.xml (100%) rename hazelcast_cache.xml => hazelcast_cache-default.xml (100%) rename hotlist.properties => hotlist-default.properties (100%) rename id-authentication.properties => id-authentication-default.properties (100%) rename id-repository.properties => id-repository-default.properties (100%) rename kernel.properties => kernel-default.properties (100%) rename mock-abis.properties => mock-abis-default.properties (100%) rename partner-management.properties => partner-management-default.properties (100%) rename pre-registration.properties => pre-registration-default.properties (100%) rename print.properties => print-default.properties (100%) rename registration.properties => registration-default.properties (100%) rename registration-processor-camel-routes-activate.xml => registration-processor-camel-routes-activate-default.xml (100%) rename registration-processor-camel-routes-deactivate.xml => registration-processor-camel-routes-deactivate-default.xml (100%) rename registration-processor-camel-routes-lost.xml => registration-processor-camel-routes-lost-default.xml (100%) rename registration-processor-camel-routes-new.xml => registration-processor-camel-routes-new-default.xml (100%) rename registration-processor-camel-routes-res-reprint.xml => registration-processor-camel-routes-res-reprint-default.xml (100%) rename registration-processor-camel-routes-res-update.xml => registration-processor-camel-routes-res-update-default.xml (100%) rename registration-processor-camel-routes-update.xml => registration-processor-camel-routes-update-default.xml (100%) rename registration-processor.properties => registration-processor-default.properties (100%) rename resident.properties => resident-default.properties (100%) rename syncdata.properties => syncdata-default.properties (100%) diff --git a/admin.properties b/admin-default.properties similarity index 100% rename from admin.properties rename to admin-default.properties diff --git a/application.properties b/application-default.properties similarity index 100% rename from application.properties rename to application-default.properties diff --git a/data-share.properties b/data-share-default.properties similarity index 100% rename from data-share.properties rename to data-share-default.properties diff --git a/hazelcast.xml b/hazelcast-default.xml similarity index 100% rename from hazelcast.xml rename to hazelcast-default.xml diff --git a/hazelcast_cache.xml b/hazelcast_cache-default.xml similarity index 100% rename from hazelcast_cache.xml rename to hazelcast_cache-default.xml diff --git a/hotlist.properties b/hotlist-default.properties similarity index 100% rename from hotlist.properties rename to hotlist-default.properties diff --git a/id-authentication.properties b/id-authentication-default.properties similarity index 100% rename from id-authentication.properties rename to id-authentication-default.properties diff --git a/id-repository.properties b/id-repository-default.properties similarity index 100% rename from id-repository.properties rename to id-repository-default.properties diff --git a/kernel.properties b/kernel-default.properties similarity index 100% rename from kernel.properties rename to kernel-default.properties diff --git a/mock-abis.properties b/mock-abis-default.properties similarity index 100% rename from mock-abis.properties rename to mock-abis-default.properties diff --git a/partner-management.properties b/partner-management-default.properties similarity index 100% rename from partner-management.properties rename to partner-management-default.properties diff --git a/pre-registration.properties b/pre-registration-default.properties similarity index 100% rename from pre-registration.properties rename to pre-registration-default.properties diff --git a/print.properties b/print-default.properties similarity index 100% rename from print.properties rename to print-default.properties diff --git a/registration.properties b/registration-default.properties similarity index 100% rename from registration.properties rename to registration-default.properties diff --git a/registration-processor-camel-routes-activate.xml b/registration-processor-camel-routes-activate-default.xml similarity index 100% rename from registration-processor-camel-routes-activate.xml rename to registration-processor-camel-routes-activate-default.xml diff --git a/registration-processor-camel-routes-deactivate.xml b/registration-processor-camel-routes-deactivate-default.xml similarity index 100% rename from registration-processor-camel-routes-deactivate.xml rename to registration-processor-camel-routes-deactivate-default.xml diff --git a/registration-processor-camel-routes-lost.xml b/registration-processor-camel-routes-lost-default.xml similarity index 100% rename from registration-processor-camel-routes-lost.xml rename to registration-processor-camel-routes-lost-default.xml diff --git a/registration-processor-camel-routes-new.xml b/registration-processor-camel-routes-new-default.xml similarity index 100% rename from registration-processor-camel-routes-new.xml rename to registration-processor-camel-routes-new-default.xml diff --git a/registration-processor-camel-routes-res-reprint.xml b/registration-processor-camel-routes-res-reprint-default.xml similarity index 100% rename from registration-processor-camel-routes-res-reprint.xml rename to registration-processor-camel-routes-res-reprint-default.xml diff --git a/registration-processor-camel-routes-res-update.xml b/registration-processor-camel-routes-res-update-default.xml similarity index 100% rename from registration-processor-camel-routes-res-update.xml rename to registration-processor-camel-routes-res-update-default.xml diff --git a/registration-processor-camel-routes-update.xml b/registration-processor-camel-routes-update-default.xml similarity index 100% rename from registration-processor-camel-routes-update.xml rename to registration-processor-camel-routes-update-default.xml diff --git a/registration-processor.properties b/registration-processor-default.properties similarity index 100% rename from registration-processor.properties rename to registration-processor-default.properties diff --git a/resident.properties b/resident-default.properties similarity index 100% rename from resident.properties rename to resident-default.properties diff --git a/syncdata.properties b/syncdata-default.properties similarity index 100% rename from syncdata.properties rename to syncdata-default.properties From af4646857f44104ff7c92e670096037e80f88063 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 19 Apr 2021 18:59:25 +0530 Subject: [PATCH 0028/1358] [MOSIP-12666] Names updated for previous change. --- application-default.properties | 2 +- registration-processor-default.properties | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 230ea44ef1c..a5a813c9ae5 100644 --- a/application-default.properties +++ b/application-default.properties @@ -424,7 +424,7 @@ objectstore.crypto.name=OnlinePacketCryptoServiceImpl default.provider.version=v1.0 # posix adapter config object.store.base.location=/home/mosip -hazelcast.config=classpath:hazelcast.xml +hazelcast.config=classpath:hazelcast-default.xml #-------------S3adapter------------------- # s3 adapter config object.store.s3.accesskey=admin diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 20f59ecfa4f..781efc20d82 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -46,11 +46,11 @@ packet.info.storage.service=* ## Camel bridge # Url to cluster manager to enable this stage for joining the cluster in secure zone -cluster.manager.file.name=hazelcast.xml +cluster.manager.file.name=hazelcast-default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow -camel.secure.active.flows.file.names=registration-processor-camel-routes-new-mz.xml,registration-processor-camel-routes-update-mz.xml,registration-processor-camel-routes-activate-mz.xml,registration-processor-camel-routes-res-update-mz.xml,registration-processor-camel-routes-deactivate-mz.xml,registration-processor-camel-routes-lost-mz.xml,registration-processor-camel-routes-res-reprint-mz.xml +camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml ## Token generation token.request.id=io.mosip.registration.processor From 612b59382c4f488e005144c30b3473e430e1294f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 21 Apr 2021 06:45:52 +0530 Subject: [PATCH 0029/1358] [MOSIP-12666] Unused properties removed. --- kernel-default.properties | 34 +++++++++++++++++----------------- 1 file changed, 17 insertions(+), 17 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index f288ba69282..b03f2050e40 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -205,23 +205,23 @@ ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc ridgenerator_database_password=${db.dbuser.password} -iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -iam.datasource.username=iamuser -iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -iam.datasource.driverClassName=org.postgresql.Driver -spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true - -db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -db_1_DS.datastore.username=iamuser -db_1_DS.datastore.password=${db.dbuser.password} -db_1_DS.datastore.driverClassName=org.postgresql.Driver -db_1_DS.datastore.schema=GOVT_OFFICERS - -db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -db_2_DS.datastore.username=iamuser -db_2_DS.datastore.password=${db.dbuser.password} -db_2_DS.datastore.driverClassName=org.postgresql.Driver -db_2_DS.datastore.schema=GOVT_OFFICERS +#iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam +#iam.datasource.username=iamuser +#iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +#iam.datasource.driverClassName=org.postgresql.Driver +#spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true +# +#db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam +#db_1_DS.datastore.username=iamuser +#db_1_DS.datastore.password=${db.dbuser.password} +#db_1_DS.datastore.driverClassName=org.postgresql.Driver +#db_1_DS.datastore.schema=GOVT_OFFICERS +# +#db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam +#db_2_DS.datastore.username=iamuser +#db_2_DS.datastore.password=${db.dbuser.password} +#db_2_DS.datastore.driverClassName=org.postgresql.Driver +#db_2_DS.datastore.schema=GOVT_OFFICERS ## Keycloak properties From 7d911f00cec959e6fd51edfe2b4ae622a8bfd825 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 21 Apr 2021 08:57:49 +0530 Subject: [PATCH 0030/1358] [MOSIP-12666] Keycloak property corrected. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index b03f2050e40..ab79662af16 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -237,7 +237,7 @@ mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.host}/auth +keycloak.auth-server-url=${mosip.iam.base-url} keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true From d2abfd6349d442a1483fac62c5324fd4314d009a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 21 Apr 2021 10:12:10 +0530 Subject: [PATCH 0031/1358] Reverted previous change --- kernel-default.properties | 34 +++++++++++++++++----------------- 1 file changed, 17 insertions(+), 17 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index ab79662af16..3ac2be76987 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -205,23 +205,23 @@ ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc ridgenerator_database_password=${db.dbuser.password} -#iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -#iam.datasource.username=iamuser -#iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -#iam.datasource.driverClassName=org.postgresql.Driver -#spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true -# -#db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -#db_1_DS.datastore.username=iamuser -#db_1_DS.datastore.password=${db.dbuser.password} -#db_1_DS.datastore.driverClassName=org.postgresql.Driver -#db_1_DS.datastore.schema=GOVT_OFFICERS -# -#db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -#db_2_DS.datastore.username=iamuser -#db_2_DS.datastore.password=${db.dbuser.password} -#db_2_DS.datastore.driverClassName=org.postgresql.Driver -#db_2_DS.datastore.schema=GOVT_OFFICERS +iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam +iam.datasource.username=iamuser +iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +iam.datasource.driverClassName=org.postgresql.Driver +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + +db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam +db_1_DS.datastore.username=iamuser +db_1_DS.datastore.password=${db.dbuser.password} +db_1_DS.datastore.driverClassName=org.postgresql.Driver +db_1_DS.datastore.schema=GOVT_OFFICERS + +db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam +db_2_DS.datastore.username=iamuser +db_2_DS.datastore.password=${db.dbuser.password} +db_2_DS.datastore.driverClassName=org.postgresql.Driver +db_2_DS.datastore.schema=GOVT_OFFICERS ## Keycloak properties From 3d5477d2a80c1aab596ee097f2437f72dceb2223 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 21 Apr 2021 17:57:57 +0530 Subject: [PATCH 0032/1358] Trial json. --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index ef3fea4bb15..650e4cbd56e 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS1", "host": "", "port": "", - "brokerUrl": "tcp://mz.ingress:30616", + "brokerUrl": "tcp://${keycloak.host}:30616", "inboundQueueName": "mosip-to-abis1", "outboundQueueName": "abis1-to-mosip", "pingInboundQueueName": "", From b94d9725ae359fa8a8265c8901a2a6ec70fffa5e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Apr 2021 13:50:47 +0530 Subject: [PATCH 0033/1358] [MOSIP-12666] Placeholders added. --- registration-processor-abis.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 650e4cbd56e..6af474b881c 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -1,11 +1,11 @@ { "abis": [{ - "name": "ABIS1", + "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${keycloak.host}:30616", - "inboundQueueName": "mosip-to-abis1", - "outboundQueueName": "abis1-to-mosip", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", + "inboundQueueName": "mosip-to-abis", + "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", "pingOutboundQueueName": "", "userName": "admin", From 1f07166413cb7bd06275ce684362258fe6d5009a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Apr 2021 14:03:05 +0530 Subject: [PATCH 0034/1358] [MOSIP-12666] Activemq config updated. --- registration-processor-abis.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 6af474b881c..d81b599cac2 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -8,8 +8,8 @@ "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", "pingOutboundQueueName": "", - "userName": "admin", - "password": "admin", + "userName": "artemis", + "password": ${activemq.password}, "typeOfQueue": "ACTIVEMQ", "inboundMessageTTL": 2700 }] From fdcd631be337cfb9e13a4e3e2ba6c8cadd5349e9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 29 Apr 2021 06:17:09 +0530 Subject: [PATCH 0035/1358] Missing quotes added to log format. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index a5a813c9ae5..b523a308645 100644 --- a/application-default.properties +++ b/application-default.properties @@ -466,7 +466,7 @@ server.tomcat.accesslog.prefix=stdout server.tomcat.accesslog.buffered=false server.tomcat.accesslog.suffix= server.tomcat.accesslog.file-date-format= -server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}","req.userAgent":"%{User-Agent}i","req.xForwardedFor":"%{X-Forwarded-For}i","req.referer":"%{Referer}i","req.method":%m,"req.remoteHost":%a} +server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}","req.userAgent":"%{User-Agent}i","req.xForwardedFor":"%{X-Forwarded-For}i","req.referer":"%{Referer}i","req.method":"%m","req.remoteHost":"%a"} server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve #---------------- Web Sub properties ------------------------- From 50e67ffb23456641ea6d2c2c9ea0fbbc285d7688 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 8 May 2021 16:01:30 +0530 Subject: [PATCH 0036/1358] [MOSIP-12666] Kernel properties synced with develop branch. --- kernel-default.properties | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 3ac2be76987..04e18ebfb70 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -245,6 +245,15 @@ keycloak.verify-token-audience=true mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin.login_flow.name=authorization_code +mosip.admin.login_flow.response_type=code +mosip.admin.login_flow.scope=cls +mosip.admin.clientid=mosip-admin-client +mosip.admin.clientsecret={cipher}46b4a98aac7347e6a2d4f723e281cfd1e7b859100cc17494fc7ed9fb357a6cd9 +mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ +mosip.admin_realm_id=mosip mosip.iam.master.realm-id=master mosip.iam.pre-reg_user_password=mosip @@ -300,6 +309,17 @@ auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authori mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy +## identity schema backward compatability ######## +mosip.ui.spec.default.domain=registration-client + +#### Required for admin UI ############## +## this pattern like --> display column : configKey. +## We can provide multiple values with ";" separated +mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} + +## Used to get IAM user details. +mosip.kernel.masterdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager +mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false mosip.security.cors-enable=false @@ -391,3 +411,8 @@ syncdata.websub.resubscription.retry.count=3 syncdata.websub.resubscription.delay.secs=7200 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 + +# Flag to identify the support of no thumbprint in 1.1.3 version. +# Added this for backward compatability. default is false, means support is not required. +# Make it to true if support is required. +mosip.kernel.keymanager.113nothumbprint.support=false From f4e4738da676ea1197f9a2b45e68d80c7018177c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 8 May 2021 16:10:18 +0530 Subject: [PATCH 0037/1358] [MOSIP-12666] Missing property added. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 04e18ebfb70..eb7bcb6e473 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -234,7 +234,7 @@ mosip.iam.admin-url=${mosip.iam.base-url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm - +mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users keycloak.realm=registration-client keycloak.resource=account keycloak.auth-server-url=${mosip.iam.base-url} From 27138335b554ed36fa42f1417b178328fbb39156 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 9 May 2021 06:42:15 +0530 Subject: [PATCH 0038/1358] [MOSIP-12666] db properties updated. --- kernel-default.properties | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index eb7bcb6e473..b9f95be8185 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -257,10 +257,13 @@ mosip.admin_realm_id=mosip mosip.iam.master.realm-id=master mosip.iam.pre-reg_user_password=mosip -db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak -db_3_DS.keycloak.port=80 -db_3_DS.keycloak.username=postgres -db_3_DS.keycloak.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +## TODO: Below config is not needed anymore. Need to remove init of db_3_DS in authmanager code. For now, we just +## point to a valid db. +#db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak +db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +db_3_DS.keycloak.port=${mosip.kernel.database.port} +db_3_DS.keycloak.username=kerneluser +db_3_DS.keycloak.password=${db.dbuser.password} db_3_DS.keycloak.driverClassName=org.postgresql.Driver mosip.keycloak.admin.client.id=admin-cli From 56b8b4af2d27c1358f0e89e93fa7cf3b254dbb0a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 May 2021 10:51:12 +0530 Subject: [PATCH 0039/1358] [MOSIP-12666] Syncdata properties added. --- syncdata-default.properties | 248 ++++++++++++++++-------------------- 1 file changed, 108 insertions(+), 140 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 47c381289aa..1fe327ed2e2 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -1,10 +1,19 @@ -#---------------------------------------kernel common properties----------------------- -# Inside Kubernetes services are exposed on port 80 (most of them) -# For external connection to postgres, nodePort must be used. -mosip.kernel.database.hostname=postgres -mosip.kernel.database.port=80 - -#---------------------------------------Sync Data service------------------------------- +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# mosip.api.public.url +# db.dbuser.password +# keycloak.host +# keycloak.admin.password +# mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) +# mosip.mosip.ida.client.secret +# mosip.mosip.admin.client.secret +# mosip.mosip.reg.client.secret +# preregistration.mosip.prereg.client.secret +# softhsm.kernel.pin + + +## Sync data mosip.kernel.syncdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails @@ -17,23 +26,20 @@ mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.p mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef mosip.kernel.syncdata-service-idschema-url=http://kernel-masterdata-service/v1/masterdata/idschema/latest - -#------------------------------------sms notification service------------------------------- +## SMS notification mosip.kernel.sms.enabled=false mosip.kernel.sms.country.code=91 mosip.kernel.sms.number.length=10 - #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=gateway - -#--msg91 gateway-- +## --msg91 gateway-- mosip.kernel.sms.api=smsapi mosip.kernel.sms.authkey=authkey mosip.kernel.sms.route=route mosip.kernel.sms.sender=sender mosip.kernel.sms.unicode=unicode -# -- Email notification ------- +## Email notification mosip.kernel.notification.email.from=mosipuser@gmail.com spring.mail.host=smtphost spring.mail.username=username @@ -47,23 +53,21 @@ spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB -#--------------------------------------Keymanager Service-------------------------------------- +## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE -mosip.kernel.keymanager.hsm.keystore-type=Offline - +mosip.kernel.keymanager.hsm.keystore-type=OFFLINE # For PKCS11 provide Path of config file. # For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. # For Offline & JCE property can be left blank, specified value will be ignored. mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf - # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.pin} -#--------------------Audit Manager------------------------------------------------ +## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log -#--------------------Auth service -------------------------------------------------- +## Auth service auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token auth.jwt.expiry=6000000 @@ -82,67 +86,42 @@ idrepo.api.getuindetails=http://idrepo-identity-service/idrepository/v1/identity mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +mosip.kernel.auth.secret.key=${mosip.mosip.auth.client.secret} mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} -#------------------------Token id generation service salts--------------------------- +## Token id salts mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d -#------------------------VID Generator Service--------------------------------------- -#minimum threshold of unused vid +## VID generator service mosip.kernel.vid.min-unused-threshold=100000 -#number of vids to generate mosip.kernel.vid.vids-to-generate=200000 -#time to release after expiry(in days) mosip.kernel.vid.time-to-release-after-expiry=5 -#for genaration on init vids timeout mosip.kernel.vid.pool-population-timeout=10000000 - kernel.vid.revoke-scheduler-type=cron -#schedular seconds configuration kernel.vid.revoke-scheduler-seconds=0 -#schedular minutes configuration kernel.vid.revoke-scheduler-minutes=0 -#schedular hours configuration kernel.vid.revoke-scheduler-hours=23 -#schedular days configuration kernel.vid.revoke-scheduler-days_of_month=* -#schedular months configuration kernel.vid.revoke-scheduler-months=* -#schedular weeks configuration kernel.vid.revoke-scheduler-days_of_week=* - kernel.vid.isolator-scheduler-type=cron -#schedular seconds configuration kernel.vid.isolator-scheduler-seconds=0 -#schedular minutes configuration kernel.vid.isolator-scheduler-minutes=0 -#schedular hours configuration kernel.vid.isolator-scheduler-hours=* -#schedular days configuration kernel.vid.isolator-scheduler-days_of_month=* -#schedular months configuration kernel.vid.isolator-scheduler-months=* -#schedular weeks configuration kernel.vid.isolator-scheduler-days_of_week=* -#------------------------PRID Properties-------------------------------------------- - -#minimum threshold of unused prid +## PRID properties mosip.kernel.prid.min-unused-threshold=1000 -#number of prids to generate mosip.kernel.prid.prids-to-generate=2000 -#for genaration on init prids timeout mosip.kernel.prid.pool-population-timeout=10000000 - mosip.kernel.prid.sequence-limit=3 kernel.prid.revoke-scheduler-type=cron - -# Schedular config kernel.prid.revoke-scheduler-seconds=0 kernel.prid.revoke-scheduler-minutes=0 kernel.prid.revoke-scheduler-hours=23 @@ -150,7 +129,12 @@ kernel.prid.revoke-scheduler-days_of_month=* kernel.prid.revoke-scheduler-months=* kernel.prid.revoke-scheduler-days_of_week=* -#------------------------DataBase Properties----------------------------------------- +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.kernel.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.kernel.database.port=5432 + javax.persistence.jdbc.driver=org.postgresql.Driver hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true @@ -163,121 +147,86 @@ hibernate.cache.use_query_cache=false hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false -#hibernate.ejb.interceptor=io.mosip.kernel.dataaccess.hibernate.config.EncryptionInterceptor logging.level.org.hibernate.SQL=ERROR logging.level.org.hibernate.type=ERROR -#Kernel admin service admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel admin_database_username=kerneluser -admin_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +admin_database_password=${db.dbuser.password} syncjob_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master syncjob_database_username=masteruser -syncjob_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +syncjob_database_password=${db.dbuser.password} -#Database mappings audit audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_audit audit_database_username=audituser -audit_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +audit_database_password=${db.dbuser.password} -#Database mappings masterdata masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master masterdata_database_username=masteruser -masterdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +masterdata_database_password=${db.dbuser.password} -#Database mappings uin uin.swagger.base-url=https://qa.mosip.io uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel uin_database_username=kerneluser -uin_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +uin_database_password=${db.dbuser.password} hibernate.current_session_context_class=org.springframework.orm.hibernate5.SpringSessionContext -#Database mappings id id_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel id_database_username=kerneluser -id_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +id_database_password=${db.dbuser.password} -#Database mappings vid vid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel vid_database_username=kerneluser -vid_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +vid_database_password=${db.dbuser.password} -#Database mappings prid prid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel prid_database_username=kerneluser -prid_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +prid_database_password=${db.dbuser.password} -#Database mappings keymanager keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_keymgr -keymanager_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +keymanager_database_password=${db.dbuser.password} keymanager_database_username= keymgruser -#Database mappings otp manager otpmanager_database_username = kerneluser otpmanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -otpmanager_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +otpmanager_database_password=${db.dbuser.password} -#Database mappings syncdata syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master syncdata_database_username=masteruser -syncdata_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +syncdata_database_password=${db.dbuser.password} -#Database mappings licensekeymanager licensekeymanager.persistence.jdbc.driver=org.postgresql.Driver licensekeymanager_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master licensekeymanager_database_username=masteruser -licensekeymanager_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +licensekeymanager_database_password=${db.dbuser.password} -#Database mappings rid generator ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc -ridgenerator_database_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - - -#Database mappings authmanager -iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -iam.datasource.username=iamuser -iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -iam.datasource.driverClassName=org.postgresql.Driver -spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true - -db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -db_1_DS.datastore.username=iamuser -db_1_DS.datastore.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -db_1_DS.datastore.driverClassName=org.postgresql.Driver -db_1_DS.datastore.schema=GOVT_OFFICERS +ridgenerator_database_password=${db.dbuser.password} -db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -db_2_DS.datastore.username=iamuser -db_2_DS.datastore.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -db_2_DS.datastore.driverClassName=org.postgresql.Driver -db_2_DS.datastore.schema=GOVT_OFFICERS - -#-------------------------------------------------------------------------------------------------# - -#------------------------KeyCloak Config changes---------------------------# - -mosip.iam.base-url=http://keycloak +## Keycloak properties +mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/auth/admin/realms/{realmId} -mosip.iam.admin-url=${mosip.iam.base-url}/auth/admin/ +mosip.iam.open-id-url =${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/admin/realms/{realmId} +mosip.iam.admin-url=${mosip.iam.base-url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm +mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=http://keycloak/auth +keycloak.auth-server-url=${mosip.iam.base-url} keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager - +mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code @@ -287,40 +236,49 @@ mosip.admin.clientid=mosip-admin-client mosip.admin.clientsecret={cipher}46b4a98aac7347e6a2d4f723e281cfd1e7b859100cc17494fc7ed9fb357a6cd9 mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ mosip.admin_realm_id=mosip - mosip.iam.master.realm-id=master - mosip.iam.pre-reg_user_password=mosip -db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak -db_3_DS.keycloak.port=80 -db_3_DS.keycloak.username=postgres -db_3_DS.keycloak.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +## TODO: Below config is not needed anymore. Need to remove init of db_3_DS in authmanager code. For now, we just +## point to a valid db. +#db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak +db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +db_3_DS.keycloak.port=${mosip.kernel.database.port} +db_3_DS.keycloak.username=kerneluser +db_3_DS.keycloak.password=${db.dbuser.password} db_3_DS.keycloak.driverClassName=org.postgresql.Driver mosip.keycloak.admin.client.id=admin-cli mosip.keycloak.admin.user.id=admin -mosip.keycloak.admin.secret.key={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d - +mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -#---latest changes--# +mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager +mosip.admin.login_flow.name=authorization_code +mosip.admin.login_flow.response_type=code +mosip.admin.login_flow.scope=cls +mosip.admin.clientid=mosip-admin-client +mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} +mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ +mosip.admin_realm_id=mosip + master.search.maximum.rows=50 mosip.level=2 mosip.kernel.masterdata.audit-url= http://kernel-auditmanager-service/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 -#---Register device changes--# +## Register device mosip.kernel.sign-url=http://kernel-keymanager-service/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 +## Prereg mosip.kernel.prereg.realm-id=preregistration mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} -# UIN Schedular config +## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 kernel.uin.transfer-scheduler-minutes=48 @@ -329,33 +287,37 @@ kernel.uin.transfer-scheduler-days_of_month=* kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* -# UIN Auth adapter config +## UIN Auth adapter config auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken -# Proxy otp +## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy -#---------------------------------------Security Properties----------------------------- -#CSRF switch -mosip.security.csrf-enable=false +## identity schema backward compatability ######## +mosip.ui.spec.default.domain=registration-client -#CORS switch -mosip.security.cors-enable=false +#### Required for admin UI ############## +## this pattern like --> display column : configKey. +## We can provide multiple values with ";" separated +mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} -#comma separated allowed origins +## Used to get IAM user details. +mosip.kernel.masterdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager +mosip.kernel.masterdata.auth-user-details=/userdetails +## Security properties +mosip.security.csrf-enable=false +mosip.security.cors-enable=false mosip.security.origins=localhost:8080 - -#secure cookie switch mosip.security.secure-cookie=false -# ROOT key identifier +## ROOT key identifier mosip.root.key.applicationid=ROOT -# Certificate signing algorithm +## Certificate signing algorithm mosip.kernel.certificate.sign.algorithm=SHA256withRSA -# Default certificate params +## Default certificate params mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER mosip.kernel.keymanager.certificate.default.organization=IITB @@ -363,7 +325,7 @@ mosip.kernel.keymanager.certificate.default.location=BANGALORE mosip.kernel.keymanager.certificate.default.state=KA mosip.kernel.keymanager.certificate.default.country=IN -# Zero Knowledge Master & Public Key identifier. +## Zero Knowledge Master & Public Key identifier. mosip.kernel.zkcrypto.masterkey.application.id=KERNEL mosip.kernel.zkcrypto.masterkey.reference.id=IDENTITY_CACHE mosip.kernel.zkcrypto.publickey.application.id=IDA @@ -371,18 +333,18 @@ mosip.kernel.zkcrypto.publickey.reference.id=PUBLIC_KEY mosip.kernel.zkcrypto.wrap.algorithm-name=AES/ECB/NoPadding mosip.kernel.zkcrypto.derive.encrypt.algorithm-name=AES/ECB/PKCS5Padding -# Application Id for PMS master key. +## Application Id for PMS master key. mosip.kernel.partner.sign.masterkey.application.id=PMS datastores=ldap_1_DS,db_1_DS,db_2_DS -# Partner Management Service allowed partner domains +## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM -# List of keys to auto generate. +## List of keys to auto generate. mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS -# random keys required for ZK encrypt. +## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 datastores=db_1_DS,db_2_DS @@ -401,7 +363,8 @@ mosip.syncdata.tpm.required=false mosip.kernel.registrationclient.app.id=registrationclient mosip.kernel.registrationclient.client.id=mosip-reg-client -mosip.kernel.registrationclient.secret.key={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +# env variable +mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service mosip.kernel.authtoken.NEW.internal.url=http://kernel-auth-service/v1/authmanager/authenticate/internal/useridPwd @@ -422,7 +385,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=http://kernel-syncdata-service/v1/syncdata/websub/callback/cacert +syncdata.websub.callback.url.ca-cert=${mosip.api.public.url}/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a @@ -433,3 +396,8 @@ syncdata.websub.resubscription.retry.count=3 syncdata.websub.resubscription.delay.secs=7200 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 + +# Flag to identify the support of no thumbprint in 1.1.3 version. +# Added this for backward compatability. default is false, means support is not required. +# Make it to true if support is required. +mosip.kernel.keymanager.113nothumbprint.support=false From 5a035c7d2f62bf4b4604e6c35e75f9059348c66e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 May 2021 11:28:54 +0530 Subject: [PATCH 0040/1358] [MOSIP-12666] Websub properties updated in applications. --- application-default.properties | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index b523a308645..3f424c666f0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -469,7 +469,9 @@ server.tomcat.accesslog.file-date-format= server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}","req.userAgent":"%{User-Agent}i","req.xForwardedFor":"%{X-Forwarded-For}i","req.referer":"%{Referer}i","req.method":"%m","req.remoteHost":"%a"} server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve -#---------------- Web Sub properties ------------------------- -websub.publish.url=http://websub/publish -#---------------- Web Sub property ---------------------------- +## Websub (internal url) +websub.base.url=http://websub.websub +websub.hub.url=${websub.base.url}/websub/hub +websub.publish.url=${websub.base.url}/websub/publish + packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} From 9f7e6a007123f2d81bedd403e972462096a26a5c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 May 2021 16:03:07 +0530 Subject: [PATCH 0041/1358] [MOSIP-12666] Service urls updated. --- kernel-default.properties | 58 ++++++++++++++------------------------- 1 file changed, 20 insertions(+), 38 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index b9f95be8185..b4d301b4599 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -4,7 +4,7 @@ # db.dbuser.password # keycloak.host # keycloak.admin.password -# mosip.mosip.auth.client.secret (convention: <namespace>.<keycloak client name>) +# mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) # mosip.mosip.ida.client.secret # mosip.mosip.admin.client.secret # mosip.mosip.reg.client.secret @@ -13,7 +13,7 @@ ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager +mosip.kernel.syncdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -23,7 +23,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=http://kernel-masterdata-service/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-idschema-url=http://masterdata.kernel/v1/masterdata/idschema/latest ## SMS notification mosip.kernel.sms.enabled=false @@ -75,11 +75,11 @@ auth.refreshtoken.header=RefreshToken auth.jwt.refresh.expiry=86400000 auth.primary.language=eng -otp.manager.api.generate=http://kernel-otpmanager-service/v1/otpmanager/otp/generate -otp.manager.api.verify=http://kernel-otpmanager-service/v1/otpmanager/otp/validate -otp.sender.api.email.send=http://kernel-notification-service/v1/notifier/email/send -otp.sender.api.sms.send=http://kernel-notification-service/v1/notifier/sms/send -masterdata.api.template=http://kernel-masterdata-service/v1/masterdata/templates/ +otp.manager.api.generate=http://otpmanager.kernel/v1/otpmanager/otp/generate +otp.manager.api.verify=http://otpmanager.kernel/v1/otpmanager/otp/validate +otp.sender.api.email.send=http://notifier.kernel/v1/notifier/email/send +otp.sender.api.sms.send=http://notifier.kernel/v1/notifier/sms/send +masterdata.api.template=http://masterdata.kernel/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template idrepo.api.getuindetails=http://idrepo-identity-service/idrepository/v1/identity/uin/{uin} @@ -205,25 +205,6 @@ ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc ridgenerator_database_password=${db.dbuser.password} -iam.datasource.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -iam.datasource.username=iamuser -iam.datasource.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -iam.datasource.driverClassName=org.postgresql.Driver -spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true - -db_1_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -db_1_DS.datastore.username=iamuser -db_1_DS.datastore.password=${db.dbuser.password} -db_1_DS.datastore.driverClassName=org.postgresql.Driver -db_1_DS.datastore.schema=GOVT_OFFICERS - -db_2_DS.datastore.ipaddress=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_iam -db_2_DS.datastore.username=iamuser -db_2_DS.datastore.password=${db.dbuser.password} -db_2_DS.datastore.driverClassName=org.postgresql.Driver -db_2_DS.datastore.schema=GOVT_OFFICERS - - ## Keycloak properties mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin @@ -273,7 +254,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager +mosip.authmanager.base-url=http://authmanager.kernel/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -284,11 +265,12 @@ mosip.admin_realm_id=mosip master.search.maximum.rows=50 mosip.level=2 -mosip.kernel.masterdata.audit-url= http://kernel-auditmanager-service/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url= http://auditmanager.kernel/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 ## Register device -mosip.kernel.sign-url=http://kernel-keymanager-service/v1/keymanager/sign +# Keymanager runs in separate namespace "keymanager" +mosip.kernel.sign-url=http://keymanager.keymanager/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 ## Prereg @@ -306,7 +288,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 @@ -321,7 +303,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -373,7 +355,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=http://kernel-masterdata-service/v1/masterdata/machines/%s/eng +mosip.kernel.syncdata-service-machine-url=http://masterdata.kernel/v1/masterdata/machines/%s/eng # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments @@ -385,10 +367,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=http://kernel-auth-service/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=http://kernel-auth-service/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=http://kernel-auth-service/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=http://kernel-auth-service/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=http://authmanager.kernel/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=http://authmanager.kernel/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key @@ -403,7 +385,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/callback/partner/ca_certificate -syncdata.websub.callback.url.ca-cert=http://kernel-syncdata-service/v1/syncdata/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a From f64528793bed7de8bf6a720a9b264f045439362f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 May 2021 21:48:16 +0530 Subject: [PATCH 0042/1358] [MOSIP-12666] Updated. --- kernel-default.properties | 2 +- pre-registration-default.properties | 349 ++++++++++------------------ 2 files changed, 128 insertions(+), 223 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index b4d301b4599..518ab6430e0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -4,7 +4,7 @@ # db.dbuser.password # keycloak.host # keycloak.admin.password -# mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) +# mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.ida.client.secret # mosip.mosip.admin.client.secret # mosip.mosip.reg.client.secret diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 734685ad57f..b95d6cfb2ae 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -1,42 +1,50 @@ -# ------------ Database Connection Properties ------------------ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# preregistration.mosip.prereg.client.secret +# mosip.api.public.url + +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port javax.persistence.jdbc.driver=org.postgresql.Driver -mosip.database.ip=postgres -mosip.database.port=80 +mosip.database.ip=postgres-postgresql.postgres.svc.cluster.local +mosip.database.port=5432 javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_prereg?useSSL=false javax.persistence.jdbc.user=prereguser -javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +javax.persistence.jdbc.password=${db.dbuser.password} -# ------------ Hibernate Properties for Database --------------- +## Hibernate hibernate.hbm2ddl.auto=none hibernate.show_sql=false hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true -# ------------ Hickari Logs for Database ----------------------- +## Hickari Logs for Database logging.level.com.zaxxer.hikari=DEBUG - -# ------------ Project Version for the API response ------------ +## Project Version for the API response version=1.0 -# Not in use, to be removed after verification ----------------- -application.id=pre-registration -preregistration.preid.regex=[0-9]+ +##Not in use, to be removed after verification ----------------- +#application.id=pre-registration +#preregistration.preid.regex=[0-9]+ -# ------------ Age to be an adult ------------------------------ -# Used in UI to identify the applicant type +## Age to be an adult +## Used in UI to identify the applicant type mosip.adult.age=5 -# ------------ ID Schema Version ------------------------------- -# This version is set in the ID object created in pre-registration +## ID Schema +## This version is set in the ID object created in pre-registration mosip.idschema.version=0.1 -# ------------ Demographic Service ----------------------------- +## Demographic Service demographic.service.version=v1 -demographic.service.env=http://prereg-application-service +demographic.service.env=http://prereg-application.prereg demographic.service.contextpath=preregistration/${demographic.service.version} demographic.resource.url=${demographic.service.env}/${demographic.service.contextpath} # ID values for application APIs @@ -57,17 +65,17 @@ mosip.id.preregistration.demographic.update=mosip.pre-registration.demographic.u mosip.id.preregistration.demographic.retrieve.date=mosip.pre-registration.demographic.retrieve.date -# Not in use, to be removed after verification ----------------- -mosip.pregistration.pagesize=20 - +# Not in use, to be removed after verification +#mosip.pregistration.pagesize=20 -# ------------ Document Service -------------------------------- +## Document Service document.service.version=v1 -document.service.env=http://prereg-application-service +document.service.env=http://prereg-application.prereg document.service.contextpath=preregistration/${document.service.version} document.resource.url=${document.service.env}/${document.service.contextpath} -# ID values for document APIs + +## ID values for document APIs mosip.preregistration.document.upload.id=mosip.pre-registration.document.upload mosip.preregistration.document.copy.id=mosip.pre-registration.document.copy mosip.preregistration.document.fetch.metadata.id=mosip.pre-registration.document.fetch.metadata @@ -78,30 +86,27 @@ mosip.preregistration.document.delete.specific.id=mosip.pre-registration.documen mosip.preregistration.document.id.upload=mosip.pre-registration.document.upload mosip.preregistration.document.update.docrefId.id=mosip.preregistration.docrefId.update -# ------------ Document Properties ----------------------------- +## Document properties # Maximum size of file allowed uploaded in document service API (in mb) max.file.size=2 # Not in use, to be removed after verification ----------------- -spring.servlet.multipart.max-file-size=-1 -spring.servlet.multipart.max-request-size=-1 +#spring.servlet.multipart.max-file-size=-1 +#spring.servlet.multipart.max-request-size=-1 -# Allowed Formats of Documents +# Allowed formats for documents preregistration.document.extention=PDF,JPEG,PNG,JPG -# Virus Scanner Property -# 'true' to enable virus scaning during document upload -# 'false' to disable virus scanning during document upload +## Virus scanner +## 'true/false' to enable/disable virus scaning during document upload mosip.preregistration.document.scan=true -# Object Store Account Name to store documents +## To store documents mosip.kernel.objectstore.account-name=prereg - - -# ------------ Booking Service ------------------------------- +## Booking Service booking.service.version=v1 -booking.service.env=http://prereg-booking-service +booking.service.env=http://prereg-booking.prereg booking.service.contextpath=preregistration/${booking.service.version} booking.resource.url=${booking.service.env}/${booking.service.contextpath} appointmentResourse.url=${booking.resource.url} @@ -120,96 +125,72 @@ mosip.preregistration.booking.exception.id=mosip.preregistration.booking.parse.e mosip.preregistration.booking.id.book=mosip.pre-registration.booking.book -# ------------ Booking Properties -------------------------------- - -# Sync happens in every n days +## Booking +## Sync every n days preregistration.availability.sync=37 - -# Number of days for which booking slots will be available +## Number of days for which booking slots will be available preregistration.availability.noOfDays=140 - -# Gap between the date of booking and the first appointment date to be shown -# Ex: If a user has logged in pre-reg application today then, he can select booking slots after n days +## Gap between the date of booking and the first appointment date to be shown +## Ex: If a user has logged in pre-reg application today then, he can select booking slots after n days preregistration.booking.offset=2 - -# Number of hours from the appointment time before which an appicant can change/re-book the appointment +## Number of hours from the appointment time before which an appicant can change/re-book the appointment preregistration.timespan.rebook=24 - -# Number of hours before the appointment time before which an applicant can cancel an appointment +## Number of hours before the appointment time before which an applicant can cancel an appointment preregistration.timespan.cancel=24 -# Time Zone -# Used for converting the time zones to UTC +## Time zone. Used for converting the time zones to UTC preregistration.country.specific.zoneId=GMT+05:30 - - -# ------------ Batch Job Service ----------------------------- +## Batch job service batch.service.version=v1 -batch.service.env=http://prereg-batchjob-service +batch.service.env=http://prereg-batchjob.prereg batch.service.contextpath=preregistration/${batch.service.version}/batch batch.resource.url=${batch.service.env}/${batch.service.contextpath} -# Id values of batch job service +## Id values of batch job service mosip.preregistration.batchjob.service.consumed.id=mosip.pre-registration.batchjob.service.consumed mosip.preregistration.batchjob.service.expired.id=mosip.pre-registration.batchjob.service.expired - # Batch Job Service used to fetch token from key cloak mosip.batch.token.authmanager.appId=prereg mosip.batch.token.authmanager.userName=mosip-prereg-client -mosip.batch.token.authmanager.password={cipher}f4ba53f63109c6559d882fda0b7e9f16620cbe15604ea83c940af995520905d7 +mosip.batch.token.authmanager.password=${preregistration.mosip.prereg.client.secret} mosip.batch.token.authmanager.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath}/authenticate/clientidsecretkey mosip.batch.token.request.id= -# Determines the Time of the day, batch job should be intiated +## Determines the Time of the day, batch job should be intiated preregistration.job.schedule.cron.consumedStatusJob=0 0 0 * * ? preregistration.job.schedule.cron.slotavailability=0 0 0 * * ? preregistration.job.schedule.cron.expiredStatusJob=0 0 0 * * ? - -#Schema name for batch job table +## Schema name for batch job table spring.batch.tablePrefix=PREREG.BATCH_ - -#Booking service URL for creating time slots +## Booking service URL for creating time slots bookingAvailablity.url=${booking.resource.url}/appointment/availability/sync - -#BatchJob-service URL for updating the consumed status +##BatchJob-service URL for updating the consumed status updateConsumedStatus.url=${batch.resource.url}/consumedStatus - #BatchJob-service URL for updating to expiredStatus expiredStatus.url=${batch.resource.url}/expiredStatus - batch.appointment.cancel=${batch.service.env}/preregistration/v1 -#-------------Login Service----------------------------------- - +## Login service secret_url.id=string secret_url.requesttime=2018-12-10T06:12:52.994Z secret_url.version=string - - otp.request.flooding.duration=1 otp.request.flooding.max-count=3 - datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX - -mail-notification.rest.uri=http://kernel-notification-service/v1/notifier/email/send -sms-notification.rest.uri=http://kernel-notification-service/v1/notifier/sms/send - -otp-generate.rest.uri=http://kernel-otpmanager-service/v1/otpmanager/otp/generate - +mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send +sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send +otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=pre-reg-login-email-subject-template pre.reg.login.otp.mail.content.template=pre-reg-login-email-content-template - mosip.pre.reg.clientId=mosip.pre.reg.clientId - mosip.primary-language=eng -id-masterdata-template-service-multilang.rest.uri=http://kernel-masterdata-service/v1/masterdata/templates/templatetypecodes/{code} - +id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} -# ------------ Master Data Service --------------------------- +## Masterdata service masterdata.service.version=v1 -masterdata.service.env=http://kernel-masterdata-service +masterdata.service.env=http://masterdata.kernel masterdata.service.contextpath=masterdata masterdata.resource.url=${masterdata.service.env}/${masterdata.service.version}/${masterdata.service.contextpath} regCenter.url=${masterdata.resource.url}/registrationcenters @@ -217,133 +198,97 @@ holiday.url=${masterdata.resource.url}/getregistrationcenterholidays/ holiday.exceptional.url=${masterdata.resource.url}/exceptionalholidays working.day.url=${masterdata.resource.url}/workingdays mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/{langcode} -#Kernel Service URL for fetching templates +##Kernel Service URL for fetching templates resource.template.url=${masterdata.resource.url}/templates mosip.pre-registration.notification.id=mosip.pre-registration.notification.notify -# Notification Templates for various scenarios -# Email Template +## Notification templates for various scenarios email.acknowledgement.template=Email-Acknowledgement -# Email Template Subject email.acknowledgement.subject.template=Acknowledgement-email-subject -# SMS Template sms.acknowledgement.template=SMS-Acknowledgement -# Cancel Appointment Template cancel.appoinment.template=cancel-appointment - - -# ------------ Notification Service -------------------------- +## Notification service notification.service.version=v1 -notification.service.env=http://prereg-application-service +notification.service.env=http://prereg-application.prereg notification.service.contextpath=preregistration/${notification.service.version} notification.url=${notification.service.env}/${notification.service.version}/${notification.service.contextpath}/notification mosip.pre-registration.notification.id.send=mosip.pre-registration.notification.notify -# TimeZone to get an Email or SMS Templates +# TimeZone to get an email or SMS templates timeZone=Asia/Calcutta -# ------------ Email Service --------------------------------- -email.service.env=http://kernel-notification-service +## Email service +email.service.env=http://notifier.kernel email.service.contextpath=notifier #Kernel Service URL for Sending Emails emailResourse.url=${email.service.env}/${masterdata.service.version}/${email.service.contextpath}/email/send -# ------------ SMS Service ----------------------------------- -sms.service.env=http://kernel-notification-service +## SMS service +sms.service.env=http://notifier.kernel sms.service.contextpath=notifier -#Kernel Service URL for Sending SMS +#Kernel service URL for sending SMS smsResourse.url=${sms.service.env}/${masterdata.service.version}/${sms.service.contextpath}/sms/send - - -# ------------ Audit Service --------------------------------- -audit.service.env=http://kernel-auditmanager-service +## Audit service +audit.service.env=http://auditmanager.kernel audit.service.contextpath=auditmanager -#Kernel Service URL for Audit logging audit.url=${audit.service.env}/${masterdata.service.version}/${audit.service.contextpath}/audits - - -# ------------ Crypto Service -------------------------------- -crypto.service.env=http://kernel-keymanager-service +## Crypto service +crypto.service.env=http://keymanager.keymanager crypto.service.contextpath=keymanager -#Kernel Service URL for Encryption and decryption +## Kernel Service URL for Encryption and decryption cryptoResource.url=${crypto.service.env}/${masterdata.service.version}/${crypto.service.contextpath} - - -# ------------ KeyCloak Properties ----------------------------- -# Both below fields must match with what is there on Keycloak Properties +## KeyCloak +## Both below fields must match with what is there on Keycloak properties clientId=mosip-prereg-client -secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +secretKey=${preregistration.mosip.prereg.client.secret} -# Used for Key Creating KeyCloak Session +## Used for Key Creating KeyCloak session userIdType=USERID appId=prereg - -# ------------ Auth Service ---------------------------------- -kernel.auth.env=http://kernel-auth-service +## Auth service +kernel.auth.env=http://authmanager.kernel kernel.auth.contextpath=authmanager -auth.server.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken - - -# ------------ PRID Service ---------------------------------- -kernel.prid.env=http://kernel-pridgenerator-service +## PRID service +kernel.prid.env=http://pridgenerator.kernel kernel.prid.contextpath=pridgenerator mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid.contextpath}/prid - - -# ------------ Sync Data Service ----------------------------- -# To fetch the latest ID Schema for the ID object validator -kernel.syncdata.env=http://kernel-syncdata-service +## Syncdata service +## To fetch the latest ID Schema for the ID object validator +kernel.syncdata.env=http://syncdata.kernel kernel.syncdata.version=v1/syncdata latestidschema.service.contextpath=latestidschema mosip.preregistration.id-schema=${kernel.syncdata.env}/${kernel.syncdata.version}/${latestidschema.service.contextpath} -# API to Fetch the Latest ID Schema +## API to fetch the latest ID schema mosip.preregistration.id-schema=http://kernel-syncdata-service/v1/syncdata/latestidschema - - -# ------------ OTP Properties -------------------------------- +## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} - -# Channel for Sending OTP on Phone otpChannel.mobile=phone - -# Channel for Sending OTP on EMAIL otpChannel.email=email - secret_url.id=string secret_url.requesttime=2018-12-10T06:12:52.994Z secret_url.version=string - - otp.request.flooding.duration=1 otp.request.flooding.max-count=3 - datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX - mail-notification.rest.uri=${mosip.base.url}/v1/notifier/email/send sms-notification.rest.uri=${mosip.base.url}/v1/notifier/sms/send - otp-generate.rest.uri=${mosip.base.url}/v1/otpmanager/otp/generate - pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template - pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template - mosip.pre.reg.clientId=mosip.pre.reg.clientId - mosip.primary-language=eng - id-masterdata-template-service-multilang.rest.uri=${mosip.base.url}/v1/masterdata/templates/{langcode}/{templatetypecode} - -# ----------- Login Service ----------------------------------- +## Login service mosip.preregistration.login.service.version=1.0 mosip.preregistration.sendotp.id=mosip.pre-registration.login.sendotp mosip.preregistration.validateotp.id=mosip.pre-registration.login.useridotp @@ -351,15 +296,12 @@ mosip.id.preregistration.sendotp=mosip.pre-registration.login.sendotp mosip.id.preregistration.validateotp=mosip.pre-registration.login.useridotp mosip.preregistration.invalidatetoken.id=mosip.pre-registration.login.invalidate mosip.preregistration.config.id=mosip.pre-registration.login.config - mosip.preregistration.login.id.sendotp=mosip.pre-registration.login.sendotp mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridotp mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config - -# ----------------------------------------------------------------------------------- -mosip.base.url=${mosipbox.public.url} +mosip.base.url=${mosip.api.public.url} auth-token-generator.rest.issuerUrl=${mosip.base.url}/keycloak/auth/realms/preregistration validationStatus=success context=auth-otp @@ -367,7 +309,7 @@ prereg.auth.jwt.secret=Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E= prereg.auth.jwt.token.expiration=3600 prereg.auth.jwt.token.roles=INDIVIDUAL -# ------------ ID Object Validation Properties ----------------- +## ID object validation mosip.kernel.idobjectvalidator.masterdata.documentcategories.lang.rest.uri=${masterdata.resource.url}/documentcategories/{langcode} mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${masterdata.resource.url}/languages mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${masterdata.resource.url}/gendertypes @@ -377,22 +319,16 @@ mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${masterdata.resour mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${masterdata.resource.url}/locations/locationhierarchy/{hierarchyname} mosip.kernel.idobjectvalidator.masterdata.documentcategories.lang.rest.uri=${masterdata.resource.url}/documentcategories/{langcode} -# Class name of the referenceValidator. Commenting or removing this property will disable reference validator. +## Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator - - -# -------------- Configurations File Names --------------------- -# Global/Application Configuration File Name +## Configurations file names global.config.file=application-${spring.profiles.active}.properties - -# Pre-reg Configuration File Name pre.reg.config.file=pre-registration-${spring.profiles.active}.properties - -# Mapping file for Pre-registration & ID Object +## Mapping file for Pre-registration & ID Object preregistartion.config.identityjson=pre-registration-identity-mapping.json -# UI Scheme JSON +# UI scheme json preregistration.demographic.idschema-json-filename=pre-registration-demographic.json # Verify where it is used @@ -403,114 +339,83 @@ preregistartion.identity.email=email preregistartion.identity.phone=phone preregistartion.identity=identity - - -# -------- QR Code Service ------------ +## QR code service mosip.pre-registration.qrcode.generate.id=mosip.pre-registration.qrcode.generate mosip.pre-registration.qrcode.service.version=1.0 qrversion=V1 mosip.pre-registration.qrcode.id.generate=mosip.pre-registration.qrcode.generate mosip.id.pre-registration.qrcode.generate: mosip.pre-registration.qrcode.generate - - -#--------Data Sync with Registration Client---------- -#id for retrieve all pre-registration ids API +## Data sync with registration client mosip.id.preregistration.datasync.fetch.ids=mosip.pre-registration.datasync.fetch.ids -#id for storing cosumed pre-registration ids API +## id for storing consumed pre-registration ids API mosip.id.preregistration.datasync.store=mosip.pre-registration.datasync.store -#id for get preregistration id API +## id for get preregistration id API mosip.id.preregistration.datasync.fetch=mosip.pre-registration.datasync.fetch - - -# Verify -------------------------------------------- -#config parameter to define proof of address +## Verify poa.url=proofOfAddress -#config parameter to define proof of identity poi.url=proofOfIdentity -#config parameter to define proof of birth pod.url=proofOfDateOfBirth -#config parameter to define proof of relationship por.url=proofOfRelationship - - -#------------Transliteration Service--------------- -# Determines request & response id of transliteration-service +## Transliteration service +## Determines request & response id of transliteration-service mosip.pre-registration.transliteration.transliterate.id=mosip.pre-registration.transliteration.transliterate mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.transliteration.transliterate mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.icu4j - -#------------UI params----------------------------- -------------to be removed later ------- -mosip.mandatory.languages=ara,fra -mosip.optional.languages= -mosip.min.languages.count=2 -mosip.max.languages.count=2 +## UI params +#------------to be removed later ------- +#mosip.mandatory.languages=ara,fra +#mosip.optional.languages= +#mosip.min.languages.count=2 +#mosip.max.languages.count=2 ------------------------------------------- -# List of keys which UI will consume +## List of keys which UI will consume ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version -# This config is used for loading recommended centers based on the value of the config. -# The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded +## This config is used for loading recommended centers based on the value of the config. +## The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded preregistration.recommended.centers.locCode=5 - -# The Registration centers will be searched based on the distance value from the Geo location identified +## The Registration centers will be searched based on the distance value from the Geo location identified preregistration.nearby.centers=2000 - -# Determines file upload type allowed in UI +## Determines file upload type allowed in UI preregistration.documentupload.allowed.file.type = application/pdf,image/jpeg,image/png,image/jpg - # Determines the file name length(with extension) allowed in UI preregistration.documentupload.allowed.file.nameLength = 50 - # Determines maximum size of file allowed uploaded in document service api (in bytes) preregistration.documentupload.allowed.file.size = 2000000 - # Determines idle condition(in seconds) mosip.preregistration.auto.logout.idle=180 - # Determines pop up timer(in seconds) mosip.preregistration.auto.logout.timeout=60 - preregistration.ui.version=1.1.5 - # Determines to maintain iternal cycle & make sure value is not null (any value greater than zero) mosip.preregistration.auto.logout.ping=30 -# Not in use, to be removed after verification ----------------- -# UI Modularity config files (Not used yet) -# Determines which stages of Pre-Registration can be switched off and switched on -preregistration.workflow.demographic=true/false -preregistration.workflow.documentupload=true/false -preregistration.workflow.booking=true/false +## Not in use, to be removed after verification ----------------- +## UI Modularity config files (Not used yet) +## Determines which stages of Pre-Registration can be switched off and switched on +#preregistration.workflow.demographic=true/false +#preregistration.workflow.documentupload=true/false +#preregistration.workflow.booking=true/false mosip.id.validation.identity.dateOfBirth=^\d{4}[\-\/\s]?((((0[13578])|(1[02]))[\-\/\s]?(([0-2][0-9])|(3[01])))|(((0[469])|(11))[\-\/\s]?(([0-2][0-9])|(30)))|(02[\-\/\s]?[0-2][0-9]))$ -#------------------ Captcha Service -------------- -# Configuration for google re-captcha +## Captcha service +## Configuration for google re-captcha google.recaptcha.site.key=sitekey google.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify google.recaptcha.secret.key=secret mosip.preregistration.captcha.id.validate = mosip.pre-registration.captcha.id.validate -# Enable or Disable Captch - true to enable & false to disable enable-captcha=false - - -#---------- Security Properties ------------------------- -# CSRF Switch +## Security mosip.security.csrf-enable:false - -# CORS Switch mosip.security.cors-enable:false - # Comma Separated Allowed Origins mosip.security.origins:localhost:8080,localhost:4200 - -# Secure Cookie Switch mosip.security.secure-cookie:false -# for prereg booking notification name validation +## for prereg booking notification name validation preregistration.notification.nameFormat=fullName From d9bd6d4a6ea5a7746a822e426864b101cacf6515 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 12 May 2021 04:30:18 +0530 Subject: [PATCH 0043/1358] Keycloak params updated. --- kernel-default.properties | 4 ++-- pre-registration-default.properties | 4 +++- 2 files changed, 5 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 518ab6430e0..fc7815c15c7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -226,8 +226,8 @@ keycloak.verify-token-audience=true mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls diff --git a/pre-registration-default.properties b/pre-registration-default.properties index b95d6cfb2ae..9eba7f3ce1c 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -4,6 +4,7 @@ # db.dbuser.password # preregistration.mosip.prereg.client.secret # mosip.api.public.url +# keycloak.host ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace @@ -302,7 +303,8 @@ mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.inva mosip.preregistration.login.id.config=mosip.pre-registration.login.config mosip.base.url=${mosip.api.public.url} -auth-token-generator.rest.issuerUrl=${mosip.base.url}/keycloak/auth/realms/preregistration +iam.base.url=${keycloak.host} +auth-token-generator.rest.issuerUrl=${iam.base.url}/realms/preregistration validationStatus=success context=auth-otp prereg.auth.jwt.secret=Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E= From 00010fcbb7b7843af8febd7928f0785c026f5c3d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 12 May 2021 21:35:52 +0530 Subject: [PATCH 0044/1358] Keycloak paths corrected. --- kernel-default.properties | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index fc7815c15c7..a4255630c8e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -209,25 +209,25 @@ ridgenerator_database_password=${db.dbuser.password} mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/admin/realms/{realmId} -mosip.iam.admin-url=${mosip.iam.base-url}/admin/ +mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/auth/admin/realms/{realmId} +mosip.iam.admin-url=${mosip.iam.base-url}/auth/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${mosip.iam.base-url} +keycloak.auth-server-url=${mosip.iam.base-url}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 6b5b19fe67a86ad561c924eaa8a58815b2d62f69 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 12 May 2021 21:36:51 +0530 Subject: [PATCH 0045/1358] Keycloak path corrected. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 9eba7f3ce1c..6e86e39c605 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -304,7 +304,7 @@ mosip.preregistration.login.id.config=mosip.pre-registration.login.config mosip.base.url=${mosip.api.public.url} iam.base.url=${keycloak.host} -auth-token-generator.rest.issuerUrl=${iam.base.url}/realms/preregistration +auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration validationStatus=success context=auth-otp prereg.auth.jwt.secret=Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E= From 022af821cfbcd4fb58eea8754549486bddb639da Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 13 May 2021 06:16:45 +0530 Subject: [PATCH 0046/1358] log level changed to debug. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 3f424c666f0..caac2dfd8b7 100644 --- a/application-default.properties +++ b/application-default.properties @@ -451,8 +451,8 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer # log level -logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.root=DEBUG +logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 70f391e6c73199ac1853597ff7686870c814958d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 13 May 2021 06:26:07 +0530 Subject: [PATCH 0047/1358] Log level reverted back to default --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index caac2dfd8b7..3f424c666f0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -451,8 +451,8 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer # log level -logging.level.root=DEBUG -logging.level.io.mosip=DEBUG +logging.level.root=WARN +logging.level.io.mosip=INFO logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 259322f145967d2ce3457b4350208f07317cece2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 14 May 2021 21:15:46 +0530 Subject: [PATCH 0048/1358] Log level changed to DEBUG. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 3f424c666f0..caac2dfd8b7 100644 --- a/application-default.properties +++ b/application-default.properties @@ -451,8 +451,8 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer # log level -logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.root=DEBUG +logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From c10e55e235d60e6efd3224b506fff7e94e4959e6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 16 May 2021 21:00:43 +0530 Subject: [PATCH 0049/1358] Reverted back log level to default. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index caac2dfd8b7..b7dec5e3b02 100644 --- a/application-default.properties +++ b/application-default.properties @@ -451,8 +451,8 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer # log level -logging.level.root=DEBUG -logging.level.io.mosip=DEBUG +logging.level.root=WARN +-logging.level.io.mosip=INFO logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 6fc520b9ed6fabad25534e62f90103c208f88851 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 16 May 2021 21:29:28 +0530 Subject: [PATCH 0050/1358] [MOSIP-14112] Updated for version 1.1.5 --- pre-registration-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 6e86e39c605..692202a88ea 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -236,10 +236,12 @@ audit.service.contextpath=auditmanager audit.url=${audit.service.env}/${masterdata.service.version}/${audit.service.contextpath}/audits ## Crypto service -crypto.service.env=http://keymanager.keymanager crypto.service.contextpath=keymanager ## Kernel Service URL for Encryption and decryption cryptoResource.url=${crypto.service.env}/${masterdata.service.version}/${crypto.service.contextpath} +preregistration.crypto.applicationId=PRE_REGISTRATION +preregistration.crypto.referenceId=INDIVIDUAL +preregistration.crypto.PrependThumbprint=false ## KeyCloak ## Both below fields must match with what is there on Keycloak properties From 2b1529dd1896954e3a9459efdbd7758d17b334d4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 16 May 2021 21:32:20 +0530 Subject: [PATCH 0051/1358] Updated for 1.1.5 --- pre-registration-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 692202a88ea..c97dd22178c 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -236,6 +236,7 @@ audit.service.contextpath=auditmanager audit.url=${audit.service.env}/${masterdata.service.version}/${audit.service.contextpath}/audits ## Crypto service +crypto.service.env=http://keymanager.keymanager crypto.service.contextpath=keymanager ## Kernel Service URL for Encryption and decryption cryptoResource.url=${crypto.service.env}/${masterdata.service.version}/${crypto.service.contextpath} From 60639bf97db3a6efb1fdaeb84797c3af4342a2c6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 17 May 2021 10:12:15 +0530 Subject: [PATCH 0052/1358] [MOSIP-14151] Admin properties updated. --- admin-default.properties | 92 +++++++++++++++++----------------------- 1 file changed, 40 insertions(+), 52 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 1264ab78979..0aaaa05f500 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -1,11 +1,18 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.host +# mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.api.public.url + mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST mosip.kernel.database.hostname=postgres mosip.kernel.database.port=80 -#----------------------------------------------ACCOUNTMANAGEMENT------------------------------------------------# - -authmanager.base.url=http://kernel-auth-service/v1/authmanager +## Account management +authmanager.base.url=http://authmanager.kernel/v1/authmanager mosip.admin.accountmgmt.auth-manager-base-uri=${authmanager.base.url} mosip.admin.accountmgmt.user-name-url=/username/ mosip.admin.accountmgmt.user-detail-url=/userdetail/ @@ -14,21 +21,17 @@ mosip.admin.accountmgmt.change-passoword-url=/changepassword/ mosip.admin.accountmgmt.reset-password-url=/resetpassword/ mosip.admin.app-id=admin -#---------------------------------------------------------------------------------------------------------------# - -mosip.kernel.signature.cryptomanager-encrypt-url=http://kernel-keymanager-service/v1/keymanager/private/encrypt +mosip.kernel.signature.cryptomanager-encrypt-url=http://keymanager.keymanager/v1/keymanager/private/encrypt auth.server.validate.url=${authmanager.base.url}/authorize/admin/validateToken auth.server.refreshToken.url=${authmanager.base.url}/authorize/admin/refreshToken auth.role.prefix=ROLE_ auth.header.name=Authorization -#------------------------------------DB PROPERTIES-------------------------------------------------------------# - +## Databases javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master javax.persistence.jdbc.user=masteruser -javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - +javax.persistence.jdbc.password=${db.dbuser.password} hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.hbm2ddl.auto=none @@ -40,18 +43,16 @@ hibernate.cache.use_query_cache=false hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false -#---------------------------UserRegistration--------------------------------- - +## Use registration auth.server.user-register-url=${authmanager.base.url}/user -mosip.kernel.emailnotifier-url=http://kernel-notification-service/v1/notifier/email/send +mosip.kernel.emailnotifier-url=http://notifier.kernel/v1/notifier/email/send auth.server.sendotp-url=${authmanager.base.url}/authenticate/sendotp auth.server.user-add-password-url=${authmanager.base.url}/user/addpassword mosip.admin-appid=admin mosip.admin-otp-context=auth-otp mosip.admin-userid-otp-type=USERID -#---------------------------Security Policy--------------------------------- - +## Security policy mosip.admin.security.policy.auth-types=bio,nonbio mosip.admin.security.policy.bio=finger,iris,face mosip.admin.security.policy.nonbio=otp,password @@ -62,7 +63,7 @@ mosip.admin.security.policy.type3=otp mosip.admin.security.policy.role-policy-mapping={ZONAL_ADMIN:'type2',ZONAL_APPROVER:'type1',CENTRAL_ADMIN:'type1',CENTRAL_APPROVER:'type1',REGISTRATION_OFFICER:'type1',REGISTRATION_SUPERVISOR:'type1',REGISTRATION_OPERATOR:'type1'} mosip.admin.security.policy.userrole-auth-url=${authmanager.base.url}/role/{appId}/{username} -#---------------------------Masterdata Cards--------------------------------- +## Masterdata cards mosip.admin.masterdata.lang-code=eng,ara,fra @@ -136,87 +137,74 @@ mosip.admin.masterdata.card.document-category-eng=Document Category mosip.admin.masterdata.card.document-category-fra=Catégorie de document mosip.admin.masterdata.card.document-category-ara=\u0641\u0626\u0629 \u0627\u0644\u0648\u062B\u064A\u0642\u0629 -#masteradata holidays +## masteradata holidays mosip.admin.masterdata.card.holidays-eng=Holidays mosip.admin.masterdata.card.holidays-fra=Vacances mosip.admin.masterdata.card.holidays-ara=\u0627\u0644\u0639\u0637\u0644 -#masterdata locations +## masterdata locations mosip.admin.masterdata.card.locations-eng=Locations mosip.admin.masterdata.card.locations-fra=Emplacements mosip.admin.masterdata.card.locations-ara=\u0645\u0648\u0627\u0642\u0639 -#masterdata template +## masterdata template mosip.admin.masterdata.card.templates-eng=Templates mosip.admin.masterdata.card.templates-fra=Modèles mosip.admin.masterdata.card.templates-ara=\u0642\u0648\u0627\u0644\u0628 -#masterdata valid document +## masterdata valid document mosip.admin.masterdata.card.valid-document-eng=Valid Documents mosip.admin.masterdata.card.valid-document-fra=Documents valides mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u0635\u0627\u0644\u062D\u0629 -#-----------------UINActive/Deactive--------------------------------- - -mosip.admin.uinmgmt.uin-detail-search=http://idrepo-identity-service/v1/identity/uin/{uin} -mosip.kernel.packet-status-update-url=http://regproc-registration-transaction-service/registrationprocessor/v1/registrationtransaction/search -mosip.kernel.packet-reciever-api-url=http://dmz.ingress:30080/registrationprocessor/v1/packetreceiver/registrationpackets - -mosip.kernel.zone-validation-url=http://kernel-masterdata-service/v1/masterdata/zones/authorize +## UIN activate/deactivate +mosip.admin.uinmgmt.uin-detail-search=http://identity.idrepo/v1/identity/uin/{uin} +mosip.kernel.packet-status-update-url=http://registration-transaction.regproc/registrationprocessor/v1/registrationtransaction/search +mosip.kernel.packet-reciever-api-url=http://packet-receiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets +mosip.kernel.zone-validation-url=http://masterdata.kernel/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 -mosip.kernel.audit.manager.api=http://kernel-auditmanager-service/v1/auditmanager/audits -mosip.kernel.masterdata.audit-url=http://kernel-auditmanager-service/v1/auditmanager/audits - ------------ +mosip.kernel.audit.manager.api=http://auditmanager.kernel/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined -mosip.open-id.base-url=${keycloak.external.url} -mosip.admin-services.audit.manager.api=http://kernel-auditmanager-service/v1/auditmanager/audits +mosip.open-id.base-url=${keycloak.host} +mosip.admin-services.audit.manager.api=http://auditmanager.kernel/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code -mosip.admin-services.open-id.clientid=mosip-admin-services-client -mosip.admin-services.open-id.clientsecret={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +mosip.admin-services.open-id.clientid=mosip-admin-client +mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} -# mosipbox.public.url is Ansible defined -mosip.admin-services.redirecturi=${mosipbox.public.url}/v1/admin/login-redirect/ +# TODO: Admin should have internal access. Change this to internal URL later. +mosip.admin-services.redirecturi=${mosip.api.public.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=cls mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.admin-services.open-id.token_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true -#-------------------------------------------------------------------------------------- mosip.ui.spec.default.domain=registration-client -#---------------------------------------Security Properties----------------------------- - -#CSRF switch +## Security mosip.security.csrf-enable=false - -#CORS switch mosip.security.cors-enable=false - -#comma separated allowed origins mosip.security.origins=localhost:8080 - -#secure cookie switch mosip.security.secure-cookie=false # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client -mosip.iam.module.clientsecret={cipher}29ab73abaca4b954df11ce802dbf92258da2456117ba901b96ff5d51185c3aa1 -mosip.iam.module.redirecturi=${mosipbox.public.url}/v1/admin/login-redirect/ +mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.module.redirecturi=${mosip.api.public.url}/v1/admin/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${mosipbox.public.url}/keycloak/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${mosipbox.public.url}/keycloak/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client -regproc.token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 KEYBASEDTOKENAPI=${authmanager.base.url}/authenticate/clientidsecretkey From d6cdb823d32b95ad03f95f8f089fef4e3f987de4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 17 May 2021 11:46:21 +0530 Subject: [PATCH 0053/1358] Admin properties updated. --- admin-default.properties | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 0aaaa05f500..b2ec2cdc0d6 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -8,8 +8,11 @@ mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST -mosip.kernel.database.hostname=postgres -mosip.kernel.database.port=80 +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.kernel.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.kernel.database.port=5432 ## Account management authmanager.base.url=http://authmanager.kernel/v1/authmanager From beb556e72a91c76dc43d6823512bb00e5c2b0c32 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 20 May 2021 05:22:32 +0530 Subject: [PATCH 0054/1358] Admin properties updated. --- admin-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index b2ec2cdc0d6..363045713b9 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -4,7 +4,7 @@ # db.dbuser.password # keycloak.host # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) -# mosip.api.public.url +# mosip.api.internal.url mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST @@ -179,7 +179,7 @@ mosip.admin-services.open-id.clientid=mosip-admin-client mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} # TODO: Admin should have internal access. Change this to internal URL later. -mosip.admin-services.redirecturi=${mosip.api.public.url}/v1/admin/login-redirect/ +mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=cls mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth @@ -198,7 +198,7 @@ mosip.security.secure-cookie=false mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.module.redirecturi=${mosip.api.public.url}/v1/admin/login-redirect/ +mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth From f19fad3d1549d1c16066c6f09f86ff821b957f10 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 20 May 2021 06:26:21 +0530 Subject: [PATCH 0055/1358] Admin properties udpated. --- admin-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/admin-default.properties b/admin-default.properties index 363045713b9..a5bc3ad22a3 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -4,6 +4,7 @@ # db.dbuser.password # keycloak.host # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.mosip.regproc.client.secret # mosip.api.internal.url mosip.admin.version-id=v1.0 From 8911a0dd3dda28280b44d0b42b908da5dbfc0558 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 20 May 2021 12:27:16 +0530 Subject: [PATCH 0056/1358] Admin property updated. --- admin-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index a5bc3ad22a3..31b828521d9 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -200,7 +200,8 @@ mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ -mosip.iam.module.login_flow.scope=cls +#mosip.iam.module.login_flow.scope=cls +mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip From 68ea27273ebdc982bae621b340d6f69c3c29ae4d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 20 May 2021 12:27:58 +0530 Subject: [PATCH 0057/1358] Updated. --- admin-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 31b828521d9..3a72cf49c85 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -181,7 +181,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} # TODO: Admin should have internal access. Change this to internal URL later. mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ -mosip.admin-services.open-id.login_flow.scope=cls +#mosip.admin-services.open-id.login_flow.scope=cls +mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.admin-services.open-id.token_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/token From 0f2538e94f3018ea778b23519cbb0feb5027d124 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 20 May 2021 18:42:47 +0530 Subject: [PATCH 0058/1358] Updated. --- application-default.properties | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/application-default.properties b/application-default.properties index b7dec5e3b02..f0a827f00a4 100644 --- a/application-default.properties +++ b/application-default.properties @@ -7,7 +7,7 @@ aplication.configuration.level.version=1.1.4 mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable=NA # Masterdata apis used to retreive data for IdObjectReferenceValidator -mosip.masterdata.base.url = http://kernel-masterdata-service +mosip.masterdata.base.url = http://masterdata.kernel # Commenting/removing below property will disable all masterdata validations as supported languages are required for all other validations mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages @@ -222,7 +222,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 #------------------------Auth-Adapter----------------------------------------------- -auth.server.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth-token-generator.rest.issuerUrl=${iam.url}/auth/realms/mosip #----------------------- Crypto -------------------------------------------------- @@ -255,7 +255,7 @@ mosip.kernel.crypto.hash-iteration=100000 #Sign algo name mosip.kernel.crypto.sign-algorithm-name=RS256 -mosip.keymanager.base.url=http://kernel-keymanager-service +mosip.keymanager.base.url=http://keymanager.keymanager mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt @@ -356,7 +356,7 @@ logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO mosip.min-digit-longitude-latitude=4 mosip.kernel.filtervalue.max_columns=20 -auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken #------------------PDF Genration----------------------------------------- mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 @@ -443,7 +443,7 @@ CRYPTOMANAGER_DECRYPT=${mosip.keymanager.base.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.keymanager.base.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.masterdata.base.url}/v1/masterdata/idschema/latest KEYMANAGER_SIGN=${mosip.keymanager.base.url}/v1/keymanager/sign -AUDIT_URL=http://kernel-auditmanager-service/v1/auditmanager/audits +AUDIT_URL=http://auditmanager.kernel/v1/auditmanager/audits packet.default.source=id schema.default.fieldCategory=pvt,none From 8e851eb7b6d7af5f7467e1eb6053f369a803df7d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 24 May 2021 06:46:17 +0530 Subject: [PATCH 0059/1358] Cleaned up. Langauages changed to two (from three). --- application-default.properties | 294 ++++++++++----------------------- 1 file changed, 90 insertions(+), 204 deletions(-) diff --git a/application-default.properties b/application-default.properties index f0a827f00a4..0e441f64dad 100644 --- a/application-default.properties +++ b/application-default.properties @@ -1,28 +1,18 @@ - -#---------------------------------------Common properties----------------------- aplication.configuration.level.version=1.1.4 -#---------------------------------------IdObjetReferenceValidator Properties-----------------------# -# Value used in IdObjectReferenceValidator when location is not available +## Idobject validator mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable=NA - -# Masterdata apis used to retreive data for IdObjectReferenceValidator mosip.masterdata.base.url = http://masterdata.kernel - # Commenting/removing below property will disable all masterdata validations as supported languages are required for all other validations mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages - # commenting/removing below property will disable Gender masterdata validation mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes - # commenting/removing below properties will disable Document Type masterdata validation mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} - # commenting/removing below properties will disable location and location hierarchy masterdata validations mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} - # commenting/removing below properties will disable individualtype/resident status masterdata validations mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes @@ -39,8 +29,7 @@ mosip.kernel.idobjectvalidator.locationhierarchy.mapping.5=postalCode # Date format expected in identity json. commenting/removing below property will disable dob format validation in identity json. mosip.kernel.idobjectvalidator.date-format=uuuu/MM/dd -# --------- Properties that needs to be updated when Identity Schema has been updated ---------------# -# Mandatory attributes used by IdObjectSchemaValidator. These values needs to be updated when Identity schema is updated. +## Properties that need to be updated when Identity Schema has been updated mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.update-uin=IDSchemaVersion,UIN mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber @@ -52,22 +41,22 @@ mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registra mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.other=IDSchemaVersion,UIN mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.lost=IDSchemaVersion -# Bio attribute allowed to be stored in IDRepo as per Identity Schema +## Bio attribute allowed to be stored in IDRepo as per Identity Schema mosip.idrepo.identity.allowedBioAttributes=individualBiometrics -# List of all bio attriutes defined in Identity Schema +## List of all bio attriutes defined in Identity Schema mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometrics -#----------------------------------------------------------------------------------------------------# - -mosip.country.code=MOR -# Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.country.code=CON +## Language supported by platform +mosip.supported-languages=eng,fra mosip.primary-language=eng -mosip.secondary-language=ara +mosip.secondary-language=fra +#mosip.right_to_left_orientation=ara +mosip.left_to_right_orientation=eng,fra -# Application IDs +## Application IDs mosip.prereg.app-id=PRE_REGISTRATION mosip.reg.app-id=REGISTRATION mosip.regproc.app-id=REGISTRATION_PROCESSOR @@ -75,186 +64,127 @@ mosip.ida.app-id=IDA mosip.ida.ref-id=INTERNAL mosip.idrepo.app-id=ID_REPO -# UTC ISO Date Time Pattern mosip.utc-datetime-pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.sign.header=response-signature mosip.signed.response.header=response-signature -#----------------------- CBEFF Util-------------------------------------------------- +## CBEFF util # Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # Cbeff XSD file name in config server mosip.kernel.xsdfile=mosip-cbeff.xsd -#----------------------------- Applicant Type -------------------------------------------------- +## Applicant type mosip.kernel.applicant.type.age.limit = 5 mosip.kernel.applicantType.mvel.file=applicanttype.mvel mosip.kernel.config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ -#----------------------------- Static PIN -------------------------------------------------- -mosip.kernel.pin.length=6 -#-----------------------------TspId ----------------------------------------------- -#length of the Tsp id +## Various length parameters +mosip.kernel.pin.length=6 mosip.kernel.tspid.length=4 - -#-----------------------------partnerId ----------------------------------------------- -#length of the partner id mosip.kernel.partnerid.length=4 - -#-----------------------------TOKEN-ID Properties--------------------------------- -#length of the token id mosip.kernel.tokenid.length=36 - -#-----------------------------Registration Center Id ----------------------------------------------- -#length of the registration center id mosip.kernel.registrationcenterid.length=5 - -#-----------------------------Machine Id ----------------------------------------------- -#length of the machine id mosip.kernel.machineid.length=5 -#-----------------------------RID Properties--------------------------------------- -# length of the rid +## RID mosip.kernel.rid.length=29 -# length of the timestamp mosip.kernel.rid.timestamp-length=14 -# rid sequence max digits mosip.kernel.rid.sequence-length=5 -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -mosip.kernel.tokenid.sequence-limit=3 - -#-----------------------------PRID Properties------------------------------------ -#prid-length +## PRID mosip.kernel.prid.length=14 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -#to disable validation assign zero or negative value +## Upper bound of number of digits in sequence allowed in id. For example if +## limit is 3, then 12 is allowed but 123 is not allowed in id (in both +## ascending and descending order) +mosip.kernel.tokenid.sequence-limit=3 +## Upper bound of number of digits in sequence allowed in id. For example if +## limit is 3, then 12 is allowed but 123 is not allowed in id (in both +## ascending and descending order) +## to disable validation assign zero or negative value mosip.kernel.prid.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -#to disable validation assign zero or negative value +## Number of digits in repeating block allowed in id. For example if limit is 2, +## then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) +## to disable validation assign zero or negative value mosip.kernel.prid.repeating-block-limit=3 - - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) to disable validation assign zero or negative value +## Lower bound of number of digits allowed in between two repeating digits in +## id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) to disable validation assign zero or negative value mosip.kernel.prid.repeating-limit=2 - -# list of number that id should not be start with to disable null +## list of number that id should not be start with to disable null mosip.kernel.prid.not-start-with=0,1 - -#restricted numbers for prid +## restricted numbers for prid mosip.kernel.prid.restricted-numbers=786,666 - -#-----------------------------VID Properties-------------------------------------- -# length of the vid +## VID mosip.kernel.vid.length=16 - # Upper bound of number of digits in sequence allowed in id. For example if # limit is 3, then 12 is allowed but 123 is not allowed in id (in both # ascending and descending order) # to disable sequence limit validation assign 0 or negative value mosip.kernel.vid.length.sequence-limit=3 - # Number of digits in repeating block allowed in id. For example if limit is 2, # then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) # to disable repeating block validation assign 0 or negative value mosip.kernel.vid.length.repeating-block-limit=2 - - # Lower bound of number of digits allowed in between two repeating digits in # id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) # to disable repeating limit validation, assign 0 or negative value mosip.kernel.vid.length.repeating-limit=2 - -# list of number that id should not be start with -# to disable null +# list of number that id should not be start with to disable null mosip.kernel.vid.not-start-with=0,1 - -#restricted numbers for vid mosip.kernel.vid.restricted-numbers=786,666 -#-----------------------------UIN Properties-------------------------------------- -#length of the uin +## UIN mosip.kernel.uin.length=10 -#minimum threshold of unused uin mosip.kernel.uin.min-unused-threshold=200000 -#number of uins to generate mosip.kernel.uin.uins-to-generate=500000 -#restricted numbers for uin mosip.kernel.uin.restricted-numbers=786,666 - # Upper bound of number of digits in sequence allowed in id. For example if # limit is 3, then 12 is allowed but 123 is not allowed in id (in both # ascending and descending order) # to disable sequence limit validation assign 0 or negative value mosip.kernel.uin.length.sequence-limit=3 - # Number of digits in repeating block allowed in id. For example if limit is 2, # then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) #to disable validation assign zero or negative value mosip.kernel.uin.length.repeating-block-limit=2 - # Lower bound of number of digits allowed in between two repeating digits in # id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) # to disable repeating limit validation, assign 0 or negative value mosip.kernel.uin.length.repeating-limit=2 - #reverse group digit limit for uin filter mosip.kernel.uin.length.reverse-digits-limit=5 - #group digit limit for uin filter mosip.kernel.uin.length.digits-limit=5 - #should not start with mosip.kernel.uin.not-start-with=0,1 - #adjacent even digit limit for uin filter mosip.kernel.uin.length.conjugative-even-digits-limit=3 - -#------------------------Auth-Adapter----------------------------------------------- +## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth-token-generator.rest.issuerUrl=${iam.url}/auth/realms/mosip +#iam adapter +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.kernel.auth.adapter.ssl-bypass=true +mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} -#----------------------- Crypto -------------------------------------------------- -#Crypto asymmetric algorithm name +## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING -#Crypto symmetric algorithm name mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding -#Keygenerator asymmetric algorithm name mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA -#Keygenerator symmetric algorithm name mosip.kernel.keygenerator.symmetric-algorithm-name=AES -#Asymmetric algorithm key length mosip.kernel.keygenerator.asymmetric-key-length=2048 -#Symmetric algorithm key length mosip.kernel.keygenerator.symmetric-key-length=256 -#Keygenerator symmetric algorithm name mosip.kernel.keygenerator.symmetric-algorithm-name=AES -# keygenerator asymmetric algorithm name mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA -#Encrypted data and encrypted symmetric key separator mosip.kernel.data-key-splitter=#KEY_SPLITTER# -#GCM tag length mosip.kernel.crypto.gcm-tag-length=128 -#Hash algo name mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 -#Symmtric key length used in hash mosip.kernel.crypto.hash-symmetric-key-length=256 -#No of iterations in hash mosip.kernel.crypto.hash-iteration=100000 -#Sign algo name mosip.kernel.crypto.sign-algorithm-name=RS256 - mosip.keymanager.base.url=http://keymanager.keymanager mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt @@ -268,128 +198,91 @@ mosip.kernel.cryptomanager.request_version=v1.0 mosip.kernel.signature.signature-request-id=SIGNATURE.REQUEST mosip.kernel.signature.signature-version-id=v1.0 - - -#----------------------------------ID Repo------------------------------------------ +## ID repo mosip.idrepo.identity.uin-status.registered=ACTIVATED mosip.idrepo.identity.uin-status=ACTIVATED,BLOCKED,DEACTIVATED -#---------------------------------------otp manager service------------------------------- -#the default length for otp(in number) +## OTP manager mosip.kernel.otp.default-length=6 -#the default crypto function -#It can be: HmacSHA512, HmacSHA256, HmacSHA1. +## Default crypto function: HmacSHA512, HmacSHA256, HmacSHA1. mosip.kernel.otp.mac-algorithm=HmacSHA512 -#the OTP expires after the given time(in seconds). +## OTP expires after the given time (in seconds). mosip.kernel.otp.expiry-time=180 -#the key is freezed for the given time(in seconds). +## Key is frozen for the given time (in seconds). mosip.kernel.otp.key-freeze-time=1800 -#the number of validation attempts allowed(in number). -#mosip.kernel.otp.validation-attempt-threshold =3 means , the validation and generation will be blocked from 4th time. +## Number of validation attempts allowed. +## mosip.kernel.otp.validation-attempt-threshold =3 means , the validation and generation will be blocked from 4th time. mosip.kernel.otp.validation-attempt-threshold=10 -#minimum length of key(in number). mosip.kernel.otp.min-key-length=3 -#maximum length of key(in number). mosip.kernel.otp.max-key-length=64 - -#--------------------------------------Licensekeymanager Service-------------------------------------- -#the license key length. +## Licence key manager mosip.kernel.licensekey.length=16 -#List of permissions -# NOTE: ',' in the below list is used as splitter in the implementation. -# Use of ',' in the values for below key should be avoided. -# Use of spaces before and after ',' also should be avoided. +# List of permissions +## NOTE: ',' in the below list is used as splitter in the implementation. +## Use of ',' in the values for below key should be avoided. +## Use of spaces before and after ',' also should be avoided. mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authentication - Identity Data Match,Demo Authentication - Address Data Match,Demo Authentication - Full Address Data Match,Demo Authentication - Secondary Language Match,Biometric Authentication - FMR Data Match,Biometric Authentication - IIR Data Match,Biometric Authentication - FID Data Match,Static Pin Authentication,eKYC - limited,eKYC - Full,eKYC - No - - -#-----------------------------Virus Scanner-------------------------------------- -# Here we specify the Kubernetes service name, as clamav runs in the same cluster -mosip.kernel.virus-scanner.host=clamav +## Virus scanner +# Here we specify the Kubernetes service name if clamav runs inside cluster +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=80 -#-------------------------------FS Adapter- HDFS ------------------------------- -mosip.kernel.fsadapter.hdfs.name-node-url=hdfs://hadoop-hdfs-nn:9000 -mosip.kernel.fsadapter.hdfs.authentication-enabled=false -# If HDFS is security is configured with Kerberos, Key Distribution Center domain -mosip.kernel.fsadapter.hdfs.kdc-domain=HDFSKERBEROS1.SOUTHINDIA.CLOUDAPP.AZURE.COM -# HDFS log level. Change this to debug to see hdfs logs -logging.level.org.apache.hadoop=warn -mosip.kernel.fsadapter.hdfs.keytab-file=classpath:mosip.keytab - - - -#------------------------Transliteration----------------------------------------------- +## Transliteration mosip.kernel.transliteration.arabic-language-code=ara mosip.kernel.transliteration.franch-language-code=fra - - -#-------Registration processor Notification types------------ -mosip.registration.processor.notification.types=EMAIL - - +## DOB mosip.default.dob.month=01 mosip.default.dob.day=01 mosip.login.mode= email,mobile - -#---Language orientation----- -mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng,fra - - -#**************** Notification Type ************* +## Notification +mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL mosip.kernel.sms.proxy-sms=true mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true -#******** Notification lanugage types - either PRIMARY or BOTH ******** +## Notification lanugage types: either PRIMARY or BOTH mosip.notification.language-type=BOTH - -#-------------------System--------------- +## System logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO -#-------------------Admin--------------- +## Admin mosip.min-digit-longitude-latitude=4 mosip.kernel.filtervalue.max_columns=20 - auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -#------------------PDF Genration----------------------------------------- +## PDF generation. TODO: this password must be passed as config server env variable mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -#------------------Quality Check----------------------------------------- -#Quality threshold for applicant iris + +## Quality check treshold mosip.iris_threshold=0 -#Quality threshold for applicant leftslap fingerprint mosip.leftslap_fingerprint_threshold=0 -#Quality threshold for applicant rightslap fingerprint mosip.rightslap_fingerprint_threshold=0 -#Quality threshold for applicant thumbs fingerprint mosip.thumbs_fingerprint_threshold=0 -#Quality threshold for applicant face mosip.facequalitythreshold=0 -#Bio SDK Integration + +## Bio SDK Integration mosip.fingerprint.provider=io.mosip.kernel.bioapi.impl.BioApiImpl mosip.face.provider=io.mosip.kernel.bioapi.impl.BioApiImpl mosip.iris.provider=io.mosip.kernel.bioapi.impl.BioApiImpl -#-------UIN Alias------------------- +## UIN alias mosip.uin.alias= -#---------------------------------kernel Salt Generator---------------------------------------------------# +## Kernel salt generator mosip.kernel.salt-generator.chunk-size=10 mosip.kernel.salt-generator.start-sequence=0 mosip.kernel.salt-generator.end-sequence=999 -#----------------------------------------------------------------------------------------------------------# + +## HTTP server.max-http-header-size=10000000 -mosip.kernel.auth.adapter.ssl-bypass=true -mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} -#---------------------------------prometheus : Metrics related configurations---------------------------------------------------# +## Prometheus management.endpoint.metrics.enabled=true management.endpoints.web.exposure.include=* management.endpoint.prometheus.enabled=true @@ -399,41 +292,39 @@ mosip.kernel.syncdata-service-idschema-url=${mosip.masterdata.base.url}/v1/maste mosip.kernel.syncdata-service-dynamicfield-url=${mosip.masterdata.base.url}/v1/masterdata/dynamicfields mosip.kernel.keymanager-service-validate-url=${mosip.keymanager.base.url}/v1/keymanager/validate -# ------------ GPS settings --------- - +## GPS mosip.registration.gps_device_enable_flag=n - -# ------------- Packet manager ---------------------- -# if source is not passed, packetmanager supports below default strategy - -# 1. 'exception' : it will throw exception. -# 2. 'defaultPriority' : use default priority packetmanager.default.priority. +## Packet manager +## if source is not passed, packetmanager supports below default strategy - +## 1. 'exception' : it will throw exception. +## 2. 'defaultPriority' : use default priority packetmanager.default.priority. packetmanager.default.read.strategy=defaultPriority packetmanager.default.priority=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT - +packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} mosip.commons.packetnames=id,evidence,optional -# reader provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl provider.packetreader.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketReaderImpl -# writer provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|CORRECTION,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter -# can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl +## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl objectstore.crypto.name=OnlinePacketCryptoServiceImpl default.provider.version=v1.0 -# posix adapter config +## posix adapter config object.store.base.location=/home/mosip hazelcast.config=classpath:hazelcast-default.xml -#-------------S3adapter------------------- -# s3 adapter config + + +## S3 object store adapter. TODO: ciphers here must be passed as config-server env variables. object.store.s3.accesskey=admin object.store.s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 -object.store.s3.url=http://minio:9000 +## Below url assumes minio is running in the cluster itself. +object.store.s3.url=http://minio.minio:9000 object.store.s3.region= object.store.s3.readlimit=10000000 -# swift adapter config +## Swift object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 @@ -447,19 +338,16 @@ AUDIT_URL=http://auditmanager.kernel/v1/auditmanager/audits packet.default.source=id schema.default.fieldCategory=pvt,none -# device registration/deregistration config +## Device registration/deregistration config mosip.stage.environment=Developer -# log level +## Log level logging.level.root=WARN -logging.level.io.mosip=INFO logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO -#iam adapter -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter - -# tomcat access logs +## Tomcat access logs server.tomcat.accesslog.enabled=true server.tomcat.accesslog.directory=/dev server.tomcat.accesslog.prefix=stdout @@ -473,5 +361,3 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.base.url=http://websub.websub websub.hub.url=${websub.base.url}/websub/hub websub.publish.url=${websub.base.url}/websub/publish - -packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} From f87f910e9165bff0db1450b63e6fca7377390cdd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 24 May 2021 13:33:41 +0530 Subject: [PATCH 0060/1358] [MOSIP-14376] Regproc properties updated. --- registration-processor-default.properties | 116 ++++++++++++---------- 1 file changed, 65 insertions(+), 51 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 781efc20d82..e002b1db4f8 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -1,11 +1,17 @@ -dmz.ingress.base.url=http://dmz.ingress:30080 + +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# mosip.mosip.regproc.client.secret +# mosip.api.internal.url +# keycloak.host ## Health check management.endpoint.health.show-details=always management.endpoints.web.exposure.include=info,health,refresh ## ABIS - # Maximum abis records to be fetched at a time registration.processor.abis.maxResults=30 # Dummy Tag for face in cbeff file @@ -16,12 +22,15 @@ activemq.message.format=text registration.processor.bio.dedupe.reprocess.buffer.time=900 ## Database -mosip.registration.processor.database.hostname=postgres -mosip.registration.processor.database.port=80 +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.registration.processor.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.registration.processor.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc javax.persistence.jdbc.user=regprcuser -javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +javax.persistence.jdbc.password=${db.dbuser.password} ## Hibernate hibernate.hbm2ddl.auto=none @@ -41,7 +50,8 @@ schema.default.fieldCategory=pvt,none # The IDSchemaVersion used to create packets in reg-proc IDSchema.Version=0.1 # Url from where packets need to be picked up DMZ (landing zone) -NGINXURL=${dmz.ingress.base.url}/registrationprocessor/v1/dmzpacketserver +## TODO: correct this +NGINXURL=${dmz.ingress.base.url}/registrationprocessor/v1/packetserver packet.info.storage.service=* ## Camel bridge @@ -55,29 +65,31 @@ camel.secure.active.flows.file.names=registration-processor-camel-routes-new-def ## Token generation token.request.id=io.mosip.registration.processor token.request.appid=regproc +## TODO: unused, remove token.request.username=registrationprocessor -token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGVnY3M1DIeKGFAeBNfi6jH5qgj1KCUmFONLwSmfcrPx9m6MYXXQMYwyAeq13Msy1fcG1AtZQASKeLbuMCaRwinwdt7C/WYzvVVv47NojD+VmHHVTY3qBXJ4dwZ0/BqmUBPXyYrJPKTcdouxT76bgm5+fXXNcT7lciXgD1aCnWKziL5nDa6Y9dhc+ZPyM0d+I0JfS+emsByt7tWgcZukQkOEx8JWfcCR4eVpERYVa/ps/EAuQRXmxIvnr54GSCc/KKpwnYnjLtKIx/75I6pezBdKU/BBJG1syjQp9VQC9adSI5fdsn3ijkxJjC9TSIFJKDlTHqNCnJaxQXcSBWL4Y= +## TODO: unused, remove +token.request.password= token.request.version=1.0 token.request.clientId=mosip-regproc-client -token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +token.request.secretKey=mosip.mosip.regproc.client.secret # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip - +token.request.issuerUrl=${keycloak.host}/auth/realms/mosip ## Audit Service -AUDIT=http://kernel-auditmanager-service/v1/auditmanager/audits +AUDIT=http://auditmanager.kernel/v1/auditmanager/audits ## Auth Service -authmanager.base.url=http://kernel-auth-service +authmanager.base.url=http://authmanager.kernel PASSWORDBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/useridPwd KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateToken GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid -INTERNALAUTH=http://ida-internal-service/idauthentication/v1/internal/auth +IDAINTERNAL=http://ida-internal.ida +INTERNALAUTH=${IDAINTERNAL}/idauthentication/v1/internal/auth ## Master Data Services -MASTER=http://kernel-masterdata-service/v1/masterdata +MASTER=http://masterdata.kernel/v1/masterdata MACHINEHISTORY=${MASTER}/machineshistories CENTERHISTORY=${MASTER}/registrationcentershistory CENTERUSERMACHINEHISTORY=${MASTER}/getregistrationmachineusermappinghistory @@ -94,50 +106,54 @@ POSTALCODE=${MASTER}/locations/validate PROVINCE=${MASTER}/locations/validate USERDETAILS=${MASTER}/users TEMPLATES=${MASTER}/templates -DEVICEVALIDATEHISTORY=http://pms-partner-manager-service/v1/partnermanager/deviceprovidermanagement/validate +DEVICEVALIDATEHISTORY=http://partnermanager.pms/v1/partnermanager/deviceprovidermanagement/validate #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest ## ID Repository Services -IDREPOSITORY=http://idrepo-identity-service/idrepository/v1/identity/ -IDREPOGETIDBYUIN=http://idrepo-identity-service/idrepository/v1/identity/idvid -UINGENERATOR=http://kernel-idgenerator-service/v1/idgenerator/uin -RETRIEVEIDENTITYFROMRID=http://idrepo-identity-service/idrepository/v1/identity/idvid -RETRIEVEIDENTITY=http://idrepo-identity-service/idrepository/v1/identity/idvid -CREATEVID=http://idrepo-vid-service/idrepository/v1/vid -GETUINBYVID=http://idrepo-vid-service/idrepository/v1/idvid -CREDENTIALREQUEST=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator -GETVIDSBYUIN=http://idrepo-vid-service/idrepository/v1/vid/uin + +IDREPOIDENTITY=http://idrepo-identity.idrepo/idrepository/v1/identity/ +IDREPOGETIDBYUIN=${IDREPOIDENTITY}/idvid +UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin +RETRIEVEIDENTITYFROMRID=${IDREPOIDENTITY}/idvid +RETRIEVEIDENTITY=${IDREPOIDENTITY}/idvid +IDREPOVID=http://idrepo-vid.idrepo +CREATEVID=${IDREPOVID}/idrepository/v1/vid +GETUINBYVID=${IDREPOVID}/idrepository/v1/idvid +CREDENTIALREQUEST=http://idrepo-credrequest.idrepo/v1/credentialrequest/requestgenerator +GETVIDSBYUIN=${IDREPOVID}/idrepository/v1/vid/uin ## Encrypt Services -ENCRYPTURL=http://kernel-keymanager-service/v1/keymanager/encrypt -ENCRYPTIONSERVICE=http://kernel-keymanager-service/v1/keymanager/publickey -PDFSIGN=http://kernel-keymanager-service/v1/keymanager/pdf/sign +KEYMANAGER=http://keymanager.keymanager/ +ENCRYPTURL=${KEYMANAGER}/v1/keymanager/encrypt +ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey +PDFSIGN=${KEYMANAGER}/v1/keymanager/pdf/sign ## Digital Signature Service -DIGITALSIGNATURE=http://kernel-keymanager-service/v1/keymanager/sign +DIGITALSIGNATURE=${KEYMANAGER}/v1/keymanager/sign mosip.registration.processor.digital.signature.id=io.mosip.registration.processor ## Crypto -CRYPTOMANAGERDECRYPT=http://kernel-keymanager-service/v1/keymanager/decrypt +CRYPTOMANAGERDECRYPT=${KEYMANAGER}/v1/keymanager/decrypt crypto.PrependThumbprint.enable=true ## External Service -EISERVICE=http://regproc-external-integration-service/registrationprocessor/v1/eis/registration-processor/external-integration-service/v1.0 +EISERVICE=http://regproc-external.regproc/registrationprocessor/v1/eis/registration-processor/external-integration-service/v1.0 ## RID Generation Service -RIDGENERATION=http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid +RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid ## Registration Processor Status Services -SYNCSERVICE=http://regproc-registration-status-service/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=http://regproc-packet-receiver-stage/registrationprocessor/v1/packetreceiver/registrationpackets +SYNCSERVICE=http://regproc-regstatus.regproc/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=http://regproc-packetreceiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets ## SMS and EMAIL notification services -SMSNOTIFIER=http://kernel-notification-service/v1/notifier/sms/send -EMAILNOTIFIER=http://kernel-notification-service/v1/notifier/email/send +NOTIFIER=http://notifier.kernel +SMSNOTIFIER=${NOTIFIER}/v1/notifier/sms/send +EMAILNOTIFIER=${NOTIFIER}/v1/notifier/email/send ## PMS -PMS=http://pms-policy-manager-service/v1/policymanager/policies +PMS=http://pms-policy.pms/v1/policymanager/policies ## Registration status properties registration.processor.max.retry=10 @@ -224,7 +240,7 @@ registration.processor.updated.subject=UIN Details Updated ## Queue registration.processor.queue.username=admin registration.processor.queue.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 -registration.processor.queue.url=tcp://activemq:80 +registration.processor.queue.url=tcp://${mosip.api.internal.url}:61616 registration.processor.queue.typeOfQueue=ACTIVEMQ registration.processor.queue.address = print-service registration.processor.queue.printpostaladdress = postal-service @@ -308,15 +324,14 @@ registration.processor.signature.isEnabled=true registration.processor.infant.dedupe=N # ID Authentication -IDAUTHENCRYPTION=http://ida-internal-service/idauthentication/v1/internal/encrypt -IDAUTHPUBLICKEY=http://ida-internal-service/idauthentication/v1/internal/publickey -IDAUTHCERTIFICATE=http://ida-internal-service/idauthentication/v1/internal/getCertificate -ida-internal-auth-uri=http://ida-internal-service/idauthentication/v1/internal/auth -ida-internal-get-certificate-uri=http://ida-internal-service/idauthentication/v1/internal/getCertificate - +IDAUTHENCRYPTION=${IDAINTERNAL}/idauthentication/v1/internal/encrypt +IDAUTHPUBLICKEY=${IDAINTERNAL}/idauthentication/v1/internal/publickey +IDAUTHCERTIFICATE=${IDAINTERNAL}/idauthentication/v1/internal/getCertificate +ida-internal-auth-uri=${IDAINTERNAL}/idauthentication/v1/internal/auth +ida-internal-get-certificate-uri=${IDAINTERNAL}/idauthentication/v1/internal/getCertificate registration.processor.objectstore.adapter.name=S3Adapter -packetmanager.base.url=http://packetmanager-service/commons +packetmanager.base.url=http://packetmanager.packetmanager/commons PACKETMANAGER_SEARCH_FIELD=${packetmanager.base.url}/v1/packetmanager/searchField PACKETMANAGER_SEARCH_FIELDS=${packetmanager.base.url}/v1/packetmanager/searchFields PACKETMANAGER_SEARCH_METAINFO=${packetmanager.base.url}/v1/packetmanager/metaInfo @@ -327,12 +342,12 @@ PACKETMANAGER_SEARCH_AUDITS=${packetmanager.base.url}/v1/packetmanager/audits PACKETMANAGER_INFO=${packetmanager.base.url}/v1/packetmanager/info PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdateTag PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag -DATASHARECREATEURL=http://datashare-service/v1/datashare/create -DATASHAREGETEURL=http://datashare-service/v1/datashare/get +DATASHARE=http://datashare.datashare +DATASHARECREATEURL=${DATASHARE}/v1/datashare/create +DATASHAREGETEURL=${DATASHARE}/v1/datashare/get registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis - #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter @@ -341,19 +356,19 @@ mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1 mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -#--------------Print stage---------------- +## Pring mosip.registration.processor.credentialtype=euin mosip.registration.processor.encrypt=false mosip.registration.processor.issuer=mpartner-default-print mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator -#----------------------------------Event Bus------------------------------------------ +## Event bus #Supported eventbus types: vertx, kafka. Defaults to vertx if the config is not given mosip.regproc.eventbus.type=kafka #Kafka event bus config, will be used only when the type is kafka #Kafka cluster servers comma separated, common for all stages and camel -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default.svc.cluster.local:9092,kafka-1.kafka-headless.default.svc.cluster.local:9092,kafka-2.kafka-headless.default.svc.cluster.local:9092 +mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka.svc.cluster.local:9092,kafka-1.kafka-headless.kafka.svc.cluster.local:9092,kafka-2.kafka-headless.kafka.svc.cluster.local:9092 #securezone-notification-stage #Supported commmit config: auto, batch, single @@ -522,7 +537,6 @@ packetmanager.provider.uingenerator.proofOfIdentity=source:CNIE\/process:CORRECT packetmanager.provider.uingenerator.proofOfRelationship=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.provider.uingenerator.proofOfException=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT - #### Stage Specific properties #### # packet-classifier-stage From 6b6c1b9e1ef8a1812315f4f063e5e39e2b4f20cf Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 24 May 2021 16:22:19 +0530 Subject: [PATCH 0061/1358] [MOSIP-14376] Camel routes corrected. --- ...ion-processor-camel-routes-new-default.xml | 20 +++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index c753d3aba88..e8e92455f6e 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -1,4 +1,24 @@ <routes xmlns="http://camel.apache.org/schema/spring"> + <!-- packet-receiver to securezone notifiation --> + <route id="packet-receiver->securezone-notification new route"> + <from uri="eventbus:packet-receiver-new-bus-out" /> + <log + message="packet-receiver-->securezone-notification new route ${bodyAs(String)}" /> + <choice> + <when> + <simple>${bodyAs(String)} contains '"isValid":true'</simple> + <to uri="eventbus:securezone-notification-bus-in" /> + </when> + <when> + <simple>${bodyAs(String)} contains '"internalError":true'</simple> + <to uri="eventbus:retry-bus-in" /> + </when> + <otherwise> + <to uri="eventbus:error-bus-in" /> + </otherwise> + </choice> + </route> + <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader new route"> <from uri="eventbus:securezone-notification-new-bus-out" /> From 391249c9556396cc61cd5e13c53df4afd8c31bb5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 24 May 2021 20:00:03 +0530 Subject: [PATCH 0062/1358] Updated --- hazelcast_cache.xml | 262 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 262 insertions(+) create mode 100644 hazelcast_cache.xml diff --git a/hazelcast_cache.xml b/hazelcast_cache.xml new file mode 100644 index 00000000000..3009e119cb0 --- /dev/null +++ b/hazelcast_cache.xml @@ -0,0 +1,262 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- + ~ Copyright (c) 2008-2020, Hazelcast, Inc. All Rights Reserved. + ~ + ~ Licensed under the Apache License, Version 2.0 (the "License"); + ~ you may not use this file except in compliance with the License. + ~ You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License. + --> + +<!-- + The default Hazelcast configuration. + + This XML file is used when no hazelcast.xml is present. + + To learn how to configure Hazelcast, please see the schema at + https://hazelcast.com/schema/config/hazelcast-config-4.0.xsd + or the Reference Manual at https://hazelcast.org/documentation/ +--> + +<!--suppress XmlDefaultAttributeValue --> +<hazelcast xmlns="http://www.hazelcast.com/schema/config" + xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" + xsi:schemaLocation="http://www.hazelcast.com/schema/config + http://www.hazelcast.com/schema/config/hazelcast-config-4.0.xsd"> + + <cluster-name>dev</cluster-name> + + <network> + <join> + <multicast enabled="false"/> + <tcp-ip enabled="false" /> + <discovery-strategies> + <discovery-strategy enabled="true" + class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> + <properties> + <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> + </properties> + </discovery-strategy> + </discovery-strategies> + </join> + </network> + + <partition-group enabled="false"/> + <executor-service name="default"> + <pool-size>16</pool-size> + <!--Queue capacity. 0 means Integer.MAX_VALUE.--> + <queue-capacity>0</queue-capacity> + </executor-service> + <security> + <client-block-unmapped-actions>true</client-block-unmapped-actions> + </security> + <queue name="default"> + <!-- + Maximum size of the queue. When a JVM's local queue size reaches the maximum, + all put/offer operations will get blocked until the queue size + of the JVM goes down below the maximum. + Any integer between 0 and Integer.MAX_VALUE. 0 means + Integer.MAX_VALUE. Default is 0. + --> + <max-size>0</max-size> + <!-- + Number of backups. If 1 is set as the backup-count for example, + then all entries of the map will be copied to another JVM for + fail-safety. 0 means no backup. + --> + <backup-count>1</backup-count> + + <!-- + Number of async backups. 0 means no backup. + --> + <async-backup-count>0</async-backup-count> + + <empty-queue-ttl>-1</empty-queue-ttl> + + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </queue> + <map name="default"> + <!-- + Data type that will be used for storing recordMap. + Possible values: + BINARY (default): keys and values will be stored as binary data + OBJECT : values will be stored in their object forms + NATIVE : values will be stored in non-heap region of JVM + --> + <in-memory-format>OBJECT</in-memory-format> + + <!-- + Metadata creation policy for this map. Hazelcast may process objects of supported types ahead of time to + create additional metadata about them. This metadata then is used to make querying and indexing faster. + Metadata creation may decrease put throughput. + Valid values are: + CREATE_ON_UPDATE (default): Objects of supported types are pre-processed when they are created and updated. + OFF: No metadata is created. + --> + <metadata-policy>CREATE_ON_UPDATE</metadata-policy> + + <!-- + Number of backups. If 1 is set as the backup-count for example, + then all entries of the map will be copied to another JVM for + fail-safety. 0 means no backup. + --> + <backup-count>1</backup-count> + <!-- + Number of async backups. 0 means no backup. + --> + <async-backup-count>0</async-backup-count> + <!-- + Maximum number of seconds for each entry to stay in the map. Entries that are + older than <time-to-live-seconds> and not updated for <time-to-live-seconds> + will get automatically evicted from the map. + Any integer between 0 and Integer.MAX_VALUE. 0 means infinite. Default is 0 + --> + <time-to-live-seconds>30</time-to-live-seconds> + <!-- + Maximum number of seconds for each entry to stay idle in the map. Entries that are + idle(not touched) for more than <max-idle-seconds> will get + automatically evicted from the map. Entry is touched if get, put or containsKey is called. + Any integer between 0 and Integer.MAX_VALUE. 0 means infinite. Default is 0. + --> + <max-idle-seconds>60</max-idle-seconds> + + <eviction eviction-policy="LRU" max-size-policy="PER_NODE" size="0"/> + <!-- + While recovering from split-brain (network partitioning), + map entries in the small cluster will merge into the bigger cluster + based on the policy set here. When an entry merge into the + cluster, there might an existing entry with the same key already. + Values of these entries might be different for that same key. + Which value should be set for the key? Conflict is resolved by + the policy set here. Default policy is PutIfAbsentMapMergePolicy + + There are built-in merge policies such as + com.hazelcast.spi.merge.PassThroughMergePolicy; entry will be overwritten if merging entry exists for the key. + com.hazelcast.spi.merge.PutIfAbsentMergePolicy ; entry will be added if the merging entry doesn't exist in the cluster. + com.hazelcast.spi.merge.HigherHitsMergePolicy ; entry with the higher hits wins. + com.hazelcast.spi.merge.LatestUpdateMergePolicy ; entry with the latest update wins. + --> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + + <!-- + Control caching of de-serialized values. Caching makes query evaluation faster, but it cost memory. + Possible Values: + NEVER: Never cache deserialized object + INDEX-ONLY: Caches values only when they are inserted into an index. + ALWAYS: Always cache deserialized values. + --> + <cache-deserialized-values>ALWAYS</cache-deserialized-values> + + </map> + + <multimap name="default"> + <backup-count>1</backup-count> + <value-collection-type>SET</value-collection-type> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </multimap> + + <replicatedmap name="default"> + <in-memory-format>OBJECT</in-memory-format> + <async-fillup>true</async-fillup> + <statistics-enabled>true</statistics-enabled> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </replicatedmap> + + <list name="default"> + <backup-count>1</backup-count> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </list> + + <set name="default"> + <backup-count>1</backup-count> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </set> + + <reliable-topic name="default"> + <read-batch-size>10</read-batch-size> + <topic-overload-policy>BLOCK</topic-overload-policy> + <statistics-enabled>true</statistics-enabled> + </reliable-topic> + + <ringbuffer name="default"> + <capacity>10000</capacity> + <backup-count>1</backup-count> + <async-backup-count>0</async-backup-count> + <time-to-live-seconds>0</time-to-live-seconds> + <in-memory-format>BINARY</in-memory-format> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </ringbuffer> + + <flake-id-generator name="default"> + <prefetch-count>100</prefetch-count> + <prefetch-validity-millis>600000</prefetch-validity-millis> + <epoch-start>1514764800000</epoch-start> + <node-id-offset>0</node-id-offset> + <bits-sequence>6</bits-sequence> + <bits-node-id>16</bits-node-id> + <allowed-future-millis>15000</allowed-future-millis> + <statistics-enabled>true</statistics-enabled> + </flake-id-generator> + + <serialization> + <portable-version>0</portable-version> + </serialization> + + <lite-member enabled="false"/> + + <cardinality-estimator name="default"> + <backup-count>1</backup-count> + <async-backup-count>0</async-backup-count> + <merge-policy batch-size="100">HyperLogLogMergePolicy</merge-policy> + </cardinality-estimator> + + <scheduled-executor-service name="default"> + <capacity>100</capacity> + <durability>1</durability> + <pool-size>16</pool-size> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </scheduled-executor-service> + + <crdt-replication> + <replication-period-millis>1000</replication-period-millis> + <max-concurrent-replication-targets>1</max-concurrent-replication-targets> + </crdt-replication> + + <pn-counter name="default"> + <replica-count>2147483647</replica-count> + <statistics-enabled>true</statistics-enabled> + </pn-counter> + + <cp-subsystem> + <cp-member-count>0</cp-member-count> + <group-size>0</group-size> + <session-time-to-live-seconds>30</session-time-to-live-seconds> + <session-heartbeat-interval-seconds>5</session-heartbeat-interval-seconds> + <missing-cp-member-auto-removal-seconds>14400</missing-cp-member-auto-removal-seconds> + <fail-on-indeterminate-operation-state>false</fail-on-indeterminate-operation-state> + <raft-algorithm> + <leader-election-timeout-in-millis>2000</leader-election-timeout-in-millis> + <leader-heartbeat-period-in-millis>5000</leader-heartbeat-period-in-millis> + <max-missed-leader-heartbeat-count>5</max-missed-leader-heartbeat-count> + <append-request-max-entry-count>100</append-request-max-entry-count> + <commit-index-advance-count-to-snapshot>10000</commit-index-advance-count-to-snapshot> + <uncommitted-entry-count-to-reject-new-appends>100</uncommitted-entry-count-to-reject-new-appends> + <append-request-backoff-timeout-in-millis>100</append-request-backoff-timeout-in-millis> + </raft-algorithm> + </cp-subsystem> + + <metrics enabled="true"> + <management-center enabled="true"> + <retention-seconds>5</retention-seconds> + </management-center> + <jmx enabled="true"/> + <collection-frequency-seconds>5</collection-frequency-seconds> + </metrics> +</hazelcast> From 819a0e2a02863608bafc3ce4beb05c4f97edbcd9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 25 May 2021 06:27:09 +0530 Subject: [PATCH 0063/1358] Hazelcast updated. --- hazelcast_cache-default.xml | 262 ------------------------------------ hazelcast_cache.xml | 229 ++++++++++++++++++++++--------- 2 files changed, 169 insertions(+), 322 deletions(-) delete mode 100644 hazelcast_cache-default.xml diff --git a/hazelcast_cache-default.xml b/hazelcast_cache-default.xml deleted file mode 100644 index 3009e119cb0..00000000000 --- a/hazelcast_cache-default.xml +++ /dev/null @@ -1,262 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!-- - ~ Copyright (c) 2008-2020, Hazelcast, Inc. All Rights Reserved. - ~ - ~ Licensed under the Apache License, Version 2.0 (the "License"); - ~ you may not use this file except in compliance with the License. - ~ You may obtain a copy of the License at - ~ - ~ http://www.apache.org/licenses/LICENSE-2.0 - ~ - ~ Unless required by applicable law or agreed to in writing, software - ~ distributed under the License is distributed on an "AS IS" BASIS, - ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - ~ See the License for the specific language governing permissions and - ~ limitations under the License. - --> - -<!-- - The default Hazelcast configuration. - - This XML file is used when no hazelcast.xml is present. - - To learn how to configure Hazelcast, please see the schema at - https://hazelcast.com/schema/config/hazelcast-config-4.0.xsd - or the Reference Manual at https://hazelcast.org/documentation/ ---> - -<!--suppress XmlDefaultAttributeValue --> -<hazelcast xmlns="http://www.hazelcast.com/schema/config" - xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" - xsi:schemaLocation="http://www.hazelcast.com/schema/config - http://www.hazelcast.com/schema/config/hazelcast-config-4.0.xsd"> - - <cluster-name>dev</cluster-name> - - <network> - <join> - <multicast enabled="false"/> - <tcp-ip enabled="false" /> - <discovery-strategies> - <discovery-strategy enabled="true" - class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> - <properties> - <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> - </properties> - </discovery-strategy> - </discovery-strategies> - </join> - </network> - - <partition-group enabled="false"/> - <executor-service name="default"> - <pool-size>16</pool-size> - <!--Queue capacity. 0 means Integer.MAX_VALUE.--> - <queue-capacity>0</queue-capacity> - </executor-service> - <security> - <client-block-unmapped-actions>true</client-block-unmapped-actions> - </security> - <queue name="default"> - <!-- - Maximum size of the queue. When a JVM's local queue size reaches the maximum, - all put/offer operations will get blocked until the queue size - of the JVM goes down below the maximum. - Any integer between 0 and Integer.MAX_VALUE. 0 means - Integer.MAX_VALUE. Default is 0. - --> - <max-size>0</max-size> - <!-- - Number of backups. If 1 is set as the backup-count for example, - then all entries of the map will be copied to another JVM for - fail-safety. 0 means no backup. - --> - <backup-count>1</backup-count> - - <!-- - Number of async backups. 0 means no backup. - --> - <async-backup-count>0</async-backup-count> - - <empty-queue-ttl>-1</empty-queue-ttl> - - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </queue> - <map name="default"> - <!-- - Data type that will be used for storing recordMap. - Possible values: - BINARY (default): keys and values will be stored as binary data - OBJECT : values will be stored in their object forms - NATIVE : values will be stored in non-heap region of JVM - --> - <in-memory-format>OBJECT</in-memory-format> - - <!-- - Metadata creation policy for this map. Hazelcast may process objects of supported types ahead of time to - create additional metadata about them. This metadata then is used to make querying and indexing faster. - Metadata creation may decrease put throughput. - Valid values are: - CREATE_ON_UPDATE (default): Objects of supported types are pre-processed when they are created and updated. - OFF: No metadata is created. - --> - <metadata-policy>CREATE_ON_UPDATE</metadata-policy> - - <!-- - Number of backups. If 1 is set as the backup-count for example, - then all entries of the map will be copied to another JVM for - fail-safety. 0 means no backup. - --> - <backup-count>1</backup-count> - <!-- - Number of async backups. 0 means no backup. - --> - <async-backup-count>0</async-backup-count> - <!-- - Maximum number of seconds for each entry to stay in the map. Entries that are - older than <time-to-live-seconds> and not updated for <time-to-live-seconds> - will get automatically evicted from the map. - Any integer between 0 and Integer.MAX_VALUE. 0 means infinite. Default is 0 - --> - <time-to-live-seconds>30</time-to-live-seconds> - <!-- - Maximum number of seconds for each entry to stay idle in the map. Entries that are - idle(not touched) for more than <max-idle-seconds> will get - automatically evicted from the map. Entry is touched if get, put or containsKey is called. - Any integer between 0 and Integer.MAX_VALUE. 0 means infinite. Default is 0. - --> - <max-idle-seconds>60</max-idle-seconds> - - <eviction eviction-policy="LRU" max-size-policy="PER_NODE" size="0"/> - <!-- - While recovering from split-brain (network partitioning), - map entries in the small cluster will merge into the bigger cluster - based on the policy set here. When an entry merge into the - cluster, there might an existing entry with the same key already. - Values of these entries might be different for that same key. - Which value should be set for the key? Conflict is resolved by - the policy set here. Default policy is PutIfAbsentMapMergePolicy - - There are built-in merge policies such as - com.hazelcast.spi.merge.PassThroughMergePolicy; entry will be overwritten if merging entry exists for the key. - com.hazelcast.spi.merge.PutIfAbsentMergePolicy ; entry will be added if the merging entry doesn't exist in the cluster. - com.hazelcast.spi.merge.HigherHitsMergePolicy ; entry with the higher hits wins. - com.hazelcast.spi.merge.LatestUpdateMergePolicy ; entry with the latest update wins. - --> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - - <!-- - Control caching of de-serialized values. Caching makes query evaluation faster, but it cost memory. - Possible Values: - NEVER: Never cache deserialized object - INDEX-ONLY: Caches values only when they are inserted into an index. - ALWAYS: Always cache deserialized values. - --> - <cache-deserialized-values>ALWAYS</cache-deserialized-values> - - </map> - - <multimap name="default"> - <backup-count>1</backup-count> - <value-collection-type>SET</value-collection-type> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </multimap> - - <replicatedmap name="default"> - <in-memory-format>OBJECT</in-memory-format> - <async-fillup>true</async-fillup> - <statistics-enabled>true</statistics-enabled> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </replicatedmap> - - <list name="default"> - <backup-count>1</backup-count> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </list> - - <set name="default"> - <backup-count>1</backup-count> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </set> - - <reliable-topic name="default"> - <read-batch-size>10</read-batch-size> - <topic-overload-policy>BLOCK</topic-overload-policy> - <statistics-enabled>true</statistics-enabled> - </reliable-topic> - - <ringbuffer name="default"> - <capacity>10000</capacity> - <backup-count>1</backup-count> - <async-backup-count>0</async-backup-count> - <time-to-live-seconds>0</time-to-live-seconds> - <in-memory-format>BINARY</in-memory-format> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </ringbuffer> - - <flake-id-generator name="default"> - <prefetch-count>100</prefetch-count> - <prefetch-validity-millis>600000</prefetch-validity-millis> - <epoch-start>1514764800000</epoch-start> - <node-id-offset>0</node-id-offset> - <bits-sequence>6</bits-sequence> - <bits-node-id>16</bits-node-id> - <allowed-future-millis>15000</allowed-future-millis> - <statistics-enabled>true</statistics-enabled> - </flake-id-generator> - - <serialization> - <portable-version>0</portable-version> - </serialization> - - <lite-member enabled="false"/> - - <cardinality-estimator name="default"> - <backup-count>1</backup-count> - <async-backup-count>0</async-backup-count> - <merge-policy batch-size="100">HyperLogLogMergePolicy</merge-policy> - </cardinality-estimator> - - <scheduled-executor-service name="default"> - <capacity>100</capacity> - <durability>1</durability> - <pool-size>16</pool-size> - <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> - </scheduled-executor-service> - - <crdt-replication> - <replication-period-millis>1000</replication-period-millis> - <max-concurrent-replication-targets>1</max-concurrent-replication-targets> - </crdt-replication> - - <pn-counter name="default"> - <replica-count>2147483647</replica-count> - <statistics-enabled>true</statistics-enabled> - </pn-counter> - - <cp-subsystem> - <cp-member-count>0</cp-member-count> - <group-size>0</group-size> - <session-time-to-live-seconds>30</session-time-to-live-seconds> - <session-heartbeat-interval-seconds>5</session-heartbeat-interval-seconds> - <missing-cp-member-auto-removal-seconds>14400</missing-cp-member-auto-removal-seconds> - <fail-on-indeterminate-operation-state>false</fail-on-indeterminate-operation-state> - <raft-algorithm> - <leader-election-timeout-in-millis>2000</leader-election-timeout-in-millis> - <leader-heartbeat-period-in-millis>5000</leader-heartbeat-period-in-millis> - <max-missed-leader-heartbeat-count>5</max-missed-leader-heartbeat-count> - <append-request-max-entry-count>100</append-request-max-entry-count> - <commit-index-advance-count-to-snapshot>10000</commit-index-advance-count-to-snapshot> - <uncommitted-entry-count-to-reject-new-appends>100</uncommitted-entry-count-to-reject-new-appends> - <append-request-backoff-timeout-in-millis>100</append-request-backoff-timeout-in-millis> - </raft-algorithm> - </cp-subsystem> - - <metrics enabled="true"> - <management-center enabled="true"> - <retention-seconds>5</retention-seconds> - </management-center> - <jmx enabled="true"/> - <collection-frequency-seconds>5</collection-frequency-seconds> - </metrics> -</hazelcast> diff --git a/hazelcast_cache.xml b/hazelcast_cache.xml index 3009e119cb0..b9d53358e65 100644 --- a/hazelcast_cache.xml +++ b/hazelcast_cache.xml @@ -1,53 +1,92 @@ <?xml version="1.0" encoding="UTF-8"?> -<!-- - ~ Copyright (c) 2008-2020, Hazelcast, Inc. All Rights Reserved. - ~ - ~ Licensed under the Apache License, Version 2.0 (the "License"); - ~ you may not use this file except in compliance with the License. - ~ You may obtain a copy of the License at - ~ - ~ http://www.apache.org/licenses/LICENSE-2.0 - ~ - ~ Unless required by applicable law or agreed to in writing, software - ~ distributed under the License is distributed on an "AS IS" BASIS, - ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - ~ See the License for the specific language governing permissions and - ~ limitations under the License. - --> - -<!-- - The default Hazelcast configuration. - - This XML file is used when no hazelcast.xml is present. - - To learn how to configure Hazelcast, please see the schema at - https://hazelcast.com/schema/config/hazelcast-config-4.0.xsd - or the Reference Manual at https://hazelcast.org/documentation/ ---> - -<!--suppress XmlDefaultAttributeValue --> <hazelcast xmlns="http://www.hazelcast.com/schema/config" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.hazelcast.com/schema/config - http://www.hazelcast.com/schema/config/hazelcast-config-4.0.xsd"> + http://www.hazelcast.com/schema/config/hazelcast-config-3.12.xsd"> - <cluster-name>dev</cluster-name> + <group> + <name>dev</name> + </group> <network> + <port auto-increment="true" port-count="100">5701</port> + <outbound-ports> + <!-- + Allowed port range when connecting to other nodes. + 0 or * means use system provided port. + --> + <ports>0</ports> + </outbound-ports> <join> - <multicast enabled="false"/> - <tcp-ip enabled="false" /> + <multicast enabled="false"> + <multicast-group>224.2.2.3</multicast-group> + <multicast-port>54327</multicast-port> + </multicast> + <tcp-ip enabled="false"> + <interface>127.0.0.1</interface> + <member-list> + <member>127.0.0.1</member> + </member-list> + </tcp-ip> + <aws enabled="false"> + <access-key>my-access-key</access-key> + <secret-key>my-secret-key</secret-key> + <!--optional, default is us-east-1 --> + <region>us-west-1</region> + <!--optional, default is ec2.amazonaws.com. If set, region shouldn't be set as it will override this property --> + <host-header>ec2.amazonaws.com</host-header> + <!-- optional, only instances belonging to this group will be discovered, default will try all running instances --> + <security-group-name>hazelcast-sg</security-group-name> + <tag-key>type</tag-key> + <tag-value>hz-nodes</tag-value> + </aws> + <gcp enabled="false"> + <zones>us-east1-b,us-east1-c</zones> + </gcp> + <azure enabled="false"> + <client-id>CLIENT_ID</client-id> + <client-secret>CLIENT_SECRET</client-secret> + <tenant-id>TENANT_ID</tenant-id> + <subscription-id>SUB_ID</subscription-id> + <cluster-id>HZLCAST001</cluster-id> + <group-name>GROUP-NAME</group-name> + </azure> + <kubernetes enabled="true"> + <namespace>packetmanager</namespace> + </kubernetes> + <eureka enabled="false"> + <self-registration>true</self-registration> + <namespace>hazelcast</namespace> + </eureka> <discovery-strategies> - <discovery-strategy enabled="true" - class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> - <properties> - <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> - </properties> - </discovery-strategy> </discovery-strategies> </join> + <interfaces enabled="false"> + <interface>10.10.1.*</interface> + </interfaces> + <ssl enabled="false"/> + <socket-interceptor enabled="false"/> + <symmetric-encryption enabled="false"> + <!-- + encryption algorithm such as + DES/ECB/PKCS5Padding, + PBEWithMD5AndDES, + AES/CBC/PKCS5Padding, + Blowfish, + DESede + --> + <algorithm>PBEWithMD5AndDES</algorithm> + <!-- salt value to use when generating the secret key --> + <salt>thesalt</salt> + <!-- pass phrase to use when generating the secret key --> + <password>thepass</password> + <!-- iteration count to use when generating the secret key --> + <iteration-count>19</iteration-count> + </symmetric-encryption> + <failure-detector> + <icmp enabled="false"/> + </failure-detector> </network> - <partition-group enabled="false"/> <executor-service name="default"> <pool-size>16</pool-size> @@ -118,16 +157,41 @@ will get automatically evicted from the map. Any integer between 0 and Integer.MAX_VALUE. 0 means infinite. Default is 0 --> - <time-to-live-seconds>30</time-to-live-seconds> + <time-to-live-seconds>300</time-to-live-seconds> <!-- Maximum number of seconds for each entry to stay idle in the map. Entries that are idle(not touched) for more than <max-idle-seconds> will get automatically evicted from the map. Entry is touched if get, put or containsKey is called. Any integer between 0 and Integer.MAX_VALUE. 0 means infinite. Default is 0. --> - <max-idle-seconds>60</max-idle-seconds> - - <eviction eviction-policy="LRU" max-size-policy="PER_NODE" size="0"/> + <max-idle-seconds>300</max-idle-seconds> + <!-- + Valid values are: + NONE (no eviction), + LRU (Least Recently Used), + LFU (Least Frequently Used). + NONE is the default. + --> + <eviction-policy>LRU</eviction-policy> + <!-- + Maximum size of the map. When max size is reached, + map is evicted based on the policy defined. + Any integer between 0 and Integer.MAX_VALUE. 0 means + Integer.MAX_VALUE. Default is 0. + --> + <max-size policy="PER_NODE">0</max-size> + <!-- + `eviction-percentage` property is deprecated and will be ignored when it is set. + As of version 3.7, eviction mechanism changed. + It uses a probabilistic algorithm based on sampling. Please see documentation for further details + --> + <eviction-percentage>25</eviction-percentage> + <!-- + `min-eviction-check-millis` property is deprecated and will be ignored when it is set. + As of version 3.7, eviction mechanism changed. + It uses a probabilistic algorithm based on sampling. Please see documentation for further details + --> + <min-eviction-check-millis>100</min-eviction-check-millis> <!-- While recovering from split-brain (network partitioning), map entries in the small cluster will merge into the bigger cluster @@ -136,12 +200,11 @@ Values of these entries might be different for that same key. Which value should be set for the key? Conflict is resolved by the policy set here. Default policy is PutIfAbsentMapMergePolicy - There are built-in merge policies such as - com.hazelcast.spi.merge.PassThroughMergePolicy; entry will be overwritten if merging entry exists for the key. - com.hazelcast.spi.merge.PutIfAbsentMergePolicy ; entry will be added if the merging entry doesn't exist in the cluster. - com.hazelcast.spi.merge.HigherHitsMergePolicy ; entry with the higher hits wins. - com.hazelcast.spi.merge.LatestUpdateMergePolicy ; entry with the latest update wins. + com.hazelcast.map.merge.PassThroughMergePolicy; entry will be overwritten if merging entry exists for the key. + com.hazelcast.map.merge.PutIfAbsentMapMergePolicy ; entry will be added if the merging entry doesn't exist in the cluster. + com.hazelcast.map.merge.HigherHitsMapMergePolicy ; entry with the higher hits wins. + com.hazelcast.map.merge.LatestUpdateMapMergePolicy ; entry with the latest update wins. --> <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> @@ -156,6 +219,34 @@ </map> + <!-- + Configuration for an event journal. The event journal keeps events related + to a specific partition and data structure. For instance, it could keep + map add, update, remove, merge events along with the key, old value, new value and so on. + --> + <event-journal enabled="false"> + <mapName>mapName</mapName> + <capacity>10000</capacity> + <time-to-live-seconds>0</time-to-live-seconds> + </event-journal> + + <event-journal enabled="false"> + <cacheName>cacheName</cacheName> + <capacity>10000</capacity> + <time-to-live-seconds>0</time-to-live-seconds> + </event-journal> + + <!-- + Configuration for a merkle tree. + The merkle tree is a data structure used for efficient comparison of the + difference in the contents of large data structures. The precision of + such a comparison mechanism is defined by the depth of the merkle tree. + --> + <merkle-tree enabled="false"> + <mapName>mapName</mapName> + <depth>10</depth> + </merkle-tree> + <multimap name="default"> <backup-count>1</backup-count> <value-collection-type>SET</value-collection-type> @@ -179,6 +270,22 @@ <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> </set> + <jobtracker name="default"> + <max-thread-size>0</max-thread-size> + <!-- Queue size 0 means number of partitions * 2 --> + <queue-size>0</queue-size> + <retry-count>0</retry-count> + <chunk-size>1000</chunk-size> + <communicate-stats>true</communicate-stats> + <topology-changed-strategy>CANCEL_RUNNING_OPERATION</topology-changed-strategy> + </jobtracker> + + <semaphore name="default"> + <initial-permits>0</initial-permits> + <backup-count>1</backup-count> + <async-backup-count>0</async-backup-count> + </semaphore> + <reliable-topic name="default"> <read-batch-size>10</read-batch-size> <topic-overload-policy>BLOCK</topic-overload-policy> @@ -197,18 +304,27 @@ <flake-id-generator name="default"> <prefetch-count>100</prefetch-count> <prefetch-validity-millis>600000</prefetch-validity-millis> - <epoch-start>1514764800000</epoch-start> + <id-offset>0</id-offset> <node-id-offset>0</node-id-offset> - <bits-sequence>6</bits-sequence> - <bits-node-id>16</bits-node-id> - <allowed-future-millis>15000</allowed-future-millis> <statistics-enabled>true</statistics-enabled> </flake-id-generator> + <atomic-long name="default"> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </atomic-long> + + <atomic-reference name="default"> + <merge-policy batch-size="100">com.hazelcast.spi.merge.PutIfAbsentMergePolicy</merge-policy> + </atomic-reference> + + <count-down-latch name="default"/> + <serialization> <portable-version>0</portable-version> </serialization> + <services enable-defaults="true"/> + <lite-member enabled="false"/> <cardinality-estimator name="default"> @@ -237,7 +353,7 @@ <cp-subsystem> <cp-member-count>0</cp-member-count> <group-size>0</group-size> - <session-time-to-live-seconds>30</session-time-to-live-seconds> + <session-time-to-live-seconds>300</session-time-to-live-seconds> <session-heartbeat-interval-seconds>5</session-heartbeat-interval-seconds> <missing-cp-member-auto-removal-seconds>14400</missing-cp-member-auto-removal-seconds> <fail-on-indeterminate-operation-state>false</fail-on-indeterminate-operation-state> @@ -251,12 +367,5 @@ <append-request-backoff-timeout-in-millis>100</append-request-backoff-timeout-in-millis> </raft-algorithm> </cp-subsystem> - - <metrics enabled="true"> - <management-center enabled="true"> - <retention-seconds>5</retention-seconds> - </management-center> - <jmx enabled="true"/> - <collection-frequency-seconds>5</collection-frequency-seconds> - </metrics> </hazelcast> + From 640416027b0475d8ea1b179c2ae61aed9d8875a3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 06:12:37 +0530 Subject: [PATCH 0064/1358] [MOSIP-14287] Complete overhaul. --- id-authentication-default.properties | 411 +++++++++++---------------- 1 file changed, 161 insertions(+), 250 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 92b1eb41ac2..8026a6ec386 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -1,22 +1,28 @@ -##################### Dynamic Properties - this may change for different deployemnts ############################## -# Database hostname -mosip.ida.database.hostname=postgres -# Database port -mosip.ida.database.port=80 -# Database user -mosip.ida.database.user=idauser -# Database password -mosip.ida.database.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -# Kernel auth client ID for IDA +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# mosip.mosip.ida.client.secret +# biosdk.host.url +# ida.websub.authtype.callback.secret +# ida.websub.credential.issue.callback.secret +# ida.websub.partner.service.callback.secret +# ida.websub.ca.certificate.callback.secret +# ida.websub.hotlist.callback.secret + +## Client mosip.ida.auth.clientId=mosip-ida-client -# Kernel auth secret key for IDA -mosip.ida.auth.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -# Kernel auth application ID for IDA +mosip.ida.auth.secretKey=${mosip.mosip.ida.client.secret} mosip.ida.auth.appId=ida +## Database +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.ida.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.ida.database.port=5432 +mosip.ida.database.user=idauser +mosip.ida.database.password=${db.dbuser.password} -######################## Spring and Hibernate Configurations #################### -# ***************** Postgres Properties *********************** javax.persistence.jdbc.driverClassName=org.postgresql.Driver javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip.ida.database.port}/mosip_ida @@ -27,7 +33,7 @@ javax.persistence.jdbc.schema=ida javax.persistence.jdbc.uinHashTable=uin_hash_salt javax.persistence.jdbc.uinEncryptTable=uin_encrypt_salt -# *********** Hibernate Properties ************* +## Hibernate hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.hbm2ddl.auto=none @@ -45,199 +51,176 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true log4j.logger.org.hibernate=warn hibernate.show_sql=false -######################### ID-Authentication Application Configurations ############## -# The Online Verification partner ID associated to the IDA instance. -# This is used to subscribe to the credential issuance event notification sent by credential service. -# for the particular Online Verification partner. -# This credential issueance notification is handled inside Internal Authentication module. -# The credentials issued to the partner will be as per the data-share policy associated to the partner. -# TO DO: Change the property key to online-verification-partner-id +## The Online Verification partner ID associated to the IDA instance. +## This is used to subscribe to the credential issuance event notification sent by credential service. +## for the particular Online Verification partner. +## This credential issueance notification is handled inside Internal Authentication module. +## The credentials issued to the partner will be as per the data-share policy associated to the partner. +## TO DO: Change the property key to online-verification-partner-id ida-auth-partner-id=mpartner-default-auth - -# Application ID of IDA application.id=IDA -# Application name of IDA application.name=ID-Authentication -# Reference ID used for crypto manager in authentication (for request body) +## Reference ID used for crypto manager in authentication (for request body) partner.reference.id=PARTNER -# Reference ID used for crypto manager in internal authentication (for request body) +## Reference ID used for crypto manager in internal authentication (for request body) internal.reference.id=INTERNAL -# Reference ID used for crypto manager in authentication for biometrics -# TO DO: Value to be Changed to IDA-BIO +## Reference ID used for crypto manager in authentication for biometrics +## TO DO: Value to be Changed to IDA-BIO partner.biometric.reference.id=IDA-FIR -# Reference ID used for crypto manager in internal authentication for biometrics +## Reference ID used for crypto manager in internal authentication for biometrics internal.biometric.reference.id=INTERNAL -# Reference ID for Identity Cache data encryption identity-cache.reference.id=IDENTITY_CACHE -# Application id for signing key mosip.sign.applicationid=${application.id} -# Reference id for signing key mosip.sign.refid=SIGN -# Kernel Symmetric Key decryption bytes count for AAD +## Kernel Symmetric Key decryption bytes count for AAD ida.aad.lastbytes.num=16 -# Kernel Symmetric Key decryption bytes count for Salt +## Kernel Symmetric Key decryption bytes count for Salt ida.salt.lastbytes.num=12 -# Request timeout used across all REST API calls in IDA +## Request timeout used across all REST API calls in IDA mosip.ida.request.timeout.secs=10 -# Common JSON media type used across all REST API calls in IDA +## Common JSON media type used across all REST API calls in IDA mosip.ida.request.mediaType=application/json -#*** ID-Authentication Mapping json configurations *** -# IDA Mapping JSON file name +## IDA mapping ida.mapping.json.filename=id-authentication-mapping.json -# IDA Mapping JSON file URI mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${ida.mapping.json.filename} -# IDA Mapping JSON file property source ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} -#--------------------------Bio SDK Integration - Bio extractor Service ----------------------------------------# -mosip.biosdk.default.host=http://13.233.66.241 -mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service +## Biosdk +mosip.biosdk.default.service.url=${biosdk.host.url}/biosdk-service -# The fully qualified Class Name of the BIO SDK API implemented for Finger modality -# This class will be loaded in runtime, the containing jar should be available in classpath +## The fully qualified Class Name of the BIO SDK API implemented for Finger modality +## This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -# The version of the BIO SDK API implemeted for Finger modality +## The version of the BIO SDK API implemeted for Finger modality mosip.biometric.sdk.provider.finger.version=0.9 -# The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. -# If the below default configuration is not configured, the one of the configured url will be used as the default URL. -# If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. +## The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. +## If the below default configuration is not configured, the one of the configured url will be used as the default URL. +## If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. mosip.biometric.sdk.provider.finger.format.url.default=${mosip.biosdk.default.service.url} -# The fully qualified Class Name of the BIO SDK API implemented for Iris modality -# This class will be loaded in runtime, the containing jar should be available in classpath +## The fully qualified Class Name of the BIO SDK API implemented for Iris modality +## This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -# The version of the BIO SDK API implemeted for Iris modality +## The version of the BIO SDK API implemeted for Iris modality mosip.biometric.sdk.provider.iris.version=0.9 mosip.biometric.sdk.provider.iris.format.url.default=${mosip.biosdk.default.service.url} -# The fully qualified Class Name of the BIO SDK API implemented for Face modality -# This class will be loaded in runtime, the containing jar should be available in classpath +## The fully qualified Class Name of the BIO SDK API implemented for Face modality +## This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -# The version of the BIO SDK API implemeted for Face modality +## The version of the BIO SDK API implemeted for Face modality mosip.biometric.sdk.provider.face.version=0.9 mosip.biometric.sdk.provider.face.format.url.default=${mosip.biosdk.default.service.url} -#------ - - -# *********** REST-services ***************** -# Kernel-Audit -audit.rest.uri=http://kernel-auditmanager-service/v1/auditmanager/audits +## Kernel-Audit +audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits audit.rest.httpMethod=POST audit.rest.headers.mediaType=${mosip.ida.request.mediaType} -#In seconds audit.rest.timeout=${mosip.ida.request.timeout.secs} -# Kernel OTP Validator -otp-validate.rest.uri=http://kernel-otpmanager-service/v1/otpmanager/otp/validate +## Kernel OTP Validator +otp-validate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/validate otp-validate.rest.httpMethod=GET otp-validate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-validate.rest.timeout=${mosip.ida.request.timeout.secs} -# Kernel OTP Generator -otp-generate.rest.uri=http://kernel-otpmanager-service/v1/otpmanager/otp/generate +## Kernel OTP Generator +otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate otp-generate.rest.httpMethod=POST otp-generate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-generate.rest.timeout=${mosip.ida.request.timeout.secs} -# Mail Notification -mail-notification.rest.uri=http://kernel-notification-service/v1/notifier/email/send +## Mail Notification +mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send mail-notification.rest.httpMethod=POST mail-notification.rest.headers.mediaType=multipart/form-data mail-notification.rest.timeout=${mosip.ida.request.timeout.secs} -# SMS Notification -sms-notification.rest.uri=http://kernel-notification-service/v1/notifier/sms/send +## SMS Notification +sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send sms-notification.rest.httpMethod=POST sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} -#Get RID for USERID - Used in Internal Auth based on User ID -userid-rid.rest.uri=http://kernel-auth-service/v1/authmanager/rid/{appId}/{uid} +## Get RID for USERID - Used in Internal Auth based on User ID +userid-rid.rest.uri=http://auth.kernel/v1/authmanager/rid/{appId}/{uid} userid-rid.rest.httpMethod=GET userid-rid.rest.headers.mediaType=${mosip.ida.request.mediaType} userid-rid.rest.timeout=${mosip.ida.request.timeout.secs} -#Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=http://idrepo-identity-service/idrepository/v1/identity/idvid/{rid}?type={type} +## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID +rid-uin.rest.uri=http://idrepo-identity.idrepo/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} -#Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=http://idrepo-identity-service/idrepository/v1/identity/idvid/{rid} +## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID +rid-uin-auth.rest.uri=http://idrepo-identity.idrepo/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} -#Auth token generation and validation URLs -auth-token-generator.rest.uri=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -auth-token-validator.rest.uri=http://kernel-auth-service/v1/authmanager/authorize/validateToken +## Auth token generation and validation URLs +auth-token-generator.rest.uri=http://auth.kernel/v1/authmanager/authenticate/clientidsecretkey +auth-token-validator.rest.uri=http://auth.kernel/v1/authmanager/authorize/validateToken auth-token-generator.rest.clientId=${mosip.ida.auth.clientId} auth-token-generator.rest.secretKey=${mosip.ida.auth.secretKey} auth-token-generator.rest.appId=${mosip.ida.auth.appId} -# Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination -id-pmp-service.rest.uri=http://pms-partner-manager-service/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} +## Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination +id-pmp-service.rest.uri=http://partner-manager.pms/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET id-pmp-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-pmp-service.rest.timeout=${mosip.ida.request.timeout.secs} -# Data Share API configurations - used to download data from data share URL provided in credential issueance event +## Data Share API configurations - used to download data from data share URL provided in credential issueance event data-share-get.rest.uri=dummy_url_to_be_replaced_in_runtime data-share-get.rest.httpMethod=GET data-share-get.rest.headers.mediaType=application/octet-stream data-share-get.rest.timeout=10 data-share-get-decrypt-ref-id=${ida-auth-partner-id} -# Title Service rest api-GET -id-masterdata-title-service.rest.uri=http://kernel-masterdata-service/v1/masterdata/title +## Title Service rest api-GET +id-masterdata-title-service.rest.uri=http://masterdata.kernel/v1/masterdata/title id-masterdata-title-service.rest.httpMethod=GET id-masterdata-title-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-title-service.rest.timeout=${mosip.ida.request.timeout.secs} -#Master Data - Template Single Language -id-masterdata-template-service.rest.uri=http://kernel-masterdata-service/v1/masterdata/templates/{langcode}/{templatetypecode} +## Master Data - Template Single Language +id-masterdata-template-service.rest.uri=http://masterdata.kernel/v1/masterdata/templates/{langcode}/{templatetypecode} id-masterdata-template-service.rest.httpMethod=GET id-masterdata-template-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service.rest.timeout=${mosip.ida.request.timeout.secs} -#Master Data - Template Multi language -id-masterdata-template-service-multilang.rest.uri=http://kernel-masterdata-service/v1/masterdata/templates/templatetypecodes/{code} +## Master Data - Template Multi language +id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} id-masterdata-template-service-multilang.rest.httpMethod=GET id-masterdata-template-service-multilang.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service-multilang.rest.timeout=${mosip.ida.request.timeout.secs} - -#-----Websub configurations------ -# Secret for auth type status update callback -ida-websub-authtype-callback-secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# Secret for credtial issueance callback -ida-websub-credential-issue-callback-secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# Secret for credtial issueance callback -ida-websub-partner-service-callback-secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# Secret for partner CA certification upload callback -ida-websub-ca-certificate-callback-secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# Secret for partner CA certification upload callback -ida-websub-hotlist-callback-secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - -# Callback url for auth type status update event notification -ida-websub-auth-type-callback-url=${mosipbox.public.url}/idauthentication/v1/internal/callback/authTypeCallback/{partnerId} -# Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-credential-issue-callback-url=${mosipbox.public.url}/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} -# Callback url for MISP/Partner change notification events +## Websub +ida-websub-authtype-callback-secret=${ida.websub.authtype.callback.secret} +ida-websub-credential-issue-callback-secret=${ida.websub.credential.issue.callback.secret} +ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback.secret} +ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} +ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} + +ida-websub-auth-type-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/authTypeCallback/{partnerId} +## Callback url for credential issueance event notification, including id remove/deactivate/activate events +ida-websub-credential-issue-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} +## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} -# Callback url for partner CA certification upload event +## Callback url for partner CA certification upload event ida-websub-ca-cert-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate -# Callback url for hotlist event +## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/hotlist -#Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. +## Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 # The time interval in seconds to schedule subscription of topics which is done as a @@ -247,64 +230,47 @@ subscriptions-delay-on-startup=120000 # number like 1 * 60 * 60 = 3600 for one hour ida-websub-resubscription-delay-secs=7200 -#------ Web sub Event Topis used in IDA --- -# Topic for Auth Type Status Update Event +## Websub even topics ida-topic-auth-type-status-updated=${ida-auth-partner-id}/AUTH_TYPE_STATUS_UPDATE -# Topic for Credential Issueance Event (for UIN/VID create/update events) +## Topic for Credential Issueance Event (for UIN/VID create/update events) ida-topic-credential-issued=${ida-auth-partner-id}/CREDENTIAL_ISSUED -# Topic for ID Remove Event (UIN blocked / VID revoked events) +## Topic for ID Remove Event (UIN blocked / VID revoked events) ida-topic-remove-id=${ida-auth-partner-id}/REMOVE_ID -# Topic for ID Deactivate Event (UIN/VID deactivate events) +## Topic for ID Deactivate Event (UIN/VID deactivate events) ida-topic-deactivate-id=${ida-auth-partner-id}/DEACTIVATE_ID -# Topic for ID Activate Event (UIN/VID activate events) +## Topic for ID Activate Event (UIN/VID activate events) ida-topic-activate-id=${ida-auth-partner-id}/ACTIVATE_ID - -# Topic for MISP update event ida-topic-pmp-misp-updated=MISP_UPDATED -# Topic for Partner update event ida-topic-pmp-partner-updated=PARTNER_UPDATED -# Topic for Partner API Key update event ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED -# Topic for Policy update event ida-topic-pmp-policy-updated=POLICY_UPDATED -# Topic for Partner CA Certificate Upload event ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED - -# Topic for Hotlisting event ida-topic-hotlist=MOSIP_HOTLIST -#----------------------- -#**************IDA cache properties************** -# IDA cache Time to live in days - To clear cache scheduled based on the days provided. -# value <= 0 means cache clearing based on schedule is disabled. +## IDA cache +## IDA cache Time to live in days - To clear cache scheduled based on the days provided. +## value <= 0 means cache clearing based on schedule is disabled. ida-cache-ttl-in-days=1 - -# To disable cache, set value to NONE, otherwise SIMPLE to enable cache. -# Value is based on CacheType enum provided by Spring Boot +## To disable cache, set value to NONE, otherwise SIMPLE to enable cache. +## Value is based on CacheType enum provided by Spring Boot spring.cache.type=SIMPLE -#================================================ - -########################## Functional configurations ################################ +## Function configs #The modulo value to be calculated for a UIN/VID used to get salt value to be used in UIN/VID hashing ida.uin.salt.modulo=1000 -#**************** IDA DEMO NORMALIZATION ************* - +## ID demographic normalization # This is used to define the seperator for normalizing regex(pattern) and the replacement word. Default is set to '='. ida.norm.sep== - ####### Demo Name/Address Normalization Regular Expressions and their replacement configurations #Format: # ida.demo.<name/address/common>.normalization.regex.<languageCode/any>[<sequential index starting from 0>]=<reqular expression>${ida.norm.sep}<replacement string> # If replacement string is not specified that regular expression will be replaced with empty string # Note: The sequence should not break in the middle, otherwise all normalization properties will not be read for the particular type. - -#**************** IDA DEMO NORMALIZATION address(for 'eng' language)************* +## For eng. ida.demo.address.normalization.regex.eng[0]=[CcSsDdWwHh]/[Oo] ida.demo.address.normalization.regex.eng[1]=(M|m|D|d)(rs?)(.) ida.demo.address.normalization.regex.eng[2]=(N|n)(O|o)(\\.)? - ida.demo.address.normalization.regex.eng[3]=[aA][pP][aA][rR][tT][mM][eE][nN][tT]${ida.norm.sep}apt ida.demo.address.normalization.regex.eng[4]=[sS][tT][rR][eE][eE][tT]${ida.norm.sep}st ida.demo.address.normalization.regex.eng[5]=[rR][oO][aA][dD]${ida.norm.sep}rd @@ -312,7 +278,6 @@ ida.demo.address.normalization.regex.eng[6]=[mM][aA][iI][nN]${ida.norm.sep}mn ida.demo.address.normalization.regex.eng[7]=[cC][rR][oO][sS][sS]${ida.norm.sep}crs ida.demo.address.normalization.regex.eng[8]=[oO][pP][pP][oO][sS][iI][tT][eE]${ida.norm.sep}opp ida.demo.address.normalization.regex.eng[9]=[mM][aA][rR][kK][eE][tT]${ida.norm.sep}mkt - ida.demo.address.normalization.regex.eng[10]=1[sS][tT]${ida.norm.sep}1 ida.demo.address.normalization.regex.eng[11]=1[tT][hH]${ida.norm.sep}1 ida.demo.address.normalization.regex.eng[12]=2[nN][dD]${ida.norm.sep}2 @@ -326,8 +291,6 @@ ida.demo.address.normalization.regex.eng[19]=7[tT][hH]${ida.norm.sep}7 ida.demo.address.normalization.regex.eng[20]=8[tT][hH]${ida.norm.sep}8 ida.demo.address.normalization.regex.eng[21]=9[tT][hH]${ida.norm.sep}9 ida.demo.address.normalization.regex.eng[22]=0[tT][hH]${ida.norm.sep}0 - -#**************** IDA DEMO NORMALISATION common************* # Note: the common normalization attributes will be replaced at the end. # Special characters are removed : . , - * ( ) [ ] ` ' / \ # " ida.demo.common.normalization.regex.any[0]=[\\.|,|\\-|\\*|\\(|\\)|\\[|\\]|`|\\'|/|\\|#|\"] @@ -335,73 +298,52 @@ ida.demo.common.normalization.regex.any[0]=[\\.|,|\\-|\\*|\\(|\\)|\\[|\\]|`|\\'| ida.demo.common.normalization.regex.any[1]=\\s+${ida.norm.sep} . ida.demo.common.normalization.regex.any[2]=\\.${ida.norm.sep} - -# ********* ADMIN Configurations ************ -# Configure N time period threshold for accepting auth/OTP/KYC request for a country +## Admin +## Configure N time period threshold for accepting auth/OTP/KYC request for a country authrequest.received-time-allowed.minutes=30 # Configuration for +/- time period adjustment in minutes for the request time validation, so that # The requests originating from a system that is not in time-sync will be accepted for the time period authrequest.received-time-adjustment.minutes=5 - # Language Code ida.errormessages.default-lang=en - -# *********** Otp Flooding ************ -# Configure Time limit for OTP Flooding scenario (in minutes) +## OTP flooding +## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=3 -# Configure no of requests for OTP Flooding scenario otp.request.flooding.max-count=3 -#------------- Notification message template names Configuration ---------------- -## Mail Message template names -# Authenticaiton notification email template +## Notification templates ida.auth.mail.content.template=auth-email-content ida.auth.mail.subject.template=auth-email-subject - -# OTP notification email template ida.otp.mail.content.template=ida-auth-otp-email-content-template ida.otp.mail.subject.template=ida-auth-otp-email-subject-template - -## SMS template names -# Authenticaiton notification SMS template ida.auth.sms.template=auth-sms -# OTP notification SMS template ida.otp.sms.template=ida-auth-otp-sms-template -#--------------------------------------------------------------------------------- -# UIN/VID/USERID Masking to be done on SMS/EMAIL notification -#Configure the no of digits to be masked while masking UIN/VID/USERID. -#For example if UIN is 1234567890 and mask count is 6, masked UIN will be: XXXXXX7890 +## UIN/VID/USERID Masking to be done on SMS/EMAIL notification +## Configure the no of digits to be masked while masking UIN/VID/USERID. +## For example if UIN is 1234567890 and mask count is 6, masked UIN will be: XXXXXX7890 notification.uin.masking.charcount=8 - -#*************** Notification Date/time Format ********** notification.date.format=dd-MM-yyyy notification.time.format=HH:mm:ss - -#********* Allowed authentication types for Authentciation/E-KYC/Internal Authentication requests ********* -# Accepted values otp-request, otp, demo, bio-Finger, bio-Iris, bio-Face - -#Configure authentications permissable for a country +## Allowed authentication types for Authentciation/E-KYC/Internal Authentication requests +## Accepted values otp-request, otp, demo, bio-Finger, bio-Iris, bio-Face +## Configure authentications permissable for a country auth.types.allowed=demo,otp,bio-Finger,bio-Iris,bio-Face - -#Configure authentications permissable for e-KYC for a country +## Configure authentications permissable for e-KYC for a country ekyc.auth.types.allowed=demo,otp,bio-Finger,bio-Iris,bio-Face - -#Configure authentication types permissable for internal authentication +## Configure authentication types permissable for internal authentication internal.auth.types.allowed=otp,bio-Finger,bio-Iris,bio-Face -#---------------- Allowed IdTypes for hotlisting ------------------- +## Allowed IdTypes for hotlisting mosip.ida.internal.hotlist.idtypes.allowed=UIN,VID,PARTNER - -#---------------- IDA services request time date pattern ------------------- +## Datetime #Example allowed date time formats: "2020-10-23T12:21:38.660Z" , 2019-03-28T10:01:57.086+05:30 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX -#------------Request IDs--------------------- -# The request IDs used in IDA REST APIs +# Request IDs used in IDA REST APIs ida.api.id.auth=mosip.identity.auth ida.api.id.kyc=mosip.identity.kyc ida.api.id.otp=mosip.identity.otp @@ -411,9 +353,7 @@ ida.api.id.internal=mosip.identity.auth.internal ida.api.id.auth.transactions=mosip.identity.authtransactions.read ida.api.id.otp.internal=mosip.identity.otp.internal - -#------------Request Versions--------------------- -# The request versions used in IDA REST APIs +## Request versions ida.api.version.auth=1.0 ida.api.version.kyc=1.0 ida.api.version.otp=1.0 @@ -423,111 +363,90 @@ ida.api.version.internal=1.0 ida.api.version.auth.transactions=1.0 ida.api.version.otp.internal=1.0 -#------ Authentication Response Token Configuration --------------- -#Preference to turn on/off of authentication response token for a Country -#A partner specific policy will govern how the response token is generated, whether it should be Random/Partner or Policy specific -# TO DO: Remane static.token.enable to auth.token.enable +## Auth response token config +## Preference to turn on/off of authentication response token for a Country +## A partner specific policy will govern how the response token is generated, whether it should be Random/Partner or Policy specific +## TO DO: Remane static.token.enable to auth.token.enable static.token.enable=true -#-------Configure Allowed ID Types (allowed values : UIN/VID/USERID) ------------- -#The ID types to be supported for Authentication/KYC/OTP Requests +## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests request.idtypes.allowed=VID,UIN - -#The ID types to be supported for Internal Authentication/OTP Requests +## The ID types to be supported for Internal Authentication/OTP Requests request.idtypes.allowed.internalauth=UIN,USERID,VID -#------ Encrypted Credential Attributes list ----------- -#The list of attributes in identity that are Zero Knowledge encrpted in IDA while storing the credential in DB. -#This list is used to identify the attributes to decrypt when fetching the records from DB +## Encrypted Credential Attributes list +## The list of attributes in identity that are Zero Knowledge encrpted in IDA while storing the credential in DB. +## This list is used to identify the attributes to decrypt when fetching the records from DB ida-zero-knowledge-encrypted-credential-attributes=individualBiometrics,fullName,dateOfBirth,phone,email - -#### Cryptograpic/Signature verificate related configurations +## Cryptograpic/Signature verificate related configurations mosip.ida.auth.trust-validation-required=true - mosip.ida.kyc.trust-validation-required=true - mosip.ida.otp.trust-validation-required=true - mosip.ida.internal.thumbprint-validation-required=false mosip.ida.internal.trust-validation-required=false - -#-------Kernel Retry Configurations---------------- +## Kernel retry # The retry limit excluding the first attempt before attempting for retries. Default is set to 5. kernel.retry.attempts.limit=5 -# The initial interval to be used for exponential backoff in milli seconds. If the exponential backoff is disabled by setting 'kernel.retry.exponential.backoff.multiplier' value as 1, this initial interval will be used as the fixed backoff interval for every retries. Default value is 200 millisecs +## The initial interval to be used for exponential backoff in milli seconds. If the exponential backoff is disabled by setting 'kernel.retry.exponential.backoff.multiplier' value as 1, this initial interval will be used as the fixed backoff interval for every retries. Default value is 200 millisecs kernel.retry.exponential.backoff.initial.interval.millisecs=100 -# The multiplier for exponential backoff intreval. A double value greater than or equal to 1. Setting to 1 will make it to fixed backoff, more than 1 will apply exponential backoff. Default is 1.0 (fixed backoff). For exponential backoff the suggested value is 1.5 or 2. The next backoff interval is calculated with the formula: NextBackOffInterval = initialInterval * Math.pow(multiplier, retryCount) +## The multiplier for exponential backoff intreval. A double value greater than or equal to 1. Setting to 1 will make it to fixed backoff, more than 1 will apply exponential backoff. Default is 1.0 (fixed backoff). For exponential backoff the suggested value is 1.5 or 2. The next backoff interval is calculated with the formula: NextBackOffInterval = initialInterval * Math.pow(multiplier, retryCount) kernel.retry.exponential.backoff.multiplier=1.5 kernel.retry.exponential.backoff.max.interval.millisecs=1000 -# Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. +## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false -#Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. +## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.retryable.exceptions=io.mosip.authentication.core.exception.IdAuthRetryException,io.mosip.authentication.core.exception.IdAuthenticationBaseException -#Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. +## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= -#-------Credential Store batch and retry configurations--- -# To disable automatic job launch in startup, setting to false. +## Credential Store batch and retry configurations +## To disable automatic job launch in startup, setting to false. spring.batch.job.enabled=false - -# The chunk size of items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. +## Chunk size of items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. ida.batch.credential.store.chunk.size=5 ida.batch.credential.store.job.delay=1000 - -# The retry limit excluding the first attempt before attempting for retries +## The retry limit excluding the first attempt before attempting for retries ida.credential.store.retry.max.limit=10 ida.credential.store.retry.backoff.interval.millisecs=5000 -# The multiplier for exponential backoff intreval. A double value greater than or equal to 1. Setting to 1 will make it to fixed backoff, more than 1 will apply exponential backoff. Default is 1.0 (fixed backoff). For exponential backoff the suggested value is 1.5 or 2. The next backoff interval is calculated with the formula: NextBackOffInterval = initialInterval * Math.pow(multiplier, retryCount) +## The multiplier for exponential backoff intreval. A double value greater than or equal to 1. Setting to 1 will make it to fixed backoff, more than 1 will apply exponential backoff. Default is 1.0 (fixed backoff). For exponential backoff the suggested value is 1.5 or 2. The next backoff interval is calculated with the formula: NextBackOffInterval = initialInterval * Math.pow(multiplier, retryCount) ida.credential.store.retry.backoff.exponential.multiplier=1.5 ida.credential.store.retry.backoff.exponential.max.interval.millisecs=120000 - -############## Configurations needed for dependent libraries ##### -#-----------------------------------Softhsm -------------------------------------- +## Configurations needed for dependent libraries +## Softhsm mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.keystore-pass=1234 -#--------- Titles/Templates master data stored as configuration ---------- -# These are static IDA-Specific Master Data (base-64 encoded) - for fra and ara languages. -# For any other language please update the respective properties. -# Titles template used in Name Normalizatoin in Demographic authentication +## Titles/Templates master data stored as configuration ---------- +## These are static IDA-Specific Master Data (base-64 encoded) - for fra and ara languages. +## For any other language please update the respective properties. +## Titles template used in Name Normalizatoin in Demographic authentication maste.data.titles=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 # SMS and Email templates for OTP notification and Authentication notification master.data.ida-templates=ewogICJpZCI6IG51bGwsCiAgInZlcnNpb24iOiBudWxsLAogICJyZXNwb25zZXRpbWUiOiAiMjAyMC0wNC0wM1QxMToxMzowNy45NDhaIiwKICAibWV0YWRhdGEiOiBudWxsLAogICJyZXNwb25zZSI6IHsKICAgICJ0ZW1wbGF0ZXMiOiBbCiAgICAgIHsKICAgICAgICAiaWQiOiAiMTE1MSIsCiAgICAgICAgIm5hbWUiOiAiVGVtcGxhdGUgZm9yIEVtYWlsIENvbnRlbnQiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICJUZW1wbGF0ZSBmb3IgRW1haWwgQ29udGVudCIsCiAgICAgICAgImZpbGVGb3JtYXRDb2RlIjogInR4dCIsCiAgICAgICAgIm1vZGVsIjogIm1vZGVsIiwKICAgICAgICAiZmlsZVRleHQiOiAiRGVhciAkbmFtZVxuT1RQIGZvciAkaWR2aWRUeXBlICAkaWR2aWQgaXMgJG90cCBhbmQgaXMgdmFsaWQgZm9yICR2YWxpZFRpbWUgbWludXRlcy4gKEdlbmVyYXRlZCBvbiAkZGF0ZSBhdCAkdGltZSBIcnMpIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogIklEIEF1dGhlbnRpY2F0aW9uIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJpZGEtYXV0aC1vdHAtZW1haWwtY29udGVudC10ZW1wbGF0ZSIsCiAgICAgICAgImxhbmdDb2RlIjogImVuZyIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9LAogICAgICB7CiAgICAgICAgImlkIjogIjExNTEiLAogICAgICAgICJuYW1lIjogItmC2KfZhNioINmE2YXYrdiq2YjZiSDYp9mE2KjYsdmK2K8g2KfZhNil2YTZg9iq2LHZiNmG2YoiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICLZgtin2YTYqCDZhNmF2K3YqtmI2Ykg2KfZhNio2LHZitivINin2YTYpdmE2YPYqtix2YjZhtmKIiwKICAgICAgICAiZmlsZUZvcm1hdENvZGUiOiAidHh0IiwKICAgICAgICAibW9kZWwiOiAibW9kZWwiLAogICAgICAgICJmaWxlVGV4dCI6ICLYudiy2YrYstmKICRuYW1lIFxuIG5PVFAg2YTZgCAkaWR2aWRUeXBlICRpZHZpZCDZh9mIICRvdHAg2YjZh9mIINi12KfZhNitINmE2YXYr9ipICR2YWxpZFRpbWUg2K_ZgtmK2YLYqS4gKNiq2YUg2KXZhti02KfYpNmHINmB2YogJGRhdGUg2YHZiiAkdGltZSBIcnMpIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogItmF2LXYp9iv2YLYqSDYp9mE2YfZiNmK2KkiLAogICAgICAgICJ0ZW1wbGF0ZVR5cGVDb2RlIjogImlkYS1hdXRoLW90cC1lbWFpbC1jb250ZW50LXRlbXBsYXRlIiwKICAgICAgICAibGFuZ0NvZGUiOiAiYXJhIiwKICAgICAgICAiaXNBY3RpdmUiOiB0cnVlCiAgICAgIH0sCiAgICAgIHsKICAgICAgICAiaWQiOiAiMTE1MSIsCiAgICAgICAgIm5hbWUiOiAiTW9kw6hsZSBkZSBjb250ZW51IGRlIGNvdXJyaWVyIMOpbGVjdHJvbmlxdWUiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICJNb2TDqGxlIGRlIGNvbnRlbnUgZGUgY291cnJpZXIgw6lsZWN0cm9uaXF1ZSIsCiAgICAgICAgImZpbGVGb3JtYXRDb2RlIjogInR4dCIsCiAgICAgICAgIm1vZGVsIjogbnVsbCwKICAgICAgICAiZmlsZVRleHQiOiAiQ2hlciAkbmFtZSxcbk9UUCBwb3VyICRpZHZpZFR5cGUgJGlkdmlkIGVzdCAkb3RwIGV0IGVzdCB2YWxpZGUgcG91ciAkdmFsaWRUaW1lIG1pbnV0ZXMuIChHw6luw6lyw6kgbGUgJGRhdGUgw6AgJHRpbWUgSHJzKSIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJBdXRoZW50aWZpY2F0aW9uIElEIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJpZGEtYXV0aC1vdHAtZW1haWwtY29udGVudC10ZW1wbGF0ZSIsCiAgICAgICAgImxhbmdDb2RlIjogImZyYSIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9LAogICAgICB7CiAgICAgICAgImlkIjogIjExNTIiLAogICAgICAgICJuYW1lIjogIlRlbXBsYXRlIGZvciBFbWFpbCBTdWJqZWN0IiwKICAgICAgICAiZGVzY3JpcHRpb24iOiAiVGVtcGxhdGUgZm9yIEVtYWlsIFN1YmplY3QiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6ICJtb2RlbCIsCiAgICAgICAgImZpbGVUZXh0IjogIiRpZHZpZFR5cGUgJGlkdmlkOiBPVFAgUmVxdWVzdCIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJJRCBBdXRoZW50aWNhdGlvbiIsCiAgICAgICAgInRlbXBsYXRlVHlwZUNvZGUiOiAiaWRhLWF1dGgtb3RwLWVtYWlsLXN1YmplY3QtdGVtcGxhdGUiLAogICAgICAgICJsYW5nQ29kZSI6ICJlbmciLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTUyIiwKICAgICAgICAibmFtZSI6ICLZgtin2YTYqCDZhNmF2YjYttmI2Lkg2KfZhNio2LHZitivINin2YTYpdmE2YPYqtix2YjZhtmKIiwKICAgICAgICAiZGVzY3JpcHRpb24iOiAi2YLYp9mE2Kgg2YTZhdmI2LbZiNi5INin2YTYqNix2YrYryDYp9mE2KXZhNmD2KrYsdmI2YbZiiIsCiAgICAgICAgImZpbGVGb3JtYXRDb2RlIjogInR4dCIsCiAgICAgICAgIm1vZGVsIjogIm1vZGVsIiwKICAgICAgICAiZmlsZVRleHQiOiAiJGlkdmlkVHlwZSAkaWR2aWQ6INi32YTYqCBPVFAiLAogICAgICAgICJtb2R1bGVJZCI6ICIxMDAwNCIsCiAgICAgICAgIm1vZHVsZU5hbWUiOiAi2YXYtdin2K_ZgtipINin2YTZh9mI2YrYqSIsCiAgICAgICAgInRlbXBsYXRlVHlwZUNvZGUiOiAiaWRhLWF1dGgtb3RwLWVtYWlsLXN1YmplY3QtdGVtcGxhdGUiLAogICAgICAgICJsYW5nQ29kZSI6ICJhcmEiLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTUyIiwKICAgICAgICAibmFtZSI6ICJNb2TDqGxlIHBvdXIgc3VqZXQgZGVtYWlsIiwKICAgICAgICAiZGVzY3JpcHRpb24iOiAiTW9kw6hsZSBwb3VyIHN1amV0IGRlbWFpbCIsCiAgICAgICAgImZpbGVGb3JtYXRDb2RlIjogInR4dCIsCiAgICAgICAgIm1vZGVsIjogIm1vZGVsIiwKICAgICAgICAiZmlsZVRleHQiOiAiJGlkdmlkVHlwZSAkaWR2aWQ6IFJlcXXDqnRlIE9UUCIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJBdXRoZW50aWZpY2F0aW9uIElEIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJpZGEtYXV0aC1vdHAtZW1haWwtc3ViamVjdC10ZW1wbGF0ZSIsCiAgICAgICAgImxhbmdDb2RlIjogImZyYSIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9LAogICAgICB7CiAgICAgICAgImlkIjogIjExNTMiLAogICAgICAgICJuYW1lIjogIlRlbXBsYXRlIGZvciBPVFAgaW4gU01TICIsCiAgICAgICAgImRlc2NyaXB0aW9uIjogIlRlbXBsYXRlIGZvciBPVFAgaW4gU01TICIsCiAgICAgICAgImZpbGVGb3JtYXRDb2RlIjogInR4dCIsCiAgICAgICAgIm1vZGVsIjogIm1vZGVsIiwKICAgICAgICAiZmlsZVRleHQiOiAiT1RQIGZvciAkaWR2aWRUeXBlICAkaWR2aWQgaXMgJG90cCBhbmQgaXMgdmFsaWQgZm9yICR2YWxpZFRpbWUgbWludXRlcy4gKEdlbmVyYXRlZCBvbiAkZGF0ZSBhdCAkdGltZSBIcnMpIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogIklEIEF1dGhlbnRpY2F0aW9uIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJpZGEtYXV0aC1vdHAtc21zLXRlbXBsYXRlIiwKICAgICAgICAibGFuZ0NvZGUiOiAiZW5nIiwKICAgICAgICAiaXNBY3RpdmUiOiB0cnVlCiAgICAgIH0sCiAgICAgIHsKICAgICAgICAiaWQiOiAiMTE1MyIsCiAgICAgICAgIm5hbWUiOiAi2YLYp9mE2Kgg2YPZhNmF2Kkg2KfZhNmF2LHZiNixINmE2YXYsdipINmI2KfYrdiv2Kkg2YHZiiDYp9mE2LHYs9in2YTYqSIsCiAgICAgICAgImRlc2NyaXB0aW9uIjogItmC2KfZhNioINmD2YTZhdipINin2YTZhdix2YjYsSDZhNmF2LHYqSDZiNin2K3Yr9ipINmB2Yog2KfZhNix2LPYp9mE2KkiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6ICJtb2RlbCIsCiAgICAgICAgImZpbGVUZXh0IjogIk9UUCDZhNmAICRpZHZpZFR5cGUgJGlkdmlkINmH2YggJG90cCDZiNmH2Ygg2LXYp9mE2K0g2YTZhdiv2KkgJHZhbGlkVGltZSDYr9mC2YrZgtipLiAo2KfZhNiq2Yog2KrZhSDYpdmG2LTYp9ik2YfYpyDYudmE2YkgJGRhdGUg2YHZiiAkdGltZSDYs9in2LnYp9iqKSIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICLZhdi12KfYr9mC2Kkg2KfZhNmH2YjZitipIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJpZGEtYXV0aC1vdHAtc21zLXRlbXBsYXRlIiwKICAgICAgICAibGFuZ0NvZGUiOiAiYXJhIiwKICAgICAgICAiaXNBY3RpdmUiOiB0cnVlCiAgICAgIH0sCiAgICAgIHsKICAgICAgICAiaWQiOiAiMTE1MyIsCiAgICAgICAgIm5hbWUiOiAiTW9kw6hsZSBwb3VyIE9UUCBkYW5zIFNNUyIsCiAgICAgICAgImRlc2NyaXB0aW9uIjogIk1vZMOobGUgcG91ciBPVFAgZGFucyBTTVMiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6ICJtb2RlbCIsCiAgICAgICAgImZpbGVUZXh0IjogIk9UUCBwb3VyICRpZHZpZFR5cGUgJGlkdmlkIGVzdCAkb3RwIGV0IGVzdCB2YWxpZGUgcG91ciAkdmFsaWRUaW1lIG1pbnV0ZXMuIChHw6luw6lyw6kgbGUgJGRhdGUgw6AgJHRpbWUgSHJzKSIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJBdXRoZW50aWZpY2F0aW9uIElEIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJpZGEtYXV0aC1vdHAtc21zLXRlbXBsYXRlIiwKICAgICAgICAibGFuZ0NvZGUiOiAiZnJhIiwKICAgICAgICAiaXNBY3RpdmUiOiB0cnVlCiAgICAgIH0sCiAgICAgIHsKICAgICAgICAiaWQiOiAiMTEwMSIsCiAgICAgICAgIm5hbWUiOiAiVGVtcGxhdGUgZm9yIGF1dGhvcml6YXRpb24gY29udGVudCIsCiAgICAgICAgImRlc2NyaXB0aW9uIjogIlRlbXBsYXRlIGZvciBhdXRob3JpemF0aW9uIGNvbnRlbnQiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6IG51bGwsCiAgICAgICAgImZpbGVUZXh0IjogIkRlYXIgJG5hbWVcbllvdXIgQXV0aGVudGljYXRpb24gb2YgJGlkdmlkVHlwZSAkaWR2aWQgdXNpbmcgJGF1dGhUeXBlIG9uICRkYXRlIGF0ICR0aW1lIEhycyAkc3RhdHVzIGF0IGEgZGV2aWNlIGRlcGxveWVkIGJ5IE1PU0lQIFNlcnZpY2VzIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogIklEIEF1dGhlbnRpY2F0aW9uIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJhdXRoLWVtYWlsLWNvbnRlbnQiLAogICAgICAgICJsYW5nQ29kZSI6ICJlbmciLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTAxIiwKICAgICAgICAibmFtZSI6ICLZgtin2YTYqCDZhNmF2K3YqtmI2Ykg2KfZhNiq2K7ZiNmK2YQiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICLZgtin2YTYqCDZhNmF2K3YqtmI2Ykg2KfZhNiq2K7ZiNmK2YQiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6IG51bGwsCiAgICAgICAgImZpbGVUZXh0IjogIti52LLZitiy2YogJG5hbWUg2IxcbtmF2LXYp9m_2YLYqSAkaWR2aWRUeXBlICRpZHZpZCDYqNin2LPYqtiu2K_Yp9mFICRhdXRoVHlwZSDYudmE2YkgJGRhdGUg2YHZiiAkdGltZSBIcnMgJHN0YXR1cyDYudmE2Ykg2KzZh9in2LIg2KrZhSDZhti02LHZhyDYqNmI2KfYs9i32KkgXCLYrtm_2YXYp9iqIE1PU0lQXCIuIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogItmF2LXYp9iv2YLYqSDYp9mE2YfZiNmK2KkiLAogICAgICAgICJ0ZW1wbGF0ZVR5cGVDb2RlIjogImF1dGgtZW1haWwtY29udGVudCIsCiAgICAgICAgImxhbmdDb2RlIjogImFyYSIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9LAogICAgICB7CiAgICAgICAgImlkIjogIjExMDEiLAogICAgICAgICJuYW1lIjogIk1vZMOobGUgZGUgY29udGVudSBkYXV0b3Jpc2F0aW9uIiwKICAgICAgICAiZGVzY3JpcHRpb24iOiAiTW9kw6hsZSBkZSBjb250ZW51IGRhdXRvcmlzYXRpb24iLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6IG51bGwsCiAgICAgICAgImZpbGVUZXh0IjogIkNoZXIgJG5hbWUsXG5Wb3RyZSBhdXRoZW50aWZpY2F0aW9uICRpZHZpZFR5cGUgJGlkdmlkIHV0aWxpc2FudCAkYXV0aFR5cGUgbGUgJGRhdGUgw6AgJHRpbWUgSHJzICRzdGF0dXMgc3VyIHVuIHDDqXJpcGjDqXJpcXVlIGTDqXBsb3nDqSBwYXIgXCJNT1NJUCBTZXJ2aWNlc1wiIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogIkF1dGhlbnRpZmljYXRpb24gSUQiLAogICAgICAgICJ0ZW1wbGF0ZVR5cGVDb2RlIjogImF1dGgtZW1haWwtY29udGVudCIsCiAgICAgICAgImxhbmdDb2RlIjogImZyYSIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9LAogICAgICB7CiAgICAgICAgImlkIjogIjExMDIiLAogICAgICAgICJuYW1lIjogIlRlbXBsYXRlIGZvciBhdXRob3JpemF0aW9uIHN1YmplY3QiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICJUZW1wbGF0ZSBmb3IgYXV0aG9yaXphdGlvbiBzdWJqZWN0IiwKICAgICAgICAiZmlsZUZvcm1hdENvZGUiOiAidHh0IiwKICAgICAgICAibW9kZWwiOiBudWxsLAogICAgICAgICJmaWxlVGV4dCI6ICIkaWR2aWRUeXBlICRpZHZpZCBBdXRoZW50aWNhdGlvbiAkc3RhdHVzIiwKICAgICAgICAibW9kdWxlSWQiOiAiMTAwMDQiLAogICAgICAgICJtb2R1bGVOYW1lIjogIklEIEF1dGhlbnRpY2F0aW9uIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJhdXRoLWVtYWlsLXN1YmplY3QiLAogICAgICAgICJsYW5nQ29kZSI6ICJlbmciLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTAyIiwKICAgICAgICAibmFtZSI6ICLZgtin2YTYqCDZhNmF2YjYttmI2Lkg2KfZhNiq2K7ZiNmK2YQiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICLZgtin2YTYqCDZhNmF2YjYttmI2Lkg2KfZhNiq2K7ZiNmK2YQiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6IG51bGwsCiAgICAgICAgImZpbGVUZXh0IjogIiRpZHZpZFR5cGUgJGlkdmlkOiDZhdi12KfYr9mC2KkgJHN0YXR1cyIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICLZhdi12KfYr9mC2Kkg2KfZhNmH2YjZitipIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJhdXRoLWVtYWlsLXN1YmplY3QiLAogICAgICAgICJsYW5nQ29kZSI6ICJhcmEiLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTAyIiwKICAgICAgICAibmFtZSI6ICJNb2TDqGxlIHBvdXIgc3VqZXQgZGF1dG9yaXNhdGlvbiIsCiAgICAgICAgImRlc2NyaXB0aW9uIjogIk1vZMOobGUgcG91ciBzdWpldCBkYXV0b3Jpc2F0aW9uIiwKICAgICAgICAiZmlsZUZvcm1hdENvZGUiOiAidHh0IiwKICAgICAgICAibW9kZWwiOiBudWxsLAogICAgICAgICJmaWxlVGV4dCI6ICIkaWR2aWRUeXBlICRpZHZpZDogJHN0YXR1cyBkYXV0aGVudGlmaWNhdGlvbiIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJBdXRoZW50aWZpY2F0aW9uIElEIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJhdXRoLWVtYWlsLXN1YmplY3QiLAogICAgICAgICJsYW5nQ29kZSI6ICJmcmEiLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTAzIiwKICAgICAgICAibmFtZSI6ICJUZW1wbGF0ZSBmb3IgYXV0aG9yaXphdGlvbiBTTVMiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICJUZW1wbGF0ZSBmb3IgYXV0aG9yaXphdGlvbiBTTVMiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6IG51bGwsCiAgICAgICAgImZpbGVUZXh0IjogIllvdXIgQXV0aGVudGljYXRpb24gb2YgJGlkdmlkVHlwZSAkaWR2aWQgdXNpbmcgJGF1dGhUeXBlIG9uICRkYXRlIGF0ICR0aW1lIEhycyAkc3RhdHVzIGF0IGEgZGV2aWNlIGRlcGxveWVkIGJ5IE1PU0lQIFNlcnZpY2VzLiIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJJRCBBdXRoZW50aWNhdGlvbiIsCiAgICAgICAgInRlbXBsYXRlVHlwZUNvZGUiOiAiYXV0aC1zbXMiLAogICAgICAgICJsYW5nQ29kZSI6ICJlbmciLAogICAgICAgICJpc0FjdGl2ZSI6IHRydWUKICAgICAgfSwKICAgICAgewogICAgICAgICJpZCI6ICIxMTAzIiwKICAgICAgICAibmFtZSI6ICLZgtin2YTYqCDZhNix2LPYp9mE2Kkg2KfZhNiq2YHZiNmK2LYiLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICLZgtin2YTYqCDZhNix2LPYp9mE2Kkg2KfZhNiq2YHZiNmK2LYiLAogICAgICAgICJmaWxlRm9ybWF0Q29kZSI6ICJ0eHQiLAogICAgICAgICJtb2RlbCI6IG51bGwsCiAgICAgICAgImZpbGVUZXh0IjogItmF2LXYp9m_2YLYqtmDINi52YTZiSAkaWR2aWRUeXBlICRpZHZpZCDYqNin2LPYqtiu2K_Yp9mFICRhdXRoVHlwZSDZgdmKICRkYXRlINmB2YogJHRpbWUgSHJzICRzdGF0dXMg2LnZhNmJINis2YfYp9iyINiq2YUg2YbYtNix2Ycg2KjZiNin2LPYt9ipIFwi2K7Yr9mF2KfYqiBNT1NJUFwiLiIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICLZhdi12KfYr9mC2Kkg2KfZhNmH2YjZitipIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJhdXRoLXNtcyIsCiAgICAgICAgImxhbmdDb2RlIjogImFyYSIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9LAogICAgICB7CiAgICAgICAgImlkIjogIjExMDMiLAogICAgICAgICJuYW1lIjogIk1vZMOobGUgZGUgU01TIGRhdXRvcmlzYXRpb24iLAogICAgICAgICJkZXNjcmlwdGlvbiI6ICJNb2TDqGxlIGRlIFNNUyBkYXV0b3Jpc2F0aW9uIiwKICAgICAgICAiZmlsZUZvcm1hdENvZGUiOiAidHh0IiwKICAgICAgICAibW9kZWwiOiBudWxsLAogICAgICAgICJmaWxlVGV4dCI6ICJWb3RyZSBhdXRoZW50aWZpY2F0aW9uICRpZHZpZFR5cGUgJGlkdmlkIHV0aWxpc2FudCAkYXV0aFR5cGUgbGUgJGRhdGUgw6AgJHRpbWUgSHJzICRzdGF0dXMgc3VyIHVuIHDDqXJpcGjDqXJpcXVlIGTDqXBsb3nDqSBwYXIgXCJNT1NJUCBTZXJ2aWNlc1wiLiIsCiAgICAgICAgIm1vZHVsZUlkIjogIjEwMDA0IiwKICAgICAgICAibW9kdWxlTmFtZSI6ICJBdXRoZW50aWZpY2F0aW9uIElEIiwKICAgICAgICAidGVtcGxhdGVUeXBlQ29kZSI6ICJhdXRoLXNtcyIsCiAgICAgICAgImxhbmdDb2RlIjogImZyYSIsCiAgICAgICAgImlzQWN0aXZlIjogdHJ1ZQogICAgICB9CiAgICBdCiAgfSwKICAiZXJyb3JzIjogbnVsbAp9 - -#----------Security Properties - used in Internal Authentication Services by default Kernel Auth Adapter------------------ -# CSRF switch +## Security - used in Internal Authentication Services by default Kernel Auth Adapter mosip.security.csrf-enable=false - -# CORS switch mosip.security.cors-enable=false - -# Comma separated allowed origins mosip.security.origins=localhost:8080 - -# Secure cookie switch mosip.security.secure-cookie=false -#------------- Key-manager properties ------------------------- -# ROOT key identifier +## Key-manager mosip.root.key.applicationid=ROOT - -# Certificate signing algorithm mosip.kernel.certificate.sign.algorithm=SHA256withRSA -# Default certificate params +## Default certificate params mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER mosip.kernel.keymanager.certificate.default.organization=IITB mosip.kernel.keymanager.certificate.default.location=BANGALORE mosip.kernel.keymanager.certificate.default.state=KA mosip.kernel.keymanager.certificate.default.country=IN -# Zero Knowledge Master & Public Key identifier. +## Zero Knowledge Master & Public Key identifier. mosip.kernel.zkcrypto.masterkey.application.id=${application.id} mosip.kernel.zkcrypto.masterkey.reference.id=${identity-cache.reference.id} mosip.kernel.zkcrypto.publickey.application.id=${application.id} @@ -535,34 +454,26 @@ mosip.kernel.zkcrypto.publickey.reference.id=CRED_SERVICE mosip.kernel.zkcrypto.wrap.algorithm-name=AES/ECB/NoPadding mosip.kernel.zkcrypto.derive.encrypt.algorithm-name=AES/ECB/PKCS5Padding -# Application Id for PMS master key. +## Application Id for PMS master key. mosip.kernel.partner.sign.masterkey.application.id=PMS - -#---------------------------------kernel Salt Generator---------------------------------------------------# +## Kernel salt generator mosip.kernel.salt-generator.db.key-alias=javax.persistence.jdbc mosip.kernel.salt-generator.schemaName=${javax.persistence.jdbc.schema} -#----------------------------------------------------------------------------------------------------------# -#--------------------------------TokenId generator---------------------------------------------------# +## TokenId generator mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d -#----------------------------------------------------------------------------------------------------# -# Partner Management Service allowed partner domains +## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM -######################### IDA Key Generator configurations ############################# +## IDA key generator keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip.ida.database.port}/mosip_ida keymanager_database_username=${mosip.ida.database.user} -keymanager_database_password={cipher}0cb863a5b2ae03d3879cf34723cc2549d5e86679f197b57a307b1a0ac62bfc42 +keymanager_database_password=${db.dbuser.password} mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id} mosip.kernel.keymanager.autogen.basekeys.list=${application.id}:${internal.reference.id},${application.id}:${partner.reference.id},${application.id}:${partner.biometric.reference.id},${application.id}:${mosip.kernel.zkcrypto.publickey.reference.id},${application.id}:${ida-auth-partner-id} zkcrypto.random.key.generate.count=0 - keymanager.persistence.jdbc.schema=ida -######################################################################################### - - - From 16781f1f0992da0542d18bbf32227fc0a976d289 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 06:53:35 +0530 Subject: [PATCH 0065/1358] [MOSIP-14487] Complete overhaul --- partner-management-default.properties | 163 ++++++++++---------------- 1 file changed, 61 insertions(+), 102 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 18bf3e2399e..fb3b7e3ca81 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -1,25 +1,34 @@ -##################### Dynamic Properties ######################################## -# For PMS Database -mosip.pmp.database.hostname=postgres -mosip.pmp.database.port=80 +## Follow properites have their values assigned via 'overrides' environment variables of config server docker. +## DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +## helm chart: +## db.dbuser.password +## mosip.mosip.partner.client.secret +## mosip.mosip.pms.client.secret +## keycloak.host +## keycloak.admin.password +# mosip.api.public.url + +## Database +## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +## If database is external to production, provide the DNS or ip of the host and port +mosip.pmp.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser -mosip.pmp.database.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +mosip.pmp.database.password=${db.dbuser.password} -#### For Authenticate Device ######## -mosip.authdevice.database.hostname=postgres -mosip.authdevice.database.port=80 +## Auth device +mosip.authdevice.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.authdevice.database.port=5432 mosip.authdevice.database.user=authdeviceuser -mosip.authdevice.database.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +mosip.authdevice.database.password=${db.dbuser.password} -######### For Registration Device ########### -mosip.regdevice.database.hostname=postgres -mosip.regdevice.database.port=80 +## Reg device +mosip.regdevice.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.regdevice.database.port=5432 mosip.regdevice.database.user=regdeviceuser -mosip.regdevice.database.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +mosip.regdevice.database.password=${db.dbuser.password} - -######################## Spring and Hibernate Configurations #################### -# ***************** PMS DB Postgres Properties *********************** +## Hibernate javax.persistence.jdbc.driverClassName=org.postgresql.Driver javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.pmp.database.hostname}:${mosip.pmp.database.port}/mosip_pms @@ -30,7 +39,7 @@ javax.persistence.jdbc.schema = pms javax.persistence.jdbc.uinHashTable=uin_hash_salt javax.persistence.jdbc.uinEncryptTable=uin_encrypt_salt -## For Authenticate Device +## Hibernate Auth device mosip.datasource.authdevice.jdbc.driver=org.postgresql.Driver mosip.datasource.authdevice.jdbc.url = jdbc:postgresql://${mosip.authdevice.database.hostname}:${mosip.authdevice.database.port}/mosip_authdevice mosip.datasource.authdevice.jdbc.password = ${mosip.authdevice.database.password} @@ -38,7 +47,7 @@ mosip.datasource.authdevice.jdbc.user = ${mosip.authdevice.database.user} mosip.datasource.authdevice.jdbc.schema = authdevice mosip.datasource.authdevice.hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect -## For Registration Device +## Hibernate Reg device mosip.datasource.regdevice.jdbc.driver=org.postgresql.Driver mosip.datasource.regdevice.jdbc.url = jdbc:postgresql://${mosip.regdevice.database.hostname}:${mosip.regdevice.database.port}/mosip_regdevice mosip.datasource.regdevice.jdbc.password = ${mosip.regdevice.database.password} @@ -46,7 +55,6 @@ mosip.datasource.regdevice.jdbc.user = ${mosip.regdevice.database.user} mosip.datasource.regdevice.jdbc.schema = regdevice mosip.datasource.regdevice.hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect -# *********** Hibernate Properties ************* hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.hbm2ddl.auto=none @@ -59,91 +67,60 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false spring.datasource.initialization-mode=never -######################### Partner Management Application Configurations ############## -# Application ID of PMP -# Used to upload other domain certs +## Application ID of PMP. Used to upload other domain certs application.id=PARTNER - -# Application name of PMP application.name=partner -# To configure starting value or initial value of mispId. -# ex: if value = 3 ==> mispId starts from 100 -# if value = 4 ==> mispId starts from 1000 +## To configure starting value or initial value of mispId. +## ex: if value = 3 ==> mispId starts from 100 +## if value = 4 ==> mispId starts from 1000 mosip.kernel.mispid.length = 3 - -# To configure length of misp license key mosip.kernel.idgenerator.misp.license-key-length = 50 - -# To configure the partner types for which extractors are required. It should be "," separated. +## To configure the partner types for which extractors are required. It should be "," separated. pmp.bioextractors.required.partner.types = Credential_Partner,Online_Verification_Partner - -# To configure misp license validity duration mosip.pmp.misp.license.expiry.period.indays = 90 - -# To configure partner api key validity duration mosip.pmp.partner.policy.expiry.period.indays = 90 - -# To configure policy validity duration/period pmp.policy.expiry.period.indays = 180 - -# policy schema url where policy schemas published pmp.policy.schema.url= https://schemas.mosip.io/v1/auth-policy -# To configure what are the allowed policy types. -# If we add any new policy type, corresponding schema also needs to be added. -# format for adding schema configuration for new policy type is as below -# pmp.policyTypeName.policy.schema(all are in lowercase)= schema url +## To configure what are the allowed policy types. +## If we add any new policy type, corresponding schema also needs to be added. +## format for adding schema configuration for new policy type is as below +## pmp.policyTypeName.policy.schema(all are in lowercase)= schema url pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance - -# auth policy schema url pmp.auth.policy.schema = ${mosip.kernel.xsdstorage-uri}auth-policy-schema.json - -# datashare policy schema url pmp.datashare.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json - -# credentialissuance policy schema url pmp.credentialissuance.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json -# To configure email format of misp pmp.misp.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-z]{2,})$ - -# To configure email format of partner pmp.partner.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-z]{2,})$ - -# To configure length of partnerId pmp.partner.partnerId.max.length=36 -# Time difference between request creation and request processing +## Time difference between request creation and request processing masterdata.registerdevice.timestamp.validate=+5 -# Kernel audit Service -mosip.kernel.masterdata.audit-url=http://kernel-auditmanager-service/v1/auditmanager/audits - -# Kernel sign service -mosip.kernel.sign-url=http://kernel-keymanager-service/v1/keymanager/jwtSign +## Kernel services +mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits +mosip.kernel.sign-url=http://keymanager.kernel/v1/keymanager/jwtSign # ApplicationId for partner mosip.pmp.auth.appId =partner - # Kernel auth client ID for partner management services mosip.pmp.auth.clientId=mosip-partner-client - # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= {cipher}4e22fb7201d82324263ff4fb91035e9d0462dffd76184184d554db962cab0840 - +mosip.pmp.auth.secretKey= ${mosip.mosiop.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} -pms.cert.service.token.request.issuerUrl=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -pmp.ca.certificaticate.upload.rest.uri=http://kernel-keymanager-service/v1/keymanager/uploadCACertificate -pmp.partner.certificaticate.upload.rest.uri=http://kernel-keymanager-service/v1/keymanager/uploadPartnerCertificate -pmp.partner.certificaticate.get.rest.uri=http://kernel-keymanager-service/v1/keymanager/getPartnerCertificate/{partnerCertId} -pmp-keymanager.upload.other.domain.cert.rest.uri=http://kernel-keymanager-service/v1/keymanager/uploadOtherDomainCertificate +pms.cert.service.token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +pmp.ca.certificaticate.upload.rest.uri=http://keymanager.kernel/v1/keymanager/uploadCACertificate +pmp.partner.certificaticate.upload.rest.uri=http://keymanager.kernel/v1/keymanager/uploadPartnerCertificate +pmp.partner.certificaticate.get.rest.uri=http://keymanager.kernel/v1/keymanager/getPartnerCertificate/{partnerCertId} +pmp-keymanager.upload.other.domain.cert.rest.uri=http://keymanager.kernel/v1/keymanager/uploadOtherDomainCertificate -###################KeyCloak configuration ################################### +## Keycloak # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.base-url=http://keycloak +mosip.iam.base-url=${keycloak.host} mosip.iam.realm.operations.base-url = ${mosip.iam.base-url}/auth/admin/realms/{realmId} mosip.iam.admin-url =${mosip.iam.base-url}/auth/admin/ mosip.iam.admin-realm-id =admin @@ -155,57 +132,39 @@ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli mosip.keycloak.admin.user.id=admin -mosip.keycloak.admin.secret.key={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +mosip.keycloak.admin.secret.key=${keycloak.admin.password} -#------------------------Auth-Adapter----------------------------------------------- -auth.server.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken -auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken +## Auth adapter +auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -##############Security properties ######################## -#CSRF switch +## Security mosip.security.csrf-enable:false -#secure cookie switch mosip.security.secure-cookie:false -#Max rows to be returned after filter partner.search.maximum.rows=10 -#Allowed credential types which partner can map against to policy +## Allowed credential types which partner can map against to policy pmp.allowed.credential.types=auth,qrcode,euin,reprint -#Allowed partner types who can map policies to credential types +## Allowed partner types who can map policies to credential types policy.credential.type.mapping.allowed.partner.types=Credential_Partner,Online_Verification_Partner -#Allowed kyc attributes -#Used to display in UI +## Allowed kyc attributes. Used to display in UI policy.allowed.kyc.attributes = {"fullName": "Full Name","middleName": "Middle Name","lastName": "Last Name","dateOfBirth": "DateOfBirth","gender": "Gender","phone": "phone"} -#Used to display in UI +## Used to display in UI policy.auth.allowed.token.types=random,partner,policy # IAM -# mosipbox.public.url is Ansible defined mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret={cipher}4e22fb7201d82324263ff4fb91035e9d0462dffd76184184d554db962cab0840 -mosip.iam.module.redirecturi=${mosipbox.public.url}/v1/partnermanager/login-redirect/ +mosip.iam.module.clientsecret=${mosip.api.public.url} +mosip.iam.module.redirecturi=${mosip.api.public.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${mosipbox.public.url}/keycloak/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.kernel.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${mosipbox.public.url}/keycloak/auth/realms/mosip/protocol/openid-connect/token - -###############Not used properties################### -pmp.policy.allowed.authtokens.types=random,partner,policy -mosip.kernel.device.search-url=http://kernel-masterdata-service/v1/masterdata/devices/search -token.request.appid=admin -token.request.password=mosip -token.request.username=110005 -token.request.version=string -token.request.id=v1 -token.request.issuerUrl=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -token.request.clientId=admin -PASSWORDBASEDTOKENAPI=http://kernel-auth-service/v1/authmanager/authenticate/useridPwd -application.env.local=false +mosip.iam.token_endpoint=${kecloak.host}/auth/realms/mosip/protocol/openid-connect/token From ca549ad9f8e053eb0b05082ac605d0a55dfc353a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 07:27:10 +0530 Subject: [PATCH 0066/1358] [MOSIP-14487] Unused properties added back as code was crashing. --- partner-management-default.properties | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index fb3b7e3ca81..39a66adb35d 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -168,3 +168,16 @@ mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/ope mosip.iam.module.admin_realm_id=mosip mosip.kernel.filtervalue.max_columns =100 mosip.iam.token_endpoint=${kecloak.host}/auth/realms/mosip/protocol/openid-connect/token + +## Unused properties. TODO: delete them once they are removed from code +pmp.policy.allowed.authtokens.types=random,partner,policy +mosip.kernel.device.search-url=http://masterdata.kernel/v1/masterdata/devices/search +token.request.appid=admin +token.request.password=mosip +token.request.username=110005 +token.request.version=string +token.request.id=v1 +token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +token.request.clientId=admin +PASSWORDBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/useridPwd +application.env.local=false From d8f77f751f4e12743ac954de02115f6649c00652 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 09:03:50 +0530 Subject: [PATCH 0067/1358] [MOSIP-14287] Unused properties marked. --- id-authentication-default.properties | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 8026a6ec386..874c9e1bfa6 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -422,12 +422,10 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.keystore-pass=1234 ## Titles/Templates master data stored as configuration ---------- -## These are static IDA-Specific Master Data (base-64 encoded) - for fra and ara languages. -## For any other language please update the respective properties. -## Titles template used in Name Normalizatoin in Demographic authentication -maste.data.titles=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 +## UNUSED. TODO: remove them later +maste.data.titles= # SMS and Email templates for OTP notification and Authentication notification -master.data.ida-templates=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 +master.data.ida-templates= ## Security - used in Internal Authentication Services by default Kernel Auth Adapter mosip.security.csrf-enable=false From 737526cd217becd8f342b4ce7ad5a8134a1df790 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 09:45:46 +0530 Subject: [PATCH 0068/1358] Property corrected --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 39a66adb35d..71feccaaaef 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -167,7 +167,7 @@ mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.kernel.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${kecloak.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy From b1eda7ef200b3ca925457d31e169a07a118e5ef0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 10:01:23 +0530 Subject: [PATCH 0069/1358] [MOSIP-11894] Minor cleanup. --- CredentialType.json | 2 +- auth-policy-schema.json | 116 ++++++------ data-share-policy-schema.json | 242 ++++++++++++------------ id-authentication-mapping.json | 118 ++++++------ idobject-document-category-mapping.json | 76 ++++---- mosip-vid-policy-schema.json | 120 ++++++------ mosip-vid-policy.json | 6 +- 7 files changed, 340 insertions(+), 340 deletions(-) diff --git a/CredentialType.json b/CredentialType.json index 8c53a1a37f2..cdf19f9654f 100644 --- a/CredentialType.json +++ b/CredentialType.json @@ -1,6 +1,6 @@ { - "types": + "types": [ { "id" : "idtype1", diff --git a/auth-policy-schema.json b/auth-policy-schema.json index 8b4f2951219..ef345a8cbdf 100644 --- a/auth-policy-schema.json +++ b/auth-policy-schema.json @@ -1,59 +1,59 @@ { - "$schema": "http://json-schema.org/draft-04/schema#", - "type": "object", - "properties": { - "allowedKycAttributes":{ - "type":"array", - "additionalItems": false, - "items": - { - "type":"object", - "properties":{ - "attributeName":{ - "type":"string" - } - }, - "required":[ - "attributeName" - ], - "additionalProperties": false - } - - }, - "allowedAuthTypes":{ - "type":"array", - "additionalItems": false, - "items": - { - "type":"object", - "properties":{ - "authType":{ - "type":"string" - }, - "authSubType":{ - "type":"string" - }, - "mandatory":{ - "type":"boolean" - } - }, - "required":[ - "authType", - "mandatory" - ], - "additionalProperties": false - } - - }, - "authTokenType":{ - "type":"string", - "enum":["random","partner","policy"] - } - }, - "required":[ - "authTokenType", - "allowedAuthTypes", - "allowedKycAttributes" - ], - "additionalProperties": false -} \ No newline at end of file + "$schema": "http://json-schema.org/draft-04/schema#", + "type": "object", + "properties": { + "allowedKycAttributes":{ + "type":"array", + "additionalItems": false, + "items": + { + "type":"object", + "properties":{ + "attributeName":{ + "type":"string" + } + }, + "required":[ + "attributeName" + ], + "additionalProperties": false + } + + }, + "allowedAuthTypes":{ + "type":"array", + "additionalItems": false, + "items": + { + "type":"object", + "properties":{ + "authType":{ + "type":"string" + }, + "authSubType":{ + "type":"string" + }, + "mandatory":{ + "type":"boolean" + } + }, + "required":[ + "authType", + "mandatory" + ], + "additionalProperties": false + } + + }, + "authTokenType":{ + "type":"string", + "enum":["random","partner","policy"] + } + }, + "required":[ + "authTokenType", + "allowedAuthTypes", + "allowedKycAttributes" + ], + "additionalProperties": false +} diff --git a/data-share-policy-schema.json b/data-share-policy-schema.json index 0250effde67..c566502991b 100644 --- a/data-share-policy-schema.json +++ b/data-share-policy-schema.json @@ -1,123 +1,123 @@ { - "$schema": "http://json-schema.org/draft-04/schema#", - "type": "object", - "properties": { - "dataSharePolicies": { - "type": "object", - "properties": { - "typeOfShare": { - "type": "string", - "enum":["Data Share","direct"] - }, - "validForInMinutes": { - "type": "string" - }, - "transactionsAllowed": { - "type": "string" - }, - "encryptionType": { - "type": "string", - "enum":["Partner Based","none"] - }, - "shareDomain": { - "type": "string" - }, - "source": { - "type": "string" - } - }, - "required": [ - "typeOfShare", - "validForInMinutes", - "transactionsAllowed", - "encryptionType", - "shareDomain", - "source" - ] - }, - "shareableAttributes": { - "type": "array", - "additionalItems": false, - "items": { - "type": "object", - "properties": { - "attributeName": { - "type": "string" - }, - "group": { - "type": "string" - }, - "source": { - "type": "array", - "items": { - "type": "object", - "properties": { - "attribute": { - "type": "string" - }, - "filter": { - "type": "array", - "items": [{ - "type": "object", - "properties": { - "type": { - "type": "string" - } - } - }, - { - "type": "object", - "properties": { - "type": { - "type": "string" - }, - "subType": { - "type": "array", - "items": [{ - "type": "string" - }, - { - "type": "string" - } - ] - } - } - }, - { - "type": "object", - "properties": { - "language": { - "type": "string" - } - } - } - ] - } - }, - "required": [ - "attribute" - ] - } - }, - "encrypted": { - "type": "boolean" - }, - "format": { - "type": "string" - } - }, - "required": [ - "attributeName", - "source", - "encrypted" - ], - "additionalProperties": false - } - } - }, - "required": [ - "dataSharePolicies", - "shareableAttributes" - ], - "additionalProperties": false + "$schema": "http://json-schema.org/draft-04/schema#", + "type": "object", + "properties": { + "dataSharePolicies": { + "type": "object", + "properties": { + "typeOfShare": { + "type": "string", + "enum":["Data Share","direct"] + }, + "validForInMinutes": { + "type": "string" + }, + "transactionsAllowed": { + "type": "string" + }, + "encryptionType": { + "type": "string", + "enum":["Partner Based","none"] + }, + "shareDomain": { + "type": "string" + }, + "source": { + "type": "string" + } + }, + "required": [ + "typeOfShare", + "validForInMinutes", + "transactionsAllowed", + "encryptionType", + "shareDomain", + "source" + ] + }, + "shareableAttributes": { + "type": "array", + "additionalItems": false, + "items": { + "type": "object", + "properties": { + "attributeName": { + "type": "string" + }, + "group": { + "type": "string" + }, + "source": { + "type": "array", + "items": { + "type": "object", + "properties": { + "attribute": { + "type": "string" + }, + "filter": { + "type": "array", + "items": [{ + "type": "object", + "properties": { + "type": { + "type": "string" + } + } + }, + { + "type": "object", + "properties": { + "type": { + "type": "string" + }, + "subType": { + "type": "array", + "items": [{ + "type": "string" + }, + { + "type": "string" + } + ] + } + } + }, + { + "type": "object", + "properties": { + "language": { + "type": "string" + } + } + } + ] + } + }, + "required": [ + "attribute" + ] + } + }, + "encrypted": { + "type": "boolean" + }, + "format": { + "type": "string" + } + }, + "required": [ + "attributeName", + "source", + "encrypted" + ], + "additionalProperties": false + } + } + }, + "required": [ + "dataSharePolicies", + "shareableAttributes" + ], + "additionalProperties": false } diff --git a/id-authentication-mapping.json b/id-authentication-mapping.json index 9d6bd5e00dd..33818b75f91 100644 --- a/id-authentication-mapping.json +++ b/id-authentication-mapping.json @@ -1,61 +1,61 @@ { - "ida-mapping": { - "name": [ - "fullName" - ], - "dob": [ - "dateOfBirth" - ], - "age": [ - "dateOfBirth" - ], - "gender": [ - "gender" - ], - "phoneNumber": [ - "phone" - ], - "emailId": [ - "email" - ], - "addressLine1": [ - "addressLine1" - ], - "addressLine2": [ - "addressLine2" - ], - "addressLine3": [ - "addressLine3" - ], - "location1": [ - "city" - ], - "location2": [ - "region" - ], - "location3": [ - "province" - ], - "postalCode": [ - "postalCode" - ], - "fullAddress": [ - "addressLine1", - "addressLine2", - "addressLine3", - "city", - "region", - "province", - "postalCode" - ], - "iris": [ - "CBEFF" - ], - "fingerprint": [ - "CBEFF" - ], - "face": [ - "CBEFF" - ] - } + "ida-mapping": { + "name": [ + "fullName" + ], + "dob": [ + "dateOfBirth" + ], + "age": [ + "dateOfBirth" + ], + "gender": [ + "gender" + ], + "phoneNumber": [ + "phone" + ], + "emailId": [ + "email" + ], + "addressLine1": [ + "addressLine1" + ], + "addressLine2": [ + "addressLine2" + ], + "addressLine3": [ + "addressLine3" + ], + "location1": [ + "city" + ], + "location2": [ + "region" + ], + "location3": [ + "province" + ], + "postalCode": [ + "postalCode" + ], + "fullAddress": [ + "addressLine1", + "addressLine2", + "addressLine3", + "city", + "region", + "province", + "postalCode" + ], + "iris": [ + "CBEFF" + ], + "fingerprint": [ + "CBEFF" + ], + "face": [ + "CBEFF" + ] + } } diff --git a/idobject-document-category-mapping.json b/idobject-document-category-mapping.json index 7fe51d2796c..0162586552d 100644 --- a/idobject-document-category-mapping.json +++ b/idobject-document-category-mapping.json @@ -1,40 +1,40 @@ { - "identity": { - "fullName": { - "documentCategory": "proofOfIdentity" - }, - "parentOrGuardianRID": { - "documentCategory" : "proofOfRelationship" - }, - "parentOrGuardianUIN": { - "documentCategory" : "proofOfRelationship" - }, - "age": { - "documentCategory" : "proofOfIdentity" - }, - "addressLine1": { - "documentCategory" : "proofOfAddress" - }, - "addressLine2": { - "documentCategory" : "proofOfAddress" - }, - "addressLine3": { - "documentCategory" : "proofOfAddress" - }, - "region": { - "documentCategory" : "proofOfAddress" - }, - "province": { - "documentCategory" : "proofOfAddress" - }, - "postalCode": { - "documentCategory" : "proofOfAddress" - }, - "localAdministrativeAuthority": { - "documentCategory" : "proofOfAddress" - }, - "city": { - "documentCategory" : "proofOfAddress" - } - } + "identity": { + "fullName": { + "documentCategory": "proofOfIdentity" + }, + "parentOrGuardianRID": { + "documentCategory" : "proofOfRelationship" + }, + "parentOrGuardianUIN": { + "documentCategory" : "proofOfRelationship" + }, + "age": { + "documentCategory" : "proofOfIdentity" + }, + "addressLine1": { + "documentCategory" : "proofOfAddress" + }, + "addressLine2": { + "documentCategory" : "proofOfAddress" + }, + "addressLine3": { + "documentCategory" : "proofOfAddress" + }, + "region": { + "documentCategory" : "proofOfAddress" + }, + "province": { + "documentCategory" : "proofOfAddress" + }, + "postalCode": { + "documentCategory" : "proofOfAddress" + }, + "localAdministrativeAuthority": { + "documentCategory" : "proofOfAddress" + }, + "city": { + "documentCategory" : "proofOfAddress" + } + } } diff --git a/mosip-vid-policy-schema.json b/mosip-vid-policy-schema.json index be704a33b37..f34aa0ed573 100644 --- a/mosip-vid-policy-schema.json +++ b/mosip-vid-policy-schema.json @@ -1,61 +1,61 @@ { - "$id": "http://mosip.io/vid_policy_object/1.0/vid_policy_object.json", - "$schema": "http://json-schema.org/draft-07/schema#", - "title": "VID Policy schema", - "description": "MOSIP VID Policy schema", - "type": "object", - "additionalProperties": false, - "properties": { - "vidPolicies": { - "title": "vidPolicies", - "description": "This schema holds all the VID policies configured for a country", - "type": "array", - "additionalItems": false, - "uniqueItems": true, - "items": { - "type": "object", - "required": [ - "vidType", - "vidPolicy" - ], - "additionalProperties": false, - "properties": { - "vidType": { - "type": "string", - "pattern": "^(Perpetual|Temporary)$" - }, - "vidPolicy": { - "$ref": "#/definitions/vidPolicyType" - } - } - } - } - }, - "definitions": { - "vidPolicyType": { - "type": "object", - "properties": { - "validForInMinutes": { - "type": ["integer", "null"] - }, - "transactionsAllowed": { - "type": ["integer", "null"], - "minimum": 1, - "maximum": 1 - }, - "instancesAllowed": { - "type": "integer", - "minimum": 1 - }, - "autoRestoreAllowed": { - "type": "boolean" - }, - "restoreOnAction": { - "type": "string", - "pattern": "^(REVOKE|REGENERATE)$" - } - }, - "additionalProperties": false - } - } -} \ No newline at end of file + "$id": "http://mosip.io/vid_policy_object/1.0/vid_policy_object.json", + "$schema": "http://json-schema.org/draft-07/schema#", + "title": "VID Policy schema", + "description": "MOSIP VID Policy schema", + "type": "object", + "additionalProperties": false, + "properties": { + "vidPolicies": { + "title": "vidPolicies", + "description": "This schema holds all the VID policies configured for a country", + "type": "array", + "additionalItems": false, + "uniqueItems": true, + "items": { + "type": "object", + "required": [ + "vidType", + "vidPolicy" + ], + "additionalProperties": false, + "properties": { + "vidType": { + "type": "string", + "pattern": "^(Perpetual|Temporary)$" + }, + "vidPolicy": { + "$ref": "#/definitions/vidPolicyType" + } + } + } + } + }, + "definitions": { + "vidPolicyType": { + "type": "object", + "properties": { + "validForInMinutes": { + "type": ["integer", "null"] + }, + "transactionsAllowed": { + "type": ["integer", "null"], + "minimum": 1, + "maximum": 1 + }, + "instancesAllowed": { + "type": "integer", + "minimum": 1 + }, + "autoRestoreAllowed": { + "type": "boolean" + }, + "restoreOnAction": { + "type": "string", + "pattern": "^(REVOKE|REGENERATE)$" + } + }, + "additionalProperties": false + } + } +} diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index 52f84074dc6..262cd99f55d 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -6,8 +6,8 @@ "validForInMinutes": null, "transactionsAllowed": null, "instancesAllowed": 1, - "autoRestoreAllowed": true, - "restoreOnAction": "REVOKED" + "autoRestoreAllowed": true, + "restoreOnAction": "REVOKED" } }, { @@ -17,7 +17,7 @@ "transactionsAllowed": 1, "instancesAllowed": 5, "autoRestoreAllowed": false, - "restoreOnAction": "REGENERATE" + "restoreOnAction": "REGENERATE" } } ] From 2554e1726d4368c0bcbd713e32fb2051d394ec31 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 10:19:26 +0530 Subject: [PATCH 0070/1358] [MOSIP-14492] Idrepo properties updated. --- id-repository-default.properties | 143 +++++++++++++------------------ 1 file changed, 60 insertions(+), 83 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 1c76f167437..028116f05d3 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -1,23 +1,29 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# mosip.mosip.creqreq.client.secret +# mosip.mosip.creser.client.secret +# keycloak.host + management.endpoint.restart.enabled=true -#----------------------------------ID Repo dynamic properties----------------------------------------------# -mosip.idrepo.db.url=postgres -mosip.idrepo.db.port=80 +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.idrepo.db.url=postgres-postgresql.postgres.svc.cluster.local +mosip.idrepo.db.port=5432 mosip.idrepo.db.identity.db-name=mosip_idrepo mosip.idrepo.db.identity.username=idrepouser -mosip.idrepo.db.identity.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +mosip.idrepo.db.identity.password=${db.dbuser.password} mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser -mosip.idrepo.db.vid.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo mosip.idrepo.objectstore.bucket-name=idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter -#----------------------------------ID Repo Service---------------------------------------------------------# - -# Application name using for auditing +# For auditing mosip.idrepo.application.name=ID-Repository -# Application version validation in ID-Repo requests mosip.idrepo.application.version.pattern=^v\\d+(\\.\\d+)?$ # Modulo value used to evaluate expression (UIN % modulo) used to get the salt from salt table mosip.idrepo.modulo-value=1000 @@ -30,7 +36,7 @@ mosip.idrepo.crypto.refId.uin-data=identity_data mosip.idrepo.crypto.refId.demo-doc-data=demographic_data mosip.idrepo.crypto.refId.bio-doc-data=biometric_data -#---------------------------Kernel Retry Configurations----------------------------------------------------# +## Kernel retry # The retry limit excluding the first attempt before attempting for retries. Default is set to 5. kernel.retry.attempts.limit=5 # The initial interval to be used for exponential backoff in milli seconds. If the exponential backoff is disabled by setting 'kernel.retry.exponential.backoff.multiplier' value as 1, this initial interval will be used as the fixed backoff interval for every retries. Default value is 200 millisecs @@ -45,43 +51,34 @@ kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRet #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= -#----------------------------------ID Repo Identity Service------------------------------------------------# - +## Identity service # Application version expected in the request mosip.idrepo.identity.application.version=v1 - # Application ids expected in the requests mosip.idrepo.identity.id.create=mosip.id.create mosip.idrepo.identity.id.read=mosip.id.read mosip.idrepo.identity.id.update=mosip.id.update - #database mappings for identity service mosip.idrepo.identity.db.url=jdbc:postgresql://${mosip.idrepo.db.url}:${mosip.idrepo.db.port}/${mosip.idrepo.db.identity.db-name} mosip.idrepo.identity.db.username=${mosip.idrepo.db.identity.username} mosip.idrepo.identity.db.password=${mosip.idrepo.db.identity.password} mosip.idrepo.identity.db.driverClassName=org.postgresql.Driver - # Path of UIN expected in the input idrepo request. This path is based on Identity schema. mosip.idrepo.identity.json.path=identity.UIN - # UIN status value which is stored in database for newly inserted UIN/active UINs. mosip.idrepo.identity.uin-status.registered=ACTIVATED - # List of allowed UIN status in ID-Repo mosip.idrepo.identity.uin-status=ACTIVATED,BLOCKED,DEACTIVATED - # Types allowed in retreiveIdentity requests mosip.idrepo.identity.allowedTypes=bio,demo,all -#-----------------------ID Repo Identity Service - idobjectvalidator---------------------------------------# - +# idobjectvalidator # Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator -#----------------------------------ID Repo VID Service-----------------------------------------------------# +# VID # Application version expected in the request mosip.idrepo.vid.application.version=v1 - # Application ids expected in the requests mosip.idrepo.vid.id.create=mosip.vid.create mosip.idrepo.vid.id.read=mosip.vid.read @@ -89,122 +86,110 @@ mosip.idrepo.vid.id.update=mosip.vid.update mosip.idrepo.vid.id.regenerate=mosip.vid.regenerate mosip.idrepo.vid.id.reactivate=mosip.vid.reactivate mosip.idrepo.vid.id.deactivate=mosip.vid.deactivate - # Database mapping for VID service mosip.idrepo.vid.db.url=jdbc:postgresql://${mosip.idrepo.db.url}:${mosip.idrepo.db.port}/${mosip.idrepo.db.vid.db-name} mosip.idrepo.vid.db.username=${mosip.idrepo.db.vid.username} mosip.idrepo.vid.db.password=${mosip.idrepo.db.vid.password} mosip.idrepo.vid.db.driverClassName=org.postgresql.Driver - # VID status value which is stored in database for newly inserted VID/active VIDs. mosip.idrepo.vid.active-status=ACTIVE - # VID status for which unlimited txn is not allowed mosip.idrepo.vid.unlimited-txn-status=USED - # VID status which are allowed for VID regeneration mosip.idrepo.vid.regenerate.allowed-status=ACTIVE,REVOKED,EXPIRED,USED - # List of allowed VID status in ID-Repo mosip.idrepo.vid.allowedstatus=ACTIVE,REVOKED,EXPIRED,USED,INVALIDATED,DEACTIVATED - # VID status value which is stored in database for deactivated VIDs. Used in deactivate-all-vids api. mosip.idrepo.vid.deactive-status=DEACTIVATED - # VID status value which is stored in database for reactivated VIDs. Used in reactivate-all-vids api. mosip.idrepo.vid.reactive-status=ACTIVE # Config server url mosip.idrepo.mosip-config-url=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ - # VID policy schema against which VID policy is validated mosip.idrepo.vid.policy-schema-url=${mosip.idrepo.mosip-config-url}mosip-vid-policy-schema.json - # VID policy based on which VID is created mosip.idrepo.vid.policy-file-url=${mosip.idrepo.mosip-config-url}mosip-vid-policy.json -#----------------------------------REST-services ----------------------------------------------------------# -mosip.idrepo.audit.rest.uri=http://kernel-auditmanager-service/v1/auditmanager/audits +## Rest servies +mosip.idrepo.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST mosip.idrepo.audit.rest.headers.mediaType=application/json -mosip.idrepo.encryptor.rest.uri=http://kernel-keymanager-service/v1/keymanager/encrypt +mosip.idrepo.encryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/encrypt mosip.idrepo.encryptor.rest.httpMethod=POST mosip.idrepo.encryptor.rest.headers.mediaType=application/json mosip.idrepo.encryptor.rest.timeout=100 -mosip.idrepo.decryptor.rest.uri=http://kernel-keymanager-service/v1/keymanager/decrypt +mosip.idrepo.decryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/decrypt mosip.idrepo.decryptor.rest.httpMethod=POST mosip.idrepo.decryptor.rest.headers.mediaType=application/json mosip.idrepo.decryptor.rest.timeout=100 -mosip.idrepo.vid-service.rest.uri=http://idrepo-vid-service/idrepository/v1/vid/uin/{uin} +mosip.idrepo.vid-service.rest.uri=http://vid.idrepo/idrepository/v1/vid/uin/{uin} mosip.idrepo.vid-service.rest.httpMethod=GET mosip.idrepo.vid-service.rest.headers.mediaType=application/json mosip.idrepo.vid-service.rest.timeout=100 -mosip.idrepo.retrieve-uin-by-vid.rest.uri=http://idrepo-vid-service/idrepository/v1/vid/{vid} +mosip.idrepo.retrieve-uin-by-vid.rest.uri=http://vid.idrepo/idrepository/v1/vid/{vid} mosip.idrepo.retrieve-uin-by-vid.rest.httpMethod=GET mosip.idrepo.retrieve-uin-by-vid.rest.headers.mediaType=application/json mosip.idrepo.retrieve-uin-by-vid.rest.timeout=100 -mosip.idrepo.bio-extractor-service.rest.uri=http://idrepo-bioextractor-service/v1/bioextractor/{extractionFormat}/extracttemplates +mosip.idrepo.bio-extractor-service.rest.uri=http://bioextractor.idrepo/v1/bioextractor/{extractionFormat}/extracttemplates mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json mosip.idrepo.bio-extractor-service.rest.timeout=100 -mosip.idrepo.syncdata-service.rest.uri=http://kernel-masterdata-service/v1/masterdata/idschema/latest +mosip.idrepo.syncdata-service.rest.uri=http://masterdata.kernel/v1/masterdata/idschema/latest mosip.idrepo.syncdata-service.rest.httpMethod=GET mosip.idrepo.syncdata-service.rest.headers.mediaType=application/json mosip.idrepo.syncdata-service.rest.timeout=100 -mosip.idrepo.pmp.partner.rest.uri=http://pms-partner-manager-service/v1/partnermanager/partners?partnerType=Online_Verification_Partner +mosip.idrepo.pmp.partner.rest.uri=http://pms-partner.pms/v1/partnermanager/partners?partnerType=Online_Verification_Partner mosip.idrepo.pmp.partner.rest.httpMethod=GET mosip.idrepo.pmp.partner.rest.headers.mediaType=application/json mosip.idrepo.pmp.partner.rest.timeout=10 -mosip.idrepo.credential.request.rest.uri=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator +mosip.idrepo.credential.request.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator mosip.idrepo.credential.request.rest.httpMethod=POST mosip.idrepo.credential.request.rest.headers.mediaType=application/json mosip.idrepo.credential.request.rest.timeout=10 -mosip.idrepo.retrieve-by-uin.rest.uri=http://idrepo-identity-service/idrepository/v1/identity/idvid/{uin} +mosip.idrepo.retrieve-by-uin.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json mosip.idrepo.retrieve-by-uin.rest.timeout=100 -mosip.idrepo.vid-generator.rest.uri=http://kernel-idgenerator-service/v1/idgenerator/vid +mosip.idrepo.vid-generator.rest.uri=http://idgenerator.kernel/v1/idgenerator/vid mosip.idrepo.vid-generator.rest.httpMethod=GET mosip.idrepo.vid-generator.rest.headers.mediaType=application/json mosip.idrepo.vid-generator.rest.timeout=100 -#--------------------------Credential-Request-Generator properties-----------------------------------# - -#database mappings Credential-Request-Generator -mosip.credential.service.database.hostname=postgres -mosip.credential.service.database.port=80 +## Credential request generator +mosip.credential.service.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.credential.service.database.port=5432 mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.database.hostname}:${mosip.credential.service.database.port}/mosip_credential?currentSchema=credential mosip.credential.service.jdbc.user=credentialuser -mosip.credential.service.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +mosip.credential.service.jdbc.password=${db.dbuser.password} mosip.credential.service.jdbc.driver=org.postgresql.Driver hibernate.hbm2ddl.auto=update hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.show_sql=false - -#Token generator properties Credential request generator +# Token generator properties credential.request.token.request.appid=crereq credential.request.token.request.clientId=mosip-crereq-client -credential.request.token.request.secretKey={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +credential.request.token.request.secretKey=${mosip.mosip.creqreq.client.secret} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator -credential.request.token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip +credential.request.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip mosip.credential.request.service.id=mosip.credential.request.generator mosip.credential.request.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.request.service.version=1.0 -#---------------Batch job properties----------------------------------# -#batch job time intervel in miliseconds +## Batch job +# batch job time intervel in miliseconds mosip.credential.request.job.timedelay=1 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 @@ -220,11 +205,12 @@ credential.batch.chunk.size=10 credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 -#----------------------------------REST-services ----------------------------------------------------------# -CRDENTIALSERVICE=http://idrepo-credential-service/v1/credentialservice/issue -KEYBASEDTOKENAPI=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -CALLBACKURL=${mosipbox.public.url}/v1/credentialrequest/callback/notifyStatus -#-----Websub configurations------ +## Rest services +CRDENTIALSERVICE=http://credential.idrepo/v1/credentialservice/issue +KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +CALLBACKURL=http://credential.idrepo/v1/credentialrequest/callback/notifyStatus + +# Websub #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscription-delay-secs=120000 # The time interval in seconds to schedule subscription of topics which is done as a @@ -235,17 +221,12 @@ subscription-delay-secs=120000 resubscription-delay-secs=7200 WEBSUBSECRET=test -#--------------------------Credential-Request-Generator properties ends-----------------------------------# - -#--------------------------Credential-Service properties--------------------------------------------------# - -#Token generator properties Credential Service +# Credential service credential.service.token.request.appid=creser credential.service.token.request.clientId=mosip-creser-client -credential.service.token.request.secretKey={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +credential.service.token.request.secretKey=${mosip.mosip.creser.client.secret} credential.service.token.request.id=io.mosip.credentialstore - -#Credential formatter properties Credential Service +# Credential formatter properties mosip.credential.vc.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss'Z' mosip.credential.service.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.service.service.id=mosip.credential.store @@ -270,21 +251,19 @@ mosip.credential.service.includePayload=false mosip.credential.service.share.prependThumbprint=true mosip.credential.service.retry.maxAttempts=3 mosip.credential.service.retry.maxDelay=100 -#----------------------------------REST-services ----------------------------------------------------------# -IDREPOGETIDBYID=http://idrepo-identity-service/idrepository/v1/identity/idvid + +IDREPOGETIDBYID=http://identity.idrepo/idrepository/v1/identity/idvid mosip.data.share.protocol=http CREATEDATASHARE=/v1/datashare/create -KEYBASEDTOKENAPI=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -KEYMANAGER_JWTSIGN=http://kernel-keymanager-service/v1/keymanager/jwtSign -KEYMANAGER_ENCRYPT_PIN=http://kernel-keymanager-service/v1/keymanager/encryptWithPin -KEYMANAGER_ENCRYPT_ZK=http://kernel-keymanager-service/v1/keymanager/zkEncrypt -PARTNER_POLICY=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -PARTNER_EXTRACTION_POLICY=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} -credential.service.token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip - -#--------------------------Credential-Service properties ends--------------------------------------------------# - -#--------------------------Bio SDK Integration - Bio extractor Service ----------------------------------------# +KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign +KEYMANAGER_ENCRYPT_PIN=http://keymanager.keymanager/v1/keymanager/encryptWithPin +KEYMANAGER_ENCRYPT_ZK=http://keymanager.keymanager/v1/keymanager/zkEncrypt +PARTNER_POLICY=http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +PARTNER_EXTRACTION_POLICY=http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} +credential.service.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip + +# BioSDK service mosip.biosdk.default.host=http://13.233.66.241 mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service @@ -313,14 +292,12 @@ mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0 mosip.biometric.sdk.provider.face.version=0.9 mosip.biometric.sdk.provider.face.format.url.mock-1.1=${mosip.biosdk.default.service.url} -#------ # Credential issuance Event properties id-repo-ida-event-type-namespace=mosip id-repo-ida-event-type-name=ida id-repo-ida-credential-type=auth id-repo-ida-credential-recepiant=IDA ------------ # Kernel token ID generator properties mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d From d788508142f1ca5f51afbe43b11e7e4a498b412c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 11:25:04 +0530 Subject: [PATCH 0071/1358] Kernel salt property added. --- id-authentication-default.properties | 6 ++++-- id-repository-default.properties | 7 +++++-- 2 files changed, 9 insertions(+), 4 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 874c9e1bfa6..6694c6f5f65 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -9,6 +9,8 @@ # ida.websub.partner.service.callback.secret # ida.websub.ca.certificate.callback.secret # ida.websub.hotlist.callback.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt ## Client mosip.ida.auth.clientId=mosip-ida-client @@ -460,8 +462,8 @@ mosip.kernel.salt-generator.db.key-alias=javax.persistence.jdbc mosip.kernel.salt-generator.schemaName=${javax.persistence.jdbc.schema} ## TokenId generator -mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf -mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d +mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM diff --git a/id-repository-default.properties b/id-repository-default.properties index 028116f05d3..9927265fd0a 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -5,6 +5,8 @@ # mosip.mosip.creqreq.client.secret # mosip.mosip.creser.client.secret # keycloak.host +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt management.endpoint.restart.enabled=true @@ -299,5 +301,6 @@ id-repo-ida-credential-type=auth id-repo-ida-credential-recepiant=IDA # Kernel token ID generator properties -mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf -mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d +mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} + From 7af070357ca1ed06aa28cbc781de2934d2ac8489 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 15:19:20 +0530 Subject: [PATCH 0072/1358] [MOSIP-14505] Datashare properties updated. --- data-share-default.properties | 22 +++++++++++++--------- 1 file changed, 13 insertions(+), 9 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 0cd6cc95616..0f4f613197a 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -1,25 +1,29 @@ -#--------------ID and Version -------------- +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# keycloak.host +# mosip.mosip.datsha.client.secret + mosip.data.share.service.id=mosip.data.share mosip.data.share.service.version=1.0 -#--------------URI-------------------------- -CRYPTOMANAGER_ENCRYPT=http://kernel-keymanager-service/v1/keymanager/encrypt -KEYMANAGER_JWTSIGN=http://kernel-keymanager-service/v1/keymanager/jwtSign -PARTNER_POLICY=http://pms-policy-manager-service/v1/policymanager/policies/{policyId}/partner/{partnerId} -KEYBASEDTOKENAPI=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -#---------config-data----------------------- +CRYPTOMANAGER_ENCRYPT=http://keymanager.kernel/v1/keymanager/encrypt +KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign +PARTNER_POLICY=http://pms-policy.pms/v1/policymanager/policies/{policyId}/partner/{partnerId} +KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey + data.share.application.id=PARTNER mosip.data.share.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' !-- if value is true then please set servlet path to / --! mosip.data.share.urlshortner=false data.share.token.request.appid=datsha data.share.token.request.clientId=mosip-datsha-client -data.share.token.request.secretKey={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +data.share.token.request.secretKey=${mosip.mosip.datsha.client.secret} data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare -data.share.token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip +data.share.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB mosip.data.share.protocol=http mosip.data.share.includeCertificateHash=false From 9f6a4063ab68f550e28c455cb65864d41f628b24 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 26 May 2021 17:18:01 +0530 Subject: [PATCH 0073/1358] Softhsm pin added --- id-authentication-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 6694c6f5f65..fe9a28b75a0 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -11,6 +11,7 @@ # ida.websub.hotlist.callback.secret # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt +# softhsm.ida.pin ## Client mosip.ida.auth.clientId=mosip-ida-client @@ -421,7 +422,7 @@ ida.credential.store.retry.backoff.exponential.max.interval.millisecs=120000 mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf mosip.kernel.keymanager.hsm.keystore-type=PKCS11 -mosip.kernel.keymanager.hsm.keystore-pass=1234 +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.ida.pin} ## Titles/Templates master data stored as configuration ---------- ## UNUSED. TODO: remove them later From 95c4f2a3aff6ae066810323a4706547b99a17144 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 10:16:51 +0530 Subject: [PATCH 0074/1358] [MOSIP-14287] dummy added for biosdk --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index fe9a28b75a0..365f2fe41c0 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -94,7 +94,7 @@ mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} ## Biosdk -mosip.biosdk.default.service.url=${biosdk.host.url}/biosdk-service +mosip.biosdk.default.service.url=http://to-be-decided/biosdk-service ## The fully qualified Class Name of the BIO SDK API implemented for Finger modality ## This class will be loaded in runtime, the containing jar should be available in classpath From 928899fa990da0a7aba0395410ddd77c49926787 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 11:31:57 +0530 Subject: [PATCH 0075/1358] [MOSIP-14287] Auth properties updated. --- id-authentication-default.properties | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 365f2fe41c0..86cf8ac400a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -12,6 +12,7 @@ # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # softhsm.ida.pin +# mosip.api.internal.url ## Client mosip.ida.auth.clientId=mosip-ida-client @@ -217,11 +218,11 @@ ida-websub-auth-type-callback-url=http://ida-internal.ida/idauthentication/v1/in ## Callback url for credential issueance event notification, including id remove/deactivate/activate events ida-websub-credential-issue-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} ## Callback url for MISP/Partner change notification events -ida-websub-partner-service-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} +ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} ## Callback url for partner CA certification upload event -ida-websub-ca-cert-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate ## Callback url for hotlist event -ida-websub-hotlist-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/hotlist +ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist ## Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 From 9f1b717c41a86a0d8dc84b2bb9fa70be22dd2b64 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 15:17:45 +0530 Subject: [PATCH 0076/1358] [MOSIP-14287] Auth biosdk property updated. --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 86cf8ac400a..54aec9cbdaa 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -94,8 +94,8 @@ ida.mapping.json.filename=id-authentication-mapping.json mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${ida.mapping.json.filename} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} -## Biosdk -mosip.biosdk.default.service.url=http://to-be-decided/biosdk-service +## Biosdk. Url below assumes the biosdk server is running inside cluster in `biosdk` namespace +mosip.biosdk.default.service.url=http://biosdk-service.biosdk/biosdk-service ## The fully qualified Class Name of the BIO SDK API implemented for Finger modality ## This class will be loaded in runtime, the containing jar should be available in classpath From 2d30d6dd6155a049d9a86668b0ddb3bb86f8a6d1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 15:44:43 +0530 Subject: [PATCH 0077/1358] [MOSIP-14287] biosdk property updated --- id-authentication-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 54aec9cbdaa..177f0d10b0d 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -3,7 +3,6 @@ # helm chart: # db.dbuser.password # mosip.mosip.ida.client.secret -# biosdk.host.url # ida.websub.authtype.callback.secret # ida.websub.credential.issue.callback.secret # ida.websub.partner.service.callback.secret @@ -95,7 +94,7 @@ mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} ## Biosdk. Url below assumes the biosdk server is running inside cluster in `biosdk` namespace -mosip.biosdk.default.service.url=http://biosdk-service.biosdk/biosdk-service +mosip.biosdk.default.service.url=http://biosdk-service.biosdk/ ## The fully qualified Class Name of the BIO SDK API implemented for Finger modality ## This class will be loaded in runtime, the containing jar should be available in classpath From 6643cebe2e7553f0cdad10c6ed4344dc119ac432 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 17:06:16 +0530 Subject: [PATCH 0078/1358] biosdk property updated --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 177f0d10b0d..29ed653220d 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -94,7 +94,7 @@ mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} ## Biosdk. Url below assumes the biosdk server is running inside cluster in `biosdk` namespace -mosip.biosdk.default.service.url=http://biosdk-service.biosdk/ +mosip.biosdk.default.service.url=http://biosdk-service.biosdk/biosdk-service ## The fully qualified Class Name of the BIO SDK API implemented for Finger modality ## This class will be loaded in runtime, the containing jar should be available in classpath From 583133eeb5ab1e32185b7f60900eece31fc5b17e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 17:44:46 +0530 Subject: [PATCH 0079/1358] Auth url corrected --- id-authentication-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 29ed653220d..86e10cae44d 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -151,7 +151,7 @@ sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get RID for USERID - Used in Internal Auth based on User ID -userid-rid.rest.uri=http://auth.kernel/v1/authmanager/rid/{appId}/{uid} +userid-rid.rest.uri=http://authmanager.kernel/v1/authmanager/rid/{appId}/{uid} userid-rid.rest.httpMethod=GET userid-rid.rest.headers.mediaType=${mosip.ida.request.mediaType} userid-rid.rest.timeout=${mosip.ida.request.timeout.secs} @@ -169,8 +169,8 @@ rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} ## Auth token generation and validation URLs -auth-token-generator.rest.uri=http://auth.kernel/v1/authmanager/authenticate/clientidsecretkey -auth-token-validator.rest.uri=http://auth.kernel/v1/authmanager/authorize/validateToken +auth-token-generator.rest.uri=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +auth-token-validator.rest.uri=http://authmanager.kernel/v1/authmanager/authorize/validateToken auth-token-generator.rest.clientId=${mosip.ida.auth.clientId} auth-token-generator.rest.secretKey=${mosip.ida.auth.secretKey} auth-token-generator.rest.appId=${mosip.ida.auth.appId} From 640eff4c197a2eba79228a56e7abfb25847cfd12 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 27 May 2021 17:48:37 +0530 Subject: [PATCH 0080/1358] application properties updated --- application-default.properties | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 0e441f64dad..58c03731ca0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -1,3 +1,7 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# keycloak.host aplication.configuration.level.version=1.1.4 ## Idobject validator @@ -164,7 +168,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth-token-generator.rest.issuerUrl=${iam.url}/auth/realms/mosip +auth-token-generator.rest.issuerUrl=${keycloak.host}/auth/realms/mosip #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true From 9aba2a984371d1796500ad81c56ada7d07a09e9c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 29 May 2021 07:03:59 +0530 Subject: [PATCH 0081/1358] [MOSIP-14376] Regproc properties updated. --- registration-processor-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e002b1db4f8..512b67ecdd6 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -106,13 +106,13 @@ POSTALCODE=${MASTER}/locations/validate PROVINCE=${MASTER}/locations/validate USERDETAILS=${MASTER}/users TEMPLATES=${MASTER}/templates -DEVICEVALIDATEHISTORY=http://partnermanager.pms/v1/partnermanager/deviceprovidermanagement/validate +DEVICEVALIDATEHISTORY=http://pms-partner.pms/v1/partnermanager/deviceprovidermanagement/validate #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest ## ID Repository Services -IDREPOIDENTITY=http://idrepo-identity.idrepo/idrepository/v1/identity/ +IDREPOIDENTITY=http://identity.idrepo/idrepository/v1/identity/ IDREPOGETIDBYUIN=${IDREPOIDENTITY}/idvid UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin RETRIEVEIDENTITYFROMRID=${IDREPOIDENTITY}/idvid @@ -120,7 +120,7 @@ RETRIEVEIDENTITY=${IDREPOIDENTITY}/idvid IDREPOVID=http://idrepo-vid.idrepo CREATEVID=${IDREPOVID}/idrepository/v1/vid GETUINBYVID=${IDREPOVID}/idrepository/v1/idvid -CREDENTIALREQUEST=http://idrepo-credrequest.idrepo/v1/credentialrequest/requestgenerator +CREDENTIALREQUEST=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator GETVIDSBYUIN=${IDREPOVID}/idrepository/v1/vid/uin ## Encrypt Services From b3105e945a590bc73349adf5ae688c7656d1db4b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 29 May 2021 07:24:46 +0530 Subject: [PATCH 0082/1358] [MOSIP-14376] Reg proc properties updated. --- registration-processor-default.properties | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 512b67ecdd6..a0b49619bc2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -39,7 +39,8 @@ hibernate.jdbc.lob.non_contextual_creation=true hibernate.show_sql=false ## Packets -registration.processor.LANDING_ZONE = /mnt/regproc/landing +## This must match mounted folder specified in the helm chart of packet receiver. +registration.processor.LANDING_ZONE = /mnt/landing # The known packet sources. Should be set as all fieldCategory present in idschema # (NOTE : if fieldCategory is set as pvt then the source should be id) registration.processor.sourcepackets=id,evidence,optional @@ -370,6 +371,16 @@ mosip.regproc.eventbus.type=kafka #Kafka cluster servers comma separated, common for all stages and camel mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka.svc.cluster.local:9092,kafka-1.kafka-headless.kafka.svc.cluster.local:9092,kafka-2.kafka-headless.kafka.svc.cluster.local:9092 +packet-receiver-stage +#Supported commmit config: auto, batch, single +mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single +#Maximum records that can be received in one poll to kafka +mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 +#Interval between each poll calls to kafka in milli sec +mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 +#kafka consumer group id, one unique id is required for for every stage +mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage + #securezone-notification-stage #Supported commmit config: auto, batch, single mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single From 851936ee1dff183615de4556445a0baa04ede4cc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 29 May 2021 09:20:49 +0530 Subject: [PATCH 0083/1358] [MOSIP-14376] File temporarily added as packet receiver is expecting it. --- hazelcast_dmz.xml | 37 +++++++++++++++++++++++++++++++++++++ 1 file changed, 37 insertions(+) create mode 100644 hazelcast_dmz.xml diff --git a/hazelcast_dmz.xml b/hazelcast_dmz.xml new file mode 100644 index 00000000000..040c52de759 --- /dev/null +++ b/hazelcast_dmz.xml @@ -0,0 +1,37 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- ~ Copyright 2017 Red Hat, Inc. ~ ~ Red Hat licenses this file to you + under the Apache License, version 2.0 ~ (the "License"); you may not use + this file except in compliance with the ~ License. You may obtain a copy + of the License at: ~ ~ http://www.apache.org/licenses/LICENSE-2.0 ~ ~ Unless + required by applicable law or agreed to in writing, software ~ distributed + under the License is distributed on an "AS IS" BASIS, WITHOUT ~ WARRANTIES + OR CONDITIONS OF ANY KIND, either express or implied. See the ~ License for + the specific language governing permissions and limitations ~ under the License. --> + +<hazelcast + xsi:schemaLocation="http://www.hazelcast.com/schema/config hazelcast-config-3.10.xsd" + xmlns="http://www.hazelcast.com/schema/config" + xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> + <properties> + <property name="hazelcast.discovery.enabled">true</property> + <property name="hazelcast.logging.type">slf4j</property> + </properties> +<group> + <name>k8s</name> + <password/> + </group> + <network> + <join> + <multicast enabled="false"/> + <tcp-ip enabled="false" /> + <discovery-strategies> + <discovery-strategy enabled="true" + class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> + <properties> + <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> + </properties> + </discovery-strategy> + </discovery-strategies> + </join> + </network> +</hazelcast> From 70aa1b7e5fac3a3fbcd2182199a5a75bfd1e7cc0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 29 May 2021 12:32:19 +0530 Subject: [PATCH 0084/1358] [MOSIP-14376] Minor correction --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a0b49619bc2..f31a44495f3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -371,7 +371,7 @@ mosip.regproc.eventbus.type=kafka #Kafka cluster servers comma separated, common for all stages and camel mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka.svc.cluster.local:9092,kafka-1.kafka-headless.kafka.svc.cluster.local:9092,kafka-2.kafka-headless.kafka.svc.cluster.local:9092 -packet-receiver-stage +# packet receiver stage #Supported commmit config: auto, batch, single mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single #Maximum records that can be received in one poll to kafka From 55a9b580bb7454c06367aab4a8e61a558c4da5d8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 29 May 2021 14:42:20 +0530 Subject: [PATCH 0085/1358] [MOSIP-14376] Camel route corrected for single cluster. --- ...ion-processor-camel-routes-new-default.xml | 25 +++---------------- 1 file changed, 3 insertions(+), 22 deletions(-) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index e8e92455f6e..065d346ce50 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -1,29 +1,9 @@ <routes xmlns="http://camel.apache.org/schema/spring"> <!-- packet-receiver to securezone notifiation --> - <route id="packet-receiver->securezone-notification new route"> + <route id="packet-receiver->packet-uploader new route"> <from uri="eventbus:packet-receiver-new-bus-out" /> <log - message="packet-receiver-->securezone-notification new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:securezone-notification-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - - <!-- securezone-notification to packet-uploader Route --> - <route id="securezone-notification-->packet-uploader new route"> - <from uri="eventbus:securezone-notification-new-bus-out" /> - <log - message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> + message="packet-receiver-->packet-uploader new route ${bodyAs(String)}" /> <choice> <when> <simple>${bodyAs(String)} contains '"isValid":true'</simple> @@ -38,6 +18,7 @@ </otherwise> </choice> </route> + <!-- packet-uploader to packet-validator Route --> <route id="packet-uploader-->packet-validator new route"> <from uri="eventbus:packet-uploader-new-bus-out" /> From a22316e039c8abc3c016f972302a99c1e6ff7464 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 29 May 2021 14:42:51 +0530 Subject: [PATCH 0086/1358] [MOSIP-14376] Urls updated. --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f31a44495f3..dff492ace1e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -145,8 +145,8 @@ EISERVICE=http://regproc-external.regproc/registrationprocessor/v1/eis/registrat RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid ## Registration Processor Status Services -SYNCSERVICE=http://regproc-regstatus.regproc/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=http://regproc-packetreceiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets +SYNCSERVICE=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=http://regproc-receiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets ## SMS and EMAIL notification services NOTIFIER=http://notifier.kernel From a5b89f227edaab6c6a8f34ce7397ac3e3ff42ae1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 09:36:23 +0530 Subject: [PATCH 0087/1358] Hazelcast file rename. --- hazelcast-default.xml => hazelcast_default.xml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename hazelcast-default.xml => hazelcast_default.xml (100%) diff --git a/hazelcast-default.xml b/hazelcast_default.xml similarity index 100% rename from hazelcast-default.xml rename to hazelcast_default.xml From e95fb0b6a731031469607d86651682b6e1149139 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 11:02:09 +0530 Subject: [PATCH 0088/1358] Nginx server prop updated. --- registration-processor-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index dff492ace1e..1a741c65b1d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -50,9 +50,8 @@ packet.default.source=id schema.default.fieldCategory=pvt,none # The IDSchemaVersion used to create packets in reg-proc IDSchema.Version=0.1 -# Url from where packets need to be picked up DMZ (landing zone) ## TODO: correct this -NGINXURL=${dmz.ingress.base.url}/registrationprocessor/v1/packetserver +NGINXURL=http://regproc-pktserver.regproc/ packet.info.storage.service=* ## Camel bridge From 2563dccff47e24154ccc07fa5955954e2f007bf5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 11:31:01 +0530 Subject: [PATCH 0089/1358] Reg proc kafka properties updated. --- registration-processor-default.properties | 240 +++------------------- 1 file changed, 30 insertions(+), 210 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1a741c65b1d..020f2f962c3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -362,7 +362,7 @@ mosip.registration.processor.encrypt=false mosip.registration.processor.issuer=mpartner-default-print mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator -## Event bus +## Kafka Event bus #Supported eventbus types: vertx, kafka. Defaults to vertx if the config is not given mosip.regproc.eventbus.type=kafka @@ -373,23 +373,10 @@ mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka.svc. # packet receiver stage #Supported commmit config: auto, batch, single mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single -#Maximum records that can be received in one poll to kafka mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 -#Interval between each poll calls to kafka in milli sec mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 -#kafka consumer group id, one unique id is required for for every stage mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage -#securezone-notification-stage -#Supported commmit config: auto, batch, single -mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single -#Maximum records that can be received in one poll to kafka -mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 -#Interval between each poll calls to kafka in milli sec -mosip.regproc.securezone.notification.eventbus.kafka.poll.frequency=100 -#kafka consumer group id, one unique id is required for for every stage -mosip.regproc.securezone.notification.eventbus.kafka.group.id=securezone-notification-stage - #camel-bridge mosip.regproc.camel.bridge.eventbus.kafka.commit.type=single mosip.regproc.camel.bridge.eventbus.kafka.max.poll.records=100 @@ -403,78 +390,91 @@ mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.uploader.eventbus.kafka.group.id=packet-uploader-stage +mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #packet-validator-stage mosip.regproc.packet.validator.eventbus.kafka.commit.type=single mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.validator.eventbus.kafka.group.id=packet-validator-stage +mosip.regproc.packet.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #packet-classifier-stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.classifier.eventbus.kafka.group.id=packet-classifier-stage +mosip.regproc.packet.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #quality-checker-stage mosip.regproc.quality.checker.eventbus.kafka.commit.type=single mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=100 mosip.regproc.quality.checker.eventbus.kafka.poll.frequency=100 mosip.regproc.quality.checker.eventbus.kafka.group.id=quality-checker-stage +mosip.regproc.quality.checker.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #osi-validator-stage mosip.regproc.osi.validator.eventbus.kafka.commit.type=single mosip.regproc.osi.validator.eventbus.kafka.max.poll.records=100 mosip.regproc.osi.validator.eventbus.kafka.poll.frequency=100 mosip.regproc.osi.validator.eventbus.kafka.group.id=osi-validator-stage +mosip.regproc.osi.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #external-stage mosip.regproc.external.eventbus.kafka.commit.type=single mosip.regproc.external.eventbus.kafka.max.poll.records=100 mosip.regproc.external.eventbus.kafka.poll.frequency=100 mosip.regproc.external.eventbus.kafka.group.id=external-stage +mosip.regproc.external.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #demo-dedupe-stage mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage +mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.handler.eventbus.kafka.group.id=abis-handler-stage +mosip.regproc.abis.handler.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #bio-dedupe-stage mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.bio.dedupe.eventbus.kafka.group.id=bio-dedupe-stage +mosip.regproc.bio.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #manual-verification-stage mosip.regproc.manual.verification.eventbus.kafka.commit.type=single mosip.regproc.manual.verification.eventbus.kafka.max.poll.records=100 mosip.regproc.manual.verification.eventbus.kafka.poll.frequency=100 mosip.regproc.manual.verification.eventbus.kafka.group.id=manual-verification-stage +mosip.regproc.manual.verification.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #uin-generator-stage mosip.regproc.uin.generator.eventbus.kafka.commit.type=single mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 mosip.regproc.uin.generator.eventbus.kafka.group.id=uin-generator-stage +mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage +mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 mosip.regproc.biometric.authentication.eventbus.kafka.group.id=biometric-authentication-stage +mosip.regproc.biometric.authentication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #reprocessor-stage mosip.regproc.reprocessor.eventbus.kafka.commit.type=single @@ -487,17 +487,19 @@ mosip.regproc.message.sender.eventbus.kafka.commit.type=single mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 mosip.regproc.message.sender.eventbus.kafka.poll.frequency=100 mosip.regproc.message.sender.eventbus.kafka.group.id=message-sender-stage +mosip.regproc.message.sender.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} #printing-stage mosip.regproc.printing.eventbus.kafka.commit.type=single mosip.regproc.printing.eventbus.kafka.max.poll.records=100 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage - +mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} packetmanager.name.source.resident=RESIDENT packetmanager.name.source.cnie=CNIE packetmanager.name.source.default=REGISTRATION_CLIENT +object.store.s3.use.account.as.bucketname=true # default priority for correction packets # To define priority use below stage names. For example, field 'gender' has priority in uin-generator-stage. The key for uin-generator-stage is 'uingenerator'. So the key would be 'packetmanager.provider.uingenerator.gender' @@ -547,19 +549,15 @@ packetmanager.provider.uingenerator.proofOfIdentity=source:CNIE\/process:CORRECT packetmanager.provider.uingenerator.proofOfRelationship=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.provider.uingenerator.proofOfException=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -#### Stage Specific properties #### - # packet-classifier-stage -mosip.regproc.packet.classifier.server.port=8092 -mosip.regproc.packet.classifier.eventbus.port=5724 -mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/packetclassifier - # List of tag generator that should be run on every packet -# Available tag generators MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus -mosip.regproc.packet.classifier.tag-generators=MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus +# Available tag generators MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus,MosipExceptionBiometrics +mosip.regproc.packet.classifier.tag-generators=MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus,MosipExceptionBiometrics +# The tag value that will be used by default when the packet does not have value for the tag field +mosip.regproc.packet.classifier.tagging.not-available-tag-value=--TAG_VALUE_NOT_AVAILABLE-- # These field names should be as in keys of registraion-processor-identity.json file Identity segment # and should have proper default source configured -mosip.regproc.packet.classifier.tagging.idobjectfields.mapping-field-names=gender,city,residenceStatus +mosip.regproc.packet.classifier.tagging.idobjectfields.mapping-field-names=gender,residenceStatus # The tag name that will be prefixed with every idobjectfield tags mosip.regproc.packet.classifier.tagging.idobjectfields.tag-name-prefix=ID_OBJECT- # The tag name that will be prefixed with every metainfo operationsData tags @@ -569,11 +567,11 @@ mosip.regproc.packet.classifier.tagging.metainfo.metadata.tag-name-prefix=META_I # The tag name that will be prefixed with every metainfo capturedRegisteredDevices tags mosip.regproc.packet.classifier.tagging.metainfo.capturedregistereddevices.tag-name-prefix=META_INFO-CAPTURED_REGISTERED_DEVICES- # The labels on metainfo.operationsData array that needs to be tagged -mosip.regproc.packet.classifier.tagging.metainfo.operationsdata.tag-labels=officerId,supervisorId +mosip.regproc.packet.classifier.tagging.metainfo.operationsdata.tag-labels=officerId # The labels on metainfo.metaData array that needs to be tagged -mosip.regproc.packet.classifier.tagging.metainfo.metadata.tag-labels=centerId,machineId +mosip.regproc.packet.classifier.tagging.metainfo.metadata.tag-labels=centerId # The serial numbers of devices type on metainfo.capturedRegisteredDevices array that needs to be tagged -mosip.regproc.packet.classifier.tagging.metainfo.capturedregistereddevices.device-types=Face,Fingerprint +mosip.regproc.packet.classifier.tagging.metainfo.capturedregistereddevices.device-types=Face,Finger # Tag name that will be used while tagging age group mosip.regproc.packet.classifier.tagging.agegroup.tag-name=AGE_GROUP # Below age ranges map should contain proper age group name and age range, any overlap of the age @@ -583,187 +581,9 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'CHILD':'0-17','ADULT': mosip.regproc.packet.classifier.tagging.supervisorapprovalstatus.tag-name=SUPERVISOR_APPROVAL_STATUS # Tag name that will be used while tagging exception biometrics mosip.regproc.packet.classifier.tagging.exceptionbiometrics.tag-name=EXCEPTION_BIOMETRICS +# This mapping will contain the short words for each missing biometrics, the values will used for concatenating in the tags +mosip.regproc.packet.classifier.tagging.exceptionbiometrics.bio-value-mapping={'leftLittle':'LL','leftRing':'LR','leftMiddle':'LM','leftIndex':'LI','leftThumb':'LT','rightLittle':'RL','rightRing':'RR','rightMiddle':'RM','rightIndex':'RI','rightThumb':'RT','leftEye':'LE','rightEye':'RE'} -mosip.regproc.packet.classifier.eventbus.kafka.commit.type=${mosip.regproc.packet.classifier.eventbus.kafka.commit.type} -mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=${mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records} -mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=${mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency} -mosip.regproc.packet.classifier.eventbus.kafka.group.id=${mosip.regproc.packet.classifier.eventbus.kafka.group.id} - -# Packet Validator -mosip.regproc.packet.validator.server.port=8088 -mosip.regproc.packet.validator.eventbus.port=5715 -mosip.regproc.packet.validator.server.servlet.path=/registrationprocessor/v1/packetvalidator - -mosip.regproc.packet.validator.eventbus.kafka.commit.type=${mosip.regproc.packet.validator.eventbus.kafka.commit.type} -mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=${mosip.regproc.packet.validator.eventbus.kafka.max.poll.records} -mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=${mosip.regproc.packet.validator.eventbus.kafka.poll.frequency} -mosip.regproc.packet.validator.eventbus.kafka.group.id=${mosip.regproc.packet.validator.eventbus.kafka.group.id} - -mosip.kernel.jsonvalidator.property-source=APPLICATION_CONTEXT -mosip.kernel.jsonvalidator.schema-name=mosip-identity-json-schema.json -mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ - - -# External Stage -mosip.regproc.external.eventbus.port=5736 -mosip.regproc.external.server.port=8095 -mosip.regproc.external.server.servlet.path=/registrationprocessor/v1/external - - -mosip.regproc.external.eventbus.kafka.commit.type=${mosip.regproc.external.eventbus.kafka.commit.type} -mosip.regproc.external.eventbus.kafka.max.poll.records=${mosip.regproc.external.eventbus.kafka.max.poll.records} -mosip.regproc.external.eventbus.kafka.poll.frequency=${mosip.regproc.external.eventbus.kafka.poll.frequency} -mosip.regproc.external.eventbus.kafka.group.id=${mosip.regproc.external.eventbus.kafka.group.id} - -#Message Sender -mosip.regproc.message.sender.server.port=8088 -mosip.regproc.message.sender.eventbus.port=5721 -mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sender-stage - -mosip.regproc.message.sender.eventbus.kafka.commit.type=${mosip.regproc.message.sender.eventbus.kafka.commit.type} -mosip.regproc.message.sender.eventbus.kafka.max.poll.records=${mosip.regproc.message.sender.eventbus.kafka.max.poll.records} -mosip.regproc.message.sender.eventbus.kafka.poll.frequency=${mosip.regproc.message.sender.eventbus.kafka.poll.frequency} -mosip.regproc.message.sender.eventbus.kafka.group.id=${mosip.regproc.message.sender.eventbus.kafka.group.id} - -#OSI Validator -mosip.regproc.osi.validator.server.port=8089 -mosip.regproc.osi.validator.eventbus.port=5716 -mosip.regproc.osi.validator.server.servlet.path=/registrationprocessor/v1/osivalidator - -mosip.regproc.osi.validator.eventbus.kafka.commit.type=${mosip.regproc.osi.validator.eventbus.kafka.commit.type} -mosip.regproc.osi.validator.eventbus.kafka.max.poll.records=${mosip.regproc.osi.validator.eventbus.kafka.max.poll.records} -mosip.regproc.osi.validator.eventbus.kafka.poll.frequency=${mosip.regproc.osi.validator.eventbus.kafka.poll.frequency} -mosip.regproc.osi.validator.eventbus.kafka.group.id=${mosip.regproc.osi.validator.eventbus.kafka.group.id} - - -# packet-uploader-stage properties -packet.uploader.stage=registration-processor-packet-uploader-stage - -mosip.regproc.packet.uploader.server.port=8087 -mosip.regproc.packet.uploader.server.servlet.path=/registrationprocessor/v1/uploader -mosip.regproc.packet.uploader.eventbus.port=5714 - -mosip.regproc.packet.uploader.eventbus.kafka.commit.type=${mosip.regproc.packet.uploader.eventbus.kafka.commit.type} -mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=${mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records} -mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=${mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency} -mosip.regproc.packet.uploader.eventbus.kafka.group.id=${mosip.regproc.packet.uploader.eventbus.kafka.group.id} - -# Print Stage -mosip.regproc.printing.server.port=8099 -mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage -mosip.regproc.printing.eventbus.port=5722 - -mosip.regproc.printing.eventbus.kafka.commit.type=${mosip.regproc.printing.eventbus.kafka.commit.type} -mosip.regproc.printing.eventbus.kafka.max.poll.records=${mosip.regproc.printing.eventbus.kafka.max.poll.records} -mosip.regproc.printing.eventbus.kafka.poll.frequency=${mosip.regproc.printing.eventbus.kafka.poll.frequency} -mosip.regproc.printing.eventbus.kafka.group.id=${mosip.regproc.printing.eventbus.kafka.group.id} - -# Quality Checker -mosip.regproc.quality.checker.server.port=9072 -mosip.regproc.quality.checker.eventbus.port=5727 -mosip.regproc.quality.checker.server.servlet.path=/registrationprocessor/v1/qualitychecker - -mosip.regproc.quality.checker.eventbus.kafka.commit.type=${mosip.regproc.quality.checker.eventbus.kafka.commit.type} -mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=${mosip.regproc.quality.checker.eventbus.kafka.max.poll.records} -mosip.regproc.quality.checker.eventbus.kafka.poll.frequency=${mosip.regproc.quality.checker.eventbus.kafka.poll.frequency} -mosip.regproc.quality.checker.eventbus.kafka.group.id=${mosip.regproc.quality.checker.eventbus.kafka.group.id} - -# Secure Zone Notification Stage -mosip.regproc.securezone.notification.server.port=8090 -mosip.regproc.securezone.notification.server.servlet.path=/registrationprocessor/v1/securezone -mosip.regproc.securezone.notification.eventbus.port=5712 - -mosip.regproc.securezone.notification.eventbus.kafka.commit.type=${mosip.regproc.securezone.notification.eventbus.kafka.commit.type} -mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=${mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records} -mosip.regproc.securezone.notification.eventbus.kafka.poll.frequency=${mosip.regproc.securezone.notification.eventbus.kafka.poll.frequency} -mosip.regproc.securezone.notification.eventbus.kafka.group.id=${mosip.regproc.securezone.notification.eventbus.kafka.group.id} - -mosip.regproc.message.tag.loading.disable=true - -# UIN Generator Stage -mosip.regproc.uin.generator.server.port=8099 -mosip.regproc.uin.generator.eventbus.port=5719 -mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-generator - -mosip.regproc.uin.generator.eventbus.kafka.commit.type=${mosip.regproc.uin.generator.eventbus.kafka.commit.type} -mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=${mosip.regproc.uin.generator.eventbus.kafka.max.poll.records} -mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=${mosip.regproc.uin.generator.eventbus.kafka.poll.frequency} -mosip.regproc.uin.generator.eventbus.kafka.group.id=${mosip.regproc.uin.generator.eventbus.kafka.group.id} - -# Reporcessor Stage -mosip.regproc.reprocessor.server.port=8021 -mosip.regproc.reprocessor.eventbus.port=5750 -mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reprocessor - -mosip.regproc.reprocessor.eventbus.kafka.commit.type=${mosip.regproc.reprocessor.eventbus.kafka.commit.type} -mosip.regproc.reprocessor.eventbus.kafka.max.poll.records=${mosip.regproc.reprocessor.eventbus.kafka.max.poll.records} -mosip.regproc.reprocessor.eventbus.kafka.poll.frequency=${mosip.regproc.reprocessor.eventbus.kafka.poll.frequency} -mosip.regproc.reprocessor.eventbus.kafka.group.id=${mosip.regproc.reprocessor.eventbus.kafka.group.id} - -# Manual Stage -mosip.regproc.manual.verification.server.servlet.path=/registrationprocessor/v1/manualverification -mosip.regproc.manual.verification.server.port=8084 -mosip.regproc.manual.verification.eventbus.port=5720 - -mosip.regproc.manual.verification.eventbus.kafka.commit.type=${mosip.regproc.manual.verification.eventbus.kafka.commit.type} -mosip.regproc.manual.verification.eventbus.kafka.max.poll.records=${mosip.regproc.manual.verification.eventbus.kafka.max.poll.records} -mosip.regproc.manual.verification.eventbus.kafka.poll.frequency=${mosip.regproc.manual.verification.eventbus.kafka.poll.frequency} -mosip.regproc.manual.verification.eventbus.kafka.group.id=${mosip.regproc.manual.verification.eventbus.kafka.group.id} - -#Demo Dedupe -mosip.regproc.demo.dedupe.server.port=8091 -mosip.regproc.demo.dedupe.eventbus.port=5717 -mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedupe - -mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=${mosip.regproc.demo.dedupe.eventbus.kafka.commit.type} -mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=${mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records} -mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=${mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency} -mosip.regproc.demo.dedupe.eventbus.kafka.group.id=${mosip.regproc.demo.dedupe.eventbus.kafka.group.id} - -# Biometric Auth Stage -mosip.regproc.biometric.authentication.server.port=8020 -mosip.regproc.biometric.authentication.eventbus.port=5777 -mosip.regproc.biometric.authentication.server.servlet.path=/registrationprocessor/v1/bioauth - -mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=${mosip.regproc.biometric.authentication.eventbus.kafka.commit.type} -mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=${mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records} -mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=${mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency} -mosip.regproc.biometric.authentication.eventbus.kafka.group.id=${mosip.regproc.biometric.authentication.eventbus.kafka.group.id} - -# Bio Dedupe -mosip.regproc.bio.dedupe.server.port=9096 -mosip.regproc.bio.dedupe.eventbus.port=5718 -mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe - -mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=${mosip.regproc.bio.dedupe.eventbus.kafka.commit.type} -mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=${mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records} -mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=${mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency} -mosip.regproc.bio.dedupe.eventbus.kafka.group.id=${mosip.regproc.bio.dedupe.eventbus.kafka.group.id} - -# Abis Middleware -mosip.regproc.abis.middleware.server.port=8091 -mosip.regproc.abis.middleware.eventbus.port=5888 -mosip.regproc.abis.middleware.server.servlet.path=/registrationprocessor/v1/abismiddleware - -mosip.regproc.abis.middleware.eventbus.kafka.commit.type=${mosip.regproc.abis.middleware.eventbus.kafka.commit.type} -mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=${mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records} -mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=${mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency} -mosip.regproc.abis.middleware.eventbus.kafka.group.id=${mosip.regproc.abis.middleware.eventbus.kafka.group.id} - -# Abis Handler -mosip.regproc.abis.handler.server.port=9071 -mosip.regproc.abis.handler.eventbus.port=5726 -mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler - -mosip.regproc.abis.handler.eventbus.kafka.commit.type=${mosip.regproc.abis.handler.eventbus.kafka.commit.type} -mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=${mosip.regproc.abis.handler.eventbus.kafka.max.poll.records} -mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=${mosip.regproc.abis.handler.eventbus.kafka.poll.frequency} -mosip.regproc.abis.handler.eventbus.kafka.group.id=${mosip.regproc.abis.handler.eventbus.kafka.group.id} - - -# Stage Group Configuratoins -# Default base packages for stage beans to be scanned in a stage group -mosip.regproc.stage-groups.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor -# Add any new base package of Stage bean specific to stage group as below -# mosip.regproc.stage-groups.stage-beans-base-packages.<stage_group_name>=${mosip.regproc.stage-groups.stage-beans-base-packages.default} -# Example: mosip.regproc.stage-groups.stage-beans-base-packages.stage-group-1=${mosip.regproc.stage-groups.stage-beans-base-packages.default},my.stage.bean.base.package +## Mock Manual Verification Properties +# Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] +mock.mv.decision=APPROVED From dc597549bab28103ed61ab3add6b68c939396af9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 11:33:44 +0530 Subject: [PATCH 0090/1358] Reg proc properties updated. --- registration-processor-default.properties | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 020f2f962c3..d2b7dbb7c23 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -356,12 +356,17 @@ mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1 mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -## Pring +## Printing mosip.registration.processor.credentialtype=euin mosip.registration.processor.encrypt=false mosip.registration.processor.issuer=mpartner-default-print mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator +## Stage common +#After this time intervel, message should be considered as expired (In seconds), +#value as 0 and negative will disable message expiry checks +mosip.regproc.common.stage.message.expiry-time-limit=3600 + ## Kafka Event bus #Supported eventbus types: vertx, kafka. Defaults to vertx if the config is not given mosip.regproc.eventbus.type=kafka From b88c7e2cff8da50d644a9826ee92695a85d8822a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 11:42:09 +0530 Subject: [PATCH 0091/1358] Hazelcast name corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d2b7dbb7c23..07d32496db1 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -56,7 +56,7 @@ packet.info.storage.service=* ## Camel bridge # Url to cluster manager to enable this stage for joining the cluster in secure zone -cluster.manager.file.name=hazelcast-default.xml +cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow From 3130d601477723d9f99c7b548b14614ff0de6899 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 11:42:56 +0530 Subject: [PATCH 0092/1358] Hazelcast prop corrected. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 58c03731ca0..0b29edc0602 100644 --- a/application-default.properties +++ b/application-default.properties @@ -317,7 +317,7 @@ objectstore.crypto.name=OnlinePacketCryptoServiceImpl default.provider.version=v1.0 ## posix adapter config object.store.base.location=/home/mosip -hazelcast.config=classpath:hazelcast-default.xml +hazelcast.config=classpath:hazelcast_default.xml ## S3 object store adapter. TODO: ciphers here must be passed as config-server env variables. From 61e9d8ac3621702f9e0a0b836ee5649080ba8669 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 11:48:00 +0530 Subject: [PATCH 0093/1358] Zone added. --- registration-processor-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 07d32496db1..74d2c640cf3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -7,6 +7,9 @@ # mosip.api.internal.url # keycloak.host + +registration.processor.zone=default + ## Health check management.endpoint.health.show-details=always management.endpoints.web.exposure.include=info,health,refresh From ff7468a2a2ba683f0cd83c6f14490a8939001f5c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 30 May 2021 18:41:15 +0530 Subject: [PATCH 0094/1358] json corrected --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index d81b599cac2..2f0c1476faf 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -9,7 +9,7 @@ "pingInboundQueueName": "", "pingOutboundQueueName": "", "userName": "artemis", - "password": ${activemq.password}, + "password": "${activemq.password}", "typeOfQueue": "ACTIVEMQ", "inboundMessageTTL": 2700 }] From 71c4360d742dc3cfb75d14da43a410b459650d73 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 31 May 2021 16:35:34 +0530 Subject: [PATCH 0095/1358] Prereg updated. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c97dd22178c..8df33809a81 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -284,7 +284,7 @@ otp.request.flooding.max-count=3 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX mail-notification.rest.uri=${mosip.base.url}/v1/notifier/email/send sms-notification.rest.uri=${mosip.base.url}/v1/notifier/sms/send -otp-generate.rest.uri=${mosip.base.url}/v1/otpmanager/otp/generate +otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template From a1f3f78903334e13287e41039c7d1f6f8bbfe308 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 1 Jun 2021 07:00:06 +0530 Subject: [PATCH 0096/1358] Language updated in preregistration json. --- pre-registration-demographic.json | 14 -------------- 1 file changed, 14 deletions(-) diff --git a/pre-registration-demographic.json b/pre-registration-demographic.json index aba08a857ba..5d7927b38f7 100644 --- a/pre-registration-demographic.json +++ b/pre-registration-demographic.json @@ -16,7 +16,6 @@ "description":"Enter Full Name", "labelName":{ "eng":"Full Name", - "ara":"الاسم الكامل", "fra":"Nom complet" }, "controlType":"textbox", @@ -39,7 +38,6 @@ "description":"Enter DOB", "labelName":{ "eng":"Date Of Birth", - "ara":"تاريخ الولادة", "fra":"Date de naissance" }, "controlType":"date", @@ -55,7 +53,6 @@ "description":"Enter Gender", "labelName":{ "eng":"Gender", - "ara":"جنس", "fra":"Le genre" }, "controlType":"dropdown", @@ -72,7 +69,6 @@ "description":"Residence status", "labelName":{ "eng":"Residence Status", - "ara":"حالة الإقامة", "fra":"Statut de résidence" }, "controlType":"dropdown", @@ -89,7 +85,6 @@ "description":"addressLine1", "labelName":{ "eng":"Address Line1", - "ara":"العنوان السطر 1", "fra":"Adresse 1" }, "controlType":"textbox", @@ -112,7 +107,6 @@ "description":"addressLine2", "labelName":{ "eng":"Address Line2", - "ara":"العنوان السطر 2", "fra":"Adresse 2" }, "controlType":"textbox", @@ -135,7 +129,6 @@ "description":"addressLine3", "labelName":{ "eng":"Address Line3", - "ara":"العنوان السطر 3", "fra":"Adresse 3" }, "controlType":"textbox", @@ -158,7 +151,6 @@ "description":"region", "labelName":{ "eng":"Region", - "ara":"منطقة", "fra":"Région" }, "controlType":"dropdown", @@ -181,7 +173,6 @@ "description":"province", "labelName":{ "eng":"Province", - "ara":"المحافظة", "fra":"Province" }, "controlType":"dropdown", @@ -204,7 +195,6 @@ "description":"city", "labelName":{ "eng":"City", - "ara":"مدينة", "fra":"Ville" }, "controlType":"dropdown", @@ -227,7 +217,6 @@ "description":"zone", "labelName":{ "eng":"Zone", - "ara":"منطقة", "fra":"Zone" }, "controlType":"dropdown", @@ -244,7 +233,6 @@ "description":"postalCode", "labelName":{ "eng":"Postal Code", - "ara":"الكود البريدى", "fra":"code postal" }, "controlType":"dropdown", @@ -267,7 +255,6 @@ "description":"phone", "labelName":{ "eng":"Phone", - "ara":"هاتف", "fra":"Téléphone" }, "controlType":"textbox", @@ -290,7 +277,6 @@ "description":"email", "labelName":{ "eng":"Email", - "ara":"البريد الإلكتروني", "fra":"Email" }, "controlType":"textbox", From 330792611da4b9ca9574c6316284cba8371e94e2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 1 Jun 2021 07:02:00 +0530 Subject: [PATCH 0097/1358] Language properties updated. --- registration-default.properties | 7 ------- 1 file changed, 7 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 80d373e9a6c..172f1da7f05 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -210,10 +210,6 @@ mosip.registration.softwareUpdateCheck_configured_frequency = 300 mosip.registration.consent_eng=I understand that the data collected about me during registration by the said authority includes my -<br>• Name <br> • Date of birth <br> • Gender <br> • Address <br> • Contact details <br> • Documents <br> I also understand that this information will be stored and processed for the purpose of verifying my identity in order to access various services, or to comply with a legal obligation. I give my consent for the collection of this data for this purpose. -#For Arabic as primary language -mosip.registration.consent_ara = أدرك أن البيانات التي تم جمعها عني أثناء التسجيل من قِبل السلطة المذكورة تتضمن بياناتي - <br> • الاسم <br>• تاريخ الميلاد <br>• نوع الجنس <br>• العنوان <br>• تفاصيل الاتصال <br>• الوثائق <br> كما أفهم أنه سيتم تخزين هذه المعلومات ومعالجتها بغرض التحقق من هويتي من أجل الوصول إلى خدمات مختلفة، أو الامتثال لالتزام قانوني. وأوافق على جمع هذه البيانات لهذا الغرض. - - #For French as primary language mosip.registration.consent_fra=Je comprends que les données recueillies à mon sujet lors de la enregistrement par ladite autorité comprennent mon - <br> • nom <br>• Date de naissance <br>• genre <br>• adresse <br>• coordonnées <br>• Documents <br>Je comprends également que ces informations seront stockées et traitées dans le but de vérifier mon identité afin d'accéder à divers services, ou de se conformer à une obligation légale. Je donne mon consentement pour la collecte de ces données à cette fin. @@ -231,9 +227,6 @@ mosip.registration.document_scanner_enabled=No #For English language mosip.registration.important_guidelines_eng=COUNTRY TO DEFINE THE TEXT OF GUIDELINES -#For Arabic language -mosip.registration.important_guidelines_ara=COUNTRY TO DEFINE THE TEXT OF GUIDELINES - #For French language mosip.registration.important_guidelines_fra=COUNTRY TO DEFINE THE TEXT OF GUIDELINES From 93a1c560485ac0dc689a8408d66c2cc7e7a627fa Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 5 Jun 2021 14:08:33 +0530 Subject: [PATCH 0098/1358] Country code updated. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 0b29edc0602..532e46dc221 100644 --- a/application-default.properties +++ b/application-default.properties @@ -51,7 +51,7 @@ mosip.idrepo.identity.allowedBioAttributes=individualBiometrics ## List of all bio attriutes defined in Identity Schema mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometrics -mosip.country.code=CON +mosip.country.code=MOR ## Language supported by platform mosip.supported-languages=eng,fra From 9ce90da9d48bafdff2657a5b4e10685a8ff5dd4b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 5 Jun 2021 21:31:27 +0530 Subject: [PATCH 0099/1358] Prereg property corrected. --- pre-registration-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 8df33809a81..8a901d47e3a 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -290,7 +290,6 @@ pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId mosip.primary-language=eng -id-masterdata-template-service-multilang.rest.uri=${mosip.base.url}/v1/masterdata/templates/{langcode}/{templatetypecode} ## Login service mosip.preregistration.login.service.version=1.0 From 2a74302997142dd97eb0a5d2fbc73b7ad0d838de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 5 Jun 2021 21:47:02 +0530 Subject: [PATCH 0100/1358] Prereg properties upated. --- pre-registration-default.properties | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 8a901d47e3a..b015fe80f4a 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -3,7 +3,6 @@ # helm chart: # db.dbuser.password # preregistration.mosip.prereg.client.secret -# mosip.api.public.url # keycloak.host ## Database properties @@ -282,8 +281,8 @@ secret_url.version=string otp.request.flooding.duration=1 otp.request.flooding.max-count=3 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX -mail-notification.rest.uri=${mosip.base.url}/v1/notifier/email/send -sms-notification.rest.uri=${mosip.base.url}/v1/notifier/sms/send +mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send +sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template @@ -304,7 +303,6 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -mosip.base.url=${mosip.api.public.url} iam.base.url=${keycloak.host} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration validationStatus=success From 54a98f2dd42b53952dd412beab42e406bffb5743 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 6 Jun 2021 05:01:42 +0530 Subject: [PATCH 0101/1358] Prereg language properties corrected. --- pre-registration-default.properties | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index b015fe80f4a..bf35e6c3764 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -288,7 +288,6 @@ pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId -mosip.primary-language=eng ## Login service mosip.preregistration.login.service.version=1.0 @@ -369,10 +368,10 @@ mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.i ## UI params #------------to be removed later ------- -#mosip.mandatory.languages=ara,fra -#mosip.optional.languages= -#mosip.min.languages.count=2 -#mosip.max.languages.count=2 +mosip.mandatory-languages=eng,fra +mosip.optional-languages=0 +mosip.min-languages.count=2 +mosip.max-languages.count=2 ------------------------------------------- ## List of keys which UI will consume ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version From 473dcd2ea27119b9501e92aa82665c2bf8b7fa02 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 6 Jun 2021 05:40:56 +0530 Subject: [PATCH 0102/1358] Prereg property updated. --- pre-registration-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index bf35e6c3764..764375a58cd 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -189,6 +189,9 @@ mosip.primary-language=eng id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} ## Masterdata service +## Base url is only used for masterdata. We give the in-cluster url here +mosip.base.url=http://masterdata.kernel + masterdata.service.version=v1 masterdata.service.env=http://masterdata.kernel masterdata.service.contextpath=masterdata From 11ab50a15004ab1437f1923c959524fd2fa97d00 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 6 Jun 2021 17:10:28 +0530 Subject: [PATCH 0103/1358] IDschema version updated. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 764375a58cd..ac1de3697b8 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -39,7 +39,7 @@ mosip.adult.age=5 ## ID Schema ## This version is set in the ID object created in pre-registration -mosip.idschema.version=0.1 +mosip.idschema.version=0.2 ## Demographic Service From 81a9e4ec430901229c7f59614b3e6c69ffdce22f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 6 Jun 2021 18:06:24 +0530 Subject: [PATCH 0104/1358] Prereg demographic json updated. --- pre-registration-demographic.json | 25 ++++++++++++------------- 1 file changed, 12 insertions(+), 13 deletions(-) diff --git a/pre-registration-demographic.json b/pre-registration-demographic.json index 5d7927b38f7..313f73f77ac 100644 --- a/pre-registration-demographic.json +++ b/pre-registration-demographic.json @@ -1,16 +1,15 @@ { "identity":[ - - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, { "id":"fullName", "description":"Enter Full Name", @@ -57,7 +56,7 @@ }, "controlType":"dropdown", "inputRequired":true, - "fieldType":"default", + "fieldType":"dynamic", "type":"simpleType", "validators":[ @@ -73,7 +72,7 @@ }, "controlType":"dropdown", "inputRequired":true, - "fieldType":"default", + "fieldType":"dynamic", "type":"simpleType", "validators":[ From fc57e6f2850ebb90bf0628e5993ed4cb0290c550 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 15 Jun 2021 11:05:49 +0530 Subject: [PATCH 0105/1358] [MOSIP-15041] Print properties updated. --- print-default.properties | 83 ++++++++++++++++++---------------------- 1 file changed, 37 insertions(+), 46 deletions(-) diff --git a/print-default.properties b/print-default.properties index ef16214ffab..c5d74b1f4ff 100644 --- a/print-default.properties +++ b/print-default.properties @@ -1,11 +1,16 @@ -dmz.ingress.base.url=http://dmz.ingress:30080 -# Websub base url -websub.base.url=${dmz.ingress.base.url} +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# mosip.mosip.regproc.client.secret +# keycloak.host + +## Websub +websub.base.url=http://websub.websub mosip.event.hubURL=${websub.base.url}/websub mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident -mosip.event.callBackUrl=${mosipbox.public.url}/v1/print/print/callback/notifyPrint +mosip.event.callBackUrl=http://print-service.print/v1/print/print/callback/notifyPrint mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED mosip.event.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 csrf.disabled=true @@ -13,92 +18,79 @@ mosip.event.delay=120000 print-websub-resubscription-delay-secs=7200 registration.processor.print.textfile=registration-processor-print-text-file.json -#-------------TOKEN GENERATION---------------- -#Token generation request id +## Token token.request.id=io.mosip.registration.processor -#Token generation app id token.request.appid=regproc -#Token generation username token.request.username=registrationprocessor -#Token generation password token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGVnY3M1DIeKGFAeBNfi6jH5qgj1KCUmFONLwSmfcrPx9m6MYXXQMYwyAeq13Msy1fcG1AtZQASKeLbuMCaRwinwdt7C/WYzvVVv47NojD+VmHHVTY3qBXJ4dwZ0/BqmUBPXyYrJPKTcdouxT76bgm5+fXXNcT7lciXgD1aCnWKziL5nDa6Y9dhc+ZPyM0d+I0JfS+emsByt7tWgcZukQkOEx8JWfcCR4eVpERYVa/ps/EAuQRXmxIvnr54GSCc/KKpwnYnjLtKIx/75I6pezBdKU/BBJG1syjQp9VQC9adSI5fdsn3ijkxJjC9TSIFJKDlTHqNCnJaxQXcSBWL4Y= -#Token generation version token.request.version=1.0 -#Token generation Client Id token.request.clientId=mosip-regproc-client -#Token generation secret key -token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -#Token generation issuer url -token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip +token.request.secretKey= ${mosip.mosip.regproc.client.secret} +token.request.issuerUrl=${keycloak.host}/auth/realms/mosip -#Audit Service -AUDIT=http://kernel-auditmanager-service/v1/auditmanager/audits +# Audit service +AUDIT=http://auditmanager.kernel/v1/auditmanager/audits mosip.kernel.pdf_owner_password=123456 -#Auth Service -authmanager.base.url=http://kernel-auth-service + +## Auth service +authmanager.base.url=http://authmanager.kernel KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey -#Master Data Services -MASTER=http://kernel-masterdata-service/v1/masterdata +## Master data services +MASTER=http://masterdata.kernel/v1/masterdata TEMPLATES=${MASTER}/templates mosip.print.audit.id=mosip.applicanttype.getApplicantType -#Packet receiver application version mosip.print.application.version=1.0 -#Request Date Time format mosip.print.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -#Encrypt Services -PDFSIGN=http://kernel-keymanager-service/v1/keymanager/pdf/sign +## Encrypt services +PDFSIGN=http://keymanager.keymanager/v1/keymanager/pdf/sign -#-------------Printing Service-------------------- mosip.print.service.id=mosip.print -#UIN card password mosip.print.service.uincard.password=postalCode|fullName mosip.print.uin.header.length=75 -#Rectangle coordinates for pfd signataured data +## Rectangle coordinates for pfd signataured data mosip.print.service.uincard.lowerleftx=73 mosip.print.service.uincard.lowerlefty=100 mosip.print.service.uincard.upperrightx=300 mosip.print.service.uincard.upperrighty=300 mosip.print.service.uincard.signature.reason="signing" -#Audit request id +# #Audit request id mosip.print.audit.id=mosip.applicanttype.getApplicantType -#Kernel Crypto signature +## Kernel Crypto signature registration.processor.signature.isEnabled=true -mosip.country.code=MOR - -# Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +## Country specific +mosip.country.code=MOR +mosip.supported-languages=eng,fra mosip.primary-language=eng -mosip.secondary-language=ara +mosip.secondary-language=fra -#----------------------- CBEFF Util-------------------------------------------------- +## CBEFF util # Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # Cbeff XSD file name in config server mosip.kernel.xsdfile=mosip-cbeff.xsd -#----------------------------- Applicant Type -------------------------------------------------- -mosip.kernel.applicant.type.age.limit = 5 +mosip.kernel.applicant.type.age.limit=5 -#----------------------------- Static PIN -------------------------------------------------- mosip.kernel.pin.length=6 -#-----------------------------TOKEN-ID Properties--------------------------------- -#length of the token id +## Token id +## length of the token id mosip.kernel.tokenid.length=36 -# log level +## log level logging.level.root=WARN logging.level.io.mosip=INFO logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO -# tomcat access logs + +## tomcat access logs server.tomcat.accesslog.enabled=true server.tomcat.accesslog.directory=/dev server.tomcat.accesslog.prefix=stdout @@ -109,10 +101,9 @@ server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t" server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve registration.processor.unMaskedUin.length=5 -#mosip.print.uin.header.length=10 config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ IDSchema.Version=1.0 registration.processor.identityjson=registration-processor-identity.json registration.processor.demographic.identity=identity -CREATEDATASHARE=http://datashare-service/v1/datashare/create -DECRYPTPINBASSED=http://kernel-keymanager-service/v1/keymanager/decryptWithPin +CREATEDATASHARE=http://datashare.datashare/v1/datashare/create +DECRYPTPINBASSED=http://keymanager.keymanager/v1/keymanager/decryptWithPin From 1f070af514e87b832205b084c0a18c8046572cb4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 15 Jun 2021 11:06:18 +0530 Subject: [PATCH 0106/1358] Minor update. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 74d2c640cf3..5a8d7ccc446 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -74,7 +74,7 @@ token.request.username=registrationprocessor token.request.password= token.request.version=1.0 token.request.clientId=mosip-regproc-client -token.request.secretKey=mosip.mosip.regproc.client.secret +token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. token.request.issuerUrl=${keycloak.host}/auth/realms/mosip From 19cda75b4d38b04838295b97d3ff22aed74aa80c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 19 Jun 2021 19:56:58 +0530 Subject: [PATCH 0107/1358] Updated for api host. --- admin-default.properties | 4 ++-- id-authentication-default.properties | 3 ++- partner-management-default.properties | 6 +++--- print-default.properties | 3 ++- registration-processor-default.properties | 4 ++-- syncdata-default.properties | 4 ++-- 6 files changed, 13 insertions(+), 11 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 3a72cf49c85..bed870dbdb7 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -5,8 +5,9 @@ # keycloak.host # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.regproc.client.secret -# mosip.api.internal.url +# mosip.api.internal.host +mosip.api.internal.url=https://${mosip.api.internal.host} mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST ## Database properties @@ -179,7 +180,6 @@ mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} -# TODO: Admin should have internal access. Change this to internal URL later. mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.admin-services.open-id.login_flow.scope=cls mosip.admin-services.open-id.login_flow.scope=email diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 86e10cae44d..d64dc4268b8 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -11,8 +11,9 @@ # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # softhsm.ida.pin -# mosip.api.internal.url +# mosip.api.internal.host +mosip.api.internal.url=https://${mosip.api.internal.host} ## Client mosip.ida.auth.clientId=mosip-ida-client mosip.ida.auth.secretKey=${mosip.mosip.ida.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 71feccaaaef..f0fdcf43852 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -6,7 +6,7 @@ ## mosip.mosip.pms.client.secret ## keycloak.host ## keycloak.admin.password -# mosip.api.public.url +## mosip.api.public.url ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace @@ -160,8 +160,8 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret=${mosip.api.public.url} -mosip.iam.module.redirecturi=${mosip.api.public.url}/v1/partnermanager/login-redirect/ +mosip.iam.module.clientsecret=${mosip.mosip.pms.client.secret} +mosip.iam.module.redirecturi=https://${mosip.api.public.host}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth diff --git a/print-default.properties b/print-default.properties index c5d74b1f4ff..dd4cd2e95ea 100644 --- a/print-default.properties +++ b/print-default.properties @@ -3,6 +3,7 @@ # helm chart: # mosip.mosip.regproc.client.secret # keycloak.host +# print.websub.hub.secret ## Websub websub.base.url=http://websub.websub @@ -12,7 +13,7 @@ mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident mosip.event.callBackUrl=http://print-service.print/v1/print/print/callback/notifyPrint mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED -mosip.event.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 +osip.event.secret=${print.websub.hub.secret} csrf.disabled=true mosip.event.delay=120000 print-websub-resubscription-delay-secs=7200 diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5a8d7ccc446..71d94dc5226 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -4,10 +4,10 @@ # helm chart: # db.dbuser.password # mosip.mosip.regproc.client.secret -# mosip.api.internal.url +# mosip.api.internal.host # keycloak.host - +mosip.api.internal.url=https://${mosip.api.internal.host} registration.processor.zone=default ## Health check diff --git a/syncdata-default.properties b/syncdata-default.properties index 1fe327ed2e2..a50fa96cd60 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -1,7 +1,7 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# mosip.api.public.url +# mosip.api.public.host # db.dbuser.password # keycloak.host # keycloak.admin.password @@ -385,7 +385,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=${mosip.api.public.url}/v1/syncdata/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=https://${mosip.api.public.host}/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a From 067b55686a9e077badedad2894a4ababef0af6a7 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Tue, 22 Jun 2021 11:29:27 +0530 Subject: [PATCH 0108/1358] updated schema version --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index ac1de3697b8..764375a58cd 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -39,7 +39,7 @@ mosip.adult.age=5 ## ID Schema ## This version is set in the ID object created in pre-registration -mosip.idschema.version=0.2 +mosip.idschema.version=0.1 ## Demographic Service From 3670e960436d37255b849c71a0742ef967233d53 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Jun 2021 12:00:41 +0530 Subject: [PATCH 0109/1358] [MOSIP-11894] Syncdata idschema url corrected. --- pre-registration-default.properties | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 764375a58cd..5b5f6992a0c 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -267,12 +267,7 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service ## To fetch the latest ID Schema for the ID object validator -kernel.syncdata.env=http://syncdata.kernel -kernel.syncdata.version=v1/syncdata -latestidschema.service.contextpath=latestidschema -mosip.preregistration.id-schema=${kernel.syncdata.env}/${kernel.syncdata.version}/${latestidschema.service.contextpath} -## API to fetch the latest ID schema -mosip.preregistration.id-schema=http://kernel-syncdata-service/v1/syncdata/latestidschema +mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema ## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} From 04bb2ec25d690f8dcd9326bc8b2dbef5226221b5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Jun 2021 14:31:35 +0530 Subject: [PATCH 0110/1358] [MOSIP-11894] Syncdata properties corrected. --- syncdata-default.properties | 36 ++++++++++++++++++------------------ 1 file changed, 18 insertions(+), 18 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index a50fa96cd60..162b4156a1b 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -14,7 +14,7 @@ ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager +mosip.kernel.syncdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -24,7 +24,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=http://kernel-masterdata-service/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-idschema-url=http://masterdata.kernel/v1/masterdata/idschema/latest ## SMS notification mosip.kernel.sms.enabled=false @@ -76,13 +76,13 @@ auth.refreshtoken.header=RefreshToken auth.jwt.refresh.expiry=86400000 auth.primary.language=eng -otp.manager.api.generate=http://kernel-otpmanager-service/v1/otpmanager/otp/generate -otp.manager.api.verify=http://kernel-otpmanager-service/v1/otpmanager/otp/validate -otp.sender.api.email.send=http://kernel-notification-service/v1/notifier/email/send -otp.sender.api.sms.send=http://kernel-notification-service/v1/notifier/sms/send -masterdata.api.template=http://kernel-masterdata-service/v1/masterdata/templates/ +otp.manager.api.generate=http://otpmanager.kernel/v1/otpmanager/otp/generate +otp.manager.api.verify=http://otpmanager.kernel/v1/otpmanager/otp/validate +otp.sender.api.email.send=http://notification.kernel/v1/notifier/email/send +otp.sender.api.sms.send=http://notification.kernel/v1/notifier/sms/send +masterdata.api.template=http://masterdata.kernel/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=http://idrepo-identity-service/idrepository/v1/identity/uin/{uin} +idrepo.api.getuindetails=http://identity.idrepo/idrepository/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client @@ -255,7 +255,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager +mosip.authmanager.base-url=http://authmanager.kernel/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -266,11 +266,11 @@ mosip.admin_realm_id=mosip master.search.maximum.rows=50 mosip.level=2 -mosip.kernel.masterdata.audit-url= http://kernel-auditmanager-service/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url= http://auditmanager.kernel/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 ## Register device -mosip.kernel.sign-url=http://kernel-keymanager-service/v1/keymanager/sign +mosip.kernel.sign-url=http://keymanager.keymanager/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 ## Prereg @@ -288,7 +288,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=http://kernel-auth-service/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 @@ -303,7 +303,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=http://kernel-auth-service/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -355,7 +355,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=http://kernel-masterdata-service/v1/masterdata/machines/%s/eng +mosip.kernel.syncdata-service-machine-url=http://masterdata.kernel/v1/masterdata/machines/%s/eng # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments @@ -367,10 +367,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=http://kernel-auth-service/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=http://kernel-auth-service/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=http://kernel-auth-service/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=http://kernel-auth-service/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=http://authmanager.kernel/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=http://authmanager.kernel/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key From 54f9ad0287cdb38df0d27abdfaabe91ebe96b482 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Jun 2021 05:48:22 +0530 Subject: [PATCH 0111/1358] [MOSIP-11894] Minor format update. --- pre-registration-identity-mapping.json | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/pre-registration-identity-mapping.json b/pre-registration-identity-mapping.json index 5b5336a54e8..b96f70b1b93 100644 --- a/pre-registration-identity-mapping.json +++ b/pre-registration-identity-mapping.json @@ -1,14 +1,14 @@ { - "identity": { - "name": { - "value": "fullName", - "isMandatory" : true - }, - "proofOfAddress": { - "value" : "proofOfAddress" - }, - "postalCode": { - "value" : "postalCode" - } - } -} \ No newline at end of file + "identity": { + "name": { + "value": "fullName", + "isMandatory" : true + }, + "proofOfAddress": { + "value" : "proofOfAddress" + }, + "postalCode": { + "value" : "postalCode" + } + } +} From 05a14856bb49e6dcab41f6965989178812860b1d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Jun 2021 12:10:05 +0530 Subject: [PATCH 0112/1358] Fra transliteration removed. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 532e46dc221..0544dca0489 100644 --- a/application-default.properties +++ b/application-default.properties @@ -235,7 +235,7 @@ mosip.kernel.virus-scanner.port=80 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara -mosip.kernel.transliteration.franch-language-code=fra +mosip.kernel.transliteration.franch-language-code= ## DOB mosip.default.dob.month=01 From 9c6dbb45a844f6e3c3a634aaeb2f41735abd3784 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Jun 2021 12:37:43 +0530 Subject: [PATCH 0113/1358] Unused prop removed. --- pre-registration-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 5b5f6992a0c..0a8631739f5 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -362,7 +362,6 @@ por.url=proofOfRelationship ## Determines request & response id of transliteration-service mosip.pre-registration.transliteration.transliterate.id=mosip.pre-registration.transliteration.transliterate mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.transliteration.transliterate -mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.icu4j ## UI params #------------to be removed later ------- From 6ed8de0ed7c8f1ea722d87e6c5749562e040f3dd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Jun 2021 15:30:21 +0530 Subject: [PATCH 0114/1358] Work around for syncdata issue. --- pre-registration-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 0a8631739f5..708045a1615 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -267,7 +267,8 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service ## To fetch the latest ID Schema for the ID object validator -mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema +#mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema +mosip.preregistration.id-schema=http://masterdata.kernel/v1/masterdata/latestidschema ## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} From fea28631570e560d6583b67c5afa5aa83fa25b33 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Jun 2021 15:31:11 +0530 Subject: [PATCH 0115/1358] Work around for syncdata issue. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 708045a1615..78cce186f41 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -268,7 +268,7 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service ## To fetch the latest ID Schema for the ID object validator #mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema -mosip.preregistration.id-schema=http://masterdata.kernel/v1/masterdata/latestidschema +mosip.preregistration.id-schema=http://masterdata.kernel/v1/masterdata/idschema/latest ## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} From 2ee38a46c925ecb6cb1a6bec537f3bae24cd4465 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 24 Jun 2021 07:10:55 +0530 Subject: [PATCH 0116/1358] [MOSIP-11894] Formatting improved. --- applicanttype-document-mapping.json | 67 ++++---- applicanttype.mvel | 237 ++++++++++++++-------------- 2 files changed, 148 insertions(+), 156 deletions(-) diff --git a/applicanttype-document-mapping.json b/applicanttype-document-mapping.json index f196f3d277e..37dd1352fd4 100644 --- a/applicanttype-document-mapping.json +++ b/applicanttype-document-mapping.json @@ -1,41 +1,34 @@ { - "applicantCategory": [{ - "applicantType": "adult", - "documentCategory": [{ - "key": "proofOfAddress", - "values": [ - "DOC001", "DOC013", "DOC014", "DOC015", "DOC005", "DOC005", "DOC006", "DOC016", "DOC017", "DOC018", "DOC008" - ] - }, - { - "key": "proofOfIdentity", - "values": [ - "DOC001", "DOC002", "DOC003", "DOC004", "DOC005", "DOC006", "DOC007", "DOC008", "DOC009", "DOC010", "DOC011", "DOC012" - ] - } - ] + "applicantCategory": [ + { + "applicantType": "adult", + "documentCategory": [ + { + "key": "proofOfAddress", + "values": ["DOC001", "DOC013", "DOC014", "DOC015", "DOC005", "DOC005", "DOC006", "DOC016", "DOC017", "DOC018", "DOC008"] + }, + { + "key": "proofOfIdentity", + "values": ["DOC001", "DOC002", "DOC003", "DOC004", "DOC005", "DOC006", "DOC007", "DOC008", "DOC009", "DOC010", "DOC011", "DOC012"] + } + ] + }, + { + "applicantType": "child", + "documentCategory": [ + { + "key": "proofOfRelation", + "values": ["DOC024", "DOC025", "DOC026", "DOC001", "DOC027", "DOC028"] + }, + { + "key": "proofOfIdentity", + "values": ["DOC001", "DOC006", "DOC009"] }, { - "applicantType": "child", - "documentCategory": [{ - "key": "proofOfRelation", - "values": [ - "DOC024", "DOC025", "DOC026", "DOC001", "DOC027", "DOC028" - ] - }, - { - "key": "proofOfIdentity", - "values": [ - "DOC001", "DOC006", "DOC009" - ] - }, - { - "key": "proofOfAddress", - "values": [ - "DOC001", "DOC013", "DOC014", "DOC006" - ] - } - ] - } - ] + "key": "proofOfAddress", + "values": ["DOC001", "DOC013", "DOC014", "DOC006"] + } + ] + } + ] } diff --git a/applicanttype.mvel b/applicanttype.mvel index e6eaabc9097..1d24e44227d 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -1,121 +1,120 @@ def getApplicantType(map,a) { - import java.time.LocalDate; - import java.time.LocalDateTime; - import java.time.format.DateTimeFormatter; - import java.time.Period; - - - String itc = null; - String dob = null; - String genderType = null; - boolean isBioExPresent = false; - String FOREIGNER = "FR"; - String NON_FOREIGNER = "NFR"; - String MALE = "MLE"; - String FEMALE = "FLE"; - String CHILD = "CHL"; - String ADULT = "ADL"; - String ATTR_INDIVIDUAL_TYPE = "individualTypeCode"; - String ATTR_DATE_OF_BIRTH = "dateofbirth"; - String ATTR_GENDER_TYPE = "genderCode"; - String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; - String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; - - itc= (String) map[ATTR_INDIVIDUAL_TYPE]; - - dob= (String) map[ATTR_DATE_OF_BIRTH]; - - if(dob == empty || dob == null ){ - return "KER-MSD-147"; - } - - int age = -1; - LocalDate currentDate = LocalDate.now(); - - LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); - - if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { - age = Period.between(birthDate, currentDate).getYears(); - } - else{ - return age; - } - - - genderType=(String) map[ATTR_GENDER_TYPE]; - isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; - - if (((itc == empty || itc == null) && (dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) - return "KER-MSD-147"; - if(age >= agelimit) - ageCode=ADULT; - else if( age >= 0 && age < agelimit) - ageCode=CHILD; - - if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - - return "001"; - } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - - return "002"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - - return "003"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - - return "004"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - - return "005"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - - return "006"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - - return "007"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - - return "008"; - - } else if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { - - return "009"; - - } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { - - return "010"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { - - return "011"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { - - return "012"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - - return "013"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - - return "014"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - - return "015"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - - return "016"; - - } - return null; + import java.time.LocalDate; + import java.time.LocalDateTime; + import java.time.format.DateTimeFormatter; + import java.time.Period; -}; \ No newline at end of file + String itc = null; + String dob = null; + String genderType = null; + boolean isBioExPresent = false; + String FOREIGNER = "FR"; + String NON_FOREIGNER = "NFR"; + String MALE = "MLE"; + String FEMALE = "FLE"; + String CHILD = "CHL"; + String ADULT = "ADL"; + String ATTR_INDIVIDUAL_TYPE = "individualTypeCode"; + String ATTR_DATE_OF_BIRTH = "dateofbirth"; + String ATTR_GENDER_TYPE = "genderCode"; + String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; + String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; + + itc= (String) map[ATTR_INDIVIDUAL_TYPE]; + + dob= (String) map[ATTR_DATE_OF_BIRTH]; + + if(dob == empty || dob == null ){ + return "KER-MSD-147"; + } + + int age = -1; + LocalDate currentDate = LocalDate.now(); + + LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); + + if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { + age = Period.between(birthDate, currentDate).getYears(); + } + else { + return age; + } + + + genderType=(String) map[ATTR_GENDER_TYPE]; + isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; + + if (((itc == empty || itc == null) && (dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) + return "KER-MSD-147"; + if(age >= agelimit) + ageCode=ADULT; + else if( age >= 0 && age < agelimit) + ageCode=CHILD; + + if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { + + return "001"; + } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { + + return "002"; + + } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { + + return "003"; + + } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { + + return "004"; + + } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { + + return "005"; + + } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { + + return "006"; + + } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { + + return "007"; + + } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { + + return "008"; + + } else if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { + + return "009"; + + } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { + + return "010"; + + } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { + + return "011"; + + } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { + + return "012"; + + } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { + + return "013"; + + } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { + + return "014"; + + } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { + + return "015"; + + } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { + + return "016"; + + } + return null; + +}; From 8d998dd80ffac08dcf72b98692f91e8ae9ea2c54 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 24 Jun 2021 21:36:50 +0530 Subject: [PATCH 0117/1358] [MOSIP-11894] Applicant type made non-integer. --- applicanttype.mvel | 32 ++++++++++++++++---------------- 1 file changed, 16 insertions(+), 16 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 1d24e44227d..14b24a9702c 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -53,66 +53,66 @@ def getApplicantType(map,a) { if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "001"; + return "A001"; } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "002"; + return "A002"; } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "003"; + return "A003"; } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "004"; + return "A004"; } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "005"; + return "A005"; } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "006"; + return "A006"; } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "007"; + return "A007"; } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "008"; + return "A008"; } else if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "009"; + return "A009"; } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "010"; + return "A010"; } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "011"; + return "A011"; } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "012"; + return "A012"; } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "013"; + return "A013"; } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "014"; + return "A014"; } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "015"; + return "A015"; } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "016"; + return "A016"; } return null; From b6dde38ea597aac1ebf43037c09a376620ac49c7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 27 Jun 2021 07:48:58 +0530 Subject: [PATCH 0118/1358] [MOSIP-11894] Partner management properties corrected. --- partner-management-default.properties | 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index f0fdcf43852..28f8c054f8b 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -99,9 +99,12 @@ pmp.partner.partnerId.max.length=36 ## Time difference between request creation and request processing masterdata.registerdevice.timestamp.validate=+5 +## Keymanager +keymanager.base.url=http://keymanager.keymanager +mosip.kernel.sign-url=${keymanager.base.url}/v1/keymanager/jwtSign + ## Kernel services mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits -mosip.kernel.sign-url=http://keymanager.kernel/v1/keymanager/jwtSign # ApplicationId for partner mosip.pmp.auth.appId =partner @@ -112,10 +115,10 @@ mosip.pmp.auth.secretKey= ${mosip.mosiop.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -pmp.ca.certificaticate.upload.rest.uri=http://keymanager.kernel/v1/keymanager/uploadCACertificate -pmp.partner.certificaticate.upload.rest.uri=http://keymanager.kernel/v1/keymanager/uploadPartnerCertificate -pmp.partner.certificaticate.get.rest.uri=http://keymanager.kernel/v1/keymanager/getPartnerCertificate/{partnerCertId} -pmp-keymanager.upload.other.domain.cert.rest.uri=http://keymanager.kernel/v1/keymanager/uploadOtherDomainCertificate +pmp.ca.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadCACertificate +pmp.partner.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadPartnerCertificate +pmp.partner.certificaticate.get.rest.uri=${keymanager.base.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} +pmp-keymanager.upload.other.domain.cert.rest.uri=${keymanager.base.url}/v1/keymanager/uploadOtherDomainCertificate ## Keycloak # These configurations are used to create user in keycloak and map to a role. From 370e3cb324d2b589cbb833cdd4e8ab29d226273e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 30 Jun 2021 05:08:40 +0530 Subject: [PATCH 0119/1358] Comment added. --- pre-registration-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 78cce186f41..fbeb8044c95 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -267,6 +267,7 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service ## To fetch the latest ID Schema for the ID object validator +# WORKAROUND: TODO restore #mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema mosip.preregistration.id-schema=http://masterdata.kernel/v1/masterdata/idschema/latest From aaa956e4ea6aecef2a79132c4d610064f774bd85 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 7 Jul 2021 12:21:00 +0530 Subject: [PATCH 0120/1358] Disabling cache for testing. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index a4255630c8e..ec5264e2f59 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -352,7 +352,7 @@ datastores=db_1_DS,db_2_DS mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident # Keymanager service keystore cache properties -mosip.kernel.keymanager.keystore.keyreference.enable.cache=true +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false # API to get machine based on machine id mosip.kernel.syncdata-service-machine-url=http://masterdata.kernel/v1/masterdata/machines/%s/eng From fc0500f67ad27a542f6d5ee5ddcbef27d98363ff Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 7 Jul 2021 12:47:32 +0530 Subject: [PATCH 0121/1358] Syncdata websub time increased. --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 162b4156a1b..aa52bf1ff73 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -393,7 +393,7 @@ syncdata.websub.resubscription.retry.count=3 # this property value is set to 0 that disables this workaround. # To enable the resubscrition scheduling, this property should be assigned with a positive # number like 1 * 60 * 60 = 3600 for one hour -syncdata.websub.resubscription.delay.secs=7200 +syncdata.websub.resubscription.delay.secs=7200000 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 From f8d499da27f02afae0d9b21e2437c83e7878ce18 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 16 Jul 2021 15:15:17 +0530 Subject: [PATCH 0122/1358] PMS property corrected. --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 28f8c054f8b..3c13d0ab595 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -111,7 +111,7 @@ mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services mosip.pmp.auth.clientId=mosip-partner-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.mosiop.partner.client.secret} +mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey From fa6b529448ce0f2309db0083e19923fb92cd1b23 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 16 Jul 2021 19:18:17 +0530 Subject: [PATCH 0123/1358] Syncdata websub property updated. --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index aa52bf1ff73..ca573e06526 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -385,7 +385,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=https://${mosip.api.public.host}/v1/syncdata/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a From 24f4a73e757b764f365a4e40a35c314d50032beb Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 16 Jul 2021 19:26:45 +0530 Subject: [PATCH 0124/1358] Syncdata websub properties updated. --- syncdata-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index ca573e06526..e4d7979f308 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -385,7 +385,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/websub/callback/cacert # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a @@ -393,7 +393,7 @@ syncdata.websub.resubscription.retry.count=3 # this property value is set to 0 that disables this workaround. # To enable the resubscrition scheduling, this property should be assigned with a positive # number like 1 * 60 * 60 = 3600 for one hour -syncdata.websub.resubscription.delay.secs=7200000 +syncdata.websub.resubscription.delay.secs=41100000 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 From 0d92dc4dd163144fb8f1b1a8b551bb495f4363b6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 20 Jul 2021 05:37:24 +0530 Subject: [PATCH 0125/1358] Regclient properties updated. --- registration-default.properties | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/registration-default.properties b/registration-default.properties index 172f1da7f05..eab8d429dac 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -460,3 +460,23 @@ mosip.registration.replace_sdk_quality_score=N #URL for reset password mosip.registration.reset_password_url=https://dev.mosip.net/keycloak/auth/realms/mosip/account/ + +# camera used as document scanner resolution +mosip.camera.resolution.width = 2592 +mosip.camera.resolution.height = 1944 + +# Face threshold and retry attempts +mosip.registration.num_of_face_retries=3 +mosip.registration.face_threshold=60 + +# scanner configuration +mosip.registration.DOCUMENT_SCANNER_DEPTH=100 + +#used to fill env in the MDM rcapture request +mosip.registration.server_profile=Staging + +# domain used for MDM trust validation +mosip.registration.mdm.trust.domain.rcapture=DEVICE +mosip.registration.mdm.trust.domain.digitalId=DEVICE +mosip.registration.mdm.trust.domain.deviceinfo=DEVICE + From 14c11e7e56a00c6f4a3eb416d1ac2a2d02f38cf2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 20 Jul 2021 06:13:16 +0530 Subject: [PATCH 0126/1358] Minor comment. --- registration-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-default.properties b/registration-default.properties index eab8d429dac..6210fb3b5fb 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -476,6 +476,7 @@ mosip.registration.DOCUMENT_SCANNER_DEPTH=100 mosip.registration.server_profile=Staging # domain used for MDM trust validation +# For L1 devices this should be FTM mosip.registration.mdm.trust.domain.rcapture=DEVICE mosip.registration.mdm.trust.domain.digitalId=DEVICE mosip.registration.mdm.trust.domain.deviceinfo=DEVICE From d1b95f9f812ed00c6cd572bf3ac31f789e678419 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 20 Jul 2021 14:51:30 +0530 Subject: [PATCH 0127/1358] Clamav host name corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 71d94dc5226..efc03f48006 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -219,7 +219,7 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=80 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 From 0b272b569405d5b44ccabc4cc8f39daae2818633 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 20 Jul 2021 21:39:24 +0530 Subject: [PATCH 0128/1358] Space removed. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 0544dca0489..d3af80f4c59 100644 --- a/application-default.properties +++ b/application-default.properties @@ -230,7 +230,7 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=80 ## Transliteration From 01bd360f404587bb588205575c6993bedf3247a3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 21 Jul 2021 12:13:19 +0530 Subject: [PATCH 0129/1358] Reprocess time reduced for testing. --- registration-processor-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index efc03f48006..8dfc326c0a0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -290,13 +290,13 @@ mosip.registration.processor.print.service.uincard.signature.reason="signing" registration.processor.reprocess.fetchsize=100 # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=7200 +registration.processor.reprocess.elapse.time=30 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron registration.processor.reprocess.seconds=0 -# Frequency for reprocess has been updated to every 5 minutes for pause/resume feature -registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 +# TODO: time reduced for testing. Revert for production. +registration.processor.reprocess.minutes=* registration.processor.reprocess.hours=* registration.processor.reprocess.days_of_month=* registration.processor.reprocess.months=* From 49e58ab94ef9e5ff2d3ab568c13d0e63673b96ad Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Jul 2021 07:10:14 +0530 Subject: [PATCH 0130/1358] [MOSIP-15956] s3 properties updated. --- application-default.properties | 18 +++++++++++------- 1 file changed, 11 insertions(+), 7 deletions(-) diff --git a/application-default.properties b/application-default.properties index d3af80f4c59..6b5d4470e63 100644 --- a/application-default.properties +++ b/application-default.properties @@ -1,7 +1,11 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# keycloak.host +# keycloak.host +# object.store.s3.accesskey +# object.store.s3.region +# object.store.s3.secretkey + aplication.configuration.level.version=1.1.4 ## Idobject validator @@ -320,12 +324,12 @@ object.store.base.location=/home/mosip hazelcast.config=classpath:hazelcast_default.xml -## S3 object store adapter. TODO: ciphers here must be passed as config-server env variables. -object.store.s3.accesskey=admin -object.store.s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 -## Below url assumes minio is running in the cluster itself. -object.store.s3.url=http://minio.minio:9000 -object.store.s3.region= +## S3 object store adapter. +object.store.s3.accesskey=${object.store.s3.accesskey} +object.store.s3.secretkey=${object.store.s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. Leave blank for S3 +object.store.s3.url= +object.store.s3.region=${object.store.s3.region} object.store.s3.readlimit=10000000 ## Swift From 5006b65956f2ec01a850a61930c282102bd5250f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Jul 2021 07:20:34 +0530 Subject: [PATCH 0131/1358] [MOSIP-15956] Dummy url added for s3. --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 6b5d4470e63..1e2b04c9622 100644 --- a/application-default.properties +++ b/application-default.properties @@ -328,7 +328,8 @@ hazelcast.config=classpath:hazelcast_default.xml object.store.s3.accesskey=${object.store.s3.accesskey} object.store.s3.secretkey=${object.store.s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. Leave blank for S3 -object.store.s3.url= +## Dummy url for s3 +object.store.s3.url=http://s3.com object.store.s3.region=${object.store.s3.region} object.store.s3.readlimit=10000000 From fb94948bc8ccd94cdc1635e3f26343c0cfc84759 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Jul 2021 12:50:04 +0530 Subject: [PATCH 0132/1358] Log level changed to DEBUG. --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 1e2b04c9622..f669e4362cd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -352,7 +352,8 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN --logging.level.io.mosip=INFO +## TODO: Change to INFO in production +-logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 77f388a14db4f4effc12e9ccb5b39aa1dedfe426 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Jul 2021 12:52:39 +0530 Subject: [PATCH 0133/1358] Corrected DEBUG property. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index f669e4362cd..5f8458825d0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -353,7 +353,7 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN ## TODO: Change to INFO in production --logging.level.io.mosip=DEBUG +logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 2ad7ce3068be3c8175b666a9ac561f3f1d11e81d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Jul 2021 12:55:07 +0530 Subject: [PATCH 0134/1358] Nginx property corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8dfc326c0a0..2feef28ea46 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -54,7 +54,7 @@ schema.default.fieldCategory=pvt,none # The IDSchemaVersion used to create packets in reg-proc IDSchema.Version=0.1 ## TODO: correct this -NGINXURL=http://regproc-pktserver.regproc/ +NGINXDMZURL=http://regproc-pktserver.regproc/ packet.info.storage.service=* ## Camel bridge From 983435299f50daba8f0b8eab6800d6b334da90f4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 22 Jul 2021 22:13:52 +0530 Subject: [PATCH 0135/1358] Update s3 properties. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 5f8458825d0..7ed0fe1237d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -329,7 +329,7 @@ object.store.s3.accesskey=${object.store.s3.accesskey} object.store.s3.secretkey=${object.store.s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. Leave blank for S3 ## Dummy url for s3 -object.store.s3.url=http://s3.com +object.store.s3.url=s3.${object.store.s3.region}.amazonaws.com object.store.s3.region=${object.store.s3.region} object.store.s3.readlimit=10000000 From 6184b970a307be7c8f81f81b0aa31079eff1e234 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 05:52:51 +0530 Subject: [PATCH 0136/1358] Log level changed to DEBUG. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 7ed0fe1237d..49c34c04d3e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -351,8 +351,8 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer ## Log level -logging.level.root=WARN ## TODO: Change to INFO in production +logging.level.root=DEBUG logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 82da7b598885ddff941dd94dc7b63273cc7155ed Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 06:01:08 +0530 Subject: [PATCH 0137/1358] Restored log level settings. --- application-default.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 49c34c04d3e..a002e7f76e8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -351,9 +351,8 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer ## Log level -## TODO: Change to INFO in production -logging.level.root=DEBUG -logging.level.io.mosip=DEBUG +logging.level.root=WARN +logging.level.io.mosip=INFO logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 2681005ec953b67891769429b2ee0c40aa7d0e81 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 10:37:46 +0530 Subject: [PATCH 0138/1358] s3 properties updated. --- application-default.properties | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/application-default.properties b/application-default.properties index a002e7f76e8..73393e19fd7 100644 --- a/application-default.properties +++ b/application-default.properties @@ -2,9 +2,9 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # keycloak.host -# object.store.s3.accesskey -# object.store.s3.region -# object.store.s3.secretkey +# s3.accesskey +# s3.region +# s3.secretkey aplication.configuration.level.version=1.1.4 @@ -325,12 +325,12 @@ hazelcast.config=classpath:hazelcast_default.xml ## S3 object store adapter. -object.store.s3.accesskey=${object.store.s3.accesskey} -object.store.s3.secretkey=${object.store.s3.secretkey} +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. Leave blank for S3 ## Dummy url for s3 -object.store.s3.url=s3.${object.store.s3.region}.amazonaws.com -object.store.s3.region=${object.store.s3.region} +object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 ## Swift From 2b7878543f07164a7bcd7c13c9ce0de8f158eefe Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 13:58:59 +0530 Subject: [PATCH 0139/1358] Log level changed to DEBUG. --- application-default.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 73393e19fd7..4f6dee62cdd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -327,8 +327,7 @@ hazelcast.config=classpath:hazelcast_default.xml ## S3 object store adapter. object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. Leave blank for S3 -## Dummy url for s3 +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 @@ -352,7 +351,7 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From 16ea38b22990f15162ffb0c9e80946dbb3dfbfc3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 14:53:07 +0530 Subject: [PATCH 0140/1358] Account name corrected. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 4f6dee62cdd..42ae9a4d181 100644 --- a/application-default.properties +++ b/application-default.properties @@ -337,7 +337,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=PACKET_MANAGER_ACCOUNT +packet.manager.account.name=packet-manager CRYPTOMANAGER_DECRYPT=${mosip.keymanager.base.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.keymanager.base.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.masterdata.base.url}/v1/masterdata/idschema/latest From cee873060967847874c19279f402a89e461fb8b9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 17:25:19 +0530 Subject: [PATCH 0141/1358] Log level reverted. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 42ae9a4d181..e2284fb4216 100644 --- a/application-default.properties +++ b/application-default.properties @@ -351,7 +351,7 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN -logging.level.io.mosip=DEBUG +logging.level.io.mosip=INFO logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From c77ef5cb92e47c727bd2eb4b049a0b8dd31a367d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 23 Jul 2021 17:57:46 +0530 Subject: [PATCH 0142/1358] UMC check removed. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2feef28ea46..794839ff58a 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -196,7 +196,7 @@ mosip.identity.auth.internal.requestid=mosip.identity.auth.internal registration.processor.validate.introducer=true mosip.kernel.device.validate.history.id="" ## UMC: User, Machine, Center -mosip.registartion.processor.validateUMC=true +mosip.registartion.processor.validateUMC=false auth.PrependThumbprint.enable=false ## Packet receiver From 5c47ef5735e1d878c57db7d64d0f8ff2eb6cfc6a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 05:56:38 +0530 Subject: [PATCH 0143/1358] EIS property updated. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 794839ff58a..596282066df 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -141,7 +141,7 @@ CRYPTOMANAGERDECRYPT=${KEYMANAGER}/v1/keymanager/decrypt crypto.PrependThumbprint.enable=true ## External Service -EISERVICE=http://regproc-external.regproc/registrationprocessor/v1/eis/registration-processor/external-integration-service/v1.0 +EISERVICE=http://regproc-eis.regproc/registrationprocessor/v1/eis/registration-processor/external-integration-service/v1.0 ## RID Generation Service RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid From b1dcaa10e9f7830c28f482efd6d7fbcc979636b9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 10:54:21 +0530 Subject: [PATCH 0144/1358] Minor comment added. --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 596282066df..f64e7b289ba 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -348,6 +348,7 @@ PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag DATASHARE=http://datashare.datashare DATASHARECREATEURL=${DATASHARE}/v1/datashare/create DATASHAREGETEURL=${DATASHARE}/v1/datashare/get +# Default abis is mock-abis provided by MOSIP registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis From 22ec70ce7a05d88f9d3098f885afb5dc5f9683d5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 13:07:43 +0530 Subject: [PATCH 0145/1358] Idrepo url updated. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f64e7b289ba..6e93d65fab8 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -120,7 +120,7 @@ IDREPOGETIDBYUIN=${IDREPOIDENTITY}/idvid UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin RETRIEVEIDENTITYFROMRID=${IDREPOIDENTITY}/idvid RETRIEVEIDENTITY=${IDREPOIDENTITY}/idvid -IDREPOVID=http://idrepo-vid.idrepo +IDREPOVID=http://vid.idrepo CREATEVID=${IDREPOVID}/idrepository/v1/vid GETUINBYVID=${IDREPOVID}/idrepository/v1/idvid CREDENTIALREQUEST=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator From b02194d9968d72e5577f2d49bd67cd3dc68ab548 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 13:31:05 +0530 Subject: [PATCH 0146/1358] Biosdk url updated. --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 9927265fd0a..93ac37dcbcd 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -266,7 +266,7 @@ PARTNER_EXTRACTION_POLICY=http://pms-partner.pms/v1/partnermanager/partners/{par credential.service.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip # BioSDK service -mosip.biosdk.default.host=http://13.233.66.241 +mosip.biosdk.default.host=http://biosdk-service.biosdk mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality From 6cdbdafce8c4c1562b207cfc4435dbecfa79a61f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 14:47:41 +0530 Subject: [PATCH 0147/1358] DEBUG log level added. --- id-repository-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/id-repository-default.properties b/id-repository-default.properties index 93ac37dcbcd..f2b73e3e137 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -304,3 +304,5 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +# TODO: revert later. +logging.level.io.mosip.idrepository.core.httpfilter.BaseIdRepoFilter=DEBUG From 4a61d437164ad21feef73e79143b701185b9974d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 14:52:10 +0530 Subject: [PATCH 0148/1358] DEBUG level. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index e2284fb4216..42ae9a4d181 100644 --- a/application-default.properties +++ b/application-default.properties @@ -351,7 +351,7 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From d839b4ba27392adcb56ccf6618c61717fd17db65 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 14:59:42 +0530 Subject: [PATCH 0149/1358] Idrepo property updated. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index ec5264e2f59..14f59ab4680 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -81,7 +81,7 @@ otp.sender.api.email.send=http://notifier.kernel/v1/notifier/email/send otp.sender.api.sms.send=http://notifier.kernel/v1/notifier/sms/send masterdata.api.template=http://masterdata.kernel/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=http://idrepo-identity-service/idrepository/v1/identity/uin/{uin} +idrepo.api.getuindetails=http://identity.idrepo/idrepository/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client From 7f0d92a3f7d3ee3acfae3252ea32692e9fdb50d6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 17:45:37 +0530 Subject: [PATCH 0150/1358] DEBUG log level --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 42ae9a4d181..4992eaa4f4f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -256,7 +256,8 @@ mosip.kernel.auth.proxy-email=true mosip.notification.language-type=BOTH ## System -logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO +## TODO: Revert to INFO +logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=DEBUG ## Admin mosip.min-digit-longitude-latitude=4 From c350c06e8ea4a62e97efe1be7930e7c37b38657c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 17:49:49 +0530 Subject: [PATCH 0151/1358] Previous change reverted back. --- application-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 4992eaa4f4f..42ae9a4d181 100644 --- a/application-default.properties +++ b/application-default.properties @@ -256,8 +256,7 @@ mosip.kernel.auth.proxy-email=true mosip.notification.language-type=BOTH ## System -## TODO: Revert to INFO -logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=DEBUG +logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO ## Admin mosip.min-digit-longitude-latitude=4 From 45d5eb993caa15b58ca3d201004e4a2fe50b1343 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 18:30:39 +0530 Subject: [PATCH 0152/1358] DEBUG for regproc. --- application-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/application-default.properties b/application-default.properties index 42ae9a4d181..a30fabc65f7 100644 --- a/application-default.properties +++ b/application-default.properties @@ -350,10 +350,13 @@ schema.default.fieldCategory=pvt,none mosip.stage.environment=Developer ## Log level + logging.level.root=WARN logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO +#TODO: remove later +logging.level.io.mosip.registration.processor=DEBUG ## Tomcat access logs server.tomcat.accesslog.enabled=true From 45ae712c84b2afdb0964030997d217220b3dc349 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 18:45:58 +0530 Subject: [PATCH 0153/1358] Reverted back DEBUG log for regproc. --- application-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index a30fabc65f7..772d7f16bf9 100644 --- a/application-default.properties +++ b/application-default.properties @@ -355,8 +355,6 @@ logging.level.root=WARN logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO -#TODO: remove later -logging.level.io.mosip.registration.processor=DEBUG ## Tomcat access logs server.tomcat.accesslog.enabled=true From 8772d525d8ae0eb12faae03b35d2c211295d73a2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 24 Jul 2021 23:09:09 +0530 Subject: [PATCH 0154/1358] Hazelcast discovery disabled. --- hazelcast_default.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/hazelcast_default.xml b/hazelcast_default.xml index 040c52de759..be574a0ccf6 100644 --- a/hazelcast_default.xml +++ b/hazelcast_default.xml @@ -13,7 +13,7 @@ xmlns="http://www.hazelcast.com/schema/config" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> <properties> - <property name="hazelcast.discovery.enabled">true</property> + <property name="hazelcast.discovery.enabled">false</property> <property name="hazelcast.logging.type">slf4j</property> </properties> <group> @@ -25,7 +25,7 @@ <multicast enabled="false"/> <tcp-ip enabled="false" /> <discovery-strategies> - <discovery-strategy enabled="true" + <discovery-strategy enabled="false" class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> <properties> <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> From ea211daaaeb2d5ac88c6c34666e00a74f47d69a1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 25 Jul 2021 17:20:25 +0530 Subject: [PATCH 0155/1358] Debug log property reverted back. --- id-repository-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index f2b73e3e137..93ac37dcbcd 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -304,5 +304,3 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} -# TODO: revert later. -logging.level.io.mosip.idrepository.core.httpfilter.BaseIdRepoFilter=DEBUG From 49caca91f4cc9f52deb1bc7fcc4c381f9668f34a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 25 Jul 2021 18:56:02 +0530 Subject: [PATCH 0156/1358] Minor change in url. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 6e93d65fab8..aa94dc91917 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -115,7 +115,7 @@ IDSCHEMA=${MASTER}/idschema/latest ## ID Repository Services -IDREPOIDENTITY=http://identity.idrepo/idrepository/v1/identity/ +IDREPOIDENTITY=http://identity.idrepo/idrepository/v1/identity IDREPOGETIDBYUIN=${IDREPOIDENTITY}/idvid UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin RETRIEVEIDENTITYFROMRID=${IDREPOIDENTITY}/idvid From e833887bbf7da9c93f7fc6238b75e0fd7443f059 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 25 Jul 2021 19:08:49 +0530 Subject: [PATCH 0157/1358] ID repo params corrected. --- registration-processor-default.properties | 20 +++++++++----------- 1 file changed, 9 insertions(+), 11 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index aa94dc91917..679d3712c2f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -114,17 +114,15 @@ DEVICEVALIDATEHISTORY=http://pms-partner.pms/v1/partnermanager/deviceproviderman IDSCHEMA=${MASTER}/idschema/latest ## ID Repository Services - -IDREPOIDENTITY=http://identity.idrepo/idrepository/v1/identity -IDREPOGETIDBYUIN=${IDREPOIDENTITY}/idvid -UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin -RETRIEVEIDENTITYFROMRID=${IDREPOIDENTITY}/idvid -RETRIEVEIDENTITY=${IDREPOIDENTITY}/idvid -IDREPOVID=http://vid.idrepo -CREATEVID=${IDREPOVID}/idrepository/v1/vid -GETUINBYVID=${IDREPOVID}/idrepository/v1/idvid -CREDENTIALREQUEST=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator -GETVIDSBYUIN=${IDREPOVID}/idrepository/v1/vid/uin +IDREPOSITORY=http://identity.idrepo/idrepository/v1/identity/ +IDREPOGETIDBYUIN=http://identity.idrepo/idrepository/v1/identity/idvid +UINGENERATOR=http://kernel-idgenerator-service/v1/idgenerator/uin +RETRIEVEIDENTITYFROMRID=http://identity.idrepo/idrepository/v1/identity/idvid +RETRIEVEIDENTITY=http://identity.idrepo/idrepository/v1/identity/idvid +CREATEVID=http://vid.idrepo/idrepository/v1/vid +GETUINBYVID=http://vid.idrepo/idrepository/v1/idvid +CREDENTIALREQUEST=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator +GETVIDSBYUIN=http://vid.idrepo/idrepository/v1/vid/uin ## Encrypt Services KEYMANAGER=http://keymanager.keymanager/ From 710229705cdd4b34ebe01119de90204b2b8f7978 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 25 Jul 2021 19:13:08 +0530 Subject: [PATCH 0158/1358] idrepo property corrected --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 679d3712c2f..926351db392 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -116,7 +116,7 @@ IDSCHEMA=${MASTER}/idschema/latest ## ID Repository Services IDREPOSITORY=http://identity.idrepo/idrepository/v1/identity/ IDREPOGETIDBYUIN=http://identity.idrepo/idrepository/v1/identity/idvid -UINGENERATOR=http://kernel-idgenerator-service/v1/idgenerator/uin +UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin RETRIEVEIDENTITYFROMRID=http://identity.idrepo/idrepository/v1/identity/idvid RETRIEVEIDENTITY=http://identity.idrepo/idrepository/v1/identity/idvid CREATEVID=http://vid.idrepo/idrepository/v1/vid From b90077bef9bdbf634fdb0ac1e53f8a09ca66c484 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 13:27:51 +0530 Subject: [PATCH 0159/1358] Minor cleanup. --- registration-default.properties | 3 --- 1 file changed, 3 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 6210fb3b5fb..c0c7ca83b16 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -408,9 +408,6 @@ mosip.registration.mds.face.dedup.enable.flag=N #Storage Location of the Identity Schema. LOCAL specifies the schema is stored within the application. Should not be modified mosip.kernel.idobjectvalidator.file-storage-uri=LOCAL -#File name of the Identity Schema. Should not be modified -mosip.kernel.idobjectvalidator.schema-name=mosip-identity-json-schema.json - #Property Source of the Identity Schema. Should not be modified mosip.kernel.idobjectvalidator.property-source=LOCAL From a80c959c59977a43561f4e9432a7735db2b42c99 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 16:28:23 +0530 Subject: [PATCH 0160/1358] Object validation disabled for a few properties as their urls don't work anymore. --- application-default.properties | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 772d7f16bf9..a6697c42af8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,7 +14,8 @@ mosip.masterdata.base.url = http://masterdata.kernel # Commenting/removing below property will disable all masterdata validations as supported languages are required for all other validations mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages # commenting/removing below property will disable Gender masterdata validation -mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes +## Removed as API no longer valid +#mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes # commenting/removing below properties will disable Document Type masterdata validation mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} @@ -22,7 +23,9 @@ mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterd mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} # commenting/removing below properties will disable individualtype/resident status masterdata validations -mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes +## Removed as API no longer valid +#mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes +#mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes # List of Location Hierarchy mappings for which the provided fields are from identity schema # and its values are validated against mapped location hierarchy masterdata. From 05d929b27dbe460efdce1820ee4ec41d13aa516a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 17:40:14 +0530 Subject: [PATCH 0161/1358] Commented out properties for testing. --- application-default.properties | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index a6697c42af8..3ff56470056 100644 --- a/application-default.properties +++ b/application-default.properties @@ -20,8 +20,10 @@ mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata. mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} # commenting/removing below properties will disable location and location hierarchy masterdata validations -mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} +## TODO: Revert later +#mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} +## TODO: Revert later +#mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} # commenting/removing below properties will disable individualtype/resident status masterdata validations ## Removed as API no longer valid #mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes From 55d294dad8dd86a5e4cb2c51aef727107bb8774d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 17:49:20 +0530 Subject: [PATCH 0162/1358] Testing related changes. --- id-repository-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 93ac37dcbcd..e206991c2cc 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -21,7 +21,9 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepo +#mosip.idrepo.objectstore.bucket-name=idrepo +## TODO: temp change for testing. +mosip.idrepo.objectstore.bucket-name=idrepository mosip.idrepo.objectstore.adapter-name=s3Adapter # For auditing From 774cb535f9cd9ff7cf2b8f79685fcdbcc7b46d8f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 17:57:30 +0530 Subject: [PATCH 0163/1358] Reverted previous testing related changes. --- application-default.properties | 6 ++---- id-repository-default.properties | 2 -- 2 files changed, 2 insertions(+), 6 deletions(-) diff --git a/application-default.properties b/application-default.properties index 3ff56470056..a6697c42af8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -20,10 +20,8 @@ mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata. mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} # commenting/removing below properties will disable location and location hierarchy masterdata validations -## TODO: Revert later -#mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} -## TODO: Revert later -#mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} +mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} +mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} # commenting/removing below properties will disable individualtype/resident status masterdata validations ## Removed as API no longer valid #mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes diff --git a/id-repository-default.properties b/id-repository-default.properties index e206991c2cc..5c594cf6d34 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -21,8 +21,6 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -#mosip.idrepo.objectstore.bucket-name=idrepo -## TODO: temp change for testing. mosip.idrepo.objectstore.bucket-name=idrepository mosip.idrepo.objectstore.adapter-name=s3Adapter From f405cb73576565adc23db10bfced90b53b38bf86 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 20:00:04 +0530 Subject: [PATCH 0164/1358] Resident properties corrected. Still WIP. --- resident-default.properties | 38 ++++++++++++++++--------------------- 1 file changed, 16 insertions(+), 22 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index fd01880cba8..120bc1e83b6 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -22,47 +22,41 @@ vid.revoke.id=mosip.vid.deactivate resident.revokevid.id=mosip.resident.vidstatus PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT -DECRYPT_API_URL=http://kernel-keymanager-service/v1/keymanager/decrypt +DECRYPT_API_URL=http://keymanager.keymanager/v1/keymanager/decrypt #-------------TOKEN GENERATION---------------- -#Token generation request id token.request.id=io.mosip.resident -#Token generation app id resident.appid=resident -#Token generation version token.request.version=1.0 -# Kernel auth client ID for IDA resident.clientId=mosip-resident-client -# Kernel auth secret key for IDA resident.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -#Token genration issue url token.request.issuerUrl=${mosip.keycloak.issuerUrl} #--------------URI-------------------------- #Auth Services -KERNELAUTHMANAGER=http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey +KERNELAUTHMANAGER=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=http://regproc-print-service/registrationprocessor/v1/print/uincard -INTERNALAUTH=http://ida-internal-service/idauthentication/v1/internal/auth -INTERNALAUTHTRANSACTIONS=http://ida-internal-service/idauthentication/v1/internal/authTransactions -KERNELENCRYPTIONSERVICE=http://ida-internal-service/idauthentication/v1/internal/getCertificate -IDAUTHCREATEVID=http://idrepo-vid-service/idrepository/v1/vid -IDAUTHREVOKEVID=http://idrepo-vid-service/idrepository/v1/vid/deactivate +INTERNALAUTH=http://ida-internal.ida/idauthentication/v1/internal/auth +INTERNALAUTHTRANSACTIONS=http://ida-internal.ida/idauthentication/v1/internal/authTransactions +KERNELENCRYPTIONSERVICE=http://ida-internal.ida/idauthentication/v1/internal/getCertificate +IDAUTHCREATEVID=http://vid.idrepo/idrepository/v1/vid +IDAUTHREVOKEVID=http://vid.idrepo/idrepository/v1/vid/deactivate #Notification service -IDREPOGETIDBYUIN=http://idrepo-identity-service/idrepository/v1/identity/idvid -IDREPOGETIDBYRID=http://idrepo-identity-service/idrepository/v1/identity/idvid -GETUINBYVID=http://idrepo-vid-service/idrepository/v1/vid +IDREPOGETIDBYUIN=http://identity.idrepo/idrepository/v1/identity/idvid +IDREPOGETIDBYRID=http://identity.idrepo/idrepository/v1/identity/idvid +GETUINBYVID=http://vid.idrepo/idrepository/v1/vid resident.notification.emails=mosiptestuser@gmail.com resident.notification.message=Notification has been sent to the provided contact detail(s) #templates -MASTER=http://kernel-masterdata-service/v1/masterdata +MASTER=http://masterdata.kernel/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters -RIDGENERATION=http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid -CREATEVID=http://idrepo-vid-service/idrepository/v1/vid +RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid +CREATEVID=http://vid.idrepo/idrepository/v1/vid IDREPOSITORY=http://idrepo-identity-service/idrepository/v1/identity/ -ENCRYPTURL=http://kernel-keymanager-service/v1/keymanager/encrypt -MIDSCHEMAURL=http://kernel-syncdata-service/v1/syncdata/latestidschema +ENCRYPTURL=http://keymanager.keymanager/v1/keymanager/encrypt +MIDSCHEMAURL=http://syncdata.kernel/v1/syncdata/latestidschema # DMZ service call dmz.ingress.base.url=http://dmz.ingress:30080 SYNCSERVICE=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/sync @@ -77,7 +71,7 @@ resident.center.id=10001 resident.machine.id=10001 #Credential Req service POLICY_REQ_URL=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -OTP_GEN_URL=http://ida-internal-service/idauthentication/v1/internal/otp +OTP_GEN_URL=http://ida-internal.ida/idauthentication/v1/internal/otp CREDENTIAL_STATUS_URL=http://idrepo-credential-request-generator/v1/credentialrequest/get/ CREDENTIAL_REQ_URL=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator CREDENTIAL_CANCELREQ_URL=http://idrepo-credential-request-generator/v1/credentialrequest/cancel/ From 20f8d98debf3bb8f01e4ff22f5f1738a95ea0765 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 27 Jul 2021 20:03:01 +0530 Subject: [PATCH 0165/1358] Credential request generator properties updated. --- registration-processor-default.properties | 2 +- resident-default.properties | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 926351db392..0efd3edd553 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -121,7 +121,7 @@ RETRIEVEIDENTITYFROMRID=http://identity.idrepo/idrepository/v1/identity/idvid RETRIEVEIDENTITY=http://identity.idrepo/idrepository/v1/identity/idvid CREATEVID=http://vid.idrepo/idrepository/v1/vid GETUINBYVID=http://vid.idrepo/idrepository/v1/idvid -CREDENTIALREQUEST=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator +CREDENTIALREQUEST=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator GETVIDSBYUIN=http://vid.idrepo/idrepository/v1/vid/uin ## Encrypt Services diff --git a/resident-default.properties b/resident-default.properties index 120bc1e83b6..bba2df0b66b 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -72,9 +72,9 @@ resident.machine.id=10001 #Credential Req service POLICY_REQ_URL=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies OTP_GEN_URL=http://ida-internal.ida/idauthentication/v1/internal/otp -CREDENTIAL_STATUS_URL=http://idrepo-credential-request-generator/v1/credentialrequest/get/ -CREDENTIAL_REQ_URL=http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator -CREDENTIAL_CANCELREQ_URL=http://idrepo-credential-request-generator/v1/credentialrequest/cancel/ +CREDENTIAL_STATUS_URL=http://credentialrequest.idrepo/v1/credentialrequest/get/ +CREDENTIAL_REQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator +CREDENTIAL_CANCELREQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/cancel/ CREDENTIAL_TYPES_URL=http://idrepo-credential-service/v1/credentialservice/types PARTNER_API_URL=http://pms-partner-manager-service/v1/partnermanager/partners mosip.kernel.masterdata.audit-url=http://kernel-auditmanager-service/v1/auditmanager/audits From 1661a67d86280eecb38fb66331aac810f0d0b22e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 28 Jul 2021 05:59:43 +0530 Subject: [PATCH 0166/1358] Credential request client secret corrected. --- id-repository-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 5c594cf6d34..666f1b56424 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# mosip.mosip.creqreq.client.secret +# mosip.mosip.crereq.client.secret # mosip.mosip.creser.client.secret # keycloak.host # mosip.kernel.tokenid.uin.salt @@ -182,7 +182,7 @@ hibernate.show_sql=false # Token generator properties credential.request.token.request.appid=crereq credential.request.token.request.clientId=mosip-crereq-client -credential.request.token.request.secretKey=${mosip.mosip.creqreq.client.secret} +credential.request.token.request.secretKey=${mosip.mosip.crereq.client.secret} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator credential.request.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip From 9a0824df2e41665ecd519735e649edcdec891010 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 28 Jul 2021 08:43:38 +0530 Subject: [PATCH 0167/1358] Minor format cleanup. --- registration-processor-print-text-file.json | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/registration-processor-print-text-file.json b/registration-processor-print-text-file.json index 9de84ed605a..c37f180e1e7 100644 --- a/registration-processor-print-text-file.json +++ b/registration-processor-print-text-file.json @@ -1,9 +1,9 @@ { - "name": "fullName,LastName", - "address": "addressLine1,addressLine2,addressLine3", - "region": "region", - "province": "province", - "city": "city", - "postalCode": "postalCode", - "phoneNumber": "phone" + "name": "fullName,LastName", + "address": "addressLine1,addressLine2,addressLine3", + "region": "region", + "province": "province", + "city": "city", + "postalCode": "postalCode", + "phoneNumber": "phone" } From 744e4b3391f5abf61a4ee63aef404158e070256b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 29 Jul 2021 06:03:58 +0530 Subject: [PATCH 0168/1358] INFO mode reverted back. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index a6697c42af8..c2a1c22427a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -355,7 +355,7 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN -logging.level.io.mosip=DEBUG +logging.level.io.mosip=INFO logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From d45ad53e2d7f3965669d240b3948e49099b0f3e3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 30 Jul 2021 11:21:55 +0530 Subject: [PATCH 0169/1358] Mock abis property updated. --- mock-abis-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 9b768f5aecb..429350c87f5 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,3 +7,4 @@ management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 abis.return.duplicate=false +secret_url=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey From f7ed8b8de08d7a0810dc36857d419fa1ff6e8fef Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 30 Jul 2021 11:42:55 +0530 Subject: [PATCH 0170/1358] Mock abis properties updated. --- mock-abis-default.properties | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 429350c87f5..e2103da97c3 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -1,10 +1,15 @@ -#spring.cloud.config.uri=https://dev.mosip.net/config +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# mosip.mosip.regproc.client.secret spring.cloud.config.name=mock-abis -#spring.profiles.active=mz -#spring.cloud.config.label=1.1.2 spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 abis.return.duplicate=false secret_url=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +secret_url.clientnId=mosip-regproc-client +secret_url.id=string +secret_url.secretKey=${mosip.mosip.regproc.client.secret} +secret_url.appId=regproc From 97c4d6c4470ac3124a7e5b7fcb99aaa8955c3ca4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 30 Jul 2021 18:05:38 +0530 Subject: [PATCH 0171/1358] Property added for testing. --- id-authentication-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d64dc4268b8..eeb62131687 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -479,3 +479,7 @@ mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign. mosip.kernel.keymanager.autogen.basekeys.list=${application.id}:${internal.reference.id},${application.id}:${partner.reference.id},${application.id}:${partner.biometric.reference.id},${application.id}:${mosip.kernel.zkcrypto.publickey.reference.id},${application.id}:${ida-auth-partner-id} zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida + +## TODO: For testing. Revert in production +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false + From 6680ebf6bfb02d26bd5fd867714a6e40b0837585 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 12 Aug 2021 22:21:22 +0530 Subject: [PATCH 0172/1358] [MOSIP-16645] Updated for 1.2.0 --- application-default.properties | 71 ++++++++++++++++++---------------- 1 file changed, 38 insertions(+), 33 deletions(-) diff --git a/application-default.properties b/application-default.properties index c2a1c22427a..bde6f3aa61f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -6,51 +6,40 @@ # s3.region # s3.secretkey -aplication.configuration.level.version=1.1.4 +aplication.configuration.level.version=LTS ## Idobject validator -mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable=NA +# This config is used for loading recommended centers based on the value of the config. +# The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded +mosip.recommended.centers.locCode=5 + mosip.masterdata.base.url = http://masterdata.kernel -# Commenting/removing below property will disable all masterdata validations as supported languages are required for all other validations -mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages -# commenting/removing below property will disable Gender masterdata validation -## Removed as API no longer valid -#mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes -# commenting/removing below properties will disable Document Type masterdata validation -mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories -mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} -# commenting/removing below properties will disable location and location hierarchy masterdata validations -mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} -# commenting/removing below properties will disable individualtype/resident status masterdata validations -## Removed as API no longer valid -#mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes -#mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes - -# List of Location Hierarchy mappings for which the provided fields are from identity schema -# and its values are validated against mapped location hierarchy masterdata. -# Needs to be updated when Identity Schema has been updated. -mosip.kernel.idobjectvalidator.locationhierarchy.mapping.0=country -mosip.kernel.idobjectvalidator.locationhierarchy.mapping.1=region -mosip.kernel.idobjectvalidator.locationhierarchy.mapping.2=province -mosip.kernel.idobjectvalidator.locationhierarchy.mapping.3=city -mosip.kernel.idobjectvalidator.locationhierarchy.mapping.4=zone -mosip.kernel.idobjectvalidator.locationhierarchy.mapping.5=postalCode +mosip.syncdata.base.url=http://syncdata.kernel + +# masterdata field data url +mosip.idobjectvalidator.masterdata.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/possiblevalues/{subType} +# Path to IDSchemaVersion. Path is defined as per JsonPath.compile. +mosip.kernel.idobjectvalidator.identity.id-schema-version-path=identity.IDSchemaVersion +# Path to dateOfBirth field. Path is defined as per JsonPath.compile. +mosip.kernel.idobjectvalidator.identity.dob-path = identity.dateOfBirth + +# Refresh cache only once for a particular subType for each request, when a value is not found for that subType. By default, it is false +mosip.idobjectvalidator.refresh-cache-on-unknown-value=false # Date format expected in identity json. commenting/removing below property will disable dob format validation in identity json. mosip.kernel.idobjectvalidator.date-format=uuuu/MM/dd - ## Properties that need to be updated when Identity Schema has been updated mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.update-uin=IDSchemaVersion,UIN -mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.child-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.child-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.other=IDSchemaVersion,UIN mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.lost=IDSchemaVersion +mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.biometric_correction=IDSchemaVersion +# Value used in IdObjectReferenceValidator when value is not available +mosip.kernel.idobjectvalidator.masterdata.value-not-available=NA ## Bio attribute allowed to be stored in IDRepo as per Identity Schema mosip.idrepo.identity.allowedBioAttributes=individualBiometrics @@ -202,6 +191,8 @@ mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keym mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign mosip.kernel.keymanager.cert.url=${mosip.keymanager.base.url}/v1/keymanager/getCertificate +mosip.kernel.keymanager-service-CsSign-url=${mosip.keymanager.base.url}/v1/keymanager/cssign +mosip.kernel.keymanager.cert.url=${mosip.keymanager.base.url}/v1/keymanager/getCertificate mosip.sign.applicationid=KERNEL mosip.sign.refid=SIGN mosip.kernel.cryptomanager.request_id=CRYPTOMANAGER.REQUEST @@ -301,6 +292,7 @@ management.metrics.export.prometheus.enabled=true mosip.kernel.syncdata-service-idschema-url=${mosip.masterdata.base.url}/v1/masterdata/idschema/latest mosip.kernel.syncdata-service-dynamicfield-url=${mosip.masterdata.base.url}/v1/masterdata/dynamicfields +mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.syncdata.base.url}/v1/syncdata/tpm/publickey/ mosip.kernel.keymanager-service-validate-url=${mosip.keymanager.base.url}/v1/keymanager/validate ## GPS @@ -311,12 +303,13 @@ mosip.registration.gps_device_enable_flag=n ## 1. 'exception' : it will throw exception. ## 2. 'defaultPriority' : use default priority packetmanager.default.priority. packetmanager.default.read.strategy=defaultPriority -packetmanager.default.priority=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} +packetmanager.packet.signature.disable-verification=false mosip.commons.packetnames=id,evidence,optional -provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl +provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl provider.packetreader.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketReaderImpl -provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|CORRECTION,classname:io.mosip.commons.packet.impl.PacketWriterImpl +provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -373,3 +366,15 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.base.url=http://websub.websub websub.hub.url=${websub.base.url}/websub/hub websub.publish.url=${websub.base.url}/websub/publish +websub.failed.messages.sync.url=${websub.base.url}/websub/sync/failedmessage + +mosip.mandatory-languages=eng +mosip.optional-languages=ara,fra +mosip.min-languages.count=2 +mosip.max-languages.count=3 + +# These are default languages used for sending notifications +mosip.default.template-languages=eng,ara + +#Config key to pick the preferred language for communicating to the Resident +mosip.default.user-preferred-language-attribute=preferredLang From e2f3206fcc26c1b757225ccc1df4688cdb329784 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 13 Aug 2021 11:05:49 +0530 Subject: [PATCH 0173/1358] [MOSIP-16645] Updated for 1.2.0 --- kernel-default.properties | 392 +++++++++++++++++++++++++++++++++++++- 1 file changed, 387 insertions(+), 5 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 14f59ab4680..9af3230c831 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -342,7 +342,7 @@ datastores=ldap_1_DS,db_1_DS,db_2_DS mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM ## List of keys to auto generate. -mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS +mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 @@ -388,16 +388,398 @@ syncdata.websub.callback.url.path.ca-cert=/callback/partner/ca_certificate syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 +# Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. +subscriptions-delay-on-startup=120000 + +# Flag to identify the support of no thumbprint in 1.1.3 version. +# Added this for backward compatability. default is false, means support is not required. +# Make it to true if support is required. +mosip.kernel.keymanager.113nothumbprint.support=false + +# Pause & resume api proeprties +PACKET_RESUME_API=http://regproc-workflowmanager/registrationprocessor/v1/workflowmanager/workflowaction +PACKET_PAUSE_API=http://regproc-workflowmanager/registrationprocessor/v1/workflowmanager/workflow/search +KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey + +## resubscription and subscription initial delay for masterdata service +masterdata.websub.resubscription.delay.millis=48000000 +masterdata.subscriptions-delay-on-startup=120000 + # The time interval in seconds to schedule subscription of topics which is done as a # work-around for the bug: MOSIP-9496. By default the # this property value is set to 0 that disables this workaround. # To enable the resubscrition scheduling, this property should be assigned with a positive -# number like 1 * 60 * 60 = 3600 for one hour -syncdata.websub.resubscription.delay.secs=7200 -# Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. -subscriptions-delay-on-startup=120000 +# number like 1 * 60 * 60 * 1000 = 3600000 for one hour +syncdata.websub.resubscription.delay.millis=48000000 + +## Admin UI +## this pattern like --> display column : configKey. +## We can provide multiple values with ";" separated +mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false + +## Used to get IAM user details. +mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager +mosip.kernel.masterdata.auth-user-details=/userdetails + +## identity schema backward compatability ######## +mosip.ui.spec.default.domain=registration-client + +#scheduler do it's job at 2am +scheduling.job.cron=0 0 2 * * ? + +## Admin roles +mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getapplicationtypeslangcode=RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.postapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postbiometricattributes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getblocklistedwordslangcode=INDIVIDUAL,ID_AUTHENTICATION,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getdocumentcategories=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdocumentcategorieslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdocumentcategoriescode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesall=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getdocumenttypesdocumentcategorycode=INDIVIDUAL,ID_AUTHENTICATION,ZONAL_ADMIN,PARTNER,PARTNER_ADMIN,PRE_REGISTRATION,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN +#mosip.role.admin.masterdata.getdocumenttypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +#mosip.role.admin.masterdata.getdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,INDIVIDUAL,Default +#mosip.role.admin.masterdata.getdistinct=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN,Default +mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN + +#mosip.role.admin.masterdata.getexceptionalholidaysregistrationcenterid=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION + +mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER + +#mosip.role.admin.masterdata.getgendertypes=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT +#mosip.role.admin.masterdata.getgendertypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getgendertypesvalidategendername=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,CENTRAL_ADMIN +mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN + +mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,GLOBAL_ADMIN + +#mosip.role.admin.masterdata.getidtypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN + +#mosip.role.admin.masterdata.getindividualtypes=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN + +#mosip.role.admin.masterdata.getlanguages=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,Default +mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,GLOBAL_ADMIN + +#mosip.role.admin.masterdata.getlocationslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN +mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getlocationslocationcodelangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN +#mosip.role.admin.masterdata.getlocationsinfolocationcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN +#mosip.role.admin.masterdata.getlocationslocationhierarchy=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN +mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getlocationsimmediatechildrenlocationcodelangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN +#mosip.role.admin.masterdata.getlocationsvalidatelocationname=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,GLOBAL_ADMIN + +#mosip.role.admin.masterdata.getlocationhierarchylevelslevellangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_PROCESSOR,INDIVIDUAL +mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR +#mosip.role.admin.masterdata.getlocationhierarchylevelslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_PROCESSOR,INDIVIDUAL + +mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR,RESIDENT +mosip.role.admin.masterdata.getmachineslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getmachines=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN + +mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN + +mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.postpacketrejectionreasonsreasoncategory=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR + +mosip.role.admin.masterdata.postpacketresume=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postpacketsearch=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR + +mosip.role.admin.masterdata.postregistereddevices=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,GLOBAL_ADMIN + +mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN + +mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR + +mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT +mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR + +mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemaall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemalatest=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT + +#mosip.role.admin.masterdata.gettemplates=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER +#mosip.role.admin.masterdata.gettemplateslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER +#mosip.role.admin.masterdata.gettemplateslangcodetemplatetypecode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER +mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER +mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatesall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.posttemplatetypes=GLOBAL_ADMIN,ZONAL_ADMIN +#mosip.role.admin.masterdata.gettemplatetypescodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,ID_AUTHENTICATION,INDIVIDUAL,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_SUPERVISOR,DEVICE_MANAGER,DEVICE_MANAGER,AUTH_PARTNER,PARTNER,PARTNER_ADMIN,PRE_REGISTRATION +#mosip.role.admin.masterdata.gettemplatetypeslangcode=GLOBAL_ADMIN,ZONAL_ADMIN + +#mosip.role.admin.masterdata.gettitle=GLOBAL_ADMIN,ZONAL_ADMIN,ID_AUTHENTICATION,INDIVIDUAL,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_SUPERVISOR,DEVICE_MANAGER,DEVICE_MANAGER,AUTH_PARTNER,PARTNER,PARTNER_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION +#mosip.role.admin.masterdata.gettitlelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_OPERATOR,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.admin.masterdata.posttitle=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettitleall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.postuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.postuispecpublish=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getuispecall=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +#mosip.role.admin.masterdata.getuispecdomainlatest=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT + +mosip.role.admin.masterdata.getusersid=ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusers=ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserdetails=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserssearch=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT + +mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +#mosip.role.admin.masterdata.getvaliddocumentslanguagecode=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,RESIDENT,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,PARTNER,PARTNER_ADMIN,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +#mosip.role.admin.masterdata.getvaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,RESIDENT,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,PARTNER,PARTNER_ADMIN,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER + +#mosip.role.admin.masterdata.getweekdaysregistrationcenteridlangcode=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +#mosip.role.admin.masterdata.getworkingdaysregistrationcenteridlangcode=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +#mosip.role.admin.masterdata.getworkingdayslangcode=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION + +mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,ZONAL_ADMIN +#mosip.role.admin.masterdata.getzonesleafslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneuserhistoryuserid=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN + +## Kernel roles +mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postcsverifysign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postcssign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postdecryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postencryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postdecryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postencryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postgeneratesymmetrickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadotherdomaincertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postgeneratecsr=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postgeneratemasterkeyobjecttype=KEY_MAKER,TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postmigratebasekey=KEY_MIGRATION_ADMIN +mosip.role.kernel.getgetzktempcertificate=KEY_MIGRATION_ADMIN +mosip.role.kernel.postmigratezkkeys=KEY_MIGRATION_ADMIN +mosip.role.kernel.postverifycertificatetrust=MS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER +mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER +mosip.role.kernel.postuploadpartnercertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL +mosip.role.kernel.postuploadcacertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL +mosip.role.kernel.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT +mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postzkreencryptrandomkey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL From 65788b167c1e4011b6a23169178421466abdbedc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 13 Aug 2021 12:56:42 +0530 Subject: [PATCH 0174/1358] [MOSIP-16645] Pre-registration updated for 1.2.0 --- pre-registration-default.properties | 75 ++++++++++++++++++++++++----- 1 file changed, 62 insertions(+), 13 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index fbeb8044c95..0258d3e9fcc 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -34,7 +34,7 @@ version=1.0 ## Age to be an adult ## Used in UI to identify the applicant type -mosip.adult.age=5 +mosip.adult.age=${mosip.kernel.applicant.type.age.limit} ## ID Schema @@ -125,6 +125,10 @@ mosip.preregistration.booking.exception.id=mosip.preregistration.booking.parse.e mosip.preregistration.booking.id.book=mosip.pre-registration.booking.book +# Sync +mosip.preregistration.sync.sign.appid=KERNEL +mosip.preregistration.sync.sign.refid=SIGN + ## Booking ## Sync every n days preregistration.availability.sync=37 @@ -181,7 +185,7 @@ datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate -pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template +pre.reg.login.otp.sms.template=otp-sms-template pre.reg.login.otp.mail.subject.template=pre-reg-login-email-subject-template pre.reg.login.otp.mail.content.template=pre-reg-login-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId @@ -199,8 +203,8 @@ masterdata.resource.url=${masterdata.service.env}/${masterdata.service.version}/ regCenter.url=${masterdata.resource.url}/registrationcenters holiday.url=${masterdata.resource.url}/getregistrationcenterholidays/ holiday.exceptional.url=${masterdata.resource.url}/exceptionalholidays -working.day.url=${masterdata.resource.url}/workingdays -mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/{langcode} +working.day.url=${masterdata.resource.url}/weekdays +mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/all?pageSize ##Kernel Service URL for fetching templates resource.template.url=${masterdata.resource.url}/templates mosip.pre-registration.notification.id=mosip.pre-registration.notification.notify @@ -266,10 +270,9 @@ kernel.prid.contextpath=pridgenerator mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid.contextpath}/prid ## Syncdata service -## To fetch the latest ID Schema for the ID object validator -# WORKAROUND: TODO restore -#mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema +latestidschema.service.contextpath=latestidschemafetch the latest ID Schema for the ID object validator mosip.preregistration.id-schema=http://masterdata.kernel/v1/masterdata/idschema/latest +syncdata.resource.url=http://syncdata.kernel/v1/syncdata ## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} @@ -364,6 +367,7 @@ por.url=proofOfRelationship ## Determines request & response id of transliteration-service mosip.pre-registration.transliteration.transliterate.id=mosip.pre-registration.transliteration.transliterate mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.transliteration.transliterate +mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.icu4j ## UI params #------------to be removed later ------- @@ -373,7 +377,7 @@ mosip.min-languages.count=2 mosip.max-languages.count=2 ------------------------------------------- ## List of keys which UI will consume -ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.supported-languages,mosip.primary-language,mosip.secondary-language,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,google.recaptcha.site.key,mosip.adult.age,mosip.idschema.version,enable-captcha,preregistartion.identity.name,preregistration.ui.version +ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,mosip.preregistration.captcha.sitekey,mosip.adult.age,mosip.idschema.version,mosip.preregistration.captcha.enable,preregistartion.identity.name,preregistration.ui.version,preregistartion.contact.email,preregistartion.contact.phone ## This config is used for loading recommended centers based on the value of the config. ## The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded preregistration.recommended.centers.locCode=5 @@ -389,7 +393,11 @@ preregistration.documentupload.allowed.file.size = 2000000 mosip.preregistration.auto.logout.idle=180 # Determines pop up timer(in seconds) mosip.preregistration.auto.logout.timeout=60 -preregistration.ui.version=1.1.5 +preregistration.ui.version=1.2.0 + +preregistartion.contact.email=contact@dev.mosip.net +preregistartion.contact.phone=9999999999 + # Determines to maintain iternal cycle & make sure value is not null (any value greater than zero) mosip.preregistration.auto.logout.ping=30 @@ -401,14 +409,18 @@ mosip.preregistration.auto.logout.ping=30 #preregistration.workflow.booking=true/false mosip.id.validation.identity.dateOfBirth=^\d{4}[\-\/\s]?((((0[13578])|(1[02]))[\-\/\s]?(([0-2][0-9])|(3[01])))|(((0[469])|(11))[\-\/\s]?(([0-2][0-9])|(30)))|(02[\-\/\s]?[0-2][0-9]))$ +mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ +mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -google.recaptcha.site.key=sitekey -google.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify -google.recaptcha.secret.key=secret mosip.preregistration.captcha.id.validate = mosip.pre-registration.captcha.id.validate -enable-captcha=false +mosip.preregistration.captcha.sitekey=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX +mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify +mosip.preregistration.captcha.secretkey=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI + +# Enable or Disable Captch - true to enable & false to disable +mosip.preregistration.captcha.enable=true ## Security mosip.security.csrf-enable:false @@ -419,3 +431,40 @@ mosip.security.secure-cookie:false ## for prereg booking notification name validation preregistration.notification.nameFormat=fullName + +## Minio +object.store.s3.use.account.as.bucketname=true + +## Spring cache +spring.cache.type=none + +## Roles +mosip.role.prereg.postapplications=INDIVIDUAL +mosip.role.prereg.putapplications=INDIVIDUAL +mosip.role.prereg.getapplications=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.putapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getapplicationsall=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.deleteapplications=INDIVIDUAL +mosip.role.prereg.postapplicationsupdatedtime=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getapplicationsconfig=INDIVIDUAL +mosip.role.prereg.getapplicationsinfo=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postlogaudit=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postdocumentspreregistrationid=INDIVIDUAL +mosip.role.prereg.putdocumentspreregistrationid=INDIVIDUAL +mosip.role.prereg.getdocumentsdocumentid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.getdocumentspreregistrationid=REGISTRATION_OFFICER,INDIVIDUAL +mosip.role.prereg.deletedocumentsdocumentid=INDIVIDUAL +mosip.role.prereg.deletedocumentspreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.putdocumentsdocumentid=INDIVIDUAL +mosip.role.prereg.postqrcodegenerate=INDIVIDUAL +mosip.role.prereg.getrefreshconfig=PRE_REGISTRATION_ADMIN +mosip.role.prereg.postnotificationnotify=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.postnotification=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.posttransliterationtransliterate=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.getuispeclatest=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.getuispecall=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.postpreregsync=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getsyncpreregistrationid=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getsyncpreregistrationidmachineid=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postsyncconsumedpreregids=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN From 2e4f7bc0169dcdfbd9b5febc75732c2a59f5b3ff Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 16 Aug 2021 12:40:17 +0530 Subject: [PATCH 0175/1358] [MOSIP-16645] Registration Processor config updated for 1.2.0. WIP. --- registration-processor-default.properties | 264 +++++++++++++--------- 1 file changed, 163 insertions(+), 101 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 0efd3edd553..a4eaa880ce0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -63,15 +63,11 @@ cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow -camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml +camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml ## Token generation token.request.id=io.mosip.registration.processor token.request.appid=regproc -## TODO: unused, remove -token.request.username=registrationprocessor -## TODO: unused, remove -token.request.password= token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} @@ -84,12 +80,12 @@ AUDIT=http://auditmanager.kernel/v1/auditmanager/audits ## Auth Service authmanager.base.url=http://authmanager.kernel -PASSWORDBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/useridPwd KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateToken GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid IDAINTERNAL=http://ida-internal.ida INTERNALAUTH=${IDAINTERNAL}/idauthentication/v1/internal/auth +GETINDIVIDUALIDFROMUSERID=${authmanager.base.url}/v1/authmanager/individualId ## Master Data Services MASTER=http://masterdata.kernel/v1/masterdata @@ -102,11 +98,6 @@ MACHINEDETAILS=${MASTER}/machines DEVICESHISTORIES=${MASTER}/deviceshistories REGISTRATIONCENTERDEVICEHISTORY=${MASTER}/registrationcenterdevicehistory REGISTRATIONCENTERTIMESTAMP=${MASTER}/registrationcenters/validate -GENDER=${MASTER}/gendertypes/validate -REGION=${MASTER}/locations/validate -CITY=${MASTER}/locations/validate -POSTALCODE=${MASTER}/locations/validate -PROVINCE=${MASTER}/locations/validate USERDETAILS=${MASTER}/users TEMPLATES=${MASTER}/templates DEVICEVALIDATEHISTORY=http://pms-partner.pms/v1/partnermanager/deviceprovidermanagement/validate @@ -128,26 +119,18 @@ GETVIDSBYUIN=http://vid.idrepo/idrepository/v1/vid/uin KEYMANAGER=http://keymanager.keymanager/ ENCRYPTURL=${KEYMANAGER}/v1/keymanager/encrypt ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey -PDFSIGN=${KEYMANAGER}/v1/keymanager/pdf/sign ## Digital Signature Service DIGITALSIGNATURE=${KEYMANAGER}/v1/keymanager/sign mosip.registration.processor.digital.signature.id=io.mosip.registration.processor +# Validate hostlisted devices +DEVICEHOTLIST=http://admin-hotlist-service/v1/hotlist +JWTVERIFY=http://${KEYMANAGER}/v1/keymanager/jwtVerify ## Crypto CRYPTOMANAGERDECRYPT=${KEYMANAGER}/v1/keymanager/decrypt crypto.PrependThumbprint.enable=true -## External Service -EISERVICE=http://regproc-eis.regproc/registrationprocessor/v1/eis/registration-processor/external-integration-service/v1.0 - -## RID Generation Service -RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid - -## Registration Processor Status Services -SYNCSERVICE=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=http://regproc-receiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets - ## SMS and EMAIL notification services NOTIFIER=http://notifier.kernel SMSNOTIFIER=${NOTIFIER}/v1/notifier/sms/send @@ -164,9 +147,12 @@ mosip.registration.processor.registration.transaction.id=mosip.registration.tran mosip.registration.processor.sync.version=1.0 mosip.registration.processor.registration.status.version=1.0 mosip.registration.processor.transaction.version=1.0 +mosip.registration.processor.lostrid.id=mosip.registration.lostrid +mosip.registration.processor.sync.version=1.0 + +# this property is used in lostrid api to get postal code +mosip.registration.processor.postalcode.req.url=${MASTER}/registrationcenters -## Demo dedupe -application.id=REGISTRATION # Status for matched records in demo dedupe stage registration.processor.demodedupe.manualverification.status=REJECTED mosip.registration.processor.demographic.deduplication.enable=true @@ -183,18 +169,15 @@ registration.processor.queue.manualverification.request.messageTTL=5400 registration.processor.manual.verification.reprocess.buffer.time=900 registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication -registration.processor.manual.adjudication.json=registration-processor-abis.json config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ ## OSI validate -mosip.workinghour.validation.required=true registration.processor.applicant.dob.format=yyyy/MM/dd mosip.identity.auth.internal.requestid=mosip.identity.auth.internal -registration.processor.validate.introducer=true +#Internal Auth env +mosip.identity.auth.internal.env=Staging mosip.kernel.device.validate.history.id="" -## UMC: User, Machine, Center -mosip.registartion.processor.validateUMC=false auth.PrependThumbprint.enable=false ## Packet receiver @@ -205,8 +188,6 @@ mosip.registration.processor.timezone=GMT mosip.registration.processor.packet.id=mosip.registration.packet mosip.registration.processor.grace.period=10800 -registration.processor.wait.period=1 - ## UIN generation registration.processor.id.repo.create=mosip.id.create registration.processor.id.repo.read=mosip.id.read @@ -225,11 +206,25 @@ registration.processor.rid.machineidsubstring=10 ## Message sender # Mapping identity json to map with the applicant id json registration.processor.identityjson=registration-processor-identity.json -registration.processor.print.textfile=registration-processor-print-text-file.json registration.processor.abis.json=registration-processor-abis.json registration.processor.demographic.identity=identity registration.processor.notification.emails= +## Notification service +registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 +registration.processor.notification_service_subscriber_callback_url=${mosipbox.public.url}/registrationprocessor/v1/notification/callback/notify +registration.processor.notification_service_pausedforadditonalinfo_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 +mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_workflow_paused_for_additional_info_event +registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosipbox.public.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo + +# Email template code for PauseForAdditionalInfo +mosip.regproc.notification_service.biometric_correction.email=RPR_PAUSED_FOR_ADDITIONAL_INFO_EMAIL +# SMS template code for PauseForAdditionalInfo +mosip.regproc.notification_service.biometric_correction.sms=RPR_PAUSED_FOR_ADDITIONAL_INFO_SMS +# SUBJECT template code for PauseForAdditionalInfo +mosip.regproc.notification_service.biometric_correction.subject=Requesting the additional details for progressing on the application of UIN + + ## Email registration.processor.uin.generated.subject=UIN Generated registration.processor.duplicate.uin.subject=Registration Failed because you have already Registered @@ -243,45 +238,12 @@ registration.processor.queue.username=admin registration.processor.queue.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 registration.processor.queue.url=tcp://${mosip.api.internal.url}:61616 registration.processor.queue.typeOfQueue=ACTIVEMQ -registration.processor.queue.address = print-service -registration.processor.queue.printpostaladdress = postal-service - -# Enable proxy postal service response for test environments where actual postal service wont be available -# IMPORTANT : This should always be set as false in actual production environment -registration.processor.enable.proxy.postalservice=true ## Packet validator -registration.processor.masterdata.validation.attributes = gender,region,province,city -registration.processor.validateSchema=true -registration.processor.validateFile=true -registration.processor.validateChecksum=true -registration.processor.validateApplicantDocument=true -registration.processor.validateMasterData=false -registration-processor.validatemandotary=true -registration.processor.document.category=idobject-document-category-mapping.json registration.processor.applicant.type=applicanttype-document-mapping.json - -## Packet generator -registration.processor.audit.applicationId=PACGEN -registration.processor.audit.applicationName=PACKET_GENERATOR -mosip.registration.processor.registration.packetgenerator.id=mosip.registration.packetgenerator -mosip.registration.processor.uincard.reprint.id = mosip.uincard.reprint -mosip.registration.processor.packetgenerator.version=1.0 -mosip.registration.processor.resident.service.id=mosip.registration.update -mosip.registration.processor.lost.id=mosip.registration.lost - -## Print stage -mosip.registration.processor.print.service.id=mosip.registration.print -registration.processor.unMaskedUin.length=4 -mosip.registration.processor.print.service.uincard.password=postalCode|fullName -# Header length to be removed from iso image to get actual image -mosip.print.uin.header.length=73 -# Rectangle coordinates for pfd signataured data -mosip.registration.processor.print.service.uincard.lowerleftx=73 -mosip.registration.processor.print.service.uincard.lowerlefty=100 -mosip.registration.processor.print.service.uincard.upperrightx=300 -mosip.registration.processor.print.service.uincard.upperrighty=300 -mosip.registration.processor.print.service.uincard.signature.reason="signing" +mosip.kernel.jsonvalidator.property-source=APPLICATION_CONTEXT +mosip.kernel.jsonvalidator.schema-name=mosip-identity-json-schema.json +mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ ## Reprocessor stage # Number of the reprocess records to be fetched at a time @@ -294,7 +256,7 @@ registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron registration.processor.reprocess.seconds=0 # TODO: time reduced for testing. Revert for production. -registration.processor.reprocess.minutes=* +registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 registration.processor.reprocess.hours=* registration.processor.reprocess.days_of_month=* registration.processor.reprocess.months=* @@ -315,8 +277,6 @@ mosip.registration.processor.audit.id=mosip.applicanttype.getApplicantType mosip.registration.processor.crypto.decrypt.id=mosip.cryptomanager.decrypt #SMS notification request id mosip.registration.processor.sms.id=mosip.sms.send -#Email notification request id -mosip.registration.processor.email.id=mosip.email.send #Kernel Crypto signature registration.processor.signature.isEnabled=true @@ -343,20 +303,41 @@ PACKETMANAGER_SEARCH_AUDITS=${packetmanager.base.url}/v1/packetmanager/audits PACKETMANAGER_INFO=${packetmanager.base.url}/v1/packetmanager/info PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdateTag PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag +PACKETMANAGER_GET_TAGS=${packetmanager.base.url}/v1/packetmanager/getTags DATASHARE=http://datashare.datashare -DATASHARECREATEURL=${DATASHARE}/v1/datashare/create +DATASHARECREATEURL=/v1/datashare/create DATASHAREGETEURL=${DATASHARE}/v1/datashare/get # Default abis is mock-abis provided by MOSIP registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis +mosip.regproc.data.share.internal.domain.name=datashare.datashare +mosip.regproc.data.share.protocol=http + #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK +mosip.biosdk.default.host= http://biosdk-service.biosdk +mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.biometric.sdk.provider.finger.version=0.9 +mosip.biometric.sdk.provider.finger.format.url.mock-1.1=${mosip.biosdk.default.service.url} +# The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. +# If the below default configuration is not configured, the one of the configured url will be used as the default URL. +# If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. +mosip.biometric.sdk.provider.finger.format.url.default=${mosip.biosdk.default.service.url} +# The fully qualified Class Name of the BIO SDK API implemented for Iris modality +# This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +# The version of the BIO SDK API implemeted for Iris modality +mosip.biometric.sdk.provider.iris.version=0.9 +mosip.biometric.sdk.provider.iris.format.url.mock-1.1=${mosip.biosdk.default.service.url} +# The fully qualified Class Name of the BIO SDK API implemented for Face modality +# This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.biometric.sdk.provider.face.version=0.9 +mosip.biometric.sdk.provider.face.format.url.mock-1.1=${mosip.biosdk.default.service.url} ## Printing mosip.registration.processor.credentialtype=euin @@ -377,6 +358,10 @@ mosip.regproc.eventbus.type=kafka #Kafka cluster servers comma separated, common for all stages and camel mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka.svc.cluster.local:9092,kafka-1.kafka-headless.kafka.svc.cluster.local:9092,kafka-2.kafka-headless.kafka.svc.cluster.local:9092 +# Stage Group Configuratoins +# Default base packages for stage beans to be scanned in a stage group +mosip.regproc.mosip-stage-executor.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor,io.mosip.registartion.processor + # packet receiver stage #Supported commmit config: auto, batch, single mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single @@ -390,7 +375,9 @@ mosip.regproc.camel.bridge.eventbus.kafka.max.poll.records=100 mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends #MosipVerticleAPIManager -mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-brdige-mz +mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'CHILD' && @['ID_OBJECT-residenceStatus'] == 'nonResident')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.endpoint-prefix=eventbus:// #packet-uploader-stage mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single @@ -398,6 +385,9 @@ mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.uploader.eventbus.kafka.group.id=packet-uploader-stage mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.packet.uploader.server.port=8087 +mosip.regproc.packet.uploader.server.servlet.path=/registrationprocessor/v1/uploader +mosip.regproc.packet.uploader.eventbus.port=5714 #packet-validator-stage mosip.regproc.packet.validator.eventbus.kafka.commit.type=single @@ -405,34 +395,65 @@ mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.validator.eventbus.kafka.group.id=packet-validator-stage mosip.regproc.packet.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} - -#packet-classifier-stage +mosip.regproc.packet.validator.server.port=8088 +mosip.regproc.packet.validator.eventbus.port=5715 +mosip.regproc.packet.validator.server.servlet.path=/registrationprocessor/v1/packetvalidator +mosip.regproc.packet.validator.validate-applicant-document=true +mosip.regproc.packet.validator.validate-applicant-document.processes=NEW,UPDATE,LOST,BIOMETRIC_CORRECTION + +## Operator validator +mosip.regproc.operator-validator.eventbus.kafka.commit.type=single +mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.operator-validator.eventbus.kafka.poll.frequency=100 +mosip.regproc.operator-validator.eventbus.kafka.group.id=operator-validator-stage +mosip.regproc.operator-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.operator-validator.server.port=8093 +mosip.regproc.operator-validator.eventbus.port=5723 +mosip.regproc.operator-validator.server.servlet.path=/registrationprocessor/v1/operatorvalidator + +# Command validator +mosip.regproc.cmd-validator.eventbus.kafka.commit.type=single +mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.cmd-validator.eventbus.kafka.poll.frequency=100 +mosip.regproc.cmd-validator.eventbus.kafka.group.id=cmd-validator-stage +mosip.regproc.cmd-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.cmd-validator.server.port=8089 +mosip.regproc.cmd-validator.eventbus.port=5716 +mosip.regproc.cmd-validator.server.servlet.path=/registrationprocessor/v1/cmdvalidator +# Processes to enable center validation, for processes not mentioned here center validation will be skipped +mosip.regproc.cmd-validator.center-validation.processes=NEW,UPDATE,LOST,BIOMETRIC_CORRECTION +# Processes to enable machine validation, for processes not mentioned here machine validation will be skipped +mosip.regproc.cmd-validator.machine-validation.processes=NEW,UPDATE,LOST,BIOMETRIC_CORRECTION +# Processes to enable device validation, for processes not mentioned here device validation will be skipped +mosip.regproc.cmd-validator.device-validation.processes=NEW,UPDATE,LOST,BIOMETRIC_CORRECTION +# To enable or disable the Center working hour validation +mosip.regproc.cmd-validator.working-hour-validation-required=true +# To enable/disable trust validation of a digital id signature of a device +mosip.regproc.cmd-validator.device.disable-trust-validation=false +# Maximum duration in minutes permissible between digital id timestamp and packet creation time +mosip.regproc.cmd-validator.device.allowed-digital-id-timestamp-variation=30 +# Timestamp format followed in digital id and biometrics payload +mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:mm:ss'Z' + +## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.classifier.eventbus.kafka.group.id=packet-classifier-stage mosip.regproc.packet.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} - -#quality-checker-stage -mosip.regproc.quality.checker.eventbus.kafka.commit.type=single -mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=100 -mosip.regproc.quality.checker.eventbus.kafka.poll.frequency=100 -mosip.regproc.quality.checker.eventbus.kafka.group.id=quality-checker-stage -mosip.regproc.quality.checker.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} - -#osi-validator-stage -mosip.regproc.osi.validator.eventbus.kafka.commit.type=single -mosip.regproc.osi.validator.eventbus.kafka.max.poll.records=100 -mosip.regproc.osi.validator.eventbus.kafka.poll.frequency=100 -mosip.regproc.osi.validator.eventbus.kafka.group.id=osi-validator-stage -mosip.regproc.osi.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} - -#external-stage -mosip.regproc.external.eventbus.kafka.commit.type=single -mosip.regproc.external.eventbus.kafka.max.poll.records=100 -mosip.regproc.external.eventbus.kafka.poll.frequency=100 -mosip.regproc.external.eventbus.kafka.group.id=external-stage -mosip.regproc.external.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.packet.classifier.server.port=8092 +mosip.regproc.packet.classifier.eventbus.port=5724 +mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/packetclassifier + +## Introducer validator stage +mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single +mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.introducer-validator.eventbus.kafka.poll.frequency=100 +mosip.regproc.introducer-validator.eventbus.kafka.group.id=introducer-validator-stage +mosip.regproc.introducer-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.introducer-validator.server.port=8095 +mosip.regproc.introducer-validator.eventbus.port=5728 +mosip.regproc.introducer-validator.server.servlet.path=/registrationprocessor/v1/introducervalidator #demo-dedupe-stage mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single @@ -440,6 +461,9 @@ mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.demo.dedupe.server.port=8091 +mosip.regproc.demo.dedupe.eventbus.port=5717 +mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedupe #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single @@ -447,6 +471,11 @@ mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.handler.eventbus.kafka.group.id=abis-handler-stage mosip.regproc.abis.handler.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.abis.handler.server.port=9071 +mosip.regproc.abis.handler.eventbus.port=5726 +mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler +mosip.regproc.abis.handler.biometric-modalities-segments-mapping={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} +mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye','Face' : 'face'} #bio-dedupe-stage mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single @@ -454,13 +483,19 @@ mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.bio.dedupe.eventbus.kafka.group.id=bio-dedupe-stage mosip.regproc.bio.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.bio.dedupe.server.port=9096 +mosip.regproc.bio.dedupe.eventbus.port=5718 +mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe -#manual-verification-stage +## Manual verification mosip.regproc.manual.verification.eventbus.kafka.commit.type=single mosip.regproc.manual.verification.eventbus.kafka.max.poll.records=100 mosip.regproc.manual.verification.eventbus.kafka.poll.frequency=100 mosip.regproc.manual.verification.eventbus.kafka.group.id=manual-verification-stage mosip.regproc.manual.verification.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.manual.verification.server.servlet.path=/registrationprocessor/v1/manualverification +mosip.regproc.manual.verification.server.port=8084 +mosip.regproc.manual.verification.eventbus.port=5720 #uin-generator-stage mosip.regproc.uin.generator.eventbus.kafka.commit.type=single @@ -475,6 +510,9 @@ mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.abis.middleware.server.port=8091 +mosip.regproc.abis.middleware.eventbus.port=5888 +mosip.regproc.abis.middleware.server.servlet.path=/registrationprocessor/v1/abismiddleware #biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single @@ -482,6 +520,9 @@ mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 mosip.regproc.biometric.authentication.eventbus.kafka.group.id=biometric-authentication-stage mosip.regproc.biometric.authentication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.biometric.authentication.server.port=8020 +mosip.regproc.biometric.authentication.eventbus.port=5777 +mosip.regproc.biometric.authentication.server.servlet.path=/registrationprocessor/v1/bioauth #reprocessor-stage mosip.regproc.reprocessor.eventbus.kafka.commit.type=single @@ -489,12 +530,15 @@ mosip.regproc.reprocessor.eventbus.kafka.max.poll.records=100 mosip.regproc.reprocessor.eventbus.kafka.poll.frequency=100 mosip.regproc.reprocessor.eventbus.kafka.group.id=reprocessor-stage -#message-sender-stage +## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 mosip.regproc.message.sender.eventbus.kafka.poll.frequency=100 mosip.regproc.message.sender.eventbus.kafka.group.id=message-sender-stage mosip.regproc.message.sender.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.message.sender.server.port=8088 +mosip.regproc.message.sender.eventbus.port=5721 +mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sender-stage #printing-stage mosip.regproc.printing.eventbus.kafka.commit.type=single @@ -559,7 +603,7 @@ packetmanager.provider.uingenerator.proofOfException=source:CNIE\/process:CORREC # packet-classifier-stage # List of tag generator that should be run on every packet # Available tag generators MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus,MosipExceptionBiometrics -mosip.regproc.packet.classifier.tag-generators=MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus,MosipExceptionBiometrics +mosip.regproc.packet.classifier.tag-generators=MosipIDObjectFields,MosipMetaInfo,MosipAgeGroup,MosipSupervisorApprovalStatus,MosipExceptionBiometrics,MosipIDObjectDataAvailability # The tag value that will be used by default when the packet does not have value for the tag field mosip.regproc.packet.classifier.tagging.not-available-tag-value=--TAG_VALUE_NOT_AVAILABLE-- # These field names should be as in keys of registraion-processor-identity.json file Identity segment @@ -574,7 +618,7 @@ mosip.regproc.packet.classifier.tagging.metainfo.metadata.tag-name-prefix=META_I # The tag name that will be prefixed with every metainfo capturedRegisteredDevices tags mosip.regproc.packet.classifier.tagging.metainfo.capturedregistereddevices.tag-name-prefix=META_INFO-CAPTURED_REGISTERED_DEVICES- # The labels on metainfo.operationsData array that needs to be tagged -mosip.regproc.packet.classifier.tagging.metainfo.operationsdata.tag-labels=officerId +mosip.regproc.packet.classifier.tagging.metainfo.operationsdata.tag-labels=officerId,supervisorId # The labels on metainfo.metaData array that needs to be tagged mosip.regproc.packet.classifier.tagging.metainfo.metadata.tag-labels=centerId # The serial numbers of devices type on metainfo.capturedRegisteredDevices array that needs to be tagged @@ -583,14 +627,32 @@ mosip.regproc.packet.classifier.tagging.metainfo.capturedregistereddevices.devic mosip.regproc.packet.classifier.tagging.agegroup.tag-name=AGE_GROUP # Below age ranges map should contain proper age group name and age range, any overlap of the age # range will result in a random behaviour of tagging. In range, upper and lower values are inclusive. -mosip.regproc.packet.classifier.tagging.agegroup.ranges={'CHILD':'0-17','ADULT':'18-59','SENIOR_CITIZEN':'60-200'} +mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR':'6-17','ADULT':'18-200'} # Tag name that will be used while tagging supervisor approval status mosip.regproc.packet.classifier.tagging.supervisorapprovalstatus.tag-name=SUPERVISOR_APPROVAL_STATUS # Tag name that will be used while tagging exception biometrics mosip.regproc.packet.classifier.tagging.exceptionbiometrics.tag-name=EXCEPTION_BIOMETRICS # This mapping will contain the short words for each missing biometrics, the values will used for concatenating in the tags mosip.regproc.packet.classifier.tagging.exceptionbiometrics.bio-value-mapping={'leftLittle':'LL','leftRing':'LR','leftMiddle':'LM','leftIndex':'LI','leftThumb':'LT','rightLittle':'RL','rightRing':'RR','rightMiddle':'RM','rightIndex':'RI','rightThumb':'RT','leftEye':'LE','rightEye':'RE'} +# file Identity segment and should have proper default source configured +mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability-expression-map={'INTRODUCER_AVAILABILITY':'introducerUIN || introducerRID || introducerVID'} + ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] mock.mv.decision=APPROVED + +# salt generation properties +mosip.regproc.db.url=${javax.persistence.jdbc.url} +mosip.regproc.db.username=${javax.persistence.jdbc.user} +mosip.regproc.db.password=${javax.persistence.jdbc.password} +mosip.regproc.db.driverClassName=${javax.persistence.jdbc.driver} +mosip.kernel.salt-generator.chunk-size=10 +mosip.kernel.salt-generator.start-sequence=0 +mosip.kernel.salt-generator.end-sequence=9999 +mosip.kernel.salt-generator.db.key-alias=mosip.regproc.db +mosip.kernel.salt-generator.schemaName=regprc +mosip.kernel.salt-generator.tableName=crypto_salt + +# List of old reg client versions with others attribute not present but currently supported for registration, this is required to take care of the backward compatibility checks +mosip.regproc.common.before-cbeff-others-attibute.reg-client-versions=1.1.3,1.1.4,1.1.5 From 58f0904b71f52453707749aa185687cab3df8390 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 17 Aug 2021 15:18:13 +0530 Subject: [PATCH 0176/1358] [MOSIP-16645] Registration Processor config updated for 1.2.0. --- registration-processor-default.properties | 101 ++++++++++++++++++++++ 1 file changed, 101 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a4eaa880ce0..5bffb65d09f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -65,6 +65,11 @@ worker.pool.size=10 # Route files corresponding to the secure flow camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml +# main processor used in stages +registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE +# sub processor used in stages +registration.processor.sub-processes=BIOMETRIC_CORRECTION + ## Token generation token.request.id=io.mosip.registration.processor token.request.appid=regproc @@ -165,6 +170,10 @@ mosip.registration.processor.manual.verification.demographic.id=mosip.manual.ver mosip.registration.processor.manual.verification.packetinfo.id=mosip.manual.verification.packetinfo # Manual verification queue message expiry in seconds, if given 0 then message will never expire registration.processor.queue.manualverification.request.messageTTL=5400 +# queue name where mosip will send request to external mv system +registration.processor.queue.manualverification.request=mosip-to-mv +# queue name where mosip will receive response from external mv system +registration.processor.queue.manualverification.response=mv-to-mosip # Buffer time above the expiry queue to allow reprocessing (in seconds) registration.processor.manual.verification.reprocess.buffer.time=900 registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication @@ -202,6 +211,7 @@ mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=80 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 +mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl ## Message sender # Mapping identity json to map with the applicant id json @@ -269,6 +279,53 @@ mosip.regproc.workflow.action.hotlisted-tag=HOTLISTED mosip.regproc.workflow.action.resumefrombeginning.stage=PacketUploaderStage #WorkflowAction service websub topic name mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event +mosip.regproc.workflow.action.job.server.port=8026 +mosip.regproc.workflow.action.job.eventbus.port=5754 +mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/workflowmanager +mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single +mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 +mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 +mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service +mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event + +## Workflow manager +mosip.regproc.workflow-manager.action.api-id=mosip.registration.processor.workflow.action +mosip.regproc.workflow-manager.action.version=1.0 +mosip.regproc.workflow-manager.search.api-id=mosip.registration.processor.workflow.search +mosip.regproc.workflow-manager.search.version=v1 +mosip.regproc.workflow-manager.action.resumefrombeginning.stage=PacketUploaderStage +#Number of the WorkflowAction job records to be fetched at a time +mosip.regproc.workflow-manager.action.job.fetchsize=100 +#Maximum number of iterations allowed for pause and request additional info default +mosip.regproc.workflow-manager.internal.action.max-allowed-iteration=5 +#Maximum number of iterations allowed for pause and request additional info for BIOMETRIC_CORRECTION +mosip.regproc.workflow-manager.internal.action.max-allowed-iteration.BIOMETRIC_CORRECTION=5 + +# The WorkflowAction scheduler configurations +# WorkflowAction scheduler type +mosip.regproc.workflow-manager.action.job.type=cron +#schedular seconds configuration +mosip.regproc.workflow-manager.action.job.seconds=* +#schedular minutes configuration +mosip.regproc.workflow-manager.action.job.minutes=0,5,10,15,20,25,30,35,40,45,50,55 +#schedular hours configuration +mosip.regproc.workflow-manager.action.job.hours=* +#schedular days configuration +mosip.regproc.workflow-manager.action.job.days_of_month=* +#schedular months configuration +mosip.regproc.workflow-manager.action.job.months=* +#schedular weeks configuration +mosip.regproc.workflow-manager.action.job.days_of_week=* + +mosip.regproc.workflow.action.job.server.port=8026 +mosip.regproc.workflow.action.job.eventbus.port=5754 +mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/workflowmanager + +mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single +mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 +mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 +mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service + #Service Ids #Audit request id @@ -389,6 +446,8 @@ mosip.regproc.packet.uploader.server.port=8087 mosip.regproc.packet.uploader.server.servlet.path=/registrationprocessor/v1/uploader mosip.regproc.packet.uploader.eventbus.port=5714 +packet.uploader.stage=registration-processor-packet-uploader-stage + #packet-validator-stage mosip.regproc.packet.validator.eventbus.kafka.commit.type=single mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 @@ -445,6 +504,27 @@ mosip.regproc.packet.classifier.server.port=8092 mosip.regproc.packet.classifier.eventbus.port=5724 mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/packetclassifier + +## Quality classifier stage + +mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single +mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 +mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 +mosip.regproc.quality.classifier.eventbus.kafka.group.id=quality-classifier-stage +mosip.regproc.quality.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.quality.classifier.server.port=9072 +mosip.regproc.quality.classifier.eventbus.port=5727 +mosip.regproc.quality.classifier.server.servlet.path=/registrationprocessor/v1/qualityclassifier +# Below quality ranges map should contain proper quality group name and quality range, any overlap of the quality +# range will result in a random behaviour of tagging. In range, upper and lower values are inclusive. +mosip.regproc.quality.classifier.tagging.quality.ranges={'Poor':'0-29','Average':'30-69','Good':'70-100'} +# Quality Tag Prefix +mosip.regproc.quality.classifier.tagging.quality.prefix=Biometric_Quality- +# The tag value that will be used by default when the packet does not have biometrics +mosip.regproc.quality.classifier.tagging.quality.biometric-not-available-tag-value=--Biometrics-Not-Available-- +# modality arrays that needs to be tagged +mosip.regproc.quality.classifier.tagging.quality.modalities=Iris,Finger,Face + ## Introducer validator stage mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 @@ -503,6 +583,9 @@ mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 mosip.regproc.uin.generator.eventbus.kafka.group.id=uin-generator-stage mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.uin.generator.server.port=8099 +mosip.regproc.uin.generator.eventbus.port=5719 +mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-generator #abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single @@ -529,6 +612,21 @@ mosip.regproc.reprocessor.eventbus.kafka.commit.type=single mosip.regproc.reprocessor.eventbus.kafka.max.poll.records=100 mosip.regproc.reprocessor.eventbus.kafka.poll.frequency=100 mosip.regproc.reprocessor.eventbus.kafka.group.id=reprocessor-stage +mosip.regproc.reprocessor.server.port=8021 +mosip.regproc.reprocessor.eventbus.port=5750 +mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reprocessor + +## Supervisor validator stage + +mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single +mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 +mosip.regproc.supervisor-validator.eventbus.kafka.group.id=supervisor-validator-stage +mosip.regproc.supervisor-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.supervisor-validator.server.port=8094 +mosip.regproc.supervisor-validator.eventbus.port=5725 +mosip.regproc.supervisor-validator.server.servlet.path=/registrationprocessor/v1/supervisorvalidator + ## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single @@ -546,6 +644,9 @@ mosip.regproc.printing.eventbus.kafka.max.poll.records=100 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.printing.server.port=8099 +mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage +mosip.regproc.printing.eventbus.port=5722 packetmanager.name.source.resident=RESIDENT packetmanager.name.source.cnie=CNIE From 7bda8f455e635f216980774ba1701974312d539b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 17 Aug 2021 16:03:57 +0530 Subject: [PATCH 0177/1358] [MOSIP-16645] Registration Processor camel routes updated for 1.2.0. --- ...ion-processor-camel-routes-new-default.xml | 651 +++++++++++------- 1 file changed, 396 insertions(+), 255 deletions(-) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 065d346ce50..529adba3de1 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -1,273 +1,414 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- packet-receiver to securezone notifiation --> + <!-- packet-receiver to packet uploader --> <route id="packet-receiver->packet-uploader new route"> - <from uri="eventbus:packet-receiver-new-bus-out" /> - <log - message="packet-receiver-->packet-uploader new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> + <from uri="eventbus:packet-receiver-new-bus-out" /> + <log message="packet-receiver-->packet-uploader new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> </route> <!-- packet-uploader to packet-validator Route --> <route id="packet-uploader-->packet-validator new route"> <from uri="eventbus:packet-uploader-new-bus-out" /> - <log - message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> + <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> </route> + <!-- Packet Validator to Packet classifier Route --> <route id="packet-validator-->packet-classifier new route"> <from uri="eventbus:packet-validator-new-bus-out" /> - <log - message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-classifier-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> + <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-classifier-bus-in" /> + </otherwise> + </choice> </route> + <!-- Packet Classifier to Quality Checker Route --> <route id="packet-classifier-->quality-checker new route"> <from uri="eventbus:packet-classifier-new-bus-out" /> - <log - message="packet-classifier-->quality-checker new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:quality-checker-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="quality-checker-->osi-validator new route"> - <from uri="eventbus:quality-checker-new-bus-out" /> - <log - message="quality-checker-->osi-validator new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:o-s-i-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="osi-validator-->external-stage new route"> - <from uri="eventbus:o-s-i-validator-new-bus-out" /> - <log - message="osi-validator-->external-stage new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:external-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="external-stage-->demo-dedupe new route"> - <from uri="eventbus:external-new-bus-out" /> - <log - message="external-stage-->demo-dedupe new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:demo-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="demo-dedupe-->bio-dedupe new route"> - <from uri="eventbus:demo-dedupe-new-bus-out" /> - <log - message="demo-dedupe-->bio-dedupe new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:bio-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-handler-bus-in"'</simple> - <to uri="eventbus:abis-handler-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"manual-verification-bus-in"'</simple> - <to uri="vertx:manual-verification-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in"/> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-handler-->abis-middleware new route"> - <from uri="eventbus:abis-handler-new-bus-out" /> - <log - message="abis-handler-->abis-middleware new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-middle-ware-bus-in"'</simple> - <to uri="eventbus:abis-middle-ware-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"demo-dedupe-bus-in"'</simple> - <to uri="eventbus:demo-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"bio-dedupe-bus-in"'</simple> - <to uri="eventbus:bio-dedupe-bus-in"/> - </when> - </choice> - </route> - <route id="bio-dedupe-->uin-generation new route"> - <from uri="eventbus:bio-dedupe-new-bus-out" /> - <log - message="bio-dedupe-->uin-generation new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-handler-bus-in"'</simple> - <to uri="eventbus:abis-handler-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"manual-verification-bus-in"'</simple> - <to uri="vertx:manual-verification-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="manual-verification-->uin-generation new route"> - <from uri="eventbus:manual-verification-new-bus-out" /> - <log - message="manual-verification-->uin-generation new route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- UIN Generator to Printing and Message Sender Route --> - <route id="uin-generation route-->printing-stage-->message-sender new route"> - <from uri="eventbus:uin-generator-new-bus-out" /> - <log - message="uin-generation-->printing-stage and message-sender-stage route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:message-sender-bus-in" /> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-middleware route-->abis-handler new route"> - <from uri="eventbus:abis-middle-ware-new-bus-out" /> - <log - message="abis-middleware route-->abis-handler new route ${bodyAs(String)}" /> - <to uri="eventbus:abis-handler-bus-in" /> + <log message="packet-classifier-->quality-checker new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://quality-classifier-bus-in" /> + </otherwise> + </choice> </route> + + <route id="quality-classifier-->cmd-validator new route"> + <from uri="eventbus://quality-classifier-new-bus-out" /> + <log message="quality-classifier-->cmd-validator new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> + <to uri="eventbus://c-m-d-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <!-- PAUSE_FOR is in seconds --> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="cmd-validator-->operator-validator new route"> + <from uri="eventbus://c-m-d-validator-new-bus-out" /> + <log message="cmd-validator-->operator-validator/supervisor-validator new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://operator-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="operator-validator-->supervisor-validator new route"> + <from uri="eventbus://operator-validator-new-bus-out" /> + <log message="operator-validator-->supervisor-validator/introducer-validator/demo-dedupe new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="supervisor-validator-->introducer-validator new route"> + <from uri="eventbus://supervisor-validator-new-bus-out" /> + <log message="supervisor-validator-->introducer-validator/demo-dedupe new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="introducer-validator-->demo-dedupe new route"> + <from uri="eventbus://introducer-validator-new-bus-out" /> + <log message="introducer-validator-->demo-dedupe new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="demo-dedupe-->bio-dedupe new route"> + <from uri="eventbus://demo-dedupe-new-bus-out" /> + <log message="demo-dedupe-->bio-dedupe new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> + <to uri="eventbus://manual-verification-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://bio-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-handler-->abis-middleware new route"> + <from uri="eventbus://abis-handler-new-bus-out" /> + <log message="abis-handler-->abis-middleware new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> + <to uri="eventbus://abis-middle-ware-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'demo-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://demo-dedupe-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'bio-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://bio-dedupe-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="bio-dedupe-->uin-generation new route"> + <from uri="eventbus://bio-dedupe-new-bus-out" /> + <log message="bio-dedupe-->uin-generation new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> + <to uri="eventbus://manual-verification-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-middleware route-->abis-handler new route"> + <from uri="eventbus://abis-middle-ware-new-bus-out" /> + <log message="abis-middleware route-->abis-handler new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://abis-handler-bus-in" /> + </otherwise> + </choice> + </route> + <route id="manual-verification-->uin-generation new route"> + <from uri="eventbus://manual-verification-new-bus-out" /> + <log message="manual-verification-->uin-generation new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <!-- UIN Generator to Printing Route --> + <route id="uin-generation route-->printing-stage new route"> + <from uri="eventbus://uin-generator-new-bus-out" /> + <log message="uin-generation-->printing-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage--> new route"> + <from uri="eventbus://printing-new-bus-out" /> + <log message="printing-stage--> route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> </routes> From ec79f246a3e16680ab0b9facd76375807d1c458a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 17 Aug 2021 16:09:12 +0530 Subject: [PATCH 0178/1358] [MOSIP-16645] Registration Processor identity json updated for 1.2.0. --- registration-processor-identity.json | 209 +++++---------------------- 1 file changed, 39 insertions(+), 170 deletions(-) diff --git a/registration-processor-identity.json b/registration-processor-identity.json index aa024e5a1d9..5401557e24c 100644 --- a/registration-processor-identity.json +++ b/registration-processor-identity.json @@ -1,213 +1,82 @@ { "identity":{ "IDSchemaVersion":{ - "value":"IDSchemaVersion", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"IDSchemaVersion" }, "name":{ - "value":"fullName", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ], - "isMandatory":true + "value":"fullName" }, "gender":{ - "value":"gender", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ], - "isMandatory":true + "value":"gender" }, "dob":{ - "value":"dateOfBirth", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ], - "isMandatory":true + "value":"dateOfBirth" }, "age":{ - "value":"age", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "parentOrGuardianRID":{ - "value":"parentOrGuardianRID", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "parentOrGuardianUIN":{ - "value":"parentOrGuardianUIN", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "parentOrGuardianName":{ - "value":"parentOrGuardianName", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "address":{ - "value":"addressLine1,addressLine2,addressLine3,region,province,postalCode", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "city":{ - "value":"city", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "phone":{ - "value":"phone", - "provider":[ - "source:RESIDENT,process:RES_CORRECTION", - "source:REGISTRATION_CLIENT,process:CORRECTION|NEW|UPDATE", - "source:RESIDENT,process:RES_UPDATE" - ] - }, - "phone_user_provided":{ - "value":"phone", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE", - "source:RESIDENT,process:RES_UPDATE", - "source:REGISTRATION_CLIENT,process:LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_REPRINT" - ] - }, - "phone_validation_source":{ - "value":"phone", - "provider":[ - "source:CNIE,process:CORRECTION2|CORRECTION1|VALIDATION" - ] + "value":"age" + }, + "introducerRID":{ + "value":"introducerRID" + }, + "introducerUIN":{ + "value":"introducerUIN" + }, + "introducerVID":{ + "value":"introducerVID" + }, + "introducerName":{ + "value":"introducerName" + }, + "phone":{ + "value":"phone" }, "email":{ - "value":"email", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "localAdministrativeAuthority":{ - "value":"localAdministrativeAuthority", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"email" }, "uin":{ - "value":"UIN", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "individualBiometrics":{ - "value":"individualBiometrics", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] - }, - "parentOrGuardianBiometrics":{ - "value":"parentOrGuardianBiometrics", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"UIN" + }, + "individualBiometrics":{ + "value":"individualBiometrics" + }, + "introducerBiometrics":{ + "value":"introducerBiometrics" }, "individualAuthBiometrics":{ - "value":"individualAuthBiometrics", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"individualAuthBiometrics" }, "officerBiometricFileName":{ - "value":"officerBiometricFileName", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST" - ] + "value":"officerBiometricFileName" }, "supervisorBiometricFileName":{ - "value":"supervisorBiometricFileName", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST" - ] + "value":"supervisorBiometricFileName" }, "residenceStatus":{ - "value":"residenceStatus", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"residenceStatus" } }, "metaInfo":{ - "value":"metaInfo", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"metaInfo" }, "audits":{ - "value":"audits", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"audits" }, "documents":{ "poa":{ - "value":"proofOfAddress", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"proofOfAddress" }, "poi":{ - "value":"proofOfIdentity", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"proofOfIdentity" }, "por":{ - "value":"proofOfRelationship", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"proofOfRelationship" }, "pob":{ - "value":"proofOfDateOfBirth", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"proofOfDateOfBirth" }, "poe":{ - "value":"proofOfException", - "provider":[ - "source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST", - "source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT" - ] + "value":"proofOfException" } } } From 1614b48afbfc25565f898814db78b228468e0311 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 17 Aug 2021 16:12:54 +0530 Subject: [PATCH 0179/1358] [MOSIP-16645] Unused file removed. --- registration-processor-print-text-file.json | 9 --------- 1 file changed, 9 deletions(-) delete mode 100644 registration-processor-print-text-file.json diff --git a/registration-processor-print-text-file.json b/registration-processor-print-text-file.json deleted file mode 100644 index c37f180e1e7..00000000000 --- a/registration-processor-print-text-file.json +++ /dev/null @@ -1,9 +0,0 @@ -{ - "name": "fullName,LastName", - "address": "addressLine1,addressLine2,addressLine3", - "region": "region", - "province": "province", - "city": "city", - "postalCode": "postalCode", - "phoneNumber": "phone" -} From 0ab6ad78e2a1e68a0086586688b7f500d766f356 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 06:25:58 +0530 Subject: [PATCH 0180/1358] [MOSIP-16645] Idrepo properties updated for 1.2.0. --- id-repository-default.properties | 36 +++++++++++++++++++++++++++++--- 1 file changed, 33 insertions(+), 3 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 666f1b56424..91ee5d1f42a 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -4,9 +4,11 @@ # db.dbuser.password # mosip.mosip.crereq.client.secret # mosip.mosip.creser.client.secret +# mosip.mosip.regproc.client.secret # keycloak.host # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt +#idrepo.websub.vid.credential.update.secret management.endpoint.restart.enabled=true @@ -151,12 +153,20 @@ mosip.idrepo.syncdata-service.rest.timeout=100 mosip.idrepo.pmp.partner.rest.uri=http://pms-partner.pms/v1/partnermanager/partners?partnerType=Online_Verification_Partner mosip.idrepo.pmp.partner.rest.httpMethod=GET mosip.idrepo.pmp.partner.rest.headers.mediaType=application/json -mosip.idrepo.pmp.partner.rest.timeout=10 +mosip.idrepo.pmp.partner.rest.timeout=100 mosip.idrepo.credential.request.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator mosip.idrepo.credential.request.rest.httpMethod=POST mosip.idrepo.credential.request.rest.headers.mediaType=application/json -mosip.idrepo.credential.request.rest.timeout=10 +mosip.idrepo.credential.request.rest.timeout=100 +mosip.idrepo.credential.cancel-request.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/cancel/{requestId} +mosip.idrepo.credential.cancel-request.rest.httpMethod=GET +mosip.idrepo.credential.cancel-request.rest.headers.mediaType=application/json +mosip.idrepo.credential.cancel-request.rest.timeout=100 + +## Credential status job +# Fixed delay time after which job will be triggered again to process the created/updated credential details. +mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 mosip.idrepo.retrieve-by-uin.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET @@ -168,6 +178,17 @@ mosip.idrepo.vid-generator.rest.httpMethod=GET mosip.idrepo.vid-generator.rest.headers.mediaType=application/json mosip.idrepo.vid-generator.rest.timeout=100 +## Websub +mosip.idrepo.websub.vid-credential-update.callback-url=http://identity.idrepo/idrepository/v1/identity/callback/vid_credential_status_update +mosip.idrepo.websub.vid-credential-update.topic=VID_CRED_STATUS_UPDATE +mosip.idrepo.websub.vid-credential-update.secret= ${idrepo.websub.vid.credential.update.secret} +mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE + +mosip.idrepo.uin-generator.rest.uri=http://idgenerator.kernel/v1/idgenerator/uin +mosip.idrepo.uin-generator.rest.httpMethod=GET +mosip.idrepo.uin-generator.rest.headers.mediaType=application/json +mosip.idrepo.uin-generator.rest.timeout=100 + ## Credential request generator mosip.credential.service.database.hostname=postgres-postgresql.postgres.svc.cluster.local mosip.credential.service.database.port=5432 @@ -220,7 +241,7 @@ subscription-delay-secs=120000 # this property value is set to 0 that disables this workaround. # To enable the resubscrition scheduling, this property should be assigned with a positive # number like 1 * 60 * 60 = 3600 for one hour -resubscription-delay-secs=7200 +resubscription-delay-secs=43200 WEBSUBSECRET=test # Credential service @@ -256,6 +277,7 @@ mosip.credential.service.retry.maxDelay=100 IDREPOGETIDBYID=http://identity.idrepo/idrepository/v1/identity/idvid mosip.data.share.protocol=http +mosip.data.share.internal.domain.name=datashare.datashare CREATEDATASHARE=/v1/datashare/create KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign @@ -304,3 +326,11 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +## Auth token generator +auth-token-generator.rest.uri=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +auth-token-generator.rest.appId=regproc +auth-token-generator.rest.clientId=mosip-regproc-client +auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} + +# Enabling below property will start logging performance logs in identity and vid service +mosip.idrepo.aspect-logging.enabled=false From 2fcd46677000354c4870505d7f569ab5e42b68de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 06:33:28 +0530 Subject: [PATCH 0181/1358] [MOSIP-16645] Partner properties updated for 1.2.0. --- partner-management-default.properties | 93 +++++++++++++++++++++++++++ 1 file changed, 93 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index 3c13d0ab595..9615410bd5b 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -95,6 +95,7 @@ pmp.credentialissuance.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-po pmp.misp.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-z]{2,})$ pmp.partner.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-z]{2,})$ pmp.partner.partnerId.max.length=36 +pmp.partner.mobileNumbe.max.length=16 ## Time difference between request creation and request processing masterdata.registerdevice.timestamp.validate=+5 @@ -119,6 +120,11 @@ pmp.ca.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uplo pmp.partner.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadPartnerCertificate pmp.partner.certificaticate.get.rest.uri=${keymanager.base.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} pmp-keymanager.upload.other.domain.cert.rest.uri=${keymanager.base.url}/v1/keymanager/uploadOtherDomainCertificate +# Used to get data share url to publish to websub +pmp.certificaticate.datashare.rest.uri=http://datashare.datashare/v1/datashare/create +# Used for generating the datashare url +pms.certs.datashare.policyId=mpolicy-default-cert +pms.certs.datashare.subscriberId=mpartner-default-cert ## Keycloak # These configurations are used to create user in keycloak and map to a role. @@ -184,3 +190,90 @@ token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/cl token.request.clientId=admin PASSWORDBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/useridPwd application.env.local=false + +# Notifications +emailResourse.url=http://notification.kernel/v1/notifier/email/send +resource.template.url=http://masterdata.kernel/v1/masterdata/templates/{langcode}/{templatetypecode} +notifications.sent.before.days = 3 +partner.registration.sub-template = partner-reg-sub-template +partner.reg.content-template=partner-reg-content-template +partner.status.sub-template=partner-status-sub-template +partner.status.content-template=partner-status-content-template +partner.apikey.status.sub-template=partner-apikey-status-sub-template +apikey.status.content-template=apikey-status-content-template +pms.notifications-schedule.init-delay = 24 +pms.notifications-schedule.fixed-rate=24 + +## Roles +mosip.role.pms.postpoliciesgroupnew=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.putpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpolicies=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciespolicyidgrouppublish=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.putpoliciespolicyid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.patchpoliciespolicyidgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpolicies=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciespolicyid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesapikey=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciespolicyidpartnerpartnerid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesgroupall=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciesgroupsearch=PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciessearch=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesconfigkey=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciesgroupfiltervalues=PARTNER_ADMIN,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER +mosip.role.pms.postpoliciesfiltervalues=PARTNER_ADMIN,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER +mosip.role.pms.postdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.putdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.patchdevicedetail=PARTNER_ADMIN +mosip.role.pms.postdevicedetailsearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetaildevicetypesearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetailfiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetaildevicetypefiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetaildevicesubtypefiltervalues=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER +mosip.role.pms.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT +mosip.role.pms.postftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.putftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.patchftpchipdetail=PARTNER_ADMIN +mosip.role.pms.postftpchipdetailuploadcertificate=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.getftpchipdetailgetpartnercertificate=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.postftpchipdetailsearch=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.postregistereddevices=PARTNER_ADMIN,FTM_PROVIDER,ZONAL_ADMIN +mosip.role.pms.postregistereddevicesderegister=PARTNER_ADMIN,FTM_PROVIDER,ZONAL_ADMIN +mosip.role.pms.postregistereddevicessearch=PARTNER,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION +mosip.role.pms.postsecurebiometricinterface=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER +mosip.role.pms.putsecurebiometricinterface=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER +mosip.role.pms.patchsecurebiometricinterface=PARTNER_ADMIN +mosip.role.pms.postsecurebiometricinterfacesearch=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER +mosip.role.pms.postpartners=PARTNER,PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER +mosip.role.pms.patchpartnerspartneridapikeyrequest=PARTNER_ADMIN,AUTH_PARTNER,PARTNER,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_PARTNER +mosip.role.pms.postpartnerspartneridbioextractorspolicyid=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER +mosip.role.pms.getpartnerspartneridbioextractorspolicyid=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER +mosip.role.pms.postpartnerspartneridcredentialtypepolicyid=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER +mosip.role.pms.getpartnerspartneridcredentialtypepolicies=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER +mosip.role.pms.postpartnerspartneridcontactadd=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER +mosip.role.pms.putpartnerspartnerid=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER +mosip.role.pms.getpartnerspartnerid=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER,RESIDENT +mosip.role.pms.getpartnerspartneridapikeyrequest=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER +mosip.role.pms.getpartnerspartneridapikeyapikeyreqid=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER +mosip.role.pms.postpartnerscertificatecaupload=PARTNER_ADMIN,FTM_PROVIDER,AUTH_PARTNER,PMS_USER,ONLINE_VERIFICATION_PARTNER,PARTNERMANAGER +mosip.role.pms.postpartnerscertificateupload=PARTNER_ADMIN,PARTNER_ADMIN,FTM_PROVIDER,AUTH_PARTNER,PMS_USER,ONLINE_VERIFICATION_PARTNER,PARTNERMANAGER,ID_AUTHENTICATION,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER +mosip.role.pms.getpartnerspartneridcertificate=PARTNER_ADMIN,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerssearch=PARTNER_ADMIN,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerspartnertypesearch=PARTNER_ADMIN,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersfiltervalues=PARTNER_ADMIN,PARTNER,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersapikeyrequestfiltervalues=PARTNER_ADMIN,FTM_PROVIDER,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER +mosip.role.pms.postpartnersapikeyrequestsearch=PARTNER_ADMIN,FTM_PROVIDER,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,DEVICE_PROVIDER,PMS_USER,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersapikeysearch=PARTNER_ADMIN,FTM_PROVIDER,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,DEVICE_PROVIDER,ONLINE_VERIFICATION_PARTNER,PMS_USER +mosip.role.pms.putpartnerspartneridapikeypolicies=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.patchpartnerspartnerid=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.patchpartnerspartneridapikey=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getpartnerspartneridapikeymisplicensekey=PARTNERMANAGER,PARTNER_ADMIN,ID_AUTHENTICATION,CREDENTIAL_ISSUANCE +mosip.role.pms.patchpartnersapikey=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getpartners=REGISTRATION_PROCESSOR,RESIDENT,PARTNER_ADMIN,ID_AUTHENTICATION,CREDENTIAL_ISSUANCE,PARTNERMANAGER +mosip.role.pms.getpartnerspartneridapikey=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getpartnersapikey=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getpartnersapikeykey=PARTNER_ADMIN,PARTNERMANAGER +mosip.role.pms.postmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER +mosip.role.pms.putmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER +mosip.role.pms.getmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER +mosip.role.pms.getmispsmispidlicensekey=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER From 0e7f2392fe41c5b6b0b2788eb80ef45ba89cfd29 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 06:56:21 +0530 Subject: [PATCH 0182/1358] [MOSIP-16645] IDA properties updated for 1.2.0. --- id-authentication-default.properties | 112 ++++++++++++++++++++------- 1 file changed, 84 insertions(+), 28 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index eeb62131687..0a0164b96b6 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -12,6 +12,8 @@ # mosip.kernel.tokenid.partnercode.salt # softhsm.ida.pin # mosip.api.internal.host +# ida.websub.masterdata.templates.callback.secret +# ida.websub.masterdata.titles.callback.secret mosip.api.internal.url=https://${mosip.api.internal.host} ## Client @@ -151,12 +153,6 @@ sms-notification.rest.httpMethod=POST sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} -## Get RID for USERID - Used in Internal Auth based on User ID -userid-rid.rest.uri=http://authmanager.kernel/v1/authmanager/rid/{appId}/{uid} -userid-rid.rest.httpMethod=GET -userid-rid.rest.headers.mediaType=${mosip.ida.request.mediaType} -userid-rid.rest.timeout=${mosip.ida.request.timeout.secs} - ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID rid-uin.rest.uri=http://idrepo-identity.idrepo/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET @@ -213,6 +209,8 @@ ida-websub-credential-issue-callback-secret=${ida.websub.credential.issue.callba ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback.secret} ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} +ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} +ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} ida-websub-auth-type-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/authTypeCallback/{partnerId} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events @@ -223,9 +221,8 @@ ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servle ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate ## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist - -## Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. -subscriptions-delay-on-startup=120000 +#Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. +subscriptions-delay-on-startup_millisecs=120000 # The time interval in seconds to schedule subscription of topics which is done as a # work-around for the bug: MOSIP-9496. By default the @@ -234,6 +231,8 @@ subscriptions-delay-on-startup=120000 # number like 1 * 60 * 60 = 3600 for one hour ida-websub-resubscription-delay-secs=7200 +delay-to-pull-missing-credential-after-topic-subscription_millisecs=60000 + ## Websub even topics ida-topic-auth-type-status-updated=${ida-auth-partner-id}/AUTH_TYPE_STATUS_UPDATE ## Topic for Credential Issueance Event (for UIN/VID create/update events) @@ -244,12 +243,23 @@ ida-topic-remove-id=${ida-auth-partner-id}/REMOVE_ID ida-topic-deactivate-id=${ida-auth-partner-id}/DEACTIVATE_ID ## Topic for ID Activate Event (UIN/VID activate events) ida-topic-activate-id=${ida-auth-partner-id}/ACTIVATE_ID -ida-topic-pmp-misp-updated=MISP_UPDATED ida-topic-pmp-partner-updated=PARTNER_UPDATED ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED ida-topic-pmp-policy-updated=POLICY_UPDATED ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED ida-topic-hotlist=MOSIP_HOTLIST +ida-topic-credential-status-update=CREDENTIAL_STATUS_UPDATE +ida-topic-auth-type-status-update-acknowledge=AUTH_TYPE_STATUS_UPDATE_ACK +ida-topic-auth-transaction-status=AUTHENTICATION_TRANSACTION_STATUS +ida-topic-masterdata-templates=masterdata/idauthentication_templates +ida-topic-masterdata-titles=masterdata/titles +ida-topic-pmp-misp-license-generated=MISP_LICENSE_GENERATED +ida-topic-pmp-misp-license-updated=MISP_LICENSE_UPDATED +ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED +ida-topic-pmp-partner-updated=PARTNER_UPDATED +ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED +ida-topic-pmp-policy-updated=POLICY_UPDATED +ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED ## IDA cache ## IDA cache Time to live in days - To clear cache scheduled based on the days provided. @@ -302,12 +312,6 @@ ida.demo.common.normalization.regex.any[0]=[\\.|,|\\-|\\*|\\(|\\)|\\[|\\]|`|\\'| ida.demo.common.normalization.regex.any[1]=\\s+${ida.norm.sep} . ida.demo.common.normalization.regex.any[2]=\\.${ida.norm.sep} -## Admin -## Configure N time period threshold for accepting auth/OTP/KYC request for a country -authrequest.received-time-allowed.minutes=30 -# Configuration for +/- time period adjustment in minutes for the request time validation, so that -# The requests originating from a system that is not in time-sync will be accepted for the time period -authrequest.received-time-adjustment.minutes=5 # Language Code ida.errormessages.default-lang=en @@ -341,7 +345,7 @@ ekyc.auth.types.allowed=demo,otp,bio-Finger,bio-Iris,bio-Face internal.auth.types.allowed=otp,bio-Finger,bio-Iris,bio-Face ## Allowed IdTypes for hotlisting -mosip.ida.internal.hotlist.idtypes.allowed=UIN,VID,PARTNER +mosip.ida.internal.hotlist.idtypes.allowed=UIN,VID,PARTNER_ID,DEVICE,DEVICE_PROVIDER ## Datetime #Example allowed date time formats: "2020-10-23T12:21:38.660Z" , 2019-03-28T10:01:57.086+05:30 @@ -376,17 +380,14 @@ static.token.enable=true ## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests request.idtypes.allowed=VID,UIN ## The ID types to be supported for Internal Authentication/OTP Requests -request.idtypes.allowed.internalauth=UIN,USERID,VID +request.idtypes.allowed.internalauth=UIN,VID ## Encrypted Credential Attributes list ## The list of attributes in identity that are Zero Knowledge encrpted in IDA while storing the credential in DB. ## This list is used to identify the attributes to decrypt when fetching the records from DB -ida-zero-knowledge-encrypted-credential-attributes=individualBiometrics,fullName,dateOfBirth,phone,email +ida-zero-knowledge-encrypted-credential-attributes=individualBiometrics,fullName,dateOfBirth,phone,email,postalCode ## Cryptograpic/Signature verificate related configurations -mosip.ida.auth.trust-validation-required=true -mosip.ida.kyc.trust-validation-required=true -mosip.ida.otp.trust-validation-required=true mosip.ida.internal.thumbprint-validation-required=false mosip.ida.internal.trust-validation-required=false @@ -425,12 +426,6 @@ mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.ida.pin} -## Titles/Templates master data stored as configuration ---------- -## UNUSED. TODO: remove them later -maste.data.titles= -# SMS and Email templates for OTP notification and Authentication notification -master.data.ida-templates= - ## Security - used in Internal Authentication Services by default Kernel Auth Adapter mosip.security.csrf-enable=false mosip.security.cors-enable=false @@ -483,3 +478,64 @@ keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +## Admin +# Configure N time period threshold for accepting auth/OTP/KYC request for a country +authrequest.received-time-allowed.seconds=30 +# Configuration for +/- time period adjustment in minutes for the request time validation, so that +# The requests originating from a system that is not in time-sync will be accepted for the time period +authrequest.received-time-adjustment.seconds=30 +#Configuration for time period difference between each biometric segment and digital Id capture +authrequest.biometrics.allowed-segment-time-difference-in-seconds=120 + +# Credential Request API to get Request IDs for the given status, pageStart and page +cred-request-service-get-request-ids.pageSize=10 +cred-request-service-get-request-ids.statusCode=ISSUED +ida-max-credential-pull-window-days=2 +ida-max-websub-messages-pull-window-days=2 +cred-request-service-get-request-ids.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/getRequestIds?direction=ASC&orderBy=updateDateTime&pageNumber={pageNumber}&pageSize=${cred-request-service-get-request-ids.pageSize}&statusCode=${cred-request-service-get-request-ids.statusCode}&effectivedtimes={effectivedtimes} +cred-request-service-get-request-ids.rest.httpMethod=GET +cred-request-service-get-request-ids.rest.headers.mediaType=${mosip.ida.request.mediaType} +cred-request-service-get-request-ids.rest.timeout=${mosip.ida.request.timeout.secs} + +# Credential Request API to get Request IDs for the given status, pageStart and page +cred-request-service-retrigger-cred-issuance.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/retrigger/{requestId} +cred-request-service-retrigger-cred-issuance.rest.httpMethod=PUT +cred-request-service-retrigger-cred-issuance.rest.headers.mediaType=${mosip.ida.request.mediaType} +cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.timeout.secs} + +# Child Auth Filter configurations +ida.child-auth-filter.date-of-birth.attribute.name=dateOfBirth +ida.child-auth-filter.date-of-birth.pattern=yyyy/MM/dd +ida.child-auth-filter.child.max.age=5 +ida.child-auth-filter.factors.denied=otp,bio + +# The chunk size of failed message items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. +ida.fetch.failed.websub.messages.chunk.size=10 + +## Auth filters +# Comma Seperated list of fully qualified classes of the auth filters in the order in which they have to be executed. +# If validation with one filter fails with an error, the rest of the filter in the sequence will be skipped +# and error will be returned in the auth response. + +#Auth Filters for external auth +ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl +#Auth Filters for internal auth +ida.mosip.kyc.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl +#Auth Filters for kyc auth +ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl + +## Demo SDK integration +mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 + +#Fixed delay in which cleanup will be done in Hours +mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 + +# The target enviornment. This values should be comma separted. +#Ex.Staging,Developer +mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production +# Allowed domain Uris. This values should be comma separted. +#Ex. https://dev.mosip.net,https://qa2.mosip.net +mosip.ida.allowed.domain.uris=${mosipbox.public.url} +# Biometrics attribute name present in data-share policy +mosip.ida.credential.biometric.attribute.name=individualBiometrics From e806b4c35bd224cf5dc4f5ec7a9f96b2328bd650 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 10:11:57 +0530 Subject: [PATCH 0183/1358] [MOSIP-16645] Regclient properties updated for 1.2.0. --- registration-default.properties | 29 ++++++++++++++--------------- 1 file changed, 14 insertions(+), 15 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index c0c7ca83b16..2ba31980ae8 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -60,8 +60,8 @@ mosip.registration.geo.capture.frequency=n #Admin Setting to turn Document Scan On or Off. If y, documents scan view is turned on. If n, documents scan view turned off. mosip.registration.document_enable_flag=y -#Supervisor Authentication for Biometric Exceptions. If y, iris is turned on. If n, iris is turned off. -mosip.registration.supervisor_authentication_configuration=Y +#Reviewer Authentication for Biometric Exceptions. If y, iris is turned on. If n, iris is turned off. +mosip.registration.reviewer_authentication_configuration=Y #Maximum length of the Password to be entered mosip.registration.username_pwd_length=50 @@ -106,8 +106,8 @@ mosip.registration.reg_pak_max_cnt_apprv_limit=100 #Maximum no. of days for a packet pending EOD approval beyond which client is frozen for registration mosip.registration.reg_pak_max_time_apprv_limit=50 -#Enable EOD feature. If y, EOD feature will be enabled, else, will be disbaled -mosip.registration.eod_process_config_flag=Y +#Enable supervisor authentication feature. If y, supervisor approval will be enabled, else, will be disbaled +mosip.registration.supervisor_approval_config_flag=Y #No. of days beyond audit creation date to delete audits mosip.registration.audit_log_deletion_configured_days=10 @@ -178,10 +178,8 @@ mosip.registration.registration_pre_reg_packet_location=..//PreRegPacketStore #Mode of Communicating the OTP to User. Possible Values email or mobile mosip.registration.otp_channels=email - - #Time in Seconds for forced log-out of user, if user is idle for the specified duration -mosip.registration.ideal_time = 900 +mosip.registration.idle_time = 900 #Time in Seconds to diplay the warning message pop-up to user, if user is idle for the specified duration mosip.registration.refreshed_login_time = 600 @@ -457,17 +455,15 @@ mosip.registration.replace_sdk_quality_score=N #URL for reset password mosip.registration.reset_password_url=https://dev.mosip.net/keycloak/auth/realms/mosip/account/ +#Flag to check / bypass device cert validation -# camera used as document scanner resolution -mosip.camera.resolution.width = 2592 -mosip.camera.resolution.height = 1944 +mosip.registration.mdm.validate.trust=true -# Face threshold and retry attempts -mosip.registration.num_of_face_retries=3 -mosip.registration.face_threshold=60 +#Batch size for RID Sync Job +mosip.registration.rid_sync_batch_size=5 -# scanner configuration -mosip.registration.DOCUMENT_SCANNER_DEPTH=100 +#Batch size for Packet Upload Job +mosip.registration.packet_upload_batch_size=5 #used to fill env in the MDM rcapture request mosip.registration.server_profile=Staging @@ -478,3 +474,6 @@ mosip.registration.mdm.trust.domain.rcapture=DEVICE mosip.registration.mdm.trust.domain.digitalId=DEVICE mosip.registration.mdm.trust.domain.deviceinfo=DEVICE +# Below age ranges map should contain proper age group name and age range, any overlap of the age +# range will result in a random behaviour of tagging. In range, upper and lower values are inclusive. +mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR':'6-17','ADULT':'18-200'} From e0b6355c319426b392ec2e2626eddb42dc4050f0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 10:15:20 +0530 Subject: [PATCH 0184/1358] [MOSIP-16645] Resident properties updated for 1.2.0. --- resident-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index bba2df0b66b..8927519d930 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -16,7 +16,7 @@ resident.rid.id=mosip.resident.rid resident.updateuin.id=mosip.resident.updateuin resident.authunlock.id=mosip.resident.authunlock resident.authhistory.id=mosip.resident.authhistory -mosip.resident.service.status.check.id=mosip.registration.status +mosip.resident.service.status.check.id=mosip.registration.external.status mosip.resident.service.status.check.version=1.0 vid.revoke.id=mosip.vid.deactivate resident.revokevid.id=mosip.resident.vidstatus @@ -66,11 +66,11 @@ EMAILNOTIFIER=http://kernel-notification-service/v1/notifier/email/send AUTHTYPESTATUSUPDATE=http://idrepo-identity-service/idrepository/v1/identity/authtypes/status #Regitstration processor reprint service #Registration status service -REGISTRATIONSTATUSSEARCH=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/search +REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search resident.center.id=10001 resident.machine.id=10001 #Credential Req service -POLICY_REQ_URL=http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +POLICY_REQ_URL=http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies OTP_GEN_URL=http://ida-internal.ida/idauthentication/v1/internal/otp CREDENTIAL_STATUS_URL=http://credentialrequest.idrepo/v1/credentialrequest/get/ CREDENTIAL_REQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator From 1a3bd1f5dd192563833fbff3efd29497c1a8b81a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 10:25:45 +0530 Subject: [PATCH 0185/1358] [MOSIP-16645] Syncdata properties updated for 1.2.0. --- syncdata-default.properties | 38 ++++++++++++++++++++++++++++++++++--- 1 file changed, 35 insertions(+), 3 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index e4d7979f308..91a99d19cd0 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -25,6 +25,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef mosip.kernel.syncdata-service-idschema-url=http://masterdata.kernel/v1/masterdata/idschema/latest +mosip.kernel.masterdata.locationhierarchylevels.uri = http://masterdata.kernel/v1/masterdata/locationHierarchyLevels ## SMS notification mosip.kernel.sms.enabled=false @@ -217,6 +218,16 @@ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users +#Self token resttemplate related to configuration +mosip.iam.adapter.clientid=mosip-reg-client +mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} +mosip.iam.adapter.appid=registrationclient +mosip.iam.adapter.issuerURL=${mosip.iam.base-url}/auth/realms/mosip +mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey +mosip.iam.adapter.validate-expiry-check-rate=15 +mosip.iam.adapter.renewal-before-expiry-interval=15 +mosip.iam.adapter.self-token-renewal-enable=true + keycloak.realm=registration-client keycloak.resource=account keycloak.auth-server-url=${mosip.iam.base-url} @@ -270,7 +281,7 @@ mosip.kernel.masterdata.audit-url= http://auditmanager.kernel/v1/auditmanager/au mosip.keycloak.max-no-of-users=20000 ## Register device -mosip.kernel.sign-url=http://keymanager.keymanager/v1/keymanager/sign +mosip.kernel.keymanager-service-sign-url=http://keymanager.keymanager/v1/keymanager/jwtSign masterdata.registerdevice.timestamp.validate=+10 ## Prereg @@ -393,11 +404,32 @@ syncdata.websub.resubscription.retry.count=3 # this property value is set to 0 that disables this workaround. # To enable the resubscrition scheduling, this property should be assigned with a positive # number like 1 * 60 * 60 = 3600 for one hour -syncdata.websub.resubscription.delay.secs=41100000 -# Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. +syncdata.websub.resubscription.delay.millis=43200000 subscriptions-delay-on-startup=120000 +#Property to fetch location hierarchies during client settings sync +mosip.kernel.masterdata.locationhierarchylevels.uri=http://masterdata.kernel/v1/masterdata/locationHierarchyLevels # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false + + +## Roles +mosip.role.admin.syncdata.getconfigs=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getglobalconfigs=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN +mosip.role.admin.syncdata.getregistrationcenterconfigregistrationcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getconfigurationregistrationcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getclientsettingsregcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getroles=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getuserdetailsregcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getusersaltregid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.gettpmpublickeyverify=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getlatestidschema=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default,REGISTRATION_PROCESSOR,INDIVIDUAL,RESIDENT,ID_AUTHENTICATION +mosip.role.admin.syncdata.getgetcertificate=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.gettpmpublickeymachineid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getconfigsmachinename=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getuserdetails=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getgetcacertificates=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From c29bb26484dcf14732369a1827e42b0bd9610fe2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 11:42:12 +0530 Subject: [PATCH 0186/1358] [MOSIP-16645] Print properties updated for 1.2.0. --- print-default.properties | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/print-default.properties b/print-default.properties index dd4cd2e95ea..bd8392a73f6 100644 --- a/print-default.properties +++ b/print-default.properties @@ -16,7 +16,7 @@ mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED osip.event.secret=${print.websub.hub.secret} csrf.disabled=true mosip.event.delay=120000 -print-websub-resubscription-delay-secs=7200 +print-websub-resubscription-delay-secs=43200 registration.processor.print.textfile=registration-processor-print-text-file.json ## Token @@ -69,8 +69,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR mosip.supported-languages=eng,fra -mosip.primary-language=eng -mosip.secondary-language=fra +mosip.template-language=eng +mosip.optional-languages=fra,ara +mosip.mandatory-languages=eng ## CBEFF util # Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. @@ -108,3 +109,4 @@ registration.processor.identityjson=registration-processor-identity.json registration.processor.demographic.identity=identity CREATEDATASHARE=http://datashare.datashare/v1/datashare/create DECRYPTPINBASSED=http://keymanager.keymanager/v1/keymanager/decryptWithPin +mosip.print.prependThumbprint=true From 0342541997dbf5a96c9caee480760e124d43d673 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 18 Aug 2021 11:42:49 +0530 Subject: [PATCH 0187/1358] [MOSIP-16645] Hotlist properties updated for 1.2.0. --- hotlist-default.properties | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/hotlist-default.properties b/hotlist-default.properties index cd7e18bf639..643d36e9c9d 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -23,7 +23,7 @@ mosip.hotlist.db.driverClassName=org.postgresql.Driver mosip.hotlist.db.dialect=org.hibernate.dialect.PostgreSQL92Dialect #------------------------- Data validation properties -----------------------------------------------------# -mosip.hotlist.allowedIdTypes=UIN,VID,MACHINE_ID,PARTNER_API_KEY,OPERATOR_ID,CENTER_ID,DEVICE_ID,DEVICE_MODEL,FTM_PUBLIC_KEY +mosip.hotlist.allowedIdTypes=UIN,VID,MACHINE_ID,PARTNER_ID,OPERATOR_ID,CENTER_ID,DEVICE,DEVICE_MODEL,FTM_PUBLIC_KEY,DEVICE_PROVIDER #------------------------- Data Source properties ---------------------------------------------------------# mosip.hotlist.datasource.driverClassName=${mosip.hotlist.db.driverClassName} @@ -34,14 +34,14 @@ mosip.hotlist.datasource.dialect=${mosip.hotlist.db.dialect} #------------------------- Web sub properties -------------------------------------------------------------# #Web sub topic -mosip.hotlist.topic-to-publish=HOTLIST +mosip.hotlist.topic-to-publish=MOSIP_HOTLIST #------------------------- Encryption/Decryption properties -----------------------------------------------# # App Id for Encryption/Decryption -mosip.hotlist.crypto.app-id=hotlist +mosip.hotlist.crypto.app-id=ADMIN_SERVICES # Ref Id for Encryption/Decryption -mosip.hotlist.crypto.app-id=id_encrypt_decrypt +mosip.hotlist.crypto.ref-id=hotlist_service #-------------------------Hotlist cleanup schedule details ------------------------------------------------# # Initial delay in Hours @@ -78,4 +78,4 @@ kernel.retry.traverse.root.cause.enabled=false #Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.retryable.exceptions=io.mosip.hotlist.exception.HotlistRetryException #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.nonretryable.exceptions= \ No newline at end of file +kernel.retry.nonretryable.exceptions= From 8d9e99399aecd9f57e50241b94e2c752d3d5cd8c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 19 Aug 2021 12:32:03 +0530 Subject: [PATCH 0188/1358] Commented out property uncommented. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index bde6f3aa61f..553cad88789 100644 --- a/application-default.properties +++ b/application-default.properties @@ -53,7 +53,7 @@ mosip.country.code=MOR mosip.supported-languages=eng,fra mosip.primary-language=eng mosip.secondary-language=fra -#mosip.right_to_left_orientation=ara +mosip.right_to_left_orientation= mosip.left_to_right_orientation=eng,fra ## Application IDs From 2487a4f74ef1b89a1ef426119729e0564d5ba673 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 20 Aug 2021 12:33:21 +0530 Subject: [PATCH 0189/1358] [MOSIP-16645] Updated for 1.2.0. --- websub-default.conf | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 websub-default.conf diff --git a/websub-default.conf b/websub-default.conf new file mode 100644 index 00000000000..26f1a2d807d --- /dev/null +++ b/websub-default.conf @@ -0,0 +1,31 @@ + +[b7a.jdbc.pool] +maximumPoolSize=250 + +[mosip.hub] +datasource-url="jdbc:postgresql://postgres-postresql.postgres:5432/mosip_websub" +datasource-username="websubuser" +datasource-password="${db.dbuser.password}" +port=9191 +retry_count=0 +retry_interval=5 +retry_backoff_factor=1.0 +retry_max_wait_interval=6000 +restart_republish_time_offset="2021-07-08T06:39:00.000Z" +restart_republish_time_limit=59 + +[mosip.hub.cron-task.unsent-messages-republish] +enable=false +seconds="0" +minutes="0/1" +hours="*" +days-of-month="?" +months="*" +days-of-week="*" +year="*" + +[mosip.auth] +base_url="http://authmanager.kernel/v1/authmanager" +validate_token_url="/authorize/admin/validateToken" +filter_disable=true + From 8112d74e0344408a87c60353f3fdb8c0cb4383cf Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 20 Aug 2021 12:37:03 +0530 Subject: [PATCH 0190/1358] [MOSIP-16645] "svc.cluster..." removed to make dns resolution application for other named clusters. --- admin-default.properties | 2 +- hazelcast_default.xml | 2 +- hazelcast_dmz.xml | 2 +- id-authentication-default.properties | 2 +- id-repository-default.properties | 4 ++-- kernel-default.properties | 4 ++-- partner-management-default.properties | 6 +++--- pre-registration-default.properties | 2 +- registration-processor-default.properties | 4 ++-- syncdata-default.properties | 2 +- 10 files changed, 15 insertions(+), 15 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index bed870dbdb7..3478b0cd956 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -13,7 +13,7 @@ mosip.admin.request-id=ADMIN.REQUEST ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 ## Account management diff --git a/hazelcast_default.xml b/hazelcast_default.xml index be574a0ccf6..b817639f0be 100644 --- a/hazelcast_default.xml +++ b/hazelcast_default.xml @@ -28,7 +28,7 @@ <discovery-strategy enabled="false" class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> <properties> - <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> + <property name="service-dns">service-hazelcast-server.default</property> </properties> </discovery-strategy> </discovery-strategies> diff --git a/hazelcast_dmz.xml b/hazelcast_dmz.xml index 040c52de759..eb7592617d5 100644 --- a/hazelcast_dmz.xml +++ b/hazelcast_dmz.xml @@ -28,7 +28,7 @@ <discovery-strategy enabled="true" class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> <properties> - <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> + <property name="service-dns">service-hazelcast-server.default</property> </properties> </discovery-strategy> </discovery-strategies> diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 0a0164b96b6..d3975fdc990 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -24,7 +24,7 @@ mosip.ida.auth.appId=ida ## Database # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.ida.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.ida.database.hostname=postgres-postgresql.postgres mosip.ida.database.port=5432 mosip.ida.database.user=idauser mosip.ida.database.password=${db.dbuser.password} diff --git a/id-repository-default.properties b/id-repository-default.properties index 91ee5d1f42a..244b7e4728e 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -14,7 +14,7 @@ management.endpoint.restart.enabled=true # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.idrepo.db.url=postgres-postgresql.postgres.svc.cluster.local +mosip.idrepo.db.url=postgres-postgresql.postgres mosip.idrepo.db.port=5432 mosip.idrepo.db.identity.db-name=mosip_idrepo mosip.idrepo.db.identity.username=idrepouser @@ -190,7 +190,7 @@ mosip.idrepo.uin-generator.rest.headers.mediaType=application/json mosip.idrepo.uin-generator.rest.timeout=100 ## Credential request generator -mosip.credential.service.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.credential.service.database.hostname=postgres-postgresql.postgres mosip.credential.service.database.port=5432 mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.database.hostname}:${mosip.credential.service.database.port}/mosip_credential?currentSchema=credential mosip.credential.service.jdbc.user=credentialuser diff --git a/kernel-default.properties b/kernel-default.properties index 9af3230c831..5ad9ce99dbe 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -131,7 +131,7 @@ kernel.prid.revoke-scheduler-days_of_week=* ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver @@ -147,7 +147,7 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false logging.level.org.hibernate.SQL=ERROR -logging.level.org.hibernate.type=ERROR +ogging.level.org.hibernate.type=ERROR admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel admin_database_username=kerneluser diff --git a/partner-management-default.properties b/partner-management-default.properties index 9615410bd5b..b149114dd31 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -11,19 +11,19 @@ ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace ## If database is external to production, provide the DNS or ip of the host and port -mosip.pmp.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.pmp.database.hostname=postgres-postgresql.postgres mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} ## Auth device -mosip.authdevice.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.authdevice.database.hostname=postgres-postgresql.postgres mosip.authdevice.database.port=5432 mosip.authdevice.database.user=authdeviceuser mosip.authdevice.database.password=${db.dbuser.password} ## Reg device -mosip.regdevice.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.regdevice.database.hostname=postgres-postgresql.postgres mosip.regdevice.database.port=5432 mosip.regdevice.database.user=regdeviceuser mosip.regdevice.database.password=${db.dbuser.password} diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 0258d3e9fcc..a7b84d26a2b 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -9,7 +9,7 @@ # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port javax.persistence.jdbc.driver=org.postgresql.Driver -mosip.database.ip=postgres-postgresql.postgres.svc.cluster.local +mosip.database.ip=postgres-postgresql.postgres mosip.database.port=5432 javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_prereg?useSSL=false javax.persistence.jdbc.user=prereguser diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5bffb65d09f..1f9247f45a3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -28,7 +28,7 @@ registration.processor.bio.dedupe.reprocess.buffer.time=900 ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.registration.processor.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.registration.processor.database.hostname=postgres-postgresql.postgres mosip.registration.processor.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc @@ -413,7 +413,7 @@ mosip.regproc.eventbus.type=kafka #Kafka event bus config, will be used only when the type is kafka #Kafka cluster servers comma separated, common for all stages and camel -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka.svc.cluster.local:9092,kafka-1.kafka-headless.kafka.svc.cluster.local:9092,kafka-2.kafka-headless.kafka.svc.cluster.local:9092 +mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka:9092,kafka-1.kafka-headless.kafka:9092,kafka-2.kafka-headless.kafka:9092 # Stage Group Configuratoins # Default base packages for stage beans to be scanned in a stage group diff --git a/syncdata-default.properties b/syncdata-default.properties index 91a99d19cd0..f7991350c4c 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -133,7 +133,7 @@ kernel.prid.revoke-scheduler-days_of_week=* ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres.svc.cluster.local +mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver From 99ee70083056b3ae1a4daf460cef509f39fb1f53 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 20 Aug 2021 12:46:26 +0530 Subject: [PATCH 0191/1358] [MOSIP-16645] Updated for 1.2.0. --- websub-default.conf => websub.conf | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename websub-default.conf => websub.conf (100%) diff --git a/websub-default.conf b/websub.conf similarity index 100% rename from websub-default.conf rename to websub.conf From c603ee8cfca6f4e6ca3fdd4c31f1d29f04ca4780 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 20 Aug 2021 13:24:11 +0530 Subject: [PATCH 0192/1358] Correction. --- websub.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub.conf b/websub.conf index 26f1a2d807d..52637511975 100644 --- a/websub.conf +++ b/websub.conf @@ -3,7 +3,7 @@ maximumPoolSize=250 [mosip.hub] -datasource-url="jdbc:postgresql://postgres-postresql.postgres:5432/mosip_websub" +datasource-url="jdbc:postgresql://postgres-postgresql.postgres:5432/mosip_websub" datasource-username="websubuser" datasource-password="${db.dbuser.password}" port=9191 From 36f70cb398e4b274158e532a30f5908514ece132 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 20 Aug 2021 21:54:25 +0530 Subject: [PATCH 0193/1358] [MOSIP-16645] Updated for 1.2.0. --- registration-processor-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1f9247f45a3..7e382861b8f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -425,6 +425,11 @@ mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage +mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver +mosip.regproc.packet.receiver.server.port=8081 +mosip.regproc.packet.receiver.eventbus.port=5711 +# Flag to disable the copying of tags from the packet manger to the message event +mosip.regproc.packet.receiver.message.tag.loading.disable=true #camel-bridge mosip.regproc.camel.bridge.eventbus.kafka.commit.type=single From f02bd1037195cc76452cdcb288fb75b0985fba0b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 20 Aug 2021 22:26:31 +0530 Subject: [PATCH 0194/1358] [MOSIP-16645] Missing property added. --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 7e382861b8f..4a89e6d89e6 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -154,6 +154,7 @@ mosip.registration.processor.registration.status.version=1.0 mosip.registration.processor.transaction.version=1.0 mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.sync.version=1.0 +mosip.registration.processor.lostrid.version=1.0 # this property is used in lostrid api to get postal code mosip.registration.processor.postalcode.req.url=${MASTER}/registrationcenters From 593301a273cca86ed05066a30717a4ca6f0648ce Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 09:25:29 +0530 Subject: [PATCH 0195/1358] only one camel flow for debugging. --- registration-processor-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 4a89e6d89e6..4e8162ed67d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -63,7 +63,8 @@ cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow -camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml +#camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml +camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml # main processor used in stages registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE From 4bb08929cc1b03ba5128e22e6c9e51228d2ba08e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 09:32:13 +0530 Subject: [PATCH 0196/1358] Unused file removed. --- hazelcast_dmz.xml | 37 ------------------------------------- 1 file changed, 37 deletions(-) delete mode 100644 hazelcast_dmz.xml diff --git a/hazelcast_dmz.xml b/hazelcast_dmz.xml deleted file mode 100644 index eb7592617d5..00000000000 --- a/hazelcast_dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!-- ~ Copyright 2017 Red Hat, Inc. ~ ~ Red Hat licenses this file to you - under the Apache License, version 2.0 ~ (the "License"); you may not use - this file except in compliance with the ~ License. You may obtain a copy - of the License at: ~ ~ http://www.apache.org/licenses/LICENSE-2.0 ~ ~ Unless - required by applicable law or agreed to in writing, software ~ distributed - under the License is distributed on an "AS IS" BASIS, WITHOUT ~ WARRANTIES - OR CONDITIONS OF ANY KIND, either express or implied. See the ~ License for - the specific language governing permissions and limitations ~ under the License. --> - -<hazelcast - xsi:schemaLocation="http://www.hazelcast.com/schema/config hazelcast-config-3.10.xsd" - xmlns="http://www.hazelcast.com/schema/config" - xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> - <properties> - <property name="hazelcast.discovery.enabled">true</property> - <property name="hazelcast.logging.type">slf4j</property> - </properties> -<group> - <name>k8s</name> - <password/> - </group> - <network> - <join> - <multicast enabled="false"/> - <tcp-ip enabled="false" /> - <discovery-strategies> - <discovery-strategy enabled="true" - class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> - <properties> - <property name="service-dns">service-hazelcast-server.default</property> - </properties> - </discovery-strategy> - </discovery-strategies> - </join> - </network> -</hazelcast> From ee76f78f7e9b20742dc7f33a7f261a04fdd7d1c8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 10:56:10 +0530 Subject: [PATCH 0197/1358] Securezone properties added back for successful start of group2. --- registration-processor-default.properties | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 4e8162ed67d..edd4ac92070 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -443,6 +443,17 @@ mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'CHILD' && @['ID_OBJECT-residenceStatus'] == 'nonResident')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] mosip.regproc.camelbridge.endpoint-prefix=eventbus:// +## Securzone stage (NOTE: not used in V3, but need this for service to start) +mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single +mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 +mosip.regproc.securezone.notification.eventbus.kafka.poll.frequency=100 +mosip.regproc.securezone.notification.eventbus.kafka.group.id=securezone-notification-stage +mosip.regproc.securezone.notification.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.securezone.notification.server.port=8090 +mosip.regproc.securezone.notification.server.servlet.path=/registrationprocessor/v1/securezone +mosip.regproc.securezone.notification.eventbus.port=5712 +mosip.regproc.securezone.notification.message.tag.loading.disable=true + #packet-uploader-stage mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 From 642c3cfc4feaa4c2b6809179e7c5c10b02964fcb Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 11:01:02 +0530 Subject: [PATCH 0198/1358] Missing properties added. --- registration-processor-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index edd4ac92070..e407535d050 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -250,6 +250,10 @@ registration.processor.queue.username=admin registration.processor.queue.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 registration.processor.queue.url=tcp://${mosip.api.internal.url}:61616 registration.processor.queue.typeOfQueue=ACTIVEMQ +registration.processor.queue.address = print-service +registration.processor.queue.printpostaladdress = postal-service + +registration.processor.document.category=idobject-document-category-mapping.json ## Packet validator registration.processor.applicant.type=applicanttype-document-mapping.json From d813f540d053591cbb9c489a87197b39c814d83a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 11:04:36 +0530 Subject: [PATCH 0199/1358] Missing property and file added. --- registration-processor-default.properties | 1 + registration-processor-print-text-file.json | 9 +++++++++ 2 files changed, 10 insertions(+) create mode 100644 registration-processor-print-text-file.json diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e407535d050..37c11620423 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -221,6 +221,7 @@ registration.processor.identityjson=registration-processor-identity.json registration.processor.abis.json=registration-processor-abis.json registration.processor.demographic.identity=identity registration.processor.notification.emails= +registration.processor.print.textfile=registration-processor-print-text-file.json ## Notification service registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 diff --git a/registration-processor-print-text-file.json b/registration-processor-print-text-file.json new file mode 100644 index 00000000000..9de84ed605a --- /dev/null +++ b/registration-processor-print-text-file.json @@ -0,0 +1,9 @@ +{ + "name": "fullName,LastName", + "address": "addressLine1,addressLine2,addressLine3", + "region": "region", + "province": "province", + "city": "city", + "postalCode": "postalCode", + "phoneNumber": "phone" +} From 7165c42f440bc6cef3498d92c9f861b3455f8df3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 11:12:24 +0530 Subject: [PATCH 0200/1358] Minor. --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 37c11620423..8b2d78828a3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -63,6 +63,7 @@ cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow +## TODO: Revert to all flows #camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml From 704dc302f94d8512a1b5ab8fd0f90cff6ad92af0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 21 Aug 2021 14:41:51 +0530 Subject: [PATCH 0201/1358] Regproc updated. --- registration-processor-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8b2d78828a3..0057c7e1fe4 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -518,6 +518,10 @@ mosip.regproc.cmd-validator.device.allowed-digital-id-timestamp-variation=30 # Timestamp format followed in digital id and biometrics payload mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:mm:ss'Z' +mosip.registration.processor.validate-machine=true +mosip.registration.processor.validate-device=true +mosip.registration.processor.validate-center=true + ## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 From f6d09b153e55667fd4534e41091ee54535228292 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 23 Aug 2021 07:03:51 +0530 Subject: [PATCH 0202/1358] Updated. --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 0057c7e1fe4..f328ccb96f6 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -226,10 +226,10 @@ registration.processor.print.textfile=registration-processor-print-text-file.jso ## Notification service registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 -registration.processor.notification_service_subscriber_callback_url=${mosipbox.public.url}/registrationprocessor/v1/notification/callback/notify +registration.processor.notification_service_subscriber_callback_url=http://regproc-notifier.regproc/registrationprocessor/v1/notification/callback/notify registration.processor.notification_service_pausedforadditonalinfo_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_workflow_paused_for_additional_info_event -registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosipbox.public.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo +registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=http://regproc-notifier.regproc/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo # Email template code for PauseForAdditionalInfo mosip.regproc.notification_service.biometric_correction.email=RPR_PAUSED_FOR_ADDITIONAL_INFO_EMAIL From 7abc9e0437dc49a3bbc4266de5442f3f17e8bcb1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 24 Aug 2021 21:27:51 +0530 Subject: [PATCH 0203/1358] Prereg properties synchronised with 1.2.0-rc1. --- pre-registration-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index a7b84d26a2b..476f39068ac 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -377,7 +377,7 @@ mosip.min-languages.count=2 mosip.max-languages.count=2 ------------------------------------------- ## List of keys which UI will consume -ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,mosip.preregistration.captcha.sitekey,mosip.adult.age,mosip.idschema.version,mosip.preregistration.captcha.enable,preregistartion.identity.name,preregistration.ui.version,preregistartion.contact.email,preregistartion.contact.phone +ui.config.params=preregistartion.contact.email,preregistartion.contact.phone,preregistration.availability.sync,preregistration.availability.noOfDays,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,mosip.preregistration.captcha.sitekey,mosip.adult.age,mosip.idschema.version,mosip.preregistration.captcha.enable,preregistartion.identity.name,preregistration.ui.version ## This config is used for loading recommended centers based on the value of the config. ## The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded preregistration.recommended.centers.locCode=5 @@ -420,7 +420,7 @@ mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recapt mosip.preregistration.captcha.secretkey=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI # Enable or Disable Captch - true to enable & false to disable -mosip.preregistration.captcha.enable=true +mosip.preregistration.captcha.enable=false ## Security mosip.security.csrf-enable:false From cbb196df51b0aed40b51915a773d78b78c12ddc0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 25 Aug 2021 06:46:10 +0530 Subject: [PATCH 0204/1358] PreReg language properties updated. --- pre-registration-default.properties | 8 -------- 1 file changed, 8 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 476f39068ac..f828bfe12f9 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -189,7 +189,6 @@ pre.reg.login.otp.sms.template=otp-sms-template pre.reg.login.otp.mail.subject.template=pre-reg-login-email-subject-template pre.reg.login.otp.mail.content.template=pre-reg-login-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId -mosip.primary-language=eng id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} ## Masterdata service @@ -369,13 +368,6 @@ mosip.pre-registration.transliteration.transliterate.id=mosip.pre-registration.t mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.transliteration.transliterate mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.icu4j -## UI params -#------------to be removed later ------- -mosip.mandatory-languages=eng,fra -mosip.optional-languages=0 -mosip.min-languages.count=2 -mosip.max-languages.count=2 -------------------------------------------- ## List of keys which UI will consume ui.config.params=preregistartion.contact.email,preregistartion.contact.phone,preregistration.availability.sync,preregistration.availability.noOfDays,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,mosip.preregistration.captcha.sitekey,mosip.adult.age,mosip.idschema.version,mosip.preregistration.captcha.enable,preregistartion.identity.name,preregistration.ui.version ## This config is used for loading recommended centers based on the value of the config. From e11aeef0670dc3f0ba6ae6fa71e1e9211f0378ec Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 25 Aug 2021 09:49:09 +0530 Subject: [PATCH 0205/1358] Minor update. --- application-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 553cad88789..94daf697ba0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -368,10 +368,10 @@ websub.hub.url=${websub.base.url}/websub/hub websub.publish.url=${websub.base.url}/websub/publish websub.failed.messages.sync.url=${websub.base.url}/websub/sync/failedmessage -mosip.mandatory-languages=eng -mosip.optional-languages=ara,fra +mosip.mandatory-languages=eng,fra +mosip.optional-languages= mosip.min-languages.count=2 -mosip.max-languages.count=3 +mosip.max-languages.count=2 # These are default languages used for sending notifications mosip.default.template-languages=eng,ara From 709766e744c1384f04ed145f6235b558f213ce22 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 26 Aug 2021 11:14:07 +0530 Subject: [PATCH 0206/1358] Activemq properties updated. --- registration-processor-default.properties | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f328ccb96f6..1920c1aee44 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -6,6 +6,8 @@ # mosip.mosip.regproc.client.secret # mosip.api.internal.host # keycloak.host +# activemq.host +# activemq.core.port mosip.api.internal.url=https://${mosip.api.internal.host} registration.processor.zone=default @@ -248,9 +250,9 @@ registration.processor.uin.deactivated.subject=Uin is deactivated registration.processor.updated.subject=UIN Details Updated ## Queue -registration.processor.queue.username=admin -registration.processor.queue.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 -registration.processor.queue.url=tcp://${mosip.api.internal.url}:61616 +registration.processor.queue.username=artemis +registration.processor.queue.password=${activemq.password} +registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ registration.processor.queue.address = print-service registration.processor.queue.printpostaladdress = postal-service From 88af612ced9a22d00a7824334cbd8838f1d049bf Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 26 Aug 2021 13:57:50 +0530 Subject: [PATCH 0207/1358] Email properties updated. --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 5ad9ce99dbe..336b1ea7084 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -39,9 +39,9 @@ mosip.kernel.sms.sender=sender mosip.kernel.sms.unicode=unicode ## Email notification -mosip.kernel.notification.email.from=mosipuser@gmail.com -spring.mail.host=smtphost -spring.mail.username=username +mosip.kernel.notification.email.from=info@mosip.io +spring.mail.host=smtp.sendgrid.net +spring.mail.username=apikey spring.mail.password=password spring.mail.port=587 spring.mail.properties.mail.transport.protocol=smtp From 1d2753a95f7d111f76634b62ea838275913be575 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 26 Aug 2021 15:26:38 +0530 Subject: [PATCH 0208/1358] SMTP properties updated. --- kernel-default.properties | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 336b1ea7084..7b33a272cd0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -10,7 +10,9 @@ # mosip.mosip.reg.client.secret # preregistration.mosip.prereg.client.secret # softhsm.kernel.pin - +# email.smtp.host +# email.smtp.username +# email.smtp.secret ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager @@ -40,9 +42,9 @@ mosip.kernel.sms.unicode=unicode ## Email notification mosip.kernel.notification.email.from=info@mosip.io -spring.mail.host=smtp.sendgrid.net -spring.mail.username=apikey -spring.mail.password=password +spring.mail.host=${email.smtp.host} +spring.mail.username=${email.smtp.username} +spring.mail.password=${email.smtp.secret} spring.mail.port=587 spring.mail.properties.mail.transport.protocol=smtp spring.mail.properties.mail.smtp.starttls.required=true From 0a03a5e42d052921eabcb661ad55666333e79e51 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 26 Aug 2021 15:43:48 +0530 Subject: [PATCH 0209/1358] Captcha enabled. --- pre-registration-default.properties | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index f828bfe12f9..357bfe9c5bb 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -406,14 +406,12 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha +mosip.preregistration.captcha.enable=true mosip.preregistration.captcha.id.validate = mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify mosip.preregistration.captcha.secretkey=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI -# Enable or Disable Captch - true to enable & false to disable -mosip.preregistration.captcha.enable=false - ## Security mosip.security.csrf-enable:false mosip.security.cors-enable:false From cdd6097c73e59a292db62bad33098e1dbde4b3d0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 26 Aug 2021 19:43:02 +0530 Subject: [PATCH 0210/1358] Captcha disabled. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 357bfe9c5bb..f4d1561b876 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -406,7 +406,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=true +mosip.preregistration.captcha.enable=false mosip.preregistration.captcha.id.validate = mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify From 4468b9360c79388f9960c844a53df12dc4ef0e95 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 05:13:01 +0530 Subject: [PATCH 0211/1358] Prereg prop updated. --- pre-registration-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index f4d1561b876..18da3396aa8 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -407,10 +407,10 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha mosip.preregistration.captcha.enable=false -mosip.preregistration.captcha.id.validate = mosip.pre-registration.captcha.id.validate -mosip.preregistration.captcha.sitekey=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX +mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate +mosip.preregistration.captcha.sitekey= mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify -mosip.preregistration.captcha.secretkey=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI +mosip.preregistration.captcha.secretkey= ## Security mosip.security.csrf-enable:false From 2519357523100868ae8459dc6b4a412dd1e0cbb6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 10:43:13 +0530 Subject: [PATCH 0212/1358] Captcha variables added. --- pre-registration-default.properties | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 18da3396aa8..4e387c29cfd 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -4,6 +4,8 @@ # db.dbuser.password # preregistration.mosip.prereg.client.secret # keycloak.host +# prereg.captcha.site.key +# prereg.captcha.secret.key ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace @@ -408,9 +410,10 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Configuration for google re-captcha mosip.preregistration.captcha.enable=false mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate -mosip.preregistration.captcha.sitekey= +mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} +mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} +mosip.preregistration.captcha.resourse.url=http://prereg-captcha.prereg/preregistration/v1/captcha/validatecaptcha mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify -mosip.preregistration.captcha.secretkey= ## Security mosip.security.csrf-enable:false From 6c047e14db0c33a9ee31ceba94e7884cfab70823 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 10:52:04 +0530 Subject: [PATCH 0213/1358] Captcha enabled. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 4e387c29cfd..12a00e8b52e 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -408,7 +408,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=false +mosip.preregistration.captcha.enable=true mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} From 8c8a0e3b6452ec261312576748720a47fb6d42d3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 11:47:40 +0530 Subject: [PATCH 0214/1358] Notification type set to SMS for testing. --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 94daf697ba0..b28c0c36d51 100644 --- a/application-default.properties +++ b/application-default.properties @@ -242,7 +242,8 @@ mosip.login.mode= email,mobile ## Notification mosip.registration.processor.notification.types=EMAIL -mosip.notificationtype=SMS|EMAIL +#mosip.notificationtype=SMS|EMAIL +mosip.notificationtype=SMS mosip.kernel.sms.proxy-sms=true mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true From 3c6b4424d23085e6751ac7f8eb639f38f3eec89b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 11:50:36 +0530 Subject: [PATCH 0215/1358] Previous change reverted. --- application-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index b28c0c36d51..94daf697ba0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -242,8 +242,7 @@ mosip.login.mode= email,mobile ## Notification mosip.registration.processor.notification.types=EMAIL -#mosip.notificationtype=SMS|EMAIL -mosip.notificationtype=SMS +mosip.notificationtype=SMS|EMAIL mosip.kernel.sms.proxy-sms=true mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true From 0f8523a9223fe2ba39a99ab3517ce1086678e9c8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 11:52:05 +0530 Subject: [PATCH 0216/1358] Prereg templates corrected --- pre-registration-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 12a00e8b52e..4704c1f01b1 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -188,8 +188,9 @@ mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=otp-sms-template -pre.reg.login.otp.mail.subject.template=pre-reg-login-email-subject-template -pre.reg.login.otp.mail.content.template=pre-reg-login-email-content-template +pre.reg.login.otp.mail.subject.template=otp-email-subject-template +pre.reg.login.otp.mail.content.template=otp-email-content-template + mosip.pre.reg.clientId=mosip.pre.reg.clientId id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} From 2b91c36ebebeb74b71efd048587f483b23915fbb Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 12:16:27 +0530 Subject: [PATCH 0217/1358] Securzone added back. --- ...ion-processor-camel-routes-new-default.xml | 44 ++++++++++++++++--- 1 file changed, 38 insertions(+), 6 deletions(-) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 529adba3de1..c24fba42682 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -1,8 +1,41 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- packet-receiver to packet uploader --> - <route id="packet-receiver->packet-uploader new route"> - <from uri="eventbus:packet-receiver-new-bus-out" /> - <log message="packet-receiver-->packet-uploader new route ${bodyAs(String)}" /> + <route id="packet-receiver-->securezone-notification new route"> + <from uri="eventbus://packet-receiver-new-bus-out" /> + <log message="packet-receiver-->securezone-notification new ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> + <route id="securezone-notification-->packet-uploader new route"> + <from uri="eventbus://securezone-notification-new-bus-out" /> + <log message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -20,8 +53,7 @@ <to uri="eventbus://packet-uploader-bus-in" /> </otherwise> </choice> - </route> - + </route> <!-- packet-uploader to packet-validator Route --> <route id="packet-uploader-->packet-validator new route"> <from uri="eventbus:packet-uploader-new-bus-out" /> From b0a542a54acff3b061d787f2f7c32c39e6156723 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 27 Aug 2021 17:58:15 +0530 Subject: [PATCH 0218/1358] Url corrected. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 4704c1f01b1..641d722be38 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -192,7 +192,7 @@ pre.reg.login.otp.mail.subject.template=otp-email-subject-template pre.reg.login.otp.mail.content.template=otp-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId -id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} +id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/{langcode}/{templatetypecode} ## Masterdata service ## Base url is only used for masterdata. We give the in-cluster url here From ff441c1a09cdc0402fccf021a69781fcf1656bc7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 30 Aug 2021 11:48:54 +0530 Subject: [PATCH 0219/1358] IDA prop added. --- id-authentication-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d3975fdc990..4cc9753a705 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -260,6 +260,7 @@ ida-topic-pmp-partner-updated=PARTNER_UPDATED ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED ida-topic-pmp-policy-updated=POLICY_UPDATED ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED +ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ## IDA cache ## IDA cache Time to live in days - To clear cache scheduled based on the days provided. From 415e5469801fdcb8819f109ef706388f081f15da Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 30 Aug 2021 12:00:12 +0530 Subject: [PATCH 0220/1358] IDA prop updated. --- id-authentication-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4cc9753a705..f5cc759603a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -12,6 +12,7 @@ # mosip.kernel.tokenid.partnercode.salt # softhsm.ida.pin # mosip.api.internal.host +# mosip.api.public.host # ida.websub.masterdata.templates.callback.secret # ida.websub.masterdata.titles.callback.secret @@ -537,6 +538,6 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosipbox.public.url} +mosip.ida.allowed.domain.uris=https://${mosip.api.public.host} # Biometrics attribute name present in data-share policy mosip.ida.credential.biometric.attribute.name=individualBiometrics From 3b15683503f3e962a687caf99cec96ac98f82f70 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 11:21:36 +0530 Subject: [PATCH 0221/1358] .mvel file updated. --- applicanttype.mvel | 210 +++++++++++++++------------------ application-default.properties | 1 + 2 files changed, 94 insertions(+), 117 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 14b24a9702c..b8d74497466 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -1,120 +1,96 @@ def getApplicantType(map,a) { - import java.time.LocalDate; - import java.time.LocalDateTime; - import java.time.format.DateTimeFormatter; - import java.time.Period; - - String itc = null; - String dob = null; - String genderType = null; - boolean isBioExPresent = false; - String FOREIGNER = "FR"; - String NON_FOREIGNER = "NFR"; - String MALE = "MLE"; - String FEMALE = "FLE"; - String CHILD = "CHL"; - String ADULT = "ADL"; - String ATTR_INDIVIDUAL_TYPE = "individualTypeCode"; - String ATTR_DATE_OF_BIRTH = "dateofbirth"; - String ATTR_GENDER_TYPE = "genderCode"; - String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; - String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; - - itc= (String) map[ATTR_INDIVIDUAL_TYPE]; - - dob= (String) map[ATTR_DATE_OF_BIRTH]; - - if(dob == empty || dob == null ){ - return "KER-MSD-147"; - } - - int age = -1; - LocalDate currentDate = LocalDate.now(); - - LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); - - if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { - age = Period.between(birthDate, currentDate).getYears(); - } - else { - return age; - } - - - genderType=(String) map[ATTR_GENDER_TYPE]; - isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; - - if (((itc == empty || itc == null) && (dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) - return "KER-MSD-147"; - if(age >= agelimit) - ageCode=ADULT; - else if( age >= 0 && age < agelimit) - ageCode=CHILD; - - if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - - return "A001"; - } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - - return "A002"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - - return "A003"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - - return "A004"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - - return "A005"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - - return "A006"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - - return "A007"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - - return "A008"; - - } else if (itc == FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { - - return "A009"; - - } else if (itc == FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { - - return "A010"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == CHILD && isBioExPresent ) { - - return "A011"; - - } else if (itc == NON_FOREIGNER && genderType == MALE && ageCode == ADULT && isBioExPresent ) { - - return "A012"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - - return "A013"; - - } else if (itc == FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - - return "A014"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - - return "A015"; - - } else if (itc == NON_FOREIGNER && genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - - return "A016"; - - } - return null; + import java.time.LocalDate; + import java.time.LocalDateTime; + import java.time.format.DateTimeFormatter; + import java.time.Period; + import java.util.List; + //String itc = null; + String dob = null; + String genderType = null; + boolean isBioExPresent = false; + String NonResident = "FR"; + String Resident = "NFR"; + String MALE = "MLE"; + String FEMALE = "FLE"; + String Others = "OTH"; + String CHILD = "CHL"; + String ADULT = "ADL"; + // String ATTR_INDIVIDUAL_TYPE = "residenceStatus"; + String ATTR_DATE_OF_BIRTH = "dateOfBirth"; + String ATTR_GENDER_TYPE = "gender"; + String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; + String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; + //itc= (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; + dob= (String) map[ATTR_DATE_OF_BIRTH]; + if(dob == empty || dob == null ){ + return "KER-MSD-147"; + } + int age = -1; + LocalDate currentDate = LocalDate.now(); + LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); + if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { + age = Period.between(birthDate, currentDate).getYears(); + } + else{ + return age; + } + genderType= (String) ((List) map[ATTR_GENDER_TYPE]).get(0).value; + isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; + if (((dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) + return "KER-MSD-147"; + if(age >= agelimit) + ageCode=ADULT; + else if( age >= 0 && age < agelimit) + ageCode=CHILD; + if ( genderType == MALE && ageCode == CHILD && !isBioExPresent ) { + return "001"; + } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { + return "002"; + } else if (genderType == MALE && ageCode == CHILD && !isBioExPresent ) { + return "003"; + } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { + return "004"; + } else if ( genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { + return "005"; + } else if ( genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { + return "006"; + } else if (genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { + return "007"; + } else if (genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { + return "008"; + } else if ( genderType == Others && ageCode == CHILD && !isBioExPresent ) { + return "005"; + } else if ( genderType == Others && ageCode == ADULT && !isBioExPresent ) { + return "006"; + } else if (genderType == Others && ageCode == CHILD && !isBioExPresent ) { + return "007"; + } else if (genderType == Others && ageCode == ADULT && !isBioExPresent ) { + return "008"; + } else if ( genderType == MALE && ageCode == CHILD && isBioExPresent ) { + return "009"; + } else if ( genderType == MALE && ageCode == ADULT && isBioExPresent ) { + return "010"; + } else if (genderType == MALE && ageCode == CHILD && isBioExPresent ) { + return "011"; + } else if (genderType == MALE && ageCode == ADULT && isBioExPresent ) { + return "012"; + } else if ( genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { + return "013"; + } else if ( genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { + return "014"; + } else if (genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { + return "015"; + } else if (genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { + return "016"; + } else if ( genderType == Others && ageCode == CHILD && isBioExPresent ) { + return "013"; + } else if ( genderType == Others && ageCode == ADULT && isBioExPresent ) { + return "014"; + } else if (genderType == Others && ageCode == CHILD && isBioExPresent ) { + return "015"; + } else if (genderType == Others && ageCode == ADULT && isBioExPresent ) { + return "016"; + } + return null; }; diff --git a/application-default.properties b/application-default.properties index 94daf697ba0..320392524c7 100644 --- a/application-default.properties +++ b/application-default.properties @@ -369,6 +369,7 @@ websub.publish.url=${websub.base.url}/websub/publish websub.failed.messages.sync.url=${websub.base.url}/websub/sync/failedmessage mosip.mandatory-languages=eng,fra +## Leave blank if no optional langauges mosip.optional-languages= mosip.min-languages.count=2 mosip.max-languages.count=2 From 565a1d16d2bebe560dd28995f93e0f8d6aa7052a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 12:10:12 +0530 Subject: [PATCH 0222/1358] Unused file removed. --- pre-registration-demographic.json | 364 ------------------------------ 1 file changed, 364 deletions(-) delete mode 100644 pre-registration-demographic.json diff --git a/pre-registration-demographic.json b/pre-registration-demographic.json deleted file mode 100644 index 313f73f77ac..00000000000 --- a/pre-registration-demographic.json +++ /dev/null @@ -1,364 +0,0 @@ -{ - "identity":[ - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id":"fullName", - "description":"Enter Full Name", - "labelName":{ - "eng":"Full Name", - "fra":"Nom complet" - }, - "controlType":"textbox", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"dateOfBirth", - "description":"Enter DOB", - "labelName":{ - "eng":"Date Of Birth", - "fra":"Date de naissance" - }, - "controlType":"date", - "inputRequired":true, - "fieldType":"default", - "type":"string", - "validators":[ - ], - "required":true - }, - { - "id":"gender", - "description":"Enter Gender", - "labelName":{ - "eng":"Gender", - "fra":"Le genre" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"dynamic", - "type":"simpleType", - "validators":[ - - ], - "required":true - }, - { - "id":"residenceStatus", - "description":"Residence status", - "labelName":{ - "eng":"Residence Status", - "fra":"Statut de résidence" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"dynamic", - "type":"simpleType", - "validators":[ - - ], - "required":true - }, - { - "id":"addressLine1", - "description":"addressLine1", - "labelName":{ - "eng":"Address Line1", - "fra":"Adresse 1" - }, - "controlType":"textbox", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"addressLine2", - "description":"addressLine2", - "labelName":{ - "eng":"Address Line2", - "fra":"Adresse 2" - }, - "controlType":"textbox", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":false - }, - { - "id":"addressLine3", - "description":"addressLine3", - "labelName":{ - "eng":"Address Line3", - "fra":"Adresse 3" - }, - "controlType":"textbox", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":false - }, - { - "id":"region", - "description":"region", - "labelName":{ - "eng":"Region", - "fra":"Région" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"province", - "description":"province", - "labelName":{ - "eng":"Province", - "fra":"Province" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"city", - "description":"city", - "labelName":{ - "eng":"City", - "fra":"Ville" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - { - "type":"regex", - "validator":"^(?=.{0,50}$).*", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"zone", - "description":"zone", - "labelName":{ - "eng":"Zone", - "fra":"Zone" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"default", - "type":"simpleType", - "validators":[ - - ], - "required":true - }, - { - "id":"postalCode", - "description":"postalCode", - "labelName":{ - "eng":"Postal Code", - "fra":"code postal" - }, - "controlType":"dropdown", - "inputRequired":true, - "fieldType":"default", - "type":"string", - "validators":[ - { - "type":"regex", - "validator":"^[(?i)A-Z0-9]{5}$|^NA$", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"phone", - "description":"phone", - "labelName":{ - "eng":"Phone", - "fra":"Téléphone" - }, - "controlType":"textbox", - "inputRequired":true, - "fieldType":"default", - "type":"string", - "validators":[ - { - "type":"regex", - "validator":"^([6-9]{1})([0-9]{9})$", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"email", - "description":"email", - "labelName":{ - "eng":"Email", - "fra":"Email" - }, - "controlType":"textbox", - "inputRequired":true, - "fieldType":"default", - "type":"string", - "validators":[ - { - "type":"regex", - "validator":"^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments":[ - - ] - } - ], - "required":true - }, - { - "id":"proofOfAddress", - "description":"proofOfAddress", - "labelName":[{"value":"Address Proof","language":"eng"}], - "controlType":"fileupload", - "inputRequired":true, - "validators":[ - - ], - "required":false - }, - { - "id":"proofOfIdentity", - "description":"proofOfIdentity", - "labelName": [{"value":"Identity Proof","language":"eng"}], - "controlType":"fileupload", - "inputRequired":true, - "validators":[ - - ], - "required":true - }, - { - "id":"proofOfRelationship", - "description":"proofOfRelationship", - "labelName":[{"value":"Relationship Proof","language":"eng"}], - "controlType":"fileupload", - "inputRequired":true, - "validators":[ - - ], - "required":true - }, - { - "id":"proofOfDateOfBirth", - "description":"proofOfDateOfBirth", - "labelName":[{"value":"DOB Proof","language":"eng"}], - "controlType":"fileupload", - "inputRequired":true, - "validators":[ - - ], - "required":true - }, - { - "id":"proofOfException", - "description":"proofOfException", - "labelName": [{"value":"Exception Proof","language":"eng"}], - "controlType":"fileupload", - "inputRequired":true, - "validators":[ - - ], - "required":true - }, - { - "id":"proofOfException-1", - "description":"proofOfException", - "labelName":[{"value":"Exception Proof 2","language":"eng"}], - "controlType":"fileupload", - "inputRequired":true, - "validators":[ - - ], - "required":true - } - ], - "locationHierarchy": ["region", "province","city","zone","postalCode"] -} From 5052a0e6b6508338e3afa09d3c9215e66706e4ab Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 12:45:09 +0530 Subject: [PATCH 0223/1358] [MOSIP-16645] mvel file taken from develop branch. --- applicanttype.mvel | 204 ++++++++++++++++++++++++--------------------- 1 file changed, 110 insertions(+), 94 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index b8d74497466..7d50e6fe61a 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -1,96 +1,112 @@ -def getApplicantType(map,a) { - import java.time.LocalDate; - import java.time.LocalDateTime; - import java.time.format.DateTimeFormatter; - import java.time.Period; - import java.util.List; - //String itc = null; - String dob = null; - String genderType = null; - boolean isBioExPresent = false; - String NonResident = "FR"; - String Resident = "NFR"; - String MALE = "MLE"; - String FEMALE = "FLE"; - String Others = "OTH"; - String CHILD = "CHL"; - String ADULT = "ADL"; - // String ATTR_INDIVIDUAL_TYPE = "residenceStatus"; - String ATTR_DATE_OF_BIRTH = "dateOfBirth"; - String ATTR_GENDER_TYPE = "gender"; - String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; - String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; - //itc= (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; +def getApplicantType(map, agelimit) { + import java.time.LocalDate; + import java.time.LocalDateTime; + import java.time.format.DateTimeFormatter; + import java.time.Period; + import java.util.List; + String itc = null; + String dob = null; + String genderType = null; + String isboolean=null; + boolean isBioExPresent = false; + String NonResident = "FR"; + String Resident = "NFR"; + String MALE = "MLE"; + String FEMALE = "FLE"; + String Others = "OTH"; + String CHILD = "CHL"; + String ADULT = "ADL"; + String ATTR_INDIVIDUAL_TYPE = "residenceStatus"; + String ATTR_DATE_OF_BIRTH = "dateOfBirth"; + String ATTR_GENDER_TYPE = "gender"; + String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; + String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; - dob= (String) map[ATTR_DATE_OF_BIRTH]; - if(dob == empty || dob == null ){ - return "KER-MSD-147"; - } - int age = -1; - LocalDate currentDate = LocalDate.now(); - LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); - if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { - age = Period.between(birthDate, currentDate).getYears(); - } - else{ - return age; - } - genderType= (String) ((List) map[ATTR_GENDER_TYPE]).get(0).value; - isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; - if (((dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) - return "KER-MSD-147"; - if(age >= agelimit) - ageCode=ADULT; - else if( age >= 0 && age < agelimit) - ageCode=CHILD; - if ( genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "001"; - } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "002"; - } else if (genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "003"; - } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "004"; - } else if ( genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "005"; - } else if ( genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "006"; - } else if (genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "007"; - } else if (genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "008"; - } else if ( genderType == Others && ageCode == CHILD && !isBioExPresent ) { - return "005"; - } else if ( genderType == Others && ageCode == ADULT && !isBioExPresent ) { - return "006"; - } else if (genderType == Others && ageCode == CHILD && !isBioExPresent ) { - return "007"; - } else if (genderType == Others && ageCode == ADULT && !isBioExPresent ) { - return "008"; - } else if ( genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "009"; - } else if ( genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "010"; - } else if (genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "011"; - } else if (genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "012"; - } else if ( genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "013"; - } else if ( genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "014"; - } else if (genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "015"; - } else if (genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "016"; - } else if ( genderType == Others && ageCode == CHILD && isBioExPresent ) { - return "013"; - } else if ( genderType == Others && ageCode == ADULT && isBioExPresent ) { - return "014"; - } else if (genderType == Others && ageCode == CHILD && isBioExPresent ) { - return "015"; - } else if (genderType == Others && ageCode == ADULT && isBioExPresent ) { - return "016"; - } - return null; + itc = (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; + + genderType = (String)((List) map[ATTR_GENDER_TYPE]).get(0).value; + + isboolean = map[ATTR_BIOMETRIC_EXCEPTION_TYPE].toString(); + + dob=map[ATTR_DATE_OF_BIRTH].toString(); + + if (((itc.isEmpty() || itc == null) || (dob.isEmpty() || dob == null) || (genderType.isEmpty() || genderType == null) || (map[ATTR_BIOMETRIC_EXCEPTION_TYPE].toString().isEmpty() || map[ATTR_BIOMETRIC_EXCEPTION_TYPE] == null))) { + return "KER-MSD-147"; + } + + if (!((isboolean.equalsIgnoreCase("true") || isboolean.equalsIgnoreCase("false")) && (genderType.equals(FEMALE) || genderType.equals(MALE) || genderType.equals(Others)) && (itc.equals(Resident) || itc.equals(NonResident)))) { + return "KER-MSD-147"; + } + + isBioExPresent=Boolean.parseBoolean(isboolean); + + dob = (String) map[ATTR_DATE_OF_BIRTH]; + + int age = -1; + LocalDate currentDate = LocalDate.now(); + + LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); + if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { + age = Period.between(birthDate, currentDate).getYears(); + } else { + return "KER-MSD-151"; + } + + Integer ageItd = Integer.toString(agelimit); + + if (age >= ageItd) + ageCode = ADULT; + else if (age >= 0 && age < ageItd) + ageCode = CHILD; + + if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { + return "001"; + } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { + return "002"; + } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { + return "003"; + } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { + return "004"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { + return "005"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { + return "006"; + } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { + return "007"; + } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { + return "008"; + } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { + return "005"; + } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { + return "006"; + } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { + return "007"; + } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { + return "008"; + } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { + return "009"; + } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { + return "010"; + } else if (itc == Resident && genderType == MALE && ageCode == CHILD && isBioExPresent) { + return "011"; + } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { + return "012"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { + return "013"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { + return "015"; + } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { + return "016"; + } else if (itc == NonResident && genderType == Others && ageCode == CHILD && isBioExPresent) { + return "013"; + } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == Others && ageCode == CHILD && isBioExPresent) { + return "015"; + } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { + return "016"; + } + return null; }; From 06854729cbaba55e1b89f5d269f2acd3904e0bbc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 13:01:27 +0530 Subject: [PATCH 0224/1358] mvel file updated. --- applicanttype.mvel | 140 +++++++++++++++++++++++++++------------------ 1 file changed, 83 insertions(+), 57 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 7d50e6fe61a..1a901aaf151 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -1,64 +1,90 @@ -def getApplicantType(map, agelimit) { - import java.time.LocalDate; - import java.time.LocalDateTime; - import java.time.format.DateTimeFormatter; - import java.time.Period; - import java.util.List; - String itc = null; - String dob = null; - String genderType = null; - String isboolean=null; - boolean isBioExPresent = false; - String NonResident = "FR"; - String Resident = "NFR"; - String MALE = "MLE"; - String FEMALE = "FLE"; - String Others = "OTH"; - String CHILD = "CHL"; - String ADULT = "ADL"; - String ATTR_INDIVIDUAL_TYPE = "residenceStatus"; - String ATTR_DATE_OF_BIRTH = "dateOfBirth"; - String ATTR_GENDER_TYPE = "gender"; - String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; - String UTC_DATETIME_PATTERN = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"; +import java.time.LocalDate; +import java.time.LocalDateTime; +import java.time.format.DateTimeFormatter; +import java.time.Period; +import java.util.List; +import java.time.ZoneId; +import java.time.temporal.ValueRange; - itc = (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; +String CHILD = "CHL"; +String ADULT = "ADL"; +String MALE = 'MLE'; +String FEMALE = 'FLE'; +String NonResident = "FR"; +String Resident = "NFR"; +String Others = "OTH"; +String DATE_PATTERN = "yyyy/MM/dd"; - genderType = (String)((List) map[ATTR_GENDER_TYPE]).get(0).value; - - isboolean = map[ATTR_BIOMETRIC_EXCEPTION_TYPE].toString(); - - dob=map[ATTR_DATE_OF_BIRTH].toString(); +def getResidenceStatus(identity) { + if(identity.containsKey('residenceStatusCode')) { + return identity.getOrDefault('residenceStatusCode', null); + } - if (((itc.isEmpty() || itc == null) || (dob.isEmpty() || dob == null) || (genderType.isEmpty() || genderType == null) || (map[ATTR_BIOMETRIC_EXCEPTION_TYPE].toString().isEmpty() || map[ATTR_BIOMETRIC_EXCEPTION_TYPE] == null))) { - return "KER-MSD-147"; - } - - if (!((isboolean.equalsIgnoreCase("true") || isboolean.equalsIgnoreCase("false")) && (genderType.equals(FEMALE) || genderType.equals(MALE) || genderType.equals(Others)) && (itc.equals(Resident) || itc.equals(NonResident)))) { - return "KER-MSD-147"; - } - - isBioExPresent=Boolean.parseBoolean(isboolean); - - dob = (String) map[ATTR_DATE_OF_BIRTH]; + if(identity.containsKey('residenceStatus')) { + Object val = identity.getOrDefault('residenceStatus', null); + return val == null ? null : + (val instanceof String ? ; (String)val : (String) ((List)val).get(0).value); + } - int age = -1; - LocalDate currentDate = LocalDate.now(); + return null; +} - LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); - if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { - age = Period.between(birthDate, currentDate).getYears(); - } else { - return "KER-MSD-151"; - } +def getGenderType(identity) { + if(identity.containsKey('genderCode')) { + return identity.getOrDefault('genderCode', null); + } + + if(identity.containsKey('gender')) { + Object val = identity.getOrDefault('gender', null); + return val == null ? null : + (val instanceof String ? ; (String)val : (String) ((List)val).get(0).value); + } + + return null; +} + +def getAgeCode(identity) { + if(ageGroups == null || !identity.containsKey('dateOfBirth')) + return null; + + String dob = identity.get('dateOfBirth'); + LocalDate date = LocalDate.parse(dob, DateTimeFormatter.ofPattern(DATE_PATTERN)); + LocalDate currentDate = LocalDate.now(ZoneId.of("UTC")); + int ageInYears = -1; + if (!date.isAfter(currentDate)) { + ageInYears = Period.between(date, currentDate).getYears(); + } else { + return "KER-MSD-151"; + } + String ageGroup = null; + for(String groupName : ageGroups.keySet()) { + String[] range = ((String)ageGroups.get(groupName)).split('-'); + if(ValueRange.of(Long.valueOf(range[0]), Long.valueOf(range[1])).isValidIntValue(ageInYears)) { + ageGroup = groupName; + } + } + + return ageGroup == null ? null : (ageGroup == 'INFANT' ? CHILD : ADULT); +} + + +def getBioExceptionFlag(identity) { + return identity.containsKey('isBioException') ? (Boolean) identity.get('isBioException') : false; +} + +def getApplicantType() { + System.out.println("AgeGroups:" + ageGroups); + String itc = getResidenceStatus(identity); + System.out.println("Resident Status:" + itc); + String genderType = getGenderType(identity); + System.out.println("Gender Type:" + genderType); + String ageCode = getAgeCode(identity); + System.out.println("AgeCode:" + ageCode); + boolean isBioExPresent = getBioExceptionFlag(identity); + + if(itc == null || genderType == null || ageCode == null) + return "KER-MSD-147"; - Integer ageItd = Integer.toString(agelimit); - - if (age >= ageItd) - ageCode = ADULT; - else if (age >= 0 && age < ageItd) - ageCode = CHILD; - if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { return "001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { @@ -108,5 +134,5 @@ def getApplicantType(map, agelimit) { } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { return "016"; } - return null; -}; + return "KER-MSD-147"; +} From 39b9ca1e7239e0ad22be5f15d0b8ae875d053f76 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 15:08:08 +0530 Subject: [PATCH 0225/1358] Datetime pattern check correctec in mvel. --- applicanttype.mvel | 232 +++++++++++++++++++-------------------------- 1 file changed, 95 insertions(+), 137 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 1a901aaf151..83c09c2bc7e 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -1,138 +1,96 @@ -import java.time.LocalDate; -import java.time.LocalDateTime; -import java.time.format.DateTimeFormatter; -import java.time.Period; -import java.util.List; -import java.time.ZoneId; -import java.time.temporal.ValueRange; +def getApplicantType(map,a) { + import java.time.LocalDate; + import java.time.LocalDateTime; + import java.time.format.DateTimeFormatter; + import java.time.Period; + import java.util.List; + //String itc = null; + String dob = null; + String genderType = null; + boolean isBioExPresent = false; + String NonResident = "FR"; + String Resident = "NFR"; + String MALE = "MLE"; + String FEMALE = "FLE"; + String Others = "OTH"; + String CHILD = "CHL"; + String ADULT = "ADL"; + // String ATTR_INDIVIDUAL_TYPE = "residenceStatus"; + String ATTR_DATE_OF_BIRTH = "dateOfBirth"; + String ATTR_GENDER_TYPE = "gender"; + String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; + String UTC_DATETIME_PATTERN = ""yyyy/MM/dd"; + //itc= (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; -String CHILD = "CHL"; -String ADULT = "ADL"; -String MALE = 'MLE'; -String FEMALE = 'FLE'; -String NonResident = "FR"; -String Resident = "NFR"; -String Others = "OTH"; -String DATE_PATTERN = "yyyy/MM/dd"; - -def getResidenceStatus(identity) { - if(identity.containsKey('residenceStatusCode')) { - return identity.getOrDefault('residenceStatusCode', null); - } - - if(identity.containsKey('residenceStatus')) { - Object val = identity.getOrDefault('residenceStatus', null); - return val == null ? null : - (val instanceof String ? ; (String)val : (String) ((List)val).get(0).value); - } - - return null; -} - -def getGenderType(identity) { - if(identity.containsKey('genderCode')) { - return identity.getOrDefault('genderCode', null); - } - - if(identity.containsKey('gender')) { - Object val = identity.getOrDefault('gender', null); - return val == null ? null : - (val instanceof String ? ; (String)val : (String) ((List)val).get(0).value); - } - - return null; -} - -def getAgeCode(identity) { - if(ageGroups == null || !identity.containsKey('dateOfBirth')) - return null; - - String dob = identity.get('dateOfBirth'); - LocalDate date = LocalDate.parse(dob, DateTimeFormatter.ofPattern(DATE_PATTERN)); - LocalDate currentDate = LocalDate.now(ZoneId.of("UTC")); - int ageInYears = -1; - if (!date.isAfter(currentDate)) { - ageInYears = Period.between(date, currentDate).getYears(); - } else { - return "KER-MSD-151"; - } - String ageGroup = null; - for(String groupName : ageGroups.keySet()) { - String[] range = ((String)ageGroups.get(groupName)).split('-'); - if(ValueRange.of(Long.valueOf(range[0]), Long.valueOf(range[1])).isValidIntValue(ageInYears)) { - ageGroup = groupName; - } - } - - return ageGroup == null ? null : (ageGroup == 'INFANT' ? CHILD : ADULT); -} - - -def getBioExceptionFlag(identity) { - return identity.containsKey('isBioException') ? (Boolean) identity.get('isBioException') : false; -} - -def getApplicantType() { - System.out.println("AgeGroups:" + ageGroups); - String itc = getResidenceStatus(identity); - System.out.println("Resident Status:" + itc); - String genderType = getGenderType(identity); - System.out.println("Gender Type:" + genderType); - String ageCode = getAgeCode(identity); - System.out.println("AgeCode:" + ageCode); - boolean isBioExPresent = getBioExceptionFlag(identity); - - if(itc == null || genderType == null || ageCode == null) - return "KER-MSD-147"; - - if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "001"; - } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "002"; - } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "003"; - } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "004"; - } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "005"; - } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "006"; - } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "007"; - } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "008"; - } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "005"; - } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "006"; - } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "007"; - } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "008"; - } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "009"; - } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "010"; - } else if (itc == Resident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "011"; - } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "012"; - } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "013"; - } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "014"; - } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "015"; - } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "016"; - } else if (itc == NonResident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "013"; - } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "014"; - } else if (itc == Resident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "015"; - } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "016"; - } - return "KER-MSD-147"; -} + dob= (String) map[ATTR_DATE_OF_BIRTH]; + if(dob == empty || dob == null ){ + return "KER-MSD-147"; + } + int age = -1; + LocalDate currentDate = LocalDate.now(); + LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); + if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { + age = Period.between(birthDate, currentDate).getYears(); + } + else{ + return age; + } + genderType= (String) ((List) map[ATTR_GENDER_TYPE]).get(0).value; + isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; + if (((dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) + return "KER-MSD-147"; + if(age >= agelimit) + ageCode=ADULT; + else if( age >= 0 && age < agelimit) + ageCode=CHILD; + if ( genderType == MALE && ageCode == CHILD && !isBioExPresent ) { + return "001"; + } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { + return "002"; + } else if (genderType == MALE && ageCode == CHILD && !isBioExPresent ) { + return "003"; + } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { + return "004"; + } else if ( genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { + return "005"; + } else if ( genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { + return "006"; + } else if (genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { + return "007"; + } else if (genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { + return "008"; + } else if ( genderType == Others && ageCode == CHILD && !isBioExPresent ) { + return "005"; + } else if ( genderType == Others && ageCode == ADULT && !isBioExPresent ) { + return "006"; + } else if (genderType == Others && ageCode == CHILD && !isBioExPresent ) { + return "007"; + } else if (genderType == Others && ageCode == ADULT && !isBioExPresent ) { + return "008"; + } else if ( genderType == MALE && ageCode == CHILD && isBioExPresent ) { + return "009"; + } else if ( genderType == MALE && ageCode == ADULT && isBioExPresent ) { + return "010"; + } else if (genderType == MALE && ageCode == CHILD && isBioExPresent ) { + return "011"; + } else if (genderType == MALE && ageCode == ADULT && isBioExPresent ) { + return "012"; + } else if ( genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { + return "013"; + } else if ( genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { + return "014"; + } else if (genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { + return "015"; + } else if (genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { + return "016"; + } else if ( genderType == Others && ageCode == CHILD && isBioExPresent ) { + return "013"; + } else if ( genderType == Others && ageCode == ADULT && isBioExPresent ) { + return "014"; + } else if (genderType == Others && ageCode == CHILD && isBioExPresent ) { + return "015"; + } else if (genderType == Others && ageCode == ADULT && isBioExPresent ) { + return "016"; + } + return null; +}; From fbe0dd8db74e717e81d015c01e74286c481184ef Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 15:11:22 +0530 Subject: [PATCH 0226/1358] mvel corrected. --- applicanttype.mvel | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 83c09c2bc7e..de620ce183b 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -19,7 +19,7 @@ def getApplicantType(map,a) { String ATTR_DATE_OF_BIRTH = "dateOfBirth"; String ATTR_GENDER_TYPE = "gender"; String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; - String UTC_DATETIME_PATTERN = ""yyyy/MM/dd"; + String UTC_DATETIME_PATTERN = "yyyy/MM/dd"; //itc= (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; dob= (String) map[ATTR_DATE_OF_BIRTH]; From bc931c980f179fe2634d859e117f238b748945ee Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 31 Aug 2021 15:16:40 +0530 Subject: [PATCH 0227/1358] Correction in date compute in mvel. --- applicanttype.mvel | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index de620ce183b..92147fc3c72 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -28,7 +28,7 @@ def getApplicantType(map,a) { } int age = -1; LocalDate currentDate = LocalDate.now(); - LocalDate birthDate = LocalDateTime.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)).toLocalDate(); + LocalDate birthDate = LocalDate.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)); if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { age = Period.between(birthDate, currentDate).getYears(); } From b95b7cc9143d5c9eb8fd096bf7653befb30c59e3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Sep 2021 10:07:36 +0530 Subject: [PATCH 0228/1358] Applicanttype updated. --- applicanttype.mvel | 48 +++++++++++++++++++++++----------------------- 1 file changed, 24 insertions(+), 24 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 92147fc3c72..309c6c25c34 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -44,53 +44,53 @@ def getApplicantType(map,a) { else if( age >= 0 && age < agelimit) ageCode=CHILD; if ( genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "001"; + return "A001"; } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "002"; + return "A002"; } else if (genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "003"; + return "A003"; } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "004"; + return "A004"; } else if ( genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "005"; + return "A005"; } else if ( genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "006"; + return "A006"; } else if (genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "007"; + return "A007"; } else if (genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "008"; + return "A008"; } else if ( genderType == Others && ageCode == CHILD && !isBioExPresent ) { - return "005"; + return "A005"; } else if ( genderType == Others && ageCode == ADULT && !isBioExPresent ) { - return "006"; + return "A006"; } else if (genderType == Others && ageCode == CHILD && !isBioExPresent ) { - return "007"; + return "A007"; } else if (genderType == Others && ageCode == ADULT && !isBioExPresent ) { - return "008"; + return "A008"; } else if ( genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "009"; + return "A009"; } else if ( genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "010"; + return "A010"; } else if (genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "011"; + return "A011"; } else if (genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "012"; + return "A012"; } else if ( genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "013"; + return "A013"; } else if ( genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "014"; + return "A014"; } else if (genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "015"; + return "A015"; } else if (genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "016"; + return "A016"; } else if ( genderType == Others && ageCode == CHILD && isBioExPresent ) { - return "013"; + return "A013"; } else if ( genderType == Others && ageCode == ADULT && isBioExPresent ) { - return "014"; + return "A014"; } else if (genderType == Others && ageCode == CHILD && isBioExPresent ) { - return "015"; + return "A015"; } else if (genderType == Others && ageCode == ADULT && isBioExPresent ) { - return "016"; + return "A016"; } return null; }; From cedeffea4e42e9cca9f70849a888b88aacd98982 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Sep 2021 10:40:17 +0530 Subject: [PATCH 0229/1358] IDA properties added. --- id-authentication-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f5cc759603a..f858fba9618 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -222,6 +222,9 @@ ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servle ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate ## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles + #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 From e29ce3562e03ff123fd2ac2df06f1b2196224818 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Sep 2021 11:28:48 +0530 Subject: [PATCH 0230/1358] [MOSIP-16645] Admin updated. --- admin-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/admin-default.properties b/admin-default.properties index 3478b0cd956..560dc348cba 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -71,6 +71,7 @@ mosip.admin.security.policy.userrole-auth-url=${authmanager.base.url}/role/{appI ## Masterdata cards mosip.admin.masterdata.lang-code=eng,ara,fra +mosip.admin-services.required.roles=GLOBAL_ADMIN #masterdata machine mosip.admin.masterdata.card.machines-eng=Machines From 09e4912c50318abab36398c86c9a496003dea6e5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Sep 2021 17:29:27 +0530 Subject: [PATCH 0231/1358] Hotlist properties updated. --- hotlist-default.properties | 56 ++++++++++++++++---------------------- 1 file changed, 23 insertions(+), 33 deletions(-) diff --git a/hotlist-default.properties b/hotlist-default.properties index 643d36e9c9d..c440e8e486a 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -1,71 +1,61 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password spring.application.name=HOTLIST -#------------------------- Dynamic properties ------------------------------------------------------------# -# Hotlist database url -mosip.hotlist.db.url=postgres - -# Hotlist database port -mosip.hotlist.db.port=80 - -# Hotlist database name +## DB +mosip.hotlist.db.url=postgres-postgresql.postgres +mosip.hotlist.db.port=5432 mosip.hotlist.db.db-name=mosip_hotlist - -# Hotlist database username mosip.hotlist.db.username=hotlistuser - -# Hotlist database password (encrypted) -mosip.hotlist.db.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - -# Hotlist database drive class name +mosip.hotlist.db.password=${db.dbuser.password} mosip.hotlist.db.driverClassName=org.postgresql.Driver - -# Hotlist database dialect mosip.hotlist.db.dialect=org.hibernate.dialect.PostgreSQL92Dialect -#------------------------- Data validation properties -----------------------------------------------------# -mosip.hotlist.allowedIdTypes=UIN,VID,MACHINE_ID,PARTNER_ID,OPERATOR_ID,CENTER_ID,DEVICE,DEVICE_MODEL,FTM_PUBLIC_KEY,DEVICE_PROVIDER +## Data validation +mosip.hotlist.allowedIdTypes=UIN,VID,MACHINE_ID,PARTNER_ID,OPERATOR_ID,CENTER_ID,DEVICE,DEVICE_MODEL,FTM_PUBLIC_KEY -#------------------------- Data Source properties ---------------------------------------------------------# +## Data source mosip.hotlist.datasource.driverClassName=${mosip.hotlist.db.driverClassName} mosip.hotlist.datasource.username=${mosip.hotlist.db.username} mosip.hotlist.datasource.password=${mosip.hotlist.db.password} mosip.hotlist.datasource.url=jdbc:postgresql://${mosip.hotlist.db.url}:${mosip.hotlist.db.port}/${mosip.hotlist.db.db-name} mosip.hotlist.datasource.dialect=${mosip.hotlist.db.dialect} -#------------------------- Web sub properties -------------------------------------------------------------# -#Web sub topic +# Websub mosip.hotlist.topic-to-publish=MOSIP_HOTLIST -#------------------------- Encryption/Decryption properties -----------------------------------------------# -# App Id for Encryption/Decryption +## Encryption/decyrption mosip.hotlist.crypto.app-id=ADMIN_SERVICES - -# Ref Id for Encryption/Decryption mosip.hotlist.crypto.ref-id=hotlist_service -#-------------------------Hotlist cleanup schedule details ------------------------------------------------# +## Cleanup schedule # Initial delay in Hours mosip.hotlist.cleanup-schedule.init-delay=24 - #Fixed delay in which cleanup will be done in Hours mosip.hotlist.cleanup-schedule.fixed-rate=24 -#----------------------------------REST-services ----------------------------------------------------------# -mosip.idrepo.audit.rest.uri=http://kernel-auditmanager-service/v1/auditmanager/audits +## REST services +mosip.idrepo.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST mosip.idrepo.audit.rest.headers.mediaType=application/json -mosip.hotlist.encryptor.rest.uri=http://kernel-keymanager-service/v1/keymanager/encrypt +mosip.hotlist.encryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/encrypt mosip.hotlist.encryptor.rest.httpMethod=POST mosip.hotlist.encryptor.rest.headers.mediaType=application/json mosip.hotlist.encryptor.rest.timeout=100 -mosip.hotlist.decryptor.rest.uri=http://kernel-keymanager-service/v1/keymanager/decrypt +mosip.hotlist.decryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/decrypt mosip.hotlist.decryptor.rest.httpMethod=POST mosip.hotlist.decryptor.rest.headers.mediaType=application/json mosip.hotlist.decryptor.rest.timeout=100 -#----------------------------------Kernel Retry Configurations --------------------------------------------# +mosip.hotlist.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits +mosip.hotlist.audit.rest.httpMethod=POST +mosip.hotlist.audit.rest.headers.mediaType=application/json + +## Retry configs # The retry limit excluding the first attempt before attempting for retries. Default is set to 5. kernel.retry.attempts.limit=5 # The initial interval to be used for exponential backoff in milli seconds. If the exponential backoff is disabled by setting 'kernel.retry.exponential.backoff.multiplier' value as 1, this initial interval will be used as the fixed backoff interval for every retries. Default value is 200 millisecs From 6d6f9a4606c71c0eec85022273ba7f71dbe221cd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 2 Sep 2021 16:58:50 +0530 Subject: [PATCH 0232/1358] Properties modified for testing. Revert later. --- admin-default.properties | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 560dc348cba..afff909e674 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -181,8 +181,9 @@ mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} -mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ -#mosip.admin-services.open-id.login_flow.scope=cls +tempuri=https://admin.v3box1.mosip.net +#mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ +mosip.admin-services.redirecturi=${tempuri}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth @@ -201,7 +202,8 @@ mosip.security.secure-cookie=false mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ +#mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ +mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code From e40ec92b758270085654d006ea339e2b94c80e05 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 14 Sep 2021 05:58:50 +0530 Subject: [PATCH 0233/1358] [MOSIP-16645] Updated. --- ...rocessor-camel-routes-activate-default.xml | 93 +-- ...cessor-camel-routes-deactivate-default.xml | 123 ++-- ...on-processor-camel-routes-lost-default.xml | 545 ++++++++------ ...essor-camel-routes-res-reprint-default.xml | 103 ++- ...cessor-camel-routes-res-update-default.xml | 332 +++++---- ...-processor-camel-routes-update-default.xml | 681 +++++++++++------- 6 files changed, 1093 insertions(+), 784 deletions(-) diff --git a/registration-processor-camel-routes-activate-default.xml b/registration-processor-camel-routes-activate-default.xml index aaae157a867..28eb1ba4264 100644 --- a/registration-processor-camel-routes-activate-default.xml +++ b/registration-processor-camel-routes-activate-default.xml @@ -1,60 +1,37 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- securezone-notification to packet-uploader Route --> - <route id="securezone-notification-->packet-uploader activated route"> - <from uri="eventbus:securezone-notification-activated-bus-out" /> - <log - message="securezone-notification-->packet-uploader activated route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- Packet uploader to uin-generator Route --> - <route id="packet-uploader-->uin-generator activated route"> - <from uri="eventbus:packet-uploader-activated-bus-out" /> - <log - message="packet-uploader-->uin-generator activated route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- UIN Generator to Printing and Message Sender Route --> - <route id="uin-generation route-->printing-stage-->message-sender activated route"> - <from uri="eventbus:uin-generator-activated-bus-out" /> - <log - message="uin-generation-->printing-stage and message-sender-stage activated route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:message-sender-bus-in" /> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification activated route"> + <from uri="eventbus://packet-receiver-activated-bus-out" /> + <log message="packet-reciever-->securezone-notification activated-route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> </routes> diff --git a/registration-processor-camel-routes-deactivate-default.xml b/registration-processor-camel-routes-deactivate-default.xml index 01aaba5c1f6..c46836dbe9d 100644 --- a/registration-processor-camel-routes-deactivate-default.xml +++ b/registration-processor-camel-routes-deactivate-default.xml @@ -1,59 +1,66 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <route id="securezone-notification-->packet-uploader deactivated route"> - <from uri="eventbus:securezone-notification-deactivated-bus-out" /> - <log - message="securezone-notification-->packet-uploader deactivated route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- Packet uploader to uin-generator Route --> - <route id="packet-uploader-->uin-generator deactivated route"> - <from uri="eventbus:packet-uploader-deactivated-bus-out" /> - <log - message="packet-uploader-->uin-generator deactivated route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- UIN Generator to Printing and Message Sender Route --> - <route id="uin-generation route-->printing-stage-->message-sender deactivated route"> - <from uri="eventbus:uin-generator-deactivated-bus-out" /> - <log - message="uin-generation-->printing-stage and message-sender-stage deactivated route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:message-sender-bus-in" /> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> + <route id="securezone-notification-->packet-uploader deactivated route"> + <from uri="eventbus://securezone-notification-deactivated-bus-out" /> + <log message="securezone-notification-->packet-uploader deactivated route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <!-- Packet uploader to uin-generator Route --> + <route id="packet-uploader-->uin-generator deactivated route"> + <from uri="eventbus://packet-uploader-deactivated-bus-out" /> + <log message="packet-uploader-->uin-generator deactivated route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="uin-generation route--> deactivated route"> + <from uri="eventbus://uin-generator-deactivated-bus-out" /> + <log message="uin-generation--> deactivated route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index 5e98ac12e38..f7de0a5fb73 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -1,217 +1,330 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- securezone-notification to packet-uploader Route --> - <route id="securezone-notification-->packet-uploader lost route"> - <from uri="eventbus:securezone-notification-lost-bus-out" /> - <log - message="securezone-notification-->packet-uploader lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- packet-uploader to packet-validator Route --> - <route id="packet-uploader-->packet-validator lost route"> - <from uri="eventbus:packet-uploader-lost-bus-out" /> - <log - message="packet-uploader-->packet-validator lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- Packet Validator to Packet classifier Route --> - <route id="packet-validator-->packet-classifier lost route"> - <from uri="eventbus:packet-validator-lost-bus-out" /> - <log - message="packet-validator-->packet-classifier lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-classifier-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- Packet classifier to Quality Checker Route --> - <route id="packet-classifier-->quality-checker lost route"> - <from uri="eventbus:packet-classifier-lost-bus-out" /> - <log - message="packet-classifier-->quality-checker lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:quality-checker-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="quality-checker-->osi-validator lost route"> - <from uri="eventbus:quality-checker-lost-bus-out" /> - <log - message="quality-checker-->osi-validator lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:o-s-i-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="osi-validator-lost-->bio-dedupe lost route"> - <from uri="eventbus:o-s-i-validator-lost-bus-out" /> - <log - message="osi-validator-lost-->bio-dedupe lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:bio-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="bio-dedupe-lost-->uin-generation lost route"> - <from uri="eventbus:bio-dedupe-lost-bus-out" /> - <log - message="bio-dedupe-->uin-generation lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-handler-bus-in"'</simple> - <to uri="eventbus:abis-handler-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"manual-verification-bus-in"'</simple> - <to uri="vertx:manual-verification-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-handler-->abis-middleware lost route"> - <from uri="eventbus:abis-handler-lost-bus-out" /> - <log - message="abis-handler-->abis-middleware lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-middle-ware-bus-in"'</simple> - <to uri="eventbus:abis-middle-ware-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"bio-dedupe-bus-in"'</simple> - <to uri="eventbus:bio-dedupe-bus-in"/> - </when> - </choice> - </route> - <route id="uin-generation-lost-->message-sender-stage-->printing-stage lost route"> - <from uri="eventbus:uin-generator-lost-bus-out" /> - <log - message="uin-generation-lost-->message-sender-stage lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:message-sender-bus-in" /> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="manual-verification-lost-->uin-generation lost route"> - <from uri="eventbus:manual-verification-lost-bus-out" /> - <log - message="manual-verification-lost-->uin-generation lost route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-middleware route-->abis-handler lost route"> - <from uri="eventbus:abis-middle-ware-lost-bus-out" /> - <log message="abis-middleware route-->abis-handler lost route ${bodyAs(String)}" /> - <to uri="eventbus:abis-handler-bus-in" /> - </route> -</routes> + <!-- securezone-notification to packet-uploader Route --> + <route id="securezone-notification-->packet-uploader lost route"> + <from uri="eventbus://securezone-notification-lost-bus-out" /> + <log message="securezone-notification-->packet-uploader lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <!-- packet-uploader to packet-validator Route --> + <route id="packet-uploader-->packet-validator lost route"> + <from uri="eventbus://packet-uploader-lost-bus-out" /> + <log message="packet-uploader-->packet-validator lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> + </route> + <!-- Packet Validator to Packet classifier Route --> + <route id="packet-validator-->packet-classifier lost route"> + <from uri="eventbus://packet-validator-lost-bus-out" /> + <log message="packet-validator-->packet-classifier lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <!-- Packet classifier to Quality Classifier Route --> + <route id="packet-classifier-->quality-classifier lost route"> + <from uri="eventbus://packet-classifier-lost-bus-out" /> + <log message="packet-classifier-->quality-classifier lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://quality-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="quality-classifier-->cmd-validator lost route"> + <from uri="eventbus://quality-classifier-lost-bus-out" /> + <log message="quality-classifier-->cmd-validator lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> + <to uri="eventbus://c-m-d-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="cmd-validator-->operator-validator lost route"> + <from uri="eventbus://c-m-d-validator-lost-bus-out" /> + <log message="cmd-validator-->operator-validator/supervisor-validator lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://operator-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="operator-validator-->supervisor-validator lost route"> + <from uri="eventbus://operator-validator-lost-bus-out" /> + <log message="operator-validator-->supervisor-validator/bio-dedupe lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://bio-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="supervisor-validator-->bio-dedupe lost route"> + <from uri="eventbus://supervisor-validator-lost-bus-out" /> + <log message="supervisor-validator-->bio-dedupe lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://bio-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="bio-dedupe-lost-->uin-generation lost route"> + <from uri="eventbus://bio-dedupe-lost-bus-out" /> + <log message="bio-dedupe-->uin-generation lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> + <to uri="eventbus://manual-verification-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-handler-->abis-middleware lost route"> + <from uri="eventbus://abis-handler-lost-bus-out" /> + <log message="abis-handler-->abis-middleware lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> + <to uri="eventbus://abis-middle-ware-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'bio-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://bio-dedupe-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="abis-middleware route-->abis-handler lost route"> + <from uri="eventbus://abis-middle-ware-lost-bus-out" /> + <log message="abis-middleware route-->abis-handler lost route ${bodyAs(String)}" /> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://abis-handler-bus-in" /> + </otherwise> + </route> + <route id="manual-verification-lost-->uin-generation lost route"> + <from uri="eventbus://manual-verification-lost-bus-out" /> + <log message="manual-verification-lost-->uin-generation lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="uin-generation-lost-->printing-stage lost route"> + <from uri="eventbus://uin-generator-lost-bus-out" /> + <log message="uin-generation-lost-->printing-stage lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage--> lost route"> + <from uri="eventbus://printing-lost-bus-out" /> + <log message="printing-stage--> route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index 7628a247ff2..e8112afcc0e 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -1,40 +1,67 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- securezone-notification to packet-uploader Route --> - <route id="securezone-notification-->packet-uploader res_reprint route"> - <from uri="eventbus:securezone-notification-res_reprint-bus-out" /> - <log - message="securezone-notification-->packet-uploader res_reprint route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- packet-uploader to printing-stage Route --> - <route id="packet-uploader-->printing-stage res_reprint route"> - <from uri="eventbus:packet-uploader-res_reprint-bus-out" /> - <log - message="packet-uploader-->printing-stage res_reprint route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> + <!-- securezone-notification to packet-uploader Route --> + <route id="securezone-notification-->packet-uploader res_reprint route"> + <from uri="eventbus://securezone-notification-res_reprint-bus-out" /> + <log message="securezone-notification-->packet-uploader res_reprint route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <!-- packet-uploader to printing-stage Route --> + <route id="packet-uploader-->printing-stage res_reprint route"> + <from uri="eventbus://packet-uploader-res_reprint-bus-out" /> + <log message="packet-uploader-->printing-stage res_reprint route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage--> res_reprint route"> + <from uri="eventbus://printing-res_reprint-bus-out" /> + <log message="printing-stage--> route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> </routes> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index c754531e86e..78673948a4b 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -1,145 +1,189 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- securezone-notification to packet-uploader Route --> - <route id="securezone-notification-->packet-uploader res_update route"> - <from uri="eventbus:securezone-notification-res_update-bus-out" /> - <log - message="securezone-notification-->packet-uploader res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- packet-uploader to packet-validator Route --> - <route id="packet-uploader-->packet-validator res_update route"> - <from uri="eventbus:packet-uploader-res_update-bus-out" /> - <log - message="packet-uploader-->packet-validator res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="packet-validator-->demo-dedupe res_update route"> - <from uri="eventbus:packet-validator-res_update-bus-out" /> - <log - message="packet-validator-->demo-dedupe res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:demo-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="demo-dedupe-->uin-generation res_update route"> - <from uri="eventbus:demo-dedupe-res_update-bus-out" /> - <log - message="demo-dedupe-->uin-generation res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-handler-bus-in"'</simple> - <to uri="eventbus:abis-handler-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in"/> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-handler-->abis-middleware res_update route"> - <from uri="eventbus:abis-handler-res_update-bus-out" /> - <log - message="abis-handler-->abis-middleware res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-middle-ware-bus-in"'</simple> - <to uri="eventbus:abis-middle-ware-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"demo-dedupe-bus-in"'</simple> - <to uri="eventbus:demo-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"bio-dedupe-bus-in"'</simple> - <to uri="eventbus:bio-dedupe-bus-in"/> - </when> - </choice> - </route> - <route id="manual-verification-->uin-generation res_update route"> - <from uri="eventbus:manual-verification-res_update-bus-out" /> - <log - message="manual-verification-->uin-generation res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- UIN Generator to Printing and Message Sender Route --> - <route id="uin-generation route-->printing-stage-->message-sender res_update route"> - <from uri="eventbus:uin-generator-res_update-bus-out" /> - <log - message="uin-generation-->printing-stage and message-sender-stage res_update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:message-sender-bus-in" /> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> -</routes> + <!-- securezone-notification to packet-uploader Route --> + <route id="securezone-notification-->packet-uploader res_update route"> + <from uri="eventbus://securezone-notification-res_update-bus-out" /> + <log message="securezone-notification-->packet-uploader res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <!-- packet-uploader to packet-validator Route --> + <route id="packet-uploader-->packet-validator res_update route"> + <from uri="eventbus://packet-uploader-res_update-bus-out" /> + <log message="packet-uploader-->packet-validator res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-validator-->demo-dedupe res_update route"> + <from uri="eventbus://packet-validator-res_update-bus-out" /> + <log message="packet-validator-->demo-dedupe res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="demo-dedupe-->uin-generation res_update route"> + <from uri="eventbus://demo-dedupe-res_update-bus-out" /> + <log message="demo-dedupe-->uin-generation res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-handler-->abis-middleware res_update route"> + <from uri="eventbus://abis-handler-res_update-bus-out" /> + <log message="abis-handler-->abis-middleware res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> + <to uri="eventbus://abis-middle-ware-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'demo-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://demo-dedupe-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'bio-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://bio-dedupe-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="manual-verification-->uin-generation res_update route"> + <from uri="eventbus://manual-verification-res_update-bus-out" /> + <log message="manual-verification-->uin-generation res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <!-- UIN Generator to Printing Route --> + <route id="uin-generation route-->printing-stage res_update route"> + <from uri="eventbus://uin-generator-res_update-bus-out" /> + <log message="uin-generation-->printing-stage res_update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage--> res_update route"> + <from uri="eventbus://printing-res_update-bus-out" /> + <log message="printing-stage--> route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 2c21a1039ee..49e7e1d9264 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -1,271 +1,412 @@ <routes xmlns="http://camel.apache.org/schema/spring"> - <!-- securezone-notification to packet-uploader Route --> - <route id="securezone-notification-->packet-uploader update route"> - <from uri="eventbus:securezone-notification-update-bus-out" /> - <log - message="securezone-notification-->packet-uploader update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-uploader-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- packet-uploader to packet-validator Route --> - <route id="packet-uploader-->packet-validator update route"> - <from uri="eventbus:packet-uploader-update-bus-out" /> - <log - message="packet-uploader-->packet-validator update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- Packet Validator to Packet Classifier Route --> - <route id="packet-validator-->packet-classifier update route"> - <from uri="eventbus:packet-validator-update-bus-out" /> - <log - message="packet-validator-->packet-classifier update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:packet-classifier-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- Packet Classifier to Quality Checker Route --> - <route id="packet-classifier-->quality-checker update route"> - <from uri="eventbus:packet-classifier-update-bus-out" /> - <log - message="packet-classifier-->quality-checker update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:quality-checker-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="quality-checker-->osi-validator update route"> - <from uri="eventbus:quality-checker-update-bus-out" /> - <log - message="quality-checker-->osi-validator update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:o-s-i-validator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="osi-validator-->biometric-authentication-stage update route"> - <from uri="eventbus:o-s-i-validator-update-bus-out" /> - <log - message="osi-validator-->biometric-authentication-stage update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:biometric-authentication-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="biometric-authentication-stage-->demo-dedupe update route"> - <from uri="eventbus:biometric-authentication-update-bus-out" /> - <log - message="biometric-authentication-stage-->demo-dedupe update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:demo-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="demo-dedupe-->bio-dedupe update update route"> - <from uri="eventbus:demo-dedupe-update-bus-out" /> - <log - message="demo-dedupe-->bio-dedupe update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:bio-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-handler-bus-in"'</simple> - <to uri="eventbus:abis-handler-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"manual-verification-bus-in"'</simple> - <to uri="vertx:manual-verification-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in"/> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-handler-->abis-middleware update route"> - <from uri="eventbus:abis-handler-update-bus-out" /> - <log - message="abis-handler-->abis-middleware update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-middle-ware-bus-in"'</simple> - <to uri="eventbus:abis-middle-ware-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"demo-dedupe-bus-in"'</simple> - <to uri="eventbus:demo-dedupe-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"bio-dedupe-bus-in"'</simple> - <to uri="eventbus:bio-dedupe-bus-in"/> - </when> - </choice> - </route> - <route id="bio-dedupe-->uin-generation update route"> - <from uri="eventbus:bio-dedupe-update-bus-out" /> - <log - message="bio-dedupe-->uin-generation update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"address":"abis-handler-bus-in"'</simple> - <to uri="eventbus:abis-handler-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="manual-verification-->uin-generation update route"> - <from uri="eventbus:manual-verification-update-bus-out" /> - <log - message="manual-verification-->uin-generation update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:uin-generator-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"isValid":false' and ${bodyAs(String)} contains '"internalError":false'</simple> - <to uri="eventbus:message-sender-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <!-- UIN Generator to Printing and Message Sender Route --> - <route id="uin-generation route-->printing-stage-->message-sender update route"> - <from uri="eventbus:uin-generator-update-bus-out" /> - <log - message="uin-generation-->printing-stage and message-sender-stage update route ${bodyAs(String)}" /> - <choice> - <when> - <simple>${bodyAs(String)} contains '"isValid":true'</simple> - <to uri="eventbus:message-sender-bus-in" /> - <to uri="eventbus:printing-bus-in" /> - </when> - <when> - <simple>${bodyAs(String)} contains '"internalError":true'</simple> - <to uri="eventbus:retry-bus-in" /> - </when> - <otherwise> - <to uri="eventbus:error-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-middleware route-->abis-handler update route"> - <from uri="eventbus:abis-middle-ware-update-bus-out" /> - <log - message="abis-middleware route-->abis-handler update route ${bodyAs(String)}" /> - <to uri="eventbus:abis-handler-bus-in" /> - </route> -</routes> + <!-- securezone-notification to packet-uploader Route --> + <route id="securezone-notification-->packet-uploader update route"> + <from uri="eventbus://securezone-notification-update-bus-out" /> + <log message="securezone-notification-->packet-uploader update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <!-- packet-uploader to packet-validator Route --> + <route id="packet-uploader-->packet-validator update route"> + <from uri="eventbus://packet-uploader-update-bus-out" /> + <log message="packet-uploader-->packet-validator update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> + </route> + <!-- Packet Validator to Packet Classifier Route --> + <route id="packet-validator-->packet-classifier update route"> + <from uri="eventbus://packet-validator-update-bus-out" /> + <log message="packet-validator-->packet-classifier update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <!-- Packet Classifier to Quality Classifier Route --> + <route id="packet-classifier-->quality-classifier update route"> + <from uri="eventbus://packet-classifier-update-bus-out" /> + <log message="packet-classifier-->quality-classifier update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://quality-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="quality-classifier-->cmd-validator update route"> + <from uri="eventbus://quality-classifier-update-bus-out" /> + <log message="quality-classifier-->cmd-validator update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> + <to uri="eventbus://c-m-d-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="cmd-validator-->operator-validator update route"> + <from uri="eventbus://c-m-d-validator-update-bus-out" /> + <log message="cmd-validator-->operator-validator/supervisor-validator update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://operator-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="operator-validator-->supervisor-validator update route"> + <from uri="eventbus://operator-validator-update-bus-out" /> + <log message="operator-validator-->supervisor-validator/introducer-validator/biometric-authentication-stage update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://biometric-authentication-bus-in" /> + </otherwise> + </choice> + </route> + <route id="supervisor-validator-->introducer-validator update route"> + <from uri="eventbus://supervisor-validator-update-bus-out" /> + <log message="supervisor-validator-->introducer-validator/biometric-authentication-stage update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://biometric-authentication-bus-in" /> + </otherwise> + </choice> + </route> + <route id="introducer-validator-->biometric-authentication-stage update route"> + <from uri="eventbus://introducer-validator-update-bus-out" /> + <log message="introducer-validator-->biometric-authentication-stage update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://biometric-authentication-bus-in" /> + </otherwise> + </choice> + </route> + <route id="biometric-authentication-stage-->demo-dedupe update route"> + <from uri="eventbus://biometric-authentication-update-bus-out" /> + <log message="biometric-authentication-stage-->demo-dedupe update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="demo-dedupe-->bio-dedupe update update route"> + <from uri="eventbus://demo-dedupe-update-bus-out" /> + <log message="demo-dedupe-->bio-dedupe update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> + <to uri="eventbus://manual-verification-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://bio-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-handler-->abis-middleware update route"> + <from uri="eventbus://abis-handler-update-bus-out" /> + <log message="abis-handler-->abis-middleware update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> + <to uri="eventbus://abis-middle-ware-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'demo-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://demo-dedupe-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'bio-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://bio-dedupe-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="bio-dedupe-->uin-generation update route"> + <from uri="eventbus://bio-dedupe-update-bus-out" /> + <log message="bio-dedupe-->uin-generation update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-middleware route-->abis-handler update route"> + <from uri="eventbus://abis-middle-ware-update-bus-out" /> + <log message="abis-middleware route-->abis-handler update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://abis-handler-bus-in" /> + </otherwise> + </choice> + </route> + <route id="manual-verification-->uin-generation update route"> + <from uri="eventbus://manual-verification-update-bus-out" /> + <log message="manual-verification-->uin-generation update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <!-- UIN Generator to Printing Route --> + <route id="uin-generation route-->printing-stage update route"> + <from uri="eventbus://uin-generator-update-bus-out" /> + <log message="uin-generation-->printing-stage update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage--> update route"> + <from uri="eventbus://printing-update-bus-out" /> + <log message="printing-stage--> route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file From 8af47f7238ef451e0f49f039cf9bb5c713c6c667 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 22 Sep 2021 06:01:58 +0530 Subject: [PATCH 0234/1358] [MOSIP-15428] Prereg property restored. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 641d722be38..d52f8299c0d 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -273,7 +273,7 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service latestidschema.service.contextpath=latestidschemafetch the latest ID Schema for the ID object validator -mosip.preregistration.id-schema=http://masterdata.kernel/v1/masterdata/idschema/latest +mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema syncdata.resource.url=http://syncdata.kernel/v1/syncdata ## OTP From c6a864093855bcbee9aabf7bcb98867c622af9ef Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 29 Sep 2021 15:02:21 +0530 Subject: [PATCH 0235/1358] [MOSIP-17836] Changes for 1.2.0-rc2 --- kernel-default.properties | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 7b33a272cd0..c735de5fade 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -32,7 +32,7 @@ mosip.kernel.sms.enabled=false mosip.kernel.sms.country.code=91 mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" -mosip.kernel.sms.gateway=gateway +mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- mosip.kernel.sms.api=smsapi mosip.kernel.sms.authkey=authkey @@ -431,8 +431,15 @@ mosip.kernel.masterdata.auth-user-details=/userdetails ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client -#scheduler do it's job at 2am +## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=200 + +# masterdata swagger openApi +openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata +openapi.masterdata.servers[0].description=Admin Masterdata url +#To fetch user details based on user id and user name in zone API's +zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails ## Admin roles mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN From ca15b703a42ff6b6a7c7c9751fb60fd117a21a20 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 12:21:25 +0530 Subject: [PATCH 0236/1358] Correction to property name. --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index bd8392a73f6..190a8f798ff 100644 --- a/print-default.properties +++ b/print-default.properties @@ -13,7 +13,7 @@ mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident mosip.event.callBackUrl=http://print-service.print/v1/print/print/callback/notifyPrint mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED -osip.event.secret=${print.websub.hub.secret} +mosip.event.secret=${print.websub.hub.secret} csrf.disabled=true mosip.event.delay=120000 print-websub-resubscription-delay-secs=43200 From 8973ebc0bd7a2f6cb246667c2f0953cea93b02f8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 13:22:09 +0530 Subject: [PATCH 0237/1358] Roles updated. --- pre-registration-default.properties | 30 ++++++++++++++--------------- 1 file changed, 15 insertions(+), 15 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index d52f8299c0d..c9e53010b04 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -433,14 +433,14 @@ object.store.s3.use.account.as.bucketname=true spring.cache.type=none ## Roles -mosip.role.prereg.postapplications=INDIVIDUAL -mosip.role.prereg.putapplications=INDIVIDUAL -mosip.role.prereg.getapplications=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -mosip.role.prereg.putapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.putapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getapplications=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.prereg.putapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.prereg.getapplicationsall=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -mosip.role.prereg.getapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -mosip.role.prereg.deleteapplications=INDIVIDUAL -mosip.role.prereg.postapplicationsupdatedtime=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.prereg.deleteapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postapplicationsupdatedtime=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,REGISTRATION_PROCESSOR mosip.role.prereg.getapplicationsconfig=INDIVIDUAL mosip.role.prereg.getapplicationsinfo=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postlogaudit=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN @@ -449,16 +449,16 @@ mosip.role.prereg.putdocumentspreregistrationid=INDIVIDUAL mosip.role.prereg.getdocumentsdocumentid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL mosip.role.prereg.getdocumentspreregistrationid=REGISTRATION_OFFICER,INDIVIDUAL mosip.role.prereg.deletedocumentsdocumentid=INDIVIDUAL -mosip.role.prereg.deletedocumentspreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL -mosip.role.prereg.putdocumentsdocumentid=INDIVIDUAL +mosip.role.prereg.deletedocumentspreregistrationid=INDIVIDUAL +mosip.role.prereg.putdocumentsdocumentid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postqrcodegenerate=INDIVIDUAL mosip.role.prereg.getrefreshconfig=PRE_REGISTRATION_ADMIN -mosip.role.prereg.postnotificationnotify=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL -mosip.role.prereg.postnotification=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.postnotificationnotify=INDIVIDUAL,PRE_REGISTRATION_ADMIN +mosip.role.prereg.postnotification=INDIVIDUAL,PRE_REGISTRATION_ADMIN mosip.role.prereg.posttransliterationtransliterate=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL mosip.role.prereg.getuispeclatest=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL mosip.role.prereg.getuispecall=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL -mosip.role.prereg.postpreregsync=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -mosip.role.prereg.getsyncpreregistrationid=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -mosip.role.prereg.getsyncpreregistrationidmachineid=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -mosip.role.prereg.postsyncconsumedpreregids=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postpreregsync=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getsyncpreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getsyncpreregistrationidmachineid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.postsyncconsumedpreregids=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,REGISTRATION_PROCESSOR From fca866fac1654713cb2669dcdb39e3ea62a75ef7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 16:04:07 +0530 Subject: [PATCH 0238/1358] Roles updated. --- kernel-default.properties | 31 +++++++++++++++++++++++-------- 1 file changed, 23 insertions(+), 8 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index c735de5fade..17eba9d52c3 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -441,7 +441,10 @@ openapi.masterdata.servers[0].description=Admin Masterdata url #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails -## Admin roles + +## Roles +#mosip.role.admin.masterdata.postgetapplicanttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,REGISTRATION_SUPERVISOR,PRE_REGISTRATION,REGISTRATION_OFFICER +#mosip.role.admin.masterdata.getapplicanttypeapplicantidlanguages=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN @@ -513,6 +516,7 @@ mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADM mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN #mosip.role.admin.masterdata.getdocumenttypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN #mosip.role.admin.masterdata.getdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,INDIVIDUAL,Default #mosip.role.admin.masterdata.getdistinct=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN,Default mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN @@ -540,7 +544,7 @@ mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN @@ -626,8 +630,8 @@ mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZO mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postpacketresume=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postpacketsearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postpacketresume=GLOBAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.postpacketsearch=GLOBAL_ADMIN,REGISTRATION_ADMIN mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR @@ -683,9 +687,9 @@ mosip.role.admin.masterdata.getidschemalatest=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRAT #mosip.role.admin.masterdata.gettemplateslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER #mosip.role.admin.masterdata.gettemplateslangcodetemplatetypecode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER +mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.gettemplatesall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN @@ -753,10 +757,16 @@ mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneuserhistoryuserid=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN + +#Adding the property files of commons-kernel-key manager service. -## Kernel roles mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL @@ -792,3 +802,8 @@ mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,R mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postzkreencryptrandomkey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT From b9c73cbfc0fc617b84bffab81f28e843513c2c4d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 16:29:09 +0530 Subject: [PATCH 0239/1358] Websub, applicanttype updated. --- applicanttype.mvel | 241 +++++++++++++++++++------------ websub-consolidator-default.toml | 23 +++ websub-service-default.toml | 48 ++++++ websub.conf | 31 ---- 4 files changed, 216 insertions(+), 127 deletions(-) create mode 100644 websub-consolidator-default.toml create mode 100644 websub-service-default.toml delete mode 100644 websub.conf diff --git a/applicanttype.mvel b/applicanttype.mvel index 309c6c25c34..a27065c5e4a 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -1,96 +1,145 @@ -def getApplicantType(map,a) { - import java.time.LocalDate; - import java.time.LocalDateTime; - import java.time.format.DateTimeFormatter; - import java.time.Period; - import java.util.List; - //String itc = null; - String dob = null; - String genderType = null; - boolean isBioExPresent = false; - String NonResident = "FR"; - String Resident = "NFR"; - String MALE = "MLE"; - String FEMALE = "FLE"; - String Others = "OTH"; - String CHILD = "CHL"; - String ADULT = "ADL"; - // String ATTR_INDIVIDUAL_TYPE = "residenceStatus"; - String ATTR_DATE_OF_BIRTH = "dateOfBirth"; - String ATTR_GENDER_TYPE = "gender"; - String ATTR_BIOMETRIC_EXCEPTION_TYPE = "biometricAvailable"; - String UTC_DATETIME_PATTERN = "yyyy/MM/dd"; - //itc= (String)((List) map[ATTR_INDIVIDUAL_TYPE]).get(0).value; - - dob= (String) map[ATTR_DATE_OF_BIRTH]; - if(dob == empty || dob == null ){ - return "KER-MSD-147"; - } - int age = -1; - LocalDate currentDate = LocalDate.now(); - LocalDate birthDate = LocalDate.parse(dob, DateTimeFormatter.ofPattern(UTC_DATETIME_PATTERN)); - if (birthDate != null && currentDate != null && !birthDate.isAfter(currentDate)) { - age = Period.between(birthDate, currentDate).getYears(); - } - else{ - return age; - } - genderType= (String) ((List) map[ATTR_GENDER_TYPE]).get(0).value; - isBioExPresent =(Boolean)map[ATTR_BIOMETRIC_EXCEPTION_TYPE]; - if (((dob == -1 ) && (genderType == empty || genderType == null ) && (isBioExPresent == empty || isBioExPresent == null))) - return "KER-MSD-147"; - if(age >= agelimit) - ageCode=ADULT; - else if( age >= 0 && age < agelimit) - ageCode=CHILD; - if ( genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "A001"; - } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "A002"; - } else if (genderType == MALE && ageCode == CHILD && !isBioExPresent ) { - return "A003"; - } else if (genderType == MALE && ageCode == ADULT && !isBioExPresent ) { - return "A004"; - } else if ( genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "A005"; - } else if ( genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "A006"; - } else if (genderType == FEMALE && ageCode == CHILD && !isBioExPresent ) { - return "A007"; - } else if (genderType == FEMALE && ageCode == ADULT && !isBioExPresent ) { - return "A008"; - } else if ( genderType == Others && ageCode == CHILD && !isBioExPresent ) { - return "A005"; - } else if ( genderType == Others && ageCode == ADULT && !isBioExPresent ) { - return "A006"; - } else if (genderType == Others && ageCode == CHILD && !isBioExPresent ) { - return "A007"; - } else if (genderType == Others && ageCode == ADULT && !isBioExPresent ) { - return "A008"; - } else if ( genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "A009"; - } else if ( genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "A010"; - } else if (genderType == MALE && ageCode == CHILD && isBioExPresent ) { - return "A011"; - } else if (genderType == MALE && ageCode == ADULT && isBioExPresent ) { - return "A012"; - } else if ( genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "A013"; - } else if ( genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "A014"; - } else if (genderType == FEMALE && ageCode == CHILD && isBioExPresent ) { - return "A015"; - } else if (genderType == FEMALE && ageCode == ADULT && isBioExPresent ) { - return "A016"; - } else if ( genderType == Others && ageCode == CHILD && isBioExPresent ) { - return "A013"; - } else if ( genderType == Others && ageCode == ADULT && isBioExPresent ) { - return "A014"; - } else if (genderType == Others && ageCode == CHILD && isBioExPresent ) { - return "A015"; - } else if (genderType == Others && ageCode == ADULT && isBioExPresent ) { - return "A016"; - } - return null; -}; +import java.time.LocalDate; +import java.time.LocalDateTime; +import java.time.format.DateTimeFormatter; +import java.time.Period; +import java.util.List; +import java.time.ZoneId; +import java.time.temporal.ValueRange; + +String CHILD = "INFANT"; +String MINOR = "MINOR"; +String ADULT = "ADULT"; +String MALE = 'MLE'; +String FEMALE = 'FLE'; +String NonResident = "FR"; +String Resident = "NFR"; +String Others = "OTH"; +String DATE_PATTERN = "yyyy/MM/dd"; + +def isUpdateFlow(identity) { + Object val = identity.get('_flow'); + if(val != null) { + return ((String)val).equals('Update') ? true : false; + } + + val = identity.getOrDefault('isUpdate', false); + return val == null ? false : (Boolean) val; +} + +def getResidenceStatus(identity) { + if(identity.containsKey('residenceStatusCode')) { + return identity.getOrDefault('residenceStatusCode', null); + } + + if(identity.containsKey('residenceStatus')) { + Object val = identity.getOrDefault('residenceStatus', null); + return val == null ? null : + (val instanceof String ? ; (String)val : (String) ((List)val).get(0).value); + } + + return null; +} + +def getGenderType(identity) { + if(identity.containsKey('genderCode')) { + return identity.getOrDefault('genderCode', null); + } + + if(identity.containsKey('gender')) { + Object val = identity.getOrDefault('gender', null); + return val == null ? null : + (val instanceof String ? ; (String)val : (String) ((List)val).get(0).value); + } + + return null; +} + +def getAgeCode(identity) { + if(ageGroups == null || !identity.containsKey('dateOfBirth')) + return null; + + String dob = identity.get('dateOfBirth'); + LocalDate date = LocalDate.parse(dob, DateTimeFormatter.ofPattern(DATE_PATTERN)); + LocalDate currentDate = LocalDate.now(ZoneId.of("UTC")); + int ageInYears = -1; + if (!date.isAfter(currentDate)) { + ageInYears = Period.between(date, currentDate).getYears(); + } else { + return "KER-MSD-151"; + } + String ageGroup = null; + for(String groupName : ageGroups.keySet()) { + String[] range = ((String)ageGroups.get(groupName)).split('-'); + if(ValueRange.of(Long.valueOf(range[0]), Long.valueOf(range[1])).isValidIntValue(ageInYears)) { + ageGroup = groupName; + } + } + + return ageGroup; +} + + +def getBioExceptionFlag(identity) { + return identity.containsKey('isBioException') ? (Boolean) identity.get('isBioException') : false; +} + +def getApplicantType() { + String itc = getResidenceStatus(identity); + String genderType = getGenderType(identity); + String ageCode = getAgeCode(identity); + boolean isBioExPresent = getBioExceptionFlag(identity); + + if(itc == null || genderType == null || ageCode == null) + return isUpdateFlow(identity) ? "000" : "KER-MSD-147"; + + if (itc == NonResident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + return "001"; + } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { + return "002"; + } else if (itc == Resident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + return "003"; + } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { + return "004"; + } else if (itc == NonResident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + return "005"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { + return "006"; + } else if (itc == Resident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + return "007"; + } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { + return "008"; + } else if (itc == NonResident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + return "005"; + } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { + return "006"; + } else if (itc == Resident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + return "007"; + } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { + return "008"; + } else if (itc == NonResident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + return "009"; + } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { + return "010"; + } else if (itc == Resident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + return "011"; + } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { + return "012"; + } else if (itc == NonResident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + return "013"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + return "015"; + } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { + return "016"; + } else if (itc == NonResident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + return "013"; + } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + return "015"; + } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { + return "016"; + } + return "000"; +} diff --git a/websub-consolidator-default.toml b/websub-consolidator-default.toml new file mode 100644 index 00000000000..dcccde82d82 --- /dev/null +++ b/websub-consolidator-default.toml @@ -0,0 +1,23 @@ +[consolidatorService.config] +# IP and Port of the Kafka bootstrap node +KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" + +# Kafka topic which will get notified for websub topic registration/deregistration +# All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration +REGISTERED_WEBSUB_TOPICS_TOPIC = "registered-websub-topics" + +# Kafka topic which stores consolidated websub topics for the hub +CONSOLIDATED_WEBSUB_TOPICS_TOPIC = "consolidated-websub-topics" + +# Kafka topic which will get notified for websub subscription/unsubscription +# All the hubs must be pointed to the same Kafka topic to notify websub subscription/unsubscription +WEBSUB_SUBSCRIBERS_TOPIC = "registered-websub-subscribers" + +# Kafka topic which is stores consolidated websub subscribers for this server +CONSOLIDATED_WEBSUB_SUBSCRIBERS_TOPIC = "consolidated-websub-subscribers" + +# The interval in which Kafka consumers wait for new messages +POLLING_INTERVAL = 10.0 + +# The period in which Kafka close method waits to complete +GRACEFUL_CLOSE_PERIOD = 5.0 diff --git a/websub-service-default.toml b/websub-service-default.toml new file mode 100644 index 00000000000..b5b3398c836 --- /dev/null +++ b/websub-service-default.toml @@ -0,0 +1,48 @@ +[kafkaHub.config] +# Flag to check whether to enable/disable security +SECURITY_ON = false + +# Server ID is is used to uniquely identify each server +# Each server must have a unique ID +SERVER_ID = "server-1" + +# IP and Port of the Kafka bootstrap node +KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" + +# Kafka topic which will get notified for websub topic registration/deregistration +# All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration +REGISTERED_WEBSUB_TOPICS_TOPIC = "registered-websub-topics" + +# Kafka topic which stores consolidated websub topics for the hub +CONSOLIDATED_WEBSUB_TOPICS_TOPIC = "consolidated-websub-topics" + +# Kafka topic which will get notified for websub subscription/unsubscription +# All the hubs must be pointed to the same Kafka topic to notify websub subscription/unsubscription +WEBSUB_SUBSCRIBERS_TOPIC = "registered-websub-subscribers" + +# Kafka topic which is stores consolidated websub subscribers for this server +CONSOLIDATED_WEBSUB_SUBSCRIBERS_TOPIC = "consolidated-websub-subscribers" + +# The interval in which Kafka consumers wait for new messages +POLLING_INTERVAL = 10.0 + +# The period in which Kafka close method waits to complete +GRACEFUL_CLOSE_PERIOD = 5.0 + +# The port that is used to start the hub +HUB_PORT = 9191 + +# The period between retry requests +MESSAGE_DELIVERY_RETRY_INTERVAL = 3.0 + +# The maximum retry count +MESSAGE_DELIVERY_COUNT = 3 + +# The message delivery timeout +MESSAGE_DELIVERY_TIMEOUT = 10.0 + +# The base URL of IDP +MOSIP_AUTH_BASE_URL = "https://host/" + +# The token validation URL of IDP +MOSIP_AUTH_VALIDATE_TOKEN_URL = "https://host/oauth2/token" diff --git a/websub.conf b/websub.conf deleted file mode 100644 index 52637511975..00000000000 --- a/websub.conf +++ /dev/null @@ -1,31 +0,0 @@ - -[b7a.jdbc.pool] -maximumPoolSize=250 - -[mosip.hub] -datasource-url="jdbc:postgresql://postgres-postgresql.postgres:5432/mosip_websub" -datasource-username="websubuser" -datasource-password="${db.dbuser.password}" -port=9191 -retry_count=0 -retry_interval=5 -retry_backoff_factor=1.0 -retry_max_wait_interval=6000 -restart_republish_time_offset="2021-07-08T06:39:00.000Z" -restart_republish_time_limit=59 - -[mosip.hub.cron-task.unsent-messages-republish] -enable=false -seconds="0" -minutes="0/1" -hours="*" -days-of-month="?" -months="*" -days-of-week="*" -year="*" - -[mosip.auth] -base_url="http://authmanager.kernel/v1/authmanager" -validate_token_url="/authorize/admin/validateToken" -filter_disable=true - From d63d4d4b34278340d90db4085c136a3b5261ebd6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 17:07:23 +0530 Subject: [PATCH 0240/1358] Applicant type updated - prefix added. --- applicanttype.mvel | 52 +++++++++++++++++++++++----------------------- 1 file changed, 26 insertions(+), 26 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index a27065c5e4a..37839f68830 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -90,56 +90,56 @@ def getApplicantType() { boolean isBioExPresent = getBioExceptionFlag(identity); if(itc == null || genderType == null || ageCode == null) - return isUpdateFlow(identity) ? "000" : "KER-MSD-147"; + return isUpdateFlow(identity) ? "A000" : "KER-MSD-147"; if (itc == NonResident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { - return "001"; + return "A001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "002"; + return "A002"; } else if (itc == Resident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { - return "003"; + return "A003"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "004"; + return "A004"; } else if (itc == NonResident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { - return "005"; + return "A005"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "006"; + return "A006"; } else if (itc == Resident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { - return "007"; + return "A007"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "008"; + return "A008"; } else if (itc == NonResident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { - return "005"; + return "A005"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "006"; + return "A006"; } else if (itc == Resident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { - return "007"; + return "A007"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "008"; + return "A008"; } else if (itc == NonResident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { - return "009"; + return "A009"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "010"; + return "A010"; } else if (itc == Resident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { - return "011"; + return "A011"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "012"; + return "A012"; } else if (itc == NonResident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { - return "013"; + return "A013"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "016"; + return "A016"; } else if (itc == NonResident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { - return "013"; + return "A013"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "016"; + return "A016"; } - return "000"; + return "A000"; } From 506e4110f15ad8e9c79b5969e2244ba1eecf48ae Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 18:51:20 +0530 Subject: [PATCH 0241/1358] Prereg props updated. --- pre-registration-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c9e53010b04..41571421a45 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -432,6 +432,11 @@ object.store.s3.use.account.as.bucketname=true ## Spring cache spring.cache.type=none +mosip.preregistration.appointment.getavailablity.url=http://prereg-booking.prereg/preregistration/v1/appointment/availability/{registrationCenterId} +mosip.preregistration.appointment.book.url=http://prereg-booking.prereg/preregistration/v1/appointment/{preRegistrationId} +mosip.preregistration.appointment.multi.book.url=http://prereg-booking.prereg/preregistration/v1/appointment + + ## Roles mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.putapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN From ccf98b05d856918ff04696dce88c115539f4f7a6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 18:53:28 +0530 Subject: [PATCH 0242/1358] Prereg props updated. --- pre-registration-default.properties | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 41571421a45..a908f5f68a4 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -436,6 +436,13 @@ mosip.preregistration.appointment.getavailablity.url=http://prereg-booking.prere mosip.preregistration.appointment.book.url=http://prereg-booking.prereg/preregistration/v1/appointment/{preRegistrationId} mosip.preregistration.appointment.multi.book.url=http://prereg-booking.prereg/preregistration/v1/appointment +mosip.preregistration.applications.status.get = mosip.preregistration.applications.status +mosip.preregistration.applications.details.get = mosip.preregistration.applications.detail.info + +mosip.preregistration.uispec.latest=mosip.preregistration.uispec.latest +mosip.preregistration.uispec.all=mosip.preregistration.uispec.all + +preregistration.cookie.contextpath=/ ## Roles mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN From c49c00da1e3f7cf741fd9f0ceab36513342ed874 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 22:15:45 +0530 Subject: [PATCH 0243/1358] [MOSIP-17836] Updated for 1.2.0-rc2 --- application-default.properties | 5 +- identity-mapping.json | 87 ++++++++++++++++++++++++++++++++++ 2 files changed, 91 insertions(+), 1 deletion(-) create mode 100644 identity-mapping.json diff --git a/application-default.properties b/application-default.properties index 320392524c7..21eba034700 100644 --- a/application-default.properties +++ b/application-default.properties @@ -377,5 +377,8 @@ mosip.max-languages.count=2 # These are default languages used for sending notifications mosip.default.template-languages=eng,ara -#Config key to pick the preferred language for communicating to the Resident +# Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang + +# Path to identity mapping json file +mosip.identity.mapping-file=${mosip.kernel.xsdstorage-uri}/identity-mapping.json diff --git a/identity-mapping.json b/identity-mapping.json new file mode 100644 index 00000000000..dd54babc19b --- /dev/null +++ b/identity-mapping.json @@ -0,0 +1,87 @@ +{ + "identity": { + "IDSchemaVersion": { + "value": "IDSchemaVersion" + }, + "name": { + "value": "fullName" + }, + "gender": { + "value": "gender" + }, + "dob": { + "value": "dateOfBirth" + }, + "age": { + "value": "age" + }, + "introducerRID": { + "value": "introducerRID" + }, + "introducerUIN": { + "value": "introducerUIN" + }, + "introducerVID": { + "value": "introducerVID" + }, + "introducerName": { + "value": "introducerName" + }, + "phone": { + "value": "phone" + }, + "email": { + "value": "email" + }, + "uin": { + "value": "UIN" + }, + "individualBiometrics": { + "value": "individualBiometrics" + }, + "introducerBiometrics": { + "value": "introducerBiometrics" + }, + "individualAuthBiometrics": { + "value": "individualAuthBiometrics" + }, + "officerBiometricFileName": { + "value": "officerBiometricFileName" + }, + "supervisorBiometricFileName": { + "value": "supervisorBiometricFileName" + }, + "residenceStatus": { + "value": "residenceStatus" + }, + "preferredLanguage": { + "value": "preferredLang" + }, + "locationHierarchyForProfiling": { + "value": "zone,postalCode" + } + }, + "metaInfo": { + "value": "metaInfo" + }, + "audits": { + "value": "audits" + }, + "documents": { + "poa": { + "value": "proofOfAddress" + }, + "poi": { + "value": "proofOfIdentity" + }, + "por": { + "value": "proofOfRelationship" + }, + "pob": { + "value": "proofOfDateOfBirth" + }, + "poe": { + "value": "proofOfException" + } + } +} From 9d0f5c47ca3a083b9a599b9951ef88d3d4b4f0bf Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 22:42:04 +0530 Subject: [PATCH 0244/1358] Websub filenames updated. --- websub-consolidator-default.toml => websub-consolidator.toml | 0 websub-service-default.toml => websub-service.toml | 0 2 files changed, 0 insertions(+), 0 deletions(-) rename websub-consolidator-default.toml => websub-consolidator.toml (100%) rename websub-service-default.toml => websub-service.toml (100%) diff --git a/websub-consolidator-default.toml b/websub-consolidator.toml similarity index 100% rename from websub-consolidator-default.toml rename to websub-consolidator.toml diff --git a/websub-service-default.toml b/websub-service.toml similarity index 100% rename from websub-service-default.toml rename to websub-service.toml From 36e331086938e66657f097acf9a6c0ed1c25c270 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 30 Sep 2021 23:02:19 +0530 Subject: [PATCH 0245/1358] Websub urls corrected. --- application-default.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 21eba034700..1993c6c327e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -364,9 +364,8 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve ## Websub (internal url) websub.base.url=http://websub.websub -websub.hub.url=${websub.base.url}/websub/hub -websub.publish.url=${websub.base.url}/websub/publish -websub.failed.messages.sync.url=${websub.base.url}/websub/sync/failedmessage +websub.hub.url=${websub.base.url}/hub +websub.publish.url=${websub.base.url}/hub mosip.mandatory-languages=eng,fra ## Leave blank if no optional langauges From b3761bf388430320ae92747600977f439cc55bae Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 11:19:57 +0530 Subject: [PATCH 0246/1358] Minor update. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 1993c6c327e..4b59a2b910f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -364,8 +364,8 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve ## Websub (internal url) websub.base.url=http://websub.websub -websub.hub.url=${websub.base.url}/hub -websub.publish.url=${websub.base.url}/hub +websub.hub.url=${websub.base.url}/hub/ +websub.publish.url=${websub.base.url}/hub/ mosip.mandatory-languages=eng,fra ## Leave blank if no optional langauges From 3ec8615b9f36ed357ca11c59fb9f2d3d710de283 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 12:23:50 +0530 Subject: [PATCH 0247/1358] [MOSIP-17836] Missing prop added. --- registration-processor-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1920c1aee44..b21a658bb76 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -441,6 +441,9 @@ mosip.regproc.packet.receiver.eventbus.port=5711 # Flag to disable the copying of tags from the packet manger to the message event mosip.regproc.packet.receiver.message.tag.loading.disable=true +#Event bus address for anonymous profile +mosip.anonymous.profile.eventbus.address=anonymous-profile-bus-in + #camel-bridge mosip.regproc.camel.bridge.eventbus.kafka.commit.type=single mosip.regproc.camel.bridge.eventbus.kafka.max.poll.records=100 From b74313f0d2e60ddf95387e18e02917d5325da81f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 12:36:42 +0530 Subject: [PATCH 0248/1358] Updated. --- registration-processor-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b21a658bb76..9df71252b0c 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -587,7 +587,9 @@ mosip.regproc.abis.handler.message.expiry-time-limit=${mosip.regproc.common.stag mosip.regproc.abis.handler.server.port=9071 mosip.regproc.abis.handler.eventbus.port=5726 mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler -mosip.regproc.abis.handler.biometric-modalities-segments-mapping={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} +mosip.regproc.abis.handler.biometric-modalities-segments-mapping.INFANT={'Face':{'Face'}} +mosip.regproc.abis.handler.biometric-modalities-segments-mapping.MINOR={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} +mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye','Face' : 'face'} #bio-dedupe-stage From e9f0224e731f44f2287c072de3c23997f7cea05c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 12:40:16 +0530 Subject: [PATCH 0249/1358] Updated. --- registration-processor-default.properties | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 9df71252b0c..e972795b2e2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -632,6 +632,27 @@ mosip.regproc.abis.middleware.server.port=8091 mosip.regproc.abis.middleware.eventbus.port=5888 mosip.regproc.abis.middleware.server.servlet.path=/registrationprocessor/v1/abismiddleware +# Biometric extraction stage +mosip.regproc.biometric.extraction.eventbus.kafka.commit.type=single +mosip.regproc.biometric.extraction.eventbus.kafka.max.poll.records=100 +mosip.regproc.biometric.extraction.eventbus.kafka.poll.frequency=100 +mosip.regproc.biometric.extraction.eventbus.kafka.group.id=biometric-extraction-stage +biometric.extraction.default.partner.policy.ids=[{'partnerId':'mpartner-default-auth','policyId':'mpolicy-default-auth'},{'partnerId':'mpartner-default-print','policyId':'mpolicy-default-print'},{'partnerId':'mpartner-default-print','policyId':'mpolicy-default-qrcode'},{'partnerId':'mpartner-default-print','policyId':'mpolicy-default-euin'}] +mosip.regproc.biometric.extraction.server.port=9181 +mosip.regproc.biometric.extraction.eventbus.port=5727 +mosip.regproc.biometric.extraction.server.servlet.path=/registrationprocessor/v1/biometricextraction +mosip.regproc.biometric.extraction.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} + +## Finalization stage +mosip.regproc.finalization.eventbus.kafka.commit.type=single +mosip.regproc.finalization.eventbus.kafka.max.poll.records=100 +mosip.regproc.finalization.eventbus.kafka.poll.frequency=100 +mosip.regproc.finalization.eventbus.kafka.group.id=finalization-stage +mosip.regproc.finalization.server.port=9182 +mosip.regproc.finalization.eventbus.port=5728 +mosip.regproc.finalization.server.servlet.path=/registrationprocessor/v1/finalization +mosip.regproc.finalization.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} + #biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 From 738ffcb8252973e7bc86cb24b2f14e2e128a5e94 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 14:33:32 +0530 Subject: [PATCH 0250/1358] Minor cleanup. --- pre-registration-default.properties | 30 +---------------------------- 1 file changed, 1 insertion(+), 29 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index a908f5f68a4..b7917ba7d3e 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -29,21 +29,14 @@ logging.level.com.zaxxer.hikari=DEBUG ## Project Version for the API response version=1.0 -##Not in use, to be removed after verification ----------------- -#application.id=pre-registration -#preregistration.preid.regex=[0-9]+ - - ## Age to be an adult ## Used in UI to identify the applicant type mosip.adult.age=${mosip.kernel.applicant.type.age.limit} - ## ID Schema ## This version is set in the ID object created in pre-registration mosip.idschema.version=0.1 - ## Demographic Service demographic.service.version=v1 demographic.service.env=http://prereg-application.prereg @@ -66,11 +59,6 @@ mosip.id.preregistration.demographic.create=mosip.pre-registration.demographic.c mosip.id.preregistration.demographic.update=mosip.pre-registration.demographic.update mosip.id.preregistration.demographic.retrieve.date=mosip.pre-registration.demographic.retrieve.date - -# Not in use, to be removed after verification -#mosip.pregistration.pagesize=20 - - ## Document Service document.service.version=v1 document.service.env=http://prereg-application.prereg @@ -84,7 +72,6 @@ mosip.preregistration.document.fetch.metadata.id=mosip.pre-registration.document mosip.preregistration.document.fetch.content.id=mosip.pre-registration.document.fetch.content mosip.preregistration.document.delete.id=mosip.pre-registration.document.delete mosip.preregistration.document.delete.specific.id=mosip.pre-registration.document.delete.specific - mosip.preregistration.document.id.upload=mosip.pre-registration.document.upload mosip.preregistration.document.update.docrefId.id=mosip.preregistration.docrefId.update @@ -92,10 +79,6 @@ mosip.preregistration.document.update.docrefId.id=mosip.preregistration.docrefId # Maximum size of file allowed uploaded in document service API (in mb) max.file.size=2 -# Not in use, to be removed after verification ----------------- -#spring.servlet.multipart.max-file-size=-1 -#spring.servlet.multipart.max-request-size=-1 - # Allowed formats for documents preregistration.document.extention=PDF,JPEG,PNG,JPG @@ -112,7 +95,6 @@ booking.service.env=http://prereg-booking.prereg booking.service.contextpath=preregistration/${booking.service.version} booking.resource.url=${booking.service.env}/${booking.service.contextpath} appointmentResourse.url=${booking.resource.url} - mosip.preregistration.booking.availability.sync.id=mosip.pre-registration.appointment.availability.sync mosip.preregistration.booking.book.id=mosip.pre-registration.booking.book mosip.preregistration.booking.fetch.booking.id=mosip.pre-registration.appointment.fetch @@ -124,7 +106,6 @@ mosip.preregistration.booking.availability.increase.id=mosip.preregistration.boo mosip.preregistration.booking.availability.check.id=mosip.preregistration.booking.availability.check mosip.preregistration.booking.delete.old.id=mosip.preregistration.booking.delete.old mosip.preregistration.booking.exception.id=mosip.preregistration.booking.parse.exception - mosip.preregistration.booking.id.book=mosip.pre-registration.booking.book # Sync @@ -350,7 +331,7 @@ mosip.pre-registration.qrcode.generate.id=mosip.pre-registration.qrcode.generate mosip.pre-registration.qrcode.service.version=1.0 qrversion=V1 mosip.pre-registration.qrcode.id.generate=mosip.pre-registration.qrcode.generate -mosip.id.pre-registration.qrcode.generate: mosip.pre-registration.qrcode.generate +mosip.id.pre-registration.qrcode.generate=mosip.pre-registration.qrcode.generate ## Data sync with registration client mosip.id.preregistration.datasync.fetch.ids=mosip.pre-registration.datasync.fetch.ids @@ -396,13 +377,6 @@ preregistartion.contact.phone=9999999999 # Determines to maintain iternal cycle & make sure value is not null (any value greater than zero) mosip.preregistration.auto.logout.ping=30 -## Not in use, to be removed after verification ----------------- -## UI Modularity config files (Not used yet) -## Determines which stages of Pre-Registration can be switched off and switched on -#preregistration.workflow.demographic=true/false -#preregistration.workflow.documentupload=true/false -#preregistration.workflow.booking=true/false - mosip.id.validation.identity.dateOfBirth=^\d{4}[\-\/\s]?((((0[13578])|(1[02]))[\-\/\s]?(([0-2][0-9])|(3[01])))|(((0[469])|(11))[\-\/\s]?(([0-2][0-9])|(30)))|(02[\-\/\s]?[0-2][0-9]))$ mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ @@ -435,10 +409,8 @@ spring.cache.type=none mosip.preregistration.appointment.getavailablity.url=http://prereg-booking.prereg/preregistration/v1/appointment/availability/{registrationCenterId} mosip.preregistration.appointment.book.url=http://prereg-booking.prereg/preregistration/v1/appointment/{preRegistrationId} mosip.preregistration.appointment.multi.book.url=http://prereg-booking.prereg/preregistration/v1/appointment - mosip.preregistration.applications.status.get = mosip.preregistration.applications.status mosip.preregistration.applications.details.get = mosip.preregistration.applications.detail.info - mosip.preregistration.uispec.latest=mosip.preregistration.uispec.latest mosip.preregistration.uispec.all=mosip.preregistration.uispec.all From a83cef8f32f5198efc7035006126e02957c17b5a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 14:52:09 +0530 Subject: [PATCH 0251/1358] Identity json updated. --- pre-registration-identity-mapping.json | 44 ++++++++++++++++++-------- 1 file changed, 31 insertions(+), 13 deletions(-) diff --git a/pre-registration-identity-mapping.json b/pre-registration-identity-mapping.json index b96f70b1b93..dc80849d182 100644 --- a/pre-registration-identity-mapping.json +++ b/pre-registration-identity-mapping.json @@ -1,14 +1,32 @@ { - "identity": { - "name": { - "value": "fullName", - "isMandatory" : true - }, - "proofOfAddress": { - "value" : "proofOfAddress" - }, - "postalCode": { - "value" : "postalCode" - } - } -} + "identity": { + "name": { + "value": "fullName", + "isMandatory": true + }, + "proofOfAddress": { + "value": "proofOfAddress" + }, + "postalCode": { + "value": "postalCode" + }, + "dateOfBirth": { + "value": "dateOfBirth" + }, + "gender": { + "value": "gender" + }, + "preferredLanguage": { + "value": "preferredLang" + }, + "locationHierarchyForProfiling": { + "value": "region,province,city" + }, + "phone": { + "value": "phone" + }, + "email": { + "value": "email" + } + } +} From bbdac7e4652832f483cbde9b3018291ed82b7542 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 15:21:38 +0530 Subject: [PATCH 0252/1358] Minor format fix. --- pre-registration-identity-mapping.json | 60 +++++++++++++------------- 1 file changed, 30 insertions(+), 30 deletions(-) diff --git a/pre-registration-identity-mapping.json b/pre-registration-identity-mapping.json index dc80849d182..839aee24c35 100644 --- a/pre-registration-identity-mapping.json +++ b/pre-registration-identity-mapping.json @@ -1,32 +1,32 @@ { - "identity": { - "name": { - "value": "fullName", - "isMandatory": true - }, - "proofOfAddress": { - "value": "proofOfAddress" - }, - "postalCode": { - "value": "postalCode" - }, - "dateOfBirth": { - "value": "dateOfBirth" - }, - "gender": { - "value": "gender" - }, - "preferredLanguage": { - "value": "preferredLang" - }, - "locationHierarchyForProfiling": { - "value": "region,province,city" - }, - "phone": { - "value": "phone" - }, - "email": { - "value": "email" - } - } + "identity": { + "name": { + "value": "fullName", + "isMandatory": true + }, + "proofOfAddress": { + "value": "proofOfAddress" + }, + "postalCode": { + "value": "postalCode" + }, + "dateOfBirth": { + "value": "dateOfBirth" + }, + "gender": { + "value": "gender" + }, + "preferredLanguage": { + "value": "preferredLang" + }, + "locationHierarchyForProfiling": { + "value": "region,province,city" + }, + "phone": { + "value": "phone" + }, + "email": { + "value": "email" + } + } } From 7bb1d467c22f1e1fc33d82ce242d3a05208c817e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 20:46:44 +0530 Subject: [PATCH 0253/1358] Identity prop updated. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index b7917ba7d3e..f10870f3f78 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -313,7 +313,7 @@ mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalida global.config.file=application-${spring.profiles.active}.properties pre.reg.config.file=pre-registration-${spring.profiles.active}.properties ## Mapping file for Pre-registration & ID Object -preregistartion.config.identityjson=pre-registration-identity-mapping.json +preregistartion.config.identityjson=identity-mapping.json # UI scheme json preregistration.demographic.idschema-json-filename=pre-registration-demographic.json From a3254ddb7728e124de79f04ad6751e5478d5e787 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 1 Oct 2021 20:50:09 +0530 Subject: [PATCH 0254/1358] Unused file removed. --- pre-registration-identity-mapping.json | 32 -------------------------- 1 file changed, 32 deletions(-) delete mode 100644 pre-registration-identity-mapping.json diff --git a/pre-registration-identity-mapping.json b/pre-registration-identity-mapping.json deleted file mode 100644 index 839aee24c35..00000000000 --- a/pre-registration-identity-mapping.json +++ /dev/null @@ -1,32 +0,0 @@ -{ - "identity": { - "name": { - "value": "fullName", - "isMandatory": true - }, - "proofOfAddress": { - "value": "proofOfAddress" - }, - "postalCode": { - "value": "postalCode" - }, - "dateOfBirth": { - "value": "dateOfBirth" - }, - "gender": { - "value": "gender" - }, - "preferredLanguage": { - "value": "preferredLang" - }, - "locationHierarchyForProfiling": { - "value": "region,province,city" - }, - "phone": { - "value": "phone" - }, - "email": { - "value": "email" - } - } -} From fa1b6249e5c458f1cd95ff3b3c97fce0bdf81a77 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 4 Oct 2021 17:15:10 +0530 Subject: [PATCH 0255/1358] IDA updated. --- id-authentication-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f858fba9618..34f58f37fd7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -265,6 +265,7 @@ ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED ida-topic-pmp-policy-updated=POLICY_UPDATED ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS +ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE ## IDA cache ## IDA cache Time to live in days - To clear cache scheduled based on the days provided. From 787ae4224548d4e1f2de226419de96948296f2be Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 4 Oct 2021 17:17:28 +0530 Subject: [PATCH 0256/1358] IDA prop updated. --- id-authentication-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 34f58f37fd7..74b68fe3c7e 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -97,6 +97,11 @@ ida.mapping.json.filename=id-authentication-mapping.json mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${ida.mapping.json.filename} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} +# The attribute name in the Mapping Json used to fetch Anonymous profile preferred language attribute +mosip.preferred.language.attribute.name=preferredLanguage +# The attribute name in the Mapping Json used to fetch Anonymous profile location attributes +mosip.location.profile.attribute.name=locationProfile + ## Biosdk. Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=http://biosdk-service.biosdk/biosdk-service From a2e911be2e8c2d5100b7a625c358da287904e83a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 5 Oct 2021 06:57:03 +0530 Subject: [PATCH 0257/1358] [MOSIP-17836] Resident properties updated. --- resident-default.properties | 51 +++++++++++++++++++------------------ 1 file changed, 26 insertions(+), 25 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 8927519d930..ca951f7b07d 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -1,3 +1,8 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# mosip.mosip.resident.client.secret +# mosip.mosip.regproc.client.secret #--------------ID and Version -------------- auth.internal.id=mosip.identity.auth.internal auth.internal.version=1.0 @@ -22,18 +27,18 @@ vid.revoke.id=mosip.vid.deactivate resident.revokevid.id=mosip.resident.vidstatus PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT -DECRYPT_API_URL=http://keymanager.keymanager/v1/keymanager/decrypt +DECRYPT_API_URL=http://keymanager.kernel/v1/keymanager/decrypt -#-------------TOKEN GENERATION---------------- +## Token generation token.request.id=io.mosip.resident resident.appid=resident token.request.version=1.0 resident.clientId=mosip-resident-client -resident.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +resident.secretKey=${mosip.mosip.resident.client.secret} +# TODO. Below prop token.request.issuerUrl=${mosip.keycloak.issuerUrl} -#--------------URI-------------------------- -#Auth Services +## Auth Services KERNELAUTHMANAGER=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=http://regproc-print-service/registrationprocessor/v1/print/uincard INTERNALAUTH=http://ida-internal.ida/idauthentication/v1/internal/auth @@ -41,29 +46,28 @@ INTERNALAUTHTRANSACTIONS=http://ida-internal.ida/idauthentication/v1/internal/au KERNELENCRYPTIONSERVICE=http://ida-internal.ida/idauthentication/v1/internal/getCertificate IDAUTHCREATEVID=http://vid.idrepo/idrepository/v1/vid IDAUTHREVOKEVID=http://vid.idrepo/idrepository/v1/vid/deactivate -#Notification service +## Notification service IDREPOGETIDBYUIN=http://identity.idrepo/idrepository/v1/identity/idvid IDREPOGETIDBYRID=http://identity.idrepo/idrepository/v1/identity/idvid GETUINBYVID=http://vid.idrepo/idrepository/v1/vid resident.notification.emails=mosiptestuser@gmail.com resident.notification.message=Notification has been sent to the provided contact detail(s) -#templates +## templates MASTER=http://masterdata.kernel/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters -RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid +RIDGENERATION=http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid CREATEVID=http://vid.idrepo/idrepository/v1/vid -IDREPOSITORY=http://idrepo-identity-service/idrepository/v1/identity/ -ENCRYPTURL=http://keymanager.keymanager/v1/keymanager/encrypt +IDREPOSITORY=http://identity.idrepo/idrepository/v1/identity/ +ENCRYPTURL=http://keymanager.kernel/v1/keymanager/encrypt MIDSCHEMAURL=http://syncdata.kernel/v1/syncdata/latestidschema # DMZ service call -dmz.ingress.base.url=http://dmz.ingress:30080 -SYNCSERVICE=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/registrationpackets -SMSNOTIFIER=http://kernel-notification-service/v1/notifier/sms/send -EMAILNOTIFIER=http://kernel-notification-service/v1/notifier/email/send -AUTHTYPESTATUSUPDATE=http://idrepo-identity-service/idrepository/v1/identity/authtypes/status +SYNCSERVICE=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=http://regproc-group1/registrationprocessor/v1/packetreceiver/registrationpackets +SMSNOTIFIER=http://notifier.kernel/v1/notifier/sms/send +EMAILNOTIFIER=http://notifier.kernel/v1/notifier/email/send +AUTHTYPESTATUSUPDATE=http://identity.idrepo/idrepository/v1/identity/authtypes/status #Regitstration processor reprint service #Registration status service REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search @@ -75,11 +79,11 @@ OTP_GEN_URL=http://ida-internal.ida/idauthentication/v1/internal/otp CREDENTIAL_STATUS_URL=http://credentialrequest.idrepo/v1/credentialrequest/get/ CREDENTIAL_REQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator CREDENTIAL_CANCELREQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/cancel/ -CREDENTIAL_TYPES_URL=http://idrepo-credential-service/v1/credentialservice/types -PARTNER_API_URL=http://pms-partner-manager-service/v1/partnermanager/partners -mosip.kernel.masterdata.audit-url=http://kernel-auditmanager-service/v1/auditmanager/audits +CREDENTIAL_TYPES_URL=http://credential.idrepo/v1/credentialservice/types +PARTNER_API_URL=http://pms-partner.pms/v1/partnermanager/partners +mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits -#----------------------config data--------------------- +## Config data resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' auth.types.allowed=demo,bio-Finger,bio-Iris,bio-FACE @@ -87,11 +91,8 @@ resident.identityjson=registration-processor-identity.json mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ --------Security properties----------------- -#CSRF switch +## Security mosip.security.csrf-enable:false - -#secure cookie switch mosip.security.secure-cookie:false IDSchema.Version=0.1 @@ -100,5 +101,5 @@ mosip.registration.processor.registration.sync.id=mosip.registration.sync id.repo.vidType=Perpetual token.request.appid=regproc token.request.clientId=mosip-regproc-client -token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +token.request.secretKey=${mosip.mosip.regproc.client.secret} objectstore.adapter.name=PosixAdapter From ea9182a80709205304b7a10fa123b46449b2bb08 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 5 Oct 2021 11:39:15 +0530 Subject: [PATCH 0258/1358] Updated for Resident. --- application-default.properties | 2 ++ resident-default.properties | 2 +- 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 4b59a2b910f..32ae9b20836 100644 --- a/application-default.properties +++ b/application-default.properties @@ -165,6 +165,8 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth-token-generator.rest.issuerUrl=${keycloak.host}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip + #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true diff --git a/resident-default.properties b/resident-default.properties index ca951f7b07d..89564d46ba9 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -35,7 +35,7 @@ resident.appid=resident token.request.version=1.0 resident.clientId=mosip-resident-client resident.secretKey=${mosip.mosip.resident.client.secret} -# TODO. Below prop +# Below is defined in application properties token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services From 6a78854ddec1e62d3ffe07d7ed08b6f8c90b6f08 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 8 Oct 2021 11:29:08 +0530 Subject: [PATCH 0259/1358] ID Auth updated. --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 74b68fe3c7e..7a7b1eec593 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -547,6 +547,6 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=https://${mosip.api.public.host} +mosip.ida.allowed.domain.uris=https://${mosip.api.public.host},https://${mosip.api.internal.host} # Biometrics attribute name present in data-share policy mosip.ida.credential.biometric.attribute.name=individualBiometrics From 2d0a753fb2a7ed8ca1d0670c28f6714dd955753c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 8 Oct 2021 12:24:51 +0530 Subject: [PATCH 0260/1358] IDA mapping json updated. --- id-authentication-mapping.json | 127 ++++++++++++++++++--------------- 1 file changed, 68 insertions(+), 59 deletions(-) diff --git a/id-authentication-mapping.json b/id-authentication-mapping.json index 33818b75f91..430504860af 100644 --- a/id-authentication-mapping.json +++ b/id-authentication-mapping.json @@ -1,61 +1,70 @@ { - "ida-mapping": { - "name": [ - "fullName" - ], - "dob": [ - "dateOfBirth" - ], - "age": [ - "dateOfBirth" - ], - "gender": [ - "gender" - ], - "phoneNumber": [ - "phone" - ], - "emailId": [ - "email" - ], - "addressLine1": [ - "addressLine1" - ], - "addressLine2": [ - "addressLine2" - ], - "addressLine3": [ - "addressLine3" - ], - "location1": [ - "city" - ], - "location2": [ - "region" - ], - "location3": [ - "province" - ], - "postalCode": [ - "postalCode" - ], - "fullAddress": [ - "addressLine1", - "addressLine2", - "addressLine3", - "city", - "region", - "province", - "postalCode" - ], - "iris": [ - "CBEFF" - ], - "fingerprint": [ - "CBEFF" - ], - "face": [ - "CBEFF" - ] - } + "ida-mapping": { + "name": [ + "fullName" + ], + "dob": [ + "dateOfBirth" + ], + "age": [ + "dateOfBirth" + ], + "gender": [ + "gender" + ], + "phoneNumber": [ + "phone" + ], + "emailId": [ + "email" + ], + "addressLine1": [ + "addressLine1" + ], + "addressLine2": [ + "addressLine2" + ], + "addressLine3": [ + "addressLine3" + ], + "location1": [ + "city" + ], + "location2": [ + "region" + ], + "location3": [ + "province" + ], + "postalCode": [ + "postalCode" + ], + "fullAddress": [ + "addressLine1", + "addressLine2", + "addressLine3", + "city", + "region", + "province", + "postalCode" + ], + "iris": [ + "CBEFF" + ], + "fingerprint": [ + "CBEFF" + ], + "face": [ + "CBEFF" + ], + "location4" : [ "zone" ], + "residenceStatus" : ["residenceStatus" ], + "preferredLanguage" : ["preferredLang" ], + "locationProfile": [ + "city", + "region", + "province", + "zone" + ] + } } From 19501333c59df7be8141cc634a057e3f204b6eb4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 8 Oct 2021 14:08:53 +0530 Subject: [PATCH 0261/1358] IDA updated. --- id-authentication-default.properties | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 7a7b1eec593..f1c18f5859e 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -238,7 +238,7 @@ subscriptions-delay-on-startup_millisecs=120000 # this property value is set to 0 that disables this workaround. # To enable the resubscrition scheduling, this property should be assigned with a positive # number like 1 * 60 * 60 = 3600 for one hour -ida-websub-resubscription-delay-secs=7200 +ida-websub-resubscription-delay-secs=43200 delay-to-pull-missing-credential-after-topic-subscription_millisecs=60000 @@ -328,8 +328,8 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) -otp.request.flooding.duration=3 -otp.request.flooding.max-count=3 +otp.request.flooding.duration=1 +otp.request.flooding.max-count=100 ## Notification templates ida.auth.mail.content.template=auth-email-content @@ -396,7 +396,7 @@ request.idtypes.allowed.internalauth=UIN,VID ## Encrypted Credential Attributes list ## The list of attributes in identity that are Zero Knowledge encrpted in IDA while storing the credential in DB. ## This list is used to identify the attributes to decrypt when fetching the records from DB -ida-zero-knowledge-encrypted-credential-attributes=individualBiometrics,fullName,dateOfBirth,phone,email,postalCode +ida-zero-knowledge-encrypted-credential-attributes=individualBiometrics,fullName,dateOfBirth,phone,email,postalCode,city,region,province,zone ## Cryptograpic/Signature verificate related configurations mosip.ida.internal.thumbprint-validation-required=false @@ -550,3 +550,5 @@ mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production mosip.ida.allowed.domain.uris=https://${mosip.api.public.host},https://${mosip.api.internal.host} # Biometrics attribute name present in data-share policy mosip.ida.credential.biometric.attribute.name=individualBiometrics + +biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX From 73406a9be3890ef73e9f94a29a86f6c73409f260 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 9 Oct 2021 11:39:51 +0530 Subject: [PATCH 0262/1358] Log level changed to DEBUG. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 32ae9b20836..014710a5db1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -350,7 +350,7 @@ mosip.stage.environment=Developer ## Log level logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO From bb04c7cd6afaac0fb86ab1ad43ccbefee8767b7a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 9 Oct 2021 13:18:35 +0530 Subject: [PATCH 0263/1358] IDA properties synchronized with qa-double-rc2 branch. --- id-authentication-default.properties | 58 ++++++++++++++++------------ 1 file changed, 33 insertions(+), 25 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f1c18f5859e..a9295a6097c 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -101,33 +101,35 @@ ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} mosip.preferred.language.attribute.name=preferredLanguage # The attribute name in the Mapping Json used to fetch Anonymous profile location attributes mosip.location.profile.attribute.name=locationProfile +# Used in Child Auth Filter +mosip.date-of-birth.attribute.name=dateOfBirth +# Used in DOB matching and Child Auth filter +mosip.date-of-birth.pattern=yyyy/MM/dd -## Biosdk. Url below assumes the biosdk server is running inside cluster in `biosdk` namespace +## Biosdk +## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=http://biosdk-service.biosdk/biosdk-service - -## The fully qualified Class Name of the BIO SDK API implemented for Finger modality -## This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -## The version of the BIO SDK API implemeted for Finger modality -mosip.biometric.sdk.provider.finger.version=0.9 -## The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. -## If the below default configuration is not configured, the one of the configured url will be used as the default URL. -## If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. -mosip.biometric.sdk.provider.finger.format.url.default=${mosip.biosdk.default.service.url} - -## The fully qualified Class Name of the BIO SDK API implemented for Iris modality -## This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -## The version of the BIO SDK API implemeted for Iris modality -mosip.biometric.sdk.provider.iris.version=0.9 -mosip.biometric.sdk.provider.iris.format.url.default=${mosip.biosdk.default.service.url} - -## The fully qualified Class Name of the BIO SDK API implemented for Face modality -## This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -## The version of the BIO SDK API implemeted for Face modality -mosip.biometric.sdk.provider.face.version=0.9 -mosip.biometric.sdk.provider.face.format.url.default=${mosip.biosdk.default.service.url} +# The fully qualified Class Name of the BIO SDK API implemented for Finger modality +# This class will be loaded in runtime, the containing jar should be available in classpath +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +# The version of the BIO SDK API implemeted for Finger modality +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.version=0.9 +# The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. +# If the below default configuration is not configured, the one of the configured url will be used as the default URL. +# If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} +# The fully qualified Class Name of the BIO SDK API implemented for Iris modality +# This class will be loaded in runtime, the containing jar should be available in classpath +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +# The version of the BIO SDK API implemeted for Iris modality +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} +# The fully qualified Class Name of the BIO SDK API implemented for Face modality +# This class will be loaded in runtime, the containing jar should be available in classpath +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +# The version of the BIO SDK API implemeted for Face modality +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} ## Kernel-Audit audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits @@ -552,3 +554,9 @@ mosip.ida.allowed.domain.uris=https://${mosip.api.public.host},https://${mosip.a mosip.ida.credential.biometric.attribute.name=individualBiometrics biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX + +## Roles +mosip.role.idauth.postotp=RESIDENT +mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.idauth.postverifyidentity=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.idauth.getauthtransactionsindividualid=RESIDENT From 27f97d24724fce490d88f4f19d24a4d18fdb5d40 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 11 Oct 2021 11:26:16 +0530 Subject: [PATCH 0264/1358] Resident prop corrected. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 89564d46ba9..d7b5af01aa7 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -57,7 +57,7 @@ MASTER=http://masterdata.kernel/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters -RIDGENERATION=http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid +RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid CREATEVID=http://vid.idrepo/idrepository/v1/vid IDREPOSITORY=http://identity.idrepo/idrepository/v1/identity/ ENCRYPTURL=http://keymanager.kernel/v1/keymanager/encrypt From 1138c17b1bd367f790acfe391a2858e7ed4800ac Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 11 Oct 2021 12:09:34 +0530 Subject: [PATCH 0265/1358] Resident properties updated. --- resident-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index d7b5af01aa7..a0733c94b45 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -23,7 +23,7 @@ resident.authunlock.id=mosip.resident.authunlock resident.authhistory.id=mosip.resident.authhistory mosip.resident.service.status.check.id=mosip.registration.external.status mosip.resident.service.status.check.version=1.0 -vid.revoke.id=mosip.vid.deactivate +vid.revoke.id=mosip.vid.update resident.revokevid.id=mosip.resident.vidstatus PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT @@ -99,7 +99,7 @@ IDSchema.Version=0.1 id.repo.update=mosip.id.update mosip.registration.processor.registration.sync.id=mosip.registration.sync id.repo.vidType=Perpetual -token.request.appid=regproc -token.request.clientId=mosip-regproc-client -token.request.secretKey=${mosip.mosip.regproc.client.secret} +token.request.appid=resident +token.request.clientId=mosip-resident-client +token.request.secretKey=${mosip.mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter From 193971c4668ac664de3637e46f5b67306950def8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 11 Oct 2021 12:47:13 +0530 Subject: [PATCH 0266/1358] Cleanup. --- kernel-default.properties | 77 --------------------------------------- 1 file changed, 77 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 17eba9d52c3..a51d96f99be 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -443,8 +443,6 @@ zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails ## Roles -#mosip.role.admin.masterdata.postgetapplicanttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,REGISTRATION_SUPERVISOR,PRE_REGISTRATION,REGISTRATION_OFFICER -#mosip.role.admin.masterdata.getapplicanttypeapplicantidlanguages=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN @@ -457,7 +455,6 @@ mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getblocklistedwordslangcode=INDIVIDUAL,ID_AUTHENTICATION,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN @@ -497,7 +494,6 @@ mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MA mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getdocumentcategories=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdocumentcategorieslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdocumentcategoriescode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN @@ -507,18 +503,14 @@ mosip.role.admin.masterdata.getdocumentcategoriesall=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getdocumenttypesdocumentcategorycode=INDIVIDUAL,ID_AUTHENTICATION,ZONAL_ADMIN,PARTNER,PARTNER_ADMIN,PRE_REGISTRATION,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdocumenttypesall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -#mosip.role.admin.masterdata.getdocumenttypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -#mosip.role.admin.masterdata.getdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,INDIVIDUAL,Default -#mosip.role.admin.masterdata.getdistinct=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN,Default mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN @@ -526,22 +518,14 @@ mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN - -#mosip.role.admin.masterdata.getexceptionalholidaysregistrationcenterid=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION - mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER - -#mosip.role.admin.masterdata.getgendertypes=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT -#mosip.role.admin.masterdata.getgendertypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getgendertypesvalidategendername=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,CENTRAL_ADMIN mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN - mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION @@ -553,43 +537,26 @@ mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,GLOBAL_ADMIN - -#mosip.role.admin.masterdata.getidtypeslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN - -#mosip.role.admin.masterdata.getindividualtypes=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN - -#mosip.role.admin.masterdata.getlanguages=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,Default mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,GLOBAL_ADMIN - -#mosip.role.admin.masterdata.getlocationslangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getlocationslocationcodelangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN -#mosip.role.admin.masterdata.getlocationsinfolocationcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN -#mosip.role.admin.masterdata.getlocationslocationhierarchy=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getlocationsimmediatechildrenlocationcodelangcode=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT,REGISTRATION_ADMIN -#mosip.role.admin.masterdata.getlocationsvalidatelocationname=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,GLOBAL_ADMIN - -#mosip.role.admin.masterdata.getlocationhierarchylevelslevellangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_PROCESSOR,INDIVIDUAL mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR -#mosip.role.admin.masterdata.getlocationhierarchylevelslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_PROCESSOR,INDIVIDUAL - mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR,RESIDENT mosip.role.admin.masterdata.getmachineslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.getmachines=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR @@ -601,9 +568,7 @@ mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN - mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN @@ -611,34 +576,26 @@ mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADM mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN - mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.postpacketrejectionreasonsreasoncategory=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR - mosip.role.admin.masterdata.postpacketresume=GLOBAL_ADMIN,REGISTRATION_ADMIN mosip.role.admin.masterdata.postpacketsearch=GLOBAL_ADMIN,REGISTRATION_ADMIN - mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR - mosip.role.admin.masterdata.postregistereddevices=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION @@ -660,11 +617,8 @@ mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_AD mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,GLOBAL_ADMIN - mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN - mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR - mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN @@ -673,19 +627,13 @@ mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR - mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getidschemaall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getidschemalatest=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT - -#mosip.role.admin.masterdata.gettemplates=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER -#mosip.role.admin.masterdata.gettemplateslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER -#mosip.role.admin.masterdata.gettemplateslangcodetemplatetypecode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PRE_REGISTRATION,AUTH,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,REGISTRATION_OFFICER,ID_AUTHENTICATION,INDIVIDUAL,PRE_REGISTRATION_ADMIN,PARTNER_ADMIN,AUTH_PARTNER,PARTNER mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN @@ -695,34 +643,24 @@ mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.gettemplatesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.gettemplatefileformatslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.patchtemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.posttemplatetypes=GLOBAL_ADMIN,ZONAL_ADMIN -#mosip.role.admin.masterdata.gettemplatetypescodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,ID_AUTHENTICATION,INDIVIDUAL,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_SUPERVISOR,DEVICE_MANAGER,DEVICE_MANAGER,AUTH_PARTNER,PARTNER,PARTNER_ADMIN,PRE_REGISTRATION -#mosip.role.admin.masterdata.gettemplatetypeslangcode=GLOBAL_ADMIN,ZONAL_ADMIN - -#mosip.role.admin.masterdata.gettitle=GLOBAL_ADMIN,ZONAL_ADMIN,ID_AUTHENTICATION,INDIVIDUAL,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_SUPERVISOR,DEVICE_MANAGER,DEVICE_MANAGER,AUTH_PARTNER,PARTNER,PARTNER_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION -#mosip.role.admin.masterdata.gettitlelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_OPERATOR,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.admin.masterdata.posttitle=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.gettitleall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.postuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.postuispecpublish=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.getuispecall=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -#mosip.role.admin.masterdata.getuispecdomainlatest=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT - mosip.role.admin.masterdata.getusersid=ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.getusers=ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.getusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN @@ -731,42 +669,27 @@ mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getuserdetails=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getuserssearch=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT - mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -#mosip.role.admin.masterdata.getvaliddocumentslanguagecode=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,RESIDENT,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,PARTNER,PARTNER_ADMIN,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -#mosip.role.admin.masterdata.getvaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,RESIDENT,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,PARTNER,PARTNER_ADMIN,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER - -#mosip.role.admin.masterdata.getweekdaysregistrationcenteridlangcode=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -#mosip.role.admin.masterdata.getworkingdaysregistrationcenteridlangcode=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -#mosip.role.admin.masterdata.getworkingdayslangcode=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION - mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,ZONAL_ADMIN -#mosip.role.admin.masterdata.getzonesleafslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN - mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN - -#Adding the property files of commons-kernel-key manager service. - mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL From b784b813db00e3f05dc6f6d783b36bdd699af9d6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 11 Oct 2021 12:55:04 +0530 Subject: [PATCH 0267/1358] Updated roles in kernel - copied all roles from qa-double-rc2 env. --- kernel-default.properties | 442 +++++++++++++++++++------------------- 1 file changed, 222 insertions(+), 220 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index a51d96f99be..9d31234f1fb 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -441,292 +441,294 @@ openapi.masterdata.servers[0].description=Admin Masterdata url #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails +auth.server.admin.offline.token.validate=false ## Roles -mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getapplicationtypeslangcode=RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER + +mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.getapplicationtypeslangcode=PRE_REGISTRATION_ADMIN,RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER +mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,CENTRAL_ADMIN +mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION +mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR +mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RESIDENT +mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT +mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.gettitleall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuispecall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getusercentermapping=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserdetails=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getusers=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusersid=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getuserssearch=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplatefileformats=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postbiometricattributes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN -mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategorieslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdocumentcategoriescode=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriesall=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesall=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,CENTRAL_ADMIN -mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION +mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR -mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR,RESIDENT -mosip.role.admin.masterdata.getmachineslangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getmachines=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postpacketrejectionreasonsreasoncategory=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postpacketresume=GLOBAL_ADMIN,REGISTRATION_ADMIN mosip.role.admin.masterdata.postpacketsearch=GLOBAL_ADMIN,REGISTRATION_ADMIN -mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postregistereddevices=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getidschemaall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getidschemalatest=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.gettemplatesall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatefileformatslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchtemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatetypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttitle=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettitleall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.postuispecpublish=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getuispecall=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getusersid=ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getusers=ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getuserdetails=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getuserssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION -mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION -mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postcsverifysign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT +mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER +mosip.role.kernel.getgetzktempcertificate=KEY_MIGRATION_ADMIN +mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT mosip.role.kernel.postcssign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postcsverifysign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postdecryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postencryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postdecryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postencryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postgeneratesymmetrickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postuploadotherdomaincertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postuploadcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postencryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postencryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postgeneratecsr=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postgeneratemasterkeyobjecttype=KEY_MAKER,TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postgeneratesymmetrickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postmigratebasekey=KEY_MIGRATION_ADMIN -mosip.role.kernel.getgetzktempcertificate=KEY_MIGRATION_ADMIN mosip.role.kernel.postmigratezkkeys=KEY_MIGRATION_ADMIN -mosip.role.kernel.postverifycertificatetrust=MS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER -mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER -mosip.role.kernel.postuploadpartnercertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL -mosip.role.kernel.postuploadcacertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL +mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadcacertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL +mosip.role.kernel.postuploadcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadotherdomaincertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadpartnercertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL mosip.role.kernel.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT -mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postverifycertificatetrust=MS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postzkreencryptrandomkey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT +mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL From a321ab1607c0781a51635f08b20c6ebabdab00c1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 11 Oct 2021 22:23:44 +0530 Subject: [PATCH 0268/1358] Idrepo updated. --- id-repository-default.properties | 46 +++++++++++++++++++++++++++++++- 1 file changed, 45 insertions(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 244b7e4728e..b06198babab 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -115,6 +115,9 @@ mosip.idrepo.vid.policy-schema-url=${mosip.idrepo.mosip-config-url}mosip-vid-pol # VID policy based on which VID is created mosip.idrepo.vid.policy-file-url=${mosip.idrepo.mosip-config-url}mosip-vid-policy.json +# Default type of VID to be created automatically while publishing UIN +mosip.idrepo.draft-vid.default-type-to-create=PERPETUAL + ## Rest servies mosip.idrepo.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST @@ -189,6 +192,16 @@ mosip.idrepo.uin-generator.rest.httpMethod=GET mosip.idrepo.uin-generator.rest.headers.mediaType=application/json mosip.idrepo.uin-generator.rest.timeout=100 +mosip.idrepo.draft-vid.rest.uri=http://vid.idrepo/idrepository/v1/draft/vid +mosip.idrepo.draft-vid.rest.httpMethod=POST +mosip.idrepo.draft-vid.rest.headers.mediaType=application/json +mosip.idrepo.draft-vid.rest.timeout=100 + +mosip.idrepo.update-vid.rest.uri=http://vid.idrepo/idrepository/v1/vid/{vid} +mosip.idrepo.update-vid.rest.httpMethod=PATCH +mosip.idrepo.update-vid.rest.headers.mediaType=application/json +mosip.idrepo.update-vid.rest.timeout=100 + ## Credential request generator mosip.credential.service.database.hostname=postgres-postgresql.postgres mosip.credential.service.database.port=5432 @@ -271,7 +284,7 @@ mosip.credential.service.application.id=PARTNER mosip.credential.service.includeCertificateHash=true mosip.credential.service.includeCertificate=true mosip.credential.service.includePayload=false -mosip.credential.service.share.prependThumbprint=true +mosip.credential.service.share.prependThumbprint=false mosip.credential.service.retry.maxAttempts=3 mosip.credential.service.retry.maxDelay=100 @@ -334,3 +347,34 @@ auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false + +# Roles +mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST +mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST +mosip.role.idrepo.credentialrequest.getgetrequestid=CREDENTIAL_REQUEST +mosip.role.idrepo.credentialrequest.getgetrequestids=CREDENTIAL_REQUEST +mosip.role.idrepo.credentialrequest.putretriggerrequestid=CREDENTIAL_REQUEST + +mosip.role.idrepo.credentialservice.postissue=CREDENTIAL_REQUEST + +mosip.role.idrepo.identity.postidrepo=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.getidvidid=REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION +mosip.role.idrepo.identity.patchidrepo=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.getauthtypesstatusindividualidtypeindividualid=RESIDENT +mosip.role.idrepo.identity.postauthtypesstatus=RESIDENT +mosip.role.idrepo.identity.postdraftcreateregistrationId=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.patchdraftupdateregistrationId=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.getdraftpublishregistrationId=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.draftregistrationId=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR + +mosip.role.idrepo.vid.postvid=RESIDENT,REGISTRATION_PROCESSOR +mosip.role.idrepo.vid.getvid=REGISTRATION_PROCESSOR,ID_AUTHENTICATION,RESIDENT +mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR +mosip.role.idrepo.vid.patchvid=ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT +mosip.role.idrepo.vid.postvidregenerate=RESIDENT +mosip.role.idrepo.vid.postviddeactivate=RESIDENT +mosip.role.idrepo.vid.postvidreactivate=RESIDENT +mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR From d5eedb8fd00a1556d599ba70f2113a79ba4d8681 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 12 Oct 2021 12:55:37 +0530 Subject: [PATCH 0269/1358] Template language corrected. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 014710a5db1..b23515a26a0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -376,7 +376,7 @@ mosip.min-languages.count=2 mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara +mosip.default.template-languages=eng,fra # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang From 19ce6568915714f33320f16c91678d4e6e2e191b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 12 Oct 2021 14:09:33 +0530 Subject: [PATCH 0270/1358] Regclient properties updated. --- registration-default.properties | 24 +++++++++++++++++++++++- 1 file changed, 23 insertions(+), 1 deletion(-) diff --git a/registration-default.properties b/registration-default.properties index 2ba31980ae8..ce6fa9416a4 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -4,6 +4,9 @@ mosip.registration.num_of_fingerprint_retries=3 #Iris retry attempts. Possible values 1 to 10 mosip.registration.num_of_iris_retries=3 +#Face retry attempts. Possible values 1 to 10 +mosip.registration.num_of_face_retries=3 + #Maximum no. of days without running the Master Sync Job beyond which client is frozen for registration mosip.registration.masterSyncJob.frequency=190 @@ -198,6 +201,8 @@ mosip.registration.thumbs_fingerprint_threshold=40 #Thereshold Quality Value for IRIS capture mosip.registration.iris_threshold=60 +#Threshold Quality Value for Face capture +mosip.registration.face_threshold=90 #Maximum number of days where Registration or UIN Update or Lost UIN will be allowed without updating the Registration Client Software mosip.registration.softwareUpdateCheck_configured_frequency = 300 @@ -406,6 +411,9 @@ mosip.registration.mds.face.dedup.enable.flag=N #Storage Location of the Identity Schema. LOCAL specifies the schema is stored within the application. Should not be modified mosip.kernel.idobjectvalidator.file-storage-uri=LOCAL +#File name of the Identity Schema. Should not be modified +mosip.kernel.idobjectvalidator.schema-name=mosip-identity-json-schema.json + #Property Source of the Identity Schema. Should not be modified mosip.kernel.idobjectvalidator.property-source=LOCAL @@ -415,7 +423,10 @@ mosip.kernel.idobjectvalidator.property-source=LOCAL mosip.kernel.transliteration.arabic-language-code=ara #Language Code for French Language. Should not be modified -mosip.kernel.transliteration.franch-language-code = fra +mosip.kernel.transliteration.franch-language-code=fra + +#Language Code for French Language. Should not be modified +mosip.kernel.transliteration.english-language-code=eng #----For CBEFF Component---- @@ -477,3 +488,14 @@ mosip.registration.mdm.trust.domain.deviceinfo=DEVICE # Below age ranges map should contain proper age group name and age range, any overlap of the age # range will result in a random behaviour of tagging. In range, upper and lower values are inclusive. mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR':'6-17','ADULT':'18-200'} + +# Roles +mosip.role.registration.postauth=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.registration.getgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN +mosip.role.registration.postexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.postpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.postsearch=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN From 7d61bdfb728d734ecd896f93404e61d31e319a41 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 12 Oct 2021 15:45:17 +0530 Subject: [PATCH 0271/1358] Syncdata roles updated. --- syncdata-default.properties | 19 +++++++------------ 1 file changed, 7 insertions(+), 12 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index f7991350c4c..3456db70c97 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -414,22 +414,17 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=http://masterdata.kernel/v1/ # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false - ## Roles -mosip.role.admin.syncdata.getconfigs=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getglobalconfigs=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN -mosip.role.admin.syncdata.getregistrationcenterconfigregistrationcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getconfigurationregistrationcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getclientsettingsregcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getroles=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getuserdetailsregcenterid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getusersaltregid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.gettpmpublickeyverify=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getlatestidschema=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default,REGISTRATION_PROCESSOR,INDIVIDUAL,RESIDENT,ID_AUTHENTICATION +mosip.role.admin.syncdata.getlatestidschema=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,RESIDENT,ID_AUTHENTICATION mosip.role.admin.syncdata.getgetcertificate=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.gettpmpublickeymachineid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default -mosip.role.admin.syncdata.getconfigsmachinename=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.gettpmpublickeymachineid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default,REGISTRATION_PROCESSOR +mosip.role.admin.syncdata.getconfigskeyIndex=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getuserdetails=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getgetcacertificates=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getv2clientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default +mosip.role.admin.syncdata.getclientsettingsentityIdentifier=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,default +mosip.role.admin.syncdata.getscriptsscriptName=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,default + From d0d5b5bf193ab64f2d6691470f0a2419697f5b0a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 12 Oct 2021 16:20:53 +0530 Subject: [PATCH 0272/1358] Syncdata updated. --- syncdata-default.properties | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 3456db70c97..6784ed0ab37 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -1,7 +1,6 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# mosip.api.public.host # db.dbuser.password # keycloak.host # keycloak.admin.password @@ -10,6 +9,7 @@ # mosip.mosip.admin.client.secret # mosip.mosip.reg.client.secret # preregistration.mosip.prereg.client.secret +# mosip.api.internal.host # softhsm.kernel.pin @@ -414,6 +414,15 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=http://masterdata.kernel/v1/ # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false +mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.internal.host}/v1/syncdata/scripts/applicanttype.mvel +mosip.sync.entity.auth-required.APPLICANTTYPE.MVEL=true +mosip.sync.entity.auth-token.APPLICANTTYPE.MVEL=Authorization:OAUTH +mosip.sync.entity.encrypted.APPLICANTTYPE.MVEL=false +mosip.sync.entity.headers.APPLICANTTYPE.MVEL=Content-Type:text/plain;charset=UTF-8 +mosip.sync.entity.only-on-fullsync.APPLICANTTYPE.MVEL=false + +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + ## Roles mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From 21a07a3141c38fba6cfdc135917ea8aed9fb52c6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 12 Oct 2021 16:40:03 +0530 Subject: [PATCH 0273/1358] Corection in syncdata property. --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 6784ed0ab37..731b083e35f 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -414,7 +414,7 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=http://masterdata.kernel/v1/ # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false -mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.internal.host}/v1/syncdata/scripts/applicanttype.mvel +mosip.sync.entity.url.APPLICANTTYPE.MVEL=https://${mosip.api.internal.host}/v1/syncdata/scripts/applicanttype.mvel mosip.sync.entity.auth-required.APPLICANTTYPE.MVEL=true mosip.sync.entity.auth-token.APPLICANTTYPE.MVEL=Authorization:OAUTH mosip.sync.entity.encrypted.APPLICANTTYPE.MVEL=false From 99a8fb57e9c47c919d7246a0a49a3a694426c9fc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 12 Oct 2021 21:15:46 +0530 Subject: [PATCH 0274/1358] vid policy json updated. --- mosip-vid-policy.json | 53 +++++++++++++++++++++++++------------------ 1 file changed, 31 insertions(+), 22 deletions(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index 262cd99f55d..9261a14506f 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -1,24 +1,33 @@ { - "vidPolicies": [ - { - "vidType": "Perpetual", - "vidPolicy": { - "validForInMinutes": null, - "transactionsAllowed": null, - "instancesAllowed": 1, - "autoRestoreAllowed": true, - "restoreOnAction": "REVOKED" - } - }, - { - "vidType": "Temporary", - "vidPolicy": { - "validForInMinutes": 30, - "transactionsAllowed": 1, - "instancesAllowed": 5, - "autoRestoreAllowed": false, - "restoreOnAction": "REGENERATE" - } - } - ] + "vidPolicies": [{ + "vidType": "Perpetual", + "vidPolicy": { + "validForInMinutes": null, + "transactionsAllowed": null, + "instancesAllowed": 1, + "autoRestoreAllowed": true, + "restoreOnAction": "REVOKED" + } + }, + { + "vidType": "Temporary", + "vidPolicy": { + "validForInMinutes": 30, + "transactionsAllowed": 1, + "instancesAllowed": 5, + "autoRestoreAllowed": false, + "restoreOnAction": "REGENERATE" + } + }, + { + "vidType": "OneTimeUse", + "vidPolicy": { + "validForInMinutes": null, + "transactionsAllowed": 1, + "instancesAllowed": 1, + "autoRestoreAllowed": true, + "restoreOnAction": "REVOKED" + } + } + ] } From d3ed1151250a17a42dfdd03a2c90ce7393e44297 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 13 Oct 2021 11:01:57 +0530 Subject: [PATCH 0275/1358] [MOSIP-17836] Updated for 1.2.0. --- registration-processor-default.properties | 57 ++++++++++++++++++++++- 1 file changed, 55 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e972795b2e2..8972b3def82 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -234,9 +234,9 @@ mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_work registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=http://regproc-notifier.regproc/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo # Email template code for PauseForAdditionalInfo -mosip.regproc.notification_service.biometric_correction.email=RPR_PAUSED_FOR_ADDITIONAL_INFO_EMAIL +mosip.regproc.notification_service.biometric_correction.email=RPR_PAUSED_FOR_ADD_INFO_EMAIL # SMS template code for PauseForAdditionalInfo -mosip.regproc.notification_service.biometric_correction.sms=RPR_PAUSED_FOR_ADDITIONAL_INFO_SMS +mosip.regproc.notification_service.biometric_correction.sms=RPR_PAUSED_FOR_ADD_INFO_SMS # SUBJECT template code for PauseForAdditionalInfo mosip.regproc.notification_service.biometric_correction.subject=Requesting the additional details for progressing on the application of UIN @@ -813,3 +813,56 @@ mosip.kernel.salt-generator.tableName=crypto_salt # List of old reg client versions with others attribute not present but currently supported for registration, this is required to take care of the backward compatibility checks mosip.regproc.common.before-cbeff-others-attibute.reg-client-versions=1.1.3,1.1.4,1.1.5 + +regproc.notification.template.code.lost.uin.email=RPR_LOST_UIN_EMAIL +regproc.notification.template.code.lost.uin.sms=RPR_LOST_UIN_SMS +regproc.notification.template.code.lost.uin.sub=RPR_UIN_GEN_EMAIL_SUB +regproc.notification.template.code.uin.created.email=RPR_UIN_GEN_EMAIL +regproc.notification.template.code.uin.created.sms=RPR_UIN_GEN_SMS +regproc.notification.template.code.uin.created.sub=RPR_UIN_GEN_EMAIL_SUB +regproc.notification.template.code.uin.new.email=RPR_UIN_UPD_EMAIL +regproc.notification.template.code.uin.new.sms=RPR_UIN_UPD_SMS +regproc.notification.template.code.uin.new.sub=RPR_UIN_UPD_EMAIL_SUB +regproc.notification.template.code.uin.activate.email=RPR_UIN_REAC_EMAIL +regproc.notification.template.code.uin.activate.sms=RPR_UIN_REAC_SMS +regproc.notification.template.code.uin.activate.sub=RPR_UIN_REAC_EMAIL_SUB +regproc.notification.template.code.uin.deactivate.email=RPR_UIN_DEAC_EMAIL +regproc.notification.template.code.uin.deactivate.sms=RPR_UIN_DEAC_SMS +regproc.notification.template.code.uin.deactivate.sub=RPR_UIN_DEAC_EMAIL_SUB +regproc.notification.template.code.uin.update.email=RPR_UIN_UPD_EMAIL +regproc.notification.template.code.uin.update.sms=RPR_UIN_UPD_SMS +regproc.notification.template.code.uin.update.sub=RPR_UIN_UPD_EMAIL_SUB +regproc.notification.template.code.duplicate.uin.email=RPR_DUP_UIN_EMAIL +regproc.notification.template.code.duplicate.uin.sms=RPR_DUP_UIN_SMS +regproc.notification.template.code.duplicate.uin.sub=RPR_DUP_UIN_EMAIL_SUB +regproc.notification.template.code.technical.issue.email=RPR_TEC_ISSUE_EMAIL +regproc.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS +regproc.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB +regproc.notification.template.code.paused.for.additional.info.email=RPR_PAUSED_FOR_ADD_INFO_EMAIL +regproc.notification.template.code.paused.for.additional.info.sms=RPR_PAUSED_FOR_ADD_INFO_SMS +regproc.notification.template.code.paused.for.additional.info.sub=RPR_PAUSED_FOR_ADD_INFO_EMAIL_SUB + +regproc.packet.validator.notification.template.code.new.reg.email=RPR_RPV_SUC_EMAIL +regproc.packet.validator.notification.template.code.new.reg.sms=RPR_RPV_SUC_SMS +regproc.packet.validator.notification.template.code.new.reg.sub=RPR_RPV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.lost.uin.email=RPR_LPV_SUC_EMAIL +regproc.packet.validator.notification.template.code.lost.uin.sms=RPR_LPV_SUC_SMS +regproc.packet.validator.notification.template.code.lost.uin.sub=RPR_LPV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.reprint.uin.email=RPR_PPV_SUC_EMAIL +regproc.packet.validator.notification.template.code.reprint.uin.sms=RPR_PPV_SUC_SMS +regproc.packet.validator.notification.template.code.reprint.uin.sub=RPR_PPV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.activate.email=RPR_APV_SUC_EMAIL +regproc.packet.validator.notification.template.code.activate.sms=RPR_APV_SUC_SMS +regproc.packet.validator.notification.template.code.activate.sub=RPR_APV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.deactivate.email=RPR_DPV_SUC_EMAIL +regproc.packet.validator.notification.template.code.deactivate.sms=RPR_DPV_SUC_SMS +regproc.packet.validator.notification.template.code.deactivate.sub=RPR_DPV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.uin.update.email=RPR_UPV_SUC_EMAIL +regproc.packet.validator.notification.template.code.uin.update.sms=RPR_UPV_SUC_SMS +regproc.packet.validator.notification.template.code.uin.update.sub=RPR_UPV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.resident.update.email=RPR_RUPV_SUC_EMAIL +regproc.packet.validator.notification.template.code.resident.update.sms=RPR_RUPV_SUC_SMS +regproc.packet.validator.notification.template.code.resident.update.sub=RPR_RUPV_SUC_EMAIL_SUB +regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TEC_ISSUE_EMAIL +regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS +regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB From 733deffd543111c175b64fe59f21970350c7585f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 13 Oct 2021 11:15:57 +0530 Subject: [PATCH 0276/1358] [MOSIP-17836] Updated for 1.2.0. --- registration-processor-default.properties | 54 +++++++++-------------- 1 file changed, 22 insertions(+), 32 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8972b3def82..e26046e6f84 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -55,9 +55,8 @@ packet.default.source=id schema.default.fieldCategory=pvt,none # The IDSchemaVersion used to create packets in reg-proc IDSchema.Version=0.1 -## TODO: correct this -NGINXDMZURL=http://regproc-pktserver.regproc/ packet.info.storage.service=* +mosip.preferred-language.enabled=false ## Camel bridge # Url to cluster manager to enable this stage for joining the cluster in secure zone @@ -114,15 +113,22 @@ DEVICEVALIDATEHISTORY=http://pms-partner.pms/v1/partnermanager/deviceproviderman IDSCHEMA=${MASTER}/idschema/latest ## ID Repository Services -IDREPOSITORY=http://identity.idrepo/idrepository/v1/identity/ -IDREPOGETIDBYUIN=http://identity.idrepo/idrepository/v1/identity/idvid +IDENTITY=http://identity.idrepo +IDREPOSITORY=${IDENTITY}/idrepository/v1/identity/ +IDREPOGETIDBYUIN=${IDENTITY}/idrepository/v1/identity/idvid UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin -RETRIEVEIDENTITYFROMRID=http://identity.idrepo/idrepository/v1/identity/idvid -RETRIEVEIDENTITY=http://identity.idrepo/idrepository/v1/identity/idvid +RETRIEVEIDENTITYFROMRID=${IDENTITY}/idrepository/v1/identity/idvid +RETRIEVEIDENTITY=${IDENTITY}/idrepository/v1/identity/idvid CREATEVID=http://vid.idrepo/idrepository/v1/vid GETUINBYVID=http://vid.idrepo/idrepository/v1/idvid CREDENTIALREQUEST=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator GETVIDSBYUIN=http://vid.idrepo/idrepository/v1/vid/uin +IDREPOHASDRAFT=${IDENTITY}/idrepository/v1/identity/draft +IDREPOGETDRAFT=${IDENTITY}/idrepository/v1/identity/draft +IDREPOCREATEDRAFT=${IDENTITY}/idrepository/v1/identity/draft/create +IDREPOUPDATEDRAFT=${IDENTITY}/idrepository/v1/identity/draft/update +IDREPOPUBLISHDRAFT=${IDENTITY}/idrepository/v1/identity/draft/publish +IDREPOEXTRACTBIOMETRICS=${IDENTITY}/idrepository/v1/identity/draft/extractbiometrics/ ## Encrypt Services KEYMANAGER=http://keymanager.keymanager/ @@ -147,6 +153,7 @@ EMAILNOTIFIER=${NOTIFIER}/v1/notifier/email/send ## PMS PMS=http://pms-policy.pms/v1/policymanager/policies +PARTNERGETBIOEXTRACTOR=http://pms-partner.pms/v1/partnermanager/partners ## Registration status properties registration.processor.max.retry=10 @@ -224,7 +231,6 @@ registration.processor.identityjson=registration-processor-identity.json registration.processor.abis.json=registration-processor-abis.json registration.processor.demographic.identity=identity registration.processor.notification.emails= -registration.processor.print.textfile=registration-processor-print-text-file.json ## Notification service registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 @@ -254,10 +260,6 @@ registration.processor.queue.username=artemis registration.processor.queue.password=${activemq.password} registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ -registration.processor.queue.address = print-service -registration.processor.queue.printpostaladdress = postal-service - -registration.processor.document.category=idobject-document-category-mapping.json ## Packet validator registration.processor.applicant.type=applicanttype-document-mapping.json @@ -282,11 +284,6 @@ registration.processor.reprocess.days_of_month=* registration.processor.reprocess.months=* registration.processor.reprocess.days_of_week=* -## WorkflowAction api id -mosip.regproc.workflow.action.api-id=mosip.registration.processor.workflow.action -mosip.regproc.workflow.action.version=1.0 -mosip.regproc.workflow.action.hotlisted-tag=HOTLISTED -mosip.regproc.workflow.action.resumefrombeginning.stage=PacketUploaderStage #WorkflowAction service websub topic name mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event mosip.regproc.workflow.action.job.server.port=8026 @@ -336,6 +333,12 @@ mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service +mosip.regproc.workflow.manager.eventbus.kafka.commit.type=single +mosip.regproc.workflow.manager.eventbus.kafka.max.poll.records=100 +mosip.regproc.workflow.manager.eventbus.kafka.poll.frequency=100 +mosip.regproc.workflow.manager.eventbus.kafka.group.id=workflow-manager +mosip.regproc.workflow.manager.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} + #Service Ids #Audit request id @@ -429,18 +432,6 @@ mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka:9092 # Default base packages for stage beans to be scanned in a stage group mosip.regproc.mosip-stage-executor.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor,io.mosip.registartion.processor -# packet receiver stage -#Supported commmit config: auto, batch, single -mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single -mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 -mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 -mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage -mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver -mosip.regproc.packet.receiver.server.port=8081 -mosip.regproc.packet.receiver.eventbus.port=5711 -# Flag to disable the copying of tags from the packet manger to the message event -mosip.regproc.packet.receiver.message.tag.loading.disable=true - #Event bus address for anonymous profile mosip.anonymous.profile.eventbus.address=anonymous-profile-bus-in @@ -523,10 +514,6 @@ mosip.regproc.cmd-validator.device.allowed-digital-id-timestamp-variation=30 # Timestamp format followed in digital id and biometrics payload mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:mm:ss'Z' -mosip.registration.processor.validate-machine=true -mosip.registration.processor.validate-device=true -mosip.registration.processor.validate-center=true - ## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 @@ -866,3 +853,6 @@ regproc.packet.validator.notification.template.code.resident.update.sub=RPR_RUPV regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TEC_ISSUE_EMAIL regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB + +openapi.registrationProcessor.servers[0].url=http://${mosip.api.internal.host}/registrationprocessor/v1/registrationtransaction +openapi.registrationProcessor.servers[0].description=Registration Processor URL From 10cd06e2194a4a19750d16ba08b532360b513df2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 13 Oct 2021 11:25:47 +0530 Subject: [PATCH 0277/1358] Missing props added. --- registration-processor-default.properties | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e26046e6f84..b57c985d7a8 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -856,3 +856,14 @@ regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ openapi.registrationProcessor.servers[0].url=http://${mosip.api.internal.host}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL + +# TODO: Check these properties - they are missing for qa-double-rc2, but services fail if we don't add these. +# packet receiver stage +#Supported commmit config: auto, batch, single +mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single +mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 +mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 +mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage +mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver +mosip.regproc.packet.receiver.server.port=8081 +mosip.regproc.packet.receiver.eventbus.port=5711 From b381cfe617d11b9bff523f3820ca23b166fc2492 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 13 Oct 2021 16:06:33 +0530 Subject: [PATCH 0278/1358] Syncdata updated. --- syncdata-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/syncdata-default.properties b/syncdata-default.properties index 731b083e35f..f59b4c3c498 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -423,6 +423,9 @@ mosip.sync.entity.only-on-fullsync.APPLICANTTYPE.MVEL=false spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true +syncdata.cache.evict.delta-sync.cron=0 0/15 * * * * +syncdata.cache.snapshot.cron=0 0 23 * * * + ## Roles mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From 30979ea89356e03f1ae275c4619095a274d78d5b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 14 Oct 2021 17:35:31 +0530 Subject: [PATCH 0279/1358] IDA internal property file added. --- id-authentication-default.properties | 2 -- id-authentication-internal-default.properties | 16 ++++++++++++++++ 2 files changed, 16 insertions(+), 2 deletions(-) create mode 100644 id-authentication-internal-default.properties diff --git a/id-authentication-default.properties b/id-authentication-default.properties index a9295a6097c..e3922dd78bc 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -229,8 +229,6 @@ ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servle ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate ## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties new file mode 100644 index 00000000000..2a9c587a184 --- /dev/null +++ b/id-authentication-internal-default.properties @@ -0,0 +1,16 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# mosip.api.internal.url + +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles + +# ********* ADMIN Configurations ************ +# Configure N time period threshold for accepting auth/OTP/KYC request for a country +authrequest.received-time-allowed.seconds=120 +# Configuration for +/- time period adjustment in minutes for the request time validation, so that +# The requests originating from a system that is not in time-sync will be accepted for the time period +authrequest.received-time-adjustment.seconds=30 +#Configuration for time period difference between each biometric segment and digital Id capture +authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 From 2534887e97158cf019c97f545d05b76e21ec4114 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 26 Oct 2021 10:10:27 +0530 Subject: [PATCH 0280/1358] IDA properties updated from develop2 branch. --- id-authentication-default.properties | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index e3922dd78bc..af6f0385b95 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -553,6 +553,20 @@ mosip.ida.credential.biometric.attribute.name=individualBiometrics biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX +#The list of attributes in identity that are to be decrypted by default +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang + +#------ Un-encrypted Credential Attributes list ----------- +#The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). +#These attributes will not be decrypted when fetching the records from IDA DB for Authentication/EKYC/OTP requests. +#By default all attributes are assumed to be Zero Knowledge encrypted. +#Specify the attributes here only if they are not encrypted as per the datashare policy. +ida-zero-knowledge-unencrypted-credential-attributes= + +#openapi properties to sort tags and operations in Id Authentication +springdoc.swagger-ui.tagsSorter=alpha +springdoc.swagger-ui.operationsSorter=alpha + ## Roles mosip.role.idauth.postotp=RESIDENT mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT From 974a7833dc335b1eef94fb6bc114d64cfbb02c9b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 26 Oct 2021 17:39:38 +0530 Subject: [PATCH 0281/1358] IDA prop updated. --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index af6f0385b95..6018163b427 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -93,7 +93,7 @@ mosip.ida.request.timeout.secs=10 mosip.ida.request.mediaType=application/json ## IDA mapping -ida.mapping.json.filename=id-authentication-mapping.json +ida.mapping.json.filename=identity-mapping.json mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${ida.mapping.json.filename} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} From a80f1ea405af8ef2f65bedbf3269f6ccfac9bac3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 27 Oct 2021 10:15:07 +0530 Subject: [PATCH 0282/1358] IDA prop added. --- id-authentication-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 6018163b427..e5305790348 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -229,6 +229,8 @@ ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servle ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate ## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist +## Masterdata templates +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 From 32b93334d6ce8fc3a64f1ccec7b895fbac8b3e22 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 27 Oct 2021 10:18:50 +0530 Subject: [PATCH 0283/1358] IDA prop added. --- id-authentication-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index e5305790348..ce4a62046bf 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -231,6 +231,7 @@ ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.contex ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist ## Masterdata templates ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 From 2bcc55b1913044b25ef4ef165a067e2c0bd85578 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 28 Oct 2021 09:55:38 +0530 Subject: [PATCH 0284/1358] All flows in regproc enabled. --- registration-processor-default.properties | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b57c985d7a8..f7026660c6f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -64,9 +64,7 @@ cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow -## TODO: Revert to all flows -#camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml -camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml +camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml # main processor used in stages registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE From f5410d5c298befe3a7c7b2264bda528f82afd17f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 29 Oct 2021 10:16:55 +0530 Subject: [PATCH 0285/1358] Admin prop reverted. --- admin-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index afff909e674..58fc26613c8 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -181,9 +181,9 @@ mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} -tempuri=https://admin.v3box1.mosip.net -#mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ -mosip.admin-services.redirecturi=${tempuri}/v1/admin/login-redirect/ +#tempuri=https://admin.v3box1.mosip.net +#mosip.admin-services.redirecturi=${tempuri}/v1/admin/login-redirect/ +mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth From afcd0e4f67b528f5bcd1b04024b3d6976b236b81 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 29 Oct 2021 10:43:30 +0530 Subject: [PATCH 0286/1358] Admin prop corrected. --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 58fc26613c8..21e3169bb95 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -202,8 +202,8 @@ mosip.security.secure-cookie=false mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} -#mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ -mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ +mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ +#mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code From cd047e48610a0c0f2b28cfd63810a877e4831ac1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 29 Oct 2021 11:58:40 +0530 Subject: [PATCH 0287/1358] Kernel roles updated. --- kernel-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/kernel-default.properties b/kernel-default.properties index 9d31234f1fb..e795656e9dd 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -732,3 +732,4 @@ mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_A mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postzkreencryptrandomkey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN From 88cf559d6cf1dc0a2a26b0219d923a3a2c1df90a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 29 Oct 2021 12:17:50 +0530 Subject: [PATCH 0288/1358] Admin roles updated. --- admin-default.properties | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 21e3169bb95..477ba0e12f6 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -217,3 +217,10 @@ regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 KEYBASEDTOKENAPI=${authmanager.base.url}/authenticate/clientidsecretkey + +# Roles +mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.postbulkupload=GLOBAL_ADMIN +mosip.role.admin.getbulkuploadtranscationtranscationid=GLOBAL_ADMIN +mosip.role.admin.getbulkuploadgetalltransactions=GLOBAL_ADMIN +mosip.role.admin.postauditmanagerlog=GLOBAL_ADMIN,ZONAL_ADMIN From 11337e1eea6529a03b08c9ac3d2ec14ac96758e0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 3 Nov 2021 10:33:21 +0530 Subject: [PATCH 0289/1358] Token param updated. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index e795656e9dd..1afb8224de0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -441,7 +441,7 @@ openapi.masterdata.servers[0].description=Admin Masterdata url #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails -auth.server.admin.offline.token.validate=false +auth.server.admin.offline.token.validate=true ## Roles From aa2d40296e3001bcdc8a306a8ac04ea8ced61e47 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 3 Nov 2021 15:11:01 +0530 Subject: [PATCH 0290/1358] IAM adapter properties updated. --- admin-default.properties | 5 +++++ id-repository-default.properties | 4 ++++ kernel-default.properties | 6 +++++- 3 files changed, 14 insertions(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 477ba0e12f6..2033be88f80 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -218,6 +218,11 @@ regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 KEYBASEDTOKENAPI=${authmanager.base.url}/authenticate/clientidsecretkey +# IAM adapter +mosip.iam.adapter.appid=admin +mosip.iam.adapter.clientid=mosip-admin-client +mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} + # Roles mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.postbulkupload=GLOBAL_ADMIN diff --git a/id-repository-default.properties b/id-repository-default.properties index b06198babab..d9b8742d23e 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -348,6 +348,10 @@ auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false +mosip.iam.adapter.appid.id-repository=regproc +mosip.iam.adapter.clientid.id-repository=mosip-regproc-client +mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.regproc.client.secret} + # Roles mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST diff --git a/kernel-default.properties b/kernel-default.properties index 1afb8224de0..e7e09710fda 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -441,7 +441,11 @@ openapi.masterdata.servers[0].description=Admin Masterdata url #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails -auth.server.admin.offline.token.validate=true +auth.server.admin.offline.token.validate=false + +mosip.iam.adapter.appid=admin +mosip.iam.adapter.clientid=mosip-admin-client +mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} ## Roles From cf399c7665d050d449da46da51c56ea2705a4366 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 3 Nov 2021 15:18:24 +0530 Subject: [PATCH 0291/1358] Realm id prop updated. --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index b23515a26a0..4241efe6806 100644 --- a/application-default.properties +++ b/application-default.properties @@ -171,6 +171,7 @@ mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} ## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING @@ -383,3 +384,4 @@ mosip.default.user-preferred-language-attribute=preferredLang # Path to identity mapping json file mosip.identity.mapping-file=${mosip.kernel.xsdstorage-uri}/identity-mapping.json + From 0dd32c0aeed9a3932db0e51ebfb74a7f0cf10285 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 3 Nov 2021 15:25:00 +0530 Subject: [PATCH 0292/1358] auth.server prop updated. --- admin-default.properties | 1 + application-default.properties | 2 ++ data-share-default.properties | 2 ++ hotlist-default.properties | 2 ++ id-repository-default.properties | 3 +++ kernel-default.properties | 2 ++ partner-management-default.properties | 1 + pre-registration-default.properties | 1 + syncdata-default.properties | 1 + 9 files changed, 15 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 2033be88f80..14ca78b0dda 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -29,6 +29,7 @@ mosip.admin.app-id=admin mosip.kernel.signature.cryptomanager-encrypt-url=http://keymanager.keymanager/v1/keymanager/private/encrypt auth.server.validate.url=${authmanager.base.url}/authorize/admin/validateToken auth.server.refreshToken.url=${authmanager.base.url}/authorize/admin/refreshToken +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client auth.role.prefix=ROLE_ auth.header.name=Authorization diff --git a/application-default.properties b/application-default.properties index 4241efe6806..8b0b8946753 100644 --- a/application-default.properties +++ b/application-default.properties @@ -164,6 +164,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.issuer.uri=${keycloak.host}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.host}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip @@ -385,3 +386,4 @@ mosip.default.user-preferred-language-attribute=preferredLang # Path to identity mapping json file mosip.identity.mapping-file=${mosip.kernel.xsdstorage-uri}/identity-mapping.json + diff --git a/data-share-default.properties b/data-share-default.properties index 0f4f613197a..b82c3b9fceb 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -31,3 +31,5 @@ mosip.data.share.includeCertificate=false mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=true + +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client diff --git a/hotlist-default.properties b/hotlist-default.properties index c440e8e486a..935ba93f93c 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -69,3 +69,5 @@ kernel.retry.traverse.root.cause.enabled=false kernel.retry.retryable.exceptions=io.mosip.hotlist.exception.HotlistRetryException #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= + +auth.server.admin.allowed.audience=mosip-regproc-client diff --git a/id-repository-default.properties b/id-repository-default.properties index d9b8742d23e..412acb237c8 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -352,6 +352,8 @@ mosip.iam.adapter.appid.id-repository=regproc mosip.iam.adapter.clientid.id-repository=mosip-regproc-client mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.regproc.client.secret} +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client + # Roles mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST @@ -382,3 +384,4 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT mosip.role.idrepo.vid.postviddeactivate=RESIDENT mosip.role.idrepo.vid.postvidreactivate=RESIDENT mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR + diff --git a/kernel-default.properties b/kernel-default.properties index e7e09710fda..0d90668d1a3 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -292,6 +292,7 @@ kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken + ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy @@ -442,6 +443,7 @@ openapi.masterdata.servers[0].description=Admin Masterdata url zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client diff --git a/partner-management-default.properties b/partner-management-default.properties index b149114dd31..47601fe8b88 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -146,6 +146,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token diff --git a/pre-registration-default.properties b/pre-registration-default.properties index f10870f3f78..b3aae390e62 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -246,6 +246,7 @@ appId=prereg kernel.auth.env=http://authmanager.kernel kernel.auth.contextpath=authmanager auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client ## PRID service kernel.prid.env=http://pridgenerator.kernel diff --git a/syncdata-default.properties b/syncdata-default.properties index f59b4c3c498..7b87974e3ca 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -300,6 +300,7 @@ kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 From 018fd385b466acaba5bebb84065f16b7e339b301 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 8 Nov 2021 12:55:09 +0530 Subject: [PATCH 0293/1358] Reprocess prop corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f7026660c6f..086cc6b525e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -270,7 +270,7 @@ mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring. registration.processor.reprocess.fetchsize=100 # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=30 +registration.processor.reprocess.elapse.time=7200 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From f33d226d4e92b0417d46c613ccc24f7955a56202 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 8 Nov 2021 16:37:57 +0530 Subject: [PATCH 0294/1358] Reprocess prop updated. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 086cc6b525e..b0968b8c2e6 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -270,7 +270,7 @@ mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring. registration.processor.reprocess.fetchsize=100 # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=7200 +registration.processor.reprocess.elapse.time=120 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From 12afe11389741d09f2d524a55b900124ebe2427b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 9 Nov 2021 08:08:24 +0530 Subject: [PATCH 0295/1358] Biometric correction camel xml added. --- ...el-routes-biometric-correction-default.xml | 225 ++++++++++++++++++ 1 file changed, 225 insertions(+) create mode 100644 registration-processor-camel-routes-biometric-correction-default.xml diff --git a/registration-processor-camel-routes-biometric-correction-default.xml b/registration-processor-camel-routes-biometric-correction-default.xml new file mode 100644 index 00000000000..46f127d744e --- /dev/null +++ b/registration-processor-camel-routes-biometric-correction-default.xml @@ -0,0 +1,225 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <route id="packet-reciever-->securezone-notification biometric_correction route"> + <from uri="eventbus://packet-receiver-biometric_correction-bus-out" /> + <log message="packet-reciever-->securezone-notification biometric_correction ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> + <route id="securezone-notification-->packet-uploader biometric_correction route"> + <from uri="eventbus://securezone-notification-biometric_correction-bus-out" /> + <log message="securezone-notification-->packet-uploader biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected-without-parent-flow" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-uploader-->packet-validator biometric_correction route"> + <from uri="eventbus://packet-uploader-biometric_correction-bus-out" /> + <log message="packet-uploader-->packet-validator biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-validator-->packet-classifier biometric_correction route"> + <from uri="eventbus://packet-validator-biometric_correction-bus-out" /> + <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-classifier-->cmd-validator biometric_correction route"> + <from uri="eventbus://packet-classifier-biometric_correction-bus-out" /> + <log message="packet-classifier-->cmd-validator biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://c-m-d-validator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="cmd-validator-->operator-validator biometric_correction route"> + <from uri="eventbus://c-m-d-validator-biometric_correction-bus-out" /> + <log message="cmd-validator-->operator-validator/supervisor-validator biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://operator-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + </otherwise> + </choice> + </route> + <route id="operator-validator-->supervisor-validator biometric_correction route"> + <from uri="eventbus://operator-validator-biometric_correction-bus-out" /> + <log message="operator-validator-->supervisor-validator/introducer-validator/demo-dedupe biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> + <route id="supervisor-validator-->introducer-validator biometric_correction route"> + <from uri="eventbus://supervisor-validator-biometric_correction-bus-out" /> + <log message="supervisor-validator-->introducer-validator/demo-dedupe biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> + <route id="introducer-validator-->resume parent biometric_correction route"> + <from uri="eventbus://introducer-validator-biometric_correction-bus-out" /> + <log message="introducer-validator-->resume parent biometric_correction route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + </otherwise> + </choice> + </route> +</routes> From b879509d6f4eebaf65cf6b00d17d3b12991130de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 9 Nov 2021 11:13:02 +0530 Subject: [PATCH 0296/1358] Packet server property added. --- registration-processor-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b0968b8c2e6..aafc27600d9 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -855,6 +855,8 @@ regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ openapi.registrationProcessor.servers[0].url=http://${mosip.api.internal.host}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL +NGINXDMZURL=http://regproc-pktserver.regproc/ + # TODO: Check these properties - they are missing for qa-double-rc2, but services fail if we don't add these. # packet receiver stage #Supported commmit config: auto, batch, single From e61c687a499a2e29ceb648b2797d78388d1b0bd0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 9 Nov 2021 12:25:19 +0530 Subject: [PATCH 0297/1358] Signature verification disabled for testing. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 8b0b8946753..7fc83a6f50b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -309,7 +309,7 @@ mosip.registration.gps_device_enable_flag=n packetmanager.default.read.strategy=defaultPriority packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} -packetmanager.packet.signature.disable-verification=false +packetmanager.packet.signature.disable-verification=true mosip.commons.packetnames=id,evidence,optional provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl provider.packetreader.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketReaderImpl From 2585ffeef1fba1725e50349bc15cdc73742f8609 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 10 Nov 2021 10:10:19 +0530 Subject: [PATCH 0298/1358] PMS url corrected. --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index ce4a62046bf..9fc334d7d0f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -181,7 +181,7 @@ auth-token-generator.rest.secretKey=${mosip.ida.auth.secretKey} auth-token-generator.rest.appId=${mosip.ida.auth.appId} ## Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination -id-pmp-service.rest.uri=http://partner-manager.pms/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} +id-pmp-service.rest.uri=http://pms-partner.pms/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET id-pmp-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-pmp-service.rest.timeout=${mosip.ida.request.timeout.secs} From 8b48648f66d7bafefe3afc49509da4d8344ec827 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Wed, 10 Nov 2021 17:15:30 +0530 Subject: [PATCH 0299/1358] [ MOSIP-17992 ] updated kernel-default.properties updated partner cert grace duration to 30 days mosip.kernel.partner.issuer.certificate.allowed.grace.duration=30 --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0d90668d1a3..60cf7f3654a 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -434,7 +434,7 @@ mosip.ui.spec.default.domain=registration-client ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=200 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=30 # masterdata swagger openApi openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata From 4423be99f3e0a49512a2d6db1b2534098305c7db Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Wed, 10 Nov 2021 19:15:05 +0530 Subject: [PATCH 0300/1358] [MOSIP-17992] increased the partner cert issuer grace duration to 500 --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 60cf7f3654a..0cd57e45ee9 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -434,7 +434,7 @@ mosip.ui.spec.default.domain=registration-client ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=30 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=500 # masterdata swagger openApi openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata From d29232cd05854706e21ff8394c4561284e1f8d58 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 11 Nov 2021 10:58:31 +0530 Subject: [PATCH 0301/1358] MOSIP cbeff xsd updated. --- mosip-cbeff.xsd | 18 +++++++++++++----- 1 file changed, 13 insertions(+), 5 deletions(-) diff --git a/mosip-cbeff.xsd b/mosip-cbeff.xsd index 4f53d61be96..c39a985c276 100644 --- a/mosip-cbeff.xsd +++ b/mosip-cbeff.xsd @@ -5,7 +5,6 @@ obtaining a copy of the Schema, to use, copy, modify, merge and distribute free of charge, copies of the Schema for the purposes of developing, implementing, installing and using software based on the Schema, and to permit persons to whom the Schema is furnished to do so, subject to the following conditions: - THE SCHEMA IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE @@ -21,13 +20,14 @@ xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http:// <xs:sequence> <xs:element name="Version" type="VersionType" minOccurs="0"/> <xs:element name="CBEFFVersion" type="VersionType" minOccurs="0"/> - <xs:any namespace="##other" processContents="skip" minOccurs="0" maxOccurs="unbounded"/> + <!--<xs:any namespace="##other" processContents="skip" minOccurs="0" maxOccurs="unbounded"/>--> <xs:element name="BIRInfo" type="BIRInfoType"/> <xs:element name="BDBInfo" type="BDBInfoType" minOccurs="0"/> <xs:element name="SBInfo" type="SBInfoType" minOccurs="0"/> <xs:element name="BIR" type="BIRType" minOccurs="0" maxOccurs="unbounded"/> - <xs:element name="BDB" type="xs:base64Binary" minOccurs="0"/> - <xs:element name="SB" type="xs:base64Binary" minOccurs="0"/> + <xs:element name="BDB" type="xs:base64Binary" minOccurs="0" /> + <xs:element name="SB" type="xs:base64Binary" minOccurs="0" /> + <xs:element name="Others" type="Entry" minOccurs="0" maxOccurs="unbounded" nillable="true"/> </xs:sequence> </xs:complexType> <xs:complexType name="VersionType"> @@ -171,4 +171,12 @@ xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http:// <xs:pattern value="[a-fA-F0-9]{8}\-([a-fA-F0-9]{4}\-){3}[a-fA-F0-9]{12}"/> </xs:restriction> </xs:simpleType> -</xs:schema> + + <xs:complexType name="Entry"> + <xs:sequence> + <xs:element name="Key" type="xs:string"/> + <xs:element name="Value" type="xs:string"/> + </xs:sequence> + </xs:complexType> + +</xs:schema> \ No newline at end of file From 710924c140184044735f0e66ee7f718146c11962 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 11 Nov 2021 11:25:08 +0530 Subject: [PATCH 0302/1358] Reg proc prop corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index aafc27600d9..e395f31aeb2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -138,7 +138,7 @@ DIGITALSIGNATURE=${KEYMANAGER}/v1/keymanager/sign mosip.registration.processor.digital.signature.id=io.mosip.registration.processor # Validate hostlisted devices DEVICEHOTLIST=http://admin-hotlist-service/v1/hotlist -JWTVERIFY=http://${KEYMANAGER}/v1/keymanager/jwtVerify +JWTVERIFY=${KEYMANAGER}/v1/keymanager/jwtVerify ## Crypto CRYPTOMANAGERDECRYPT=${KEYMANAGER}/v1/keymanager/decrypt From 87311e15cac551b9ba7028c15adc5f31219075f5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 11 Nov 2021 12:47:50 +0530 Subject: [PATCH 0303/1358] Camel xml updated. --- ...ion-processor-camel-routes-new-default.xml | 171 +++++++++++------- 1 file changed, 107 insertions(+), 64 deletions(-) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index c24fba42682..865eb2c9ef6 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -33,6 +33,7 @@ </otherwise> </choice> </route> + <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader new route"> <from uri="eventbus://securezone-notification-new-bus-out" /> <log message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> @@ -54,10 +55,10 @@ </otherwise> </choice> </route> - <!-- packet-uploader to packet-validator Route --> - <route id="packet-uploader-->packet-validator new route"> - <from uri="eventbus:packet-uploader-new-bus-out" /> - <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> + <!-- packet-uploader to packet-validator Route --> + <route id="packet-uploader-->packet-validator new route"> + <from uri="eventbus://packet-uploader-new-bus-out" /> + <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -75,12 +76,11 @@ <to uri="eventbus://packet-validator-bus-in" /> </otherwise> </choice> - </route> - - <!-- Packet Validator to Packet classifier Route --> - <route id="packet-validator-->packet-classifier new route"> - <from uri="eventbus:packet-validator-new-bus-out" /> - <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> + </route> + <!-- Packet Validator to Packet classifier Route --> + <route id="packet-validator-->packet-classifier new route"> + <from uri="eventbus://packet-validator-new-bus-out" /> + <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -98,12 +98,11 @@ <to uri="eventbus://packet-classifier-bus-in" /> </otherwise> </choice> - </route> - - <!-- Packet Classifier to Quality Checker Route --> - <route id="packet-classifier-->quality-checker new route"> - <from uri="eventbus:packet-classifier-new-bus-out" /> - <log message="packet-classifier-->quality-checker new route ${bodyAs(String)}" /> + </route> + <!-- Packet Classifier to Quality Classifier Route --> + <route id="packet-classifier-->cmd-validator new route"> + <from uri="eventbus://packet-classifier-new-bus-out" /> + <log message="packet-classifier-->quality-classifier new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -118,46 +117,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <to uri="eventbus://quality-classifier-bus-in" /> - </otherwise> - </choice> - </route> - - <route id="quality-classifier-->cmd-validator new route"> - <from uri="eventbus://quality-classifier-new-bus-out" /> - <log message="quality-classifier-->cmd-validator new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> - <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> - <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> - <to uri="workflow-cmd://pause-and-request-additional-info" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://c-m-d-validator-bus-in" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> - <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> - <!-- PAUSE_FOR is in seconds --> - <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> - <to uri="workflow-cmd://pause-and-request-additional-info" /> - </when> - <otherwise> - <to uri="workflow-cmd://complete-as-failed" /> </otherwise> </choice> </route> @@ -215,7 +175,7 @@ <to uri="eventbus://introducer-validator-bus-in" /> </when> <otherwise> - <to uri="eventbus://demo-dedupe-bus-in" /> + <to uri="eventbus://quality-classifier-bus-in" /> </otherwise> </choice> </route> @@ -240,13 +200,13 @@ <to uri="eventbus://introducer-validator-bus-in" /> </when> <otherwise> - <to uri="eventbus://demo-dedupe-bus-in" /> + <to uri="eventbus://quality-classifier-bus-in" /> </otherwise> </choice> </route> - <route id="introducer-validator-->demo-dedupe new route"> + <route id="introducer-validator-->quality-classifier new route"> <from uri="eventbus://introducer-validator-new-bus-out" /> - <log message="introducer-validator-->demo-dedupe new route ${bodyAs(String)}" /> + <log message="packet-classifier-->quality-classifier new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -258,10 +218,48 @@ </when> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> + <to uri="eventbus://quality-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="quality-classifier-->demo-dedupe new route"> + <from uri="eventbus://quality-classifier-new-bus-out" /> + <log message="quality-classifier-->demo-dedupe new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://demo-dedupe-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <!-- PAUSE_FOR is in seconds --> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> </otherwise> </choice> </route> @@ -398,10 +396,55 @@ </otherwise> </choice> </route> - <!-- UIN Generator to Printing Route --> - <route id="uin-generation route-->printing-stage new route"> + <!-- UIN Generator to biometric-extraction Route --> + <route id="uin-generation route-->biometric-extraction-stage new route"> <from uri="eventbus://uin-generator-new-bus-out" /> - <log message="uin-generation-->printing-stage route ${bodyAs(String)}" /> + <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://biometric-extraction-bus-in" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> + <!-- biometric-extraction to finalization Route --> + <route id="biometric-extraction route-->finalization-stage new route"> + <from uri="eventbus://biometric-extraction-new-bus-out" /> + <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + </otherwise> + </choice> + </route> + <!-- finalization to Printing Route --> + <route id="finalization route-->printing-stage new route"> + <from uri="eventbus://finalization-new-bus-out" /> + <log message="finalization-->printing-stage route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -417,6 +460,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> @@ -443,4 +487,3 @@ </choice> </route> </routes> - From 14d380f1a89f444233585cf5d7719f6b5d76a7e1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 11 Nov 2021 15:13:03 +0530 Subject: [PATCH 0304/1358] Regproc prop corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e395f31aeb2..24f7a94fbb1 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -137,7 +137,7 @@ ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey DIGITALSIGNATURE=${KEYMANAGER}/v1/keymanager/sign mosip.registration.processor.digital.signature.id=io.mosip.registration.processor # Validate hostlisted devices -DEVICEHOTLIST=http://admin-hotlist-service/v1/hotlist +DEVICEHOTLIST=http://admin-hotlist.admin/v1/hotlist JWTVERIFY=${KEYMANAGER}/v1/keymanager/jwtVerify ## Crypto From 54c2e363c3092b5eeab64615908d5ab0e179f9c9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 11 Nov 2021 22:07:37 +0530 Subject: [PATCH 0305/1358] Missing prop added. --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 7fc83a6f50b..2dfe14bfcfd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -386,4 +386,5 @@ mosip.default.user-preferred-language-attribute=preferredLang # Path to identity mapping json file mosip.identity.mapping-file=${mosip.kernel.xsdstorage-uri}/identity-mapping.json +mosip.notification.timezone=GMT+05:30 From 4875b50e51a86a601eab402526461561733fa1de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 12 Nov 2021 12:32:30 +0530 Subject: [PATCH 0306/1358] IDA internal prop updated. --- id-authentication-internal-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 2a9c587a184..20d767763cc 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -14,3 +14,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client From ea80ca653fd0b32ca33cb6d7e6c4667522236a86 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 12 Nov 2021 13:00:54 +0530 Subject: [PATCH 0307/1358] [MOSIP-17992] commend mosip.kernel.partner.issuer.certificate.allowed.grace.duration --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0cd57e45ee9..7b501a91add 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -434,7 +434,7 @@ mosip.ui.spec.default.domain=registration-client ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=500 +##mosip.kernel.partner.issuer.certificate.allowed.grace.duration=500 # masterdata swagger openApi openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata From ec519fc43c4c8d94c451c45877e0504b8d0647fb Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 12 Nov 2021 17:17:21 +0530 Subject: [PATCH 0308/1358] updated mosip.kernel.partner.issuer.certificate.allowed.grace.duration --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 7b501a91add..0b139a15b34 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -434,7 +434,7 @@ mosip.ui.spec.default.domain=registration-client ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -##mosip.kernel.partner.issuer.certificate.allowed.grace.duration=500 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=60 # masterdata swagger openApi openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata From 43b8950632721604e8efe3d7d9ed28e49ff496f6 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Mon, 15 Nov 2021 11:55:23 +0530 Subject: [PATCH 0309/1358] Update kernel-default.properties updated mosip.kernel.partner.issuer.certificate.allowed.grace.duration property --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0b139a15b34..9325145a758 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -434,7 +434,7 @@ mosip.ui.spec.default.domain=registration-client ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=60 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata From 52534ad89146ac32b348234fc07e90f596b1244b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 16 Nov 2021 12:13:29 +0530 Subject: [PATCH 0310/1358] Prereg demographic file added (was missing). --- pre-registration-demographic.json | 359 ++++++++++++++++++++++++++++++ 1 file changed, 359 insertions(+) create mode 100644 pre-registration-demographic.json diff --git a/pre-registration-demographic.json b/pre-registration-demographic.json new file mode 100644 index 00000000000..c4b839d770a --- /dev/null +++ b/pre-registration-demographic.json @@ -0,0 +1,359 @@ +{ + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "fra": "Nom complet" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "fra": "Date de naissance" + }, + "controlType": "date", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "fra": "Le genre" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "residenceStatus", + "description": "Residence status", + "labelName": { + "eng": "Residence Status", + "fra": "Statut de résidence" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "addressLine1", + "description": "addressLine1", + "labelName": { + "eng": "Address Line1", + "fra": "Adresse 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "addressLine2", + "description": "addressLine2", + "labelName": { + "eng": "Address Line2", + "fra": "Adresse 2" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": false, + "transliteration": true + }, + { + "id": "addressLine3", + "description": "addressLine3", + "labelName": { + "eng": "Address Line3", + "fra": "Adresse 3" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": false, + "transliteration": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "fra": "Région" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "fra": "Province" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "fra": "Ville" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,50}$).*", + "arguments": [] + } + ], + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "fra": "Zone" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "fra": "code postal" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "fra": "Téléphone" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^([6-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "fra": "Email" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "fra": "Address Proof", + "eng": "Address Proof" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "fra": "Identity Proof", + "eng": "Identity Proof" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "fra": "Relationship Proof", + "eng": "Relationship Proof" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": false + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "fra": "DOB Proof", + "eng": "DOB Proof" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "fra": "Exception Proof", + "eng": "Exception Proof" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + }, + { + "id": "proofOfException-1", + "description": "proofOfException", + "labelName": { + "fra": "Exception Proof", + "eng": "Exception Proof" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} From 4cd6df14f902ed71be59750a2722cf0e99e637db Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 16 Nov 2021 17:09:43 +0530 Subject: [PATCH 0311/1358] Resident prop added. --- resident-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/resident-default.properties b/resident-default.properties index a0733c94b45..667c279f345 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -103,3 +103,5 @@ token.request.appid=resident token.request.clientId=mosip-resident-client token.request.secretKey=${mosip.mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter + +auth.server.admin.allowed.audience=mosip-resident-client From d43c2f7886b90a8c38b8bc7bc2e20662f65c4b69 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 17 Nov 2021 16:42:00 +0530 Subject: [PATCH 0312/1358] openapi properties commented out. --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 9325145a758..f5973b2c2df 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -437,8 +437,8 @@ scheduling.job.cron=0 0 2 * * ? mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi -openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata -openapi.masterdata.servers[0].description=Admin Masterdata url +#openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata +#openapi.masterdata.servers[0].description=Admin Masterdata url #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails From 1f80becd08ab0a0b542fc5a76496387367434384 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 17 Nov 2021 16:54:54 +0530 Subject: [PATCH 0313/1358] Experimental change in openapi prop. --- kernel-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index f5973b2c2df..ed5f31a6567 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -439,6 +439,9 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url +openapi.service.servers[0].url=https://${mosip.api.internal.host} +openapi.service.servers[0].description=For Swagger + #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails From 05c28f81cd710b48a1d4399f0b3628eaa7ae2830 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 18 Nov 2021 21:24:02 +0530 Subject: [PATCH 0314/1358] Applicanttype.mvel updated to the latest. --- applicanttype.mvel | 74 +++++++++++++++++++++++++--------------------- 1 file changed, 41 insertions(+), 33 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 37839f68830..535f9fc5e8f 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -6,24 +6,23 @@ import java.util.List; import java.time.ZoneId; import java.time.temporal.ValueRange; -String CHILD = "INFANT"; -String MINOR = "MINOR"; -String ADULT = "ADULT"; +import java.util.regex.Matcher; +import java.util.regex.Pattern; + +String CHILD = "CHL"; +String ADULT = "ADL"; String MALE = 'MLE'; String FEMALE = 'FLE'; String NonResident = "FR"; String Resident = "NFR"; String Others = "OTH"; String DATE_PATTERN = "yyyy/MM/dd"; +String regex = "^\\d{4}(\\/)(((0)[1-9])|((1)[0-2]))(\\/)([0-2][0-9]|(3)[0-1])$"; +Pattern pattern = Pattern.compile(regex); def isUpdateFlow(identity) { - Object val = identity.get('_flow'); - if(val != null) { - return ((String)val).equals('Update') ? true : false; - } - - val = identity.getOrDefault('isUpdate', false); - return val == null ? false : (Boolean) val; + Object val = identity.getOrDefault('_flow', null); + return (val == 'Update') ? true : false; } def getResidenceStatus(identity) { @@ -59,14 +58,16 @@ def getAgeCode(identity) { return null; String dob = identity.get('dateOfBirth'); + if(!pattern.matcher(dob).matches()) + return null; + LocalDate date = LocalDate.parse(dob, DateTimeFormatter.ofPattern(DATE_PATTERN)); LocalDate currentDate = LocalDate.now(ZoneId.of("UTC")); - int ageInYears = -1; - if (!date.isAfter(currentDate)) { - ageInYears = Period.between(date, currentDate).getYears(); - } else { - return "KER-MSD-151"; - } + + if(date.isAfter(currentDate)) { return 'KER-MSD-151'; } + + int ageInYears = Period.between(date, currentDate).getYears(); + String ageGroup = null; for(String groupName : ageGroups.keySet()) { String[] range = ((String)ageGroups.get(groupName)).split('-'); @@ -75,12 +76,14 @@ def getAgeCode(identity) { } } - return ageGroup; + return ageGroup == null ? null : (ageGroup == 'INFANT' ? CHILD : ADULT); } def getBioExceptionFlag(identity) { - return identity.containsKey('isBioException') ? (Boolean) identity.get('isBioException') : false; + if(!identity.containsKey('isBioException')) { return false; } + Object val = identity.getOrDefault('isBioException', null); + return (val == 'true') ? true : (( val == 'false' ) ? false : null); } def getApplicantType() { @@ -88,55 +91,60 @@ def getApplicantType() { String genderType = getGenderType(identity); String ageCode = getAgeCode(identity); boolean isBioExPresent = getBioExceptionFlag(identity); + + if( ageCode == 'KER-MSD-151' ) { return "KER-MSD-151"; } + + if(itc == null || genderType == null || ageCode == null || isBioExPresent == null ) { + return isUpdateFlow(identity) ? "A000" : "KER-MSD-147"; + } + + System.out.println(itc + " - " + genderType + " - " + ageCode + " - " + isBioExPresent); - if(itc == null || genderType == null || ageCode == null) - return isUpdateFlow(identity) ? "A000" : "KER-MSD-147"; - - if (itc == NonResident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { return "A001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { return "A002"; - } else if (itc == Resident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { return "A003"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { return "A004"; - } else if (itc == NonResident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { return "A005"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { return "A006"; - } else if (itc == Resident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { return "A007"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { return "A008"; - } else if (itc == NonResident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { return "A005"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { return "A006"; - } else if (itc == Resident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && !isBioExPresent) { + } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { return "A007"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { return "A008"; - } else if (itc == NonResident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { return "A009"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { return "A010"; - } else if (itc == Resident && genderType == MALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + } else if (itc == Resident && genderType == MALE && ageCode == CHILD && isBioExPresent) { return "A011"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { return "A012"; - } else if (itc == NonResident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { return "A013"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { return "A014"; - } else if (itc == Resident && genderType == FEMALE && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { return "A015"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { return "A016"; - } else if (itc == NonResident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + } else if (itc == NonResident && genderType == Others && ageCode == CHILD && isBioExPresent) { return "A013"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { return "A014"; - } else if (itc == Resident && genderType == Others && (ageCode == CHILD || ageCode == MINOR) && isBioExPresent) { + } else if (itc == Resident && genderType == Others && ageCode == CHILD && isBioExPresent) { return "A015"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { return "A016"; From b1a1f874c211ced63478b885c7eeb51af1a22271 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 18 Nov 2021 21:26:42 +0530 Subject: [PATCH 0315/1358] Admin props synced to latest. --- admin-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 14ca78b0dda..d08d671edc8 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -224,6 +224,11 @@ mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +# LostRid +mosip.registration.processor.lostrid.id=mosip.registration.lostrid +mosip.registration.processor.lostrid.version=1.0 +LOST_RID_API=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/lostridsearch + # Roles mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.postbulkupload=GLOBAL_ADMIN From 05663d5656ca1fdc8376df04f773f5326acd7743 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 18 Nov 2021 21:36:40 +0530 Subject: [PATCH 0316/1358] Kernel props synced with latest. --- kernel-default.properties | 48 +++++++++++++++++++++++++++++++++++++-- 1 file changed, 46 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index ed5f31a6567..14b065f98e8 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -149,7 +149,7 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false logging.level.org.hibernate.SQL=ERROR -ogging.level.org.hibernate.type=ERROR +logging.level.org.hibernate.type=ERROR admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel admin_database_username=kerneluser @@ -355,7 +355,7 @@ datastores=db_1_DS,db_2_DS mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident # Keymanager service keystore cache properties -mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id mosip.kernel.syncdata-service-machine-url=http://masterdata.kernel/v1/masterdata/machines/%s/eng @@ -452,6 +452,50 @@ mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +#AdminMaster endpoints to access without authentication +mosip.service-context=/v1/masterdata +mosip.service.end-points[0]=/**/getApplicationType +mosip.service.end-points[1]=/**/applicationtype/{applicationId}/languages +mosip.service.end-points[2]=/**/blocklistedwords/{langcode} +mosip.service.end-points[3]=/**/documentcategories +mosip.service.end-points[4]=/**/documentcategories/{langcode} +mosip.service.end-points[5]=/**/documenttypes/{documentcategorycode}/{langcode} +mosip.service.end-points[6]=/**/documenttypes/{langcode} +mosip.service.end-points[7]=/**/dynamicfields +mosip.service.end-points[8]=/**/dynamicfields/distinct +mosip.service.end-points[9]=/**/exceptionalholidays/{registrationCenterId}/{languageCode} +mosip.service.end-points[10]=/**/gendertypes +mosip.service.end-points[11]=/**/gendertypes/{langcode} +mosip.service.end-points[12]=/**/gendertypes/validate/{gendername} +mosip.service.end-points[13]=/**/idtypes/{langcode} +mosip.service.end-points[14]=/**/individualtypes +mosip.service.end-points[15]=/**/languages +mosip.service.end-points[16]=/**/locations/{langcode} +mosip.service.end-points[17]=/**/locations/{locationcode}/{langcode} +mosip.service.end-points[18]=/**/locations/info/{locationcode}/{langcode} +mosip.service.end-points[19]=/**/locations/locationhierarchy/{hierarchyname} +mosip.service.end-points[20]=/**/locations/immediatechildren/{locationcode}/{langcode} +mosip.service.end-points[21]=/**/locations/validate/{locationname} +mosip.service.end-points[22]=/**/locationHierarchyLevels/{level}/{langcode} +mosip.service.end-points[23]=/**/locationHierarchyLevels/{langcode} +mosip.service.end-points[24]=/**/templates +mosip.service.end-points[25]=/**/templates/{langcode} +mosip.service.end-points[26]=/**/templates/{langcode}/{templatetypecode} +mosip.service.end-points[27]=/**/templates/templatetypecodes/{code} +mosip.service.end-points[28]=/**/templatetypes/{code}/{langcode} +mosip.service.end-points[29]=/**/templatetypes/{langcode} +mosip.service.end-points[30]=/**/title +mosip.service.end-points[31]=/**/title/{lancode} +mosip.service.end-points[32]=/**/uispec/{domain}/latest +mosip.service.end-points[33]=/**/validdocuments/{languagecode} +mosip.service.end-points[34]=/**/validdocuments/{docCategoryCode}/{languagecode} +mosip.service.end-points[35]=/**/weekdays/{registrationCenterId}/{langCode} +mosip.service.end-points[36]=/**/workingdays/{registrationCenterID}/{langCode} +mosip.service.end-points[37]=/**/workingdays/{langCode} +mosip.service.end-points[38]=/**/zones/leafs/{langCode} + +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + ## Roles mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN From 1338fabac75253ec4218328591f8246e286e8d1e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 18 Nov 2021 21:44:05 +0530 Subject: [PATCH 0317/1358] Prereg synced to latest. --- pre-registration-default.properties | 18 ++++++++++++++++-- 1 file changed, 16 insertions(+), 2 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index b3aae390e62..44de4204c30 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -417,7 +417,7 @@ mosip.preregistration.uispec.all=mosip.preregistration.uispec.all preregistration.cookie.contextpath=/ -## Roles +# Roles mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.putapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getapplications=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN @@ -438,7 +438,7 @@ mosip.role.prereg.deletedocumentspreregistrationid=INDIVIDUAL mosip.role.prereg.putdocumentsdocumentid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postqrcodegenerate=INDIVIDUAL mosip.role.prereg.getrefreshconfig=PRE_REGISTRATION_ADMIN -mosip.role.prereg.postnotificationnotify=INDIVIDUAL,PRE_REGISTRATION_ADMIN +mosip.role.prereg.postnotificationnotify=REGISTRATION_OFFICER,INDIVIDUAL,PRE_REGISTRATION_ADMIN mosip.role.prereg.postnotification=INDIVIDUAL,PRE_REGISTRATION_ADMIN mosip.role.prereg.posttransliterationtransliterate=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL mosip.role.prereg.getuispeclatest=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,INDIVIDUAL @@ -447,3 +447,17 @@ mosip.role.prereg.postpreregsync=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RE mosip.role.prereg.getsyncpreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getsyncpreregistrationidmachineid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postsyncconsumedpreregids=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,REGISTRATION_PROCESSOR + +mosip.role.prereg.cancelappointmentpreregid=REGISTRATION_OFFICER,INDIVIDUAL,PRE_REGISTRATION_ADMIN +mosip.role.prereg.deleteappointmentpreregid=REGISTRATION_OFFICER,INDIVIDUAL,PRE_REGISTRATION_ADMIN + +mosip.role.prereg.getappointmentavailability=INDIVIDUAL +mosip.role.prereg.postappointmentpreregistrationid=INDIVIDUAL +mosip.role.prereg.postappointment=INDIVIDUAL +mosip.role.prereg.getappointmentpreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN,INDIVIDUAL +mosip.role.prereg.putappointmentpreregistrationid=INDIVIDUAL +mosip.role.prereg.putbatchappointmentpreregistrationid=PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR +mosip.role.prereg.deleteappointment=INDIVIDUAL +mosip.role.prereg.getappointmentpreregistrationidregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getappointmentregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN + From c98847fd769dfe95e658b22954154bfbb93db45c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 18 Nov 2021 21:47:47 +0530 Subject: [PATCH 0318/1358] PMS props synced to latest. --- partner-management-default.properties | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index 47601fe8b88..f34beed2d07 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -150,6 +150,13 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token +#To populate required roles which should be allowed in UI.(Roles are nothing but partner types) +mosip.pms.ui.required.roles=Auth_Partner,Device_Provider,Credential_Partner,FTM_Provider,MISP_Partner +# To configure misp partner type +mosip.pms.misp.partner.type=MISP_Partner +# Role for partner admin = +mosip.pms.partneradmin.role=PARTNER_ADMIN + ## Security mosip.security.csrf-enable:false mosip.security.secure-cookie:false @@ -223,6 +230,7 @@ mosip.role.pms.postpoliciessearch=PARTNER_ADMIN,POLICYMANAGER mosip.role.pms.getpoliciesconfigkey=PARTNER_ADMIN,POLICYMANAGER mosip.role.pms.postpoliciesgroupfiltervalues=PARTNER_ADMIN,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER mosip.role.pms.postpoliciesfiltervalues=PARTNER_ADMIN,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER +mosip.role.pms.getactivegroupgroupname=AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,ABIS_PARTNER,MANUAL_ADJUDICATION,POLICYMANAGER mosip.role.pms.postdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER mosip.role.pms.putdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER mosip.role.pms.patchdevicedetail=PARTNER_ADMIN From d229c338b14b41b652f33185eab30153b47513de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 19 Nov 2021 16:03:20 +0530 Subject: [PATCH 0319/1358] Regprod props synced with develop2 branch. --- ...on-processor-camel-routes-lost-default.xml | 207 +++++++++++++++--- ...ion-processor-camel-routes-new-default.xml | 28 ++- ...-processor-camel-routes-update-default.xml | 193 +++++++++++++--- registration-processor-default.properties | 136 +++++++----- 4 files changed, 449 insertions(+), 115 deletions(-) diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index f7de0a5fb73..c7ae8c2c665 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -1,4 +1,39 @@ <routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification lost Route --> + <route id="packet-reciever-->securezone-notification lost route"> + <from uri="eventbus://packet-receiver-lost-bus-out" /> + <log message="packet-reciever-->securezone-notification ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader lost route"> <from uri="eventbus://securezone-notification-lost-bus-out" /> @@ -66,9 +101,9 @@ </choice> </route> <!-- Packet classifier to Quality Classifier Route --> - <route id="packet-classifier-->quality-classifier lost route"> + <route id="packet-classifier-->cmd-validator lost route"> <from uri="eventbus://packet-classifier-lost-bus-out" /> - <log message="packet-classifier-->quality-classifier lost route ${bodyAs(String)}" /> + <log message="packet-classifier-->cmd-validator lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -83,13 +118,13 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <to uri="eventbus://quality-classifier-bus-in" /> + <to uri="eventbus://c-m-d-validator-bus-in" /> </otherwise> </choice> </route> - <route id="quality-classifier-->cmd-validator lost route"> - <from uri="eventbus://quality-classifier-lost-bus-out" /> - <log message="quality-classifier-->cmd-validator lost route ${bodyAs(String)}" /> + <route id="cmd-validator-->operator-validator lost route"> + <from uri="eventbus://c-m-d-validator-lost-bus-out" /> + <log message="cmd-validator-->operator-validator/supervisor-validator lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -104,17 +139,21 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> - <to uri="eventbus://c-m-d-validator-bus-in" /> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://operator-validator-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> + <to uri="eventbus://supervisor-validator-bus-in" /> </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> </otherwise> </choice> </route> - <route id="cmd-validator-->operator-validator lost route"> - <from uri="eventbus://c-m-d-validator-lost-bus-out" /> - <log message="cmd-validator-->operator-validator/supervisor-validator lost route ${bodyAs(String)}" /> + <route id="operator-validator-->supervisor-validator lost route"> + <from uri="eventbus://operator-validator-lost-bus-out" /> + <log message="operator-validator-->supervisor-validator/bio-dedupe lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -128,22 +167,18 @@ <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> - <to uri="eventbus://operator-validator-bus-in" /> - </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> <to uri="eventbus://supervisor-validator-bus-in" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-failed" /> + <to uri="eventbus://quality-classifier-bus-in" /> </otherwise> </choice> </route> - <route id="operator-validator-->supervisor-validator lost route"> - <from uri="eventbus://operator-validator-lost-bus-out" /> - <log message="operator-validator-->supervisor-validator/bio-dedupe lost route ${bodyAs(String)}" /> + <route id="supervisor-validator-->introducer-validator lost route"> + <from uri="eventbus://supervisor-validator-lost-bus-out" /> + <log message="supervisor-validator-->introducer-validator/quality-classifier lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -158,17 +193,17 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> - <to uri="eventbus://supervisor-validator-bus-in" /> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> </when> <otherwise> - <to uri="eventbus://bio-dedupe-bus-in" /> + <to uri="eventbus://quality-classifier-bus-in" /> </otherwise> </choice> </route> - <route id="supervisor-validator-->bio-dedupe lost route"> - <from uri="eventbus://supervisor-validator-lost-bus-out" /> - <log message="supervisor-validator-->bio-dedupe lost route ${bodyAs(String)}" /> + <route id="introducer-validator-->quality-classifier lost route"> + <from uri="eventbus://introducer-validator-lost-bus-out" /> + <log message="packet-classifier-->quality-classifier lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -183,7 +218,45 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> + <to uri="eventbus://quality-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="quality-classifier-->bio-dedupe lost route"> + <from uri="eventbus://quality-classifier-lost-bus-out" /> + <log message="quality-classifier-->bio-dedupe lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://bio-dedupe-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <!-- PAUSE_FOR is in seconds --> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> </otherwise> </choice> </route> @@ -191,7 +264,7 @@ <from uri="eventbus://bio-dedupe-lost-bus-out" /> <log message="bio-dedupe-->uin-generation lost route ${bodyAs(String)}" /> <choice> - <when> + <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> </when> @@ -199,9 +272,14 @@ <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://mark-as-reprocess" /> </when> - <when> + <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'verification-bus-in')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> @@ -216,6 +294,27 @@ </otherwise> </choice> </route> + <route id="verification route-->uin-generator lost route"> + <from uri="eventbus://verification-lost-bus-out" /> + <log message="verification route-->uin-generator lost route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> <route id="abis-handler-->abis-middleware lost route"> <from uri="eventbus://abis-handler-lost-bus-out" /> <log message="abis-handler-->abis-middleware lost route ${bodyAs(String)}" /> @@ -279,15 +378,61 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> </otherwise> </choice> </route> - <route id="uin-generation-lost-->printing-stage lost route"> + <!-- UIN Generator to biometric-extraction Route --> + <route id="uin-generation route-->biometric-extraction-stage lost route"> <from uri="eventbus://uin-generator-lost-bus-out" /> - <log message="uin-generation-lost-->printing-stage lost route ${bodyAs(String)}" /> + <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://biometric-extraction-bus-in" /> + </otherwise> + </choice> + </route> + <!-- biometric-extraction to finalization Route --> + <route id="biometric-extraction route-->finalization-stage lost route"> + <from uri="eventbus://biometric-extraction-lost-bus-out" /> + <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + </otherwise> + </choice> + </route> + <!-- finalization to Printing Route --> + <route id="finalization-lost-->printing-stage lost route"> + <from uri="eventbus://finalization-lost-bus-out" /> + <log message="finalization-lost-->printing-stage lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -303,6 +448,7 @@ </when> <otherwise> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> @@ -324,7 +470,8 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> -</routes> \ No newline at end of file +</routes> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 865eb2c9ef6..87cdcb5ac47 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -332,7 +332,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> - </when> + </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://mark-as-reprocess" /> @@ -340,6 +340,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'verification-bus-in')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> @@ -354,6 +359,27 @@ </otherwise> </choice> </route> + <route id="verification route-->uin-generator new route"> + <from uri="eventbus://verification-new-bus-out" /> + <log message="verification route-->uin-generator new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> <route id="abis-middleware route-->abis-handler new route"> <from uri="eventbus://abis-middle-ware-new-bus-out" /> <log message="abis-middleware route-->abis-handler new route ${bodyAs(String)}" /> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 49e7e1d9264..4be966b2cde 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -1,4 +1,39 @@ <routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification update route"> + <from uri="eventbus://packet-receiver-update-bus-out" /> + <log message="packet-reciever-->securezone-notification update ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader update route"> <from uri="eventbus://securezone-notification-update-bus-out" /> @@ -65,8 +100,7 @@ </otherwise> </choice> </route> - <!-- Packet Classifier to Quality Classifier Route --> - <route id="packet-classifier-->quality-classifier update route"> + <route id="packet-classifier-->cmd-validator update route"> <from uri="eventbus://packet-classifier-update-bus-out" /> <log message="packet-classifier-->quality-classifier update route ${bodyAs(String)}" /> <choice> @@ -83,32 +117,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <to uri="eventbus://quality-classifier-bus-in" /> - </otherwise> - </choice> - </route> - <route id="quality-classifier-->cmd-validator update route"> - <from uri="eventbus://quality-classifier-update-bus-out" /> - <log message="quality-classifier-->cmd-validator update route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://c-m-d-validator-bus-in" /> - </when> - <otherwise> - <to uri="workflow-cmd://complete-as-failed" /> </otherwise> </choice> </route> @@ -166,7 +175,7 @@ <to uri="eventbus://introducer-validator-bus-in" /> </when> <otherwise> - <to uri="eventbus://biometric-authentication-bus-in" /> + <to uri="eventbus://quality-classifier-bus-in" /> </otherwise> </choice> </route> @@ -191,13 +200,13 @@ <to uri="eventbus://introducer-validator-bus-in" /> </when> <otherwise> - <to uri="eventbus://biometric-authentication-bus-in" /> + <to uri="eventbus://quality-classifier-bus-in" /> </otherwise> </choice> </route> - <route id="introducer-validator-->biometric-authentication-stage update route"> + <route id="introducer-validator-->quality-classifier update route"> <from uri="eventbus://introducer-validator-update-bus-out" /> - <log message="introducer-validator-->biometric-authentication-stage update route ${bodyAs(String)}" /> + <log message="introducer-validator-->quality-classifier update route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -210,9 +219,48 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> + <to uri="eventbus://quality-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="quality-classifier-->biometric-authentication update route"> + <from uri="eventbus://quality-classifier-update-bus-out" /> + <log message="quality-classifier-->biometric-authentication update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://biometric-authentication-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> + <!-- PAUSE_FOR is in seconds --> + <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> + <to uri="workflow-cmd://pause-and-request-additional-info" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> </otherwise> </choice> </route> @@ -231,6 +279,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://demo-dedupe-bus-in" /> @@ -252,6 +301,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> @@ -314,6 +364,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'verification-bus-in')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> @@ -324,6 +379,27 @@ </otherwise> </choice> </route> + <route id="verification route-->uin-generator update route"> + <from uri="eventbus://verification-update-bus-out" /> + <log message="verification route-->uin-generator update route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> <route id="abis-middleware route-->abis-handler update route"> <from uri="eventbus://abis-middle-ware-update-bus-out" /> <log message="abis-middleware route-->abis-handler update route ${bodyAs(String)}" /> @@ -360,16 +436,61 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> </otherwise> </choice> </route> - <!-- UIN Generator to Printing Route --> - <route id="uin-generation route-->printing-stage update route"> + <!-- UIN Generator to biometric-extraction Route --> + <route id="uin-generation route-->biometric-extraction-stage update route"> <from uri="eventbus://uin-generator-update-bus-out" /> - <log message="uin-generation-->printing-stage update route ${bodyAs(String)}" /> + <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://biometric-extraction-bus-in" /> + </otherwise> + </choice> + </route> + <!-- biometric-extraction to finalization Route --> + <route id="biometric-extraction route-->finalization-stage update route"> + <from uri="eventbus://biometric-extraction-update-bus-out" /> + <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + </otherwise> + </choice> + </route> + <!-- finalization to Printing Route --> + <route id="finalization route-->printing-stage update route"> + <from uri="eventbus://finalization-update-bus-out" /> + <log message="finalization-->printing-stage update route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -385,6 +506,7 @@ </when> <otherwise> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> @@ -406,7 +528,8 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> -</routes> \ No newline at end of file +</routes> diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 24f7a94fbb1..9046d5a12de 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -136,6 +136,11 @@ ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey ## Digital Signature Service DIGITALSIGNATURE=${KEYMANAGER}/v1/keymanager/sign mosip.registration.processor.digital.signature.id=io.mosip.registration.processor + +#Status for matched records in demo dedupe stage. +# 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. +registration.processor.demodedupe.manual.adjudication.status=REJECTED + # Validate hostlisted devices DEVICEHOTLIST=http://admin-hotlist.admin/v1/hotlist JWTVERIFY=${KEYMANAGER}/v1/keymanager/jwtVerify @@ -165,29 +170,13 @@ mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.sync.version=1.0 mosip.registration.processor.lostrid.version=1.0 + # this property is used in lostrid api to get postal code mosip.registration.processor.postalcode.req.url=${MASTER}/registrationcenters # Status for matched records in demo dedupe stage -registration.processor.demodedupe.manualverification.status=REJECTED mosip.registration.processor.demographic.deduplication.enable=true -## Manual verification -mosip.registration.processor.manual.verification.assignment.id=mosip.manual.verification.assignment -mosip.registration.processor.manual.verification.decision.id=mosip.manual.verification.decision -mosip.registration.processor.manual.verification.biometric.id=mosip.manual.verification.biometric -mosip.registration.processor.manual.verification.demographic.id=mosip.manual.verification.demographic -mosip.registration.processor.manual.verification.packetinfo.id=mosip.manual.verification.packetinfo -# Manual verification queue message expiry in seconds, if given 0 then message will never expire -registration.processor.queue.manualverification.request.messageTTL=5400 -# queue name where mosip will send request to external mv system -registration.processor.queue.manualverification.request=mosip-to-mv -# queue name where mosip will receive response from external mv system -registration.processor.queue.manualverification.response=mv-to-mosip -# Buffer time above the expiry queue to allow reprocessing (in seconds) -registration.processor.manual.verification.reprocess.buffer.time=900 -registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication -registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ @@ -203,6 +192,8 @@ auth.PrependThumbprint.enable=false registration.processor.max.file.size=5 mosip.registration.processor.application.version=1.0 mosip.registration.processor.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' +# Date pattern for registrationDate that should be followed in lostrid request +mosip.registration.processor.lostrid.registrationdate.pattern=yyyy-MM-dd mosip.registration.processor.timezone=GMT mosip.registration.processor.packet.id=mosip.registration.packet mosip.registration.processor.grace.period=10800 @@ -259,6 +250,10 @@ registration.processor.queue.password=${activemq.password} registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ +registration.processor.queue.manualverification.request=mosip-to-mv +# queue name where mosip will receive response from external mv system +registration.processor.queue.manualverification.response=mv-to-mosip + ## Packet validator registration.processor.applicant.type=applicanttype-document-mapping.json mosip.kernel.jsonvalidator.property-source=APPLICATION_CONTEXT @@ -268,6 +263,8 @@ mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring. ## Reprocessor stage # Number of the reprocess records to be fetched at a time registration.processor.reprocess.fetchsize=100 +registration.processor.reprocess.limit=500 +registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing registration.processor.reprocess.elapse.time=120 @@ -282,6 +279,56 @@ registration.processor.reprocess.days_of_month=* registration.processor.reprocess.months=* registration.processor.reprocess.days_of_week=* +# Verification +mosip.regproc.verification.eventbus.kafka.commit.type=single +mosip.regproc.verification.eventbus.kafka.max.poll.records=100 +mosip.regproc.verification.eventbus.kafka.poll.frequency=100 +mosip.regproc.verification.eventbus.kafka.group.id=verification-stage +mosip.regproc.verification.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} + +registration.processor.verification.queue.username=${registration.processor.queue.username} +registration.processor.verification.queue.password=${registration.processor.queue.password} +registration.processor.verification.queue.url=${registration.processor.queue.url} +registration.processor.verification.queue.typeOfQueue=${registration.processor.queue.typeOfQueue} +registration.processor.verification.queue.response=verification-to-mosip +registration.processor.verification.policy.id=mpolicy-default-adjudication +registration.processor.verification.subscriber.id=mpartner-default-adjudication +registration.processor.queue.verification.request.messageTTL=5400 +mosip.regproc.verification.eventbus.port=5730 +mosip.regproc.verification.server.port=8101 +mosip.regproc.verification.server.servlet.path=/registrationprocessor/v1/verification + +# Manual adjudication +mosip.regproc.manual.adjudication.eventbus.kafka.commit.type=single +mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 +mosip.regproc.manual.adjudication.eventbus.kafka.poll.frequency=100 +mosip.regproc.manual.adjudication.eventbus.kafka.group.id=manual-adjudication-stage +mosip.regproc.manual.adjudication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.manual.adjudication.server.servlet.path=/registrationprocessor/v1/manualverification +mosip.regproc.manual.adjudication.server.port=8084 +mosip.regproc.manual.adjudication.eventbus.port=5720 +mosip.regproc.manual.adjudication.use.lts.format=true +mosip.registration.processor.manual.adjudication.assignment.id=mosip.manual.adjudication.assignment +mosip.registration.processor.manual.adjudication.decision.id=mosip.manual.adjudication.decision +mosip.registration.processor.manual.adjudication.biometric.id=mosip.manual.adjudication.biometric +mosip.registration.processor.manual.adjudication.demographic.id=mosip.manual.adjudication.demographic +mosip.registration.processor.manual.adjudication.packetinfo.id=mosip.manual.adjudication.packetinfo + +#Manual verification queue message expiry in seconds, if given 0 then message will never expire +registration.processor.queue.manual.adjudication.request.messageTTL=5400 +# Buffer time above the expiry queue to allow reprocessing (in seconds) +registration.processor.manual.adjudication.reprocess.buffer.time=900 +registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication +registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication +# Manual verification queue message expiry in seconds, if given 0 then message will never expire +# Buffer time above the expiry queue to allow reprocessing (in seconds) +registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication +registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication +registration.processor.manual.adjudication.queue.username=${registration.processor.queue.username} +registration.processor.manual.adjudication.queue.password=${registration.processor.queue.password} +registration.processor.manual.adjudication.queue.url=${registration.processor.queue.url} +registration.processor.manual.adjudication.queue.typeOfQueue=${registration.processor.queue.typeOfQueue} + #WorkflowAction service websub topic name mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event mosip.regproc.workflow.action.job.server.port=8026 @@ -372,9 +419,8 @@ PACKETMANAGER_INFO=${packetmanager.base.url}/v1/packetmanager/info PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdateTag PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag PACKETMANAGER_GET_TAGS=${packetmanager.base.url}/v1/packetmanager/getTags -DATASHARE=http://datashare.datashare DATASHARECREATEURL=/v1/datashare/create -DATASHAREGETEURL=${DATASHARE}/v1/datashare/get +DATASHAREGETEURL=http://datashare.datashare/v1/datashare/get # Default abis is mock-abis provided by MOSIP registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis @@ -388,24 +434,30 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK mosip.biosdk.default.host= http://biosdk-service.biosdk mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service -mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -mosip.biometric.sdk.provider.finger.version=0.9 -mosip.biometric.sdk.provider.finger.format.url.mock-1.1=${mosip.biosdk.default.service.url} +# The fully qualified Class Name of the BIO SDK API implemented for Finger modality +# This class will be loaded in runtime, the containing jar should be available in classpath +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +# The version of the BIO SDK API implemeted for Finger modality +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} # The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. # If the below default configuration is not configured, the one of the configured url will be used as the default URL. # If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. -mosip.biometric.sdk.provider.finger.format.url.default=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} + # The fully qualified Class Name of the BIO SDK API implemented for Iris modality # This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 # The version of the BIO SDK API implemeted for Iris modality -mosip.biometric.sdk.provider.iris.version=0.9 -mosip.biometric.sdk.provider.iris.format.url.mock-1.1=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} + # The fully qualified Class Name of the BIO SDK API implemented for Face modality # This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 -mosip.biometric.sdk.provider.face.version=0.9 -mosip.biometric.sdk.provider.face.format.url.mock-1.1=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +# The version of the BIO SDK API implemeted for Face modality +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} ## Printing mosip.registration.processor.credentialtype=euin @@ -587,16 +639,6 @@ mosip.regproc.bio.dedupe.server.port=9096 mosip.regproc.bio.dedupe.eventbus.port=5718 mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe -## Manual verification -mosip.regproc.manual.verification.eventbus.kafka.commit.type=single -mosip.regproc.manual.verification.eventbus.kafka.max.poll.records=100 -mosip.regproc.manual.verification.eventbus.kafka.poll.frequency=100 -mosip.regproc.manual.verification.eventbus.kafka.group.id=manual-verification-stage -mosip.regproc.manual.verification.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} -mosip.regproc.manual.verification.server.servlet.path=/registrationprocessor/v1/manualverification -mosip.regproc.manual.verification.server.port=8084 -mosip.regproc.manual.verification.eventbus.port=5720 - #uin-generator-stage mosip.regproc.uin.generator.eventbus.kafka.commit.type=single mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 @@ -857,13 +899,9 @@ openapi.registrationProcessor.servers[0].description=Registration Processor URL NGINXDMZURL=http://regproc-pktserver.regproc/ -# TODO: Check these properties - they are missing for qa-double-rc2, but services fail if we don't add these. -# packet receiver stage -#Supported commmit config: auto, batch, single -mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single -mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 -mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 -mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage -mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver -mosip.regproc.packet.receiver.server.port=8081 -mosip.regproc.packet.receiver.eventbus.port=5711 +# modifiable delay in websub subscription +mosip.regproc.websub.resubscription.delay.secs=1800000 +mosip.regproc.websub.subscriptions-delay-on-startup.secs=300000 + +# Roles +mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN From 49225bced3bac22d3eae104039957fb65eb420a1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 19 Nov 2021 18:06:34 +0530 Subject: [PATCH 0320/1358] Missing prop added in Applications --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index 2dfe14bfcfd..fbe441cebe2 100644 --- a/application-default.properties +++ b/application-default.properties @@ -388,3 +388,5 @@ mosip.identity.mapping-file=${mosip.kernel.xsdstorage-uri}/identity-mapping.json mosip.notification.timezone=GMT+05:30 +# registration center type validation regex, used to restrict the special charecter +mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34}[a-zA-Z0-9]$ From 562f5fabde1630220d4163a2b4b468adef946a4f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 20 Nov 2021 09:30:55 +0530 Subject: [PATCH 0321/1358] Regproc camel routes updated. --- ...cessor-camel-routes-deactivate-default.xml | 86 +++++++++++++++++- ...essor-camel-routes-res-reprint-default.xml | 37 ++++++++ ...cessor-camel-routes-res-update-default.xml | 91 ++++++++++++++++++- 3 files changed, 207 insertions(+), 7 deletions(-) diff --git a/registration-processor-camel-routes-deactivate-default.xml b/registration-processor-camel-routes-deactivate-default.xml index c46836dbe9d..57a71c08715 100644 --- a/registration-processor-camel-routes-deactivate-default.xml +++ b/registration-processor-camel-routes-deactivate-default.xml @@ -1,4 +1,39 @@ <routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification deactivated route"> + <from uri="eventbus://packet-receiver-deactivated-bus-out" /> + <log message="packet-reciever-->securezone-notification deactivated-route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> <route id="securezone-notification-->packet-uploader deactivated route"> <from uri="eventbus://securezone-notification-deactivated-bus-out" /> <log message="securezone-notification-->packet-uploader deactivated route ${bodyAs(String)}" /> @@ -42,9 +77,54 @@ </otherwise> </choice> </route> - <route id="uin-generation route--> deactivated route"> + <!-- UIN Generator to biometric-extraction Route --> + <route id="uin-generation route-->biometric-extraction-stage deactivated route"> <from uri="eventbus://uin-generator-deactivated-bus-out" /> - <log message="uin-generation--> deactivated route ${bodyAs(String)}" /> + <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://biometric-extraction-bus-in" /> + </otherwise> + </choice> + </route> + <!-- biometric-extraction to finalization Route --> + <route id="biometric-extraction route-->finalization-stage deactivated route"> + <from uri="eventbus://biometric-extraction-deactivated-bus-out" /> + <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + </otherwise> + </choice> + </route> + <!-- finalization to deactivated Route --> + <route id="finalization route--> deactivated route"> + <from uri="eventbus://finalization-deactivated-bus-out" /> + <log message="finalization--> deactivated route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -60,7 +140,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index e8112afcc0e..fc79de8bcc6 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -1,4 +1,39 @@ <routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification res_reprint route"> + <from uri="eventbus://packet-receiver-res_reprint-bus-out" /> + <log message="packet-reciever-->securezone-notification res_reprint ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader res_reprint route"> <from uri="eventbus://securezone-notification-res_reprint-bus-out" /> @@ -40,6 +75,7 @@ </when> <otherwise> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> @@ -61,6 +97,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index 78673948a4b..26b4ac736e6 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -1,4 +1,39 @@ <routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification res_update route"> + <from uri="eventbus://packet-receiver-res_update-bus-out" /> + <log message="packet-reciever-->securezone-notification res_update ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader res_update route"> <from uri="eventbus://securezone-notification-res_update-bus-out" /> @@ -79,6 +114,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> @@ -137,16 +173,61 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> </otherwise> </choice> </route> - <!-- UIN Generator to Printing Route --> - <route id="uin-generation route-->printing-stage res_update route"> + <!-- UIN Generator to biometric-extraction Route --> + <route id="uin-generation route-->biometric-extraction-stage res_update route"> <from uri="eventbus://uin-generator-res_update-bus-out" /> - <log message="uin-generation-->printing-stage res_update route ${bodyAs(String)}" /> + <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://biometric-extraction-bus-in" /> + </otherwise> + </choice> + </route> + <!-- biometric-extraction to finalization Route --> + <route id="biometric-extraction route-->finalization-stage res_update route"> + <from uri="eventbus://biometric-extraction-res_update-bus-out" /> + <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + </otherwise> + </choice> + </route> + <!-- finalization to Printing Route --> + <route id="finalization route-->printing-stage res_update route"> + <from uri="eventbus://finalization-res_update-bus-out" /> + <log message="finalization-->printing-stage res_update route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -162,6 +243,7 @@ </when> <otherwise> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> @@ -183,7 +265,8 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> -</routes> \ No newline at end of file +</routes> From 396cf1a17804999700157d20154b54830208b50f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 20 Nov 2021 09:34:31 +0530 Subject: [PATCH 0322/1358] App prop synced to develop2 --- application-default.properties | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index fbe441cebe2..d99a19f0e38 100644 --- a/application-default.properties +++ b/application-default.properties @@ -31,8 +31,6 @@ mosip.kernel.idobjectvalidator.date-format=uuuu/MM/dd ## Properties that need to be updated when Identity Schema has been updated mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.update-uin=IDSchemaVersion,UIN -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.child-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.new-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registration=IDSchemaVersion,UIN,fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.other=IDSchemaVersion,UIN @@ -51,8 +49,6 @@ mosip.country.code=MOR ## Language supported by platform mosip.supported-languages=eng,fra -mosip.primary-language=eng -mosip.secondary-language=fra mosip.right_to_left_orientation= mosip.left_to_right_orientation=eng,fra @@ -298,6 +294,7 @@ mosip.kernel.syncdata-service-idschema-url=${mosip.masterdata.base.url}/v1/maste mosip.kernel.syncdata-service-dynamicfield-url=${mosip.masterdata.base.url}/v1/masterdata/dynamicfields mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.syncdata.base.url}/v1/syncdata/tpm/publickey/ mosip.kernel.keymanager-service-validate-url=${mosip.keymanager.base.url}/v1/keymanager/validate +mosip.kernel.keymanager-service-csverifysign-url=${mosip.keymanager.base.url}/v1/keymanager/csverifysign ## GPS mosip.registration.gps_device_enable_flag=n @@ -316,6 +313,8 @@ provider.packetreader.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter +# the idschema is double by default. If country wish to change it to string then make this property false +mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl objectstore.crypto.name=OnlinePacketCryptoServiceImpl default.provider.version=v1.0 From cac5f199177badbb510944b3599671d2b11f5867 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 20 Nov 2021 09:39:05 +0530 Subject: [PATCH 0323/1358] Packet manager props added. --- packet-manager-default.properties | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 packet-manager-default.properties diff --git a/packet-manager-default.properties b/packet-manager-default.properties new file mode 100644 index 00000000000..0a4be330459 --- /dev/null +++ b/packet-manager-default.properties @@ -0,0 +1,18 @@ +# Class name of the referenceValidator. Commenting or removing this property will disable reference validator. +mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator + +# Roles +mosip.role.commons-packet.postcreatepacket=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postaddtag=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postaddorupdatetag=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postdeletetag=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postinfo=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postgettags=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postvalidatepacket=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postaudits=REGISTRATION_PROCESSOR +mosip.role.commons-packet.postmetainfo=METADATA_READ +mosip.role.commons-packet.postbiometrics=BIOMETRIC_READ +mosip.role.commons-packet.postdocument=DOCUMENT_READ +mosip.role.commons-packet.postsearchfields=DATA_READ +mosip.role.commons-packet.postsearchfield=DATA_READ +auth.server.admin.allowed.audience=mosip-regproc-client From 35ecfbe698891c7766dabc34a6c141fe989fe6c8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 21 Nov 2021 14:08:27 +0530 Subject: [PATCH 0324/1358] Regproc missing props added. --- registration-processor-default.properties | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 9046d5a12de..e0259f1ed08 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -197,6 +197,22 @@ mosip.registration.processor.lostrid.registrationdate.pattern=yyyy-MM-dd mosip.registration.processor.timezone=GMT mosip.registration.processor.packet.id=mosip.registration.packet mosip.registration.processor.grace.period=10800 +# Supported commmit config: auto, batch, single +mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single +# Maximum records that can be received in one poll from kafka +mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 +# Interval between each poll calls to kafka in milli sec +mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 +# Kafka consumer group id, used by kafka to identify multiple instances of the same consumer +mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage +# Base sevlet path for the stage +mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver +# Port number in which the application will run +mosip.regproc.packet.receiver.server.port=8081 +# Port number to be used by eventbus for communicating with other vertx apps in the cluster +mosip.regproc.packet.receiver.eventbus.port=5711 +# Flag to disable the copying of tags from the packet manger to the message event +mosip.regproc.packet.receiver.message.tag.loading.disable=true ## UIN generation registration.processor.id.repo.create=mosip.id.create From 51134a59bb143ce45ffb1999eeb7b5323f0a6e57 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 23 Nov 2021 11:14:36 +0530 Subject: [PATCH 0325/1358] XML corrected. --- registration-processor-camel-routes-deactivate-default.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-camel-routes-deactivate-default.xml b/registration-processor-camel-routes-deactivate-default.xml index 57a71c08715..146348baff8 100644 --- a/registration-processor-camel-routes-deactivate-default.xml +++ b/registration-processor-camel-routes-deactivate-default.xml @@ -144,3 +144,4 @@ </otherwise> </choice> </route> +</routes> From 397945c551fdd558a3bc3655f742087046625bc9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 23 Nov 2021 11:44:50 +0530 Subject: [PATCH 0326/1358] Reprocessor frequency increased for testing. --- registration-processor-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e0259f1ed08..b0b769c8941 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -289,7 +289,9 @@ registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron registration.processor.reprocess.seconds=0 # TODO: time reduced for testing. Revert for production. -registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 +#registration.processor.reprocess.minutes=0,5,10,15,20,25,30,35,40,45,50,55 +# Every 3 min +registration.processor.reprocess.minutes=0,3,6,9,12,15,18,21,24,27,30,33,36,39,42,45,48,51,54,57 registration.processor.reprocess.hours=* registration.processor.reprocess.days_of_month=* registration.processor.reprocess.months=* From c1ee08ca78a5fc53300fc3af8190df6ee677594a Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Tue, 23 Nov 2021 16:22:21 +0530 Subject: [PATCH 0327/1358] Update kernel-default.properties commented property as not required. "mosip.security.provider.name=SunPKCS11-pkcs11-proxy" --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 14b065f98e8..c4d40514bc2 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -295,7 +295,7 @@ auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authoriz ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 -mosip.security.provider.name=SunPKCS11-pkcs11-proxy +#mosip.security.provider.name=SunPKCS11-pkcs11-proxy ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client From 29edefe6b9a78b6bf29a02a24c8ffb688ba0dfca Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 24 Nov 2021 11:57:47 +0530 Subject: [PATCH 0328/1358] Updated regproc prop. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b0b769c8941..dca232d5ae1 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -142,7 +142,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo registration.processor.demodedupe.manual.adjudication.status=REJECTED # Validate hostlisted devices -DEVICEHOTLIST=http://admin-hotlist.admin/v1/hotlist +DEVICEHOTLIST=http://admin-hotlist.admin/v1/hotlist/status JWTVERIFY=${KEYMANAGER}/v1/keymanager/jwtVerify ## Crypto From e5db06b9e14912d5ca131bab32d200b015bc363e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 24 Nov 2021 12:54:28 +0530 Subject: [PATCH 0329/1358] Regproc camel route corrected. --- ...tion-processor-camel-routes-biometric-correction-default.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-camel-routes-biometric-correction-default.xml b/registration-processor-camel-routes-biometric-correction-default.xml index 46f127d744e..62786cd8b7a 100644 --- a/registration-processor-camel-routes-biometric-correction-default.xml +++ b/registration-processor-camel-routes-biometric-correction-default.xml @@ -29,7 +29,7 @@ <setBody> <simple>${bodyAs(String)}</simple> </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> </otherwise> </choice> </route> From 70601bb3646295dea7e92336cf42121ae95a3abf Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 24 Nov 2021 13:41:54 +0530 Subject: [PATCH 0330/1358] Registration client props synced with develop2. --- registration-default.properties | 133 ++++---------------------------- 1 file changed, 16 insertions(+), 117 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index ce6fa9416a4..409745cc6eb 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -207,33 +207,9 @@ mosip.registration.face_threshold=90 #Maximum number of days where Registration or UIN Update or Lost UIN will be allowed without updating the Registration Client Software mosip.registration.softwareUpdateCheck_configured_frequency = 300 -#----Consent Message to be displayed in Registration Preview Screen based on Application's Primary Language---- - -#For English as primary language -mosip.registration.consent_eng=I understand that the data collected about me during registration by the said authority includes my -<br>• Name <br> • Date of birth <br> • Gender <br> • Address <br> • Contact details <br> • Documents <br> I also understand that this information will be stored and processed for the purpose of verifying my identity in order to access various services, or to comply with a legal obligation. I give my consent for the collection of this data for this purpose. - - -#For French as primary language -mosip.registration.consent_fra=Je comprends que les données recueillies à mon sujet lors de la enregistrement par ladite autorité comprennent mon - <br> • nom <br>• Date de naissance <br>• genre <br>• adresse <br>• coordonnées <br>• Documents <br>Je comprends également que ces informations seront stockées et traitées dans le but de vérifier mon identité afin d'accéder à divers services, ou de se conformer à une obligation légale. Je donne mon consentement pour la collecte de ces données à cette fin. - - -#Name of the Webcam to be used for capturing photo -#if camera with this name is not found, simply chooses first camera discovered -mosip.registration.webcam_name=logitech - #Enable or Disable the Scanner Device for Document Scanning. mosip.registration.document_scanner_enabled=No - -#----Guidelines Text to be displayed in Registration Acknowledgement Receipt based on Application Primary Language---- - -#For English language -mosip.registration.important_guidelines_eng=COUNTRY TO DEFINE THE TEXT OF GUIDELINES - -#For French language -mosip.registration.important_guidelines_fra=COUNTRY TO DEFINE THE TEXT OF GUIDELINES - - #Application ID of the Registration Client required for Authentication Web-Service. Should not be modified. mosip.registration.app.id=registrationclient @@ -281,6 +257,19 @@ mosip.registration.mdm.host=127.0.0.1 mosip.registration.mdm.portRangeFrom=4501 mosip.registration.mdm.portRangeTo=4600 +mosip.biometric.sdk.providers.finger.mockvendor.classname=io.mosip.mock.sdk.impl.SampleSDK +mosip.biometric.sdk.providers.finger.mockvendor.version=0.9 +mosip.biometric.sdk.providers.finger.mockvendor.args= +mosip.biometric.sdk.providers.finger.mockvendor.threshold=60 +mosip.biometric.sdk.providers.iris.mockvendor.classname=io.mosip.mock.sdk.impl.SampleSDK +mosip.biometric.sdk.providers.iris.mockvendor.version=0.9 +mosip.biometric.sdk.providers.iris.mockvendor.args= +mosip.biometric.sdk.providers.iris.mockvendor.threshold=60 +mosip.biometric.sdk.providers.face.mockvendor.classname=io.mosip.mock.sdk.impl.SampleSDK +mosip.biometric.sdk.providers.face.mockvendor.version=0.9 +mosip.biometric.sdk.providers.face.mockvendor.args= +mosip.biometric.sdk.providers.face.mockvendor.threshold=60 + ## SDK configurations #SDK implementation class for finger modality mosip.biometric.sdk.provider.finger.classname=io.mosip.mock.sdk.impl.SampleSDK @@ -315,96 +304,6 @@ mosip.biometric.sdk.provider.face.args= #Quality threshold used by SDK to match modality mosip.biometric.sdk.provider.face.threshold=60 -##------------------------------------- unused properties -#Maximum no. of days without login credentials sync beyond which client is frozen for registration -mosip.registration.Login_Credentials_Sync.frequency=190 - -#Maximum no. of days without checking for software set-up beyond which client is frozen for registration -mosip.registration.Registration_Client_Setup_Sync.frequency=190 - -#Maximum no. of days without checking for software update beyond which client is frozen for registration -mosip.registration.Registration_Client_Config_Sync.frequency=190 - -#Maximum no. of days for User Role Set-up Sync beyond which client is frozen for registration -mosip.registration.User_Role_Setup_Sync.frequency=190 - -#Minimum number of biometrics required to on-board the officer -mosip.registration.user_on_board_threshold_limit=1 - -#Admin Setting to turn Fingerprint Capture On or Off. If y, finger print is turned on. If n, Finger print is truned off. -mosip.registration.fingerprint_enable_flag=Y - -#Admin Setting to turn Iris Capture On or Off. If y, iris is turned on. If n, iris turned off. -mosip.registration.iris_enable_flag=Y - -#Admin Setting to turn Face Capture On or Off. If y, face is turned on. If n, face is truned off. -mosip.registration.face_enable_flag=Y - -#Validate the quality of captured fingerprint. Used by fingerprint capture device. -mosip.registration.quality_score=60 - -#Minimum time (in seconds) to elapse between face photo recaptures -mosip.registration.re_capture_time=10 - -#Days before key expiry that registration should be inhibited -mosip.registration.key_policy_sync_threshold_value=1 - -#Whether to show UI for sync Data report (Currently not available) -mosip.registration.ui_sync_data=y - -#Minimum time (in seconds) to elapse between face photo recaptures -mosip.registration.face_recapture_time=5 - -#Webcam Library Name. Should not be modified -mosip.registration.webcam_library_name=sarxos - -#Send notifications to additional recipients after Registration is completed. If set to y, this feature will be enabled. -#If set to n, this feature will not be enabled -mosip.registration.send_notification_disable_flag=y - -#Current MDS version -current_mdm_spec=0.9.2 - -#Threshold quality for Iris biometric authentication, but this is not used currently -mosip.iris_authentication.quality_score=30 - -mosip.registration.mdm.contextPath= -mosip.registration.mdm.hostProtocol=http - -## ---------------------------------- Properties need to be removed from code and properties -#Fields that can be updated through the UIN Update feature -mosip.registration.uin.update.configured.fields=name,age,gender,address,phone,email,parentOrGuardianDetails,foreigner,biometrics,cnieNumber - -#Max registration packet size (in MB) allowed to be uploaded -mosip.registration.max_reg_packet_size=5 - -#Create CBEFF file with both Duplicate and Unique Tags or with only Unique Tags. If Y, only Unique Tags will be available in CBEFF. -#If N, both Duplicate and Unique Tags will be available -mosip.registration.cbeff_only_unique_tags=Y - -#Registration Packet Local Storage Date's pattern for Folder -mosip.registration.packet_store_date_format=dd-MMM-yyyy - -#Enable or Disable the MDM service. If set to Y, the MDM services will be invoked for capturing the biometrics. -#If set N, the MDM services will not be invoked. -mosip.mdm.enabled=N - -#Regex Pattern for validating the CNIE Number, need to remove from rollback scripts -mosip.id.validation.identity.CNIENumber=^([0-9]{10,30})$ - -#Regex Pattern for validating the CNIE Number -mosip.id.validation.identity.referenceIdentityNumber=^([0-9]{10,30})$ - -#Admin Setting to turn local deduplication check for finger print On or Off. If y, dedupe check is turned on. If n, dedupe check is truned off. -mosip.registration.mds.fingerprint.dedup.enable.flag=N - -#Admin Setting to turn local deduplication check Iris On or Off. If y, dedupe check is turned on. If n, dedupe check is truned off. -mosip.registration.mds.iris.dedup.enable.flag=N - -#Admin Setting to turn local deduplication check Face On or Off. If y, dedupe check is turned on. If n, dedupe check is truned off. -mosip.registration.mds.face.dedup.enable.flag=N - -## ----------------------- kernel properties --- Required to be here ? #----Kernel's ID Object Validator Component. Identity object have to be validated in local---- @@ -425,9 +324,6 @@ mosip.kernel.transliteration.arabic-language-code=ara #Language Code for French Language. Should not be modified mosip.kernel.transliteration.franch-language-code=fra -#Language Code for French Language. Should not be modified -mosip.kernel.transliteration.english-language-code=eng - #----For CBEFF Component---- #CBEFF XSD Storage URI. Should not be modified @@ -479,6 +375,9 @@ mosip.registration.packet_upload_batch_size=5 #used to fill env in the MDM rcapture request mosip.registration.server_profile=Staging +#Batch size for Packet Status Search Job +mosip.registration.status_sync_batch_size=5 + # domain used for MDM trust validation # For L1 devices this should be FTM mosip.registration.mdm.trust.domain.rcapture=DEVICE From a013c9e874309956c7060ff635b6ac08d638b5b2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 24 Nov 2021 15:09:07 +0530 Subject: [PATCH 0331/1358] Face removed from abis modalities --- registration-processor-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index dca232d5ae1..881cbd35bae 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -644,7 +644,8 @@ mosip.regproc.abis.handler.eventbus.port=5726 mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler mosip.regproc.abis.handler.biometric-modalities-segments-mapping.INFANT={'Face':{'Face'}} mosip.regproc.abis.handler.biometric-modalities-segments-mapping.MINOR={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} -mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} +#mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} +mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'}} mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye','Face' : 'face'} #bio-dedupe-stage From 2efc620103cabd07ef4a6a44d5a29dcddfae1eba Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 24 Nov 2021 17:29:49 +0530 Subject: [PATCH 0332/1358] ID Repo props updated. --- id-repository-default.properties | 31 ++++++++++++++----------------- 1 file changed, 14 insertions(+), 17 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 412acb237c8..4d72bbac389 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -73,8 +73,6 @@ mosip.idrepo.identity.json.path=identity.UIN mosip.idrepo.identity.uin-status.registered=ACTIVATED # List of allowed UIN status in ID-Repo mosip.idrepo.identity.uin-status=ACTIVATED,BLOCKED,DEACTIVATED -# Types allowed in retreiveIdentity requests -mosip.idrepo.identity.allowedTypes=bio,demo,all # idobjectvalidator # Class name of the referenceValidator. Commenting or removing this property will disable reference validator. @@ -303,31 +301,30 @@ credential.service.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip # BioSDK service mosip.biosdk.default.host=http://biosdk-service.biosdk mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service - # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.finger.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 # The version of the BIO SDK API implemeted for Finger modality -mosip.biometric.sdk.provider.finger.version=0.9 -mosip.biometric.sdk.provider.finger.format.url.mock-1.1=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} # The default URL will be taken if no format specified in the extraction or the incoming extraction format is not configured. # If the below default configuration is not configured, the one of the configured url will be used as the default URL. # If no URL is configured, the default URL will be taken from the environment variable 'mosip_biosdk_service'. -mosip.biometric.sdk.provider.finger.format.url.default=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} # The fully qualified Class Name of the BIO SDK API implemented for Iris modality # This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.iris.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 # The version of the BIO SDK API implemeted for Iris modality -mosip.biometric.sdk.provider.iris.version=0.9 -mosip.biometric.sdk.provider.iris.format.url.mock-1.1=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.iris.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} # The fully qualified Class Name of the BIO SDK API implemented for Face modality # This class will be loaded in runtime, the containing jar should be available in classpath -mosip.biometric.sdk.provider.face.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 # The version of the BIO SDK API implemeted for Face modality -mosip.biometric.sdk.provider.face.version=0.9 -mosip.biometric.sdk.provider.face.format.url.mock-1.1=${mosip.biosdk.default.service.url} +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.version=0.9 +mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} # Credential issuance Event properties id-repo-ida-event-type-namespace=mosip @@ -348,12 +345,12 @@ auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -mosip.iam.adapter.appid.id-repository=regproc -mosip.iam.adapter.clientid.id-repository=mosip-regproc-client -mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.regproc.client.secret} - auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client +#openapi properties to sort tag and operations of id-repository services +springdoc.swagger-ui.tagsSorter=alpha +springdoc.swagger-ui.operationsSorter=alpha + # Roles mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST From e9c58749a5fb424125d75e4af6607a6f1e729974 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 24 Nov 2021 18:21:31 +0530 Subject: [PATCH 0333/1358] Update print-default.properties --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index 190a8f798ff..ac08c7e3205 100644 --- a/print-default.properties +++ b/print-default.properties @@ -7,7 +7,7 @@ ## Websub websub.base.url=http://websub.websub -mosip.event.hubURL=${websub.base.url}/websub +mosip.event.hubURL=${websub.base.url}/hub mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident From eb2f257c8889c5a6d53cdc7b53dd956fdd38ddc3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 08:02:57 +0530 Subject: [PATCH 0334/1358] Regproc abis props updated. --- registration-processor-default.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 881cbd35bae..dc99aec6e17 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -643,10 +643,9 @@ mosip.regproc.abis.handler.server.port=9071 mosip.regproc.abis.handler.eventbus.port=5726 mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler mosip.regproc.abis.handler.biometric-modalities-segments-mapping.INFANT={'Face':{'Face'}} -mosip.regproc.abis.handler.biometric-modalities-segments-mapping.MINOR={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} -#mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'},'Face':{'Face'}} +mosip.regproc.abis.handler.biometric-modalities-segments-mapping.MINOR={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'}} mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'}} -mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye','Face' : 'face'} +mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye'} #bio-dedupe-stage mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single From a19a50b40d52a210e6b05687ee46d0e2c0cdbf72 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 11:10:31 +0530 Subject: [PATCH 0335/1358] IDA props updated. --- id-authentication-default.properties | 3 --- id-authentication-external-default.properties | 7 +++++++ id-authentication-otp-default.properties | 8 ++++++++ 3 files changed, 15 insertions(+), 3 deletions(-) create mode 100644 id-authentication-external-default.properties create mode 100644 id-authentication-otp-default.properties diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 9fc334d7d0f..2ceeaab5ec7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -229,9 +229,6 @@ ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servle ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate ## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist -## Masterdata templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties new file mode 100644 index 00000000000..ae918afd20d --- /dev/null +++ b/id-authentication-external-default.properties @@ -0,0 +1,7 @@ +## Masterdata templates +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles + +mosip.service-context=${server.servlet.context-path} +mosip.service.end-points=/**/* +mosip.service.exclude.auth.allowed.method=GET,POST diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties new file mode 100644 index 00000000000..0a4a47fcf4c --- /dev/null +++ b/id-authentication-otp-default.properties @@ -0,0 +1,8 @@ +## Masterdata templates +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles + +#Endpoints to access without authentication +mosip.service-context=${server.servlet.context-path} +mosip.service.end-points=/**/* +mosip.service.exclude.auth.allowed.method=GET,POST From e79abfaaeddd0612c141de5275d35ad1b57e52b2 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Thu, 25 Nov 2021 12:12:28 +0530 Subject: [PATCH 0336/1358] Update resident-default.properties Added mosip-reg-client in the allowed audience to run DSD. --- resident-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 667c279f345..75861dbf805 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -104,4 +104,5 @@ token.request.clientId=mosip-resident-client token.request.secretKey=${mosip.mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter -auth.server.admin.allowed.audience=mosip-resident-client +#todo remove reg-client service accunt in production env +auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client From ea86ef2e6e613972f8076fbb4693d64396c837f5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 12:20:13 +0530 Subject: [PATCH 0337/1358] Minor. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 75861dbf805..adaca5770ac 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -104,5 +104,5 @@ token.request.clientId=mosip-resident-client token.request.secretKey=${mosip.mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter -#todo remove reg-client service accunt in production env +#TODO remove reg-client service accunt in production env auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client From 6f406c97782a85a93c018066c82a17cb33bcefa0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 12:28:56 +0530 Subject: [PATCH 0338/1358] mosip-reg-client added as allowed audience for testing. Remove later. --- kernel-default.properties | 2 +- partner-management-default.properties | 2 +- pre-registration-default.properties | 2 +- syncdata-default.properties | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index c4d40514bc2..345fdf59ae1 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -446,7 +446,7 @@ openapi.service.servers[0].description=For Swagger zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client diff --git a/partner-management-default.properties b/partner-management-default.properties index f34beed2d07..26d6f809d3e 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -146,7 +146,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-reg-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 44de4204c30..c576ee551c9 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -246,7 +246,7 @@ appId=prereg kernel.auth.env=http://authmanager.kernel kernel.auth.contextpath=authmanager auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## PRID service kernel.prid.env=http://pridgenerator.kernel diff --git a/syncdata-default.properties b/syncdata-default.properties index 7b87974e3ca..880bde08473 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -300,7 +300,7 @@ kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 From ee2c802251626bd9dbfe6bf492b0aa089984c6aa Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 12:36:26 +0530 Subject: [PATCH 0339/1358] Unused props removed. --- kernel-default.properties | 4 ++-- syncdata-default.properties | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 345fdf59ae1..53ea95f514d 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -303,7 +303,7 @@ mosip.ui.spec.default.domain=registration-client #### Required for admin UI ############## ## this pattern like --> display column : configKey. ## We can provide multiple values with ";" separated -mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager @@ -418,7 +418,7 @@ syncdata.websub.resubscription.delay.millis=48000000 ## Admin UI ## this pattern like --> display column : configKey. ## We can provide multiple values with ";" separated -mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. diff --git a/syncdata-default.properties b/syncdata-default.properties index 880bde08473..131a1ce4d99 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -312,7 +312,7 @@ mosip.ui.spec.default.domain=registration-client #### Required for admin UI ############## ## this pattern like --> display column : configKey. ## We can provide multiple values with ";" separated -mosip.admin.ui.configs=primaryLangCode:${mosip.primary-language};secondaryLangCode:${mosip.secondary-language};version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager From fc0775ce243503202c31cf2cb2b9bd22471da4a4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 14:21:38 +0530 Subject: [PATCH 0340/1358] IDA prop corrected. --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 2ceeaab5ec7..644b0231ccb 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -162,13 +162,13 @@ sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=http://idrepo-identity.idrepo/idrepository/v1/identity/idvid/{rid}?type={type} +rid-uin.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=http://idrepo-identity.idrepo/idrepository/v1/identity/idvid/{rid} +rid-uin-auth.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} From bb2d18c402d9592751a9d9cfd5183ec70e0a1364 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Thu, 25 Nov 2021 17:29:56 +0530 Subject: [PATCH 0341/1358] Update registration-processor-default.properties Added missing registration.external.status.id property. --- registration-processor-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index dc99aec6e17..b907363c486 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -923,3 +923,6 @@ mosip.regproc.websub.subscriptions-delay-on-startup.secs=300000 # Roles mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN + +# Registration External Status Id +mosip.registration.processor.registration.external.status.id=mosip.registration.external.status From 3f006c69b8434bca1c7d074c76bafa14fb6c2ba0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 25 Nov 2021 23:31:39 +0530 Subject: [PATCH 0342/1358] Missing dmz properties added in regproc. --- registration-processor-default.properties | 29 +++++++++++++++++++++++ 1 file changed, 29 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index dc99aec6e17..317185147ec 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -170,6 +170,17 @@ mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.sync.version=1.0 mosip.registration.processor.lostrid.version=1.0 +mosip.registration.processor.registration.external.status.id=mosip.registration.external.status +mosip.registration.processor.packet.external.status.id=mosip.registration.packet.external.status + +# LatestTransactionTypeCodes Before uploading to Object Store +mosip.registration.processor.packet.status.transactiontypecodes-before-uploading-to-objectstore=PACKET_RECEIVER,SECUREZONE_NOTIFICATION +# LatestTransactionTypeCode uploading to Object Store +mosip.registration.processor.packet.status.transactiontypecodes-uploading-to-objectstore=UPLOAD_PACKET +# LatestTransactionTypeCodes time based resend required +mosip.registration.processor.packet.status.transactiontypecodes-time-based-resend-required=PACKET_RECEIVER + +mosip.registration.processor.registration.status.external-statuses-to-consider-processed=UIN_GENERATED,REREGISTER,REJECTED,REPROCESS_FAILED # this property is used in lostrid api to get postal code mosip.registration.processor.postalcode.req.url=${MASTER}/registrationcenters @@ -921,5 +932,23 @@ NGINXDMZURL=http://regproc-pktserver.regproc/ mosip.regproc.websub.resubscription.delay.secs=1800000 mosip.regproc.websub.subscriptions-delay-on-startup.secs=300000 +# The list of comma separated stages that should be successfully completed before packet +# reaches the stage that uploads packets to the packet store +mosip.registration.processor.registration.status.stages-before-reaching-packet-store=PacketReceiverStage,SecurezoneNotificationStage + +# Registration External Status Version +mosip.registration.processor.registration.external.status.version=1.0 +# Packet Status Version +mosip.registration.processor.packet.external.status.version=1.0 + # Roles mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN +mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR +mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN +mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT + From 480bc115d5f9d83476dcd26d6c85fe86e2f477e4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 27 Nov 2021 09:27:14 +0530 Subject: [PATCH 0343/1358] Props synced with develop2. --- registration-default.properties | 14 ++++---------- registration-processor-default.properties | 4 ++-- 2 files changed, 6 insertions(+), 12 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 409745cc6eb..c271ba15d23 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -388,13 +388,7 @@ mosip.registration.mdm.trust.domain.deviceinfo=DEVICE # range will result in a random behaviour of tagging. In range, upper and lower values are inclusive. mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR':'6-17','ADULT':'18-200'} -# Roles -mosip.role.registration.postauth=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.registration.getgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN -mosip.role.registration.postexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.postpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.postsearch=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN +# On every Pre-reg application fetch in registration page, clears all the captured data prior to pre-reg application fetch +# set the field id's which should not be cleared after Pre-reg application fetch +# it is comma separated list of field ids +mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferredLang diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 317185147ec..8993538be4c 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -929,8 +929,8 @@ openapi.registrationProcessor.servers[0].description=Registration Processor URL NGINXDMZURL=http://regproc-pktserver.regproc/ # modifiable delay in websub subscription -mosip.regproc.websub.resubscription.delay.secs=1800000 -mosip.regproc.websub.subscriptions-delay-on-startup.secs=300000 +mosip.regproc.websub.resubscription.delay.millisecs=43200000 +mosip.regproc.websub.subscriptions-delay-on-startup.millisecs=300000 # The list of comma separated stages that should be successfully completed before packet # reaches the stage that uploads packets to the packet store From 0e3a55fdc3de4baba5fd4eda33f8f3e40b517041 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 27 Nov 2021 15:57:10 +0530 Subject: [PATCH 0344/1358] Auth adapter props added. --- id-authentication-default.properties | 6 ++++++ id-repository-default.properties | 6 ++++++ 2 files changed, 12 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 644b0231ccb..28754e50cd4 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -476,6 +476,12 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM +# IAM Adapter +mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} +mosip.iam.adapter.clientsecret=${mosip.ida.auth.secretKey} +mosip.iam.adapter.appid=${mosip.ida.auth.appId} +mosip.authmanager.client-token-endpoint=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey + ## IDA key generator keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip.ida.database.port}/mosip_ida diff --git a/id-repository-default.properties b/id-repository-default.properties index 4d72bbac389..28df888f0b3 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -185,6 +185,12 @@ mosip.idrepo.websub.vid-credential-update.topic=VID_CRED_STATUS_UPDATE mosip.idrepo.websub.vid-credential-update.secret= ${idrepo.websub.vid.credential.update.secret} mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE +## Auth adapter +mosip.iam.adapter.clientid.id-repository=mosip-regproc-client +mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.regproc.client.secret} +mosip.iam.adapter.appid.id-repository=regproc +mosip.authmanager.client-token-endpoint=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey + mosip.idrepo.uin-generator.rest.uri=http://idgenerator.kernel/v1/idgenerator/uin mosip.idrepo.uin-generator.rest.httpMethod=GET mosip.idrepo.uin-generator.rest.headers.mediaType=application/json From 841c8d944396f8cc0243b424ddda1f85116e4ac9 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Mon, 29 Nov 2021 12:39:38 +0530 Subject: [PATCH 0345/1358] Update partner-management-default.properties Added property for self registration disable. --- partner-management-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index 26d6f809d3e..a7d66c48a2d 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -286,3 +286,5 @@ mosip.role.pms.postmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.putmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmispsmispidlicensekey=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER + +partner.register.as.user.in.iam.enable=false From ad9772e536ce0c3801d757afac3fc218bbbb9edd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 30 Nov 2021 08:58:44 +0530 Subject: [PATCH 0346/1358] Admin prop added. --- admin-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/admin-default.properties b/admin-default.properties index d08d671edc8..f50e11fb15a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -228,6 +228,7 @@ mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.lostrid.version=1.0 LOST_RID_API=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/lostridsearch +logging.level.org.springframework.web.client.RestTemplate=DEBUG # Roles mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN From 38005db774d734dc405d52df33030cac6c53700f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 30 Nov 2021 16:01:56 +0530 Subject: [PATCH 0347/1358] Role added to Kernel. --- kernel-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/kernel-default.properties b/kernel-default.properties index 53ea95f514d..17d315e3ec0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -745,6 +745,7 @@ mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdynamicfieldsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER From e7b381f8a8d2fbab951c80e5a69348e65e7ca8e7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Tue, 30 Nov 2021 16:43:08 +0530 Subject: [PATCH 0348/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 17d315e3ec0..0a6060a1d5c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -439,7 +439,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url -openapi.service.servers[0].url=https://${mosip.api.internal.host} +openapi.service.servers[0].url=https://${mosip.api.internal.host}/v1/masterdata openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's From 2e2171f4114565ddad0281888cabcd0493689b0b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 30 Nov 2021 18:09:31 +0530 Subject: [PATCH 0349/1358] unused prop removed. --- id-authentication-default.properties | 5 ----- 1 file changed, 5 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 28754e50cd4..fa8c71f4f91 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -393,11 +393,6 @@ request.idtypes.allowed=VID,UIN ## The ID types to be supported for Internal Authentication/OTP Requests request.idtypes.allowed.internalauth=UIN,VID -## Encrypted Credential Attributes list -## The list of attributes in identity that are Zero Knowledge encrpted in IDA while storing the credential in DB. -## This list is used to identify the attributes to decrypt when fetching the records from DB -ida-zero-knowledge-encrypted-credential-attributes=individualBiometrics,fullName,dateOfBirth,phone,email,postalCode,city,region,province,zone - ## Cryptograpic/Signature verificate related configurations mosip.ida.internal.thumbprint-validation-required=false mosip.ida.internal.trust-validation-required=false From 2b95ea94e1fd37819a40fc1c2a0c95d7b5303d61 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 30 Nov 2021 18:19:46 +0530 Subject: [PATCH 0350/1358] IDA prop updated. --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index fa8c71f4f91..4b5d0d31f84 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -555,7 +555,7 @@ mosip.ida.credential.biometric.attribute.name=individualBiometrics biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX #The list of attributes in identity that are to be decrypted by default -ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email #------ Un-encrypted Credential Attributes list ----------- #The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). From 329160dc812a188c12c1865831cbbeeb123a988c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Wed, 1 Dec 2021 09:16:51 +0530 Subject: [PATCH 0351/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0a6060a1d5c..610a421bdc5 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -439,7 +439,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url -openapi.service.servers[0].url=https://${mosip.api.internal.host}/v1/masterdata +openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path} openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's From dc0ca097b9e2c18fc203fd3b6c3032d0c9ff1401 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Dec 2021 13:09:23 +0530 Subject: [PATCH 0352/1358] Reverted previous prop change. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 610a421bdc5..0a6060a1d5c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -439,7 +439,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url -openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path} +openapi.service.servers[0].url=https://${mosip.api.internal.host}/v1/masterdata openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's From e2ee8ed5deb66597bc61c5985d4afb42681f26ae Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Dec 2021 13:16:07 +0530 Subject: [PATCH 0353/1358] Identity json synced with develop2 --- identity-mapping.json | 33 +++++++++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) diff --git a/identity-mapping.json b/identity-mapping.json index dd54babc19b..443c34632f7 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -30,9 +30,15 @@ "phone": { "value": "phone" }, + "phoneNumber": { + "value": "phone" + }, "email": { "value": "email" }, + "emailId": { + "value": "email" + }, "uin": { "value": "UIN" }, @@ -59,6 +65,33 @@ }, "locationHierarchyForProfiling": { "value": "zone,postalCode" + }, + "addressLine1": { + "value": "addressLine1" + }, + "addressLine2": { + "value": "addressLine2" + }, + "addressLine3": { + "value": "addressLine3" + }, + "location1": { + "value": "city" + }, + "location2": { + "value": "region" + }, + "location3": { + "value": "province" + }, + "postalCode": { + "value": "postalCode" + }, + "location4": { + "value": "zone" + }, + "fullAddress": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" } }, "metaInfo": { From a7994d32015b056eff93fabea9b725158ec8581b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 1 Dec 2021 15:43:41 +0530 Subject: [PATCH 0354/1358] Reg proc prop addded. --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8993538be4c..64317351813 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -109,6 +109,7 @@ TEMPLATES=${MASTER}/templates DEVICEVALIDATEHISTORY=http://pms-partner.pms/v1/partnermanager/deviceprovidermanagement/validate #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest +LANGUAGE=${MASTER}/languages ## ID Repository Services IDENTITY=http://identity.idrepo From 082f9e6ce34d4870531f64c09fcef028e0791cd9 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 2 Dec 2021 10:41:02 +0530 Subject: [PATCH 0355/1358] Added new properties. --- kernel-default.properties | 43 ++------------------------- partner-management-default.properties | 4 +-- pre-registration-default.properties | 2 +- registration-default.properties | 6 ++++ 4 files changed, 12 insertions(+), 43 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0a6060a1d5c..14360134d52 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -453,46 +453,9 @@ mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} #AdminMaster endpoints to access without authentication -mosip.service-context=/v1/masterdata -mosip.service.end-points[0]=/**/getApplicationType -mosip.service.end-points[1]=/**/applicationtype/{applicationId}/languages -mosip.service.end-points[2]=/**/blocklistedwords/{langcode} -mosip.service.end-points[3]=/**/documentcategories -mosip.service.end-points[4]=/**/documentcategories/{langcode} -mosip.service.end-points[5]=/**/documenttypes/{documentcategorycode}/{langcode} -mosip.service.end-points[6]=/**/documenttypes/{langcode} -mosip.service.end-points[7]=/**/dynamicfields -mosip.service.end-points[8]=/**/dynamicfields/distinct -mosip.service.end-points[9]=/**/exceptionalholidays/{registrationCenterId}/{languageCode} -mosip.service.end-points[10]=/**/gendertypes -mosip.service.end-points[11]=/**/gendertypes/{langcode} -mosip.service.end-points[12]=/**/gendertypes/validate/{gendername} -mosip.service.end-points[13]=/**/idtypes/{langcode} -mosip.service.end-points[14]=/**/individualtypes -mosip.service.end-points[15]=/**/languages -mosip.service.end-points[16]=/**/locations/{langcode} -mosip.service.end-points[17]=/**/locations/{locationcode}/{langcode} -mosip.service.end-points[18]=/**/locations/info/{locationcode}/{langcode} -mosip.service.end-points[19]=/**/locations/locationhierarchy/{hierarchyname} -mosip.service.end-points[20]=/**/locations/immediatechildren/{locationcode}/{langcode} -mosip.service.end-points[21]=/**/locations/validate/{locationname} -mosip.service.end-points[22]=/**/locationHierarchyLevels/{level}/{langcode} -mosip.service.end-points[23]=/**/locationHierarchyLevels/{langcode} -mosip.service.end-points[24]=/**/templates -mosip.service.end-points[25]=/**/templates/{langcode} -mosip.service.end-points[26]=/**/templates/{langcode}/{templatetypecode} -mosip.service.end-points[27]=/**/templates/templatetypecodes/{code} -mosip.service.end-points[28]=/**/templatetypes/{code}/{langcode} -mosip.service.end-points[29]=/**/templatetypes/{langcode} -mosip.service.end-points[30]=/**/title -mosip.service.end-points[31]=/**/title/{lancode} -mosip.service.end-points[32]=/**/uispec/{domain}/latest -mosip.service.end-points[33]=/**/validdocuments/{languagecode} -mosip.service.end-points[34]=/**/validdocuments/{docCategoryCode}/{languagecode} -mosip.service.end-points[35]=/**/weekdays/{registrationCenterId}/{langCode} -mosip.service.end-points[36]=/**/workingdays/{registrationCenterID}/{langCode} -mosip.service.end-points[37]=/**/workingdays/{langCode} -mosip.service.end-points[38]=/**/zones/leafs/{langCode} +mosip.service.end-points={cipher}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 + + spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true diff --git a/partner-management-default.properties b/partner-management-default.properties index a7d66c48a2d..96f5768fc02 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -151,7 +151,7 @@ auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token #To populate required roles which should be allowed in UI.(Roles are nothing but partner types) -mosip.pms.ui.required.roles=Auth_Partner,Device_Provider,Credential_Partner,FTM_Provider,MISP_Partner +mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN # To configure misp partner type mosip.pms.misp.partner.type=MISP_Partner # Role for partner admin = @@ -183,7 +183,7 @@ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.kernel.filtervalue.max_columns =100 +mosip.pms.filtervalue.max_columns =100 mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c576ee551c9..da75da8ca28 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -395,7 +395,7 @@ mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recapt mosip.security.csrf-enable:false mosip.security.cors-enable:false # Comma Separated Allowed Origins -mosip.security.origins:localhost:8080,localhost:4200 +mosip.security.origins:localhost:8080,localhost:4200,${mosipbox.public.url} mosip.security.secure-cookie:false ## for prereg booking notification name validation diff --git a/registration-default.properties b/registration-default.properties index c271ba15d23..bf14ed74bc4 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -392,3 +392,9 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR': # set the field id's which should not be cleared after Pre-reg application fetch # it is comma separated list of field ids mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferredLang + + +mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT +mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN \ No newline at end of file From 3eec2b2d4c1179638db37b0557d8786fa8f6faa3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 3 Dec 2021 16:48:50 +0530 Subject: [PATCH 0356/1358] Unused file removed. --- print-default.properties | 2 +- registration-processor-default.properties | 2 +- registration-processor-identity.json | 82 ----------------------- resident-default.properties | 2 +- 4 files changed, 3 insertions(+), 85 deletions(-) delete mode 100644 registration-processor-identity.json diff --git a/print-default.properties b/print-default.properties index ac08c7e3205..88727b781ad 100644 --- a/print-default.properties +++ b/print-default.properties @@ -105,7 +105,7 @@ registration.processor.unMaskedUin.length=5 config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ IDSchema.Version=1.0 -registration.processor.identityjson=registration-processor-identity.json +registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity CREATEDATASHARE=http://datashare.datashare/v1/datashare/create DECRYPTPINBASSED=http://keymanager.keymanager/v1/keymanager/decryptWithPin diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 64317351813..d311b3e1aff 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -244,7 +244,7 @@ mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.Vir ## Message sender # Mapping identity json to map with the applicant id json -registration.processor.identityjson=registration-processor-identity.json +registration.processor.identityjson=identity-mapping.json registration.processor.abis.json=registration-processor-abis.json registration.processor.demographic.identity=identity registration.processor.notification.emails= diff --git a/registration-processor-identity.json b/registration-processor-identity.json deleted file mode 100644 index 5401557e24c..00000000000 --- a/registration-processor-identity.json +++ /dev/null @@ -1,82 +0,0 @@ -{ - "identity":{ - "IDSchemaVersion":{ - "value":"IDSchemaVersion" - }, - "name":{ - "value":"fullName" - }, - "gender":{ - "value":"gender" - }, - "dob":{ - "value":"dateOfBirth" - }, - "age":{ - "value":"age" - }, - "introducerRID":{ - "value":"introducerRID" - }, - "introducerUIN":{ - "value":"introducerUIN" - }, - "introducerVID":{ - "value":"introducerVID" - }, - "introducerName":{ - "value":"introducerName" - }, - "phone":{ - "value":"phone" - }, - "email":{ - "value":"email" - }, - "uin":{ - "value":"UIN" - }, - "individualBiometrics":{ - "value":"individualBiometrics" - }, - "introducerBiometrics":{ - "value":"introducerBiometrics" - }, - "individualAuthBiometrics":{ - "value":"individualAuthBiometrics" - }, - "officerBiometricFileName":{ - "value":"officerBiometricFileName" - }, - "supervisorBiometricFileName":{ - "value":"supervisorBiometricFileName" - }, - "residenceStatus":{ - "value":"residenceStatus" - } - - }, - "metaInfo":{ - "value":"metaInfo" - }, - "audits":{ - "value":"audits" - }, - "documents":{ - "poa":{ - "value":"proofOfAddress" - }, - "poi":{ - "value":"proofOfIdentity" - }, - "por":{ - "value":"proofOfRelationship" - }, - "pob":{ - "value":"proofOfDateOfBirth" - }, - "poe":{ - "value":"proofOfException" - } - } -} diff --git a/resident-default.properties b/resident-default.properties index adaca5770ac..25ed8a42c2e 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -87,7 +87,7 @@ mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/aud resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' auth.types.allowed=demo,bio-Finger,bio-Iris,bio-FACE -resident.identityjson=registration-processor-identity.json +resident.identityjson=identity-mapping.json mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ From 421a37a8853191aadd288b78156ef9da3f7258ac Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 6 Dec 2021 12:39:37 +0530 Subject: [PATCH 0357/1358] Prereg synced with develop2. --- pre-registration-default.properties | 40 +++++++++++++++++++---------- 1 file changed, 27 insertions(+), 13 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index da75da8ca28..8bfd87868ab 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -114,7 +114,7 @@ mosip.preregistration.sync.sign.refid=SIGN ## Booking ## Sync every n days -preregistration.availability.sync=37 +preregistration.availability.sync=30 ## Number of days for which booking slots will be available preregistration.availability.noOfDays=140 ## Gap between the date of booking and the first appointment date to be shown @@ -148,6 +148,12 @@ mosip.batch.token.request.id= preregistration.job.schedule.cron.consumedStatusJob=0 0 0 * * ? preregistration.job.schedule.cron.slotavailability=0 0 0 * * ? preregistration.job.schedule.cron.expiredStatusJob=0 0 0 * * ? +preregistration.job.schedule.cron.updateApplicationsBookingJob=0 0 * ? * * +preregistration.job.schedule.cron.purgeExpiredRegCenterSlots=0 0 0 * * ? + +# Map to decide code for days of the week. Used by BatchJob +mosip.kernel.masterdata.day.codes.map={SUNDAY:'101', MONDAY:'102', TUESDAY:'103', WEDNESDAY:'104', THURSDAY:'105', FRIDAY:'106', SATURDAY:'107'} + ## Schema name for batch job table spring.batch.tablePrefix=PREREG.BATCH_ ## Booking service URL for creating time slots @@ -185,8 +191,8 @@ masterdata.service.contextpath=masterdata masterdata.resource.url=${masterdata.service.env}/${masterdata.service.version}/${masterdata.service.contextpath} regCenter.url=${masterdata.resource.url}/registrationcenters holiday.url=${masterdata.resource.url}/getregistrationcenterholidays/ -holiday.exceptional.url=${masterdata.resource.url}/exceptionalholidays -working.day.url=${masterdata.resource.url}/weekdays +holiday.exceptional.url=${masterdata.resource.url}/exceptionalholidays/ +working.day.url=${masterdata.resource.url}/weekdays/ mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/all?pageSize ##Kernel Service URL for fetching templates resource.template.url=${masterdata.resource.url}/templates @@ -314,18 +320,18 @@ mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalida global.config.file=application-${spring.profiles.active}.properties pre.reg.config.file=pre-registration-${spring.profiles.active}.properties ## Mapping file for Pre-registration & ID Object -preregistartion.config.identityjson=identity-mapping.json +preregistration.config.identityjson=identity-mapping.json # UI scheme json preregistration.demographic.idschema-json-filename=pre-registration-demographic.json # Verify where it is used -preregistartion.response = response -preregistartion.identity.name=fullName -preregistartion.demographicDetails=demographicDetails -preregistartion.identity.email=email -preregistartion.identity.phone=phone -preregistartion.identity=identity +preregistration.response = response +preregistration.identity.name=fullName +preregistration.demographicDetails=demographicDetails +preregistration.identity.email=email +preregistration.identity.phone=phone +preregistration.identity=identity ## QR code service mosip.pre-registration.qrcode.generate.id=mosip.pre-registration.qrcode.generate @@ -354,7 +360,8 @@ mosip.id.pre-registration.transliteration.transliterate=mosip.pre-registration.t mosip.lang.traslate.adapter.impl.basepackage = io.mosip.kernel.transliteration.icu4j ## List of keys which UI will consume -ui.config.params=preregistartion.contact.email,preregistartion.contact.phone,preregistration.availability.sync,preregistration.availability.noOfDays,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,mosip.preregistration.captcha.sitekey,mosip.adult.age,mosip.idschema.version,mosip.preregistration.captcha.enable,preregistartion.identity.name,preregistration.ui.version +ui.config.params=preregistration.availability.sync,preregistration.availability.noOfDays,mosip.id.validation.identity.email,mosip.id.validation.identity.postalCode,mosip.id.validation.identity.phone,mosip.id.validation.identity.dateOfBirth,mosip.id.validation.identity.referenceIdentityNumber,mosip.default.dob.month,mosip.default.dob.day,mosip.kernel.otp.expiry-time,mosip.kernel.otp.validation-attempt-threshold,mosip.kernel.otp.default-length,mosip.kernel.sms.number.length,mosip.kernel.pin.length,preregistration.max.file.size,preregistration.recommended.centers.locCode,preregistration.nearby.centers,mosip.login.mode,preregistration.workflow.demographic,preregistration.workflow.documentupload,preregistration.workflow.booking,preregistration.auto.logout,preregistration.timespan.cancel,preregistration.timespan.rebook,preregistration.booking.offset,mosip.right_to_left_orientation,mosip.left_to_right_orientation,mosip.id.validation.identity.age,mosip.id.validation.identity.fullName.[*].value,mosip.id.validation.identity.addressLine1.[*].value,preregistration.documentupload.allowed.file.type,preregistration.documentupload.allowed.file.nameLength,preregistration.documentupload.allowed.file.size,mosip.preregistration.auto.logout.idle,mosip.preregistration.auto.logout.timeout,mosip.preregistration.auto.logout.ping,mosip.country.code,mosip.notificationtype,mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable,mosip.preregistration.captcha.sitekey,mosip.adult.age,mosip.idschema.version,mosip.preregistration.captcha.enable,preregistration.identity.name,preregistration.ui.version,preregistration.contact.email,preregistration.contact.phone + ## This config is used for loading recommended centers based on the value of the config. ## The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded preregistration.recommended.centers.locCode=5 @@ -372,8 +379,8 @@ mosip.preregistration.auto.logout.idle=180 mosip.preregistration.auto.logout.timeout=60 preregistration.ui.version=1.2.0 -preregistartion.contact.email=contact@dev.mosip.net -preregistartion.contact.phone=9999999999 +preregistration.contact.email=contact@dev.mosip.net +preregistration.contact.phone=9999999999 # Determines to maintain iternal cycle & make sure value is not null (any value greater than zero) mosip.preregistration.auto.logout.ping=30 @@ -417,6 +424,13 @@ mosip.preregistration.uispec.all=mosip.preregistration.uispec.all preregistration.cookie.contextpath=/ +# To generate token from keycloak. Use by kernel auth adapter. +mosip.iam.adapter.clientid=mosip-prereg-client +mosip.iam.adapter.clientsecret=${preregistration.mosip.prereg.client.secret} + +# preregistration.mosip.prereg.client.secret +mosip.iam.adapter.appid=prereg + # Roles mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.putapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN From 468cce236554f634a0597145949df797f23ff27c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 6 Dec 2021 16:02:14 +0530 Subject: [PATCH 0358/1358] IDrepo prop added. --- id-repository-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/id-repository-default.properties b/id-repository-default.properties index 28df888f0b3..80a038f72a9 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -169,6 +169,11 @@ mosip.idrepo.credential.cancel-request.rest.timeout=100 # Fixed delay time after which job will be triggered again to process the created/updated credential details. mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 +# Dummy partner id used to create a credential request record in credential_request_status. +# Credential won't be issued for the below provided. id-repository-credential-feeder will utilize +# the credential request with below partner id to issue credential to new IDA partners. +idrepo-dummy-online-verification-partner-id=MOVP + mosip.idrepo.retrieve-by-uin.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json From 47065aa771a6448454c043a0c8c014d354828abb Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 7 Dec 2021 22:47:46 +0530 Subject: [PATCH 0359/1358] Unused props removed. --- application-default.properties | 4 +- pre-registration-default.properties | 3 - pre-registration-demographic.json | 359 ---------------------------- 3 files changed, 2 insertions(+), 364 deletions(-) delete mode 100644 pre-registration-demographic.json diff --git a/application-default.properties b/application-default.properties index d99a19f0e38..09093383b95 100644 --- a/application-default.properties +++ b/application-default.properties @@ -186,9 +186,9 @@ mosip.kernel.crypto.hash-symmetric-key-length=256 mosip.kernel.crypto.hash-iteration=100000 mosip.kernel.crypto.sign-algorithm-name=RS256 mosip.keymanager.base.url=http://keymanager.keymanager -mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} +#mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt -mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt +#mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign mosip.kernel.keymanager.cert.url=${mosip.keymanager.base.url}/v1/keymanager/getCertificate mosip.kernel.keymanager-service-CsSign-url=${mosip.keymanager.base.url}/v1/keymanager/cssign diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 8bfd87868ab..7aafcfac254 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -322,9 +322,6 @@ pre.reg.config.file=pre-registration-${spring.profiles.active}.properties ## Mapping file for Pre-registration & ID Object preregistration.config.identityjson=identity-mapping.json -# UI scheme json -preregistration.demographic.idschema-json-filename=pre-registration-demographic.json - # Verify where it is used preregistration.response = response preregistration.identity.name=fullName diff --git a/pre-registration-demographic.json b/pre-registration-demographic.json deleted file mode 100644 index c4b839d770a..00000000000 --- a/pre-registration-demographic.json +++ /dev/null @@ -1,359 +0,0 @@ -{ - "identity": [ - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "fra": "Nom complet" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "fra": "Date de naissance" - }, - "controlType": "date", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true - }, - { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "fra": "Le genre" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "residenceStatus", - "description": "Residence status", - "labelName": { - "eng": "Residence Status", - "fra": "Statut de résidence" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "addressLine1", - "description": "addressLine1", - "labelName": { - "eng": "Address Line1", - "fra": "Adresse 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "addressLine2", - "description": "addressLine2", - "labelName": { - "eng": "Address Line2", - "fra": "Adresse 2" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": false, - "transliteration": true - }, - { - "id": "addressLine3", - "description": "addressLine3", - "labelName": { - "eng": "Address Line3", - "fra": "Adresse 3" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": false, - "transliteration": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "fra": "Région" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "fra": "Province" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "fra": "Ville" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,50}$).*", - "arguments": [] - } - ], - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "fra": "Zone" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "fra": "code postal" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "fra": "Téléphone" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^([6-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "fra": "Email" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "fra": "Address Proof", - "eng": "Address Proof" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false - }, - { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "fra": "Identity Proof", - "eng": "Identity Proof" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true - }, - { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "fra": "Relationship Proof", - "eng": "Relationship Proof" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": false - }, - { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "fra": "DOB Proof", - "eng": "DOB Proof" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true - }, - { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "fra": "Exception Proof", - "eng": "Exception Proof" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true - }, - { - "id": "proofOfException-1", - "description": "proofOfException", - "labelName": { - "fra": "Exception Proof", - "eng": "Exception Proof" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true - } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" - ] -} From ac87c862e17eb469f1faa8319d10c717bbcc3989 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 8 Dec 2021 10:06:54 +0530 Subject: [PATCH 0360/1358] Synced with develop2 --- partner-management-default.properties | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index 96f5768fc02..2c7942d9cbe 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -120,6 +120,12 @@ pmp.ca.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uplo pmp.partner.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadPartnerCertificate pmp.partner.certificaticate.get.rest.uri=${keymanager.base.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} pmp-keymanager.upload.other.domain.cert.rest.uri=${keymanager.base.url}/v1/keymanager/uploadOtherDomainCertificate + +#Auth token generation +mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} +mosip.iam.adapter.clientsecret=${mosip.pmp.auth.secretKey} +mosip.iam.adapter.appid=${mosip.pmp.auth.appId} + # Used to get data share url to publish to websub pmp.certificaticate.datashare.rest.uri=http://datashare.datashare/v1/datashare/create # Used for generating the datashare url From 633f3831bebf9903fdeb3190624edce5820a2338 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 8 Dec 2021 11:39:24 +0530 Subject: [PATCH 0361/1358] Synced with develop2 --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 14360134d52..39f90605e02 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -491,7 +491,6 @@ mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGIST mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER @@ -539,9 +538,10 @@ mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_A mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMI mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN From fce71186643471d7e8f6e4f9df4268e7687295e1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 8 Dec 2021 16:18:26 +0530 Subject: [PATCH 0362/1358] Synced with develop2 --- kernel-default.properties | 437 ++++++++++++++++---------------- registration-default.properties | 9 +- 2 files changed, 227 insertions(+), 219 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 39f90605e02..da9f3c47165 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -461,292 +461,293 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true ## Roles -mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.getapplicationtypeslangcode=PRE_REGISTRATION_ADMIN,RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.postapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postbiometricattributes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER -mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,CENTRAL_ADMIN -mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION -mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR -mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RESIDENT -mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.putlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMI -mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT -mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatefileformatslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.gettitleall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getuispecall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getusercentermapping=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getuserdetails=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getusers=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getusersid=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getuserssearch=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION -mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION -mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchtemplatefileformats=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postbiometricattributes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getdocumentcategories=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +#mosip.role.admin.masterdata.getdocumenttypesdocumentcategorycode=INDIVIDUAL,ID_AUTHENTICATION,ZONAL_ADMIN,PARTNER,PARTNER_ADMIN,PRE_REGISTRATION,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,CENTRAL_ADMIN mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR +mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RESIDENT +mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postpacketrejectionreasonsreasoncategory=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postpacketresume=GLOBAL_ADMIN,REGISTRATION_ADMIN -mosip.role.admin.masterdata.postpacketsearch=GLOBAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postpacketresume=REGISTRATION_ADMIN +mosip.role.admin.masterdata.postpacketsearch=REGISTRATION_ADMIN +mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.postregistereddevices=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplatefileformats=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatetypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttitle=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettitleall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.postuispecpublish=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getuispecall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getusersid=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusers=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusercentermapping=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserdetails=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserssearch=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdynamicfieldsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT -mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER -mosip.role.kernel.getgetzktempcertificate=KEY_MIGRATION_ADMIN -mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT -mosip.role.kernel.postcssign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.posttpmencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postcsverifysign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postcssign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postdecryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postdecryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postencryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postdecryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postencryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postgeneratesymmetrickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadotherdomaincertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postuploadcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postgeneratecsr=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postgeneratemasterkeyobjecttype=KEY_MAKER,TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postgeneratesymmetrickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postmigratebasekey=KEY_MIGRATION_ADMIN +mosip.role.kernel.getgetzktempcertificate=KEY_MIGRATION_ADMIN mosip.role.kernel.postmigratezkkeys=KEY_MIGRATION_ADMIN -mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postuploadcacertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL -mosip.role.kernel.postuploadcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postuploadotherdomaincertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postverifycertificatetrust=MS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER +mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER mosip.role.kernel.postuploadpartnercertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL +mosip.role.kernel.postuploadcacertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL +mosip.role.kernel.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postverifycertificatetrust=MS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER -mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postzkreencryptrandomkey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN diff --git a/registration-default.properties b/registration-default.properties index bf14ed74bc4..49999b8c94f 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -364,6 +364,13 @@ mosip.registration.replace_sdk_quality_score=N mosip.registration.reset_password_url=https://dev.mosip.net/keycloak/auth/realms/mosip/account/ #Flag to check / bypass device cert validation +mosip.registration.onboard_yourself_url=https://docs.mosip.io/platform/modules/registration-client/first-user-registration-and-onboarding +mosip.registration.registering_individual_url=https://docs.mosip.io/platform/modules/registration-client/registration-packet +mosip.registration.sync_data_url=https://docs.mosip.io/platform/modules/registration-client/registration-functionality +mosip.registration.mapping_devices_url=https://docs.mosip.io/platform/modules/registration-client/device-integration-specifications +mosip.registration.uploading_data_url=https://docs.mosip.io/platform/modules/registration-client/ui-specification-for-registration-client +mosip.registration.updating_biometrics_url=https://docs.mosip.io/platform/modules/registration-client/guide-to-configure-mosip-for-biometrics + mosip.registration.mdm.validate.trust=true #Batch size for RID Sync Job @@ -397,4 +404,4 @@ mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferre mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN \ No newline at end of file +mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN From 7af81dac46231ccd6ea91e496026f324de633d0a Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Wed, 8 Dec 2021 19:48:36 +0530 Subject: [PATCH 0363/1358] Uncommenting the properties syncdata --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 09093383b95..d99a19f0e38 100644 --- a/application-default.properties +++ b/application-default.properties @@ -186,9 +186,9 @@ mosip.kernel.crypto.hash-symmetric-key-length=256 mosip.kernel.crypto.hash-iteration=100000 mosip.kernel.crypto.sign-algorithm-name=RS256 mosip.keymanager.base.url=http://keymanager.keymanager -#mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt -#mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt +mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign mosip.kernel.keymanager.cert.url=${mosip.keymanager.base.url}/v1/keymanager/getCertificate mosip.kernel.keymanager-service-CsSign-url=${mosip.keymanager.base.url}/v1/keymanager/cssign From 0b534fc82b09edbd0fb67623b916cb7d20b09074 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 8 Dec 2021 21:18:52 +0530 Subject: [PATCH 0364/1358] Synced with develop2 --- resident-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/resident-default.properties b/resident-default.properties index 25ed8a42c2e..6d635b2878e 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -106,3 +106,6 @@ objectstore.adapter.name=PosixAdapter #TODO remove reg-client service accunt in production env auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client + +#Mapping Identity json to map with the applicant id json +registration.processor.identityjson=identity-mapping.json From 69a6590923cc993f0c98368c4e0c8be3001cb288 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 9 Dec 2021 15:17:50 +0530 Subject: [PATCH 0365/1358] Synced with develop2. --- data-share-default.properties | 2 +- id-repository-default.properties | 2 +- res.diff | 144 +++++++++++++++++++++++++++++++ 3 files changed, 146 insertions(+), 2 deletions(-) create mode 100644 res.diff diff --git a/data-share-default.properties b/data-share-default.properties index b82c3b9fceb..2c119ac03b7 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -32,4 +32,4 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=true -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client,mosip-resident-client diff --git a/id-repository-default.properties b/id-repository-default.properties index 80a038f72a9..edae0eb3f51 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -235,7 +235,7 @@ mosip.credential.request.service.version=1.0 ## Batch job # batch job time intervel in miliseconds -mosip.credential.request.job.timedelay=1 +mosip.credential.request.job.timedelay=15000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 # This property can be set to auth,print or keep it empty so batch will pick up all records# diff --git a/res.diff b/res.diff new file mode 100644 index 00000000000..4945cc9ba83 --- /dev/null +++ b/res.diff @@ -0,0 +1,144 @@ +DIFFERENT VALUES: + +SYNCSERVICE: +< ${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/sync +> http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/sync + +IDREPOSITORY: +< http://idrepo-identity-service/idrepository/v1/identity/ +> http://identity.idrepo/idrepository/v1/identity/ + +INTERNALAUTHTRANSACTIONS: +< http://ida-internal-service/idauthentication/v1/internal/authTransactions +> http://ida-internal.ida/idauthentication/v1/internal/authTransactions + +token.request.secretKey: +< {cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +> ${mosip.mosip.resident.client.secret} + +IDREPOGETIDBYUIN: +< http://idrepo-identity-service/idrepository/v1/identity/idvid +> http://identity.idrepo/idrepository/v1/identity/idvid + +resident.secretKey: +< {cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +> ${mosip.mosip.resident.client.secret} + +SMSNOTIFIER: +< http://kernel-notification-service/v1/notifier/sms/send +> http://notifier.kernel/v1/notifier/sms/send + +POLICY_REQ_URL: +< http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +> http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies + +IDAUTHCREATEVID: +< http://idrepo-vid-service/idrepository/v1/vid +> http://vid.idrepo/idrepository/v1/vid + +RIDGENERATION: +< http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid +> http://ridgenerator.kernel/v1/ridgenerator/generate/rid + +AUTHTYPESTATUSUPDATE: +< http://idrepo-identity-service/idrepository/v1/identity/authtypes/status +> http://identity.idrepo/idrepository/v1/identity/authtypes/status + +CREATEVID: +< http://idrepo-vid-service/idrepository/v1/vid +> http://vid.idrepo/idrepository/v1/vid + +CREDENTIAL_REQ_URL: +< http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator +> http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator + +IDAUTHREVOKEVID: +< http://idrepo-vid-service/idrepository/v1/vid +> http://vid.idrepo/idrepository/v1/vid/deactivate + +MASTER: +< http://kernel-masterdata-service/v1/masterdata +> http://masterdata.kernel/v1/masterdata + +mosip.kernel.masterdata.audit-url: +< http://kernel-auditmanager-service/v1/auditmanager/audits +> http://auditmanager.kernel/v1/auditmanager/audits + +GETUINBYVID: +< http://idrepo-vid-service/idrepository/v1/vid +> http://vid.idrepo/idrepository/v1/vid + +REGISTRATIONSTATUSSEARCH: +< ${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/externalstatus/search +> http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search + +IDREPOGETIDBYRID: +< http://idrepo-identity-service/idrepository/v1/identity/idvid +> http://identity.idrepo/idrepository/v1/identity/idvid + +KERNELENCRYPTIONSERVICE: +< http://ida-internal-service/idauthentication/v1/internal/getCertificate +> http://ida-internal.ida/idauthentication/v1/internal/getCertificate + +auth.server.admin.allowed.audience: +< mosip-resident-client +> mosip-resident-client,mosip-reg-client + +EMAILNOTIFIER: +< http://kernel-notification-service/v1/notifier/email/send +> http://notifier.kernel/v1/notifier/email/send + +ENCRYPTURL: +< http://kernel-keymanager-service/v1/keymanager/encrypt +> http://keymanager.kernel/v1/keymanager/encrypt + +DECRYPT_API_URL: +< http://kernel-keymanager-service/v1/keymanager/decrypt +> http://keymanager.kernel/v1/keymanager/decrypt + +PARTNER_API_URL: +< http://pms-partner-manager-service/v1/partnermanager/partners +> http://pms-partner.pms/v1/partnermanager/partners + +CREDENTIAL_STATUS_URL: +< http://idrepo-credential-request-generator/v1/credentialrequest/get/ +> http://credentialrequest.idrepo/v1/credentialrequest/get/ + +KERNELAUTHMANAGER: +< http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey +> http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey + +MIDSCHEMAURL: +< http://kernel-syncdata-service/v1/syncdata/latestidschema +> http://syncdata.kernel/v1/syncdata/latestidschema + +CREDENTIAL_CANCELREQ_URL: +< http://idrepo-credential-request-generator/v1/credentialrequest/cancel/ +> http://credentialrequest.idrepo/v1/credentialrequest/cancel/ + +OTP_GEN_URL: +< http://ida-internal-service/idauthentication/v1/internal/otp +> http://ida-internal.ida/idauthentication/v1/internal/otp + +CREDENTIAL_TYPES_URL: +< http://idrepo-credential-service/v1/credentialservice/types +> http://credential.idrepo/v1/credentialservice/types + +PACKETRECEIVER: +< ${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/registrationpackets +> http://regproc-group1/registrationprocessor/v1/packetreceiver/registrationpackets + +INTERNALAUTH: +< http://ida-internal-service/idauthentication/v1/internal/auth +> http://ida-internal.ida/idauthentication/v1/internal/auth + +======================================================= + +NEW PROPERTIES in /Users/puneet/Documents/mosip/develop2/mosip-config/sandbox/resident-mz.properties +set(['dmz.ingress.base.url']) + +======================================================= + +NEW PROPERITES in resident-default.properties +set([]) + From 5c59bde67f982e716390c7b6c2deb38c672e386c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 9 Dec 2021 15:37:25 +0530 Subject: [PATCH 0366/1358] Swagger context path added. --- kernel-default.properties | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index da9f3c47165..24955fe2b1e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -439,9 +439,13 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url -openapi.service.servers[0].url=https://${mosip.api.internal.host}/v1/masterdata +openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.path:}} openapi.service.servers[0].description=For Swagger +#${server.servlet.context-path:${server.servlet.path:}} + + + #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails From ade7ded323ec7b7a20a557d41ad97567801d8af7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 9 Dec 2021 15:50:24 +0530 Subject: [PATCH 0367/1358] openAPI props disabled. --- kernel-default.properties | 8 ++------ 1 file changed, 2 insertions(+), 6 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 24955fe2b1e..c718562ec90 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -439,12 +439,8 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url -openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.path:}} -openapi.service.servers[0].description=For Swagger - -#${server.servlet.context-path:${server.servlet.path:}} - - +#openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.path:}} +#openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails From 474109ddba5b2beb87f34ff72027a4c6dc5a10ae Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 10 Dec 2021 17:10:32 +0530 Subject: [PATCH 0368/1358] Synced with develop2 --- kernel-default.properties | 81 ++++++++++++++++++++------------------- 1 file changed, 42 insertions(+), 39 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index c718562ec90..e119e61739d 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -295,7 +295,7 @@ auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authoriz ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 -#mosip.security.provider.name=SunPKCS11-pkcs11-proxy +mosip.security.provider.name=SunPKCS11-pkcs11-proxy ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client @@ -453,6 +453,7 @@ mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} #AdminMaster endpoints to access without authentication +mosip.service-context=/v1/masterdata mosip.service.end-points={cipher}dd5737cb38b0d354e925a031d1662cae45feb891135577d72d75017f71a3c72d38d157158eb9e12d8e51ffb3e66e1397eb0e20040939ad145363a00c458f247c53a712c564467770d08b0cab22b967ba71d09e75a4c53492f23bb29e4c529a87787e7652c720b8eb7ce61ffc4ea6efe89be9d85034fcb135582af662290eacc0392ea96c15fef0a20694cd24c553ec3325e1450e4fb6ea773b200fcdc5d097014e7ff1794d93330c40f50fce4c20d15fc9b0ddced67877cf51ecf38d7b3fb352e176fe12956e0e2e1d43ac77dd200085dac1d3e3fe49475d5077b6bff6162c53a2d00fdbc5cd12a0aa983165916cb9cd72b2eff9c8bf7bc92bea2619fc0900b5936655a16a96fe8b188fa06a625760f78b1273a66137228095305ca32093b1fda5faac87b1ae172caa990776fa6dc52f6f1863848b21e42eb1af5ee530f12af7ef94aa8bccb254fe65c69870338e7bae1a95f344c9fcb806ac7801466168c81de7262e1a0bf49c62ee0c3676babbc718ba790e7b9428482443f6e612c9ef497702a79c9a49d47ab98d97a868e7f2ce1b7febc3d09afadbf5555e21234290aaaef94681c78326d7c178316b7d211f2a72dfb5a39e6badda11d4ee42b79c003fdf1d83d72aee288f6c8ad6e5f66c2dae350d50f5aec39360b8cce5e3682ef6f8adb7a6377a9580d420944f98c98390d3a2f7a0682d26991a60e3ab79401c63233c5a18b1902f715ebf595107563d9a60d3280c1baed1777e894660ea1e05b6433e2653af499b286fdb6380b29d32953bd23de2ec8f2c441b0e22c3877f85aa23046e2830fb9f94dced2ee55f107c8160f05bfa5436620898b36d18ae26bd4c7400e3d51f85bad2a81665aa7baf7d10cb792067b600fb0277fb0119aa9186c3d1a2079c56ca999ce1d4930b9ea77f80d88bb2afbb93002b77c3d5f5a895822dacc6038112160bf280d392599c268d504aff4e933fa4308ab50d25793c93fd2a51b1c7d2938219ff84202ae286cb1b9650ec5dfd79dabad2acf2b44fbc08170c097c93a9d663b4c130392bd536d86a87cd11ab074d3db666dcf2f40349d1056ce2708cfcfbcdd868a8073acd9a2241159e64cae84eceabd8acb83afbeeafa822defd7616bfd5801f1976392872f61e637bc21c3db4fe30d6c1de644d2291ce9d48ff1afff9f1ab596620553fd669cfa38dc5ccea6286abbcd93ca8b434b2b6d42129d72e7daa91001d43005d781369c054b36a6158d4f2cc6c6136565733b13cd7d306c715809f2d9a5024abcffbc0ef3b58585b881f6509bd1876b923494445a2a430ddf5e517b49b65647f54a2e10a002224269c78a38b6ddbddc02176d93e1e280cfdefc317efe361babe0eb3688c9d3406c4ef7a1851ddc7d511703b1d4e2c449792abd523c6eadfbfea13cf862478d75196f8133deadc31222fa6be3cd1cac015f2af1865d834bda4e7f3352cc72116d732ed384a0b94237810bf5909ea453f9052aeb0ae6d492e7ed4d2c33145e38a79742ca23294f3dc89e3cafcfbc8349aae712172bd661137ad6179df3bcc1f03b80af7c82b8a1aa91140086e663ff257d8084680c00c9a31f9c96e0b3d350192851c0c279b8159070e5f1f06153d132447fddbbf1dbb7378b84c38dc1c5f2f8cbbfcd8a478f78b1ed6ed44a0d81a88be605b66a5caad776ab1ae7c8a88362efef9b43d261dd292324e173606fabd3b8ade5fce14671d274d33e93f975d12071473fa7b0289a99a151ce67b3070f44001b5d74b3087ad1fbd071605fd62fa5f86454b881fd1ad86bd565b33248d47100d862dcc57dc0e9f673e25b0845b27d06b38c30ca975efb8031444459d776f6221a90fa51b971a4054332411de943afd8b @@ -564,9 +565,6 @@ mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_A mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getputlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getpatchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdeletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN @@ -710,44 +708,49 @@ mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.kernel.posttpmencryptionpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmsigningpublickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.posttpmencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postcsverifysign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postcssign=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postdecryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postencryptdt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postdecryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postencryptwithpin=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.putrevokekey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postgeneratesymmetrickey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postuploadotherdomaincertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postuploadcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postgeneratecsr=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.getgetcertificate=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postgeneratemasterkeyobjecttype=KEY_MAKER,TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postmigratebasekey=KEY_MIGRATION_ADMIN -mosip.role.kernel.getgetzktempcertificate=KEY_MIGRATION_ADMIN -mosip.role.kernel.postmigratezkkeys=KEY_MIGRATION_ADMIN -mosip.role.kernel.postverifycertificatetrust=MS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER -mosip.role.kernel.getgetpartnercertificatepartnercertid=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,PMS_USER -mosip.role.kernel.postuploadpartnercertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL -mosip.role.kernel.postuploadcacertificate=PMS_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL -mosip.role.kernel.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT -mosip.role.kernel.postzkencrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postzkdecrypt=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postzkreencryptrandomkey=TEST,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,RESIDENT,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.admin.masterdata.deletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdynamicfieldsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.keymanager.postcssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postcsverifysign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmsigningpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmencryptionpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadotherdomaincertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postmigratebasekey=KEY_MIGRATION_ADMIN +mosip.role.keymanager.getzktempcertificate=KEY_MIGRATION_ADMIN +mosip.role.keymanager.postlicensegenerate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postmigratezkkeys=KEY_MIGRATION_ADMIN +mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT +mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT From 7fbd7686b62404d58d27222b178a7e1fa46b0888 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Mon, 13 Dec 2021 14:32:57 +0530 Subject: [PATCH 0369/1358] Update data-share-default.properties --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index 2c119ac03b7..54ce7c0cec9 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -32,4 +32,4 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=true -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client,mosip-resident-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client,mosip-regproc-client,mosip-resident-client From ab479f551dde6feb3587ebb40bf516a648d38a14 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 15 Dec 2021 10:27:27 +0530 Subject: [PATCH 0370/1358] Synced with develop2. --- id-authentication-default.properties | 4 +--- id-authentication-external-default.properties | 7 +++++++ id-authentication-internal-default.properties | 7 +++++++ id-authentication-otp-default.properties | 7 +++++++ 4 files changed, 22 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4b5d0d31f84..f4ecb37296f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -225,8 +225,7 @@ ida-websub-auth-type-callback-url=http://ida-internal.ida/idauthentication/v1/in ida-websub-credential-issue-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} -## Callback url for partner CA certification upload event -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate + ## Callback url for hotlist event ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist @@ -255,7 +254,6 @@ ida-topic-activate-id=${ida-auth-partner-id}/ACTIVATE_ID ida-topic-pmp-partner-updated=PARTNER_UPDATED ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED ida-topic-pmp-policy-updated=POLICY_UPDATED -ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED ida-topic-hotlist=MOSIP_HOTLIST ida-topic-credential-status-update=CREDENTIAL_STATUS_UPDATE ida-topic-auth-type-status-update-acknowledge=AUTH_TYPE_STATUS_UPDATE_ACK diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index ae918afd20d..b93d695b4f1 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,6 +1,13 @@ ## Masterdata templates ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles +# Callback url for partner CA certification upload event +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +# Secret for partner CA certification upload callback +ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} +# Topic for Partner CA Certificate Upload event +ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED + mosip.service-context=${server.servlet.context-path} mosip.service.end-points=/**/* diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 20d767763cc..b05933c21ca 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -6,6 +6,13 @@ ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles +# Callback url for partner CA certification upload event +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +# Secret for partner CA certification upload callback +ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} +# Topic for Partner CA Certificate Upload event +ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED + # ********* ADMIN Configurations ************ # Configure N time period threshold for accepting auth/OTP/KYC request for a country authrequest.received-time-allowed.seconds=120 diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index 0a4a47fcf4c..2d0eb32cace 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -2,6 +2,13 @@ ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles +# Callback url for partner CA certification upload event +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +# Secret for partner CA certification upload callback +ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} +# Topic for Partner CA Certificate Upload event +ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED + #Endpoints to access without authentication mosip.service-context=${server.servlet.context-path} mosip.service.end-points=/**/* From dcfe3fddc7b9cef57ded245d13817f2c01533f95 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Wed, 15 Dec 2021 15:43:00 +0530 Subject: [PATCH 0371/1358] added client to allowed audience added mosip-pms-client & mosip-resident-client --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 2c7942d9cbe..8f195b4f607 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -152,7 +152,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token From 71dc8a77d58e20ca9e2b1092c7cbdaabfb27affe Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 16 Dec 2021 15:14:42 +0530 Subject: [PATCH 0372/1358] IDA roles updated. --- id-authentication-default.properties | 26 ++++++++++++++++++++++---- 1 file changed, 22 insertions(+), 4 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f4ecb37296f..d243887e7dc 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -567,7 +567,25 @@ springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha ## Roles -mosip.role.idauth.postotp=RESIDENT -mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.idauth.postverifyidentity=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.idauth.getauthtransactionsindividualid=RESIDENT +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadotherdomaincertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT From 98bc435d4182fec5217b8ccfba7862a4b3b5f0fc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 16 Dec 2021 15:23:36 +0530 Subject: [PATCH 0373/1358] Swagger path added --- application-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/application-default.properties b/application-default.properties index d99a19f0e38..5a8dd4119a6 100644 --- a/application-default.properties +++ b/application-default.properties @@ -5,6 +5,7 @@ # s3.accesskey # s3.region # s3.secretkey +# mosip.api.internal.host aplication.configuration.level.version=LTS @@ -389,3 +390,7 @@ mosip.notification.timezone=GMT+05:30 # registration center type validation regex, used to restrict the special charecter mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34}[a-zA-Z0-9]$ + +# Swagger +openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} +openapi.service.servers[0].description=For Swagger From 801d4d2ad4d5013b6e0bb0d78cd5c13a25098e4f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 16 Dec 2021 17:52:17 +0530 Subject: [PATCH 0374/1358] Synced with develop2. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d311b3e1aff..4595a558dd9 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -522,7 +522,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'CHILD' && @['ID_OBJECT-residenceStatus'] == 'nonResident')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_ADULT_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'ADULT' && @['ID_OBJECT-residenceStatus'] == 'Non-Foreigner')]","pauseFor": 6000,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] mosip.regproc.camelbridge.endpoint-prefix=eventbus:// ## Securzone stage (NOTE: not used in V3, but need this for service to start) From 968d264fb2f6ed6c1d2d84b6b8a7ed04f96f49d8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 17 Dec 2021 09:05:34 +0530 Subject: [PATCH 0375/1358] Synced with develop2. --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 131a1ce4d99..ed878a7c3f8 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -300,7 +300,7 @@ kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 From 41c52dbc07c0511be4761eb5d4f0bee71463259c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 17 Dec 2021 09:06:31 +0530 Subject: [PATCH 0376/1358] Synced with develop2 branch. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 4595a558dd9..be8d99461cf 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -295,7 +295,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=120 +registration.processor.reprocess.elapse.time=4800 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From 3ff448ebb6bac39ffd298352db4cd6dcf1c5b747 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 17 Dec 2021 16:04:39 +0530 Subject: [PATCH 0377/1358] Synced with develop2 --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index be8d99461cf..1f63f37214e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -522,8 +522,8 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_ADULT_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'ADULT' && @['ID_OBJECT-residenceStatus'] == 'Non-Foreigner')]","pauseFor": 6000,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] mosip.regproc.camelbridge.endpoint-prefix=eventbus:// +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'INFANT')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single From faef07e76a45de17752ac47e890237f712ec64e7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 17 Dec 2021 18:12:24 +0530 Subject: [PATCH 0378/1358] Synced with develop2 branch. --- registration-processor-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1f63f37214e..980506abecf 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -523,7 +523,8 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'INFANT')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'INFANT' && @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] + ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single From aea1ee91ae4d6f93dd2fb6a67d7b9f8ce250f099 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 18 Dec 2021 12:01:57 +0530 Subject: [PATCH 0379/1358] Pointing to internal keycloak url. --- kernel-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index e119e61739d..b64ad06cc9b 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -208,7 +208,8 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.host} +#mosip.iam.base-url=${keycloak.host} +mosip.iam.base-url=http://keycloak.keycloak mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ From 94e55d2c733ca9527a155bc941d3d9465b10413e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 18 Dec 2021 14:18:49 +0530 Subject: [PATCH 0380/1358] Reverted back previous change. --- kernel-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index b64ad06cc9b..e119e61739d 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -208,8 +208,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -#mosip.iam.base-url=${keycloak.host} -mosip.iam.base-url=http://keycloak.keycloak +mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ From 126c25f78556dd7c2a9497a7849ee6dc17e930ad Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 18 Dec 2021 16:03:16 +0530 Subject: [PATCH 0381/1358] Synced with develop2 branch. --- id-authentication-default.properties | 23 ++++++----------------- 1 file changed, 6 insertions(+), 17 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d243887e7dc..985f16adae7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -173,13 +173,6 @@ rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} -## Auth token generation and validation URLs -auth-token-generator.rest.uri=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -auth-token-validator.rest.uri=http://authmanager.kernel/v1/authmanager/authorize/validateToken -auth-token-generator.rest.clientId=${mosip.ida.auth.clientId} -auth-token-generator.rest.secretKey=${mosip.ida.auth.secretKey} -auth-token-generator.rest.appId=${mosip.ida.auth.appId} - ## Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination id-pmp-service.rest.uri=http://pms-partner.pms/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET @@ -215,7 +208,6 @@ id-masterdata-template-service-multilang.rest.timeout=${mosip.ida.request.timeou ida-websub-authtype-callback-secret=${ida.websub.authtype.callback.secret} ida-websub-credential-issue-callback-secret=${ida.websub.credential.issue.callback.secret} ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback.secret} -ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} @@ -266,7 +258,6 @@ ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED ida-topic-pmp-partner-updated=PARTNER_UPDATED ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED ida-topic-pmp-policy-updated=POLICY_UPDATED -ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE @@ -486,7 +477,7 @@ zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production -mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +#mosip.kernel.keymanager.keystore.keyreference.enable.cache=false ## Admin # Configure N time period threshold for accepting auth/OTP/KYC request for a country @@ -514,10 +505,8 @@ cred-request-service-retrigger-cred-issuance.rest.headers.mediaType=${mosip.ida. cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.timeout.secs} # Child Auth Filter configurations -ida.child-auth-filter.date-of-birth.attribute.name=dateOfBirth -ida.child-auth-filter.date-of-birth.pattern=yyyy/MM/dd -ida.child-auth-filter.child.max.age=5 ida.child-auth-filter.factors.denied=otp,bio +ida.child-auth-filter.child.max.age=5 # The chunk size of failed message items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. ida.fetch.failed.websub.messages.chunk.size=10 @@ -529,8 +518,6 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl -#Auth Filters for internal auth -ida.mosip.kyc.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl @@ -547,8 +534,6 @@ mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net mosip.ida.allowed.domain.uris=https://${mosip.api.public.host},https://${mosip.api.internal.host} -# Biometrics attribute name present in data-share policy -mosip.ida.credential.biometric.attribute.name=individualBiometrics biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX @@ -567,6 +552,10 @@ springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha ## Roles +mosip.role.idauth.postotp=RESIDENT +mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.idauth.postverifyidentity=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.idauth.getauthtransactionsindividualid=RESIDENT mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT From 7da026c604b7cb2280b15eb6f1437ad5d043080a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 20 Dec 2021 11:00:20 +0530 Subject: [PATCH 0382/1358] Synced with develop2 branch. --- syncdata-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index ed878a7c3f8..3e11e604eea 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -219,7 +219,7 @@ mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users #Self token resttemplate related to configuration -mosip.iam.adapter.clientid=mosip-reg-client +mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} mosip.iam.adapter.appid=registrationclient mosip.iam.adapter.issuerURL=${mosip.iam.base-url}/auth/realms/mosip @@ -427,6 +427,8 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true syncdata.cache.evict.delta-sync.cron=0 0/15 * * * * syncdata.cache.snapshot.cron=0 0 23 * * * +mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} + ## Roles mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From 01afae4036158301fe849d2e9a88f76ca63b78f1 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Mon, 20 Dec 2021 14:10:41 +0530 Subject: [PATCH 0383/1358] Update data-share-default.properties updated data-share protocol to HTTPS --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index 54ce7c0cec9..aadfb3b718f 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -25,7 +25,7 @@ data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare data.share.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB -mosip.data.share.protocol=http +mosip.data.share.protocol=https mosip.data.share.includeCertificateHash=false mosip.data.share.includeCertificate=false mosip.data.share.includePayload=false From 594e1f0c42078debb30dad5d656c67eaeacfedea Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 20 Dec 2021 16:11:35 +0530 Subject: [PATCH 0384/1358] Updated v3 config --- data-share-default.properties | 2 +- id-authentication-internal-default.properties | 2 +- registration-processor-default.properties | 3 +-- 3 files changed, 3 insertions(+), 4 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index aadfb3b718f..1c172537851 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -32,4 +32,4 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=true -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client,mosip-regproc-client,mosip-resident-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client,mosip-regproc-client,mosip-resident-client,mosip-reg-client diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index b05933c21ca..eee330f07df 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -21,4 +21,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 980506abecf..983c0c37e4c 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -523,8 +523,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"NON_RESIDENT_CHILD_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'INFANT' && @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 600,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] - +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"ADULT_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'ADULT')]","pauseFor": 6000,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single From 81523b5753264a111e4fcb6fe89ec8ab079f9913 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Mon, 20 Dec 2021 17:55:56 +0530 Subject: [PATCH 0385/1358] Update data-share-default.properties --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index 1c172537851..8fdd04455bb 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -25,7 +25,7 @@ data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare data.share.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB -mosip.data.share.protocol=https +mosip.data.share.protocol=http mosip.data.share.includeCertificateHash=false mosip.data.share.includeCertificate=false mosip.data.share.includePayload=false From 60c7004d18fb200219e7746fd72abd0d80998b01 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Mon, 20 Dec 2021 18:06:47 +0530 Subject: [PATCH 0386/1358] Update partner-management-default.properties --- partner-management-default.properties | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index 8f195b4f607..ec896aae767 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -156,6 +156,16 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token + +#To populate required roles which should be allowed in UI.(Roles are nothing but partner types) +mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN + +# To configure misp partner type +mosip.pms.misp.partner.type=MISP_Partner + +# Role for partner admin = +mosip.pms.partneradmin.role=PARTNER_ADMIN + #To populate required roles which should be allowed in UI.(Roles are nothing but partner types) mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN # To configure misp partner type From 65c26f4102608c188821a712df4bc858c6dda598 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Tue, 21 Dec 2021 15:27:21 +0530 Subject: [PATCH 0387/1358] updated the config --- admin-default.properties | 117 ++++++++++++++++++--- application-default.properties | 74 +++++++++++++ data-share-default.properties | 22 +++- id-authentication-default.properties | 84 ++++++++++++++- id-repository-default.properties | 52 +++++++--- kernel-default.properties | 144 +++++++++++++++++++++----- partner-management-default.properties | 116 +++++++++++++++++++-- pre-registration-default.properties | 122 +++++++++++++++++++--- print-default.properties | 82 ++++++++++++++- resident-default.properties | 24 ++++- syncdata-default.properties | 143 ++++++++++++++++++++----- 11 files changed, 865 insertions(+), 115 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index f50e11fb15a..0377476d2f7 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -7,6 +7,25 @@ # mosip.mosip.regproc.client.secret # mosip.api.internal.host +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + mosip.api.internal.url=https://${mosip.api.internal.host} mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST @@ -16,8 +35,82 @@ mosip.admin.request-id=ADMIN.REQUEST mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + ## Account management -authmanager.base.url=http://authmanager.kernel/v1/authmanager +authmanager.base.url=${mosip.kernel-auth-service.url}/v1/authmanager mosip.admin.accountmgmt.auth-manager-base-uri=${authmanager.base.url} mosip.admin.accountmgmt.user-name-url=/username/ mosip.admin.accountmgmt.user-detail-url=/userdetail/ @@ -26,7 +119,7 @@ mosip.admin.accountmgmt.change-passoword-url=/changepassword/ mosip.admin.accountmgmt.reset-password-url=/resetpassword/ mosip.admin.app-id=admin -mosip.kernel.signature.cryptomanager-encrypt-url=http://keymanager.keymanager/v1/keymanager/private/encrypt +mosip.kernel.signature.cryptomanager-encrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/private/encrypt auth.server.validate.url=${authmanager.base.url}/authorize/admin/validateToken auth.server.refreshToken.url=${authmanager.base.url}/authorize/admin/refreshToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client @@ -51,7 +144,7 @@ hibernate.generate_statistics=false ## Use registration auth.server.user-register-url=${authmanager.base.url}/user -mosip.kernel.emailnotifier-url=http://notifier.kernel/v1/notifier/email/send +mosip.kernel.emailnotifier-url=${mosip.kernel-notification-service.url}/v1/notifier/email/send auth.server.sendotp-url=${authmanager.base.url}/authenticate/sendotp auth.server.user-add-password-url=${authmanager.base.url}/user/addpassword mosip.admin-appid=admin @@ -165,18 +258,18 @@ mosip.admin.masterdata.card.valid-document-fra=Documents valides mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u0635\u0627\u0644\u062D\u0629 ## UIN activate/deactivate -mosip.admin.uinmgmt.uin-detail-search=http://identity.idrepo/v1/identity/uin/{uin} -mosip.kernel.packet-status-update-url=http://registration-transaction.regproc/registrationprocessor/v1/registrationtransaction/search +mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} +mosip.kernel.packet-status-update-url=${mosip.regproc-registration-transaction-service.url}/v1/registrationtransaction/search mosip.kernel.packet-reciever-api-url=http://packet-receiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets -mosip.kernel.zone-validation-url=http://masterdata.kernel/v1/masterdata/zones/authorize +mosip.kernel.zone-validation-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 -mosip.kernel.audit.manager.api=http://auditmanager.kernel/v1/auditmanager/audits -mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits +mosip.kernel.audit.manager.api=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined mosip.open-id.base-url=${keycloak.host} -mosip.admin-services.audit.manager.api=http://auditmanager.kernel/v1/auditmanager/audits +mosip.admin-services.audit.manager.api=${mosip.admin-service.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client @@ -202,7 +295,7 @@ mosip.security.secure-cookie=false # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client -mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.module.clientsecret=${mosip.secret.mosip-admin-client} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls @@ -214,7 +307,7 @@ mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-conn regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client -regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} +regproc.token.request.secretKey=${mosip.secret.mosip-regproc-client} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 KEYBASEDTOKENAPI=${authmanager.base.url}/authenticate/clientidsecretkey @@ -222,7 +315,7 @@ KEYBASEDTOKENAPI=${authmanager.base.url}/authenticate/clientidsecretkey # IAM adapter mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.adapter.clientsecret=${mosip.secret.mosip-admin-client} # LostRid mosip.registration.processor.lostrid.id=mosip.registration.lostrid diff --git a/application-default.properties b/application-default.properties index 5a8dd4119a6..7a3382ab3e4 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,6 +14,80 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + mosip.masterdata.base.url = http://masterdata.kernel mosip.syncdata.base.url=http://syncdata.kernel diff --git a/data-share-default.properties b/data-share-default.properties index 8fdd04455bb..ccada1321e6 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -12,13 +12,33 @@ KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign PARTNER_POLICY=http://pms-policy.pms/v1/policymanager/policies/{policyId}/partner/{partnerId} KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + data.share.application.id=PARTNER mosip.data.share.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' !-- if value is true then please set servlet path to / --! mosip.data.share.urlshortner=false data.share.token.request.appid=datsha data.share.token.request.clientId=mosip-datsha-client -data.share.token.request.secretKey=${mosip.mosip.datsha.client.secret} +data.share.token.request.secretKey=${mosip.secret.mosip-datsha-client} data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 985f16adae7..51d58675b68 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -19,9 +19,83 @@ mosip.api.internal.url=https://${mosip.api.internal.host} ## Client mosip.ida.auth.clientId=mosip-ida-client -mosip.ida.auth.secretKey=${mosip.mosip.ida.client.secret} +mosip.ida.auth.secretKey=${mosip.secret.mosip-ida-client} mosip.ida.auth.appId=ida +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + ## Database # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port @@ -187,13 +261,13 @@ data-share-get.rest.timeout=10 data-share-get-decrypt-ref-id=${ida-auth-partner-id} ## Title Service rest api-GET -id-masterdata-title-service.rest.uri=http://masterdata.kernel/v1/masterdata/title +id-masterdata-title-service.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/title id-masterdata-title-service.rest.httpMethod=GET id-masterdata-title-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-title-service.rest.timeout=${mosip.ida.request.timeout.secs} ## Master Data - Template Single Language -id-masterdata-template-service.rest.uri=http://masterdata.kernel/v1/masterdata/templates/{langcode}/{templatetypecode} +id-masterdata-template-service.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} id-masterdata-template-service.rest.httpMethod=GET id-masterdata-template-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service.rest.timeout=${mosip.ida.request.timeout.secs} @@ -493,13 +567,13 @@ cred-request-service-get-request-ids.pageSize=10 cred-request-service-get-request-ids.statusCode=ISSUED ida-max-credential-pull-window-days=2 ida-max-websub-messages-pull-window-days=2 -cred-request-service-get-request-ids.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/getRequestIds?direction=ASC&orderBy=updateDateTime&pageNumber={pageNumber}&pageSize=${cred-request-service-get-request-ids.pageSize}&statusCode=${cred-request-service-get-request-ids.statusCode}&effectivedtimes={effectivedtimes} +cred-request-service-get-request-ids.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/getRequestIds?direction=ASC&orderBy=updateDateTime&pageNumber={pageNumber}&pageSize=${cred-request-service-get-request-ids.pageSize}&statusCode=${cred-request-service-get-request-ids.statusCode}&effectivedtimes={effectivedtimes} cred-request-service-get-request-ids.rest.httpMethod=GET cred-request-service-get-request-ids.rest.headers.mediaType=${mosip.ida.request.mediaType} cred-request-service-get-request-ids.rest.timeout=${mosip.ida.request.timeout.secs} # Credential Request API to get Request IDs for the given status, pageStart and page -cred-request-service-retrigger-cred-issuance.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/retrigger/{requestId} +cred-request-service-retrigger-cred-issuance.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/retrigger/{requestId} cred-request-service-retrigger-cred-issuance.rest.httpMethod=PUT cred-request-service-retrigger-cred-issuance.rest.headers.mediaType=${mosip.ida.request.mediaType} cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/id-repository-default.properties b/id-repository-default.properties index edae0eb3f51..61a456c93c7 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -117,16 +117,16 @@ mosip.idrepo.vid.policy-file-url=${mosip.idrepo.mosip-config-url}mosip-vid-polic mosip.idrepo.draft-vid.default-type-to-create=PERPETUAL ## Rest servies -mosip.idrepo.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits +mosip.idrepo.audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST mosip.idrepo.audit.rest.headers.mediaType=application/json -mosip.idrepo.encryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/encrypt +mosip.idrepo.encryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt mosip.idrepo.encryptor.rest.httpMethod=POST mosip.idrepo.encryptor.rest.headers.mediaType=application/json mosip.idrepo.encryptor.rest.timeout=100 -mosip.idrepo.decryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/decrypt +mosip.idrepo.decryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt mosip.idrepo.decryptor.rest.httpMethod=POST mosip.idrepo.decryptor.rest.headers.mediaType=application/json mosip.idrepo.decryptor.rest.timeout=100 @@ -192,7 +192,7 @@ mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE ## Auth adapter mosip.iam.adapter.clientid.id-repository=mosip-regproc-client -mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.regproc.client.secret} +mosip.iam.adapter.clientsecret.id-repository=${mosip.secret.mosip-reg-client} mosip.iam.adapter.appid.id-repository=regproc mosip.authmanager.client-token-endpoint=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey @@ -225,7 +225,7 @@ hibernate.show_sql=false # Token generator properties credential.request.token.request.appid=crereq credential.request.token.request.clientId=mosip-crereq-client -credential.request.token.request.secretKey=${mosip.mosip.crereq.client.secret} +credential.request.token.request.secretKey=${mosip.secret.mosip-reg-client} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator credential.request.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip @@ -251,9 +251,9 @@ credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 ## Rest services -CRDENTIALSERVICE=http://credential.idrepo/v1/credentialservice/issue -KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -CALLBACKURL=http://credential.idrepo/v1/credentialrequest/callback/notifyStatus +CRDENTIALSERVICE=${mosip.idrepo-credential-service.url}/v1/credentialservice/issue +KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +CALLBACKURL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/callback/notifyStatus # Websub #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. @@ -301,12 +301,12 @@ IDREPOGETIDBYID=http://identity.idrepo/idrepository/v1/identity/idvid mosip.data.share.protocol=http mosip.data.share.internal.domain.name=datashare.datashare CREATEDATASHARE=/v1/datashare/create -KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign -KEYMANAGER_ENCRYPT_PIN=http://keymanager.keymanager/v1/keymanager/encryptWithPin -KEYMANAGER_ENCRYPT_ZK=http://keymanager.keymanager/v1/keymanager/zkEncrypt -PARTNER_POLICY=http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -PARTNER_EXTRACTION_POLICY=http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} +KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign +KEYMANAGER_ENCRYPT_PIN=${mosip.kernel-keymanager-service.url}/v1/keymanager/encryptWithPin +KEYMANAGER_ENCRYPT_ZK=${mosip.kernel-keymanager-service.url}/v1/keymanager/zkEncrypt +PARTNER_POLICY=${mosip.pms-partner-manager-service.url=http}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +PARTNER_EXTRACTION_POLICY=${mosip.pms-partner-manager-service.url=http}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} credential.service.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip # BioSDK service @@ -347,11 +347,31 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + ## Auth token generator -auth-token-generator.rest.uri=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey auth-token-generator.rest.appId=regproc auth-token-generator.rest.clientId=mosip-regproc-client -auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} +auth-token-generator.rest.secretKey=${mosip.secret.mosip-regproc-client} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false diff --git a/kernel-default.properties b/kernel-default.properties index e119e61739d..e851f1082e4 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -14,8 +14,82 @@ # email.smtp.username # email.smtp.secret +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager +mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel-syncdata-service.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -25,7 +99,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=http://masterdata.kernel/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest ## SMS notification mosip.kernel.sms.enabled=false @@ -77,13 +151,13 @@ auth.refreshtoken.header=RefreshToken auth.jwt.refresh.expiry=86400000 auth.primary.language=eng -otp.manager.api.generate=http://otpmanager.kernel/v1/otpmanager/otp/generate -otp.manager.api.verify=http://otpmanager.kernel/v1/otpmanager/otp/validate -otp.sender.api.email.send=http://notifier.kernel/v1/notifier/email/send -otp.sender.api.sms.send=http://notifier.kernel/v1/notifier/sms/send -masterdata.api.template=http://masterdata.kernel/v1/masterdata/templates/ +otp.manager.api.generate=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate +otp.manager.api.verify=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate +otp.sender.api.email.send=${mosip.kernel-notification-service.url}/v1/notifier/email/send +otp.sender.api.sms.send=${mosip.kernel-notification-service.url}/v1/notifier/sms/send +masterdata.api.template=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=http://identity.idrepo/idrepository/v1/identity/uin/{uin} +idrepo.api.getuindetails=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client @@ -256,7 +330,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=http://authmanager.kernel/v1/authmanager +mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -267,12 +341,12 @@ mosip.admin_realm_id=mosip master.search.maximum.rows=50 mosip.level=2 -mosip.kernel.masterdata.audit-url= http://auditmanager.kernel/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url= ${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 ## Register device # Keymanager runs in separate namespace "keymanager" -mosip.kernel.sign-url=http://keymanager.keymanager/v1/keymanager/sign +mosip.kernel.sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 ## Prereg @@ -290,7 +364,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken ## Proxy otp @@ -306,7 +380,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -358,7 +432,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=http://masterdata.kernel/v1/masterdata/machines/%s/eng +mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/machines/%s/eng # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments @@ -370,10 +444,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=http://authmanager.kernel/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=http://authmanager.kernel/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key @@ -388,7 +462,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/callback/partner/ca_certificate -syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=${mosip.kernel-syncdata-service.url}/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. @@ -400,9 +474,9 @@ subscriptions-delay-on-startup=120000 mosip.kernel.keymanager.113nothumbprint.support=false # Pause & resume api proeprties -PACKET_RESUME_API=http://regproc-workflowmanager/registrationprocessor/v1/workflowmanager/workflowaction -PACKET_PAUSE_API=http://regproc-workflowmanager/registrationprocessor/v1/workflowmanager/workflow/search -KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +PACKET_RESUME_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflowaction +PACKET_PAUSE_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflow/search +KEYBASEDTOKENAPI=${mosip.kernel-syncdata-service.url}/v1/authmanager/authenticate/clientidsecretkey ## resubscription and subscription initial delay for masterdata service masterdata.websub.resubscription.delay.millis=48000000 @@ -426,7 +500,7 @@ mosip.admin.ui.configs=version:${aplication.configuration.level.version};locatio mosip.kernel.keymanager.113nothumbprint.support=false ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## identity schema backward compatability ######## @@ -437,7 +511,7 @@ scheduling.job.cron=0 0 2 * * ? mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi -#openapi.masterdata.servers[0].url=http://masterdata.kernel/v1/masterdata +#openapi.masterdata.servers[0].url=${mosip.kernel-masterdata-service.url}/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url #openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.path:}} #openapi.service.servers[0].description=For Swagger @@ -448,9 +522,29 @@ zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.adapter.clientsecret=${mosip.secret.mosip-admin-client} #AdminMaster endpoints to access without authentication mosip.service-context=/v1/masterdata diff --git a/partner-management-default.properties b/partner-management-default.properties index ec896aae767..dd24b25226a 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -16,6 +16,80 @@ mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + ## Auth device mosip.authdevice.database.hostname=postgres-postgresql.postgres mosip.authdevice.database.port=5432 @@ -107,15 +181,35 @@ mosip.kernel.sign-url=${keymanager.base.url}/v1/keymanager/jwtSign ## Kernel services mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + # ApplicationId for partner mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services mosip.pmp.auth.clientId=mosip-partner-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} +mosip.pmp.auth.secretKey= ${mosip.secret.mosip-partnermanager-client} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} -pms.cert.service.token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +pms.cert.service.token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey pmp.ca.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadCACertificate pmp.partner.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadPartnerCertificate pmp.partner.certificaticate.get.rest.uri=${keymanager.base.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} @@ -123,11 +217,11 @@ pmp-keymanager.upload.other.domain.cert.rest.uri=${keymanager.base.url}/v1/keyma #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} -mosip.iam.adapter.clientsecret=${mosip.pmp.auth.secretKey} +mosip.iam.adapter.clientsecret=${mosip.secret.mosip-partnermanager-client} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub -pmp.certificaticate.datashare.rest.uri=http://datashare.datashare/v1/datashare/create +pmp.certificaticate.datashare.rest.uri=${mosip.datashare-service.url}/v1/datashare/create # Used for generating the datashare url pms.certs.datashare.policyId=mpolicy-default-cert pms.certs.datashare.subscriberId=mpartner-default-cert @@ -150,8 +244,8 @@ mosip.keycloak.admin.user.id=admin mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter -auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken -auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token @@ -193,7 +287,7 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret=${mosip.mosip.pms.client.secret} +mosip.iam.module.clientsecret=${mosip.secret.mosip-partnermanager-client} mosip.iam.module.redirecturi=https://${mosip.api.public.host}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code @@ -210,14 +304,14 @@ token.request.password=mosip token.request.username=110005 token.request.version=string token.request.id=v1 -token.request.issuerUrl=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey token.request.clientId=admin -PASSWORDBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/useridPwd +PASSWORDBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/useridPwd application.env.local=false # Notifications -emailResourse.url=http://notification.kernel/v1/notifier/email/send -resource.template.url=http://masterdata.kernel/v1/masterdata/templates/{langcode}/{templatetypecode} +emailResourse.url=${mosip.kernel-notification-service.url}/v1/notifier/email/send +resource.template.url=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} notifications.sent.before.days = 3 partner.registration.sub-template = partner-reg-sub-template partner.reg.content-template=partner-reg-content-template diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 7aafcfac254..5a7707e31a5 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -17,6 +17,26 @@ javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.databa javax.persistence.jdbc.user=prereguser javax.persistence.jdbc.password=${db.dbuser.password} +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + ## Hibernate hibernate.hbm2ddl.auto=none hibernate.show_sql=false @@ -37,6 +57,80 @@ mosip.adult.age=${mosip.kernel.applicant.type.age.limit} ## This version is set in the ID object created in pre-registration mosip.idschema.version=0.1 +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + ## Demographic Service demographic.service.version=v1 demographic.service.env=http://prereg-application.prereg @@ -140,7 +234,7 @@ mosip.preregistration.batchjob.service.expired.id=mosip.pre-registration.batchjo # Batch Job Service used to fetch token from key cloak mosip.batch.token.authmanager.appId=prereg mosip.batch.token.authmanager.userName=mosip-prereg-client -mosip.batch.token.authmanager.password=${preregistration.mosip.prereg.client.secret} +mosip.batch.token.authmanager.password=${mosip.secret.mosip-prereg-client} mosip.batch.token.authmanager.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath}/authenticate/clientidsecretkey mosip.batch.token.request.id= @@ -171,15 +265,15 @@ secret_url.version=string otp.request.flooding.duration=1 otp.request.flooding.max-count=3 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX -mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send -sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send -otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate +mail-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/email/send +sms-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/sms/send +otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=otp-sms-template pre.reg.login.otp.mail.subject.template=otp-email-subject-template pre.reg.login.otp.mail.content.template=otp-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId -id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/{langcode}/{templatetypecode} +id-masterdata-template-service-multilang.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} ## Masterdata service ## Base url is only used for masterdata. We give the in-cluster url here @@ -242,7 +336,7 @@ preregistration.crypto.PrependThumbprint=false ## KeyCloak ## Both below fields must match with what is there on Keycloak properties clientId=mosip-prereg-client -secretKey=${preregistration.mosip.prereg.client.secret} +secretKey=${mosip.secret.mosip-prereg-client} ## Used for Key Creating KeyCloak session userIdType=USERID @@ -251,7 +345,7 @@ appId=prereg ## Auth service kernel.auth.env=http://authmanager.kernel kernel.auth.contextpath=authmanager -auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## PRID service @@ -261,7 +355,7 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service latestidschema.service.contextpath=latestidschemafetch the latest ID Schema for the ID object validator -mosip.preregistration.id-schema=http://syncdata.kernel/v1/syncdata/latestidschema +mosip.preregistration.id-schema=${mosip.kernel-syncdata-service.url}/v1/syncdata/latestidschema syncdata.resource.url=http://syncdata.kernel/v1/syncdata ## OTP @@ -274,9 +368,9 @@ secret_url.version=string otp.request.flooding.duration=1 otp.request.flooding.max-count=3 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX -mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send -sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send -otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate +mail-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/email/send +sms-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/sms/send +otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template @@ -411,9 +505,9 @@ object.store.s3.use.account.as.bucketname=true ## Spring cache spring.cache.type=none -mosip.preregistration.appointment.getavailablity.url=http://prereg-booking.prereg/preregistration/v1/appointment/availability/{registrationCenterId} -mosip.preregistration.appointment.book.url=http://prereg-booking.prereg/preregistration/v1/appointment/{preRegistrationId} -mosip.preregistration.appointment.multi.book.url=http://prereg-booking.prereg/preregistration/v1/appointment +mosip.preregistration.appointment.getavailablity.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment/availability/{registrationCenterId} +mosip.preregistration.appointment.book.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment/{preRegistrationId} +mosip.preregistration.appointment.multi.book.url={mosip.prereg-booking-service.url}/preregistration/v1/appointment mosip.preregistration.applications.status.get = mosip.preregistration.applications.status mosip.preregistration.applications.details.get = mosip.preregistration.applications.detail.info mosip.preregistration.uispec.latest=mosip.preregistration.uispec.latest diff --git a/print-default.properties b/print-default.properties index 88727b781ad..969f15762ff 100644 --- a/print-default.properties +++ b/print-default.properties @@ -5,13 +5,87 @@ # keycloak.host # print.websub.hub.secret +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + + ## Websub websub.base.url=http://websub.websub mosip.event.hubURL=${websub.base.url}/hub mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident -mosip.event.callBackUrl=http://print-service.print/v1/print/print/callback/notifyPrint +mosip.event.callBackUrl=${mosip.print-service.url}/v1/print/print/callback/notifyPrint mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED mosip.event.secret=${print.websub.hub.secret} csrf.disabled=true @@ -30,7 +104,7 @@ token.request.secretKey= ${mosip.mosip.regproc.client.secret} token.request.issuerUrl=${keycloak.host}/auth/realms/mosip # Audit service -AUDIT=http://auditmanager.kernel/v1/auditmanager/audits +AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.kernel.pdf_owner_password=123456 ## Auth service @@ -107,6 +181,6 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.n IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity -CREATEDATASHARE=http://datashare.datashare/v1/datashare/create -DECRYPTPINBASSED=http://keymanager.keymanager/v1/keymanager/decryptWithPin +CREATEDATASHARE=${mosip.datashare-service.url}/v1/datashare/create +DECRYPTPINBASSED=${mosip.kernel-keymanager-service.url}/v1/keymanager/decryptWithPin mosip.print.prependThumbprint=true diff --git a/resident-default.properties b/resident-default.properties index 6d635b2878e..2a79298f166 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -29,12 +29,32 @@ PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT DECRYPT_API_URL=http://keymanager.kernel/v1/keymanager/decrypt +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + ## Token generation token.request.id=io.mosip.resident resident.appid=resident token.request.version=1.0 resident.clientId=mosip-resident-client -resident.secretKey=${mosip.mosip.resident.client.secret} +resident.secretKey=${mosip.secret.mosip-resident-client} # Below is defined in application properties token.request.issuerUrl=${mosip.keycloak.issuerUrl} @@ -101,7 +121,7 @@ mosip.registration.processor.registration.sync.id=mosip.registration.sync id.repo.vidType=Perpetual token.request.appid=resident token.request.clientId=mosip-resident-client -token.request.secretKey=${mosip.mosip.resident.client.secret} +token.request.secretKey=${mosip.secret.mosip-resident-client} objectstore.adapter.name=PosixAdapter #TODO remove reg-client service accunt in production env diff --git a/syncdata-default.properties b/syncdata-default.properties index 3e11e604eea..35d28be5502 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -12,9 +12,102 @@ # mosip.api.internal.host # softhsm.kernel.pin +mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + +mosip.NAME.url=http://NAME.default:80 +mosip.activemq.url=http://activemq.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 +mosip.admin-service.url=http://admin-service.default:80 +mosip.admin-ui.url=http://admin-ui.default:80 +mosip.artifactory-service.url=http://artifactory-service.default:80 +mosip.clamav.url=http://clamav.default:80 +mosip.config-server.url=http://config-server.default:80 +mosip.datashare-service.url=http://datashare-service.default:80 +mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.default:80 +mosip.ida-internal-service.url=http://ida-internal-service.default:80 +mosip.ida-otp-service.url=http://ida-otp-service.default:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.kafka.url=http://kafka.default:80 +mosip.kafka-headless.url=http://kafka-headless.default:80 +mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 +mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.keycloak.url=http://keycloak.default:80 +mosip.kubernetes.url=http://kubernetes.default:80 +mosip.minio.url=http://minio.default:80 +mosip.mock-abis.url=http://mock-abis.default:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-mv.url=http://mock-mv.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 +mosip.pms-ui.url=http://pms-ui.default:80 +mosip.postgres.url=http://postgres.default:80 +mosip.prereg-application-service.url=http://prereg-application-service.default:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 +mosip.prereg-ui.url=http://prereg-ui.default:80 +mosip.print-service.url=http://print-service.default:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.resident-service.url=http://resident-service.default:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 +mosip.softhsm-ida.url=http://softhsm-ida.default:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.ingress-nginx.url=http://ingress-nginx.default:80 +mosip.kube-dns.url=http://kube-dns.default:80 +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 +mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.kibana-kibana.url=http://kibana-kibana.default:80 +mosip.metrics-server.url=http://metrics-server.default:80 +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.default:80 + ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager +mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -25,7 +118,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef mosip.kernel.syncdata-service-idschema-url=http://masterdata.kernel/v1/masterdata/idschema/latest -mosip.kernel.masterdata.locationhierarchylevels.uri = http://masterdata.kernel/v1/masterdata/locationHierarchyLevels +mosip.kernel.masterdata.locationhierarchylevels.uri =${mosip.kernel-masterdata-service.url}/v1/masterdata/locationHierarchyLevels ## SMS notification mosip.kernel.sms.enabled=false @@ -77,21 +170,21 @@ auth.refreshtoken.header=RefreshToken auth.jwt.refresh.expiry=86400000 auth.primary.language=eng -otp.manager.api.generate=http://otpmanager.kernel/v1/otpmanager/otp/generate -otp.manager.api.verify=http://otpmanager.kernel/v1/otpmanager/otp/validate -otp.sender.api.email.send=http://notification.kernel/v1/notifier/email/send -otp.sender.api.sms.send=http://notification.kernel/v1/notifier/sms/send -masterdata.api.template=http://masterdata.kernel/v1/masterdata/templates/ +otp.manager.api.generate=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate +otp.manager.api.verify=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate +otp.sender.api.email.send=${mosip.kernel-notification-service.url}/v1/notifier/email/send +otp.sender.api.sms.send={mosip.kernel-notification-service.url}/v1/notifier/sms/send +masterdata.api.template=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=http://identity.idrepo/idrepository/v1/identity/uin/{uin} +idrepo.api.getuindetails=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key=${mosip.mosip.auth.client.secret} +mosip.kernel.auth.secret.key=${mosip.secret.mosip-auth-client} mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} +mosip.kernel.ida.secret.key=${mosip.secret.mosip-ida-client} ## Token id salts mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf @@ -220,7 +313,7 @@ mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users #Self token resttemplate related to configuration mosip.iam.adapter.clientid=mosip-syncdata-client -mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} +mosip.iam.adapter.clientsecret=${mosip.secret.mosip-reg-client} mosip.iam.adapter.appid=registrationclient mosip.iam.adapter.issuerURL=${mosip.iam.base-url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey @@ -271,23 +364,23 @@ mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} +mosip.admin.clientsecret=${mosip.secret.mosip-admin-client} mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ mosip.admin_realm_id=mosip master.search.maximum.rows=50 mosip.level=2 -mosip.kernel.masterdata.audit-url= http://auditmanager.kernel/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url= ${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 ## Register device -mosip.kernel.keymanager-service-sign-url=http://keymanager.keymanager/v1/keymanager/jwtSign +mosip.kernel.keymanager-service-sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign masterdata.registerdevice.timestamp.validate=+10 ## Prereg mosip.kernel.prereg.realm-id=preregistration mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} +mosip.kernel.prereg.secret.key=${mosip.secret.mosip-prereg-client} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron @@ -299,7 +392,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client ## Proxy otp @@ -315,7 +408,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=http://authmanager.kernel/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -367,7 +460,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=http://masterdata.kernel/v1/masterdata/machines/%s/eng +mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/masterdata/machines/%s/eng # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments @@ -376,13 +469,13 @@ mosip.syncdata.tpm.required=false mosip.kernel.registrationclient.app.id=registrationclient mosip.kernel.registrationclient.client.id=mosip-reg-client # env variable -mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} +mosip.kernel.registrationclient.secret.key=${mosip.secret.mosip-reg-client} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=http://authmanager.kernel/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=http://authmanager.kernel/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=http://authmanager.kernel/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key @@ -397,7 +490,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=http://syncdata.kernel/v1/syncdata/websub/callback/cacert +syncdata.websub.callback.url.ca-cert=${mosip.kernel-syncdata-service.url}/v1/syncdata/websub/callback/cacert # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a @@ -409,7 +502,7 @@ syncdata.websub.resubscription.delay.millis=43200000 subscriptions-delay-on-startup=120000 #Property to fetch location hierarchies during client settings sync -mosip.kernel.masterdata.locationhierarchylevels.uri=http://masterdata.kernel/v1/masterdata/locationHierarchyLevels +mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/locationHierarchyLevels # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. # Make it to true if support is required. From 4a5f20ebe016fe09412474408c17957e4225e11c Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Tue, 21 Dec 2021 15:56:28 +0530 Subject: [PATCH 0388/1358] updated the config --- admin-default.properties | 36 +++++++++++++------------- data-share-default.properties | 37 +++++++++++++-------------- id-repository-default.properties | 38 +++++++++++++--------------- kernel-default.properties | 39 ++++++++++++++--------------- pre-registration-default.properties | 37 +++++++++++++-------------- resident-default.properties | 38 ++++++++++++++-------------- syncdata-default.properties | 38 ++++++++++++++-------------- 7 files changed, 129 insertions(+), 134 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 0377476d2f7..737196d08d2 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -7,24 +7,24 @@ # mosip.mosip.regproc.client.secret # mosip.api.internal.host -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.api.internal.url=https://${mosip.api.internal.host} mosip.admin.version-id=v1.0 diff --git a/data-share-default.properties b/data-share-default.properties index ccada1321e6..a3f940e0cdb 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -12,25 +12,24 @@ KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign PARTNER_POLICY=http://pms-policy.pms/v1/policymanager/policies/{policyId}/partner/{partnerId} KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= data.share.application.id=PARTNER mosip.data.share.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' diff --git a/id-repository-default.properties b/id-repository-default.properties index 61a456c93c7..9961df7e51b 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -347,26 +347,24 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= ## Auth token generator auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey auth-token-generator.rest.appId=regproc diff --git a/kernel-default.properties b/kernel-default.properties index e851f1082e4..dacc49afdff 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -14,6 +14,25 @@ # email.smtp.username # email.smtp.secret +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= + mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 @@ -522,26 +541,6 @@ zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.secret.mosip-admin-client} diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 5a7707e31a5..23ea7a0e1df 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -17,25 +17,24 @@ javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.databa javax.persistence.jdbc.user=prereguser javax.persistence.jdbc.password=${db.dbuser.password} -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= ## Hibernate hibernate.hbm2ddl.auto=none diff --git a/resident-default.properties b/resident-default.properties index 2a79298f166..f4abbb1108f 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -29,25 +29,25 @@ PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT DECRYPT_API_URL=http://keymanager.kernel/v1/keymanager/decrypt -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= ## Token generation token.request.id=io.mosip.resident diff --git a/syncdata-default.properties b/syncdata-default.properties index 35d28be5502..bc3e62bd016 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -12,25 +12,25 @@ # mosip.api.internal.host # softhsm.kernel.pin -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 From 066cf83b78e99f2f41b31e7878f4690f2e5de142 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Tue, 21 Dec 2021 18:43:30 +0530 Subject: [PATCH 0389/1358] Added the application-default-dmz.properties file --- application-default-dmz.properties | 374 +++++++++++++++++++++++++++++ 1 file changed, 374 insertions(+) create mode 100644 application-default-dmz.properties diff --git a/application-default-dmz.properties b/application-default-dmz.properties new file mode 100644 index 00000000000..5c7d211bbc3 --- /dev/null +++ b/application-default-dmz.properties @@ -0,0 +1,374 @@ +#---------------------------------------Common properties----------------------- +aplication.configuration.level.version=LTS +mz.ingress.base.url: http://mz.ingress:30080 + +#Kernel-idobjectalidator +# Plug in property source as either 'LOCAL' or 'CONFIG_SERVER' or 'APPLICATION_CONTEXT' through this key +mosip.kernel.idobjectvalidator.property-source=APPLICATION_CONTEXT +mosip.kernel.idobjectvalidator.schema-name=mosip-identity-json-schema.json +mosip.kernel.idobjectvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ +mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable=NA + + + +mosip.masterdata.base.url = ${mz.ingress.base.url} +mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages +mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes +mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories +mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} +mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} +mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} +mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes + +mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber +mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus +mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber +mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber +mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus +mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics +mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics + +mosip.country.code=WOR + +# Language Supported By Platform - ISO +mosip.supported-languages=eng,ara + +# Application IDs +mosip.prereg.app-id=PRE_REGISTRATION +mosip.reg.app-id=REGISTRATION +mosip.regproc.app-id=REGISTRATION_PROCESSOR +mosip.ida.app-id=IDA +mosip.ida.ref-id=INTERNAL +mosip.idrepo.app-id=ID_REPO + +# UTC ISO Date Time Pattern +mosip.utc-datetime-pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' +mosip.sign.header=response-signature +mosip.signed.response.header=response-signature + +#----------------------- CBEFF Util-------------------------------------------------- +# Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. +mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ +# Cbeff XSD file name in config server +mosip.kernel.xsdfile=mosip-cbeff.xsd + +#----------------------------- Applicant Type -------------------------------------------------- +mosip.kernel.applicant.type.age.limit = 5 + +#----------------------------- Static PIN -------------------------------------------------- +mosip.kernel.pin.length=6 + +#-----------------------------TspId ----------------------------------------------- +#length of the Tsp id +mosip.kernel.tspid.length=4 + +#-----------------------------partnerId ----------------------------------------------- +#length of the partner id +mosip.kernel.partnerid.length=4 + +#-----------------------------TOKEN-ID Properties--------------------------------- +#length of the token id +mosip.kernel.tokenid.length=36 + +#-----------------------------Registration Center Id ----------------------------------------------- +#length of the registration center id +mosip.kernel.registrationcenterid.length=5 + +#-----------------------------Machine Id ----------------------------------------------- +#length of the machine id +mosip.kernel.machineid.length=5 + +#-----------------------------RID Properties--------------------------------------- +# length of the rid +mosip.kernel.rid.length=29 +# length of the timestamp +mosip.kernel.rid.timestamp-length=14 +# rid sequence max digits +mosip.kernel.rid.sequence-length=5 + +# Upper bound of number of digits in sequence allowed in id. For example if +# limit is 3, then 12 is allowed but 123 is not allowed in id (in both +# ascending and descending order) +mosip.kernel.tokenid.sequence-limit=3 + +#-----------------------------PRID Properties------------------------------------ +#prid-length +mosip.kernel.prid.length=14 + +# Upper bound of number of digits in sequence allowed in id. For example if +# limit is 3, then 12 is allowed but 123 is not allowed in id (in both +# ascending and descending order) +#to disable validation assign zero or negative value +mosip.kernel.prid.sequence-limit=3 + +# Number of digits in repeating block allowed in id. For example if limit is 2, +# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) +#to disable validation assign zero or negative value +mosip.kernel.prid.repeating-block-limit=3 + + +# Lower bound of number of digits allowed in between two repeating digits in +# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) to disable validation assign zero or negative value +mosip.kernel.prid.repeating-limit=2 + +# list of number that id should not be start with to disable null +mosip.kernel.prid.not-start-with=0,1 + +#restricted numbers for prid +mosip.kernel.prid.restricted-numbers=786,666 + + +#-----------------------------VID Properties-------------------------------------- +# length of the vid +mosip.kernel.vid.length=16 + +# Upper bound of number of digits in sequence allowed in id. For example if +# limit is 3, then 12 is allowed but 123 is not allowed in id (in both +# ascending and descending order) +# to disable sequence limit validation assign 0 or negative value +mosip.kernel.vid.length.sequence-limit=3 + +# Number of digits in repeating block allowed in id. For example if limit is 2, +# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) +# to disable repeating block validation assign 0 or negative value +mosip.kernel.vid.length.repeating-block-limit=2 + + +# Lower bound of number of digits allowed in between two repeating digits in +# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) +# to disable repeating limit validation, assign 0 or negative value +mosip.kernel.vid.length.repeating-limit=2 + +# list of number that id should not be start with +# to disable null +mosip.kernel.vid.not-start-with=0,1 + +#restricted numbers for vid +mosip.kernel.vid.restricted-numbers=786,666 + +#-----------------------------UIN Properties-------------------------------------- +#length of the uin +mosip.kernel.uin.length=10 +#minimum threshold of unused uin +mosip.kernel.uin.min-unused-threshold=200000 +#number of uins to generate +mosip.kernel.uin.uins-to-generate=500000 +#restricted numbers for uin +mosip.kernel.uin.restricted-numbers=786,666 + +# Upper bound of number of digits in sequence allowed in id. For example if +# limit is 3, then 12 is allowed but 123 is not allowed in id (in both +# ascending and descending order) +# to disable sequence limit validation assign 0 or negative value +mosip.kernel.uin.length.sequence-limit=3 + +# Number of digits in repeating block allowed in id. For example if limit is 2, +# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) +#to disable validation assign zero or negative value +mosip.kernel.uin.length.repeating-block-limit=2 + +# Lower bound of number of digits allowed in between two repeating digits in +# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) +# to disable repeating limit validation, assign 0 or negative value +mosip.kernel.uin.length.repeating-limit=2 + +#reverse group digit limit for uin filter +mosip.kernel.uin.length.reverse-digits-limit=5 + +#group digit limit for uin filter +mosip.kernel.uin.length.digits-limit=5 + +#should not start with +mosip.kernel.uin.not-start-with=0,1 + +#adjacent even digit limit for uin filter +mosip.kernel.uin.length.conjugative-even-digits-limit=3 + + + +#------------------------Auth-Adapter----------------------------------------------- +auth.server.validate.url=${mz.ingress.base.url}/v1/authmanager/authorize/admin/validateToken +#----------------------- Crypto -------------------------------------------------- +#Crypto asymmetric algorithm name +mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING +#Crypto symmetric algorithm name +mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding +#Keygenerator asymmetric algorithm name +mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA +#Keygenerator symmetric algorithm name +mosip.kernel.keygenerator.symmetric-algorithm-name=AES +#Asymmetric algorithm key length +mosip.kernel.keygenerator.asymmetric-key-length=2048 +#Symmetric algorithm key length +mosip.kernel.keygenerator.symmetric-key-length=256 +#Keygenerator symmetric algorithm name +mosip.kernel.keygenerator.symmetric-algorithm-name=AES +# keygenerator asymmetric algorithm name +mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA +#Encrypted data and encrypted symmetric key separator +mosip.kernel.data-key-splitter=#KEY_SPLITTER# +#GCM tag length +mosip.kernel.crypto.gcm-tag-length=128 +#Hash algo name +mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 +#Symmtric key length used in hash +mosip.kernel.crypto.hash-symmetric-key-length=256 +#No of iterations in hash +mosip.kernel.crypto.hash-iteration=100000 +#Sign algo name +mosip.kernel.crypto.sign-algorithm-name=RS256 + +mosip.keymanager.base.url=http://kernel-keymanager-service +mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt +mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign +mosip.sign.applicationid=KERNEL +mosip.sign.refid=SIGN +mosip.kernel.cryptomanager.request_id=CRYPTOMANAGER.REQUEST +mosip.kernel.cryptomanager.request_version=v1.0 +mosip.kernel.signature.signature-request-id=SIGNATURE.REQUEST +mosip.kernel.signature.signature-version-id=v1.0 + + + +#----------------------------------ID Repo------------------------------------------ +mosip.idrepo.identity.uin-status.registered=ACTIVATED +mosip.idrepo.identity.uin-status=ACTIVATED,BLOCKED,DEACTIVATED + +#---------------------------------------otp manager service------------------------------- +#the default length for otp(in number) +mosip.kernel.otp.default-length=6 +#the default crypto function +#It can be: HmacSHA512, HmacSHA256, HmacSHA1. +mosip.kernel.otp.mac-algorithm=HmacSHA512 +#the OTP expires after the given time(in seconds). +mosip.kernel.otp.expiry-time=180 +#the key is freezed for the given time(in seconds). +mosip.kernel.otp.key-freeze-time=1800 +#the number of validation attempts allowed(in number). +#mosip.kernel.otp.validation-attempt-threshold =3 means , the validation and generation will be blocked from 4th time. +mosip.kernel.otp.validation-attempt-threshold=10 +#minimum length of key(in number). +mosip.kernel.otp.min-key-length=3 +#maximum length of key(in number). +mosip.kernel.otp.max-key-length=64 + + +#--------------------------------------Licensekeymanager Service-------------------------------------- +#the license key length. +mosip.kernel.licensekey.length=16 +#List of permissions +# NOTE: ',' in the below list is used as splitter in the implementation. +# Use of ',' in the values for below key should be avoided. +# Use of spaces before and after ',' also should be avoided. +mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authentication - Identity Data Match,Demo Authentication - Address Data Match,Demo Authentication - Full Address Data Match,Demo Authentication - Secondary Language Match,Biometric Authentication - FMR Data Match,Biometric Authentication - IIR Data Match,Biometric Authentication - FID Data Match,Static Pin Authentication,eKYC - limited,eKYC - Full,eKYC - No + + + +#-----------------------------Virus Scanner-------------------------------------- +mosip.kernel.virus-scanner.host=clamav +mosip.kernel.virus-scanner.port=80 + +#------------------------Transliteration----------------------------------------------- +mosip.kernel.transliteration.arabic-language-code=ara +mosip.kernel.transliteration.english-language-code=eng + + + +#-------Registration processor Notification types------------ +mosip.registration.processor.notification.types=SMS|EMAIL + + +mosip.default.dob.month=01 +mosip.default.dob.day=01 +mosip.login.mode= email,mobile + + +#---Language orientation----- +mosip.right_to_left_orientation=ara +mosip.left_to_right_orientation=eng + + + +#**************** Notification Type ************* +#mosip.notificationtype=SMS|EMAIL +mosip.notificationtype=EMAIL +mosip.kernel.sms.proxy-sms=false +#******** Notification lanugage types - either PRIMARY or BOTH ******** +mosip.notification.language-type=BOTH + + +#-------------------System--------------- +logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO + +#-------------------Admin--------------- +mosip.min-digit-longitude-latitude=4 +mosip.kernel.filtervalue.max_columns=20 + +auth.server.admin.validate.url=${mz.ingress.base.url}/v1/authmanager/authorize/admin/validateToken + +#------------------PDF Genration----------------------------------------- +mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 +#------------------Quality Check----------------------------------------- +#Quality threshold for applicant iris +mosip.iris_threshold=0 +#Quality threshold for applicant leftslap fingerprint +mosip.leftslap_fingerprint_threshold=0 +#Quality threshold for applicant rightslap fingerprint +mosip.rightslap_fingerprint_threshold=0 +#Quality threshold for applicant thumbs fingerprint +mosip.thumbs_fingerprint_threshold=0 +#Quality threshold for applicant face +mosip.facequalitythreshold=0 +#Bio SDK Integration +mosip.fingerprint.provider=io.mosip.kernel.bioapi.impl.BioApiImpl +mosip.face.provider=io.mosip.kernel.bioapi.impl.BioApiImpl +mosip.iris.provider=io.mosip.kernel.bioapi.impl.BioApiImpl + +#-------UIN Alias------------------- +mosip.uin.alias= + +#---------------------------------kernel Salt Generator---------------------------------------------------# +mosip.kernel.salt-generator.chunk-size=10 +mosip.kernel.salt-generator.start-sequence=0 +mosip.kernel.salt-generator.end-sequence=999 +#----------------------------------------------------------------------------------------------------------# +server.max-http-header-size=10000000 + +mosip.kernel.auth.adapter.ssl-bypass=true + +# device registration/deregistration config +mosip.stage.environment=Developer + +# log level +logging.level.root=WARN +logging.level.io.mosip=INFO +logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO + +#iam adapter +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter + +# tomcat access logs +server.tomcat.accesslog.enabled=true +server.tomcat.accesslog.directory=/dev +server.tomcat.accesslog.prefix=stdout +server.tomcat.accesslog.buffered=false +server.tomcat.accesslog.suffix= +server.tomcat.accesslog.file-date-format= +server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}","req.userAgent":"%{User-Agent}i","req.xForwardedFor":"%{X-Forwarded-For}i","req.referer":"%{Referer}i","req.method":"%m","req.remoteHost":"%a"} +server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve + + +mosip.mandatory-languages=eng +mosip.optional-languages=ara,eng +mosip.min-languages.count=1 +mosip.max-languages.count=2 +mosip.recommended.centers.locCode=6 + +#Config key to pick the preferred language for communicating to the Resident +mosip.default.user-preferred-language-attribute=preferredLang + +# URL to get new Auth Token from OIDC provider & to do online validation of auth token with OIDC provider. +auth.server.admin.issuer.uri=${mosipbox.public.url}/keycloak/auth/realms/ + +# Map to find the realm for the inputted appid to get the token from OIDC provider. +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} \ No newline at end of file From 173f382784f96569f759ec440c918819228d75f3 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Tue, 21 Dec 2021 18:54:42 +0530 Subject: [PATCH 0390/1358] Added the application-default-dmz.properties file and registration-processor-default-dmz.properties --- application-default-dmz.properties | 3 +- registration-processor-default-dmz.properties | 250 ++++++++++++++++++ 2 files changed, 252 insertions(+), 1 deletion(-) create mode 100644 registration-processor-default-dmz.properties diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 5c7d211bbc3..64db11ba56f 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -1,6 +1,7 @@ #---------------------------------------Common properties----------------------- aplication.configuration.level.version=LTS mz.ingress.base.url: http://mz.ingress:30080 +mosip.keymanager.base.url=http://kernel-keymanager-service #Kernel-idobjectalidator # Plug in property source as either 'LOCAL' or 'CONFIG_SERVER' or 'APPLICATION_CONTEXT' through this key @@ -218,7 +219,7 @@ mosip.kernel.crypto.hash-iteration=100000 #Sign algo name mosip.kernel.crypto.sign-algorithm-name=RS256 -mosip.keymanager.base.url=http://kernel-keymanager-service + mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign mosip.sign.applicationid=KERNEL diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties new file mode 100644 index 00000000000..5c9c7e9f051 --- /dev/null +++ b/registration-processor-default-dmz.properties @@ -0,0 +1,250 @@ +#################################################################################################### +#---------------------------------------- COMMON PROPERTIES ---------------------------------------- +#################################################################################################### + +#------------------------------------------Spring properties---------------------------------------# + +# DB details to which regproc dmz services and stage will connect +mosip.registration.processor.database.hostname=mz.ingress +mosip.registration.processor.database.port=30090 + +# URL prefix to connect to mz services cluster +mz.ingress.url=http://mz.ingress:30080 + +# Persistence properties +javax.persistence.jdbc.driver=org.postgresql.Driver +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc +javax.persistence.jdbc.user=regprcuser +javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 + +# Hibernate properties +hibernate.hbm2ddl.auto=none +hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect +hibernate.jdbc.lob.non_contextual_creation=true +hibernate.show_sql=false + +# Health checker config followed by all spring apps +management.endpoint.health.show-details=always +management.endpoints.web.exposure.include=info,health,refresh + +#----------------------------------Registration processor rest client API's------------------------# + +# Audit Service URLs +AUDIT=${mz.ingress.url}/v1/auditmanager/audits + +# Auth Services URLs +KEYBASEDTOKENAPI=${mz.ingress.url}/v1/authmanager/authenticate/clientidsecretkey +GETINDIVIDUALIDFROMUSERID=${mz.ingress.url}/v1/authmanager/individualId +TOKENVALIDATE=${mz.ingress.url}/v1/authmanager/authorize/admin/validateToken +DIGITALSIGNATURE=${mz.ingress.url}/v1/keymanager/sign + +# IDA Services URLs +ida-internal-auth-uri=${mz.ingress.url}/idauthentication/v1/internal/auth +ida-internal-get-certificate-uri=${mz.ingress.url}/idauthentication/v1/internal/getCertificate + +# Keymanager service URLs +CRYPTOMANAGERDECRYPT=${mz.ingress.url}/v1/keymanager/decrypt +ENCRYPTURL=${mz.ingress.url}/v1/keymanager/encrypt + +#------------------------------------Other common libraries properties-----------------------------# + +# Landing zone folder where uploaded files are temporarily kept +registration.processor.LANDING_ZONE = /mnt/regproc/landing + +# Base base package to be used for scanning components of the IAM adapter to autowire +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter + +# Token generation request details +token.request.id=io.mosip.registration.processor +token.request.appid=regproc +token.request.version=1.0 +token.request.clientId=mosip-regproc-client +token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db +token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip + +# Request id to be used for various internal services +mosip.registration.processor.digital.signature.id=io.mosip.registration.processor +mosip.registration.processor.audit.id=mosip.applicanttype.getApplicantType +mosip.registration.processor.crypto.decrypt.id=mosip.cryptomanager.decrypt + +# Kernel Crypto signature +registration.processor.signature.isEnabled=true + +# The elapse time beyond which the rids will be considered for reprocessing +registration.processor.reprocess.elapse.time=300 + +# Virus Scanner Connection details +mosip.kernel.virus-scanner.host=clamav +mosip.kernel.virus-scanner.port=80 +# virus scanner provider to be passed during runtime. This property will load provider during startup +mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl + +# Extension used for the packets +registration.processor.packet.ext=.zip +# Id used for referencing keys in keymanager belonging to regproc module +registration.processor.application.id=REGISTRATION +# Version string that will be used in the reponses +mosip.registration.processor.application.version=1.0 +# Date time pattern that should be followed in timestamp for both request and response +mosip.registration.processor.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' +# Date pattern for registrationDate that should be followed in lostrid request +mosip.registration.processor.lostrid.registrationdate.pattern=yyyy-MM-dd +# Timezone that is expected to be followed in the request and response +mosip.registration.processor.timezone=GMT +# Allowed time difference between the request time and the curren time +mosip.registration.processor.grace.period=10800 + +# The list of comma separated stages that should be successfully completed before packet +# reaches the stage that uploads packets to the packet store +mosip.registration.processor.registration.status.stages-before-reaching-packet-store=PacketReceiverStage,SecurezoneNotificationStage + +# Stage Group Configuratoins +# Default base packages for stage beans to be scanned in a stage group +mosip.regproc.mosip-stage-executor.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor,io.mosip.registartion.processor +# Add any new base package of Stage bean specific to stage group as below +# mosip.regproc.stage-groups.stage-beans-base-packages.<stage_group_name>=${mosip.regproc.stage-groups.stage-beans-base-packages.default} +# Example: mosip.regproc.stage-groups.stage-beans-base-packages.stage-group-1=${mosip.regproc.stage-groups.stage-beans-base-packages.default},my.stage.bean.base.package + +# Mostly used for forming the config server URI in stages +packet.info.storage.service=* +registration.processor.identityjson=identity-mapping.json +config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ + +# main processor used in stages +registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE +# sub processor used in stages +registration.processor.sub-processes=BIOMETRIC_CORRECTION + +#--------------------------------Registration core library properties------------------------------# + +# Regproc supported eventbus types: vertx, kafka. Defaults to vertx if the config is not present +mosip.regproc.eventbus.type=kafka + +# Kafka event bus config, will be used only when the type is kafka +# Kafka cluster servers comma separated, common for all stages and camel bridge +mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default.svc.cluster.local:9092,kafka-1.kafka-headless.default.svc.cluster.local:9092,kafka-2.kafka-headless.default.svc.cluster.local:9092 + +# workel pool size to process multiple requests parallely by stages +worker.pool.size=10 + +#################################################################################################### +#------------------------------------ WORKFLOW ENGINE PROPERTIES ----------------------------------- +#################################################################################################### + +#------------------------------------------camel-bridge--------------------------------------------# + +mosip.regproc.camel.bridge.eventbus.kafka.commit.type=single +mosip.regproc.camel.bridge.eventbus.kafka.max.poll.records=100 +mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 +# Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends +# MosipVerticleAPIManager +# Kafka consumer group id, used by kafka to identify multiple instances of the same consumer +mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-brdige-dmz + +# Camel Route xml files corresponding to the dmz flow +camel.dmz.active.flows.file.names=registration-processor-camel-routes-new-dmz.xml,registration-processor-camel-routes-update-dmz.xml,registration-processor-camel-routes-activate-dmz.xml,registration-processor-camel-routes-res-update-dmz.xml,registration-processor-camel-routes-deactivate-dmz.xml,registration-processor-camel-routes-lost-dmz.xml,registration-processor-camel-routes-res-reprint-dmz.xml,registration-processor-camel-routes-biometric-correction-dmz.xml +# Current zone on which services and stages are runnning, can be dmz or mz +registration.processor.zone=dmz +# Pause settings used by camel to match expression and pause packet processing +# Eg: [{"matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","resumeRemoveTags" : "HOTLISTED"}] +mosip.regproc.camelbridge.pause-settings=[] +# Prefix used by all the address in the camel flow +mosip.regproc.camelbridge.endpoint-prefix=eventbus:// + + +#################################################################################################### +#------------------------------------ REGPROC SERVICES PROPERTIES ---------------------------------- +#################################################################################################### + +#-------------------------------------Registration Status service----------------------------------# + +# Exposed API ids and versions used for request validation +mosip.registration.processor.registration.status.id=mosip.registration.status +mosip.registration.processor.registration.sync.id=mosip.registration.sync +mosip.registration.processor.lostrid.id=mosip.registration.lostrid +# Registration External Status Id +mosip.registration.processor.registration.external.status.id=mosip.registration.external.status +# Packet external Status Id +mosip.registration.processor.packet.external.status.id=mosip.registration.packet.external.status +mosip.registration.processor.sync.version=1.0 +mosip.registration.processor.registration.status.version=1.0 +mosip.registration.processor.lostrid.version=1.0 +# Registration External Status Version +mosip.registration.processor.registration.external.status.version=1.0 +# Packet Status Version +mosip.registration.processor.packet.external.status.version=1.0 + +# LatestTransactionTypeCodes Before uploading to Object Store +mosip.registration.processor.packet.status.transactiontypecodes-before-uploading-to-objectstore=PACKET_RECEIVER,SECUREZONE_NOTIFICATION +# LatestTransactionTypeCode uploading to Object Store +mosip.registration.processor.packet.status.transactiontypecodes-uploading-to-objectstore=UPLOAD_PACKET +# LatestTransactionTypeCodes time based resend required +mosip.registration.processor.packet.status.transactiontypecodes-time-based-resend-required=PACKET_RECEIVER + +# Maximum no of time client is allowed to upload a packet on failure +registration.processor.max.retry=3 + +# The comma separate list of external statuses that should be considered as processed +# for search API response consumed by regclient +mosip.registration.processor.registration.status.external-statuses-to-consider-processed=UIN_GENERATED,REREGISTER,REJECTED,REPROCESS_FAILED + +# this property is used in lostrid api to get postal code +mosip.registration.processor.postalcode.req.url=${mz.ingress.url}/v1/masterdata/registrationcenters +#registration status api controller assigned roles +mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR +mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN +mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT + +#################################################################################################### +#------------------------------------- STAGE SPECIFIC PROPERTIES ----------------------------------- +#################################################################################################### + +#-----------------------------------------Packet Receiver Stage------------------------------------# + +# Supported commmit config: auto, batch, single +mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single +# Maximum records that can be received in one poll from kafka +mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 +# Interval between each poll calls to kafka in milli sec +mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 +# Kafka consumer group id, used by kafka to identify multiple instances of the same consumer +mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage + +# Base sevlet path for the stage +mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver +# Port number in which the application will run +mosip.regproc.packet.receiver.server.port=8081 +# Port number to be used by eventbus for communicating with other vertx apps in the cluster +mosip.regproc.packet.receiver.eventbus.port=5711 + +# Flag to disable the copying of tags from the packet manger to the message event +mosip.regproc.packet.receiver.message.tag.loading.disable=true +#Maximum file size to be upload from packet receiver +registration.processor.max.file.size=5 +# Module id that should be added in the responses +mosip.registration.processor.packet.id=mosip.registration.packet + +#################################################################################################### +#----------------------------- NOT USED PROPERTIES (To be removed later) --------------------------- +#################################################################################################### + +#-----packet-utility---------- +# The known packet sources. Should be set as all fieldCategory present in idschema +# (NOTE : if fieldCategory is set as pvt then the source should be id) +registration.processor.sourcepackets=id,evidence,optional +# The mandatory default source packet.(In default configuration this is thd id packet) +packet.default.source=id +# the default schema field cagegory (ex - private) +schema.default.fieldCategory=pvt + +registration.processor.notification_service_subscriber_hub_url=${mosipbox.public.url}/hub/ +registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 +registration.processor.notification_service_subscriber_topic=registration_processor_workflow_completed_event +registration.processor.notification_service_subscriber_callback_url=${mosipbox.public.url}/registrationprocessor/v1/notification/callback/notify + +mosip.regproc.message.tag.loading.disable=true \ No newline at end of file From 09add061cd3074e2a38f509ae2b9aea842cf0278 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Tue, 21 Dec 2021 19:06:30 +0530 Subject: [PATCH 0391/1358] removed the NAME.url property --- admin-default.properties | 1 - application-default.properties | 1 - id-authentication-default.properties | 1 - kernel-default.properties | 1 - partner-management-default.properties | 1 - pre-registration-default.properties | 1 - syncdata-default.properties | 1 - 7 files changed, 7 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 737196d08d2..cb04412372b 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -35,7 +35,6 @@ mosip.admin.request-id=ADMIN.REQUEST mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 diff --git a/application-default.properties b/application-default.properties index 7a3382ab3e4..f980eb00360 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,7 +14,6 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 51d58675b68..d9ce54e8337 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -22,7 +22,6 @@ mosip.ida.auth.clientId=mosip-ida-client mosip.ida.auth.secretKey=${mosip.secret.mosip-ida-client} mosip.ida.auth.appId=ida -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 diff --git a/kernel-default.properties b/kernel-default.properties index dacc49afdff..9e5862761b7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -33,7 +33,6 @@ mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774o mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 diff --git a/partner-management-default.properties b/partner-management-default.properties index dd24b25226a..241fd4ca587 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -16,7 +16,6 @@ mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 23ea7a0e1df..5a5487ac33b 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -56,7 +56,6 @@ mosip.adult.age=${mosip.kernel.applicant.type.age.limit} ## This version is set in the ID object created in pre-registration mosip.idschema.version=0.1 -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 diff --git a/syncdata-default.properties b/syncdata-default.properties index bc3e62bd016..29923a54c00 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -32,7 +32,6 @@ mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774o mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.NAME.url=http://NAME.default:80 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 From b0be71afdcf8fcdff27193a416acfe74c4308431 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 21 Dec 2021 19:52:12 +0530 Subject: [PATCH 0392/1358] added hazelcast files for default-dmz --- hazelcast-default-dmz.xml | 47 +++++++++++++++++++ ...t_cache.xml => hazelcast_cache-default.xml | 0 ...ssor-camel-routes-activate-default-dmz.xml | 37 +++++++++++++++ ...outes-biometric-correction-default-dmz.xml | 37 +++++++++++++++ ...or-camel-routes-deactivate-default-dmz.xml | 37 +++++++++++++++ ...rocessor-camel-routes-lost-default-dmz.xml | 37 +++++++++++++++ ...processor-camel-routes-new-default-dmz.xml | 37 +++++++++++++++ ...r-camel-routes-res-reprint-default-dmz.xml | 38 +++++++++++++++ ...or-camel-routes-res-update-default-dmz.xml | 37 +++++++++++++++ ...cessor-camel-routes-update-default-dmz.xml | 37 +++++++++++++++ 10 files changed, 344 insertions(+) create mode 100644 hazelcast-default-dmz.xml rename hazelcast_cache.xml => hazelcast_cache-default.xml (100%) create mode 100644 registration-processor-camel-routes-activate-default-dmz.xml create mode 100644 registration-processor-camel-routes-biometric-correction-default-dmz.xml create mode 100644 registration-processor-camel-routes-deactivate-default-dmz.xml create mode 100644 registration-processor-camel-routes-lost-default-dmz.xml create mode 100644 registration-processor-camel-routes-new-default-dmz.xml create mode 100644 registration-processor-camel-routes-res-reprint-default-dmz.xml create mode 100644 registration-processor-camel-routes-res-update-default-dmz.xml create mode 100644 registration-processor-camel-routes-update-default-dmz.xml diff --git a/hazelcast-default-dmz.xml b/hazelcast-default-dmz.xml new file mode 100644 index 00000000000..3ab6b64f7d0 --- /dev/null +++ b/hazelcast-default-dmz.xml @@ -0,0 +1,47 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- ~ Copyright 2017 Red Hat, Inc. ~ ~ Red Hat licenses this file to you + under the Apache License, version 2.0 ~ (the "License"); you may not use + this file except in compliance with the ~ License. You may obtain a copy + of the License at: ~ ~ http://www.apache.org/licenses/LICENSE-2.0 ~ ~ Unless + required by applicable law or agreed to in writing, software ~ distributed + under the License is distributed on an "AS IS" BASIS, WITHOUT ~ WARRANTIES + OR CONDITIONS OF ANY KIND, either express or implied. See the ~ License for + the specific language governing permissions and limitations ~ under the License. --> + +<hazelcast + xsi:schemaLocation="http://www.hazelcast.com/schema/config hazelcast-config-3.10.xsd" + xmlns="http://www.hazelcast.com/schema/config" + xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> + <properties> + <property name="hazelcast.discovery.enabled">true</property> + <property name="hazelcast.logging.type">slf4j</property> + </properties> +<group> + <name>k8s</name> + <password/> + </group> + <network> + <join> + <multicast enabled="false"/> + <tcp-ip enabled="true"> + <interface>127.0.0.1</interface> + </tcp-ip> + </join> + <interfaces enabled="true"> + <interface>127.0.0.1</interface> + </interfaces> +<!-- For vertx uncomment the below join section and comment the above join and interfaces section. --> +<!-- <join> + <multicast enabled="false"/> + <tcp-ip enabled="false" /> + <discovery-strategies> + <discovery-strategy enabled="true" + class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> + <properties> + <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> + </properties> + </discovery-strategy> + </discovery-strategies> + </join> --> + </network> +</hazelcast> diff --git a/hazelcast_cache.xml b/hazelcast_cache-default.xml similarity index 100% rename from hazelcast_cache.xml rename to hazelcast_cache-default.xml diff --git a/registration-processor-camel-routes-activate-default-dmz.xml b/registration-processor-camel-routes-activate-default-dmz.xml new file mode 100644 index 00000000000..71c3b1b90dc --- /dev/null +++ b/registration-processor-camel-routes-activate-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification activated route"> + <from uri="eventbus://packet-receiver-activated-bus-out" /> + <log message="packet-reciever-->securezone-notification activated-route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-biometric-correction-default-dmz.xml b/registration-processor-camel-routes-biometric-correction-default-dmz.xml new file mode 100644 index 00000000000..d23999be45e --- /dev/null +++ b/registration-processor-camel-routes-biometric-correction-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification biometric_correction route"> + <from uri="eventbus://packet-receiver-biometric_correction-bus-out" /> + <log message="packet-reciever-->securezone-notification biometric_correction ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-deactivate-default-dmz.xml b/registration-processor-camel-routes-deactivate-default-dmz.xml new file mode 100644 index 00000000000..9157eb14f19 --- /dev/null +++ b/registration-processor-camel-routes-deactivate-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification deactivated route"> + <from uri="eventbus://packet-receiver-deactivated-bus-out" /> + <log message="packet-reciever-->securezone-notification deactivated-route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-lost-default-dmz.xml b/registration-processor-camel-routes-lost-default-dmz.xml new file mode 100644 index 00000000000..55cbf750ce1 --- /dev/null +++ b/registration-processor-camel-routes-lost-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification lost Route --> + <route id="packet-reciever-->securezone-notification lost route"> + <from uri="eventbus://packet-receiver-lost-bus-out" /> + <log message="packet-reciever-->securezone-notification ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-new-default-dmz.xml b/registration-processor-camel-routes-new-default-dmz.xml new file mode 100644 index 00000000000..a633ab73b07 --- /dev/null +++ b/registration-processor-camel-routes-new-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification new route"> + <from uri="eventbus://packet-receiver-new-bus-out" /> + <log message="packet-reciever-->securezone-notification new ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-res-reprint-default-dmz.xml b/registration-processor-camel-routes-res-reprint-default-dmz.xml new file mode 100644 index 00000000000..d1aab074d9d --- /dev/null +++ b/registration-processor-camel-routes-res-reprint-default-dmz.xml @@ -0,0 +1,38 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification res_reprint route"> + <from uri="eventbus://packet-receiver-res_reprint-bus-out" /> + <log message="packet-reciever-->securezone-notification res_reprint ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + ` + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-res-update-default-dmz.xml b/registration-processor-camel-routes-res-update-default-dmz.xml new file mode 100644 index 00000000000..e6ddcb64b7e --- /dev/null +++ b/registration-processor-camel-routes-res-update-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification res_update route"> + <from uri="eventbus://packet-receiver-res_update-bus-out" /> + <log message="packet-reciever-->securezone-notification res_update ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-update-default-dmz.xml b/registration-processor-camel-routes-update-default-dmz.xml new file mode 100644 index 00000000000..5dab02e7839 --- /dev/null +++ b/registration-processor-camel-routes-update-default-dmz.xml @@ -0,0 +1,37 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <!-- Packet-Reciever to securezone-notification Route --> + <route id="packet-reciever-->securezone-notification update route"> + <from uri="eventbus://packet-receiver-update-bus-out" /> + <log message="packet-reciever-->securezone-notification update ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> +</routes> \ No newline at end of file From 26b02241cd4a5a4abe5b61782dbafc5eb3d7d88e Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 22 Dec 2021 11:59:04 +0530 Subject: [PATCH 0393/1358] updated config --- application-default.properties | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) diff --git a/application-default.properties b/application-default.properties index f980eb00360..75643cc64eb 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,6 +14,10 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 +mosip.api.internal.url=${mosipbox.public.url} + +db.dbuser.password={cipher}81mosip.db3bb0946f56f47cc36a605cf54459b3e6e871677f777ff6189c23a74cd734 + mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 @@ -85,6 +89,28 @@ mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.def mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.default:80 +mosip.packet-receiver-service.url=http://dmz.ingress:30080 +mosip.regproc-status-service.url=http://dmz.ingress:30080 + + +mosip.mosip.admin.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.mosip.regproc.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.mosip.auth.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.mosip.ida.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.mosip.reg.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +preregistration.mosip.prereg.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= +mosip.mosip.misp.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.partner.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.policymanager.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.partnermanager.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.resident.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.admin.services.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.crereq.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.creser.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.datsha.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.abis.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.creser.idpass.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.pms.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.masterdata.base.url = http://masterdata.kernel From b74b1823baa56279d87c9aca942c1b768f69d064 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Wed, 22 Dec 2021 12:30:09 +0530 Subject: [PATCH 0394/1358] removed the properties --- id-repository-default.properties | 18 ------ kernel-default.properties | 92 ---------------------------- pre-registration-default.properties | 92 ---------------------------- print-default.properties | 74 ----------------------- resident-default.properties | 20 ------- syncdata-default.properties | 93 ----------------------------- 6 files changed, 389 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 9961df7e51b..d035e5dab83 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -347,24 +347,6 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= ## Auth token generator auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey auth-token-generator.rest.appId=regproc diff --git a/kernel-default.properties b/kernel-default.properties index 9e5862761b7..4c29bc8b584 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -14,98 +14,6 @@ # email.smtp.username # email.smtp.secret -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - - ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel-syncdata-service.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 5a5487ac33b..5c434143078 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -17,25 +17,6 @@ javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.databa javax.persistence.jdbc.user=prereguser javax.persistence.jdbc.password=${db.dbuser.password} -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - ## Hibernate hibernate.hbm2ddl.auto=none hibernate.show_sql=false @@ -56,79 +37,6 @@ mosip.adult.age=${mosip.kernel.applicant.type.age.limit} ## This version is set in the ID object created in pre-registration mosip.idschema.version=0.1 -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - - ## Demographic Service demographic.service.version=v1 demographic.service.env=http://prereg-application.prereg diff --git a/print-default.properties b/print-default.properties index 969f15762ff..d456bc3fb5c 100644 --- a/print-default.properties +++ b/print-default.properties @@ -5,80 +5,6 @@ # keycloak.host # print.websub.hub.secret -mosip.NAME.url=http://NAME.default:80 -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - - ## Websub websub.base.url=http://websub.websub mosip.event.hubURL=${websub.base.url}/hub diff --git a/resident-default.properties b/resident-default.properties index f4abbb1108f..ddf1fcb509b 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -29,26 +29,6 @@ PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT DECRYPT_API_URL=http://keymanager.kernel/v1/keymanager/decrypt -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - ## Token generation token.request.id=io.mosip.resident resident.appid=resident diff --git a/syncdata-default.properties b/syncdata-default.properties index 29923a54c00..80fb6e8820f 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -12,99 +12,6 @@ # mosip.api.internal.host # softhsm.kernel.pin -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - - ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles From 706a8f8288509488a66d41634d89b4524be0495c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 22 Dec 2021 12:33:25 +0530 Subject: [PATCH 0395/1358] removed properties --- data-share-default.properties | 18 ------- id-authentication-default.properties | 73 ---------------------------- 2 files changed, 91 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index a3f940e0cdb..111b59de266 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -12,24 +12,6 @@ KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign PARTNER_POLICY=http://pms-policy.pms/v1/policymanager/policies/{policyId}/partner/{partnerId} KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= data.share.application.id=PARTNER mosip.data.share.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d9ce54e8337..6bbfca413b7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -22,79 +22,6 @@ mosip.ida.auth.clientId=mosip-ida-client mosip.ida.auth.secretKey=${mosip.secret.mosip-ida-client} mosip.ida.auth.appId=ida -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - - ## Database # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port From 0088459917ff6f25ec8c6c277f0881181fdacd80 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 22 Dec 2021 12:38:06 +0530 Subject: [PATCH 0396/1358] updated application.properties --- application-default.properties | 62 ++++++++++++++++------------------ 1 file changed, 29 insertions(+), 33 deletions(-) diff --git a/application-default.properties b/application-default.properties index 75643cc64eb..bc76252d402 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,7 +14,8 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.api.internal.url=${mosipbox.public.url} +mosip.api.internal.url=${mosip.api.internal.host} +mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}81mosip.db3bb0946f56f47cc36a605cf54459b3e6e871677f777ff6189c23a74cd734 @@ -91,7 +92,7 @@ mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.default:80 mosip.packet-receiver-service.url=http://dmz.ingress:30080 mosip.regproc-status-service.url=http://dmz.ingress:30080 - +mosip.websub.url=${mosip.api.external.url} mosip.mosip.admin.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= mosip.mosip.regproc.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= @@ -113,11 +114,11 @@ mosip.mosip.creser.idpass.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8 mosip.mosip.pms.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.masterdata.base.url = http://masterdata.kernel -mosip.syncdata.base.url=http://syncdata.kernel +#mosip.masterdata.base.url = http://masterdata.kernel +#mosip.syncdata.base.url=http://syncdata.kernel # masterdata field data url -mosip.idobjectvalidator.masterdata.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/possiblevalues/{subType} +mosip.idobjectvalidator.masterdata.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/possiblevalues/{subType} # Path to IDSchemaVersion. Path is defined as per JsonPath.compile. mosip.kernel.idobjectvalidator.identity.id-schema-version-path=identity.IDSchemaVersion # Path to dateOfBirth field. Path is defined as per JsonPath.compile. @@ -259,7 +260,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter -auth.server.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.issuer.uri=${keycloak.host}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.host}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip @@ -277,22 +278,18 @@ mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA mosip.kernel.keygenerator.symmetric-algorithm-name=AES mosip.kernel.keygenerator.asymmetric-key-length=2048 mosip.kernel.keygenerator.symmetric-key-length=256 -mosip.kernel.keygenerator.symmetric-algorithm-name=AES -mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA mosip.kernel.data-key-splitter=#KEY_SPLITTER# mosip.kernel.crypto.gcm-tag-length=128 mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 mosip.kernel.crypto.hash-symmetric-key-length=256 mosip.kernel.crypto.hash-iteration=100000 mosip.kernel.crypto.sign-algorithm-name=RS256 -mosip.keymanager.base.url=http://keymanager.keymanager -mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} -mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt -mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/auth/decrypt -mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign -mosip.kernel.keymanager.cert.url=${mosip.keymanager.base.url}/v1/keymanager/getCertificate -mosip.kernel.keymanager-service-CsSign-url=${mosip.keymanager.base.url}/v1/keymanager/cssign -mosip.kernel.keymanager.cert.url=${mosip.keymanager.base.url}/v1/keymanager/getCertificate +mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager-service-decrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/auth/decrypt +mosip.kernel.keymanager-service-sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/sign +mosip.kernel.keymanager.cert.url=${mosip.kernel-keymanager-service.url}/v1/keymanager/getCertificate +mosip.kernel.keymanager-service-CsSign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/cssign mosip.sign.applicationid=KERNEL mosip.sign.refid=SIGN mosip.kernel.cryptomanager.request_id=CRYPTOMANAGER.REQUEST @@ -355,7 +352,7 @@ logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO ## Admin mosip.min-digit-longitude-latitude=4 mosip.kernel.filtervalue.max_columns=20 -auth.server.admin.validate.url=http://authmanager.kernel/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken ## PDF generation. TODO: this password must be passed as config server env variable mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 @@ -390,11 +387,11 @@ management.endpoints.web.exposure.include=* management.endpoint.prometheus.enabled=true management.metrics.export.prometheus.enabled=true -mosip.kernel.syncdata-service-idschema-url=${mosip.masterdata.base.url}/v1/masterdata/idschema/latest -mosip.kernel.syncdata-service-dynamicfield-url=${mosip.masterdata.base.url}/v1/masterdata/dynamicfields -mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.syncdata.base.url}/v1/syncdata/tpm/publickey/ -mosip.kernel.keymanager-service-validate-url=${mosip.keymanager.base.url}/v1/keymanager/validate -mosip.kernel.keymanager-service-csverifysign-url=${mosip.keymanager.base.url}/v1/keymanager/csverifysign +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-dynamicfield-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/dynamicfields +mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ +mosip.kernel.keymanager-service-validate-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/validate +mosip.kernel.keymanager-service-csverifysign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/csverifysign ## GPS mosip.registration.gps_device_enable_flag=n @@ -437,11 +434,11 @@ object.store.swift.password=test object.store.swift.url=http://localhost:8080 packet.manager.account.name=packet-manager -CRYPTOMANAGER_DECRYPT=${mosip.keymanager.base.url}/v1/keymanager/decrypt -CRYPTOMANAGER_ENCRYPT=${mosip.keymanager.base.url}/v1/keymanager/encrypt -IDSCHEMAURL=${mosip.masterdata.base.url}/v1/masterdata/idschema/latest -KEYMANAGER_SIGN=${mosip.keymanager.base.url}/v1/keymanager/sign -AUDIT_URL=http://auditmanager.kernel/v1/auditmanager/audits +CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +IDSCHEMAURL=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest +KEYMANAGER_SIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/sign +AUDIT_URL=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits packet.default.source=id schema.default.fieldCategory=pvt,none @@ -466,9 +463,8 @@ server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t" server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve ## Websub (internal url) -websub.base.url=http://websub.websub -websub.hub.url=${websub.base.url}/hub/ -websub.publish.url=${websub.base.url}/hub/ +websub.hub.url=${mosip.websub.url}/hub/ +websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng,fra ## Leave blank if no optional langauges @@ -490,6 +486,6 @@ mosip.notification.timezone=GMT+05:30 # registration center type validation regex, used to restrict the special charecter mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34}[a-zA-Z0-9]$ -# Swagger -openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} -openapi.service.servers[0].description=For Swagger +## Swagger +#openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} +#openapi.service.servers[0].description=For Swagger From 80517277ebc76365aa79b44ddd3a1436bed29915 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 22 Dec 2021 13:04:12 +0530 Subject: [PATCH 0397/1358] updated admin properties --- admin-default.properties | 127 ++++++--------------------------------- 1 file changed, 17 insertions(+), 110 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index cb04412372b..0fff3054455 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -7,110 +7,17 @@ # mosip.mosip.regproc.client.secret # mosip.api.internal.host -mosip.secret.mosip-admin-client={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - -mosip.api.internal.url=https://${mosip.api.internal.host} mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres -mosip.kernel.database.port=5432 - -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - +mosip.kernel.database.hostname=postgres +mosip.kernel.database.port=80 ## Account management authmanager.base.url=${mosip.kernel-auth-service.url}/v1/authmanager -mosip.admin.accountmgmt.auth-manager-base-uri=${authmanager.base.url} +mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager mosip.admin.accountmgmt.user-name-url=/username/ mosip.admin.accountmgmt.user-detail-url=/userdetail/ mosip.admin.accountmgmt.unblock-url=/unblock/ @@ -119,8 +26,8 @@ mosip.admin.accountmgmt.reset-password-url=/resetpassword/ mosip.admin.app-id=admin mosip.kernel.signature.cryptomanager-encrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/private/encrypt -auth.server.validate.url=${authmanager.base.url}/authorize/admin/validateToken -auth.server.refreshToken.url=${authmanager.base.url}/authorize/admin/refreshToken +auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.refreshToken.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/refreshToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client auth.role.prefix=ROLE_ auth.header.name=Authorization @@ -142,10 +49,10 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false ## Use registration -auth.server.user-register-url=${authmanager.base.url}/user +auth.server.user-register-url=${mosip.kernel-auth-service.url}/v1/authmanager/user mosip.kernel.emailnotifier-url=${mosip.kernel-notification-service.url}/v1/notifier/email/send -auth.server.sendotp-url=${authmanager.base.url}/authenticate/sendotp -auth.server.user-add-password-url=${authmanager.base.url}/user/addpassword +auth.server.sendotp-url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/sendotp +auth.server.user-add-password-url=${mosip.kernel-auth-service.url}/v1/authmanager/user/addpassword mosip.admin-appid=admin mosip.admin-otp-context=auth-otp mosip.admin-userid-otp-type=USERID @@ -159,7 +66,7 @@ mosip.admin.security.policy.type1=password mosip.admin.security.policy.type2=password,otp mosip.admin.security.policy.type3=otp mosip.admin.security.policy.role-policy-mapping={ZONAL_ADMIN:'type2',ZONAL_APPROVER:'type1',CENTRAL_ADMIN:'type1',CENTRAL_APPROVER:'type1',REGISTRATION_OFFICER:'type1',REGISTRATION_SUPERVISOR:'type1',REGISTRATION_OPERATOR:'type1'} -mosip.admin.security.policy.userrole-auth-url=${authmanager.base.url}/role/{appId}/{username} +mosip.admin.security.policy.userrole-auth-url=${mosip.kernel-auth-service.url}/v1/authmanager/role/{appId}/{username} ## Masterdata cards @@ -259,7 +166,7 @@ mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u ## UIN activate/deactivate mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} mosip.kernel.packet-status-update-url=${mosip.regproc-registration-transaction-service.url}/v1/registrationtransaction/search -mosip.kernel.packet-reciever-api-url=http://packet-receiver.regproc/registrationprocessor/v1/packetreceiver/registrationpackets +mosip.kernel.packet-reciever-api-url=${mosip.packet-receiver-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets mosip.kernel.zone-validation-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 mosip.kernel.audit.manager.api=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits @@ -268,7 +175,7 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/au # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined mosip.open-id.base-url=${keycloak.host} -mosip.admin-services.audit.manager.api=${mosip.admin-service.url}/v1/auditmanager/audits +mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client @@ -276,7 +183,7 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} #tempuri=https://admin.v3box1.mosip.net #mosip.admin-services.redirecturi=${tempuri}/v1/admin/login-redirect/ -mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ +mosip.admin-services.redirecturi=${mosip.api.external.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth @@ -294,7 +201,7 @@ mosip.security.secure-cookie=false # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client -mosip.iam.module.clientsecret=${mosip.secret.mosip-admin-client} +mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls @@ -306,20 +213,20 @@ mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-conn regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client -regproc.token.request.secretKey=${mosip.secret.mosip-regproc-client} +regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 -KEYBASEDTOKENAPI=${authmanager.base.url}/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey # IAM adapter mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.secret.mosip-admin-client} +mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} # LostRid mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.lostrid.version=1.0 -LOST_RID_API=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/lostridsearch +LOST_RID_API=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/lostridsearch logging.level.org.springframework.web.client.RestTemplate=DEBUG # Roles From 10134b4cc941ea53bc73dd40e67b9ae7b7b2a339 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 22 Dec 2021 13:32:05 +0530 Subject: [PATCH 0398/1358] updated properties --- application-default.properties | 1 + data-share-default.properties | 2 +- hotlist-default.properties | 12 +++++----- id-repository-default.properties | 41 ++++++++++++++++---------------- 4 files changed, 28 insertions(+), 28 deletions(-) diff --git a/application-default.properties b/application-default.properties index bc76252d402..2e69b355ece 100644 --- a/application-default.properties +++ b/application-default.properties @@ -35,6 +35,7 @@ mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-g mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 +mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.default:80 mosip.kafka.url=http://kafka.default:80 mosip.kafka-headless.url=http://kafka-headless.default:80 mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 diff --git a/data-share-default.properties b/data-share-default.properties index 111b59de266..244a9978446 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -7,7 +7,7 @@ mosip.data.share.service.id=mosip.data.share mosip.data.share.service.version=1.0 -CRYPTOMANAGER_ENCRYPT=http://keymanager.kernel/v1/keymanager/encrypt +CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign PARTNER_POLICY=http://pms-policy.pms/v1/policymanager/policies/{policyId}/partner/{partnerId} KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey diff --git a/hotlist-default.properties b/hotlist-default.properties index 935ba93f93c..d64a5cf7cdc 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -5,8 +5,8 @@ spring.application.name=HOTLIST ## DB -mosip.hotlist.db.url=postgres-postgresql.postgres -mosip.hotlist.db.port=5432 +mosip.hotlist.db.url=postgres +mosip.hotlist.db.port=80 mosip.hotlist.db.db-name=mosip_hotlist mosip.hotlist.db.username=hotlistuser mosip.hotlist.db.password=${db.dbuser.password} @@ -37,21 +37,21 @@ mosip.hotlist.cleanup-schedule.init-delay=24 mosip.hotlist.cleanup-schedule.fixed-rate=24 ## REST services -mosip.idrepo.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits +mosip.idrepo.audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST mosip.idrepo.audit.rest.headers.mediaType=application/json -mosip.hotlist.encryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/encrypt +mosip.hotlist.encryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt mosip.hotlist.encryptor.rest.httpMethod=POST mosip.hotlist.encryptor.rest.headers.mediaType=application/json mosip.hotlist.encryptor.rest.timeout=100 -mosip.hotlist.decryptor.rest.uri=http://keymanager.keymanager/v1/keymanager/decrypt +mosip.hotlist.decryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt mosip.hotlist.decryptor.rest.httpMethod=POST mosip.hotlist.decryptor.rest.headers.mediaType=application/json mosip.hotlist.decryptor.rest.timeout=100 -mosip.hotlist.audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits +mosip.hotlist.audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.hotlist.audit.rest.httpMethod=POST mosip.hotlist.audit.rest.headers.mediaType=application/json diff --git a/id-repository-default.properties b/id-repository-default.properties index d035e5dab83..b9b7b22435b 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -14,8 +14,8 @@ management.endpoint.restart.enabled=true # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.idrepo.db.url=postgres-postgresql.postgres -mosip.idrepo.db.port=5432 +mosip.idrepo.db.url=postgres +mosip.idrepo.db.port=80 mosip.idrepo.db.identity.db-name=mosip_idrepo mosip.idrepo.db.identity.username=idrepouser mosip.idrepo.db.identity.password=${db.dbuser.password} @@ -131,36 +131,36 @@ mosip.idrepo.decryptor.rest.httpMethod=POST mosip.idrepo.decryptor.rest.headers.mediaType=application/json mosip.idrepo.decryptor.rest.timeout=100 -mosip.idrepo.vid-service.rest.uri=http://vid.idrepo/idrepository/v1/vid/uin/{uin} +mosip.idrepo.vid-service.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/uin/{uin} mosip.idrepo.vid-service.rest.httpMethod=GET mosip.idrepo.vid-service.rest.headers.mediaType=application/json mosip.idrepo.vid-service.rest.timeout=100 -mosip.idrepo.retrieve-uin-by-vid.rest.uri=http://vid.idrepo/idrepository/v1/vid/{vid} +mosip.idrepo.retrieve-uin-by-vid.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/{vid} mosip.idrepo.retrieve-uin-by-vid.rest.httpMethod=GET mosip.idrepo.retrieve-uin-by-vid.rest.headers.mediaType=application/json mosip.idrepo.retrieve-uin-by-vid.rest.timeout=100 -mosip.idrepo.bio-extractor-service.rest.uri=http://bioextractor.idrepo/v1/bioextractor/{extractionFormat}/extracttemplates +mosip.idrepo.bio-extractor-service.rest.uri=${mosip.idrepo-bioextractor-service.url}/v1/bioextractor/{extractionFormat}/extracttemplates mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json mosip.idrepo.bio-extractor-service.rest.timeout=100 -mosip.idrepo.syncdata-service.rest.uri=http://masterdata.kernel/v1/masterdata/idschema/latest +mosip.idrepo.syncdata-service.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest mosip.idrepo.syncdata-service.rest.httpMethod=GET mosip.idrepo.syncdata-service.rest.headers.mediaType=application/json mosip.idrepo.syncdata-service.rest.timeout=100 -mosip.idrepo.pmp.partner.rest.uri=http://pms-partner.pms/v1/partnermanager/partners?partnerType=Online_Verification_Partner +mosip.idrepo.pmp.partner.rest.uri=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners?partnerType=Online_Verification_Partner mosip.idrepo.pmp.partner.rest.httpMethod=GET mosip.idrepo.pmp.partner.rest.headers.mediaType=application/json mosip.idrepo.pmp.partner.rest.timeout=100 -mosip.idrepo.credential.request.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator +mosip.idrepo.credential.request.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/requestgenerator mosip.idrepo.credential.request.rest.httpMethod=POST mosip.idrepo.credential.request.rest.headers.mediaType=application/json mosip.idrepo.credential.request.rest.timeout=100 -mosip.idrepo.credential.cancel-request.rest.uri=http://credentialrequest.idrepo/v1/credentialrequest/cancel/{requestId} +mosip.idrepo.credential.cancel-request.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/cancel/{requestId} mosip.idrepo.credential.cancel-request.rest.httpMethod=GET mosip.idrepo.credential.cancel-request.rest.headers.mediaType=application/json mosip.idrepo.credential.cancel-request.rest.timeout=100 @@ -174,18 +174,18 @@ mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 # the credential request with below partner id to issue credential to new IDA partners. idrepo-dummy-online-verification-partner-id=MOVP -mosip.idrepo.retrieve-by-uin.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{uin} +mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json mosip.idrepo.retrieve-by-uin.rest.timeout=100 -mosip.idrepo.vid-generator.rest.uri=http://idgenerator.kernel/v1/idgenerator/vid +mosip.idrepo.vid-generator.rest.uri=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/vid mosip.idrepo.vid-generator.rest.httpMethod=GET mosip.idrepo.vid-generator.rest.headers.mediaType=application/json mosip.idrepo.vid-generator.rest.timeout=100 ## Websub -mosip.idrepo.websub.vid-credential-update.callback-url=http://identity.idrepo/idrepository/v1/identity/callback/vid_credential_status_update +mosip.idrepo.websub.vid-credential-update.callback-url=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/callback/vid_credential_status_update mosip.idrepo.websub.vid-credential-update.topic=VID_CRED_STATUS_UPDATE mosip.idrepo.websub.vid-credential-update.secret= ${idrepo.websub.vid.credential.update.secret} mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE @@ -194,19 +194,19 @@ mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE mosip.iam.adapter.clientid.id-repository=mosip-regproc-client mosip.iam.adapter.clientsecret.id-repository=${mosip.secret.mosip-reg-client} mosip.iam.adapter.appid.id-repository=regproc -mosip.authmanager.client-token-endpoint=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey -mosip.idrepo.uin-generator.rest.uri=http://idgenerator.kernel/v1/idgenerator/uin +mosip.idrepo.uin-generator.rest.uri=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/uin mosip.idrepo.uin-generator.rest.httpMethod=GET mosip.idrepo.uin-generator.rest.headers.mediaType=application/json mosip.idrepo.uin-generator.rest.timeout=100 -mosip.idrepo.draft-vid.rest.uri=http://vid.idrepo/idrepository/v1/draft/vid +mosip.idrepo.draft-vid.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/draft/vid mosip.idrepo.draft-vid.rest.httpMethod=POST mosip.idrepo.draft-vid.rest.headers.mediaType=application/json mosip.idrepo.draft-vid.rest.timeout=100 -mosip.idrepo.update-vid.rest.uri=http://vid.idrepo/idrepository/v1/vid/{vid} +mosip.idrepo.update-vid.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/{vid} mosip.idrepo.update-vid.rest.httpMethod=PATCH mosip.idrepo.update-vid.rest.headers.mediaType=application/json mosip.idrepo.update-vid.rest.timeout=100 @@ -297,7 +297,7 @@ mosip.credential.service.share.prependThumbprint=false mosip.credential.service.retry.maxAttempts=3 mosip.credential.service.retry.maxDelay=100 -IDREPOGETIDBYID=http://identity.idrepo/idrepository/v1/identity/idvid +IDREPOGETIDBYID=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http mosip.data.share.internal.domain.name=datashare.datashare CREATEDATASHARE=/v1/datashare/create @@ -305,13 +305,12 @@ KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/cl KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign KEYMANAGER_ENCRYPT_PIN=${mosip.kernel-keymanager-service.url}/v1/keymanager/encryptWithPin KEYMANAGER_ENCRYPT_ZK=${mosip.kernel-keymanager-service.url}/v1/keymanager/zkEncrypt -PARTNER_POLICY=${mosip.pms-partner-manager-service.url=http}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -PARTNER_EXTRACTION_POLICY=${mosip.pms-partner-manager-service.url=http}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} +PARTNER_POLICY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +PARTNER_EXTRACTION_POLICY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} credential.service.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip # BioSDK service -mosip.biosdk.default.host=http://biosdk-service.biosdk -mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock-biosdk-service.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 From 65f948391513c64e1e9734d997fe8f2c17baf59e Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 22 Dec 2021 13:46:40 +0530 Subject: [PATCH 0399/1358] updated properties --- application-default.properties | 2 +- mock-abis-default.properties | 2 +- partner-management-default.properties | 128 ++++---------------------- 3 files changed, 19 insertions(+), 113 deletions(-) diff --git a/application-default.properties b/application-default.properties index 2e69b355ece..2caefdce807 100644 --- a/application-default.properties +++ b/application-default.properties @@ -113,7 +113,7 @@ mosip.mosip.datsha.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc577 mosip.mosip.abis.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.mosip.creser.idpass.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.mosip.pms.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= - +keycloak.admin.password={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= #mosip.masterdata.base.url = http://masterdata.kernel #mosip.syncdata.base.url=http://syncdata.kernel diff --git a/mock-abis-default.properties b/mock-abis-default.properties index e2103da97c3..d087a4f593c 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -8,7 +8,7 @@ management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 abis.return.duplicate=false -secret_url=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +secret_url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string secret_url.secretKey=${mosip.mosip.regproc.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 241fd4ca587..d5184dcf679 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -11,93 +11,21 @@ ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace ## If database is external to production, provide the DNS or ip of the host and port -mosip.pmp.database.hostname=postgres-postgresql.postgres -mosip.pmp.database.port=5432 +mosip.pmp.database.hostname=postgres +mosip.pmp.database.port=80 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} -mosip.activemq.url=http://activemq.default:80 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 -mosip.keycloak.url=http://keycloak.default:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 - ## Auth device -mosip.authdevice.database.hostname=postgres-postgresql.postgres -mosip.authdevice.database.port=5432 +mosip.authdevice.database.hostname=postgres +mosip.authdevice.database.port=80 mosip.authdevice.database.user=authdeviceuser mosip.authdevice.database.password=${db.dbuser.password} ## Reg device -mosip.regdevice.database.hostname=postgres-postgresql.postgres -mosip.regdevice.database.port=5432 +mosip.regdevice.database.hostname=postgres +mosip.regdevice.database.port=80 mosip.regdevice.database.user=regdeviceuser mosip.regdevice.database.password=${db.dbuser.password} @@ -174,49 +102,27 @@ pmp.partner.mobileNumbe.max.length=16 masterdata.registerdevice.timestamp.validate=+5 ## Keymanager -keymanager.base.url=http://keymanager.keymanager -mosip.kernel.sign-url=${keymanager.base.url}/v1/keymanager/jwtSign - +mosip.kernel.sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign ## Kernel services -mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits - -mosip.secret.mosip-admin-client=7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.secret.mosip-auth-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-prereg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-regproc-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-ida-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-reg-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-misp-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partner-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-policymanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-partnermanager-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-resident-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-admin-services-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-crereq-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-datsha-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-abis-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-creser-idpass-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.secret.mosip-pms-client=vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits # ApplicationId for partner mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services mosip.pmp.auth.clientId=mosip-partner-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.secret.mosip-partnermanager-client} +mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey -pmp.ca.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadCACertificate -pmp.partner.certificaticate.upload.rest.uri=${keymanager.base.url}/v1/keymanager/uploadPartnerCertificate -pmp.partner.certificaticate.get.rest.uri=${keymanager.base.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} -pmp-keymanager.upload.other.domain.cert.rest.uri=${keymanager.base.url}/v1/keymanager/uploadOtherDomainCertificate +pmp.ca.certificaticate.upload.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadCACertificate +pmp.partner.certificaticate.upload.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadPartnerCertificate +pmp.partner.certificaticate.get.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} +pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadOtherDomainCertificate #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} -mosip.iam.adapter.clientsecret=${mosip.secret.mosip-partnermanager-client} +mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub @@ -286,8 +192,8 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret=${mosip.secret.mosip-partnermanager-client} -mosip.iam.module.redirecturi=https://${mosip.api.public.host}/v1/partnermanager/login-redirect/ +mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} +mosip.iam.module.redirecturi=${mosip.api.external.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth @@ -297,7 +203,7 @@ mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-conn ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy -mosip.kernel.device.search-url=http://masterdata.kernel/v1/masterdata/devices/search +mosip.kernel.device.search-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/devices/search token.request.appid=admin token.request.password=mosip token.request.username=110005 From 5a7f541e5a59329e67090c6eb83b50f392746605 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 22 Dec 2021 14:03:02 +0530 Subject: [PATCH 0400/1358] updated config --- application-default.properties | 1 + data-share-default.properties | 10 ++++----- id-authentication-default.properties | 28 ++++++++++++------------ kernel-default.properties | 4 ++-- pre-registration-default.properties | 32 ++++++++++++++-------------- print-default.properties | 8 +++---- syncdata-default.properties | 14 ++++++------ 7 files changed, 49 insertions(+), 48 deletions(-) diff --git a/application-default.properties b/application-default.properties index bc76252d402..013e026a269 100644 --- a/application-default.properties +++ b/application-default.properties @@ -49,6 +49,7 @@ mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.kernel.syncdata.syncjob.url=http://kernel-syncjob-service:8099 mosip.keycloak.url=http://keycloak.default:80 mosip.kubernetes.url=http://kubernetes.default:80 mosip.minio.url=http://minio.default:80 diff --git a/data-share-default.properties b/data-share-default.properties index 111b59de266..ab66f769ff4 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -7,10 +7,10 @@ mosip.data.share.service.id=mosip.data.share mosip.data.share.service.version=1.0 -CRYPTOMANAGER_ENCRYPT=http://keymanager.kernel/v1/keymanager/encrypt -KEYMANAGER_JWTSIGN=http://keymanager.keymanager/v1/keymanager/jwtSign -PARTNER_POLICY=http://pms-policy.pms/v1/policymanager/policies/{policyId}/partner/{partnerId} -KEYBASEDTOKENAPI=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign +PARTNER_POLICY=${mosip.pms-policy-manager-service.url}/v1/policymanager/policies/{policyId}/partner/{partnerId} +KEYBASEDTOKENAPI=${mosip.kernel-auditmanager-service.url}/v1/authmanager/authenticate/clientidsecretkey data.share.application.id=PARTNER @@ -19,7 +19,7 @@ mosip.data.share.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.data.share.urlshortner=false data.share.token.request.appid=datsha data.share.token.request.clientId=mosip-datsha-client -data.share.token.request.secretKey=${mosip.secret.mosip-datsha-client} +data.share.token.request.secretKey=${mosip.mosip.datsha.client.secret} data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 6bbfca413b7..641ab9844f2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -19,7 +19,7 @@ mosip.api.internal.url=https://${mosip.api.internal.host} ## Client mosip.ida.auth.clientId=mosip-ida-client -mosip.ida.auth.secretKey=${mosip.secret.mosip-ida-client} +mosip.ida.auth.secretKey=${mosip.mosip.ida.client.secret} mosip.ida.auth.appId=ida ## Database @@ -108,7 +108,7 @@ mosip.date-of-birth.pattern=yyyy/MM/dd ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace -mosip.biosdk.default.service.url=http://biosdk-service.biosdk/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock-biosdk-service.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -132,49 +132,49 @@ mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.version=0.9 mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} ## Kernel-Audit -audit.rest.uri=http://auditmanager.kernel/v1/auditmanager/audits +audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits audit.rest.httpMethod=POST audit.rest.headers.mediaType=${mosip.ida.request.mediaType} audit.rest.timeout=${mosip.ida.request.timeout.secs} ## Kernel OTP Validator -otp-validate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/validate +otp-validate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate otp-validate.rest.httpMethod=GET otp-validate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-validate.rest.timeout=${mosip.ida.request.timeout.secs} ## Kernel OTP Generator -otp-generate.rest.uri=http://otpmanager.kernel/v1/otpmanager/otp/generate +otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate otp-generate.rest.httpMethod=POST otp-generate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-generate.rest.timeout=${mosip.ida.request.timeout.secs} ## Mail Notification -mail-notification.rest.uri=http://notifier.kernel/v1/notifier/email/send +mail-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/email/send mail-notification.rest.httpMethod=POST mail-notification.rest.headers.mediaType=multipart/form-data mail-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## SMS Notification -sms-notification.rest.uri=http://notifier.kernel/v1/notifier/sms/send +sms-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/sms/send sms-notification.rest.httpMethod=POST sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{rid}?type={type} +rid-uin.rest.uri=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=http://identity.idrepo/idrepository/v1/identity/idvid/{rid} +rid-uin-auth.rest.uri=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} ## Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination -id-pmp-service.rest.uri=http://pms-partner.pms/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} +id-pmp-service.rest.uri=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET id-pmp-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-pmp-service.rest.timeout=${mosip.ida.request.timeout.secs} @@ -199,7 +199,7 @@ id-masterdata-template-service.rest.headers.mediaType=${mosip.ida.request.mediaT id-masterdata-template-service.rest.timeout=${mosip.ida.request.timeout.secs} ## Master Data - Template Multi language -id-masterdata-template-service-multilang.rest.uri=http://masterdata.kernel/v1/masterdata/templates/templatetypecodes/{code} +id-masterdata-template-service-multilang.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/templatetypecodes/{code} id-masterdata-template-service-multilang.rest.httpMethod=GET id-masterdata-template-service-multilang.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service-multilang.rest.timeout=${mosip.ida.request.timeout.secs} @@ -212,9 +212,9 @@ ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} -ida-websub-auth-type-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/authTypeCallback/{partnerId} +ida-websub-auth-type-callback-url=${mosip.ida-internal-service.url}/idauthentication/v1/internal/callback/authTypeCallback/{partnerId} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-credential-issue-callback-url=http://ida-internal.ida/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} +ida-websub-credential-issue-callback-url=${mosip.ida-internal-service.url}/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} @@ -464,7 +464,7 @@ mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} mosip.iam.adapter.clientsecret=${mosip.ida.auth.secretKey} mosip.iam.adapter.appid=${mosip.ida.auth.appId} -mosip.authmanager.client-token-endpoint=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey ## IDA key generator keymanager.persistence.jdbc.driver=org.postgresql.Driver diff --git a/kernel-default.properties b/kernel-default.properties index 4c29bc8b584..ea79aa74f02 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -24,7 +24,7 @@ mosip.kernel.syncdata.syncdata-version-id=v1.0 mosip.kernel.syncdata.registration-center-config-file=registration-${spring.profiles.active}.properties # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties -mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef +mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest ## SMS notification @@ -443,7 +443,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 #openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's -zone.user.details.url=http://authmanager.kernel/v1/authmanager/userdetails +zone.user.details.url=${mosip.kernel-auth-service.url}/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 5c434143078..f17905520fe 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -39,7 +39,7 @@ mosip.idschema.version=0.1 ## Demographic Service demographic.service.version=v1 -demographic.service.env=http://prereg-application.prereg +demographic.service.env=${mosip.prereg-application-service.url} demographic.service.contextpath=preregistration/${demographic.service.version} demographic.resource.url=${demographic.service.env}/${demographic.service.contextpath} # ID values for application APIs @@ -61,7 +61,7 @@ mosip.id.preregistration.demographic.retrieve.date=mosip.pre-registration.demogr ## Document Service document.service.version=v1 -document.service.env=http://prereg-application.prereg +document.service.env=${mosip.prereg-application-service.url} document.service.contextpath=preregistration/${document.service.version} document.resource.url=${document.service.env}/${document.service.contextpath} @@ -91,7 +91,7 @@ mosip.kernel.objectstore.account-name=prereg ## Booking Service booking.service.version=v1 -booking.service.env=http://prereg-booking.prereg +booking.service.env=${mosip.prereg-booking-service.url} booking.service.contextpath=preregistration/${booking.service.version} booking.resource.url=${booking.service.env}/${booking.service.contextpath} appointmentResourse.url=${booking.resource.url} @@ -130,7 +130,7 @@ preregistration.country.specific.zoneId=GMT+05:30 ## Batch job service batch.service.version=v1 -batch.service.env=http://prereg-batchjob.prereg +batch.service.env=${mosip.prereg-batchjob-service.url} batch.service.contextpath=preregistration/${batch.service.version}/batch batch.resource.url=${batch.service.env}/${batch.service.contextpath} ## Id values of batch job service @@ -183,10 +183,10 @@ id-masterdata-template-service-multilang.rest.uri=${mosip.kernel-masterdata-serv ## Masterdata service ## Base url is only used for masterdata. We give the in-cluster url here -mosip.base.url=http://masterdata.kernel +mosip.base.url=${mosip.kernel-masterdata-service.url} masterdata.service.version=v1 -masterdata.service.env=http://masterdata.kernel +masterdata.service.env=${mosip.kernel-masterdata-service.url} masterdata.service.contextpath=masterdata masterdata.resource.url=${masterdata.service.env}/${masterdata.service.version}/${masterdata.service.contextpath} regCenter.url=${masterdata.resource.url}/registrationcenters @@ -206,7 +206,7 @@ cancel.appoinment.template=cancel-appointment ## Notification service notification.service.version=v1 -notification.service.env=http://prereg-application.prereg +notification.service.env=${mosip.prereg-application-service.url} notification.service.contextpath=preregistration/${notification.service.version} notification.url=${notification.service.env}/${notification.service.version}/${notification.service.contextpath}/notification mosip.pre-registration.notification.id.send=mosip.pre-registration.notification.notify @@ -214,24 +214,24 @@ mosip.pre-registration.notification.id.send=mosip.pre-registration.notification. timeZone=Asia/Calcutta ## Email service -email.service.env=http://notifier.kernel +email.service.env=${mosip.kernel-notification-service.url} email.service.contextpath=notifier #Kernel Service URL for Sending Emails emailResourse.url=${email.service.env}/${masterdata.service.version}/${email.service.contextpath}/email/send ## SMS service -sms.service.env=http://notifier.kernel +sms.service.env=${mosip.kernel-notification-service.url} sms.service.contextpath=notifier #Kernel service URL for sending SMS smsResourse.url=${sms.service.env}/${masterdata.service.version}/${sms.service.contextpath}/sms/send ## Audit service -audit.service.env=http://auditmanager.kernel +audit.service.env=${mosip.kernel-auditmanager-service.url} audit.service.contextpath=auditmanager audit.url=${audit.service.env}/${masterdata.service.version}/${audit.service.contextpath}/audits ## Crypto service -crypto.service.env=http://keymanager.keymanager +crypto.service.env=${mosip.kernel-keymanager-service.url} crypto.service.contextpath=keymanager ## Kernel Service URL for Encryption and decryption cryptoResource.url=${crypto.service.env}/${masterdata.service.version}/${crypto.service.contextpath} @@ -242,27 +242,27 @@ preregistration.crypto.PrependThumbprint=false ## KeyCloak ## Both below fields must match with what is there on Keycloak properties clientId=mosip-prereg-client -secretKey=${mosip.secret.mosip-prereg-client} +secretKey=${preregistration.mosip.prereg.client.secret} ## Used for Key Creating KeyCloak session userIdType=USERID appId=prereg ## Auth service -kernel.auth.env=http://authmanager.kernel +kernel.auth.env=${mosip.kernel-auditmanager-service.url} kernel.auth.contextpath=authmanager auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## PRID service -kernel.prid.env=http://pridgenerator.kernel +kernel.prid.env=${mosip.kernel-pridgenerator-service.url} kernel.prid.contextpath=pridgenerator mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid.contextpath}/prid ## Syncdata service latestidschema.service.contextpath=latestidschemafetch the latest ID Schema for the ID object validator mosip.preregistration.id-schema=${mosip.kernel-syncdata-service.url}/v1/syncdata/latestidschema -syncdata.resource.url=http://syncdata.kernel/v1/syncdata +syncdata.resource.url=${mosip.kernel-syncdata-service.url}/v1/syncdata ## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} @@ -392,7 +392,7 @@ mosip.preregistration.captcha.enable=true mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} -mosip.preregistration.captcha.resourse.url=http://prereg-captcha.prereg/preregistration/v1/captcha/validatecaptcha +mosip.preregistration.captcha.resourse.url=${mosip.prereg-captcha-service.url}/preregistration/v1/captcha/validatecaptcha mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify ## Security diff --git a/print-default.properties b/print-default.properties index d456bc3fb5c..ed90d5d165d 100644 --- a/print-default.properties +++ b/print-default.properties @@ -6,7 +6,7 @@ # print.websub.hub.secret ## Websub -websub.base.url=http://websub.websub +websub.base.url=${mosip.websub.url} mosip.event.hubURL=${websub.base.url}/hub mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident @@ -34,11 +34,11 @@ AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits mosip.kernel.pdf_owner_password=123456 ## Auth service -authmanager.base.url=http://authmanager.kernel +authmanager.base.url=${mosip.kernel-auth-service.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey ## Master data services -MASTER=http://masterdata.kernel/v1/masterdata +MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata TEMPLATES=${MASTER}/templates mosip.print.audit.id=mosip.applicanttype.getApplicantType @@ -46,7 +46,7 @@ mosip.print.application.version=1.0 mosip.print.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' ## Encrypt services -PDFSIGN=http://keymanager.keymanager/v1/keymanager/pdf/sign +PDFSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/pdf/sign mosip.print.service.id=mosip.print diff --git a/syncdata-default.properties b/syncdata-default.properties index 80fb6e8820f..3d601247ef7 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -22,8 +22,8 @@ mosip.kernel.syncdata.syncdata-version-id=v1.0 mosip.kernel.syncdata.registration-center-config-file=registration-${spring.profiles.active}.properties # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties -mosip.kernel.syncdata.syncjob-base-url=http://kernel-syncjob-service:8099/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=http://masterdata.kernel/v1/masterdata/idschema/latest +mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest mosip.kernel.masterdata.locationhierarchylevels.uri =${mosip.kernel-masterdata-service.url}/v1/masterdata/locationHierarchyLevels ## SMS notification @@ -86,11 +86,11 @@ idrepo.api.getuindetails=${mosip.idrepo-identity-service.url}/v1/identity/uin/{u mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key=${mosip.secret.mosip-auth-client} +mosip.kernel.auth.secret.key=${mosip.mosip.auth.client.secret} mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key=${mosip.secret.mosip-ida-client} +mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} ## Token id salts mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf @@ -265,7 +265,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=http://authmanager.kernel/v1/authmanager +mosip.authmanager.base-url=${mosip.kernel-auditmanager-service.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -286,7 +286,7 @@ masterdata.registerdevice.timestamp.validate=+10 ## Prereg mosip.kernel.prereg.realm-id=preregistration mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key=${mosip.secret.mosip-prereg-client} +mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron @@ -375,7 +375,7 @@ mosip.syncdata.tpm.required=false mosip.kernel.registrationclient.app.id=registrationclient mosip.kernel.registrationclient.client.id=mosip-reg-client # env variable -mosip.kernel.registrationclient.secret.key=${mosip.secret.mosip-reg-client} +mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/useridPwd From fdb9e2288a9998625fa93a2b81acd82a123e6792 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 22 Dec 2021 14:03:04 +0530 Subject: [PATCH 0401/1358] updated properties --- application-default.properties | 3 ++ registration-default.properties | 2 +- resident-default.properties | 66 ++++++++++++++++----------------- 3 files changed, 37 insertions(+), 34 deletions(-) diff --git a/application-default.properties b/application-default.properties index 2caefdce807..a8bf4292d01 100644 --- a/application-default.properties +++ b/application-default.properties @@ -73,6 +73,8 @@ mosip.regproc-registration-transaction-service.url=http://regproc-registration-t mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 +mosip.regproc-print-service.url=http://regproc-print-service.default:80 +mosip.regproc-group1-service.url=http://regproc-group1.default.80 mosip.resident-service.url=http://resident-service.default:80 mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 mosip.softhsm-ida.url=http://softhsm-ida.default:80 @@ -95,6 +97,7 @@ mosip.packet-receiver-service.url=http://dmz.ingress:30080 mosip.regproc-status-service.url=http://dmz.ingress:30080 mosip.websub.url=${mosip.api.external.url} + mosip.mosip.admin.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= mosip.mosip.regproc.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= mosip.mosip.auth.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= diff --git a/registration-default.properties b/registration-default.properties index 49999b8c94f..9a3a5146f06 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -361,7 +361,7 @@ mosip.registration.quality_check_with_sdk=N mosip.registration.replace_sdk_quality_score=N #URL for reset password -mosip.registration.reset_password_url=https://dev.mosip.net/keycloak/auth/realms/mosip/account/ +mosip.registration.reset_password_url=${mosip.api.external.url}/keycloak/auth/realms/mosip/account/ #Flag to check / bypass device cert validation mosip.registration.onboard_yourself_url=https://docs.mosip.io/platform/modules/registration-client/first-user-registration-and-onboarding diff --git a/resident-default.properties b/resident-default.properties index ddf1fcb509b..9bb4d25defb 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -27,61 +27,61 @@ vid.revoke.id=mosip.vid.update resident.revokevid.id=mosip.resident.vidstatus PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT -DECRYPT_API_URL=http://keymanager.kernel/v1/keymanager/decrypt +DECRYPT_API_URL=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt ## Token generation token.request.id=io.mosip.resident resident.appid=resident token.request.version=1.0 resident.clientId=mosip-resident-client -resident.secretKey=${mosip.secret.mosip-resident-client} +resident.secretKey=${mosip.mosip.resident.client.secret} # Below is defined in application properties token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services -KERNELAUTHMANAGER=http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey -REGPROCPRINT=http://regproc-print-service/registrationprocessor/v1/print/uincard -INTERNALAUTH=http://ida-internal.ida/idauthentication/v1/internal/auth -INTERNALAUTHTRANSACTIONS=http://ida-internal.ida/idauthentication/v1/internal/authTransactions -KERNELENCRYPTIONSERVICE=http://ida-internal.ida/idauthentication/v1/internal/getCertificate -IDAUTHCREATEVID=http://vid.idrepo/idrepository/v1/vid -IDAUTHREVOKEVID=http://vid.idrepo/idrepository/v1/vid/deactivate +KERNELAUTHMANAGER=${mosip.kernel-auditmanager-service.url}/v1/authmanager/authenticate/clientidsecretkey +REGPROCPRINT=${mosip.regproc-print-service.url}/registrationprocessor/v1/print/uincard +INTERNALAUTH=${mosip.ida-internal-service.url}/idauthentication/v1/internal/auth +INTERNALAUTHTRANSACTIONS=${mosip.ida-internal-service.url}/idauthentication/v1/internal/authTransactions +KERNELENCRYPTIONSERVICE=${mosip.ida-internal-service.url}/idauthentication/v1/internal/getCertificate +IDAUTHCREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid +IDAUTHREVOKEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/deactivate ## Notification service -IDREPOGETIDBYUIN=http://identity.idrepo/idrepository/v1/identity/idvid -IDREPOGETIDBYRID=http://identity.idrepo/idrepository/v1/identity/idvid -GETUINBYVID=http://vid.idrepo/idrepository/v1/vid +IDREPOGETIDBYUIN=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid +IDREPOGETIDBYRID=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid +GETUINBYVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid resident.notification.emails=mosiptestuser@gmail.com resident.notification.message=Notification has been sent to the provided contact detail(s) ## templates -MASTER=http://masterdata.kernel/v1/masterdata +MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters -RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid -CREATEVID=http://vid.idrepo/idrepository/v1/vid -IDREPOSITORY=http://identity.idrepo/idrepository/v1/identity/ -ENCRYPTURL=http://keymanager.kernel/v1/keymanager/encrypt -MIDSCHEMAURL=http://syncdata.kernel/v1/syncdata/latestidschema +RIDGENERATION=${mosip.kernel-ridgenerator-service.url}/v1/ridgenerator/generate/rid +CREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid +IDREPOSITORY=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/ +ENCRYPTURL=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +MIDSCHEMAURL=${mosip.kernel-keymanager-service.url}/v1/syncdata/latestidschema # DMZ service call -SYNCSERVICE=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=http://regproc-group1/registrationprocessor/v1/packetreceiver/registrationpackets -SMSNOTIFIER=http://notifier.kernel/v1/notifier/sms/send -EMAILNOTIFIER=http://notifier.kernel/v1/notifier/email/send -AUTHTYPESTATUSUPDATE=http://identity.idrepo/idrepository/v1/identity/authtypes/status +SYNCSERVICE=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=${mosip.regproc-group1-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets +SMSNOTIFIER=${mosip.kernel-notification-service.url}/v1/notifier/sms/send +EMAILNOTIFIER=${mosip.kernel-notification-service.url}/v1/notifier/email/send +AUTHTYPESTATUSUPDATE=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/authtypes/status #Regitstration processor reprint service #Registration status service -REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search +REGISTRATIONSTATUSSEARCH=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/externalstatus/search resident.center.id=10001 resident.machine.id=10001 #Credential Req service -POLICY_REQ_URL=http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -OTP_GEN_URL=http://ida-internal.ida/idauthentication/v1/internal/otp -CREDENTIAL_STATUS_URL=http://credentialrequest.idrepo/v1/credentialrequest/get/ -CREDENTIAL_REQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator -CREDENTIAL_CANCELREQ_URL=http://credentialrequest.idrepo/v1/credentialrequest/cancel/ -CREDENTIAL_TYPES_URL=http://credential.idrepo/v1/credentialservice/types -PARTNER_API_URL=http://pms-partner.pms/v1/partnermanager/partners -mosip.kernel.masterdata.audit-url=http://auditmanager.kernel/v1/auditmanager/audits +POLICY_REQ_URL=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +OTP_GEN_URL=${mosip.ida-internal-service.url}/idauthentication/v1/internal/otp +CREDENTIAL_STATUS_URL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/get/ +CREDENTIAL_REQ_URL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/requestgenerator +CREDENTIAL_CANCELREQ_URL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/cancel/ +CREDENTIAL_TYPES_URL=${mosip.idrepo-credential-service.url}/v1/credentialservice/types +PARTNER_API_URL=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners +mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits ## Config data resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' @@ -101,7 +101,7 @@ mosip.registration.processor.registration.sync.id=mosip.registration.sync id.repo.vidType=Perpetual token.request.appid=resident token.request.clientId=mosip-resident-client -token.request.secretKey=${mosip.secret.mosip-resident-client} +token.request.secretKey=${mosip.mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter #TODO remove reg-client service accunt in production env From 646c5a65c8761fc4ee2e39e60af18ac841fabe61 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 22 Dec 2021 15:16:51 +0530 Subject: [PATCH 0402/1358] updated config --- application-default-dmz.properties | 4 +- application-default.properties | 6 ++- registration-processor-default-dmz.properties | 2 +- registration-processor-default.properties | 48 +++++++++---------- 4 files changed, 31 insertions(+), 29 deletions(-) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 64db11ba56f..07055a7badd 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -1,7 +1,7 @@ #---------------------------------------Common properties----------------------- aplication.configuration.level.version=LTS -mz.ingress.base.url: http://mz.ingress:30080 -mosip.keymanager.base.url=http://kernel-keymanager-service +mz.ingress.base.url=${mz.ingress.base.url} +mosip.keymanager.base.url=${mosip.kernel-keymanager-service.url} #Kernel-idobjectalidator # Plug in property source as either 'LOCAL' or 'CONFIG_SERVER' or 'APPLICATION_CONTEXT' through this key diff --git a/application-default.properties b/application-default.properties index aedc4ff1b85..e9e54c873a4 100644 --- a/application-default.properties +++ b/application-default.properties @@ -94,9 +94,11 @@ mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.def mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.default:80 -mosip.packet-receiver-service.url=http://dmz.ingress:30080 -mosip.regproc-status-service.url=http://dmz.ingress:30080 +mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage:80 +mosip.regproc-status-service.url=http://regproc-registration-status-service:80 mosip.websub.url=${mosip.api.external.url} +mz.ingress.base.url=http://mz.ingress:30080 +dmz.ingress.base.url=http://dmz.ingress:30080 mosip.mosip.admin.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties index 5c9c7e9f051..ef0db576212 100644 --- a/registration-processor-default-dmz.properties +++ b/registration-processor-default-dmz.properties @@ -9,7 +9,7 @@ mosip.registration.processor.database.hostname=mz.ingress mosip.registration.processor.database.port=30090 # URL prefix to connect to mz services cluster -mz.ingress.url=http://mz.ingress:30080 +mz.ingress.url=${mz.ingress.base.url} # Persistence properties javax.persistence.jdbc.driver=org.postgresql.Driver diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 983c0c37e4c..2032b886b6f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -82,23 +82,23 @@ token.request.secretKey=${mosip.mosip.regproc.client.secret} token.request.issuerUrl=${keycloak.host}/auth/realms/mosip ## Audit Service -AUDIT=http://auditmanager.kernel/v1/auditmanager/audits +AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits ## Auth Service -authmanager.base.url=http://authmanager.kernel +authmanager.base.url=${mosip.kernel-auth-service.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateToken GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid -IDAINTERNAL=http://ida-internal.ida +IDAINTERNAL=${mosip.ida-internal-service.url} INTERNALAUTH=${IDAINTERNAL}/idauthentication/v1/internal/auth GETINDIVIDUALIDFROMUSERID=${authmanager.base.url}/v1/authmanager/individualId ## Master Data Services -MASTER=http://masterdata.kernel/v1/masterdata +MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata MACHINEHISTORY=${MASTER}/machineshistories CENTERHISTORY=${MASTER}/registrationcentershistory CENTERUSERMACHINEHISTORY=${MASTER}/getregistrationmachineusermappinghistory -REVERSEDATASYNC=http://prereg-datasync-service/preregistration/v1/sync/consumedPreRegIds +REVERSEDATASYNC=${mosip.prereg-datasync-service.url}/preregistration/v1/sync/consumedPreRegIds CENTERDETAILS=${MASTER}/registrationcenters MACHINEDETAILS=${MASTER}/machines DEVICESHISTORIES=${MASTER}/deviceshistories @@ -106,22 +106,22 @@ REGISTRATIONCENTERDEVICEHISTORY=${MASTER}/registrationcenterdevicehistory REGISTRATIONCENTERTIMESTAMP=${MASTER}/registrationcenters/validate USERDETAILS=${MASTER}/users TEMPLATES=${MASTER}/templates -DEVICEVALIDATEHISTORY=http://pms-partner.pms/v1/partnermanager/deviceprovidermanagement/validate +DEVICEVALIDATEHISTORY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/deviceprovidermanagement/validate #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest LANGUAGE=${MASTER}/languages ## ID Repository Services -IDENTITY=http://identity.idrepo +IDENTITY=${mosip.idrepo-identity-service.url} IDREPOSITORY=${IDENTITY}/idrepository/v1/identity/ IDREPOGETIDBYUIN=${IDENTITY}/idrepository/v1/identity/idvid -UINGENERATOR=http://idgenerator.kernel/v1/idgenerator/uin +UINGENERATOR=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/uin RETRIEVEIDENTITYFROMRID=${IDENTITY}/idrepository/v1/identity/idvid RETRIEVEIDENTITY=${IDENTITY}/idrepository/v1/identity/idvid -CREATEVID=http://vid.idrepo/idrepository/v1/vid -GETUINBYVID=http://vid.idrepo/idrepository/v1/idvid -CREDENTIALREQUEST=http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator -GETVIDSBYUIN=http://vid.idrepo/idrepository/v1/vid/uin +CREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid +GETUINBYVID=${mosip.idrepo-vid-service.url}/idrepository/v1/idvid +CREDENTIALREQUEST=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/requestgenerator +GETVIDSBYUIN=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/uin IDREPOHASDRAFT=${IDENTITY}/idrepository/v1/identity/draft IDREPOGETDRAFT=${IDENTITY}/idrepository/v1/identity/draft IDREPOCREATEDRAFT=${IDENTITY}/idrepository/v1/identity/draft/create @@ -130,7 +130,7 @@ IDREPOPUBLISHDRAFT=${IDENTITY}/idrepository/v1/identity/draft/publish IDREPOEXTRACTBIOMETRICS=${IDENTITY}/idrepository/v1/identity/draft/extractbiometrics/ ## Encrypt Services -KEYMANAGER=http://keymanager.keymanager/ +KEYMANAGER=${mosip.kernel-keymanager-service.url} ENCRYPTURL=${KEYMANAGER}/v1/keymanager/encrypt ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey @@ -143,7 +143,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo registration.processor.demodedupe.manual.adjudication.status=REJECTED # Validate hostlisted devices -DEVICEHOTLIST=http://admin-hotlist.admin/v1/hotlist/status +DEVICEHOTLIST=${mosip.admin-hotlist-service.url}/v1/hotlist/status JWTVERIFY=${KEYMANAGER}/v1/keymanager/jwtVerify ## Crypto @@ -151,13 +151,13 @@ CRYPTOMANAGERDECRYPT=${KEYMANAGER}/v1/keymanager/decrypt crypto.PrependThumbprint.enable=true ## SMS and EMAIL notification services -NOTIFIER=http://notifier.kernel +NOTIFIER=${mosip.kernel-notification-service.url} SMSNOTIFIER=${NOTIFIER}/v1/notifier/sms/send EMAILNOTIFIER=${NOTIFIER}/v1/notifier/email/send ## PMS -PMS=http://pms-policy.pms/v1/policymanager/policies -PARTNERGETBIOEXTRACTOR=http://pms-partner.pms/v1/partnermanager/partners +PMS=${mosip.pms-policy-manager-service.url}/v1/policymanager/policies +PARTNERGETBIOEXTRACTOR=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners ## Registration status properties registration.processor.max.retry=10 @@ -251,10 +251,10 @@ registration.processor.notification.emails= ## Notification service registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 -registration.processor.notification_service_subscriber_callback_url=http://regproc-notifier.regproc/registrationprocessor/v1/notification/callback/notify +registration.processor.notification_service_subscriber_callback_url=${mosip.regproc-notification-service.url}/registrationprocessor/v1/notification/callback/notify registration.processor.notification_service_pausedforadditonalinfo_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_workflow_paused_for_additional_info_event -registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=http://regproc-notifier.regproc/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo +registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosip.regproc-notification-service.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo # Email template code for PauseForAdditionalInfo mosip.regproc.notification_service.biometric_correction.email=RPR_PAUSED_FOR_ADD_INFO_EMAIL @@ -437,7 +437,7 @@ ida-internal-auth-uri=${IDAINTERNAL}/idauthentication/v1/internal/auth ida-internal-get-certificate-uri=${IDAINTERNAL}/idauthentication/v1/internal/getCertificate registration.processor.objectstore.adapter.name=S3Adapter -packetmanager.base.url=http://packetmanager.packetmanager/commons +packetmanager.base.url=${mosip.packetmanager-service.url}/commons PACKETMANAGER_SEARCH_FIELD=${packetmanager.base.url}/v1/packetmanager/searchField PACKETMANAGER_SEARCH_FIELDS=${packetmanager.base.url}/v1/packetmanager/searchFields PACKETMANAGER_SEARCH_METAINFO=${packetmanager.base.url}/v1/packetmanager/metaInfo @@ -450,7 +450,7 @@ PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdate PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag PACKETMANAGER_GET_TAGS=${packetmanager.base.url}/v1/packetmanager/getTags DATASHARECREATEURL=/v1/datashare/create -DATASHAREGETEURL=http://datashare.datashare/v1/datashare/get +DATASHAREGETEURL=${mosip.datashare-service.url}/v1/datashare/get # Default abis is mock-abis provided by MOSIP registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis @@ -462,7 +462,7 @@ mosip.regproc.data.share.protocol=http mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK -mosip.biosdk.default.host= http://biosdk-service.biosdk +mosip.biosdk.default.host=${mosip.mock-biosdk-service.url} mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath @@ -924,10 +924,10 @@ regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TE regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB -openapi.registrationProcessor.servers[0].url=http://${mosip.api.internal.host}/registrationprocessor/v1/registrationtransaction +openapi.registrationProcessor.servers[0].url=${mosip.api.internal.host}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL -NGINXDMZURL=http://regproc-pktserver.regproc/ +NGINXDMZURL=${mosip.packet-receiver-service.url} # modifiable delay in websub subscription mosip.regproc.websub.resubscription.delay.millisecs=43200000 From f4eec4f56080ae2e7db607cc1ee78981ba500994 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 22 Dec 2021 17:13:51 +0530 Subject: [PATCH 0403/1358] updated config from develop2 changes #1273 PR --- pre-registration-default.properties | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index f17905520fe..9b6eeda3e29 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -438,7 +438,7 @@ mosip.role.prereg.getapplicationsstatus=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRA mosip.role.prereg.deleteapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postapplicationsupdatedtime=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,REGISTRATION_PROCESSOR mosip.role.prereg.getapplicationsconfig=INDIVIDUAL -mosip.role.prereg.getapplicationsinfo=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +mosip.role.prereg.getapplicationsinfo=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.prereg.postlogaudit=REGISTRATION_OFFICER,INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postdocumentspreregistrationid=INDIVIDUAL mosip.role.prereg.putdocumentspreregistrationid=INDIVIDUAL @@ -472,3 +472,11 @@ mosip.role.prereg.deleteappointment=INDIVIDUAL mosip.role.prereg.getappointmentpreregistrationidregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getappointmentregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN +# To generate token from keycloak in PreReg Data Sync Service. Used by kernel auth adapter. +mosip.iam.adapter.clientid.pre-registration-datasync-service=mosip-reg-client +mosip.iam.adapter.clientsecret.pre-registration-datasync-service={cipher}f4ba53f63109c6559d882fda0b7e9f16620cbe15604ea83c940af995520905d7 +mosip.iam.adapter.appid.pre-registration-datasync-service=registrationclient + +#the custom auth provider component names list +mosip.security.authentication.provider.beans.list.pre-registration-application-service=customJWTAuthProvider +mosip.security.authentication.provider.beans.list.pre-registration-booking-service=customJWTAuthProvider \ No newline at end of file From 51b4e3c8f16392c5815f12b614a08970461c5acc Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Wed, 22 Dec 2021 17:53:48 +0530 Subject: [PATCH 0404/1358] updated the property files as per develop2 commits 1276,1278,1283,1284,1287 --- application-default.properties | 2 +- credential-request-default.properties | 9 +++++++++ credential-service-default.properties | 10 ++++++++++ id-repository-default.properties | 8 ++++++++ kernel-default.properties | 2 +- print-default.properties | 20 ++++++++++++++++++++ websub-service.toml | 6 +++--- 7 files changed, 52 insertions(+), 5 deletions(-) create mode 100644 credential-request-default.properties create mode 100644 credential-service-default.properties diff --git a/application-default.properties b/application-default.properties index e9e54c873a4..11e9eb8b1b6 100644 --- a/application-default.properties +++ b/application-default.properties @@ -275,7 +275,7 @@ mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true -mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} +mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} ## Crypto diff --git a/credential-request-default.properties b/credential-request-default.properties new file mode 100644 index 00000000000..9c893b7fe00 --- /dev/null +++ b/credential-request-default.properties @@ -0,0 +1,9 @@ +#IDRepo credential request generator authentication detalis +mosip.idrepo.credential-req-generator.auth.client-id=mosip-crereq-client +mosip.idrepo.credential-req-generator.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential-req-generator.auth.app-id=crereq + +#------------------------- Kernel Auth Adapter self token generator properties ----------------------------# +mosip.iam.adapter.clientid.credential-request=${mosip.idrepo.credential-req-generator.auth.client-id} +mosip.iam.adapter.clientsecret.credential-request=${mosip.idrepo.credential-req-generator.auth.secret-key} +mosip.iam.adapter.appid.credential-request=${mosip.idrepo.credential-req-generator.auth.app-id} \ No newline at end of file diff --git a/credential-service-default.properties b/credential-service-default.properties new file mode 100644 index 00000000000..aa4dae0fcbb --- /dev/null +++ b/credential-service-default.properties @@ -0,0 +1,10 @@ +#IDRepo credential service authentication detalis +mosip.idrepo.credential.auth.client-id=mosip-creser-client +mosip.idrepo.credential.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential.auth.app-id=creser + + +#------------------------- Kernel Auth Adapter self token generator properties ----------------------------# +mosip.iam.adapter.clientid.credential-service=${mosip.idrepo.credential.auth.client-id} +mosip.iam.adapter.clientsecret.credential-service=${mosip.idrepo.credential.auth.secret-key} +mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id} \ No newline at end of file diff --git a/id-repository-default.properties b/id-repository-default.properties index b9b7b22435b..51fc78fe30a 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -141,6 +141,14 @@ mosip.idrepo.retrieve-uin-by-vid.rest.httpMethod=GET mosip.idrepo.retrieve-uin-by-vid.rest.headers.mediaType=application/json mosip.idrepo.retrieve-uin-by-vid.rest.timeout=100 +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=15 +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=15 +#this should be false if you don?t use the self token restTemplate from auth adapter true if you do (needed for websubclient). +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false + mosip.idrepo.bio-extractor-service.rest.uri=${mosip.idrepo-bioextractor-service.url}/v1/bioextractor/{extractionFormat}/extracttemplates mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json diff --git a/kernel-default.properties b/kernel-default.properties index ea79aa74f02..93246512dc7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -446,7 +446,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 zone.user.details.url=${mosip.kernel-auth-service.url}/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client diff --git a/print-default.properties b/print-default.properties index ed90d5d165d..c1c6fdfa709 100644 --- a/print-default.properties +++ b/print-default.properties @@ -110,3 +110,23 @@ registration.processor.demographic.identity=identity CREATEDATASHARE=${mosip.datashare-service.url}/v1/datashare/create DECRYPTPINBASSED=${mosip.kernel-keymanager-service.url}/v1/keymanager/decryptWithPin mosip.print.prependThumbprint=true + +# websub authentication +mosip.iam.adapter.clientid=mpartner-default-print +mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df +mosip.iam.adapter.appid=print +mosip.iam.adapter.issuerURL=${mosipbox.public.url}/keycloak/auth/realms/mosip +mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager +mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey +# in minutes + +mosip.iam.adapter.validate-expiry-check-rate=1440 + +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=1440 + +#this should be false if you don?t use this restTemplate true if you do + +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter \ No newline at end of file diff --git a/websub-service.toml b/websub-service.toml index b5b3398c836..a03f61015d1 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -1,6 +1,6 @@ [kafkaHub.config] # Flag to check whether to enable/disable security -SECURITY_ON = false +SECURITY_ON = true # Server ID is is used to uniquely identify each server # Each server must have a unique ID @@ -42,7 +42,7 @@ MESSAGE_DELIVERY_COUNT = 3 MESSAGE_DELIVERY_TIMEOUT = 10.0 # The base URL of IDP -MOSIP_AUTH_BASE_URL = "https://host/" +MOSIP_AUTH_BASE_URL = "https://dev2.mosip.net/v1/authmanager" # The token validation URL of IDP -MOSIP_AUTH_VALIDATE_TOKEN_URL = "https://host/oauth2/token" +MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" From a36e59cd3c81e4237e3ee77599d6ab96d962fc22 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 18:15:40 +0530 Subject: [PATCH 0405/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 11e9eb8b1b6..ce41733b7d2 100644 --- a/application-default.properties +++ b/application-default.properties @@ -17,7 +17,7 @@ mosip.recommended.centers.locCode=5 mosip.api.internal.url=${mosip.api.internal.host} mosip.api.external.url=${mosipbox.public.url} -db.dbuser.password={cipher}81mosip.db3bb0946f56f47cc36a605cf54459b3e6e871677f777ff6189c23a74cd734 +db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 From 211a11d89779a545167043a4fc61fe2f17703dd8 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 22 Dec 2021 18:19:32 +0530 Subject: [PATCH 0406/1358] updated config from develop2 changes #1275 PR --- application-default.properties | 2 +- data-share-default.properties | 2 +- id-authentication-default.properties | 50 +++++++++++++------ id-authentication-external-default.properties | 12 +++-- id-authentication-internal-default.properties | 14 +++--- id-authentication-otp-default.properties | 11 ++-- id-repository-default.properties | 32 +++++++++--- kernel-default.properties | 2 +- partner-management-default.properties | 2 +- 9 files changed, 87 insertions(+), 40 deletions(-) diff --git a/application-default.properties b/application-default.properties index e9e54c873a4..88f624cec8b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -276,7 +276,7 @@ mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} -mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} ## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING diff --git a/data-share-default.properties b/data-share-default.properties index ab66f769ff4..45e262c3ce8 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -33,4 +33,4 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=true -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mosip-ida-client,mosip-regproc-client,mosip-resident-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 641ab9844f2..b4396e414ea 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -18,7 +18,17 @@ mosip.api.internal.url=https://${mosip.api.internal.host} ## Client -mosip.ida.auth.clientId=mosip-ida-client +# The Online Verification partner ID associated to the IDA instance. +# This is used to subscribe to the credential issuance event notification sent by credential service. +# for the particular Online Verification partner. +# This credential issueance notification is handled inside Internal Authentication module. +# The credentials issued to the partner will be as per the data-share policy associated to the partner. +# TO DO: Change the property key to online-verification-partner-id +ida-auth-partner-id=mpartner-default-auth +# Kernel auth client ID for IDA +#Note: since the Online verification Partner ID is used as client ID, for a different IDA instance, this needs to be changed accordingly +#and also to be added to the 'auth.server.admin.allowed.audience' property of all dependency modules. +mosip.ida.auth.clientId=${ida-auth-partner-id} mosip.ida.auth.secretKey=${mosip.mosip.ida.client.secret} mosip.ida.auth.appId=ida @@ -58,13 +68,6 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true log4j.logger.org.hibernate=warn hibernate.show_sql=false -## The Online Verification partner ID associated to the IDA instance. -## This is used to subscribe to the credential issuance event notification sent by credential service. -## for the particular Online Verification partner. -## This credential issueance notification is handled inside Internal Authentication module. -## The credentials issued to the partner will be as per the data-share policy associated to the partner. -## TO DO: Change the property key to online-verification-partner-id -ida-auth-partner-id=mpartner-default-auth application.id=IDA application.name=ID-Authentication @@ -212,14 +215,25 @@ ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} -ida-websub-auth-type-callback-url=${mosip.ida-internal-service.url}/idauthentication/v1/internal/callback/authTypeCallback/{partnerId} +ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} +ida-websub-auth-type-callback-url=${mosipbox.public.url}${ida-websub-auth-type-callback-relative-url} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-credential-issue-callback-url=${mosip.ida-internal-service.url}/idauthentication/v1/internal/callback/idchange/{eventType}/{partnerId} +ida-websub-idchage-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} +ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} +ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} +ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} - +ida-websub-partner-service-apikey-approved-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/apikey_approved +ida-websub-partner-service-partner-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_updated +ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/policy_updated +ida-websub-partner-service-partner-api-key-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_api_key_updated +ida-websub-partner-service-misp-license-generated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_generated +ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated ## Callback url for hotlist event -ida-websub-hotlist-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/hotlist +ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist +ida-websub-hotlist-callback-url=${mosipbox.public.url}${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 @@ -250,8 +264,8 @@ ida-topic-hotlist=MOSIP_HOTLIST ida-topic-credential-status-update=CREDENTIAL_STATUS_UPDATE ida-topic-auth-type-status-update-acknowledge=AUTH_TYPE_STATUS_UPDATE_ACK ida-topic-auth-transaction-status=AUTHENTICATION_TRANSACTION_STATUS -ida-topic-masterdata-templates=masterdata/idauthentication_templates -ida-topic-masterdata-titles=masterdata/titles +ida-topic-masterdata-templates=MASTERDATA_IDAUTHENTICATION_TEMPLATES +ida-topic-masterdata-titles=MASTERDATA_TITLES ida-topic-pmp-misp-license-generated=MISP_LICENSE_GENERATED ida-topic-pmp-misp-license-updated=MISP_LICENSE_UPDATED ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED @@ -261,6 +275,14 @@ ida-topic-pmp-policy-updated=POLICY_UPDATED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=15 +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=15 +#this should be false if you don?t use the self token restTemplate from auth adapter true if you do (needed for websubclient). +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false + ## IDA cache ## IDA cache Time to live in days - To clear cache scheduled based on the days provided. ## value <= 0 means cache clearing based on schedule is disabled. diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index b93d695b4f1..ae02ba0b445 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,8 +1,12 @@ -## Masterdata templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles +ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-templates-callback-url=${mosipbox.public.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles +ida-websub-masterdata-titles-callback-url=${mosipbox.public.url}${ida-websub-masterdata-titles-callback-relative-url} + # Callback url for partner CA certification upload event -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-url=${mosipbox.public.url}${ida-websub-ca-cert-callback-relative-url} + # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} # Topic for Partner CA Certificate Upload event diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index eee330f07df..481ab0482c5 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -1,13 +1,13 @@ -# Follow properites have their values assigned via 'overrides' environment variables of config server docker. -# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server -# helm chart: -# mosip.api.internal.url +ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-templates-callback-url=${mosipbox.public.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles +ida-websub-masterdata-titles-callback-url=${mosipbox.public.url}${ida-websub-masterdata-titles-callback-relative-url} -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles # Callback url for partner CA certification upload event -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-url=${mosipbox.public.url}${ida-websub-ca-cert-callback-relative-url} + # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} # Topic for Partner CA Certificate Upload event diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index 2d0eb32cace..0c8bafa86ca 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -1,9 +1,12 @@ -## Masterdata templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/masterdata/titles +ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates +ida-websub-masterdata-templates-callback-url=${mosipbox.public.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles +ida-websub-masterdata-titles-callback-url=${mosipbox.public.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate +ida-websub-ca-cert-callback-url=${mosipbox.public.url}${ida-websub-ca-cert-callback-relative-url} + # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} # Topic for Partner CA Certificate Upload event diff --git a/id-repository-default.properties b/id-repository-default.properties index b9b7b22435b..bae622ce5b7 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,6 +26,21 @@ mosip.idrepo.objectstore.account-name=idrepo mosip.idrepo.objectstore.bucket-name=idrepository mosip.idrepo.objectstore.adapter-name=s3Adapter +#IDRepo identity/vid service authentication details +mosip.idrepo.auth.client-id=mosip-idrepo-client +mosip.idrepo.auth.secret-key={cipher}cf4e1c8c5f2013a63ff8eeead18b641d2b38c1618e8b90ed55b9af6301fe75b60dbfc04bc5339128b374b21de7cc5eed65c796024ea1862b6fb0e938f06e19f4 +mosip.idrepo.auth.app-id=idrepo + +#IDRepo credential service authentication detalis +mosip.idrepo.credential.auth.client-id=mosip-creser-client +mosip.idrepo.credential.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential.auth.app-id=creser + +#IDRepo credential request generator authentication detalis +mosip.idrepo.credential-req-generator.auth.client-id=mosip-crereq-client +mosip.idrepo.credential-req-generator.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential-req-generator.auth.app-id=crereq + # For auditing mosip.idrepo.application.name=ID-Repository mosip.idrepo.application.version.pattern=^v\\d+(\\.\\d+)?$ @@ -191,9 +206,9 @@ mosip.idrepo.websub.vid-credential-update.secret= ${idrepo.websub.vid.credential mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE ## Auth adapter -mosip.iam.adapter.clientid.id-repository=mosip-regproc-client +mosip.iam.adapter.clientid.id-repository=${mosip.idrepo.auth.client-id} mosip.iam.adapter.clientsecret.id-repository=${mosip.secret.mosip-reg-client} -mosip.iam.adapter.appid.id-repository=regproc +mosip.iam.adapter.appid.id-repository=${mosip.idrepo.auth.app-id} mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey mosip.idrepo.uin-generator.rest.uri=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/uin @@ -223,8 +238,8 @@ hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.show_sql=false # Token generator properties -credential.request.token.request.appid=crereq -credential.request.token.request.clientId=mosip-crereq-client +credential.request.token.request.appid=${mosip.idrepo.credential-req-generator.auth.app-id} +credential.request.token.request.clientId=${mosip.idrepo.credential-req-generator.auth.client-id} credential.request.token.request.secretKey=${mosip.secret.mosip-reg-client} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator @@ -233,6 +248,9 @@ mosip.credential.request.service.id=mosip.credential.request.generator mosip.credential.request.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.request.service.version=1.0 +# Reference Id which is used for encryption/decryption of credential request using keymanager +mosip.credential.request.crypto-ref-id=credential_request + ## Batch job # batch job time intervel in miliseconds mosip.credential.request.job.timedelay=15000 @@ -267,8 +285,8 @@ resubscription-delay-secs=43200 WEBSUBSECRET=test # Credential service -credential.service.token.request.appid=creser -credential.service.token.request.clientId=mosip-creser-client +credential.service.token.request.appid=${mosip.idrepo.credential.auth.app-id} +credential.service.token.request.clientId=${mosip.idrepo.credential.auth.client-id} credential.service.token.request.secretKey=${mosip.mosip.creser.client.secret} credential.service.token.request.id=io.mosip.credentialstore # Credential formatter properties @@ -355,7 +373,7 @@ auth-token-generator.rest.secretKey=${mosip.secret.mosip-regproc-client} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-idrepo-client #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha diff --git a/kernel-default.properties b/kernel-default.properties index ea79aa74f02..248963b4a19 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -446,7 +446,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 zone.user.details.url=${mosip.kernel-auth-service.url}/v1/authmanager/userdetails auth.server.admin.offline.token.validate=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-clientmosip-syncdata-client,mosip-masterdata-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client diff --git a/partner-management-default.properties b/partner-management-default.properties index d5184dcf679..1674489b550 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -151,7 +151,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token From 7c3dea961c69e806ae53c05d5b0caf28f6c5c7d6 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 18:20:13 +0530 Subject: [PATCH 0407/1358] Update kernel-default.properties --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 93246512dc7..e81c749892f 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -133,8 +133,8 @@ kernel.prid.revoke-scheduler-days_of_week=* ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres -mosip.kernel.database.port=5432 +mosip.kernel.database.hostname=postgres +mosip.kernel.database.port=80 javax.persistence.jdbc.driver=org.postgresql.Driver hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect From 9c9cec795cfd173089368566dd43ab8a7eb5df1d Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 18:21:50 +0530 Subject: [PATCH 0408/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2032b886b6f..b9ad100b4df 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -30,8 +30,8 @@ registration.processor.bio.dedupe.reprocess.buffer.time=900 ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.registration.processor.database.hostname=postgres-postgresql.postgres -mosip.registration.processor.database.port=5432 +mosip.registration.processor.database.hostname=postgres +mosip.registration.processor.database.port=80 javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc javax.persistence.jdbc.user=regprcuser From 6e991d902d3bcb8756ff17b8491861f08316901d Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 18:24:32 +0530 Subject: [PATCH 0409/1358] Update id-repository-default.properties --- id-repository-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 2fc778a7e24..3be43811c97 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -235,8 +235,8 @@ mosip.idrepo.update-vid.rest.headers.mediaType=application/json mosip.idrepo.update-vid.rest.timeout=100 ## Credential request generator -mosip.credential.service.database.hostname=postgres-postgresql.postgres -mosip.credential.service.database.port=5432 +mosip.credential.service.database.hostname=postgres +mosip.credential.service.database.port=80 mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.database.hostname}:${mosip.credential.service.database.port}/mosip_credential?currentSchema=credential mosip.credential.service.jdbc.user=credentialuser mosip.credential.service.jdbc.password=${db.dbuser.password} From 89f7e5d2e59cb3fb7988772fe94d4353b190bf3c Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 18:25:13 +0530 Subject: [PATCH 0410/1358] Update pre-registration-default.properties --- pre-registration-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 9b6eeda3e29..c73cb1995c2 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -11,8 +11,8 @@ # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port javax.persistence.jdbc.driver=org.postgresql.Driver -mosip.database.ip=postgres-postgresql.postgres -mosip.database.port=5432 +mosip.database.ip=postgres +mosip.database.port=80 javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_prereg?useSSL=false javax.persistence.jdbc.user=prereguser javax.persistence.jdbc.password=${db.dbuser.password} @@ -479,4 +479,4 @@ mosip.iam.adapter.appid.pre-registration-datasync-service=registrationclient #the custom auth provider component names list mosip.security.authentication.provider.beans.list.pre-registration-application-service=customJWTAuthProvider -mosip.security.authentication.provider.beans.list.pre-registration-booking-service=customJWTAuthProvider \ No newline at end of file +mosip.security.authentication.provider.beans.list.pre-registration-booking-service=customJWTAuthProvider From 6ab1c7ae8f7343dbb2e0266a5e42104fe43c7645 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 18:31:43 +0530 Subject: [PATCH 0411/1358] Update application-default.properties --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index ce41733b7d2..838a2af9673 100644 --- a/application-default.properties +++ b/application-default.properties @@ -18,6 +18,8 @@ mosip.api.internal.url=${mosip.api.internal.host} mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 +softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f + mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 From e93e6522c622f762ada51b838a4c9e13518d912d Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 19:41:31 +0530 Subject: [PATCH 0412/1358] Update application-default.properties --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 838a2af9673..cab62211472 100644 --- a/application-default.properties +++ b/application-default.properties @@ -21,6 +21,7 @@ db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f + mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 @@ -101,7 +102,7 @@ mosip.regproc-status-service.url=http://regproc-registration-status-service:80 mosip.websub.url=${mosip.api.external.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 - +keycloak.host=${mosip.keycloak.url} mosip.mosip.admin.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= mosip.mosip.regproc.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= From 380ab7ddf6a02cda52434b670bac31ed394c66b0 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 19:47:33 +0530 Subject: [PATCH 0413/1358] Update application-default.properties --- application-default.properties | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/application-default.properties b/application-default.properties index cab62211472..121077a84dd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -124,6 +124,13 @@ mosip.mosip.creser.idpass.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8 mosip.mosip.pms.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= keycloak.admin.password={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 +email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 +email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 +email.smtp.password={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c + + +#-------------------------------------------------------------------------------------------------- #mosip.masterdata.base.url = http://masterdata.kernel #mosip.syncdata.base.url=http://syncdata.kernel From 9451cda36993ca8d806d746bbf10963c52920ab7 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 19:50:50 +0530 Subject: [PATCH 0414/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 121077a84dd..be163b6dd85 100644 --- a/application-default.properties +++ b/application-default.properties @@ -122,7 +122,7 @@ mosip.mosip.datsha.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc577 mosip.mosip.abis.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.mosip.creser.idpass.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= mosip.mosip.pms.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -keycloak.admin.password={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 From ca29e0b0d5ada2e4c5bc46cdc7651cce36d2a102 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 19:59:23 +0530 Subject: [PATCH 0415/1358] Update application-default.properties --- application-default.properties | 39 ++++++++++++++++++---------------- 1 file changed, 21 insertions(+), 18 deletions(-) diff --git a/application-default.properties b/application-default.properties index be163b6dd85..b0e8f8e8bea 100644 --- a/application-default.properties +++ b/application-default.properties @@ -104,24 +104,24 @@ mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 keycloak.host=${mosip.keycloak.url} -mosip.mosip.admin.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.mosip.regproc.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.mosip.auth.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.mosip.ida.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.mosip.reg.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -preregistration.mosip.prereg.client.secret={cipher}7Bb4eF/TkGMdyVMPf/KzyB06qcZeBq/pCS0Y0vKUtr0= -mosip.mosip.misp.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.partner.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.policymanager.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.partnermanager.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.resident.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.admin.services.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.crereq.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.creser.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.datsha.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.abis.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.creser.idpass.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= -mosip.mosip.pms.client.secret={cipher}vmF7pYf1W1zuuH7GZUXhnUO7Q/uqFmY8hfnc5774ou4= +mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 +mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.ida.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.reg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +preregistration.mosip.prereg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.misp.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.partner.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.policymanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.partnermanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.resident.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.admin.services.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.crereq.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.creser.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.datsha.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 @@ -129,6 +129,9 @@ email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26 email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 email.smtp.password={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c +s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 + #-------------------------------------------------------------------------------------------------- #mosip.masterdata.base.url = http://masterdata.kernel From 64d7f6398a835d636a2daf85cfd136355cfe68b5 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:01:41 +0530 Subject: [PATCH 0416/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index e81c749892f..41b446ae260 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -450,7 +450,7 @@ auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosi mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.secret.mosip-admin-client} +mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} #AdminMaster endpoints to access without authentication mosip.service-context=/v1/masterdata From 40cfccf7f44c95a6be64a0e4a3137a722006b81d Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:02:28 +0530 Subject: [PATCH 0417/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 3d601247ef7..3dd4eb6d1a4 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -270,7 +270,7 @@ mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip.secret.mosip-admin-client} +mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ mosip.admin_realm_id=mosip From 5d65151ffcb18d238a417169a59ec4272ca95835 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:03:53 +0530 Subject: [PATCH 0418/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 3dd4eb6d1a4..20e24aec37b 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -219,7 +219,7 @@ mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users #Self token resttemplate related to configuration mosip.iam.adapter.clientid=mosip-syncdata-client -mosip.iam.adapter.clientsecret=${mosip.secret.mosip-reg-client} +mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} mosip.iam.adapter.appid=registrationclient mosip.iam.adapter.issuerURL=${mosip.iam.base-url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey From ff4fc45dd2dfe6dd14f206438d55fd1a06cbb3c3 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:06:38 +0530 Subject: [PATCH 0419/1358] Update application-default.properties --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index b0e8f8e8bea..3172bbf5a66 100644 --- a/application-default.properties +++ b/application-default.properties @@ -127,10 +127,11 @@ keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 -email.smtp.password={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c +email.smtp.secret={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 +s3.region= #-------------------------------------------------------------------------------------------------- From ec2071c831536b31e4749a7bfe8111252211c21d Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:13:47 +0530 Subject: [PATCH 0420/1358] Update syncdata-default.properties --- syncdata-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 20e24aec37b..493c87bbec1 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -132,8 +132,8 @@ kernel.prid.revoke-scheduler-days_of_week=* ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres -mosip.kernel.database.port=5432 +mosip.kernel.database.hostname=postgres +mosip.kernel.database.port=80 javax.persistence.jdbc.driver=org.postgresql.Driver hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect From 9d0e02e1f06e12765a5b29141c85b69811c03202 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:15:26 +0530 Subject: [PATCH 0421/1358] Update id-authentication-default.properties --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index b4396e414ea..c3a652896e0 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -35,8 +35,8 @@ mosip.ida.auth.appId=ida ## Database # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.ida.database.hostname=postgres-postgresql.postgres -mosip.ida.database.port=5432 +mosip.ida.database.hostname=postgres +mosip.ida.database.port=80 mosip.ida.database.user=idauser mosip.ida.database.password=${db.dbuser.password} From a83caf985cc21cbab284824bde978bade80802db Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:19:37 +0530 Subject: [PATCH 0422/1358] Update application-default.properties --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 3172bbf5a66..ab40ac2755b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -19,7 +19,8 @@ mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f - +prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX +prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI mosip.activemq.url=http://activemq.default:80 From a0a978d99ae0a3bdd51c3a9bcdea4d3e2c7bf674 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:25:13 +0530 Subject: [PATCH 0423/1358] Update pre-registration-default.properties --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c73cb1995c2..370b542139a 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -140,7 +140,7 @@ mosip.preregistration.batchjob.service.expired.id=mosip.pre-registration.batchjo # Batch Job Service used to fetch token from key cloak mosip.batch.token.authmanager.appId=prereg mosip.batch.token.authmanager.userName=mosip-prereg-client -mosip.batch.token.authmanager.password=${mosip.secret.mosip-prereg-client} +mosip.batch.token.authmanager.password=${preregistration.mosip.prereg.client.secret} mosip.batch.token.authmanager.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath}/authenticate/clientidsecretkey mosip.batch.token.request.id= From 174f9af394b751d95f11c3a1d4729120ae063a4c Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:28:14 +0530 Subject: [PATCH 0424/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 493c87bbec1..5b9f075adac 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -426,7 +426,7 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true syncdata.cache.evict.delta-sync.cron=0 0/15 * * * * syncdata.cache.snapshot.cron=0 0 23 * * * -mosip.kernel.keymanager-service-publickey-url=${mosip.keymanager.base.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/publickey/{applicationId} ## Roles mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From 0d9ff28106318f4b6858fa3bab41275dd3e6efc9 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:35:35 +0530 Subject: [PATCH 0425/1358] Update application-default.properties --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index ab40ac2755b..f4a44bfe964 100644 --- a/application-default.properties +++ b/application-default.properties @@ -19,6 +19,7 @@ mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f +softhsm.ida.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI From b4b1ff136c96ee9b9800f0ed6dd42ba99b2315d7 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:43:30 +0530 Subject: [PATCH 0426/1358] Update application-default.properties --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index f4a44bfe964..a52fb907a77 100644 --- a/application-default.properties +++ b/application-default.properties @@ -130,6 +130,7 @@ mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6 email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 email.smtp.secret={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c +activemq.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 From 5d1104dff4c09389529ac28276ddb7d83e23e688 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:53:26 +0530 Subject: [PATCH 0427/1358] Update id-repository-default.properties --- id-repository-default.properties | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 3be43811c97..f993f4dce11 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -28,17 +28,17 @@ mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details mosip.idrepo.auth.client-id=mosip-idrepo-client -mosip.idrepo.auth.secret-key={cipher}cf4e1c8c5f2013a63ff8eeead18b641d2b38c1618e8b90ed55b9af6301fe75b60dbfc04bc5339128b374b21de7cc5eed65c796024ea1862b6fb0e938f06e19f4 +mosip.idrepo.auth.secret-key=${mosip.mosip.idrepo.client.secret} mosip.idrepo.auth.app-id=idrepo #IDRepo credential service authentication detalis mosip.idrepo.credential.auth.client-id=mosip-creser-client -mosip.idrepo.credential.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential.auth.secret-key=${mosip.mosip.creser.client.secret} mosip.idrepo.credential.auth.app-id=creser #IDRepo credential request generator authentication detalis mosip.idrepo.credential-req-generator.auth.client-id=mosip-crereq-client -mosip.idrepo.credential-req-generator.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential-req-generator.auth.secret-key=${mosip.mosip.crereq.client.secret} mosip.idrepo.credential-req-generator.auth.app-id=crereq # For auditing @@ -215,7 +215,7 @@ mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE ## Auth adapter mosip.iam.adapter.clientid.id-repository=${mosip.idrepo.auth.client-id} -mosip.iam.adapter.clientsecret.id-repository=${mosip.secret.mosip-reg-client} +mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.reg.client.secret} mosip.iam.adapter.appid.id-repository=${mosip.idrepo.auth.app-id} mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey @@ -248,7 +248,7 @@ hibernate.show_sql=false # Token generator properties credential.request.token.request.appid=${mosip.idrepo.credential-req-generator.auth.app-id} credential.request.token.request.clientId=${mosip.idrepo.credential-req-generator.auth.client-id} -credential.request.token.request.secretKey=${mosip.secret.mosip-reg-client} +credential.request.token.request.secretKey=${mosip.mosip.reg.client.secret} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator credential.request.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip @@ -376,7 +376,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey auth-token-generator.rest.appId=regproc auth-token-generator.rest.clientId=mosip-regproc-client -auth-token-generator.rest.secretKey=${mosip.secret.mosip-regproc-client} +auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false From 470ca5267801207e3ceae75bee62c837e9606913 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:54:03 +0530 Subject: [PATCH 0428/1358] Update application-default.properties --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index a52fb907a77..34cf6e852cc 100644 --- a/application-default.properties +++ b/application-default.properties @@ -125,6 +125,7 @@ mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +mosip.mosip.idrepo.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 From 9e299439e7704b6303b2853d082e4aac6a06dd8c Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 20:56:56 +0530 Subject: [PATCH 0429/1358] Update application-default.properties --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 34cf6e852cc..d867291559f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -22,7 +22,8 @@ softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5 softhsm.ida.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI - +mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf +mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 From d2494dc999a5f7409d8ce66df81956c7adbbd3dd Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:01:37 +0530 Subject: [PATCH 0430/1358] Update application-default.properties --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index d867291559f..54f5eed662d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -138,6 +138,8 @@ s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 s3.region= +activemq.host=tcp://activemq +activemq.core.port=80 #-------------------------------------------------------------------------------------------------- #mosip.masterdata.base.url = http://masterdata.kernel From d19f473f081a4ec409ed248f9be9047a9d9f8146 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:05:05 +0530 Subject: [PATCH 0431/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b9ad100b4df..1222531cbc7 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -924,7 +924,7 @@ regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TE regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB -openapi.registrationProcessor.servers[0].url=${mosip.api.internal.host}/registrationprocessor/v1/registrationtransaction +openapi.registrationProcessor.servers[0].url=${mosip.api.external.host}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL NGINXDMZURL=${mosip.packet-receiver-service.url} From be2c926c3f97c242282f52bf3b6f56a9e99e7b04 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:05:42 +0530 Subject: [PATCH 0432/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 54f5eed662d..5d101306d7c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,7 +14,7 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.api.internal.url=${mosip.api.internal.host} +mosip.api.internal.url=${mosipbox.public.url} mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 From e9a3726cb3c52ee451f69ef5bb88f03b7fe9ce3d Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:37:27 +0530 Subject: [PATCH 0433/1358] Update id-authentication-default.properties --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index c3a652896e0..5f469c94a0b 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -555,7 +555,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=https://${mosip.api.public.host},https://${mosip.api.internal.host} +mosip.ida.allowed.domain.uris=${mosip.api.external.host},${mosip.api.external.host} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX From a3ffd20c8678e3a689956bfb2dee8f8a06329c2e Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:39:45 +0530 Subject: [PATCH 0434/1358] Update application-default.properties --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index 5d101306d7c..abff46cd50e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -24,6 +24,8 @@ prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d +print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 + mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 From a88a431af7a2743a9425f76468a0be5c0acd879e Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:41:50 +0530 Subject: [PATCH 0435/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index abff46cd50e..097e1386d19 100644 --- a/application-default.properties +++ b/application-default.properties @@ -25,7 +25,7 @@ prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 - +idrepo.websub.vid.credential.update.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 From 88c7fd125293bbd470fd559927f8203c71209cb9 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:47:23 +0530 Subject: [PATCH 0436/1358] Update id-authentication-default.properties --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 5f469c94a0b..ac8248a14a7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -555,7 +555,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.external.host},${mosip.api.external.host} +mosip.ida.allowed.domain.uris=${mosip.api.external.url},${mosip.api.external.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX From b07e7d73eefa0622e83d46ffe2334d0d469fa590 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:48:57 +0530 Subject: [PATCH 0437/1358] Update websub-consolidator.toml --- websub-consolidator.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index dcccde82d82..6a611ba4c78 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -1,6 +1,6 @@ [consolidatorService.config] # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" +KAFKA_BOOTSTRAP_NODE = "http://kafka.default:9092" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration From 6a7abc66ade4c4934cad72de5286a12fb3752b0c Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:54:42 +0530 Subject: [PATCH 0438/1358] Update application-default.properties --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 097e1386d19..d7b46af4d07 100644 --- a/application-default.properties +++ b/application-default.properties @@ -22,8 +22,8 @@ softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5 softhsm.ida.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI -mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf -mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d +mosip.kernel.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf +mosip.kernel.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 idrepo.websub.vid.credential.update.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 From cb887745c2aff559398d806a77e70f85acf39cd1 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:56:48 +0530 Subject: [PATCH 0439/1358] Update id-repository-default.properties --- id-repository-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index f993f4dce11..1de722581d5 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -369,8 +369,8 @@ id-repo-ida-credential-type=auth id-repo-ida-credential-recepiant=IDA # Kernel token ID generator properties -mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} -mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kerne.partnercode.salt} ## Auth token generator auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey From 7c3e89e96b37fdf762c56dd815bb38b27aa7b070 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:57:43 +0530 Subject: [PATCH 0440/1358] Update websub-service.toml --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index a03f61015d1..3fb13010557 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -7,7 +7,7 @@ SECURITY_ON = true SERVER_ID = "server-1" # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" +KAFKA_BOOTSTRAP_NODE = "http://kafka.default:9092" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration From d08c1184e3d7d6eca1fc5a68bd12020d2aee8aea Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 21:58:51 +0530 Subject: [PATCH 0441/1358] Update id-authentication-default.properties --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index ac8248a14a7..1bf17d39056 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -476,8 +476,8 @@ mosip.kernel.salt-generator.db.key-alias=javax.persistence.jdbc mosip.kernel.salt-generator.schemaName=${javax.persistence.jdbc.schema} ## TokenId generator -mosip.kernel.tokenid.uin.salt=${mosip.kernel.tokenid.uin.salt} -mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM From caf85677a3804e3df2ff5675fd8d7dcb3eae333a Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:04:49 +0530 Subject: [PATCH 0442/1358] Update id-repository-default.properties --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 1de722581d5..d0a3fcb0161 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -370,7 +370,7 @@ id-repo-ida-credential-recepiant=IDA # Kernel token ID generator properties mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} -mosip.kernel.tokenid.partnercode.salt=${mosip.kerne.partnercode.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} ## Auth token generator auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey From 81929f1422f5f32a32208dc6fa4b2aa96bc18d9c Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:09:15 +0530 Subject: [PATCH 0443/1358] Update application-default.properties --- application-default.properties | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/application-default.properties b/application-default.properties index d7b46af4d07..a581ef2f4c9 100644 --- a/application-default.properties +++ b/application-default.properties @@ -27,6 +27,15 @@ mosip.kernel.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 idrepo.websub.vid.credential.update.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +ida.websub.authtype.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +ida.websub.credential.issue.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 + + + mosip.activemq.url=http://activemq.default:80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 From 8439a1da2eb76fb26ba989b9d24ca66dd1d592f4 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:15:15 +0530 Subject: [PATCH 0444/1358] Update application-default-dmz.properties --- application-default-dmz.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 07055a7badd..9724d22e9df 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -1,5 +1,6 @@ #---------------------------------------Common properties----------------------- aplication.configuration.level.version=LTS +mz.ingress.base.url=http://mz.ingress:30080 mz.ingress.base.url=${mz.ingress.base.url} mosip.keymanager.base.url=${mosip.kernel-keymanager-service.url} @@ -372,4 +373,4 @@ mosip.default.user-preferred-language-attribute=preferredLang auth.server.admin.issuer.uri=${mosipbox.public.url}/keycloak/auth/realms/ # Map to find the realm for the inputted appid to get the token from OIDC provider. -mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} \ No newline at end of file +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} From 1ae7f17f2f54e2fd3e283c006f36b6e0c1003318 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:18:38 +0530 Subject: [PATCH 0445/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index a581ef2f4c9..82077d9464f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -33,7 +33,7 @@ ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8 ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - +ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 mosip.activemq.url=http://activemq.default:80 From 005006537411fa8c4001197ffa0d25a46f03d744 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:22:17 +0530 Subject: [PATCH 0446/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1222531cbc7..1645e93df23 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -506,7 +506,7 @@ mosip.regproc.eventbus.type=kafka #Kafka event bus config, will be used only when the type is kafka #Kafka cluster servers comma separated, common for all stages and camel -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.kafka:9092,kafka-1.kafka-headless.kafka:9092,kafka-2.kafka-headless.kafka:9092 +mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default:9092,kafka-1.kafka-headless.default:9092,kafka-2.kafka-headless.default:9092 # Stage Group Configuratoins # Default base packages for stage beans to be scanned in a stage group From 2f501451f0c987bb5d6f00e0d052d4bfd407412b Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:24:05 +0530 Subject: [PATCH 0447/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1645e93df23..76faf41f17e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -506,7 +506,7 @@ mosip.regproc.eventbus.type=kafka #Kafka event bus config, will be used only when the type is kafka #Kafka cluster servers comma separated, common for all stages and camel -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default:9092,kafka-1.kafka-headless.default:9092,kafka-2.kafka-headless.default:9092 +mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default.svc.cluster.local:9092,kafka-1.kafka-headless.default.svc.cluster.local:9092,kafka-2.kafka-headless.default.svc.cluster.local:9092 # Stage Group Configuratoins # Default base packages for stage beans to be scanned in a stage group From 4e32f9fe49a0a9574f5ab123db6363158d8bbeea Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:25:07 +0530 Subject: [PATCH 0448/1358] Update id-authentication-default.properties --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 1bf17d39056..51e53db6ba2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -16,7 +16,7 @@ # ida.websub.masterdata.templates.callback.secret # ida.websub.masterdata.titles.callback.secret -mosip.api.internal.url=https://${mosip.api.internal.host} + ## Client # The Online Verification partner ID associated to the IDA instance. # This is used to subscribe to the credential issuance event notification sent by credential service. From 2c825ed55ca973782aaf185afe3f739441b748c6 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Wed, 22 Dec 2021 22:28:41 +0530 Subject: [PATCH 0449/1358] Update application-default-dmz.properties --- application-default-dmz.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 9724d22e9df..3de03a1e1aa 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -1,7 +1,6 @@ #---------------------------------------Common properties----------------------- aplication.configuration.level.version=LTS mz.ingress.base.url=http://mz.ingress:30080 -mz.ingress.base.url=${mz.ingress.base.url} mosip.keymanager.base.url=${mosip.kernel-keymanager-service.url} #Kernel-idobjectalidator From 1a8611ab42c5caa0453c8a1d94395220b886d22f Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 06:55:29 +0530 Subject: [PATCH 0450/1358] updated config. --- application-default.properties | 4 ++++ id-authentication-default.properties | 3 ++- 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 82077d9464f..ba0f155d17d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -152,6 +152,10 @@ s3.region= activemq.host=tcp://activemq activemq.core.port=80 + + + + #-------------------------------------------------------------------------------------------------- #mosip.masterdata.base.url = http://masterdata.kernel #mosip.syncdata.base.url=http://syncdata.kernel diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 51e53db6ba2..a00bad0067d 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -223,6 +223,7 @@ ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.con ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} +ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} ida-websub-partner-service-apikey-approved-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/apikey_approved @@ -486,7 +487,7 @@ mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} mosip.iam.adapter.clientsecret=${mosip.ida.auth.secretKey} mosip.iam.adapter.appid=${mosip.ida.auth.appId} -mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.api.external.url}/v1/authmanager/authenticate/clientidsecretkey ## IDA key generator keymanager.persistence.jdbc.driver=org.postgresql.Driver From 233e175725c4003df8f3bf9625e6884e4d503b30 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 07:01:16 +0530 Subject: [PATCH 0451/1358] updated config. --- application-default.properties | 6 ++---- registration-processor-default.properties | 4 ++-- 2 files changed, 4 insertions(+), 6 deletions(-) diff --git a/application-default.properties b/application-default.properties index ba0f155d17d..d38d71c6239 100644 --- a/application-default.properties +++ b/application-default.properties @@ -35,8 +35,8 @@ ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977 ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - -mosip.activemq.url=http://activemq.default:80 +activemq.host=tcp://activemq +activemq.core.port=80 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 mosip.admin-ui.url=http://admin-ui.default:80 @@ -149,8 +149,6 @@ s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 s3.region= -activemq.host=tcp://activemq -activemq.core.port=80 diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 76faf41f17e..62a29427eaf 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -275,7 +275,7 @@ registration.processor.updated.subject=UIN Details Updated ## Queue registration.processor.queue.username=artemis registration.processor.queue.password=${activemq.password} -registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} +registration.processor.queue.url=${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ registration.processor.queue.manualverification.request=mosip-to-mv @@ -924,7 +924,7 @@ regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TE regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB -openapi.registrationProcessor.servers[0].url=${mosip.api.external.host}/registrationprocessor/v1/registrationtransaction +openapi.registrationProcessor.servers[0].url=${mosip.api.external.url}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL NGINXDMZURL=${mosip.packet-receiver-service.url} From 97b2e1454da93143b09bfe9c602fe21f33431ca7 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 07:23:56 +0530 Subject: [PATCH 0452/1358] updated config. --- application-default.properties | 11 +++++------ pre-registration-default.properties | 2 +- print-default.properties | 3 --- registration-processor-default.properties | 4 +--- 4 files changed, 7 insertions(+), 13 deletions(-) diff --git a/application-default.properties b/application-default.properties index d38d71c6239..1bdaea88ea0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -37,6 +37,9 @@ ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b activemq.host=tcp://activemq activemq.core.port=80 +kafka.profile=default.svc.cluster.local +kafka.port=9092 + mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 mosip.admin-ui.url=http://admin-ui.default:80 @@ -53,10 +56,6 @@ mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.default:80 -mosip.kafka.url=http://kafka.default:80 -mosip.kafka-headless.url=http://kafka-headless.default:80 -mosip.kafka-zookeeper.url=http://kafka-zookeeper.default:80 -mosip.kafka-zookeeper-headless.url=http://kafka-zookeeper-headless.default:80 mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 @@ -149,7 +148,7 @@ s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 s3.region= - +config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ @@ -215,7 +214,7 @@ mosip.kernel.xsdfile=mosip-cbeff.xsd ## Applicant type mosip.kernel.applicant.type.age.limit = 5 mosip.kernel.applicantType.mvel.file=applicanttype.mvel -mosip.kernel.config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ + ## Various length parameters mosip.kernel.pin.length=6 diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 370b542139a..c22aad3cbdd 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -399,7 +399,7 @@ mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recapt mosip.security.csrf-enable:false mosip.security.cors-enable:false # Comma Separated Allowed Origins -mosip.security.origins:localhost:8080,localhost:4200,${mosipbox.public.url} +mosip.security.origins:localhost:8080,localhost:4200,${mosip.api.external.url} mosip.security.secure-cookie:false ## for prereg booking notification name validation diff --git a/print-default.properties b/print-default.properties index c1c6fdfa709..a37787632e7 100644 --- a/print-default.properties +++ b/print-default.properties @@ -74,8 +74,6 @@ mosip.optional-languages=fra,ara mosip.mandatory-languages=eng ## CBEFF util -# Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. -mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # Cbeff XSD file name in config server mosip.kernel.xsdfile=mosip-cbeff.xsd @@ -103,7 +101,6 @@ server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t" server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve registration.processor.unMaskedUin.length=5 -config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 62a29427eaf..d2eb7b6736d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -190,8 +190,6 @@ mosip.registration.processor.postalcode.req.url=${MASTER}/registrationcenters mosip.registration.processor.demographic.deduplication.enable=true -config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ - ## OSI validate registration.processor.applicant.dob.format=yyyy/MM/dd mosip.identity.auth.internal.requestid=mosip.identity.auth.internal @@ -506,7 +504,7 @@ mosip.regproc.eventbus.type=kafka #Kafka event bus config, will be used only when the type is kafka #Kafka cluster servers comma separated, common for all stages and camel -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default.svc.cluster.local:9092,kafka-1.kafka-headless.default.svc.cluster.local:9092,kafka-2.kafka-headless.default.svc.cluster.local:9092 +mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} # Stage Group Configuratoins # Default base packages for stage beans to be scanned in a stage group From 1c9a13841f18f6accd366d5d75d9711032c0c4cf Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 07:34:27 +0530 Subject: [PATCH 0453/1358] updated config. --- registration-processor-default.properties | 1 - syncdata-default.properties | 2 +- 2 files changed, 1 insertion(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d2eb7b6736d..8b2b31bcf29 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -9,7 +9,6 @@ # activemq.host # activemq.core.port -mosip.api.internal.url=https://${mosip.api.internal.host} registration.processor.zone=default ## Health check diff --git a/syncdata-default.properties b/syncdata-default.properties index 5b9f075adac..188c216d5e8 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -414,7 +414,7 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel-masterdata-se # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false -mosip.sync.entity.url.APPLICANTTYPE.MVEL=https://${mosip.api.internal.host}/v1/syncdata/scripts/applicanttype.mvel +mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.external.url}/v1/syncdata/scripts/applicanttype.mvel mosip.sync.entity.auth-required.APPLICANTTYPE.MVEL=true mosip.sync.entity.auth-token.APPLICANTTYPE.MVEL=Authorization:OAUTH mosip.sync.entity.encrypted.APPLICANTTYPE.MVEL=false From b7d594a9b590909358fc53343423f2d4885346f5 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 09:09:41 +0530 Subject: [PATCH 0454/1358] updated config. --- application-default-dmz.properties | 2 +- application-default.properties | 6 +++--- id-authentication-default.properties | 6 +++--- id-authentication-external-default.properties | 6 +++--- id-authentication-internal-default.properties | 6 +++--- id-authentication-otp-default.properties | 6 +++--- print-default.properties | 2 +- registration-processor-default-dmz.properties | 6 +++--- 8 files changed, 20 insertions(+), 20 deletions(-) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 3de03a1e1aa..c64f949c2cf 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -369,7 +369,7 @@ mosip.recommended.centers.locCode=6 mosip.default.user-preferred-language-attribute=preferredLang # URL to get new Auth Token from OIDC provider & to do online validation of auth token with OIDC provider. -auth.server.admin.issuer.uri=${mosipbox.public.url}/keycloak/auth/realms/ +auth.server.admin.issuer.uri=${mosip.api.external.url}/keycloak/auth/realms/ # Map to find the realm for the inputted appid to get the token from OIDC provider. mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} diff --git a/application-default.properties b/application-default.properties index 1bdaea88ea0..d24ea457607 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,8 +14,8 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.api.internal.url=${mosipbox.public.url} -mosip.api.external.url=${mosipbox.public.url} +mosip.api.internal.url=${mosip.api.external.url} +mosip.api.external.url=${mosip.api.external.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f @@ -115,7 +115,7 @@ mosip.regproc-status-service.url=http://regproc-registration-status-service:80 mosip.websub.url=${mosip.api.external.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 -keycloak.host=${mosip.keycloak.url} +keycloak.host=${mosip.api.external.url} mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f diff --git a/id-authentication-default.properties b/id-authentication-default.properties index a00bad0067d..616d7ab952a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -216,9 +216,9 @@ ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.template ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=${mosipbox.public.url}${ida-websub-auth-type-callback-relative-url} +ida-websub-auth-type-callback-url=${mosip.api.external.url}${ida-websub-auth-type-callback-relative-url} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=${mosipbox.public.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchage-callback-url=${mosip.api.external.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} @@ -234,7 +234,7 @@ ida-websub-partner-service-misp-license-generated-callback-relative-url=${server ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated ## Callback url for hotlist event ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=${mosipbox.public.url}${ida-websub-hotlist-callback-relative-url} +ida-websub-hotlist-callback-url=${mosip.api.external.url}${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index ae02ba0b445..cfdc535cb03 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosipbox.public.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.external.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosipbox.public.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.external.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosipbox.public.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.external.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 481ab0482c5..07bf51461dd 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -1,12 +1,12 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosipbox.public.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.external.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosipbox.public.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.external.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosipbox.public.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.external.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index 0c8bafa86ca..09579b4d31f 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosipbox.public.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.external.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosipbox.public.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.external.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosipbox.public.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.external.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/print-default.properties b/print-default.properties index a37787632e7..700fec2ea05 100644 --- a/print-default.properties +++ b/print-default.properties @@ -112,7 +112,7 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${mosipbox.public.url}/keycloak/auth/realms/mosip +mosip.iam.adapter.issuerURL=${mosip.api.external.url}/keycloak/auth/realms/mosip mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties index ef0db576212..fc0c776f28e 100644 --- a/registration-processor-default-dmz.properties +++ b/registration-processor-default-dmz.properties @@ -60,7 +60,7 @@ token.request.appid=regproc token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip +token.request.issuerUrl=${mosip.api.external.url}/keycloak/auth/realms/mosip # Request id to be used for various internal services mosip.registration.processor.digital.signature.id=io.mosip.registration.processor @@ -242,9 +242,9 @@ packet.default.source=id # the default schema field cagegory (ex - private) schema.default.fieldCategory=pvt -registration.processor.notification_service_subscriber_hub_url=${mosipbox.public.url}/hub/ +registration.processor.notification_service_subscriber_hub_url=${mosip.api.external.url}/hub/ registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 registration.processor.notification_service_subscriber_topic=registration_processor_workflow_completed_event -registration.processor.notification_service_subscriber_callback_url=${mosipbox.public.url}/registrationprocessor/v1/notification/callback/notify +registration.processor.notification_service_subscriber_callback_url=${mosip.api.external.url}/registrationprocessor/v1/notification/callback/notify mosip.regproc.message.tag.loading.disable=true \ No newline at end of file From cc8875ee7151381b5c3cce3ac4e6113ed5cbe7a8 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 09:15:10 +0530 Subject: [PATCH 0455/1358] updated config. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index d24ea457607..ae7e5bff910 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,8 +14,8 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.api.internal.url=${mosip.api.external.url} -mosip.api.external.url=${mosip.api.external.url} +mosip.api.internal.url=${mosipbox.public.url} +mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f From 6625172c3f895c6ed7b01bf6012bead556cff3ab Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 09:24:07 +0530 Subject: [PATCH 0456/1358] updated config. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index ae7e5bff910..3b8fbcde91a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -115,7 +115,7 @@ mosip.regproc-status-service.url=http://regproc-registration-status-service:80 mosip.websub.url=${mosip.api.external.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 -keycloak.host=${mosip.api.external.url} +keycloak.host=${mosip.api.external.url}/keycloak mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f From f0ac8657c4deac752c83b0142892af8762d012a5 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 09:43:39 +0530 Subject: [PATCH 0457/1358] updated config. --- application-default-dmz.properties | 2 ++ hazelcast-default-dmz.xml => hazelcast_default-dmz.xml | 0 2 files changed, 2 insertions(+) rename hazelcast-default-dmz.xml => hazelcast_default-dmz.xml (100%) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index c64f949c2cf..f7b0ab14134 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -3,6 +3,8 @@ aplication.configuration.level.version=LTS mz.ingress.base.url=http://mz.ingress:30080 mosip.keymanager.base.url=${mosip.kernel-keymanager-service.url} + + #Kernel-idobjectalidator # Plug in property source as either 'LOCAL' or 'CONFIG_SERVER' or 'APPLICATION_CONTEXT' through this key mosip.kernel.idobjectvalidator.property-source=APPLICATION_CONTEXT diff --git a/hazelcast-default-dmz.xml b/hazelcast_default-dmz.xml similarity index 100% rename from hazelcast-default-dmz.xml rename to hazelcast_default-dmz.xml From 45d06ccbf178f5c2daef06705f702feca1fe7807 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 09:50:30 +0530 Subject: [PATCH 0458/1358] updated config. --- hazelcast_default-dmz.xml => hazelcast_dmz-default-dmz.xml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename hazelcast_default-dmz.xml => hazelcast_dmz-default-dmz.xml (100%) diff --git a/hazelcast_default-dmz.xml b/hazelcast_dmz-default-dmz.xml similarity index 100% rename from hazelcast_default-dmz.xml rename to hazelcast_dmz-default-dmz.xml From 5564d2bca887d395f70b3523e829c7c716af30e4 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 23 Dec 2021 10:30:30 +0530 Subject: [PATCH 0459/1358] 3 language setup --- application-default-dmz.properties | 9 +++++---- application-default.properties | 13 +++++++------ registration-default.properties | 3 +++ 3 files changed, 15 insertions(+), 10 deletions(-) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index f7b0ab14134..0f27c15d791 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -34,7 +34,7 @@ mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registra mosip.country.code=WOR # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra # Application IDs mosip.prereg.app-id=PRE_REGISTRATION @@ -273,6 +273,7 @@ mosip.kernel.virus-scanner.port=80 #------------------------Transliteration----------------------------------------------- mosip.kernel.transliteration.arabic-language-code=ara +mosip.kernel.transliteration.franch-language-code=fra mosip.kernel.transliteration.english-language-code=eng @@ -288,7 +289,7 @@ mosip.login.mode= email,mobile #---Language orientation----- mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng +mosip.left_to_right_orientation=eng,fra @@ -363,8 +364,8 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve mosip.mandatory-languages=eng mosip.optional-languages=ara,eng -mosip.min-languages.count=1 -mosip.max-languages.count=2 +mosip.min-languages.count=2 +mosip.max-languages.count=3 mosip.recommended.centers.locCode=6 #Config key to pick the preferred language for communicating to the Resident diff --git a/application-default.properties b/application-default.properties index 3b8fbcde91a..8b842eb3304 100644 --- a/application-default.properties +++ b/application-default.properties @@ -189,8 +189,8 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,fra -mosip.right_to_left_orientation= +mosip.supported-languages=eng,ara,fra +mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng,fra ## Application IDs @@ -370,7 +370,8 @@ mosip.kernel.virus-scanner.port=80 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara -mosip.kernel.transliteration.franch-language-code= +mosip.kernel.transliteration.franch-language-code=fra +mosip.kernel.transliteration.english-language-code=eng ## DOB mosip.default.dob.month=01 @@ -506,11 +507,11 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.hub.url=${mosip.websub.url}/hub/ websub.publish.url=${mosip.websub.url}/hub/ -mosip.mandatory-languages=eng,fra +mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages= +mosip.optional-languages=ara,fra mosip.min-languages.count=2 -mosip.max-languages.count=2 +mosip.max-languages.count=3 # These are default languages used for sending notifications mosip.default.template-languages=eng,fra diff --git a/registration-default.properties b/registration-default.properties index 9a3a5146f06..70a00c3ba11 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -324,6 +324,9 @@ mosip.kernel.transliteration.arabic-language-code=ara #Language Code for French Language. Should not be modified mosip.kernel.transliteration.franch-language-code=fra +#Language Code for English Language. Should not be modified +mosip.kernel.transliteration.english-language-code=eng + #----For CBEFF Component---- #CBEFF XSD Storage URI. Should not be modified From 6efbf756be162fe1310dba961d78870176a48655 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 11:44:30 +0530 Subject: [PATCH 0460/1358] updated config. --- syncdata-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/syncdata-default.properties b/syncdata-default.properties index 188c216d5e8..9d2afab5f43 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -428,6 +428,8 @@ syncdata.cache.snapshot.cron=0 0 23 * * * mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager.unique.identifier.autoupdate=false + ## Roles mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From 13a22c3875f4b2d917ff4e5f1f1f70d5dc3cc741 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 12:05:11 +0530 Subject: [PATCH 0461/1358] updated config. --- admin-default.properties | 2 +- application-default-dmz.properties | 2 +- application-default.properties | 10 +++++----- id-authentication-default.properties | 10 +++++----- id-authentication-external-default.properties | 6 +++--- id-authentication-internal-default.properties | 6 +++--- id-authentication-otp-default.properties | 6 +++--- partner-management-default.properties | 2 +- pre-registration-default.properties | 2 +- print-default.properties | 2 +- registration-default.properties | 2 +- registration-processor-default-dmz.properties | 6 +++--- registration-processor-default.properties | 2 +- syncdata-default.properties | 2 +- 14 files changed, 30 insertions(+), 30 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 0fff3054455..1ca61084a9f 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -183,7 +183,7 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} #tempuri=https://admin.v3box1.mosip.net #mosip.admin-services.redirecturi=${tempuri}/v1/admin/login-redirect/ -mosip.admin-services.redirecturi=${mosip.api.external.url}/v1/admin/login-redirect/ +mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 0f27c15d791..4a0be38f021 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -372,7 +372,7 @@ mosip.recommended.centers.locCode=6 mosip.default.user-preferred-language-attribute=preferredLang # URL to get new Auth Token from OIDC provider & to do online validation of auth token with OIDC provider. -auth.server.admin.issuer.uri=${mosip.api.external.url}/keycloak/auth/realms/ +auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ # Map to find the realm for the inputted appid to get the token from OIDC provider. mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} diff --git a/application-default.properties b/application-default.properties index 8b842eb3304..d53ddb33543 100644 --- a/application-default.properties +++ b/application-default.properties @@ -15,7 +15,7 @@ aplication.configuration.level.version=LTS mosip.recommended.centers.locCode=5 mosip.api.internal.url=${mosipbox.public.url} -mosip.api.external.url=${mosipbox.public.url} +#mosip.api.external.url=${mosipbox.public.url} db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f @@ -110,12 +110,12 @@ mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.def mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.default:80 -mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage:80 -mosip.regproc-status-service.url=http://regproc-registration-status-service:80 -mosip.websub.url=${mosip.api.external.url} +mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.default:80 +mosip.regproc-status-service.url=http://regproc-registration-status-service.default:80 +mosip.websub.url=${mosip.api.internal.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 -keycloak.host=${mosip.api.external.url}/keycloak +keycloak.host=${mosip.keycloak.url}/keycloak/ mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 616d7ab952a..160e3700d60 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -216,9 +216,9 @@ ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.template ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=${mosip.api.external.url}${ida-websub-auth-type-callback-relative-url} +ida-websub-auth-type-callback-url=${mosip.api.internal.url}${ida-websub-auth-type-callback-relative-url} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=${mosip.api.external.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchage-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} @@ -234,7 +234,7 @@ ida-websub-partner-service-misp-license-generated-callback-relative-url=${server ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated ## Callback url for hotlist event ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=${mosip.api.external.url}${ida-websub-hotlist-callback-relative-url} +ida-websub-hotlist-callback-url=${mosip.api.internal.url}${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 @@ -487,7 +487,7 @@ mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} mosip.iam.adapter.clientsecret=${mosip.ida.auth.secretKey} mosip.iam.adapter.appid=${mosip.ida.auth.appId} -mosip.authmanager.client-token-endpoint=${mosip.api.external.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.api.internal.url}/v1/authmanager/authenticate/clientidsecretkey ## IDA key generator keymanager.persistence.jdbc.driver=org.postgresql.Driver @@ -556,7 +556,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.external.url},${mosip.api.external.url} +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},${mosip.api.internal.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index cfdc535cb03..9a2221ff31b 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.external.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.external.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.external.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 07bf51461dd..60dacdd2a52 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -1,12 +1,12 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.external.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.external.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.external.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index 09579b4d31f..9ba6e16ddfd 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.external.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.external.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.external.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 1674489b550..3f7bdb6d0d0 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -193,7 +193,7 @@ policy.auth.allowed.token.types=random,partner,policy mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} -mosip.iam.module.redirecturi=${mosip.api.external.url}/v1/partnermanager/login-redirect/ +mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c22aad3cbdd..47c40ed6cf4 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -399,7 +399,7 @@ mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recapt mosip.security.csrf-enable:false mosip.security.cors-enable:false # Comma Separated Allowed Origins -mosip.security.origins:localhost:8080,localhost:4200,${mosip.api.external.url} +mosip.security.origins:localhost:8080,localhost:4200,${mosip.api.internal.url} mosip.security.secure-cookie:false ## for prereg booking notification name validation diff --git a/print-default.properties b/print-default.properties index 700fec2ea05..ff305efd84c 100644 --- a/print-default.properties +++ b/print-default.properties @@ -112,7 +112,7 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${mosip.api.external.url}/keycloak/auth/realms/mosip +mosip.iam.adapter.issuerURL=${mosip.api.internal.url}/keycloak/auth/realms/mosip mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes diff --git a/registration-default.properties b/registration-default.properties index 70a00c3ba11..24d857edad3 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -364,7 +364,7 @@ mosip.registration.quality_check_with_sdk=N mosip.registration.replace_sdk_quality_score=N #URL for reset password -mosip.registration.reset_password_url=${mosip.api.external.url}/keycloak/auth/realms/mosip/account/ +mosip.registration.reset_password_url=${mosip.api.internal.url}/keycloak/auth/realms/mosip/account/ #Flag to check / bypass device cert validation mosip.registration.onboard_yourself_url=https://docs.mosip.io/platform/modules/registration-client/first-user-registration-and-onboarding diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties index fc0c776f28e..0bb508d0924 100644 --- a/registration-processor-default-dmz.properties +++ b/registration-processor-default-dmz.properties @@ -60,7 +60,7 @@ token.request.appid=regproc token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -token.request.issuerUrl=${mosip.api.external.url}/keycloak/auth/realms/mosip +token.request.issuerUrl=${mosip.api.internal.url}/keycloak/auth/realms/mosip # Request id to be used for various internal services mosip.registration.processor.digital.signature.id=io.mosip.registration.processor @@ -242,9 +242,9 @@ packet.default.source=id # the default schema field cagegory (ex - private) schema.default.fieldCategory=pvt -registration.processor.notification_service_subscriber_hub_url=${mosip.api.external.url}/hub/ +registration.processor.notification_service_subscriber_hub_url=${mosip.api.internal.url}/hub/ registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 registration.processor.notification_service_subscriber_topic=registration_processor_workflow_completed_event -registration.processor.notification_service_subscriber_callback_url=${mosip.api.external.url}/registrationprocessor/v1/notification/callback/notify +registration.processor.notification_service_subscriber_callback_url=${mosip.api.internal.url}/registrationprocessor/v1/notification/callback/notify mosip.regproc.message.tag.loading.disable=true \ No newline at end of file diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8b2b31bcf29..f6353257ae5 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -921,7 +921,7 @@ regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TE regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB -openapi.registrationProcessor.servers[0].url=${mosip.api.external.url}/registrationprocessor/v1/registrationtransaction +openapi.registrationProcessor.servers[0].url=${mosip.api.internal.url}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL NGINXDMZURL=${mosip.packet-receiver-service.url} diff --git a/syncdata-default.properties b/syncdata-default.properties index 9d2afab5f43..c022289c429 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -414,7 +414,7 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel-masterdata-se # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false -mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.external.url}/v1/syncdata/scripts/applicanttype.mvel +mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.internal.url}/v1/syncdata/scripts/applicanttype.mvel mosip.sync.entity.auth-required.APPLICANTTYPE.MVEL=true mosip.sync.entity.auth-token.APPLICANTTYPE.MVEL=Authorization:OAUTH mosip.sync.entity.encrypted.APPLICANTTYPE.MVEL=false From 8e6b33740830d5919b06e036f2e904ae941b8671 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 23 Dec 2021 12:56:08 +0530 Subject: [PATCH 0462/1358] masterdata fix --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index d53ddb33543..9c6b2f36fd8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -214,6 +214,7 @@ mosip.kernel.xsdfile=mosip-cbeff.xsd ## Applicant type mosip.kernel.applicant.type.age.limit = 5 mosip.kernel.applicantType.mvel.file=applicanttype.mvel +mosip.kernel.config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ ## Various length parameters From 54ff36f78a26cfce582f40526d3381f4701cca4c Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 13:59:31 +0530 Subject: [PATCH 0463/1358] updated config. --- application-default.properties | 4 ++++ id-authentication-default.properties | 2 ++ pre-registration-default.properties | 18 ++---------------- 3 files changed, 8 insertions(+), 16 deletions(-) diff --git a/application-default.properties b/application-default.properties index d53ddb33543..9ce6bd42294 100644 --- a/application-default.properties +++ b/application-default.properties @@ -117,6 +117,7 @@ mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 keycloak.host=${mosip.keycloak.url}/keycloak/ + mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.mosip.auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f @@ -135,9 +136,12 @@ mosip.mosip.datsha.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb702 mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.mpartner-default-auth.client.secret= keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d mosip.mosip.idrepo.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f + + mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 160e3700d60..b55a98fa4f2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -207,6 +207,8 @@ id-masterdata-template-service-multilang.rest.httpMethod=GET id-masterdata-template-service-multilang.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service-multilang.rest.timeout=${mosip.ida.request.timeout.secs} + + ## Websub ida-websub-authtype-callback-secret=${ida.websub.authtype.callback.secret} ida-websub-credential-issue-callback-secret=${ida.websub.credential.issue.callback.secret} diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 47c40ed6cf4..376d2f8335a 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -165,18 +165,6 @@ expiredStatus.url=${batch.resource.url}/expiredStatus batch.appointment.cancel=${batch.service.env}/preregistration/v1 ## Login service -secret_url.id=string -secret_url.requesttime=2018-12-10T06:12:52.994Z -secret_url.version=string -otp.request.flooding.duration=1 -otp.request.flooding.max-count=3 -datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX -mail-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/email/send -sms-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/sms/send -otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate -pre.reg.login.otp.sms.template=otp-sms-template -pre.reg.login.otp.mail.subject.template=otp-email-subject-template -pre.reg.login.otp.mail.content.template=otp-email-content-template mosip.pre.reg.clientId=mosip.pre.reg.clientId id-masterdata-template-service-multilang.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} @@ -193,7 +181,7 @@ regCenter.url=${masterdata.resource.url}/registrationcenters holiday.url=${masterdata.resource.url}/getregistrationcenterholidays/ holiday.exceptional.url=${masterdata.resource.url}/exceptionalholidays/ working.day.url=${masterdata.resource.url}/weekdays/ -mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/all?pageSize +mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/all?pageSize=50 ##Kernel Service URL for fetching templates resource.template.url=${masterdata.resource.url}/templates mosip.pre-registration.notification.id=mosip.pre-registration.notification.notify @@ -280,7 +268,6 @@ otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/g pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template -mosip.pre.reg.clientId=mosip.pre.reg.clientId ## Login service mosip.preregistration.login.service.version=1.0 @@ -310,8 +297,7 @@ mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${masterdata.reso mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${masterdata.resource.url}/documentcategories mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${masterdata.resource.url}/documenttypes/{documentcategorycode}/{langcode} mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${masterdata.resource.url}/locations/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${masterdata.resource.url}/locations/locationhierarchy/{hierarchyname} -mosip.kernel.idobjectvalidator.masterdata.documentcategories.lang.rest.uri=${masterdata.resource.url}/documentcategories/{langcode} +mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${masterdata.resource.url}/locations/locationhierarchy/{hierarchyname} ## Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator From 5878da100126b9b176aca69db18a78e6a8239527 Mon Sep 17 00:00:00 2001 From: Monobikash Das <M1045447@mindtree.com> Date: Thu, 23 Dec 2021 14:58:18 +0530 Subject: [PATCH 0464/1358] Updated manual-verification to manual-adjudication route --- ...tration-processor-camel-routes-lost-default.xml | 10 +++++----- ...stration-processor-camel-routes-new-default.xml | 14 +++++++------- ...n-processor-camel-routes-res-update-default.xml | 6 +++--- ...ation-processor-camel-routes-update-default.xml | 10 +++++----- 4 files changed, 20 insertions(+), 20 deletions(-) diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index c7ae8c2c665..278f1467030 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -286,8 +286,8 @@ <to uri="eventbus://abis-handler-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> - <to uri="eventbus://manual-verification-bus-in" /> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -363,9 +363,9 @@ <to uri="eventbus://abis-handler-bus-in" /> </otherwise> </route> - <route id="manual-verification-lost-->uin-generation lost route"> - <from uri="eventbus://manual-verification-lost-bus-out" /> - <log message="manual-verification-lost-->uin-generation lost route ${bodyAs(String)}" /> + <route id="manual-adjudication-lost-->uin-generation lost route"> + <from uri="eventbus://manual-adjudication-lost-bus-out" /> + <log message="manual-adjudication-lost-->uin-generation lost route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 87cdcb5ac47..70d8311cd61 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -284,8 +284,8 @@ <to uri="eventbus://abis-handler-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> - <to uri="eventbus://manual-verification-bus-in" /> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> </when> <otherwise> <to uri="eventbus://bio-dedupe-bus-in" /> @@ -351,8 +351,8 @@ <to uri="eventbus://abis-handler-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> - <to uri="eventbus://manual-verification-bus-in" /> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -401,9 +401,9 @@ </otherwise> </choice> </route> - <route id="manual-verification-->uin-generation new route"> - <from uri="eventbus://manual-verification-new-bus-out" /> - <log message="manual-verification-->uin-generation new route ${bodyAs(String)}" /> + <route id="manual-adjudication-->uin-generation new route"> + <from uri="eventbus://manual-adjudication-new-bus-out" /> + <log message="manual-adjudication-->uin-generation new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index 26b4ac736e6..09fe9701bd5 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -158,9 +158,9 @@ </otherwise> </choice> </route> - <route id="manual-verification-->uin-generation res_update route"> - <from uri="eventbus://manual-verification-res_update-bus-out" /> - <log message="manual-verification-->uin-generation res_update route ${bodyAs(String)}" /> + <route id="manual-adjudication-->uin-generation res_update route"> + <from uri="eventbus://manual-adjudication-res_update-bus-out" /> + <log message="manual-adjudication-->uin-generation res_update route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 4be966b2cde..e8be3d24ba9 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -308,8 +308,8 @@ <to uri="eventbus://abis-handler-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-verification-bus-in')]</jsonpath> - <to uri="eventbus://manual-verification-bus-in" /> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> </when> <otherwise> <to uri="eventbus://bio-dedupe-bus-in" /> @@ -421,9 +421,9 @@ </otherwise> </choice> </route> - <route id="manual-verification-->uin-generation update route"> - <from uri="eventbus://manual-verification-update-bus-out" /> - <log message="manual-verification-->uin-generation update route ${bodyAs(String)}" /> + <route id="manual-adjudication-->uin-generation update route"> + <from uri="eventbus://manual-adjudication-update-bus-out" /> + <log message="manual-adjudication-->uin-generation update route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> From 405eed43311c108c985f25280fc44f17308b856c Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 15:32:49 +0530 Subject: [PATCH 0465/1358] updated config. --- application-default.properties | 2 +- pre-registration-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 638cea2eaf3..9fc70b552a0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -116,7 +116,7 @@ mosip.websub.url=${mosip.api.internal.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 keycloak.host=${mosip.keycloak.url}/keycloak/ - +keycloak.external.host=${mosip.api.internal.url}/keycloak/ mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 376d2f8335a..b7c9fd1ea85 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -282,7 +282,7 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -iam.base.url=${keycloak.host} +iam.base.url=${keycloak.external.host} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration validationStatus=success context=auth-otp From 2f0497f724576b697e9eb979d2e0b67a63315e1c Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 15:37:20 +0530 Subject: [PATCH 0466/1358] updated config. --- id-authentication-default.properties | 5 ----- 1 file changed, 5 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index b55a98fa4f2..f41f0a10b7d 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -54,7 +54,6 @@ javax.persistence.jdbc.uinEncryptTable=uin_encrypt_salt hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.hbm2ddl.auto=none -hibernate.show_sql=true hibernate.format_sql=true hibernate.connection.charSet=utf8 hibernate.cache.use_second_level_cache=false @@ -64,7 +63,6 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never hibernate.temp.use_jdbc_metadata_defaults=false spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true - log4j.logger.org.hibernate=warn hibernate.show_sql=false @@ -272,9 +270,6 @@ ida-topic-masterdata-titles=MASTERDATA_TITLES ida-topic-pmp-misp-license-generated=MISP_LICENSE_GENERATED ida-topic-pmp-misp-license-updated=MISP_LICENSE_UPDATED ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED -ida-topic-pmp-partner-updated=PARTNER_UPDATED -ida-topic-pmp-partner-api-key-updated=APIKEY_UPDATED -ida-topic-pmp-policy-updated=POLICY_UPDATED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE From 8839ef1c8384fd4a72705ec3be1c864eb3ffa614 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 15:52:10 +0530 Subject: [PATCH 0467/1358] updated config. --- admin-default.properties | 8 ++++---- kernel-default.properties | 16 ++++++++-------- partner-management-default.properties | 12 ++++++------ syncdata-default.properties | 18 +++++++++--------- 4 files changed, 27 insertions(+), 27 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 1ca61084a9f..e650588b0ee 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -186,8 +186,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${mosip.open-id.base-url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.external.hostl}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -207,9 +207,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client diff --git a/kernel-default.properties b/kernel-default.properties index 41b446ae260..5d35e73c432 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -211,25 +211,25 @@ ridgenerator_database_password=${db.dbuser.password} mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/auth/admin/realms/{realmId} -mosip.iam.admin-url=${mosip.iam.base-url}/auth/admin/ +mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.host}/auth/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.host}/auth/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${mosip.iam.base-url}/auth +keycloak.auth-server-url=${keycloak.host}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls diff --git a/partner-management-default.properties b/partner-management-default.properties index 3f7bdb6d0d0..bcec7602a81 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -134,14 +134,14 @@ pms.certs.datashare.subscriberId=mpartner-default-cert ## Keycloak # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.base-url=${keycloak.host} -mosip.iam.realm.operations.base-url = ${mosip.iam.base-url}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${mosip.iam.base-url}/auth/admin/ + +mosip.iam.realm.operations.base-url = ${keycloak.host}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.host}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli @@ -196,10 +196,10 @@ mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy diff --git a/syncdata-default.properties b/syncdata-default.properties index c022289c429..476e58271ce 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -210,9 +210,9 @@ ridgenerator_database_password=${db.dbuser.password} mosip.iam.base-url=${keycloak.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${mosip.iam.base-url}/admin/realms/{realmId} -mosip.iam.admin-url=${mosip.iam.base-url}/admin/ +mosip.iam.open-id-url =${keycloak.external.host}/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.host}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.host}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -221,7 +221,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${mosip.iam.base-url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -229,16 +229,16 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${mosip.iam.base-url} +keycloak.auth-server-url=${keycloak.host}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/realms/{realmId}/protocol/openid-connect/token -mosip.iam.authorization_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base-url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.external.host}/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.host}/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 12e74815754eef8aff4d2cec5e26c5aff5c9d8ef Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 15:52:46 +0530 Subject: [PATCH 0468/1358] updated config. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 9fc70b552a0..6e02698c6fc 100644 --- a/application-default.properties +++ b/application-default.properties @@ -115,8 +115,8 @@ mosip.regproc-status-service.url=http://regproc-registration-status-service.defa mosip.websub.url=${mosip.api.internal.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 -keycloak.host=${mosip.keycloak.url}/keycloak/ -keycloak.external.host=${mosip.api.internal.url}/keycloak/ +keycloak.host=${mosip.keycloak.url}/keycloak +keycloak.external.host=${mosip.api.internal.url}/keycloak mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f From 5c6c217e7142ef25b4da860bef3c6919909e3b13 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 16:15:33 +0530 Subject: [PATCH 0469/1358] updated config. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 6e02698c6fc..1ef5d7e7665 100644 --- a/application-default.properties +++ b/application-default.properties @@ -115,7 +115,7 @@ mosip.regproc-status-service.url=http://regproc-registration-status-service.defa mosip.websub.url=${mosip.api.internal.url} mz.ingress.base.url=http://mz.ingress:30080 dmz.ingress.base.url=http://dmz.ingress:30080 -keycloak.host=${mosip.keycloak.url}/keycloak +keycloak.host=${mosip.api.internal.url}/keycloak keycloak.external.host=${mosip.api.internal.url}/keycloak mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 @@ -313,7 +313,7 @@ mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true -mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} +#mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} ## Crypto From de4b1a57cd77db9ee78c9c6087f05e39a3369ff1 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 16:19:28 +0530 Subject: [PATCH 0470/1358] updated config. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 1ef5d7e7665..c096fdaa7d5 100644 --- a/application-default.properties +++ b/application-default.properties @@ -313,7 +313,7 @@ mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true -#mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} +mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} ## Crypto From ffd11974483aa50f5815bd5c860bf5e45df85281 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 16:52:00 +0530 Subject: [PATCH 0471/1358] updated config. --- application-default.properties | 2 -- kernel-default.properties | 2 +- 2 files changed, 1 insertion(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index c096fdaa7d5..298929b6ca8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -155,8 +155,6 @@ s3.region= config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ - - #-------------------------------------------------------------------------------------------------- #mosip.masterdata.base.url = http://masterdata.kernel #mosip.syncdata.base.url=http://syncdata.kernel diff --git a/kernel-default.properties b/kernel-default.properties index 5d35e73c432..5936412dd7c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -402,7 +402,7 @@ mosip.kernel.keymanager.113nothumbprint.support=false # Pause & resume api proeprties PACKET_RESUME_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflowaction PACKET_PAUSE_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflow/search -KEYBASEDTOKENAPI=${mosip.kernel-syncdata-service.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey ## resubscription and subscription initial delay for masterdata service masterdata.websub.resubscription.delay.millis=48000000 From 97f1ba415f1b124d40b235d7e42b5a5c56493f69 Mon Sep 17 00:00:00 2001 From: Mayura Deshmukh <52281514+mayuradesh@users.noreply.github.com> Date: Thu, 23 Dec 2021 17:13:09 +0530 Subject: [PATCH 0472/1358] changed applicant mvel as per develop2 --- applicanttype.mvel | 97 ++++++++++++++++++++++++++++++++-------------- 1 file changed, 68 insertions(+), 29 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 535f9fc5e8f..69da629d5dc 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -9,8 +9,9 @@ import java.time.temporal.ValueRange; import java.util.regex.Matcher; import java.util.regex.Pattern; -String CHILD = "CHL"; -String ADULT = "ADL"; +String CHILD = "INFANT"; +String ADULT = "ADULT"; +String MINOR = "MINOR"; String MALE = 'MLE'; String FEMALE = 'FLE'; String NonResident = "FR"; @@ -76,7 +77,7 @@ def getAgeCode(identity) { } } - return ageGroup == null ? null : (ageGroup == 'INFANT' ? CHILD : ADULT); + return ageGroup == null ? null : ageGroup; } @@ -95,59 +96,97 @@ def getApplicantType() { if( ageCode == 'KER-MSD-151' ) { return "KER-MSD-151"; } if(itc == null || genderType == null || ageCode == null || isBioExPresent == null ) { - return isUpdateFlow(identity) ? "A000" : "KER-MSD-147"; + return isUpdateFlow(identity) ? "000" : "KER-MSD-147"; } System.out.println(itc + " - " + genderType + " - " + ageCode + " - " + isBioExPresent); if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "A001"; + return "001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "A002"; + return "002"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "A003"; + return "003"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "A004"; + return "004"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "A005"; + return "005"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "A006"; + return "006"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "A007"; + return "007"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "A008"; + return "008"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "A005"; + return "005"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "A006"; + return "006"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "A007"; + return "007"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "A008"; + return "008"; } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "A009"; + return "009"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "A010"; + return "010"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "A011"; + return "011"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "A012"; + return "012"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "A013"; + return "013"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "A016"; + return "016"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "A013"; + return "013"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "A016"; + return "016"; + } + + else if (itc == NonResident && genderType == MALE && ageCode == MINOR && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == MALE && ageCode == MINOR && isBioExPresent) { + return "015"; + } + + else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && isBioExPresent) { + return "015"; + } + + else if (itc == NonResident && genderType == Others && ageCode == MINOR && isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == Others && ageCode == MINOR && isBioExPresent) { + return "015"; + } + + else if (itc == NonResident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { + return "015"; } - return "A000"; + + else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { + return "015"; + } + + else if (itc == NonResident && genderType == Others && ageCode == MINOR && !isBioExPresent) { + return "014"; + } else if (itc == Resident && genderType == Others && ageCode == MINOR && !isBioExPresent) { + return "015"; + } + + + return "000"; } From 4f46242997e157eaef571cd6302162f8a49e1422 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 23 Dec 2021 17:17:06 +0530 Subject: [PATCH 0473/1358] updated config. --- application-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 298929b6ca8..67c85bac769 100644 --- a/application-default.properties +++ b/application-default.properties @@ -136,10 +136,11 @@ mosip.mosip.datsha.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb702 mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.mpartner-default-auth.client.secret= keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d mosip.mosip.idrepo.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f - +mosip.mosip.syncdata.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.mpartner-default-auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +mosip.mosip.mpartner-default-print.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 From de7d43facdd0266c51a9232f746821a23cb93715 Mon Sep 17 00:00:00 2001 From: Monobikash Das <M1045447@mindtree.com> Date: Thu, 23 Dec 2021 18:01:24 +0530 Subject: [PATCH 0474/1358] corrected host --- application-default.properties | 2 +- registration-processor-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 638cea2eaf3..e44afaaf3f1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -370,7 +370,7 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.host=clamav mosip.kernel.virus-scanner.port=80 ## Transliteration diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f6353257ae5..3781731e8c2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -233,7 +233,7 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.host=clamav mosip.kernel.virus-scanner.port=80 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 From 0b3d2722dd7eff583dbb7a015e41e1a347c00f2f Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 09:49:57 +0530 Subject: [PATCH 0475/1358] updated config. --- partner-management-default.properties | 16 +++++++++------- 1 file changed, 9 insertions(+), 7 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index bcec7602a81..e96733c981e 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -155,6 +155,15 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=15 +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=15 +#this should be false if you don't use this restTemplate true if you do +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable= false #To populate required roles which should be allowed in UI.(Roles are nothing but partner types) mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN @@ -165,13 +174,6 @@ mosip.pms.misp.partner.type=MISP_Partner # Role for partner admin = mosip.pms.partneradmin.role=PARTNER_ADMIN -#To populate required roles which should be allowed in UI.(Roles are nothing but partner types) -mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN -# To configure misp partner type -mosip.pms.misp.partner.type=MISP_Partner -# Role for partner admin = -mosip.pms.partneradmin.role=PARTNER_ADMIN - ## Security mosip.security.csrf-enable:false mosip.security.secure-cookie:false From 4b8b26a9e584ee2c9badad7d01ea15ffa142b358 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 10:05:39 +0530 Subject: [PATCH 0476/1358] updated config. --- application-default.properties | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 251c99303ed..49fc1d2513c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -40,6 +40,9 @@ activemq.core.port=80 kafka.profile=default.svc.cluster.local kafka.port=9092 + +mz.ingress.base.url=http://mz.ingress:30080 +dmz.ingress.base.url=http://dmz.ingress:30080 mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 mosip.admin-service.url=http://admin-service.default:80 mosip.admin-ui.url=http://admin-ui.default:80 @@ -112,9 +115,7 @@ mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.default:80 mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.default:80 mosip.regproc-status-service.url=http://regproc-registration-status-service.default:80 -mosip.websub.url=${mosip.api.internal.url} -mz.ingress.base.url=http://mz.ingress:30080 -dmz.ingress.base.url=http://dmz.ingress:30080 +mosip.websub.url=${dmz.ingress.base.url} keycloak.host=${mosip.api.internal.url}/keycloak keycloak.external.host=${mosip.api.internal.url}/keycloak @@ -511,6 +512,7 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.hub.url=${mosip.websub.url}/hub/ websub.publish.url=${mosip.websub.url}/hub/ + mosip.mandatory-languages=eng ## Leave blank if no optional langauges mosip.optional-languages=ara,fra From 178924578de7e74cae61a6361347285fe3c3ccb7 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 10:11:30 +0530 Subject: [PATCH 0477/1358] updated config. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 49fc1d2513c..d60da9e7d15 100644 --- a/application-default.properties +++ b/application-default.properties @@ -115,7 +115,7 @@ mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.default:80 mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.default:80 mosip.regproc-status-service.url=http://regproc-registration-status-service.default:80 -mosip.websub.url=${dmz.ingress.base.url} +mosip.websub.url=${mosip.api.internal.url} keycloak.host=${mosip.api.internal.url}/keycloak keycloak.external.host=${mosip.api.internal.url}/keycloak From 505d85420a2833258babb22d744d4680516e9b79 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 10:34:31 +0530 Subject: [PATCH 0478/1358] updated config. --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index 45e262c3ce8..9f80581d0fc 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -31,6 +31,6 @@ mosip.data.share.includeCertificateHash=false mosip.data.share.includeCertificate=false mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 -mosip.data.share.prependThumbprint=true +mosip.data.share.prependThumbprint=false auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client From b1ff380b4d7810cd4e8b25e724ffe322abe80a40 Mon Sep 17 00:00:00 2001 From: Manoj SP <Manoj.SP@mindtree.com> Date: Fri, 24 Dec 2021 10:59:08 +0530 Subject: [PATCH 0479/1358] [MOSIP-19025] Updated idrepo properties for keycloack auth --- application-default.properties | 2 +- credential-request-default.properties | 2 +- credential-service-default.properties | 3 +- id-repository-default.properties | 71 +++++++++++---------------- kernel-default.properties | 8 +-- 5 files changed, 35 insertions(+), 51 deletions(-) diff --git a/application-default.properties b/application-default.properties index d60da9e7d15..ebacc620ed1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -314,7 +314,7 @@ mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} -mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} ## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING diff --git a/credential-request-default.properties b/credential-request-default.properties index 9c893b7fe00..a1b46b8e7be 100644 --- a/credential-request-default.properties +++ b/credential-request-default.properties @@ -1,6 +1,6 @@ #IDRepo credential request generator authentication detalis mosip.idrepo.credential-req-generator.auth.client-id=mosip-crereq-client -mosip.idrepo.credential-req-generator.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential-req-generator.auth.secret-key=${mosip.mosip.crereq.client.secret} mosip.idrepo.credential-req-generator.auth.app-id=crereq #------------------------- Kernel Auth Adapter self token generator properties ----------------------------# diff --git a/credential-service-default.properties b/credential-service-default.properties index aa4dae0fcbb..f44e7cbc60d 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -1,9 +1,8 @@ #IDRepo credential service authentication detalis mosip.idrepo.credential.auth.client-id=mosip-creser-client -mosip.idrepo.credential.auth.secret-key={cipher}b5fb76d3a57ce10fc27aee1685ce906836970d52c4cf13a01282bfe99565bedf +mosip.idrepo.credential.auth.secret-key=${mosip.mosip.creser.client.secret} mosip.idrepo.credential.auth.app-id=creser - #------------------------- Kernel Auth Adapter self token generator properties ----------------------------# mosip.iam.adapter.clientid.credential-service=${mosip.idrepo.credential.auth.client-id} mosip.iam.adapter.clientsecret.credential-service=${mosip.idrepo.credential.auth.secret-key} diff --git a/id-repository-default.properties b/id-repository-default.properties index d0a3fcb0161..ed0d4048c6e 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -31,21 +31,9 @@ mosip.idrepo.auth.client-id=mosip-idrepo-client mosip.idrepo.auth.secret-key=${mosip.mosip.idrepo.client.secret} mosip.idrepo.auth.app-id=idrepo -#IDRepo credential service authentication detalis -mosip.idrepo.credential.auth.client-id=mosip-creser-client -mosip.idrepo.credential.auth.secret-key=${mosip.mosip.creser.client.secret} -mosip.idrepo.credential.auth.app-id=creser - -#IDRepo credential request generator authentication detalis -mosip.idrepo.credential-req-generator.auth.client-id=mosip-crereq-client -mosip.idrepo.credential-req-generator.auth.secret-key=${mosip.mosip.crereq.client.secret} -mosip.idrepo.credential-req-generator.auth.app-id=crereq - # For auditing mosip.idrepo.application.name=ID-Repository mosip.idrepo.application.version.pattern=^v\\d+(\\.\\d+)?$ -# Modulo value used to evaluate expression (UIN % modulo) used to get the salt from salt table -mosip.idrepo.modulo-value=1000 # Configuration for +/- time period adjustment in minutes for the request time validation, so that #the requests originating from a system that is not in time-sync will be accepted for the time period mosip.idrepo.datetime.future-time-adjustment=2 @@ -183,6 +171,7 @@ mosip.idrepo.credential.request.rest.uri=${mosip.idrepo-credential-request-gener mosip.idrepo.credential.request.rest.httpMethod=POST mosip.idrepo.credential.request.rest.headers.mediaType=application/json mosip.idrepo.credential.request.rest.timeout=100 + mosip.idrepo.credential.cancel-request.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/cancel/{requestId} mosip.idrepo.credential.cancel-request.rest.httpMethod=GET mosip.idrepo.credential.cancel-request.rest.headers.mediaType=application/json @@ -215,7 +204,7 @@ mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE ## Auth adapter mosip.iam.adapter.clientid.id-repository=${mosip.idrepo.auth.client-id} -mosip.iam.adapter.clientsecret.id-repository=${mosip.mosip.reg.client.secret} +mosip.iam.adapter.clientsecret.id-repository=${mosip.idrepo.auth.secret-key} mosip.iam.adapter.appid.id-repository=${mosip.idrepo.auth.app-id} mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey @@ -248,7 +237,7 @@ hibernate.show_sql=false # Token generator properties credential.request.token.request.appid=${mosip.idrepo.credential-req-generator.auth.app-id} credential.request.token.request.clientId=${mosip.idrepo.credential-req-generator.auth.client-id} -credential.request.token.request.secretKey=${mosip.mosip.reg.client.secret} +credential.request.token.request.secretKey=${mosip.idrepo.credential-req-generator.auth.secret-key} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator credential.request.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip @@ -280,6 +269,8 @@ credential.request.reprocess.locktimeout=60000 CRDENTIALSERVICE=${mosip.idrepo-credential-service.url}/v1/credentialservice/issue KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey CALLBACKURL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/callback/notifyStatus +ENCRYPTION=${mosip.idrepo.encryptor.rest.uri} +DECRYPTION=${mosip.idrepo.decryptor.rest.uri} # Websub #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. @@ -372,12 +363,6 @@ id-repo-ida-credential-recepiant=IDA mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} -## Auth token generator -auth-token-generator.rest.uri=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey -auth-token-generator.rest.appId=regproc -auth-token-generator.rest.clientId=mosip-regproc-client -auth-token-generator.rest.secretKey=${mosip.mosip.regproc.client.secret} - # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false @@ -388,33 +373,33 @@ springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha # Roles -mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST -mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST +mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST,ID_REPOSITORY +mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST,ID_REPOSITORY mosip.role.idrepo.credentialrequest.getgetrequestid=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.getgetrequestids=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.putretriggerrequestid=CREDENTIAL_REQUEST mosip.role.idrepo.credentialservice.postissue=CREDENTIAL_REQUEST -mosip.role.idrepo.identity.postidrepo=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.getidvidid=REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION -mosip.role.idrepo.identity.patchidrepo=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.getauthtypesstatusindividualidtypeindividualid=RESIDENT -mosip.role.idrepo.identity.postauthtypesstatus=RESIDENT -mosip.role.idrepo.identity.postdraftcreateregistrationId=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.patchdraftupdateregistrationId=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.getdraftpublishregistrationId=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.draftregistrationId=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR -mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR - -mosip.role.idrepo.vid.postvid=RESIDENT,REGISTRATION_PROCESSOR -mosip.role.idrepo.vid.getvid=REGISTRATION_PROCESSOR,ID_AUTHENTICATION,RESIDENT -mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR -mosip.role.idrepo.vid.patchvid=ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT -mosip.role.idrepo.vid.postvidregenerate=RESIDENT -mosip.role.idrepo.vid.postviddeactivate=RESIDENT -mosip.role.idrepo.vid.postvidreactivate=RESIDENT -mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR +mosip.role.idrepo.identity.postidrepo=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.getidvidid=REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION,ID_REPOSITORY +mosip.role.idrepo.identity.patchidrepo=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.getauthtypesstatusindividualidtypeindividualid=RESIDENT,ID_REPOSITORY +mosip.role.idrepo.identity.postauthtypesstatus=RESIDENT,ID_REPOSITORY +mosip.role.idrepo.identity.postdraftcreateregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.patchdraftupdateregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.getdraftpublishregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.draftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY + +mosip.role.idrepo.vid.postvid=RESIDENT,REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.vid.getvid=REGISTRATION_PROCESSOR,ID_AUTHENTICATION,RESIDENT,ID_REPOSITORY +mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.vid.patchvid=ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT,ID_REPOSITORY +mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY +mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY +mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY +mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY diff --git a/kernel-default.properties b/kernel-default.properties index 5936412dd7c..64c0dd228d9 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -651,7 +651,7 @@ mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,ID_REPOSITORY mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN @@ -717,15 +717,15 @@ mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESI mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT -mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN,ID_REPOSITORY mosip.role.keymanager.postcssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postcsverifysign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmsigningpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmencryptionpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT From 65f31494ce8fd638931e6784585a48eaea937a01 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 11:55:10 +0530 Subject: [PATCH 0480/1358] updated config. --- admin-default.properties | 2 +- application-default.properties | 7 +++---- data-share-default.properties | 2 +- id-repository-default.properties | 4 ++-- kernel-default.properties | 8 ++++---- partner-management-default.properties | 4 ++-- print-default.properties | 5 ++--- registration-processor-default.properties | 2 +- syncdata-default.properties | 23 ++++++----------------- 9 files changed, 22 insertions(+), 35 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index e650588b0ee..6c0ecb0e116 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -174,7 +174,7 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/au # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined -mosip.open-id.base-url=${keycloak.host} +mosip.open-id.base-url=${keycloak.external.host} mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code diff --git a/application-default.properties b/application-default.properties index ebacc620ed1..d482175ed32 100644 --- a/application-default.properties +++ b/application-default.properties @@ -116,7 +116,6 @@ mosip.packetmanager-service.url=http://packetmanager-service.default:80 mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.default:80 mosip.regproc-status-service.url=http://regproc-registration-status-service.default:80 mosip.websub.url=${mosip.api.internal.url} -keycloak.host=${mosip.api.internal.url}/keycloak keycloak.external.host=${mosip.api.internal.url}/keycloak mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 @@ -306,9 +305,9 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.host}/auth/realms/ -auth-token-generator.rest.issuerUrl=${keycloak.host}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.host}/auth/realms/mosip +auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ +auth-token-generator.rest.issuerUrl=${keycloak.external.host}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.external.host}/auth/realms/mosip #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter diff --git a/data-share-default.properties b/data-share-default.properties index 9f80581d0fc..5e886b17ff7 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -24,7 +24,7 @@ data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare -data.share.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip +data.share.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB mosip.data.share.protocol=http mosip.data.share.includeCertificateHash=false diff --git a/id-repository-default.properties b/id-repository-default.properties index ed0d4048c6e..e5c168583ae 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -240,7 +240,7 @@ credential.request.token.request.clientId=${mosip.idrepo.credential-req-generato credential.request.token.request.secretKey=${mosip.idrepo.credential-req-generator.auth.secret-key} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator -credential.request.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip +credential.request.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip mosip.credential.request.service.id=mosip.credential.request.generator mosip.credential.request.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.request.service.version=1.0 @@ -324,7 +324,7 @@ KEYMANAGER_ENCRYPT_PIN=${mosip.kernel-keymanager-service.url}/v1/keymanager/encr KEYMANAGER_ENCRYPT_ZK=${mosip.kernel-keymanager-service.url}/v1/keymanager/zkEncrypt PARTNER_POLICY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies PARTNER_EXTRACTION_POLICY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} -credential.service.token.request.issuerUrl=${keycloak.host}/auth/realms/mosip +credential.service.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip # BioSDK service mosip.biosdk.default.service.url=${mosip.mock-biosdk-service.url}/biosdk-service diff --git a/kernel-default.properties b/kernel-default.properties index 64c0dd228d9..7d9dfe596c1 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -208,19 +208,19 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.host} +mosip.iam.base-url=${keycloak.external.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.host}/auth/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.host}/auth/admin/ +mosip.iam.realm.operations.base-url=${keycloak.external.host}/auth/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.external.host}/auth/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.host}/auth +keycloak.auth-server-url=${keycloak.external.host}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true diff --git a/partner-management-default.properties b/partner-management-default.properties index e96733c981e..5ce69ab79ef 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -135,8 +135,8 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.host}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.host}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.external.host}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.external.host}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users diff --git a/print-default.properties b/print-default.properties index ff305efd84c..631f125ff94 100644 --- a/print-default.properties +++ b/print-default.properties @@ -6,8 +6,7 @@ # print.websub.hub.secret ## Websub -websub.base.url=${mosip.websub.url} -mosip.event.hubURL=${websub.base.url}/hub +mosip.event.hubURL=${mosip.websub.url}/hub mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident @@ -27,7 +26,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 3781731e8c2..af527fee060 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -78,7 +78,7 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits diff --git a/syncdata-default.properties b/syncdata-default.properties index 476e58271ce..11d61e6d95b 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -207,12 +207,12 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.host} +mosip.iam.base-url=${keycloak.external.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.external.host}/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.host}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.host}/admin/ +mosip.iam.open-id-url =${keycloak.external.host}//auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.external.host}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.external.host}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -221,7 +221,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -229,14 +229,12 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.host}/auth +keycloak.auth-server-url=${keycloak.external.host}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.external.host}/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.host}/realms/{realmId}/protocol/openid-connect/token mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code @@ -266,13 +264,6 @@ mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.authmanager.base-url=${mosip.kernel-auditmanager-service.url}/v1/authmanager -mosip.admin.login_flow.name=authorization_code -mosip.admin.login_flow.response_type=code -mosip.admin.login_flow.scope=cls -mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} -mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ -mosip.admin_realm_id=mosip master.search.maximum.rows=50 mosip.level=2 @@ -358,8 +349,6 @@ mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,RE ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 -datastores=db_1_DS,db_2_DS - mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident # Keymanager service keystore cache properties From 818267321c58cb2e3d44a97f16a0b6d260a1a3bb Mon Sep 17 00:00:00 2001 From: Vishwa <visu.vs1@gmail.com> Date: Fri, 24 Dec 2021 12:37:42 +0530 Subject: [PATCH 0481/1358] MOSIP-18060 : Config added for client crypto to use resident keys and resident role added to machine search api --- kernel-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 7d9dfe596c1..aa050763479 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -64,6 +64,8 @@ mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.pin} +# Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets +mosip.kernel.client.crypto.use-resident-service-module-key=true ## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log @@ -580,7 +582,7 @@ mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_AD mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN From 6c2122e371692c3b9d979b60c573e13969c24b1e Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 13:22:16 +0530 Subject: [PATCH 0482/1358] updated config. --- data-share-default.properties | 2 +- resident-default.properties | 2 +- syncdata-default.properties | 3 +-- 3 files changed, 3 insertions(+), 4 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 5e886b17ff7..cbfbf12e82d 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -10,7 +10,7 @@ mosip.data.share.service.version=1.0 CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign PARTNER_POLICY=${mosip.pms-policy-manager-service.url}/v1/policymanager/policies/{policyId}/partner/{partnerId} -KEYBASEDTOKENAPI=${mosip.kernel-auditmanager-service.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey data.share.application.id=PARTNER diff --git a/resident-default.properties b/resident-default.properties index 9bb4d25defb..28e5e591da3 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -39,7 +39,7 @@ resident.secretKey=${mosip.mosip.resident.client.secret} token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services -KERNELAUTHMANAGER=${mosip.kernel-auditmanager-service.url}/v1/authmanager/authenticate/clientidsecretkey +KERNELAUTHMANAGER=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=${mosip.regproc-print-service.url}/registrationprocessor/v1/print/uincard INTERNALAUTH=${mosip.ida-internal-service.url}/idauthentication/v1/internal/auth INTERNALAUTHTRANSACTIONS=${mosip.ida-internal-service.url}/idauthentication/v1/internal/authTransactions diff --git a/syncdata-default.properties b/syncdata-default.properties index 11d61e6d95b..d0976efd8cf 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -24,7 +24,6 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest -mosip.kernel.masterdata.locationhierarchylevels.uri =${mosip.kernel-masterdata-service.url}/v1/masterdata/locationHierarchyLevels ## SMS notification mosip.kernel.sms.enabled=false @@ -263,7 +262,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel-auditmanager-service.url}/v1/authmanager +mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager master.search.maximum.rows=50 mosip.level=2 From 0f7926735c69f4d602076d5976e2480f0e80befb Mon Sep 17 00:00:00 2001 From: Vishwa <visu.vs1@gmail.com> Date: Fri, 24 Dec 2021 13:44:05 +0530 Subject: [PATCH 0483/1358] MOSIP-18060 : Added resident role to create machines --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index aa050763479..92a309e6ac5 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -585,7 +585,7 @@ mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PR mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN From ae6394f13d5a267108f2e118cbdeca23a9f06883 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 14:08:02 +0530 Subject: [PATCH 0484/1358] updated config. --- id-authentication-default.properties | 8 ++++---- id-authentication-external-default.properties | 6 +++--- id-authentication-internal-default.properties | 6 +++--- id-authentication-otp-default.properties | 6 +++--- kernel-default.properties | 3 +-- print-default.properties | 2 +- 6 files changed, 15 insertions(+), 16 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f41f0a10b7d..ae6d1e323b0 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -216,16 +216,16 @@ ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.template ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=${mosip.api.internal.url}${ida-websub-auth-type-callback-relative-url} +ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchage-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events -ida-websub-partner-service-callback-url=${mosip.api.internal.url}${server.servlet.context-path}/callback/partnermanagement/{eventType} +ida-websub-partner-service-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} ida-websub-partner-service-apikey-approved-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/apikey_approved ida-websub-partner-service-partner-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_updated ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/policy_updated @@ -234,7 +234,7 @@ ida-websub-partner-service-misp-license-generated-callback-relative-url=${server ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated ## Callback url for hotlist event ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=${mosip.api.internal.url}${ida-websub-hotlist-callback-relative-url} +ida-websub-hotlist-callback-url=${mosip.api.internal.url}/${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index 9a2221ff31b..1f6672a5c35 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 60dacdd2a52..75568ed80ca 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -1,12 +1,12 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index 9ba6e16ddfd..11256a5d2bc 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/kernel-default.properties b/kernel-default.properties index aa050763479..1b3fe33b328 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -441,7 +441,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi #openapi.masterdata.servers[0].url=${mosip.kernel-masterdata-service.url}/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url -#openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.path:}} +#openapi.service.servers[0].url=https://${mosip.api.internal.host}/${server.servlet.context-path:${server.servlet.path:}} #openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's @@ -707,7 +707,6 @@ mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMI mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN diff --git a/print-default.properties b/print-default.properties index 631f125ff94..20522924b8a 100644 --- a/print-default.properties +++ b/print-default.properties @@ -6,7 +6,7 @@ # print.websub.hub.secret ## Websub -mosip.event.hubURL=${mosip.websub.url}/hub +mosip.event.hubURL=${mosip.websub.url}/hub/ mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident From e43941353ad104ffdca2284abf204d78a75923c6 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 14:15:32 +0530 Subject: [PATCH 0485/1358] updated config. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index d482175ed32..486596b4699 100644 --- a/application-default.properties +++ b/application-default.properties @@ -72,7 +72,7 @@ mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 mosip.kernel.syncdata.syncjob.url=http://kernel-syncjob-service:8099 mosip.keycloak.url=http://keycloak.default:80 mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:80 +mosip.minio.url=http://minio.default:9000 mosip.mock-abis.url=http://mock-abis.default:80 mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 mosip.mock-mv.url=http://mock-mv.default:80 From 3bc09379b97f1a3dae8adc204106207cbafb4861 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 15:51:26 +0530 Subject: [PATCH 0486/1358] updated config. --- hazelcast_cache-default.xml => hazelcast_cache.xml | 0 hazelcast_dmz-default-dmz.xml => hazelcast_deafult-dmz.xml | 0 2 files changed, 0 insertions(+), 0 deletions(-) rename hazelcast_cache-default.xml => hazelcast_cache.xml (100%) rename hazelcast_dmz-default-dmz.xml => hazelcast_deafult-dmz.xml (100%) diff --git a/hazelcast_cache-default.xml b/hazelcast_cache.xml similarity index 100% rename from hazelcast_cache-default.xml rename to hazelcast_cache.xml diff --git a/hazelcast_dmz-default-dmz.xml b/hazelcast_deafult-dmz.xml similarity index 100% rename from hazelcast_dmz-default-dmz.xml rename to hazelcast_deafult-dmz.xml From b41cd49cac00bed453e455edba340323244aefe3 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 16:23:48 +0530 Subject: [PATCH 0487/1358] updated config. --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 2f0c1476faf..f531470cbf3 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", + "brokerUrl": "${activemq.host}:${activemq.core.port}", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From 7ef4e2748ccb3dd43e24ad9d81e8b64e09da4532 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 24 Dec 2021 16:32:33 +0530 Subject: [PATCH 0488/1358] updated config. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 486596b4699..8a12ac3851e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -468,8 +468,8 @@ hazelcast.config=classpath:hazelcast_default.xml ## S3 object store adapter. object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=${mosip.minio.url} object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 From 45ead7ef329fa5074bb98be4278badbfa02eaedd Mon Sep 17 00:00:00 2001 From: Mayura Deshmukh <mayura.deshmukh@gmail.com> Date: Fri, 24 Dec 2021 17:32:28 +0530 Subject: [PATCH 0489/1358] updated all as per develop2 --- pre-registration-default.properties | 27 +++++++++++++++------------ 1 file changed, 15 insertions(+), 12 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index b7c9fd1ea85..0720a363596 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -115,18 +115,19 @@ mosip.preregistration.sync.sign.refid=SIGN ## Booking ## Sync every n days preregistration.availability.sync=30 -## Number of days for which booking slots will be available +## Number of days for which booking slots will be available. Should be lesser than or equal to preregistration.availability.sync days. preregistration.availability.noOfDays=140 ## Gap between the date of booking and the first appointment date to be shown ## Ex: If a user has logged in pre-reg application today then, he can select booking slots after n days preregistration.booking.offset=2 ## Number of hours from the appointment time before which an appicant can change/re-book the appointment -preregistration.timespan.rebook=24 +preregistration.timespan.rebook=0 ## Number of hours before the appointment time before which an applicant can cancel an appointment -preregistration.timespan.cancel=24 +preregistration.timespan.cancel=0 -## Time zone. Used for converting the time zones to UTC -preregistration.country.specific.zoneId=GMT+05:30 +## Time Zone +# Not used anymore. +# preregistration.country.specific.zoneId=GMT+05:30 ## Batch job service batch.service.version=v1 @@ -162,7 +163,8 @@ bookingAvailablity.url=${booking.resource.url}/appointment/availability/sync updateConsumedStatus.url=${batch.resource.url}/consumedStatus #BatchJob-service URL for updating to expiredStatus expiredStatus.url=${batch.resource.url}/expiredStatus -batch.appointment.cancel=${batch.service.env}/preregistration/v1 +#batch.appointment.cancel=${batch.service.env}/preregistration/v1 +batch.appointment.cancel=${mosip.prereg-application-service.url}/preregistration/v1/internal/applications/appointment/{preRegistrationId} ## Login service @@ -180,7 +182,7 @@ masterdata.resource.url=${masterdata.service.env}/${masterdata.service.version}/ regCenter.url=${masterdata.resource.url}/registrationcenters holiday.url=${masterdata.resource.url}/getregistrationcenterholidays/ holiday.exceptional.url=${masterdata.resource.url}/exceptionalholidays/ -working.day.url=${masterdata.resource.url}/weekdays/ +working.day.url=${masterdata.resource.url}/workingdays/ mosip.kernel.masterdata.validdoc.rest.uri=${masterdata.resource.url}/validdocuments/all?pageSize=50 ##Kernel Service URL for fetching templates resource.template.url=${masterdata.resource.url}/templates @@ -196,10 +198,11 @@ cancel.appoinment.template=cancel-appointment notification.service.version=v1 notification.service.env=${mosip.prereg-application-service.url} notification.service.contextpath=preregistration/${notification.service.version} -notification.url=${notification.service.env}/${notification.service.version}/${notification.service.contextpath}/notification +#notification.url=${notification.service.env}/${notification.service.version}/${notification.service.contextpath}/notification +notification.url=${notification.service.env}/${notification.service.contextpath}/internal/notification mosip.pre-registration.notification.id.send=mosip.pre-registration.notification.notify -# TimeZone to get an email or SMS templates -timeZone=Asia/Calcutta +# TimeZone to get an Email or SMS Templates +# timeZone=Asia/Calcutta ## Email service email.service.env=${mosip.kernel-notification-service.url} @@ -293,12 +296,12 @@ prereg.auth.jwt.token.roles=INDIVIDUAL ## ID object validation mosip.kernel.idobjectvalidator.masterdata.documentcategories.lang.rest.uri=${masterdata.resource.url}/documentcategories/{langcode} mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${masterdata.resource.url}/languages -mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${masterdata.resource.url}/gendertypes +#mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${masterdata.resource.url}/gendertypes mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${masterdata.resource.url}/documentcategories mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${masterdata.resource.url}/documenttypes/{documentcategorycode}/{langcode} mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${masterdata.resource.url}/locations/{langcode} mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${masterdata.resource.url}/locations/locationhierarchy/{hierarchyname} - +mosip.kernel.idobjectvalidator.masterdata.documentcategories.lang.rest.uri=${masterdata.resource.url}/documentcategories/{langcode} ## Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator From 4a08366467dde12c04011bd9a42d512e721644be Mon Sep 17 00:00:00 2001 From: Manoj SP <43261486+manojsp12@users.noreply.github.com> Date: Fri, 24 Dec 2021 19:06:25 +0530 Subject: [PATCH 0490/1358] Added CREDENTIAL_REQUEST role for keymanager encrypt decrypt --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 695ea0cdd07..5c48eeee743 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -725,8 +725,8 @@ mosip.role.keymanager.posttpmencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTH mosip.role.keymanager.posttpmdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmsigningpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmencryptionpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY -mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT From 006eabb4de692189546826b3ac33f4ca6e27db79 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Sun, 26 Dec 2021 13:13:03 +0530 Subject: [PATCH 0491/1358] updated config. --- hazelcast_deafult-dmz.xml => hazelcast_dmz-deafult-dmz.xml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename hazelcast_deafult-dmz.xml => hazelcast_dmz-deafult-dmz.xml (100%) diff --git a/hazelcast_deafult-dmz.xml b/hazelcast_dmz-deafult-dmz.xml similarity index 100% rename from hazelcast_deafult-dmz.xml rename to hazelcast_dmz-deafult-dmz.xml From cc95abe41d331f005012ae657384c922a1adf8b8 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Sun, 26 Dec 2021 13:16:54 +0530 Subject: [PATCH 0492/1358] updated config. --- hazelcast_dmz-deafult-dmz.xml => hazelcast_dmz.xml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename hazelcast_dmz-deafult-dmz.xml => hazelcast_dmz.xml (100%) diff --git a/hazelcast_dmz-deafult-dmz.xml b/hazelcast_dmz.xml similarity index 100% rename from hazelcast_dmz-deafult-dmz.xml rename to hazelcast_dmz.xml From d0ea333d7b3675db76a74853be7b2589abed7448 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Sun, 26 Dec 2021 13:22:31 +0530 Subject: [PATCH 0493/1358] updated config. --- application-default-dmz.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default-dmz.properties b/application-default-dmz.properties index 4a0be38f021..3c6632bf8c7 100644 --- a/application-default-dmz.properties +++ b/application-default-dmz.properties @@ -1,5 +1,6 @@ #---------------------------------------Common properties----------------------- aplication.configuration.level.version=LTS +mosip.api.internal.url=${mosipbox.public.url} mz.ingress.base.url=http://mz.ingress:30080 mosip.keymanager.base.url=${mosip.kernel-keymanager-service.url} From 03f2db7c6bdd11c35512dec0d58a51050135d05e Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 11:00:10 +0530 Subject: [PATCH 0494/1358] updated config. --- kernel-default.properties | 1 - registration-processor-default-dmz.properties | 9 ++++++++- 2 files changed, 8 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 5c48eeee743..69eadebc945 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -447,7 +447,6 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel-auth-service.url}/v1/authmanager/userdetails -auth.server.admin.offline.token.validate=false auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client mosip.iam.adapter.appid=admin diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties index 0bb508d0924..e0dcca6fdf6 100644 --- a/registration-processor-default-dmz.properties +++ b/registration-processor-default-dmz.properties @@ -247,4 +247,11 @@ registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60ab registration.processor.notification_service_subscriber_topic=registration_processor_workflow_completed_event registration.processor.notification_service_subscriber_callback_url=${mosip.api.internal.url}/registrationprocessor/v1/notification/callback/notify -mosip.regproc.message.tag.loading.disable=true \ No newline at end of file +mosip.regproc.message.tag.loading.disable=true + + +mosip.iam.adapter.appid=regproc +mosip.iam.adapter.clientid=mosip-regproc-client +mosip.iam.adapter.clientsecret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f + +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client From 1c668c4e8fd217fcb722ab6635a690e6e58e08d6 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 11:25:34 +0530 Subject: [PATCH 0495/1358] updated config. --- id-repository-default.properties | 2 +- registration-processor-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index e5c168583ae..d29e7a69ad0 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -316,7 +316,7 @@ mosip.credential.service.retry.maxDelay=100 IDREPOGETIDBYID=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http -mosip.data.share.internal.domain.name=datashare.datashare +mosip.data.share.internal.domain.name=${mosip.datashare-service.url} CREATEDATASHARE=/v1/datashare/create KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign diff --git a/registration-processor-default.properties b/registration-processor-default.properties index af527fee060..68c35d8ea2d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -452,7 +452,7 @@ DATASHAREGETEURL=${mosip.datashare-service.url}/v1/datashare/get registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis -mosip.regproc.data.share.internal.domain.name=datashare.datashare +mosip.regproc.data.share.internal.domain.name=${mosip.datashare-service.url} mosip.regproc.data.share.protocol=http #iam adapter From 13c381f1efba0bade34cac4b7bdbf00f959c204d Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 11:44:19 +0530 Subject: [PATCH 0496/1358] updated config. --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index 8a12ac3851e..ce3f4c42e50 100644 --- a/application-default.properties +++ b/application-default.properties @@ -535,3 +535,5 @@ mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34} ## Swagger #openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} #openapi.service.servers[0].description=For Swagger + +mosip.auth.filter_disable= false \ No newline at end of file From 2210578b02c7f6c14d9df86add48fd2fb4d61e3a Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 11:44:34 +0530 Subject: [PATCH 0497/1358] updated config. --- data-share-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/data-share-default.properties b/data-share-default.properties index cbfbf12e82d..426aec4992e 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -34,3 +34,5 @@ mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=false auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client + +mosip.auth.filter_disable= false \ No newline at end of file From 98b4f250605ca8c79a01688f0874d76fbce54caa Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 11:55:16 +0530 Subject: [PATCH 0498/1358] updated config. --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 68c35d8ea2d..5eb8bfc16dc 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -950,3 +950,4 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.auth.filter_disable= false \ No newline at end of file From 341197cd4514134038ee79cee112aed4ea462990 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 12:07:46 +0530 Subject: [PATCH 0499/1358] updated config. --- credential-request-default.properties | 4 +++- credential-service-default.properties | 5 ++++- 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/credential-request-default.properties b/credential-request-default.properties index a1b46b8e7be..f4f8be83333 100644 --- a/credential-request-default.properties +++ b/credential-request-default.properties @@ -6,4 +6,6 @@ mosip.idrepo.credential-req-generator.auth.app-id=crereq #------------------------- Kernel Auth Adapter self token generator properties ----------------------------# mosip.iam.adapter.clientid.credential-request=${mosip.idrepo.credential-req-generator.auth.client-id} mosip.iam.adapter.clientsecret.credential-request=${mosip.idrepo.credential-req-generator.auth.secret-key} -mosip.iam.adapter.appid.credential-request=${mosip.idrepo.credential-req-generator.auth.app-id} \ No newline at end of file +mosip.iam.adapter.appid.credential-request=${mosip.idrepo.credential-req-generator.auth.app-id} + +mosip.auth.filter_disable= false \ No newline at end of file diff --git a/credential-service-default.properties b/credential-service-default.properties index f44e7cbc60d..206b13df32f 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -6,4 +6,7 @@ mosip.idrepo.credential.auth.app-id=creser #------------------------- Kernel Auth Adapter self token generator properties ----------------------------# mosip.iam.adapter.clientid.credential-service=${mosip.idrepo.credential.auth.client-id} mosip.iam.adapter.clientsecret.credential-service=${mosip.idrepo.credential.auth.secret-key} -mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id} \ No newline at end of file +mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id} + + +mosip.auth.filter_disable= false \ No newline at end of file From 69ee237c46949433d4fb3e3af10cc7c19cd1f69f Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 27 Dec 2021 12:25:39 +0530 Subject: [PATCH 0500/1358] updated camel route names --- registration-processor-default-dmz.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties index e0dcca6fdf6..f35c9c28716 100644 --- a/registration-processor-default-dmz.properties +++ b/registration-processor-default-dmz.properties @@ -142,7 +142,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-brdige-dmz # Camel Route xml files corresponding to the dmz flow -camel.dmz.active.flows.file.names=registration-processor-camel-routes-new-dmz.xml,registration-processor-camel-routes-update-dmz.xml,registration-processor-camel-routes-activate-dmz.xml,registration-processor-camel-routes-res-update-dmz.xml,registration-processor-camel-routes-deactivate-dmz.xml,registration-processor-camel-routes-lost-dmz.xml,registration-processor-camel-routes-res-reprint-dmz.xml,registration-processor-camel-routes-biometric-correction-dmz.xml +camel.dmz.active.flows.file.names=registration-processor-camel-routes-new-default-dmz.xml,registration-processor-camel-routes-update-default-dmz.xml,registration-processor-camel-routes-activate-default-dmz.xml,registration-processor-camel-routes-res-update-default-dmz.xml,registration-processor-camel-routes-deactivate-default-dmz.xml,registration-processor-camel-routes-lost-default-dmz.xml,registration-processor-camel-routes-res-reprint-default-dmz.xml,registration-processor-camel-routes-biometric-correction-default-dmz.xml # Current zone on which services and stages are runnning, can be dmz or mz registration.processor.zone=dmz # Pause settings used by camel to match expression and pause packet processing From e803debb3671899b6915a9337ff1d5fca5d854f9 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 12:47:22 +0530 Subject: [PATCH 0501/1358] updated config. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5eb8bfc16dc..85f67d5012d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -924,7 +924,7 @@ regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ openapi.registrationProcessor.servers[0].url=${mosip.api.internal.url}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL -NGINXDMZURL=${mosip.packet-receiver-service.url} +NGINXDMZURL=${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/registrationpackets # modifiable delay in websub subscription mosip.regproc.websub.resubscription.delay.millisecs=43200000 From 6e0643d48e95e991ed95edb5e826297b949230bc Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Mon, 27 Dec 2021 13:08:41 +0530 Subject: [PATCH 0502/1358] Added packet-manger and packet-upload properties --- admin-default.properties | 41 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 41 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 6c0ecb0e116..894cba451d4 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -222,6 +222,14 @@ KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/cl mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=1440 +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=1440 +#this should be false if you don?t use this restTemplate true if you do +mosip.iam.adapter.self-token-renewal-enable=true # LostRid mosip.registration.processor.lostrid.id=mosip.registration.lostrid @@ -235,3 +243,36 @@ mosip.role.admin.postbulkupload=GLOBAL_ADMIN mosip.role.admin.getbulkuploadtranscationtranscationid=GLOBAL_ADMIN mosip.role.admin.getbulkuploadgetalltransactions=GLOBAL_ADMIN mosip.role.admin.postauditmanagerlog=GLOBAL_ADMIN,ZONAL_ADMIN + +# packet-manager +mosip.commons.packetnames=id,evidence,optional +provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl +provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketWriterImpl +objectstore.adapter.name=PosixAdapter +objectstore.crypto.name=OnlinePacketCryptoServiceImpl +default.provider.version=v1.0 +object.store.base.location=./packets +objectstore.packet.source=REGISTRATION_CLIENT +packet.manager.account.name=PACKET_MANAGER_ACCOUNT +objectstore.packet.supervisor_biometrics_file_name=supervisor_bio_cbeff +objectstore.packet.officer_biometrics_file_name=officer_bio_cbeff +mosip.kernel.xsdstorage-uri = LOCAL +mosip.kernel.xsdfile = LOCAL +#----JSON Validator Component---- +#Property Source of the Identity Schema. LOCAL specifies the schema is stored within the application. Should not be modified +mosip.kernel.jsonvalidator.property-source = LOCAL +#Storage Location of the Identity Schema. LOCAL specifies the schema is stored within the application. Should not be modified +mosip.kernel.jsonvalidator.file-storage-uri=LOCAL + +mosip.kernel.machineid.length=5 +auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ +MACHINE_GET_API=${mosip.kernel-masterdata-service.url}/v1/masterdata/machines/mappedmachines/?pageNumber=0&pageSize=100&orderBy=cr_dtimes&direction=DESC +CRYPTOMANAGERDECRYPT_API=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ +packetmanager.packet.signature.disable-verification=true +mosip.admin.packetupload.packetsync.url=${mosip.regproc-registration-status-service.url}/registrationprocessor/v1/registrationstatus/syncV2 +mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,lastName +mosip.admin.packetupload.packetsync.email=email +mosip.admin.packetupload.packetsync.phone=phone From bc6a487225ac54e99165bf215b685fc80ae5cb4d Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Mon, 27 Dec 2021 13:58:58 +0530 Subject: [PATCH 0503/1358] Update admin-default.properties --- admin-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 894cba451d4..250acb4f5fe 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -271,7 +271,6 @@ CRYPTOMANAGERDECRYPT_API=${mosip.kernel-keymanager-service.url}/v1/keymanager/de CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ -packetmanager.packet.signature.disable-verification=true mosip.admin.packetupload.packetsync.url=${mosip.regproc-registration-status-service.url}/registrationprocessor/v1/registrationstatus/syncV2 mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,lastName mosip.admin.packetupload.packetsync.email=email From 42ce3707946a9913646a841edf62f48275625eb6 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 15:26:32 +0530 Subject: [PATCH 0504/1358] updated config. --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 250acb4f5fe..a4aa7d11ce3 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -271,7 +271,7 @@ CRYPTOMANAGERDECRYPT_API=${mosip.kernel-keymanager-service.url}/v1/keymanager/de CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ -mosip.admin.packetupload.packetsync.url=${mosip.regproc-registration-status-service.url}/registrationprocessor/v1/registrationstatus/syncV2 +mosip.admin.packetupload.packetsync.url=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/syncV2 mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,lastName mosip.admin.packetupload.packetsync.email=email mosip.admin.packetupload.packetsync.phone=phone From 603ce5d41e5385933dec7f3ad9d95a1a3b1e05fc Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 15:30:33 +0530 Subject: [PATCH 0505/1358] updated config. --- application-default.properties | 3 ++- partner-management-default.properties | 2 +- print-default.properties | 2 +- registration-processor-default.properties | 2 +- 4 files changed, 5 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index ce3f4c42e50..32e9394d157 100644 --- a/application-default.properties +++ b/application-default.properties @@ -49,7 +49,8 @@ mosip.admin-ui.url=http://admin-ui.default:80 mosip.artifactory-service.url=http://artifactory-service.default:80 mosip.clamav.url=http://clamav.default:80 mosip.config-server.url=http://config-server.default:80 -mosip.datashare-service.url=http://datashare-service.default:80 +#datashare is using domain externally so removed http(handled by protocol property.) +mosip.datashare-service.url=datashare-service.default:80 mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 mosip.ida-auth-service.url=http://ida-auth-service.default:80 mosip.ida-internal-service.url=http://ida-internal-service.default:80 diff --git a/partner-management-default.properties b/partner-management-default.properties index 5ce69ab79ef..4077ee6cdd3 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -126,7 +126,7 @@ mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub -pmp.certificaticate.datashare.rest.uri=${mosip.datashare-service.url}/v1/datashare/create +pmp.certificaticate.datashare.rest.uri=http://${mosip.datashare-service.url}/v1/datashare/create # Used for generating the datashare url pms.certs.datashare.policyId=mpolicy-default-cert pms.certs.datashare.subscriberId=mpartner-default-cert diff --git a/print-default.properties b/print-default.properties index 20522924b8a..4cfdcd08e60 100644 --- a/print-default.properties +++ b/print-default.properties @@ -103,7 +103,7 @@ registration.processor.unMaskedUin.length=5 IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity -CREATEDATASHARE=${mosip.datashare-service.url}/v1/datashare/create +CREATEDATASHARE=http://${mosip.datashare-service.url}/v1/datashare/create DECRYPTPINBASSED=${mosip.kernel-keymanager-service.url}/v1/keymanager/decryptWithPin mosip.print.prependThumbprint=true diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 85f67d5012d..b6d8c7e954e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -447,7 +447,7 @@ PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdate PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag PACKETMANAGER_GET_TAGS=${packetmanager.base.url}/v1/packetmanager/getTags DATASHARECREATEURL=/v1/datashare/create -DATASHAREGETEURL=${mosip.datashare-service.url}/v1/datashare/get +DATASHAREGETEURL=http://${mosip.datashare-service.url}/v1/datashare/get # Default abis is mock-abis provided by MOSIP registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis From 9d8c6b2a4703fe099c2407854afa0ffada1d1801 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 18:12:41 +0530 Subject: [PATCH 0506/1358] updated config. --- partner-management-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 4077ee6cdd3..d95a9457ca9 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -109,9 +109,9 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/au # ApplicationId for partner mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services -mosip.pmp.auth.clientId=mosip-partner-client +mosip.pmp.auth.clientId=mpartner-default-auth # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} +mosip.pmp.auth.secretKey= ${mosip.mosip.mpartner-default-auth.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey @@ -122,7 +122,7 @@ pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel-keymanager-servi #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} -mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} +mosip.iam.adapter.clientsecret=${mosip.mosip.mpartner-default-auth.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub From 512c596a1705bfc7c8165d235b30b5eba28ecc90 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 18:39:30 +0530 Subject: [PATCH 0507/1358] updated config. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 0720a363596..9e02916f0de 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -402,7 +402,7 @@ spring.cache.type=none mosip.preregistration.appointment.getavailablity.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment/availability/{registrationCenterId} mosip.preregistration.appointment.book.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment/{preRegistrationId} -mosip.preregistration.appointment.multi.book.url={mosip.prereg-booking-service.url}/preregistration/v1/appointment +mosip.preregistration.appointment.multi.book.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment mosip.preregistration.applications.status.get = mosip.preregistration.applications.status mosip.preregistration.applications.details.get = mosip.preregistration.applications.detail.info mosip.preregistration.uispec.latest=mosip.preregistration.uispec.latest From 7c16c6a18565d2f3c1983582d03f8b14c2b75a57 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 18:58:58 +0530 Subject: [PATCH 0508/1358] updated config. --- partner-management-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index d95a9457ca9..4077ee6cdd3 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -109,9 +109,9 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/au # ApplicationId for partner mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services -mosip.pmp.auth.clientId=mpartner-default-auth +mosip.pmp.auth.clientId=mosip-partner-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.mosip.mpartner-default-auth.client.secret} +mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey @@ -122,7 +122,7 @@ pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel-keymanager-servi #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} -mosip.iam.adapter.clientsecret=${mosip.mosip.mpartner-default-auth.client.secret} +mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub From f0eff6ea32eee08c0f1946b63bf6aefcf9cfcf32 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 27 Dec 2021 19:53:57 +0530 Subject: [PATCH 0509/1358] updated config. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b6d8c7e954e..083e899ef88 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -924,7 +924,7 @@ regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ openapi.registrationProcessor.servers[0].url=${mosip.api.internal.url}/registrationprocessor/v1/registrationtransaction openapi.registrationProcessor.servers[0].description=Registration Processor URL -NGINXDMZURL=${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/registrationpackets +NGINXDMZURL=${dmz.ingress.base.url}/registrationprocessor/v1/dmzpacketserver # modifiable delay in websub subscription mosip.regproc.websub.resubscription.delay.millisecs=43200000 From 0c98657f7b7f79ddb2ee8d1cccf08f966178d40a Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Tue, 28 Dec 2021 11:18:31 +0530 Subject: [PATCH 0510/1358] corrected url --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 32e9394d157..c2a9f6aa8ec 100644 --- a/application-default.properties +++ b/application-default.properties @@ -113,7 +113,7 @@ mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.defau mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.default:80 +mosip.packetmanager-service.url=http://packetmanager-service.packetmanager:80 mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.default:80 mosip.regproc-status-service.url=http://regproc-registration-status-service.default:80 mosip.websub.url=${mosip.api.internal.url} @@ -537,4 +537,4 @@ mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34} #openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} #openapi.service.servers[0].description=For Swagger -mosip.auth.filter_disable= false \ No newline at end of file +mosip.auth.filter_disable= false From 81adcab0f8ea02bca7ad553ee4786b85d3ae458a Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Tue, 28 Dec 2021 16:11:23 +0530 Subject: [PATCH 0511/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index d0976efd8cf..c6a051f844d 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -354,7 +354,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/masterdata/machines/%s/eng +mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/masterdata/machines/%s # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments From 198836d63e045e711c02fdde766fd67f38bc3537 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Tue, 28 Dec 2021 16:20:19 +0530 Subject: [PATCH 0512/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index c6a051f844d..3de29c50561 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -354,7 +354,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/masterdata/machines/%s +mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/machines/%s # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments From d7569f587e2af9e28f90c39c0c1633fa92a653de Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 28 Dec 2021 18:00:01 +0530 Subject: [PATCH 0513/1358] updated config. --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 3fb13010557..8fa07af653a 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -42,7 +42,7 @@ MESSAGE_DELIVERY_COUNT = 3 MESSAGE_DELIVERY_TIMEOUT = 10.0 # The base URL of IDP -MOSIP_AUTH_BASE_URL = "https://dev2.mosip.net/v1/authmanager" +MOSIP_AUTH_BASE_URL = "${mosip.api.internal.url}/v1/authmanager" # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" From 9dda72eaadc97c99052ec5898ecba4078a58f7af Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 28 Dec 2021 18:47:24 +0530 Subject: [PATCH 0514/1358] updated config. --- credential-request-default.properties | 2 +- credential-service-default.properties | 2 +- data-share-default.properties | 2 +- partner-management-default.properties | 2 +- registration-processor-default.properties | 14 +++++++++++++- 5 files changed, 17 insertions(+), 5 deletions(-) diff --git a/credential-request-default.properties b/credential-request-default.properties index f4f8be83333..cc34d671297 100644 --- a/credential-request-default.properties +++ b/credential-request-default.properties @@ -8,4 +8,4 @@ mosip.iam.adapter.clientid.credential-request=${mosip.idrepo.credential-req-gene mosip.iam.adapter.clientsecret.credential-request=${mosip.idrepo.credential-req-generator.auth.secret-key} mosip.iam.adapter.appid.credential-request=${mosip.idrepo.credential-req-generator.auth.app-id} -mosip.auth.filter_disable= false \ No newline at end of file +mosip.auth.filter_disable=false \ No newline at end of file diff --git a/credential-service-default.properties b/credential-service-default.properties index 206b13df32f..213de396373 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -9,4 +9,4 @@ mosip.iam.adapter.clientsecret.credential-service=${mosip.idrepo.credential.auth mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id} -mosip.auth.filter_disable= false \ No newline at end of file +mosip.auth.filter_disable=false \ No newline at end of file diff --git a/data-share-default.properties b/data-share-default.properties index 426aec4992e..4cf3b43ae71 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -35,4 +35,4 @@ mosip.data.share.prependThumbprint=false auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client -mosip.auth.filter_disable= false \ No newline at end of file +mosip.auth.filter_disable=false \ No newline at end of file diff --git a/partner-management-default.properties b/partner-management-default.properties index 4077ee6cdd3..816fdecbc24 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -163,7 +163,7 @@ mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 #this should be false if you don't use this restTemplate true if you do mosip.iam.adapter.self-token-renewal-enable=true -mosip.auth.filter_disable= false +mosip.auth.filter_disable=false #To populate required roles which should be allowed in UI.(Roles are nothing but partner types) mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 083e899ef88..f4afba953f0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -950,4 +950,16 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.auth.filter_disable= false \ No newline at end of file +mosip.iam.adapter.clientid=mosip-regproc-client +mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} +mosip.iam.adapter.appid=regproc +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=30 +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=30 +#this should be false if you don�t use this restTemplate true if you do +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false From a9e68783b272728aee6024b7e610a07058c3f32e Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Tue, 28 Dec 2021 19:25:14 +0530 Subject: [PATCH 0515/1358] making true --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f4afba953f0..b7714be1ec9 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -960,6 +960,6 @@ mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authentica mosip.iam.adapter.validate-expiry-check-rate=30 # in minutes mosip.iam.adapter.renewal-before-expiry-interval=30 -#this should be false if you don�t use this restTemplate true if you do +#this should be false if you dont use this restTemplate true if you do mosip.iam.adapter.self-token-renewal-enable=true -mosip.auth.filter_disable=false +mosip.auth.filter_disable=true From dd7e4e2c6a4fdd020041626dc2fece0fe6aff0ca Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Tue, 28 Dec 2021 20:02:13 +0530 Subject: [PATCH 0516/1358] removed unnecessary pause settings --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b7714be1ec9..a0d5d6e8208 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -520,7 +520,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"ADULT_APPLICANT","matchExpression": "$.tags[?(@['AGE_GROUP']== 'ADULT')]","pauseFor": 6000,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident child applicant packet"},{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single From 1d6d016bddf5134d0e68ecd8c5bf80037abc01dc Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 29 Dec 2021 09:57:01 +0530 Subject: [PATCH 0517/1358] updated config --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 28e5e591da3..f21cd830734 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -70,7 +70,7 @@ EMAILNOTIFIER=${mosip.kernel-notification-service.url}/v1/notifier/email/send AUTHTYPESTATUSUPDATE=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/authtypes/status #Regitstration processor reprint service #Registration status service -REGISTRATIONSTATUSSEARCH=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/externalstatus/search +REGISTRATIONSTATUSSEARCH=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/externalstatus/search resident.center.id=10001 resident.machine.id=10001 #Credential Req service From 0fd3408f82bb7f97ee1b907f90b17283fdc532e7 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 29 Dec 2021 12:14:27 +0530 Subject: [PATCH 0518/1358] updated config --- syncdata-default.properties | 2 +- websub-consolidator.toml | 2 +- websub-service.toml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 3de29c50561..d6a91873b43 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -218,7 +218,7 @@ mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users #Self token resttemplate related to configuration mosip.iam.adapter.clientid=mosip-syncdata-client -mosip.iam.adapter.clientsecret=${mosip.mosip.reg.client.secret} +mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey diff --git a/websub-consolidator.toml b/websub-consolidator.toml index 6a611ba4c78..f18db075710 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -1,6 +1,6 @@ [consolidatorService.config] # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "http://kafka.default:9092" +KAFKA_BOOTSTRAP_NODE = "kafka.default:9092" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration diff --git a/websub-service.toml b/websub-service.toml index 8fa07af653a..5b62f66431c 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -7,7 +7,7 @@ SECURITY_ON = true SERVER_ID = "server-1" # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "http://kafka.default:9092" +KAFKA_BOOTSTRAP_NODE = "kafka.default:9092" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration From 35c95bd00a8415bf8432cc97f610a8ebe29a335b Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 29 Dec 2021 12:33:40 +0530 Subject: [PATCH 0519/1358] updated config --- application-default.properties | 2 +- kernel-default.properties | 4 ++++ 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index c2a9f6aa8ec..c26a1f7396c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -537,4 +537,4 @@ mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34} #openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} #openapi.service.servers[0].description=For Swagger -mosip.auth.filter_disable= false +mosip.auth.filter_disable=false \ No newline at end of file diff --git a/kernel-default.properties b/kernel-default.properties index 69eadebc945..70686645792 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -754,3 +754,7 @@ mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATI mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT + + +mosip.kernel.masterdata.template_idauthentication_event=MASTERDATA_IDAUTHENTICATION_TEMPLATES +mosip.kernel.masterdata.title_event=MASTERDATA_TITLES \ No newline at end of file From 5a2a730bc17909bb5e8d4cdbd201ac42422f12a9 Mon Sep 17 00:00:00 2001 From: Abubacker Siddik A <abu@makinus.com> Date: Wed, 29 Dec 2021 19:50:20 +0530 Subject: [PATCH 0520/1358] MOSIP-19185: Update machine search and create url configs --- resident-default.properties | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/resident-default.properties b/resident-default.properties index f21cd830734..4b248566185 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -56,12 +56,16 @@ resident.notification.message=Notification has been sent to the provided contact MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines +MACHINESEARCH=${MASTER}/machines/search +MACHINECREATE=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters RIDGENERATION=${mosip.kernel-ridgenerator-service.url}/v1/ridgenerator/generate/rid CREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid IDREPOSITORY=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/ ENCRYPTURL=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +PACKETSIGNPUBLICKEY=${mosip.kernel-keymanager-service.url}/v1/keymanager/tpmsigning/publickey MIDSCHEMAURL=${mosip.kernel-keymanager-service.url}/v1/syncdata/latestidschema + # DMZ service call SYNCSERVICE=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/sync PACKETRECEIVER=${mosip.regproc-group1-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets @@ -109,3 +113,8 @@ auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client #Mapping Identity json to map with the applicant id json registration.processor.identityjson=identity-mapping.json + +#machine creation and search configs +resident.update-uin.machine-name-prefix = resident_machine_ +resident.update-uin.machine-spec-id = 1001 +resident.update-uin.machine-zone-code = MOR From e6c0e986e909914e4c34e6c1a3ff023f02c222c9 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 29 Dec 2021 20:17:24 +0530 Subject: [PATCH 0521/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index d6a91873b43..03a77a0e405 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -384,7 +384,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=${mosip.kernel-syncdata-service.url}/v1/syncdata/websub/callback/cacert +syncdata.websub.callback.url.ca-cert=${mosip.api.internal.url}/${server.servlet.context-path}/websub/callback/cacert # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a From a6a1a687dc285190f8da80cf497210a4ad5bf2cc Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 29 Dec 2021 20:59:48 +0530 Subject: [PATCH 0522/1358] updated config --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 03a77a0e405..0bf598bebf9 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -289,7 +289,7 @@ kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client,mosip-syncdata-client ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 From 7b0304c15f09e007fba7d8bb54204b114f906ded Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 29 Dec 2021 21:22:57 +0530 Subject: [PATCH 0523/1358] Added mosip-syncdata-client audience --- data-share-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 4cf3b43ae71..c0bd0d83889 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -33,6 +33,6 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=false -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client -mosip.auth.filter_disable=false \ No newline at end of file +mosip.auth.filter_disable=false From 80934e4f57b0207b98e1071ecfe94ca8ad4b7de6 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 29 Dec 2021 21:23:22 +0530 Subject: [PATCH 0524/1358] Update syncdata-default.properties --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 0bf598bebf9..03a77a0e405 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -289,7 +289,7 @@ kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client,mosip-syncdata-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client ## Proxy otp mosip.kernel.auth.proxy-otp-value=111111 From 67c13734682ed0d4997197890a78f6b50ea5056c Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Thu, 30 Dec 2021 16:26:17 +0530 Subject: [PATCH 0525/1358] Disabled debug logging --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index a4aa7d11ce3..5b6521cabd1 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -235,7 +235,7 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.lostrid.version=1.0 LOST_RID_API=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/lostridsearch -logging.level.org.springframework.web.client.RestTemplate=DEBUG +#logging.level.org.springframework.web.client.RestTemplate=DEBUG # Roles mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN From 0433fef934d5c0ceff62698f267f02126a19f572 Mon Sep 17 00:00:00 2001 From: HimajaDhanyamraju2 <43470317+HimajaDhanyamraju2@users.noreply.github.com> Date: Fri, 31 Dec 2021 12:42:40 +0530 Subject: [PATCH 0526/1358] Update application-default.properties --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index c26a1f7396c..3c30a86b044 100644 --- a/application-default.properties +++ b/application-default.properties @@ -285,7 +285,7 @@ mosip.kernel.uin.restricted-numbers=786,666 # limit is 3, then 12 is allowed but 123 is not allowed in id (in both # ascending and descending order) # to disable sequence limit validation assign 0 or negative value -mosip.kernel.uin.length.sequence-limit=3 +mosip.kernel.uin.length.sequence-limit=0 # Number of digits in repeating block allowed in id. For example if limit is 2, # then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) #to disable validation assign zero or negative value @@ -537,4 +537,4 @@ mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34} #openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} #openapi.service.servers[0].description=For Swagger -mosip.auth.filter_disable=false \ No newline at end of file +mosip.auth.filter_disable=false From 3904a2efd83e3a4ee3ce3831daf06958c6ab7e2f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 13:23:58 +0530 Subject: [PATCH 0527/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 38 ++++++++++------------- 1 file changed, 17 insertions(+), 21 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a0d5d6e8208..0e9b7b17f7b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -137,7 +137,7 @@ ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey DIGITALSIGNATURE=${KEYMANAGER}/v1/keymanager/sign mosip.registration.processor.digital.signature.id=io.mosip.registration.processor -#Status for matched records in demo dedupe stage. +# Status for matched records in demo dedupe stage. # 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. registration.processor.demodedupe.manual.adjudication.status=REJECTED @@ -411,7 +411,6 @@ mosip.regproc.workflow.manager.eventbus.kafka.poll.frequency=100 mosip.regproc.workflow.manager.eventbus.kafka.group.id=workflow-manager mosip.regproc.workflow.manager.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} - #Service Ids #Audit request id mosip.registration.processor.audit.id=mosip.applicanttype.getApplicantType @@ -601,9 +600,7 @@ mosip.regproc.packet.classifier.server.port=8092 mosip.regproc.packet.classifier.eventbus.port=5724 mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/packetclassifier - ## Quality classifier stage - mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 @@ -666,7 +663,7 @@ mosip.regproc.bio.dedupe.server.port=9096 mosip.regproc.bio.dedupe.eventbus.port=5718 mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe -#uin-generator-stage +# uin-generator-stage mosip.regproc.uin.generator.eventbus.kafka.commit.type=single mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 @@ -676,7 +673,7 @@ mosip.regproc.uin.generator.server.port=8099 mosip.regproc.uin.generator.eventbus.port=5719 mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-generator -#abis-middle-ware-stage +# abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 @@ -707,7 +704,7 @@ mosip.regproc.finalization.eventbus.port=5728 mosip.regproc.finalization.server.servlet.path=/registrationprocessor/v1/finalization mosip.regproc.finalization.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} -#biometric-authentication-stage +# biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 @@ -717,7 +714,7 @@ mosip.regproc.biometric.authentication.server.port=8020 mosip.regproc.biometric.authentication.eventbus.port=5777 mosip.regproc.biometric.authentication.server.servlet.path=/registrationprocessor/v1/bioauth -#reprocessor-stage +# reprocessor-stage mosip.regproc.reprocessor.eventbus.kafka.commit.type=single mosip.regproc.reprocessor.eventbus.kafka.max.poll.records=100 mosip.regproc.reprocessor.eventbus.kafka.poll.frequency=100 @@ -727,7 +724,6 @@ mosip.regproc.reprocessor.eventbus.port=5750 mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reprocessor ## Supervisor validator stage - mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 @@ -737,7 +733,6 @@ mosip.regproc.supervisor-validator.server.port=8094 mosip.regproc.supervisor-validator.eventbus.port=5725 mosip.regproc.supervisor-validator.server.servlet.path=/registrationprocessor/v1/supervisorvalidator - ## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 @@ -939,17 +934,6 @@ mosip.registration.processor.registration.external.status.version=1.0 # Packet Status Version mosip.registration.processor.packet.external.status.version=1.0 -# Roles -mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN -mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR -mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN -mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT - mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc @@ -963,3 +947,15 @@ mosip.iam.adapter.renewal-before-expiry-interval=30 #this should be false if you dont use this restTemplate true if you do mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=true + +# Roles +mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN +mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR +mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN +mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT +mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT + From 26b4c2ab3b35b177776c276547e09bc607512c37 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 15:10:28 +0530 Subject: [PATCH 0528/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 0e9b7b17f7b..036bccaccb3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -52,8 +52,6 @@ registration.processor.sourcepackets=id,evidence,optional packet.default.source=id # the default schema field cagegory (ex - private) schema.default.fieldCategory=pvt,none -# The IDSchemaVersion used to create packets in reg-proc -IDSchema.Version=0.1 packet.info.storage.service=* mosip.preferred-language.enabled=false From 640d6b77761989965b204b4ac14b956be1680316 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 15:20:58 +0530 Subject: [PATCH 0529/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 036bccaccb3..c439db5b18a 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -157,6 +157,7 @@ PMS=${mosip.pms-policy-manager-service.url}/v1/policymanager/policies PARTNERGETBIOEXTRACTOR=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners ## Registration status properties +## Max retries allowed by registration client if sanity check of packet fails in packet uploader stage. registration.processor.max.retry=10 mosip.registration.processor.registration.status.id=mosip.registration.status mosip.registration.processor.registration.sync.id=mosip.registration.sync From 6f43665e25de072dc7a076ab9c9e23f2b090e563 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 15:25:31 +0530 Subject: [PATCH 0530/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c439db5b18a..d52ef17e3d7 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -184,10 +184,9 @@ mosip.registration.processor.registration.status.external-statuses-to-consider-p # this property is used in lostrid api to get postal code mosip.registration.processor.postalcode.req.url=${MASTER}/registrationcenters -# Status for matched records in demo dedupe stage +# To enable/disable demo dedup mosip.registration.processor.demographic.deduplication.enable=true - ## OSI validate registration.processor.applicant.dob.format=yyyy/MM/dd mosip.identity.auth.internal.requestid=mosip.identity.auth.internal From b38a6cf715bb17a8ed16d585a9edb397c9b2fbe8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 15:49:30 +0530 Subject: [PATCH 0531/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d52ef17e3d7..fd2b92483a2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -280,7 +280,6 @@ registration.processor.queue.manualverification.response=mv-to-mosip ## Packet validator registration.processor.applicant.type=applicanttype-document-mapping.json mosip.kernel.jsonvalidator.property-source=APPLICATION_CONTEXT -mosip.kernel.jsonvalidator.schema-name=mosip-identity-json-schema.json mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ ## Reprocessor stage From d9a0752a02e13e24d6b73d79972ae67393f3bad5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 15:50:26 +0530 Subject: [PATCH 0532/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index fd2b92483a2..420e439dfb2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -279,8 +279,6 @@ registration.processor.queue.manualverification.response=mv-to-mosip ## Packet validator registration.processor.applicant.type=applicanttype-document-mapping.json -mosip.kernel.jsonvalidator.property-source=APPLICATION_CONTEXT -mosip.kernel.jsonvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ ## Reprocessor stage # Number of the reprocess records to be fetched at a time From 23022b62ed39a488c9d85bc42b7fc5f946f91bc6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 15:56:24 +0530 Subject: [PATCH 0533/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 420e439dfb2..d4948daee2e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -417,7 +417,7 @@ mosip.registration.processor.sms.id=mosip.sms.send #Kernel Crypto signature registration.processor.signature.isEnabled=true -#BioDedupe stage +## Enable this flag only if infant biometrics are captured, and dedup is desired. registration.processor.infant.dedupe=N # ID Authentication From 38aba45b26f3e52072c391e6d92cdd5917304471 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 16:09:37 +0530 Subject: [PATCH 0534/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d4948daee2e..a3747dd0850 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -579,7 +579,7 @@ mosip.regproc.cmd-validator.device-validation.processes=NEW,UPDATE,LOST,BIOMETRI # To enable or disable the Center working hour validation mosip.regproc.cmd-validator.working-hour-validation-required=true # To enable/disable trust validation of a digital id signature of a device -mosip.regproc.cmd-validator.device.disable-trust-validation=false +mosip.regproc.cmd-validator.device.disable-trust-validation=true # Maximum duration in minutes permissible between digital id timestamp and packet creation time mosip.regproc.cmd-validator.device.allowed-digital-id-timestamp-variation=30 # Timestamp format followed in digital id and biometrics payload From 4b5ccb6d926abdb3e80a438bc43838b198ef31e2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <48353425+pjoshi751@users.noreply.github.com> Date: Fri, 31 Dec 2021 16:18:28 +0530 Subject: [PATCH 0535/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a3747dd0850..a8e20cdb67d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -749,7 +749,6 @@ mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 packetmanager.name.source.resident=RESIDENT -packetmanager.name.source.cnie=CNIE packetmanager.name.source.default=REGISTRATION_CLIENT object.store.s3.use.account.as.bucketname=true From f279e9cac27a01d330f3a80651fd95fbee85af0c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 31 Dec 2021 16:24:37 +0530 Subject: [PATCH 0536/1358] CNIE removed. --- application-default.properties | 2 +- registration-processor-default.properties | 88 +++++++++++------------ 2 files changed, 45 insertions(+), 45 deletions(-) diff --git a/application-default.properties b/application-default.properties index 3c30a86b044..ee59cc5af26 100644 --- a/application-default.properties +++ b/application-default.properties @@ -448,7 +448,7 @@ mosip.registration.gps_device_enable_flag=n ## 2. 'defaultPriority' : use default priority packetmanager.default.priority. packetmanager.default.read.strategy=defaultPriority packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.name.source={cnie:'CNIE',default:'REGISTRATION_CLIENT',resident:'RESIDENT'} +packetmanager.name.source={default:'REGISTRATION_CLIENT',resident:'RESIDENT'} packetmanager.packet.signature.disable-verification=true mosip.commons.packetnames=id,evidence,optional provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a8e20cdb67d..bd35830e9b7 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -755,50 +755,50 @@ object.store.s3.use.account.as.bucketname=true # default priority for correction packets # To define priority use below stage names. For example, field 'gender' has priority in uin-generator-stage. The key for uin-generator-stage is 'uingenerator'. So the key would be 'packetmanager.provider.uingenerator.gender' # packetreceiver,packetuploader,packetvalidator,qualitychecker,osivalidator,demodedupe,classification,biodedupe,bioauth,manualverification,uingenerator,messagesender -packetmanager.provider.uingenerator.lastName=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.gender=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.city=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.modeOfClaim=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.cregion=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.postalCode=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.cprovince=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.suffix=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.bloodType=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.referenceIdentityNumber=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.individualBiometrics[Finger]=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.individualBiometrics[Iris]=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.individualBiometrics[Face]=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.province=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.caddressLine4=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.zone=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.caddressLine3=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.caddressLine2=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.caddressLine1=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.addressLine1=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.addressLine2=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.residenceStatus=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.addressLine3=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.addressLine4=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.email=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.czone=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.dateOfBirth=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.cpostalCode=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.ccity=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.firstName=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.IDSchemaVersion=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.phone=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.registrationType=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.middleName=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.UIN=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.region=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.maritalStatus=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.parentOrGuardianUIN=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.parentOrGuardianRID=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.proofOfAddress=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.proofOfDateOfBirth=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.proofOfIdentity=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.proofOfRelationship=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.provider.uingenerator.proofOfException=source:CNIE\/process:CORRECTION,source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.lastName=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.gender=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.city=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.modeOfClaim=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.cregion=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.postalCode=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.cprovince=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.suffix=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.bloodType=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.referenceIdentityNumber=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.individualBiometrics[Finger]=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.individualBiometrics[Iris]=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.individualBiometrics[Face]=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.province=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.caddressLine4=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.zone=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.caddressLine3=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.caddressLine2=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.caddressLine1=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.addressLine1=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.addressLine2=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.residenceStatus=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.addressLine3=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.addressLine4=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.email=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.czone=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.dateOfBirth=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.cpostalCode=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.ccity=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.firstName=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.IDSchemaVersion=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.phone=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.registrationType=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.middleName=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.UIN=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.region=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.maritalStatus=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.parentOrGuardianUIN=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.parentOrGuardianRID=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.proofOfAddress=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.proofOfDateOfBirth=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.proofOfIdentity=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.proofOfRelationship=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.provider.uingenerator.proofOfException=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT # packet-classifier-stage # List of tag generator that should be run on every packet From 53d1727c5d366f4e05f744d3e4f56725d680309d Mon Sep 17 00:00:00 2001 From: Monobikash Das <M1045447@mindtree.com> Date: Fri, 31 Dec 2021 17:38:59 +0530 Subject: [PATCH 0537/1358] added anonymous-profile route --- ...rocessor-camel-routes-activate-default.xml | 119 ++++++++++++++++++ ...cessor-camel-routes-deactivate-default.xml | 8 ++ ...on-processor-camel-routes-lost-default.xml | 37 +++++- ...ion-processor-camel-routes-new-default.xml | 38 +++++- ...essor-camel-routes-res-reprint-default.xml | 8 +- ...cessor-camel-routes-res-update-default.xml | 19 ++- ...-processor-camel-routes-update-default.xml | 36 +++++- 7 files changed, 256 insertions(+), 9 deletions(-) diff --git a/registration-processor-camel-routes-activate-default.xml b/registration-processor-camel-routes-activate-default.xml index 28eb1ba4264..72af7fa8757 100644 --- a/registration-processor-camel-routes-activate-default.xml +++ b/registration-processor-camel-routes-activate-default.xml @@ -34,4 +34,123 @@ </otherwise> </choice> </route> + <route id="securezone-notification-->packet-uploader activated route"> + <from uri="eventbus://securezone-notification-activated-bus-out" /> + <log message="securezone-notification-->packet-uploader activated route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <!-- Packet uploader to uin-generator Route --> + <route id="packet-uploader-->uin-generator activated route"> + <from uri="eventbus://packet-uploader-activated-bus-out" /> + <log message="packet-uploader-->uin-generator activated route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <!-- UIN Generator to biometric-extraction Route --> + <route id="uin-generation route-->biometric-extraction-stage activated route"> + <from uri="eventbus://uin-generator-activated-bus-out" /> + <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://biometric-extraction-bus-in" /> + </otherwise> + </choice> + </route> + <!-- biometric-extraction to finalization Route --> + <route id="biometric-extraction route-->finalization-stage activated route"> + <from uri="eventbus://biometric-extraction-activated-bus-out" /> + <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + </otherwise> + </choice> + </route> + <!-- finalization to activated Route --> + <route id="finalization route--> activated route"> + <from uri="eventbus://finalization-activated-bus-out" /> + <log message="finalization--> activated route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> </routes> diff --git a/registration-processor-camel-routes-deactivate-default.xml b/registration-processor-camel-routes-deactivate-default.xml index 146348baff8..d4d48e2fc4c 100644 --- a/registration-processor-camel-routes-deactivate-default.xml +++ b/registration-processor-camel-routes-deactivate-default.xml @@ -63,6 +63,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -71,6 +72,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -85,6 +87,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -93,6 +96,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://biometric-extraction-bus-in" /> @@ -107,6 +111,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -115,6 +120,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://finalization-bus-in" /> @@ -129,6 +135,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -137,6 +144,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index 278f1467030..caac0d18368 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -86,6 +86,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -94,6 +95,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://packet-classifier-bus-in" /> @@ -108,6 +110,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -116,6 +119,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://c-m-d-validator-bus-in" /> @@ -129,6 +133,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -137,6 +142,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> @@ -148,6 +154,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -158,6 +165,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -166,6 +174,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> @@ -183,6 +192,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -191,6 +201,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> @@ -208,6 +219,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -216,6 +228,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://quality-classifier-bus-in" /> @@ -229,6 +242,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -237,6 +251,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> @@ -257,6 +272,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -267,6 +283,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -301,6 +318,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -309,6 +327,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -322,6 +341,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -330,6 +350,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> @@ -341,6 +362,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -350,6 +372,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -358,6 +381,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://abis-handler-bus-in" /> @@ -370,6 +394,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -393,6 +418,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -401,6 +427,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://biometric-extraction-bus-in" /> @@ -415,6 +442,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -423,6 +451,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://finalization-bus-in" /> @@ -437,6 +466,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -445,10 +475,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> @@ -459,6 +490,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -467,10 +499,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="workflow-cmd://anonymous-profile" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 70d8311cd61..134267ae97c 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -85,6 +85,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -93,6 +94,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://packet-classifier-bus-in" /> @@ -107,6 +109,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -115,6 +118,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://c-m-d-validator-bus-in" /> @@ -128,6 +132,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -136,6 +141,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> @@ -147,6 +153,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -157,6 +164,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -165,6 +173,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> @@ -186,6 +195,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -194,6 +204,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> @@ -211,6 +222,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -219,6 +231,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://quality-classifier-bus-in" /> @@ -232,6 +245,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -240,6 +254,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> @@ -260,6 +275,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -270,6 +286,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -278,6 +295,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> @@ -299,6 +317,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -307,6 +326,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> @@ -322,6 +342,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -332,6 +353,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -366,6 +388,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -374,6 +397,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -387,6 +411,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -395,6 +420,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://abis-handler-bus-in" /> @@ -408,6 +434,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -416,6 +443,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -430,6 +458,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -438,6 +467,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://biometric-extraction-bus-in" /> @@ -453,6 +483,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -461,6 +492,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://finalization-bus-in" /> @@ -475,6 +507,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -483,10 +516,10 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> - <to uri="workflow-cmd://anonymous-profile" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> @@ -498,6 +531,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -506,8 +540,10 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> + <to uri="workflow-cmd://anonymous-profile" /> <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index fc79de8bcc6..044226a2cd4 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -64,6 +64,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -72,10 +73,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> @@ -86,6 +88,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -94,10 +97,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="workflow-cmd://anonymous-profile" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index 09fe9701bd5..bcd11c32aa7 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -85,6 +85,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -93,6 +94,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://demo-dedupe-bus-in" /> @@ -106,6 +108,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -132,6 +135,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -140,6 +144,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> @@ -155,6 +160,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -165,6 +171,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -188,6 +195,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -196,6 +204,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://biometric-extraction-bus-in" /> @@ -210,6 +219,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -218,6 +228,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://finalization-bus-in" /> @@ -232,6 +243,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -240,10 +252,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> @@ -254,6 +267,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -262,10 +276,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="workflow-cmd://anonymous-profile" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index e8be3d24ba9..c8683a1c5a6 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -86,6 +86,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -94,6 +95,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://packet-classifier-bus-in" /> @@ -107,6 +109,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -115,6 +118,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://c-m-d-validator-bus-in" /> @@ -128,6 +132,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -136,6 +141,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-officerId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> @@ -147,6 +153,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -157,6 +164,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -165,6 +173,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '' && @['tags']['META_INFO-OPERATIONS_DATA-supervisorId'] != '--TAG_VALUE_NOT_AVAILABLE--')]</jsonpath> @@ -186,6 +195,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -194,6 +204,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR' || @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> @@ -211,6 +222,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -233,6 +245,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -241,6 +254,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['FAILED'] || @['tags']['BIOMETRIC_CORRECTION_FLOW_STATUS'] in ['REJECTED'])]</jsonpath> @@ -261,6 +275,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -271,6 +286,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -293,6 +309,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -323,6 +340,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -331,6 +349,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> @@ -346,6 +365,7 @@ </when> <otherwise> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> @@ -356,6 +376,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -386,6 +407,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -394,6 +416,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> @@ -407,6 +430,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -415,6 +439,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://abis-handler-bus-in" /> @@ -428,6 +453,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -451,6 +477,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -459,6 +486,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://biometric-extraction-bus-in" /> @@ -473,6 +501,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -481,6 +510,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> <to uri="eventbus://finalization-bus-in" /> @@ -495,6 +525,7 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <when> <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> @@ -503,10 +534,11 @@ <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> @@ -527,8 +559,8 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="workflow-cmd://anonymous-profile" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> From cd5425a7b93f9a445a6ec475b060c0dc5e089fea Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Fri, 31 Dec 2021 19:36:48 +0530 Subject: [PATCH 0538/1358] updated uin & vid length.sequence-limit --- application-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index ee59cc5af26..d6061577911 100644 --- a/application-default.properties +++ b/application-default.properties @@ -262,7 +262,7 @@ mosip.kernel.vid.length=16 # Upper bound of number of digits in sequence allowed in id. For example if # limit is 3, then 12 is allowed but 123 is not allowed in id (in both # ascending and descending order) -# to disable sequence limit validation assign 0 or negative value +# to disable sequence limit validation assign 1 mosip.kernel.vid.length.sequence-limit=3 # Number of digits in repeating block allowed in id. For example if limit is 2, # then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) @@ -284,8 +284,8 @@ mosip.kernel.uin.restricted-numbers=786,666 # Upper bound of number of digits in sequence allowed in id. For example if # limit is 3, then 12 is allowed but 123 is not allowed in id (in both # ascending and descending order) -# to disable sequence limit validation assign 0 or negative value -mosip.kernel.uin.length.sequence-limit=0 +# to disable sequence limit validation assign 1 +mosip.kernel.uin.length.sequence-limit=3 # Number of digits in repeating block allowed in id. For example if limit is 2, # then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) #to disable validation assign zero or negative value From 1598ef7f63059cb6fb0269342354f9b383b02977 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 3 Jan 2022 11:19:57 +0530 Subject: [PATCH 0539/1358] Stray file removed. --- res.diff | 144 ------------------------------------------------------- 1 file changed, 144 deletions(-) delete mode 100644 res.diff diff --git a/res.diff b/res.diff deleted file mode 100644 index 4945cc9ba83..00000000000 --- a/res.diff +++ /dev/null @@ -1,144 +0,0 @@ -DIFFERENT VALUES: - -SYNCSERVICE: -< ${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/sync -> http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/sync - -IDREPOSITORY: -< http://idrepo-identity-service/idrepository/v1/identity/ -> http://identity.idrepo/idrepository/v1/identity/ - -INTERNALAUTHTRANSACTIONS: -< http://ida-internal-service/idauthentication/v1/internal/authTransactions -> http://ida-internal.ida/idauthentication/v1/internal/authTransactions - -token.request.secretKey: -< {cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -> ${mosip.mosip.resident.client.secret} - -IDREPOGETIDBYUIN: -< http://idrepo-identity-service/idrepository/v1/identity/idvid -> http://identity.idrepo/idrepository/v1/identity/idvid - -resident.secretKey: -< {cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -> ${mosip.mosip.resident.client.secret} - -SMSNOTIFIER: -< http://kernel-notification-service/v1/notifier/sms/send -> http://notifier.kernel/v1/notifier/sms/send - -POLICY_REQ_URL: -< http://pms-partner-manager-service/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -> http://pms-partner.pms/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies - -IDAUTHCREATEVID: -< http://idrepo-vid-service/idrepository/v1/vid -> http://vid.idrepo/idrepository/v1/vid - -RIDGENERATION: -< http://kernel-ridgenerator-service/v1/ridgenerator/generate/rid -> http://ridgenerator.kernel/v1/ridgenerator/generate/rid - -AUTHTYPESTATUSUPDATE: -< http://idrepo-identity-service/idrepository/v1/identity/authtypes/status -> http://identity.idrepo/idrepository/v1/identity/authtypes/status - -CREATEVID: -< http://idrepo-vid-service/idrepository/v1/vid -> http://vid.idrepo/idrepository/v1/vid - -CREDENTIAL_REQ_URL: -< http://idrepo-credential-request-generator/v1/credentialrequest/requestgenerator -> http://credentialrequest.idrepo/v1/credentialrequest/requestgenerator - -IDAUTHREVOKEVID: -< http://idrepo-vid-service/idrepository/v1/vid -> http://vid.idrepo/idrepository/v1/vid/deactivate - -MASTER: -< http://kernel-masterdata-service/v1/masterdata -> http://masterdata.kernel/v1/masterdata - -mosip.kernel.masterdata.audit-url: -< http://kernel-auditmanager-service/v1/auditmanager/audits -> http://auditmanager.kernel/v1/auditmanager/audits - -GETUINBYVID: -< http://idrepo-vid-service/idrepository/v1/vid -> http://vid.idrepo/idrepository/v1/vid - -REGISTRATIONSTATUSSEARCH: -< ${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/externalstatus/search -> http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search - -IDREPOGETIDBYRID: -< http://idrepo-identity-service/idrepository/v1/identity/idvid -> http://identity.idrepo/idrepository/v1/identity/idvid - -KERNELENCRYPTIONSERVICE: -< http://ida-internal-service/idauthentication/v1/internal/getCertificate -> http://ida-internal.ida/idauthentication/v1/internal/getCertificate - -auth.server.admin.allowed.audience: -< mosip-resident-client -> mosip-resident-client,mosip-reg-client - -EMAILNOTIFIER: -< http://kernel-notification-service/v1/notifier/email/send -> http://notifier.kernel/v1/notifier/email/send - -ENCRYPTURL: -< http://kernel-keymanager-service/v1/keymanager/encrypt -> http://keymanager.kernel/v1/keymanager/encrypt - -DECRYPT_API_URL: -< http://kernel-keymanager-service/v1/keymanager/decrypt -> http://keymanager.kernel/v1/keymanager/decrypt - -PARTNER_API_URL: -< http://pms-partner-manager-service/v1/partnermanager/partners -> http://pms-partner.pms/v1/partnermanager/partners - -CREDENTIAL_STATUS_URL: -< http://idrepo-credential-request-generator/v1/credentialrequest/get/ -> http://credentialrequest.idrepo/v1/credentialrequest/get/ - -KERNELAUTHMANAGER: -< http://kernel-auth-service/v1/authmanager/authenticate/clientidsecretkey -> http://authmanager.kernel/v1/authmanager/authenticate/clientidsecretkey - -MIDSCHEMAURL: -< http://kernel-syncdata-service/v1/syncdata/latestidschema -> http://syncdata.kernel/v1/syncdata/latestidschema - -CREDENTIAL_CANCELREQ_URL: -< http://idrepo-credential-request-generator/v1/credentialrequest/cancel/ -> http://credentialrequest.idrepo/v1/credentialrequest/cancel/ - -OTP_GEN_URL: -< http://ida-internal-service/idauthentication/v1/internal/otp -> http://ida-internal.ida/idauthentication/v1/internal/otp - -CREDENTIAL_TYPES_URL: -< http://idrepo-credential-service/v1/credentialservice/types -> http://credential.idrepo/v1/credentialservice/types - -PACKETRECEIVER: -< ${dmz.ingress.base.url}/registrationprocessor/v1/packetreceiver/registrationpackets -> http://regproc-group1/registrationprocessor/v1/packetreceiver/registrationpackets - -INTERNALAUTH: -< http://ida-internal-service/idauthentication/v1/internal/auth -> http://ida-internal.ida/idauthentication/v1/internal/auth - -======================================================= - -NEW PROPERTIES in /Users/puneet/Documents/mosip/develop2/mosip-config/sandbox/resident-mz.properties -set(['dmz.ingress.base.url']) - -======================================================= - -NEW PROPERITES in resident-default.properties -set([]) - From 22783ad0b2cb6de0686f833d96b3a0290b249af9 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 12:50:37 +0530 Subject: [PATCH 0540/1358] updated config for v3 deployment (dev3) --- application-default.properties | 222 ++++++++++++++++----------------- kernel-default.properties | 4 +- 2 files changed, 113 insertions(+), 113 deletions(-) diff --git a/application-default.properties b/application-default.properties index d6061577911..113f2a46ed2 100644 --- a/application-default.properties +++ b/application-default.properties @@ -14,99 +14,99 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.api.internal.url=${mosipbox.public.url} +mosip.api.internal.url=${mosip.api.internal.host} #mosip.api.external.url=${mosipbox.public.url} -db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 -softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f -softhsm.ida.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f -prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX -prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI -mosip.kernel.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf -mosip.kernel.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d -print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 -idrepo.websub.vid.credential.update.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - -ida.websub.authtype.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -ida.websub.credential.issue.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - -activemq.host=tcp://activemq -activemq.core.port=80 +#db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 +#softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f +#softhsm.ida.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f +#prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX +#prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI +mosip.kernel.uin.salt=${mosip.kernel.tokenid.uin.salt} +mosip.kernel.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +#print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 +#idrepo.websub.vid.credential.update.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 + +#ida.websub.authtype.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +#ida.websub.credential.issue.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +#ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +#ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +#ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +#ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +#ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 + +#activemq.host=tcp://activemq.activemq +#activemq.core.port=80 kafka.profile=default.svc.cluster.local kafka.port=9092 -mz.ingress.base.url=http://mz.ingress:30080 +mz.ingress.base.url=${mosip.api.internal.url} dmz.ingress.base.url=http://dmz.ingress:30080 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.default:80 -mosip.admin-service.url=http://admin-service.default:80 -mosip.admin-ui.url=http://admin-ui.default:80 -mosip.artifactory-service.url=http://artifactory-service.default:80 -mosip.clamav.url=http://clamav.default:80 -mosip.config-server.url=http://config-server.default:80 +mosip.admin-hotlist-service.url=http://admin-hotlist-service.admin:80 +mosip.admin-service.url=http://admin-service.admin:80 +mosip.admin-ui.url=http://admin-ui.admin:80 +mosip.artifactory-service.url=http://artifactory-service.artifactory:80 +mosip.clamav.url=http://clamav.clamav:80 +mosip.config-server.url=http://config-server.config-server:80 #datashare is using domain externally so removed http(handled by protocol property.) -mosip.datashare-service.url=datashare-service.default:80 +mosip.datashare-service.url=datashare-service.datashare:80 mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.default:80 -mosip.ida-internal-service.url=http://ida-internal-service.default:80 -mosip.ida-otp-service.url=http://ida-otp-service.default:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.default:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.default:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.default:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.default:80 -mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.default:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.default:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.default:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.default:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.default:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.default:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.default:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.default:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.default:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.default:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.default:80 +mosip.ida-auth-service.url=http://ida-auth-service.ida:80 +mosip.ida-internal-service.url=http://ida-internal-service.ida:80 +mosip.ida-otp-service.url=http://ida-otp-service.ida:80 +mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.idrepo:80 +mosip.idrepo-credential-service.url=http://idrepo-credential-service.idrepo:80 +mosip.idrepo-identity-service.url=http://idrepo-identity-service.idrepo:80 +mosip.idrepo-vid-service.url=http://idrepo-vid-service.idrepo:80 +mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.idrepo:80 +mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.kernel:80 +mosip.kernel-auth-service.url=http://kernel-auth-service.kernel:80 +mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.kernel:80 +mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.keymanager:80 +mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.kernel:80 +mosip.kernel-notification-service.url=http://kernel-notification-service.kernel:80 +mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.kernel:80 +mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.kernel:80 +mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.kernel:80 +mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.kernel:80 mosip.kernel.syncdata.syncjob.url=http://kernel-syncjob-service:8099 -mosip.keycloak.url=http://keycloak.default:80 +mosip.keycloak.url=http://keycloak.keycloak:80 mosip.kubernetes.url=http://kubernetes.default:80 mosip.minio.url=http://minio.default:9000 -mosip.mock-abis.url=http://mock-abis.default:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.default:80 +mosip.mock-abis.url=http://mock-abis.abis:80 +mosip.mock-biosdk-service.url=http://mock-biosdk-service.biosdk:80 mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.default:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.default:80 -mosip.pms-ui.url=http://pms-ui.default:80 -mosip.postgres.url=http://postgres.default:80 -mosip.prereg-application-service.url=http://prereg-application-service.default:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.default:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.default:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.default:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.default:80 -mosip.prereg-ui.url=http://prereg-ui.default:80 -mosip.print-service.url=http://print-service.default:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.default:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.default:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.default:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.default:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.default:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.default:80 -mosip.regproc-print-service.url=http://regproc-print-service.default:80 -mosip.regproc-group1-service.url=http://regproc-group1.default.80 -mosip.resident-service.url=http://resident-service.default:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.default:80 -mosip.softhsm-ida.url=http://softhsm-ida.default:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.default:80 +mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.pms:80 +mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.pms:80 +mosip.pms-ui.url=http://pms-ui.pms:80 +mosip.postgres.url=http://postgres.postgres:80 +mosip.prereg-application-service.url=http://prereg-application-service.prereg:80 +mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.prereg:80 +mosip.prereg-booking-service.url=http://prereg-booking-service.prereg:80 +mosip.prereg-captcha-service.url=http://prereg-captcha-service.prereg:80 +mosip.prereg-datasync-service.url=http://prereg-datasync-service.prereg:80 +mosip.prereg-ui.url=http://prereg-ui.prereg:80 +mosip.print-service.url=http://print-service.print:80 +mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.regproc:80 +mosip.regproc-notification-service.url=http://regproc-notification-service.regproc:80 +mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.regproc:80 +mosip.regproc-reprocessor.url=http://regproc-reprocessor.regproc:80 +mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.regproc:80 +mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.regproc:80 +mosip.regproc-print-service.url=http://regproc-print-service.regproc:80 +mosip.regproc-group1-service.url=http://regproc-group1.regproc.80 +mosip.resident-service.url=http://resident-service.resident:80 +mosip.service-hazelcast-server.url=http://service-hazelcast-server.regproc:80 +mosip.softhsm-ida.url=http://softhsm-ida.ida:80 +mosip.softhsm-keymanager.url=http://softhsm-keymanager.keymanager:80 mosip.ingress-nginx.url=http://ingress-nginx.default:80 mosip.kube-dns.url=http://kube-dns.default:80 mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.default:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.default:80 -mosip.graf-grafana.url=http://graf-grafana.default:80 +mosip.elasticsearch-master.url=http://elasticsearch-master.cattle-logging-system:80 +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.cattle-logging-system:80 +mosip.graf-grafana.url=http://graf-grafana.rancher-monitoring-grafana:80 mosip.kibana-kibana.url=http://kibana-kibana.default:80 mosip.metrics-server.url=http://metrics-server.default:80 mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 @@ -114,45 +114,45 @@ mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.def mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 mosip.packetmanager-service.url=http://packetmanager-service.packetmanager:80 -mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.default:80 -mosip.regproc-status-service.url=http://regproc-registration-status-service.default:80 +mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.regproc:80 +mosip.regproc-status-service.url=http://regproc-registration-status-service.regproc:80 mosip.websub.url=${mosip.api.internal.url} -keycloak.external.host=${mosip.api.internal.url}/keycloak - -mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 -mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.ida.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.reg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -preregistration.mosip.prereg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.misp.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.partner.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.policymanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.partnermanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.resident.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.admin.services.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.crereq.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.creser.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.datsha.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d -mosip.mosip.idrepo.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.syncdata.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.mpartner-default-auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -mosip.mosip.mpartner-default-print.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +keycloak.external.host=${keycloak.host} + +#mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 +#mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.ida.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.reg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#preregistration.mosip.prereg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.misp.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.partner.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.policymanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.partnermanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.resident.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.admin.services.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.crereq.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.creser.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.datsha.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +#mosip.mosip.idrepo.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.syncdata.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.mpartner-default-auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f +#mosip.mosip.mpartner-default-print.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 -email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 -email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 -email.smtp.secret={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c -activemq.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 - -s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d -s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 -s3.region= +#email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 +#email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 +#email.smtp.secret={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c +#activemq.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 + +#s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +#s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 +#s3.region= config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ diff --git a/kernel-default.properties b/kernel-default.properties index 70686645792..35374c38150 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -96,8 +96,8 @@ mosip.kernel.ida.client.id=mosip-ida-client mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} ## Token id salts -mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf -mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d +mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} ## VID generator service mosip.kernel.vid.min-unused-threshold=100000 From 614d2705758edf79b162148855bb3bc587ff8485 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 14:52:10 +0530 Subject: [PATCH 0541/1358] updated config for --- application-default.properties | 213 ++++++++++++++++----------------- syncdata-default.properties | 4 +- 2 files changed, 108 insertions(+), 109 deletions(-) diff --git a/application-default.properties b/application-default.properties index 113f2a46ed2..41857cb9f4b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -1,11 +1,43 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: +# override below properties for v2 deployment # keycloak.host # s3.accesskey # s3.region # s3.secretkey # mosip.api.internal.host +# mosip.mosip.admin.client.secret +# mosip.mosip.regproc.client.secret +# mosip.mosip.auth.client.secret +# mosip.mosip.ida.client.secret +# mosip.mosip.reg.client.secret +# preregistration.mosip.prereg.client.secret +# mosip.mosip.misp.client.secret +# mosip.mosip.partner.client.secret +# mosip.mosip.policymanager.client.secret +# mosip.mosip.partnermanager.client.secret +# mosip.mosip.resident.client.secret +# mosip.mosip.admin.services.client.secret +# mosip.mosip.crereq.client.secret +# mosip.mosip.creser.client.secret +# mosip.mosip.datsha.client.secret +# mosip.mosip.abis.client.secret +# mosip.mosip.creser.idpass.client.secret +# mosip.mosip.pms.client.secret +# keycloak.admin.password +# mosip.mosip.idrepo.client.secret +# mosip.mosip.syncdata.client.secret +# mosip.mosip.mpartner-default-auth.client.secret +# mosip.mosip.mpartner-default-print.client.secret +# email.smtp.host +# email.smtp.username +# email.smtp.secret +# activemq.password + +#s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d +#s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 +#s3.region= aplication.configuration.level.version=LTS @@ -42,117 +74,84 @@ kafka.port=9092 mz.ingress.base.url=${mosip.api.internal.url} -dmz.ingress.base.url=http://dmz.ingress:30080 -mosip.admin-hotlist-service.url=http://admin-hotlist-service.admin:80 -mosip.admin-service.url=http://admin-service.admin:80 -mosip.admin-ui.url=http://admin-ui.admin:80 -mosip.artifactory-service.url=http://artifactory-service.artifactory:80 -mosip.clamav.url=http://clamav.clamav:80 -mosip.config-server.url=http://config-server.config-server:80 +#dmz.ingress.base.url=http://dmz.ingress:30080 +mosip.admin-hotlist-service.url=http://admin-hotlist.admin +mosip.admin-service.url=http://admin-service.admin +mosip.admin-ui.url=http://admin-ui.admin +mosip.artifactory-service.url=http://artifactory.artifactory +mosip.clamav.url=http://clamav.clamav +mosip.config-server.url=http://config-server.config-server #datashare is using domain externally so removed http(handled by protocol property.) -mosip.datashare-service.url=datashare-service.datashare:80 -mosip.healthcheck-app-service.url=http://healthcheck-app-service.default:80 -mosip.ida-auth-service.url=http://ida-auth-service.ida:80 -mosip.ida-internal-service.url=http://ida-internal-service.ida:80 -mosip.ida-otp-service.url=http://ida-otp-service.ida:80 -mosip.idrepo-credential-request-generator.url=http://idrepo-credential-request-generator.idrepo:80 -mosip.idrepo-credential-service.url=http://idrepo-credential-service.idrepo:80 -mosip.idrepo-identity-service.url=http://idrepo-identity-service.idrepo:80 -mosip.idrepo-vid-service.url=http://idrepo-vid-service.idrepo:80 -mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.idrepo:80 -mosip.kernel-auditmanager-service.url=http://kernel-auditmanager-service.kernel:80 -mosip.kernel-auth-service.url=http://kernel-auth-service.kernel:80 -mosip.kernel-idgenerator-service.url=http://kernel-idgenerator-service.kernel:80 -mosip.kernel-keymanager-service.url=http://kernel-keymanager-service.keymanager:80 -mosip.kernel-masterdata-service.url=http://kernel-masterdata-service.kernel:80 -mosip.kernel-notification-service.url=http://kernel-notification-service.kernel:80 -mosip.kernel-otpmanager-service.url=http://kernel-otpmanager-service.kernel:80 -mosip.kernel-pridgenerator-service.url=http://kernel-pridgenerator-service.kernel:80 -mosip.kernel-ridgenerator-service.url=http://kernel-ridgenerator-service.kernel:80 -mosip.kernel-syncdata-service.url=http://kernel-syncdata-service.kernel:80 -mosip.kernel.syncdata.syncjob.url=http://kernel-syncjob-service:8099 -mosip.keycloak.url=http://keycloak.keycloak:80 -mosip.kubernetes.url=http://kubernetes.default:80 -mosip.minio.url=http://minio.default:9000 -mosip.mock-abis.url=http://mock-abis.abis:80 -mosip.mock-biosdk-service.url=http://mock-biosdk-service.biosdk:80 -mosip.mock-mv.url=http://mock-mv.default:80 -mosip.pms-partner-manager-service.url=http://pms-partner-manager-service.pms:80 -mosip.pms-policy-manager-service.url=http://pms-policy-manager-service.pms:80 -mosip.pms-ui.url=http://pms-ui.pms:80 -mosip.postgres.url=http://postgres.postgres:80 -mosip.prereg-application-service.url=http://prereg-application-service.prereg:80 -mosip.prereg-batchjob-service.url=http://prereg-batchjob-service.prereg:80 -mosip.prereg-booking-service.url=http://prereg-booking-service.prereg:80 -mosip.prereg-captcha-service.url=http://prereg-captcha-service.prereg:80 -mosip.prereg-datasync-service.url=http://prereg-datasync-service.prereg:80 -mosip.prereg-ui.url=http://prereg-ui.prereg:80 -mosip.print-service.url=http://print-service.print:80 -mosip.regproc-manual-verification-stage.url=http://regproc-manual-verification-stage.regproc:80 -mosip.regproc-notification-service.url=http://regproc-notification-service.regproc:80 -mosip.regproc-registration-transaction-service.url=http://regproc-registration-transaction-service.regproc:80 -mosip.regproc-reprocessor.url=http://regproc-reprocessor.regproc:80 -mosip.regproc-securezone-notification-stage.url=http://regproc-securezone-notification-stage.regproc:80 -mosip.regproc-workflowmanager.url=http://regproc-workflowmanager.regproc:80 -mosip.regproc-print-service.url=http://regproc-print-service.regproc:80 -mosip.regproc-group1-service.url=http://regproc-group1.regproc.80 -mosip.resident-service.url=http://resident-service.resident:80 -mosip.service-hazelcast-server.url=http://service-hazelcast-server.regproc:80 -mosip.softhsm-ida.url=http://softhsm-ida.ida:80 -mosip.softhsm-keymanager.url=http://softhsm-keymanager.keymanager:80 -mosip.ingress-nginx.url=http://ingress-nginx.default:80 -mosip.kube-dns.url=http://kube-dns.default:80 -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default:80 -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default:80 -mosip.elasticsearch-master.url=http://elasticsearch-master.cattle-logging-system:80 -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.cattle-logging-system:80 -mosip.graf-grafana.url=http://graf-grafana.rancher-monitoring-grafana:80 -mosip.kibana-kibana.url=http://kibana-kibana.default:80 -mosip.metrics-server.url=http://metrics-server.default:80 -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default:80 -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default:80 -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default:80 -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default:80 -mosip.packetmanager-service.url=http://packetmanager-service.packetmanager:80 -mosip.packet-receiver-service.url=http://regproc-packet-receiver-stage.regproc:80 -mosip.regproc-status-service.url=http://regproc-registration-status-service.regproc:80 +mosip.datashare-service.url=http://datashare.datashare +#mosip.healthcheck-app-service.url=http://healthcheck-app-service.default +mosip.ida-auth-service.url=http://ida-auth.ida +mosip.ida-internal-service.url=http://ida-internal.ida +mosip.ida-otp-service.url=http://ida-otp.ida +mosip.idrepo-credential-request-generator.url=http://credentialrequest.idrepo +mosip.idrepo-credential-service.url=http://credential.idrepo +mosip.idrepo-identity-service.url=http://identity.idrepo +mosip.idrepo-vid-service.url=http://vid.idrepo +mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.idrepo +mosip.kernel-auditmanager-service.url=http://auditmanager.kernel +mosip.kernel-auth-service.url=http://authmanager.kernel +mosip.kernel-idgenerator-service.url=http://idgenerator.kernel +mosip.kernel-keymanager-service.url=http://keymanager.keymanager +mosip.kernel-masterdata-service.url=http://masterdata.kernel +mosip.kernel-notification-service.url=http://notifier.kernel +mosip.kernel-otpmanager-service.url=http://otpmanager.kernel +mosip.kernel-pridgenerator-service.url=http://pridgenerator.kernel +mosip.kernel-ridgenerator-service.url=http://ridgenerator.kernel +mosip.kernel-syncdata-service.url=http://syncdata.kernel +mosip.kernel.syncdata.syncjob.url=http://kernel-syncjob-service99 +mosip.keycloak.url=http://keycloak.keycloak +mosip.kubernetes.url=http://kubernetes.default +mosip.minio.url=http://minio.minio:9000 +mosip.mock-abis.url=http://mock-abis.abis +mosip.mock-biosdk-service.url=http://biosdk-service.biosdk +mosip.mock-mv.url=http://mock-mv.regproc +mosip.pms-partner-manager-service.url=http://pms-partner.pms +mosip.pms-policy-manager-service.url=http://pms-policy.pms +mosip.pms-ui.url=http://pms-ui.pms +mosip.postgres.url=http://postgres.postgres +mosip.prereg-application-service.url=http://prereg-application.prereg +mosip.prereg-batchjob-service.url=http://prereg-batchjob.prereg +mosip.prereg-booking-service.url=http://prereg-booking.prereg +mosip.prereg-captcha-service.url=http://prereg-captcha.prereg +mosip.prereg-datasync-service.url=http://prereg-datasync.prereg +mosip.prereg-ui.url=http://prereg-ui.prereg +mosip.print-service.url=http://print-service.print +mosip.regproc-manual-verification-stage.url=${mosip.mock-mv.url} +mosip.regproc-notification-service.url=http://regproc-notifier.regproc +mosip.regproc-registration-transaction-service.url=http://regproc-trans.regproc +mosip.regproc-reprocessor.url=http://regproc-reprocess.regproc +mosip.regproc-securezone-notification-stage.url=http://regproc-group2.regproc +mosip.regproc-workflowmanager.url=http://regproc-workflow.regproc +mosip.regproc-print-service.url=http://regproc-print-service.regproc +mosip.regproc-group1-service.url=http://regproc-group1.regproc +mosip.resident-service.url=http://resident-service.resident +mosip.service-hazelcast-server.url=http://service-hazelcast-server.regproc +mosip.softhsm-ida.url=http://softhsm-ida.ida +mosip.softhsm-keymanager.url=http://softhsm-keymanager.keymanager +mosip.ingress-nginx.url=http://ingress-nginx.default +mosip.kube-dns.url=http://kube-dns.default +mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default +mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default +mosip.elasticsearch-master.url=http://elasticsearch-master.cattle-logging-system +mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.cattle-logging-system +mosip.graf-grafana.url=http://graf-grafana.rancher-monitoring-grafana +mosip.kibana-kibana.url=http://kibana-kibana.cattle-logging-system +mosip.metrics-server.url=http://metrics-server.default +mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default +mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default +mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default +mosip.prom-prometheus-server.url=http://prom-prometheus-server.default +mosip.packetmanager-service.url=http://packetmanager.packetmanager +mosip.packet-receiver-service.url=http://regproc-group1.regproc +mosip.regproc-status-service.url=http://regproc-status.regproc mosip.websub.url=${mosip.api.internal.url} keycloak.external.host=${keycloak.host} -#mosip.mosip.admin.client.secret={cipher}d1eac77ebe38f6a4b735a5a51055d2a8f71b9669ee68e78564b5d27a7b61f960 -#mosip.mosip.regproc.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.ida.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.reg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#preregistration.mosip.prereg.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.misp.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.partner.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.policymanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.partnermanager.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.resident.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.admin.services.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.crereq.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.creser.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.datsha.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.abis.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.creser.idpass.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.pms.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#keycloak.admin.password={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d -#mosip.mosip.idrepo.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.syncdata.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.mpartner-default-auth.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f -#mosip.mosip.mpartner-default-print.client.secret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f - - mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 -#email.smtp.host={cipher}26eb5384a1817305bc289b19a84cde1ec1bfdd0501afce4a40e50b26223671aee69da2d5781802ab1072c29424d9bff4 -#email.smtp.username={cipher}7b2ac139bc75bd2e26ae3aedd11c7c102cb3fe51c280d2db988783e484ea9e30 -#email.smtp.secret={cipher}c9e3b4e78507e2d3d6c26163ab12b7c2a269168b4edd45b09ad091e68ebad44ba3a3f9dd7e0c4790bd2c3edcf23289f960cfb0a26d81a7c1a12a7bd4d99f3c2c3a2651c27647265548e9f346878243dcd7b311e69fe5efda27c6399a18b87b5c -#activemq.password={cipher}3c7b6d545f11105e9a9a7e1d4dfd7829662d73c713576a877536ac783921c9f0 - -#s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d -#s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 -#s3.region= config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ @@ -477,7 +476,7 @@ object.store.s3.readlimit=10000000 ## Swift object.store.swift.username=test object.store.swift.password=test -object.store.swift.url=http://localhost:8080 +object.store.swift.url=http://localhost80 packet.manager.account.name=packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt diff --git a/syncdata-default.properties b/syncdata-default.properties index 03a77a0e405..a9971bdb169 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -92,8 +92,8 @@ mosip.kernel.ida.client.id=mosip-ida-client mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} ## Token id salts -mosip.kernel.tokenid.uin.salt=zHuDEAbmbxiUbUShgy6pwUhKh9DE0EZn9kQDKPPKbWscGajMwf -mosip.kernel.tokenid.partnercode.salt=yS8w5Wb6vhIKdf1msi4LYTJks7mqkbmITk2O63Iq8h0bkRlD0d +mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} ## VID generator service mosip.kernel.vid.min-unused-threshold=100000 From 17014169ea6372499cf9a85104a46b4ec9e6d66f Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 14:57:54 +0530 Subject: [PATCH 0542/1358] updated config --- application-default.properties | 40 ++++++++++++++-------------------- 1 file changed, 16 insertions(+), 24 deletions(-) diff --git a/application-default.properties b/application-default.properties index 41857cb9f4b..ae012239eb4 100644 --- a/application-default.properties +++ b/application-default.properties @@ -34,10 +34,22 @@ # email.smtp.username # email.smtp.secret # activemq.password - -#s3.accesskey={cipher}e16f132dc80ad5043acb6c2173c95be217ee5f5246a589ca58d5f75fa0a9d63d -#s3.secretkey={cipher}e419b23e688cc23991001afddbda206d42f7df5090c65f3566be7651c90128c1 -#s3.region= +# ida.websub.authtype.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.credential.issue.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# db.dbuser.password +# softhsm.kernel.pin +# softhsm.ida.pin +# prereg.captcha.site.key +# prereg.captcha.secret.key +# print.websub.hub.secret +# idrepo.websub.vid.credential.update.secret +# activemq.host +# activemq.core.port aplication.configuration.level.version=LTS @@ -49,32 +61,13 @@ mosip.recommended.centers.locCode=5 mosip.api.internal.url=${mosip.api.internal.host} #mosip.api.external.url=${mosipbox.public.url} -#db.dbuser.password={cipher}447a3783548004f6059aeee54383781ba2aad71eab81d49457a2a19b51d1b523 -#softhsm.kernel.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f -#softhsm.ida.pin={cipher}2d6aa328be521b2be6f33f476f7df2ea39c7ae1a3e2146ec169c5fac3225da3f -#prereg.captcha.site.key=6Lc4pewUAAAAANr3JkwuSVNCzQi9Z31g-NVKMXBX -#prereg.captcha.secret.key=6Lc4pewUAAAAAOq_6rlW8HcGX36rF9vVla32TvqI mosip.kernel.uin.salt=${mosip.kernel.tokenid.uin.salt} mosip.kernel.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} -#print.websub.hub.secret={cipher}29ef73e366406ea1e7ac1d43e8d96002c3bd814a8b8cde9a961d897f2dadede5 -#idrepo.websub.vid.credential.update.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - -#ida.websub.authtype.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -#ida.websub.credential.issue.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -#ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -#ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -#ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -#ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -#ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 - -#activemq.host=tcp://activemq.activemq -#activemq.core.port=80 kafka.profile=default.svc.cluster.local kafka.port=9092 mz.ingress.base.url=${mosip.api.internal.url} -#dmz.ingress.base.url=http://dmz.ingress:30080 mosip.admin-hotlist-service.url=http://admin-hotlist.admin mosip.admin-service.url=http://admin-service.admin mosip.admin-ui.url=http://admin-ui.admin @@ -83,7 +76,6 @@ mosip.clamav.url=http://clamav.clamav mosip.config-server.url=http://config-server.config-server #datashare is using domain externally so removed http(handled by protocol property.) mosip.datashare-service.url=http://datashare.datashare -#mosip.healthcheck-app-service.url=http://healthcheck-app-service.default mosip.ida-auth-service.url=http://ida-auth.ida mosip.ida-internal-service.url=http://ida-internal.ida mosip.ida-otp-service.url=http://ida-otp.ida From 15aae990fbb72a4ea4ce8185f0878dca1304b798 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 14:59:31 +0530 Subject: [PATCH 0543/1358] updated config for "object.store.swift.url" --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index ae012239eb4..075fe17ae8a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -468,7 +468,7 @@ object.store.s3.readlimit=10000000 ## Swift object.store.swift.username=test object.store.swift.password=test -object.store.swift.url=http://localhost80 +object.store.swift.url=http://localhost:8080 packet.manager.account.name=packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt From c55eada117c2156148a316d174ffb7afb06402c9 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 15:17:45 +0530 Subject: [PATCH 0544/1358] updated config "mosip.idrepo-bioextractor-service.url" --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 075fe17ae8a..9dadf834371 100644 --- a/application-default.properties +++ b/application-default.properties @@ -83,7 +83,7 @@ mosip.idrepo-credential-request-generator.url=http://credentialrequest.idrepo mosip.idrepo-credential-service.url=http://credential.idrepo mosip.idrepo-identity-service.url=http://identity.idrepo mosip.idrepo-vid-service.url=http://vid.idrepo -mosip.idrepo-bioextractor-service.url=http://idrepo-bioextractor-service.idrepo +mosip.idrepo-bioextractor-service.url=http://bioextractor.idrepo mosip.kernel-auditmanager-service.url=http://auditmanager.kernel mosip.kernel-auth-service.url=http://authmanager.kernel mosip.kernel-idgenerator-service.url=http://idgenerator.kernel From 651c7f35a4bbba9721e1964db1e3e770dcf653d8 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 15:32:26 +0530 Subject: [PATCH 0545/1358] commented mosip.api.internal.url --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 9dadf834371..8ccdcf9eae0 100644 --- a/application-default.properties +++ b/application-default.properties @@ -58,7 +58,7 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -mosip.api.internal.url=${mosip.api.internal.host} +#mosip.api.internal.url=${mosip.api.internal.host} #mosip.api.external.url=${mosipbox.public.url} mosip.kernel.uin.salt=${mosip.kernel.tokenid.uin.salt} From ca293b6417f4bc4bc79bf00f01fcc9b63c8cdd59 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 15:33:50 +0530 Subject: [PATCH 0546/1358] commented kernel salt tokenid --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 8ccdcf9eae0..04a04fa91d8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -61,8 +61,8 @@ mosip.recommended.centers.locCode=5 #mosip.api.internal.url=${mosip.api.internal.host} #mosip.api.external.url=${mosipbox.public.url} -mosip.kernel.uin.salt=${mosip.kernel.tokenid.uin.salt} -mosip.kernel.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} +#mosip.kernel.uin.salt=${mosip.kernel.tokenid.uin.salt} +#mosip.kernel.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} kafka.profile=default.svc.cluster.local kafka.port=9092 From 154616a76ef78680ea165bf45ea969d7baf1150f Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 3 Jan 2022 15:53:39 +0530 Subject: [PATCH 0547/1358] updated config --- application-default.properties | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/application-default.properties b/application-default.properties index 04a04fa91d8..e6a073c2459 100644 --- a/application-default.properties +++ b/application-default.properties @@ -34,13 +34,13 @@ # email.smtp.username # email.smtp.secret # activemq.password -# ida.websub.authtype.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# ida.websub.credential.issue.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# ida.websub.partner.service.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# ida.websub.hotlist.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# ida.websub.masterdata.templates.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# ida.websub.masterdata.titles.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 -# ida.websub.ca.certificate.callback.secret={cipher}8cee1868024e9c525f44b977b31b8b70a9ba510f85dc9d4bab1491c9b2b96da9 +# ida.websub.authtype.callback.secret +# ida.websub.credential.issue.callback.secret +# ida.websub.partner.service.callback.secret +# ida.websub.hotlist.callback.secret +# ida.websub.masterdata.templates.callback.secret +# ida.websub.masterdata.titles.callback.secret +# ida.websub.ca.certificate.callback.secret # db.dbuser.password # softhsm.kernel.pin # softhsm.ida.pin From 969c3d51606829857b281717b07966c7cac26fa1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 08:12:35 +0530 Subject: [PATCH 0548/1358] DMZ files removed as not required in V3. --- application-default-dmz.properties | 379 ------------------ ...ssor-camel-routes-activate-default-dmz.xml | 37 -- ...outes-biometric-correction-default-dmz.xml | 37 -- ...or-camel-routes-deactivate-default-dmz.xml | 37 -- ...rocessor-camel-routes-lost-default-dmz.xml | 37 -- ...processor-camel-routes-new-default-dmz.xml | 37 -- ...r-camel-routes-res-reprint-default-dmz.xml | 38 -- ...or-camel-routes-res-update-default-dmz.xml | 37 -- ...cessor-camel-routes-update-default-dmz.xml | 37 -- registration-processor-default-dmz.properties | 257 ------------ 10 files changed, 933 deletions(-) delete mode 100644 application-default-dmz.properties delete mode 100644 registration-processor-camel-routes-activate-default-dmz.xml delete mode 100644 registration-processor-camel-routes-biometric-correction-default-dmz.xml delete mode 100644 registration-processor-camel-routes-deactivate-default-dmz.xml delete mode 100644 registration-processor-camel-routes-lost-default-dmz.xml delete mode 100644 registration-processor-camel-routes-new-default-dmz.xml delete mode 100644 registration-processor-camel-routes-res-reprint-default-dmz.xml delete mode 100644 registration-processor-camel-routes-res-update-default-dmz.xml delete mode 100644 registration-processor-camel-routes-update-default-dmz.xml delete mode 100644 registration-processor-default-dmz.properties diff --git a/application-default-dmz.properties b/application-default-dmz.properties deleted file mode 100644 index 3c6632bf8c7..00000000000 --- a/application-default-dmz.properties +++ /dev/null @@ -1,379 +0,0 @@ -#---------------------------------------Common properties----------------------- -aplication.configuration.level.version=LTS -mosip.api.internal.url=${mosipbox.public.url} -mz.ingress.base.url=http://mz.ingress:30080 -mosip.keymanager.base.url=${mosip.kernel-keymanager-service.url} - - - -#Kernel-idobjectalidator -# Plug in property source as either 'LOCAL' or 'CONFIG_SERVER' or 'APPLICATION_CONTEXT' through this key -mosip.kernel.idobjectvalidator.property-source=APPLICATION_CONTEXT -mosip.kernel.idobjectvalidator.schema-name=mosip-identity-json-schema.json -mosip.kernel.idobjectvalidator.file-storage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ -mosip.kernel.idobjectvalidator.masterdata.locations.locationNotAvailable=NA - - - -mosip.masterdata.base.url = ${mz.ingress.base.url} -mosip.kernel.idobjectvalidator.masterdata.languages.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/languages -mosip.kernel.idobjectvalidator.masterdata.gendertypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/gendertypes -mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documentcategories -mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/documenttypes/{documentcategorycode}/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/{langcode} -mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/locations/locationhierarchy/{hierarchyname} -mosip.kernel.idobjectvalidator.masterdata.individualtypes.rest.uri=${mosip.masterdata.base.url}/v1/masterdata/individualtypes - -mosip.kernel.idobjectvalidator.mandatory-attributes.id-repository.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.new-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber -mosip.kernel.idobjectvalidator.mandatory-attributes.pre-registration.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-client.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics -mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registration=fullName,dateOfBirth|age,gender,addressLine1,region,province,city,zone,postalCode,residenceStatus,referenceIdentityNumber,parentOrGuardianName,parentOrGuardianRID|parentOrGuardianUIN,parentOrGuardianBiometrics - -mosip.country.code=WOR - -# Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra - -# Application IDs -mosip.prereg.app-id=PRE_REGISTRATION -mosip.reg.app-id=REGISTRATION -mosip.regproc.app-id=REGISTRATION_PROCESSOR -mosip.ida.app-id=IDA -mosip.ida.ref-id=INTERNAL -mosip.idrepo.app-id=ID_REPO - -# UTC ISO Date Time Pattern -mosip.utc-datetime-pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -mosip.sign.header=response-signature -mosip.signed.response.header=response-signature - -#----------------------- CBEFF Util-------------------------------------------------- -# Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. -mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ -# Cbeff XSD file name in config server -mosip.kernel.xsdfile=mosip-cbeff.xsd - -#----------------------------- Applicant Type -------------------------------------------------- -mosip.kernel.applicant.type.age.limit = 5 - -#----------------------------- Static PIN -------------------------------------------------- -mosip.kernel.pin.length=6 - -#-----------------------------TspId ----------------------------------------------- -#length of the Tsp id -mosip.kernel.tspid.length=4 - -#-----------------------------partnerId ----------------------------------------------- -#length of the partner id -mosip.kernel.partnerid.length=4 - -#-----------------------------TOKEN-ID Properties--------------------------------- -#length of the token id -mosip.kernel.tokenid.length=36 - -#-----------------------------Registration Center Id ----------------------------------------------- -#length of the registration center id -mosip.kernel.registrationcenterid.length=5 - -#-----------------------------Machine Id ----------------------------------------------- -#length of the machine id -mosip.kernel.machineid.length=5 - -#-----------------------------RID Properties--------------------------------------- -# length of the rid -mosip.kernel.rid.length=29 -# length of the timestamp -mosip.kernel.rid.timestamp-length=14 -# rid sequence max digits -mosip.kernel.rid.sequence-length=5 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -mosip.kernel.tokenid.sequence-limit=3 - -#-----------------------------PRID Properties------------------------------------ -#prid-length -mosip.kernel.prid.length=14 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -#to disable validation assign zero or negative value -mosip.kernel.prid.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -#to disable validation assign zero or negative value -mosip.kernel.prid.repeating-block-limit=3 - - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) to disable validation assign zero or negative value -mosip.kernel.prid.repeating-limit=2 - -# list of number that id should not be start with to disable null -mosip.kernel.prid.not-start-with=0,1 - -#restricted numbers for prid -mosip.kernel.prid.restricted-numbers=786,666 - - -#-----------------------------VID Properties-------------------------------------- -# length of the vid -mosip.kernel.vid.length=16 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -# to disable sequence limit validation assign 0 or negative value -mosip.kernel.vid.length.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -# to disable repeating block validation assign 0 or negative value -mosip.kernel.vid.length.repeating-block-limit=2 - - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) -# to disable repeating limit validation, assign 0 or negative value -mosip.kernel.vid.length.repeating-limit=2 - -# list of number that id should not be start with -# to disable null -mosip.kernel.vid.not-start-with=0,1 - -#restricted numbers for vid -mosip.kernel.vid.restricted-numbers=786,666 - -#-----------------------------UIN Properties-------------------------------------- -#length of the uin -mosip.kernel.uin.length=10 -#minimum threshold of unused uin -mosip.kernel.uin.min-unused-threshold=200000 -#number of uins to generate -mosip.kernel.uin.uins-to-generate=500000 -#restricted numbers for uin -mosip.kernel.uin.restricted-numbers=786,666 - -# Upper bound of number of digits in sequence allowed in id. For example if -# limit is 3, then 12 is allowed but 123 is not allowed in id (in both -# ascending and descending order) -# to disable sequence limit validation assign 0 or negative value -mosip.kernel.uin.length.sequence-limit=3 - -# Number of digits in repeating block allowed in id. For example if limit is 2, -# then 4xxx4 is allowed but 48xxx48 is not allowed in id (x is any digit) -#to disable validation assign zero or negative value -mosip.kernel.uin.length.repeating-block-limit=2 - -# Lower bound of number of digits allowed in between two repeating digits in -# id. For example if limit is 2, then 11 and 1x1 is not allowed in id (x is any digit) -# to disable repeating limit validation, assign 0 or negative value -mosip.kernel.uin.length.repeating-limit=2 - -#reverse group digit limit for uin filter -mosip.kernel.uin.length.reverse-digits-limit=5 - -#group digit limit for uin filter -mosip.kernel.uin.length.digits-limit=5 - -#should not start with -mosip.kernel.uin.not-start-with=0,1 - -#adjacent even digit limit for uin filter -mosip.kernel.uin.length.conjugative-even-digits-limit=3 - - - -#------------------------Auth-Adapter----------------------------------------------- -auth.server.validate.url=${mz.ingress.base.url}/v1/authmanager/authorize/admin/validateToken -#----------------------- Crypto -------------------------------------------------- -#Crypto asymmetric algorithm name -mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING -#Crypto symmetric algorithm name -mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding -#Keygenerator asymmetric algorithm name -mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA -#Keygenerator symmetric algorithm name -mosip.kernel.keygenerator.symmetric-algorithm-name=AES -#Asymmetric algorithm key length -mosip.kernel.keygenerator.asymmetric-key-length=2048 -#Symmetric algorithm key length -mosip.kernel.keygenerator.symmetric-key-length=256 -#Keygenerator symmetric algorithm name -mosip.kernel.keygenerator.symmetric-algorithm-name=AES -# keygenerator asymmetric algorithm name -mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA -#Encrypted data and encrypted symmetric key separator -mosip.kernel.data-key-splitter=#KEY_SPLITTER# -#GCM tag length -mosip.kernel.crypto.gcm-tag-length=128 -#Hash algo name -mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 -#Symmtric key length used in hash -mosip.kernel.crypto.hash-symmetric-key-length=256 -#No of iterations in hash -mosip.kernel.crypto.hash-iteration=100000 -#Sign algo name -mosip.kernel.crypto.sign-algorithm-name=RS256 - - -mosip.kernel.keymanager-service-decrypt-url=${mosip.keymanager.base.url}/v1/keymanager/decrypt -mosip.kernel.keymanager-service-sign-url=${mosip.keymanager.base.url}/v1/keymanager/sign -mosip.sign.applicationid=KERNEL -mosip.sign.refid=SIGN -mosip.kernel.cryptomanager.request_id=CRYPTOMANAGER.REQUEST -mosip.kernel.cryptomanager.request_version=v1.0 -mosip.kernel.signature.signature-request-id=SIGNATURE.REQUEST -mosip.kernel.signature.signature-version-id=v1.0 - - - -#----------------------------------ID Repo------------------------------------------ -mosip.idrepo.identity.uin-status.registered=ACTIVATED -mosip.idrepo.identity.uin-status=ACTIVATED,BLOCKED,DEACTIVATED - -#---------------------------------------otp manager service------------------------------- -#the default length for otp(in number) -mosip.kernel.otp.default-length=6 -#the default crypto function -#It can be: HmacSHA512, HmacSHA256, HmacSHA1. -mosip.kernel.otp.mac-algorithm=HmacSHA512 -#the OTP expires after the given time(in seconds). -mosip.kernel.otp.expiry-time=180 -#the key is freezed for the given time(in seconds). -mosip.kernel.otp.key-freeze-time=1800 -#the number of validation attempts allowed(in number). -#mosip.kernel.otp.validation-attempt-threshold =3 means , the validation and generation will be blocked from 4th time. -mosip.kernel.otp.validation-attempt-threshold=10 -#minimum length of key(in number). -mosip.kernel.otp.min-key-length=3 -#maximum length of key(in number). -mosip.kernel.otp.max-key-length=64 - - -#--------------------------------------Licensekeymanager Service-------------------------------------- -#the license key length. -mosip.kernel.licensekey.length=16 -#List of permissions -# NOTE: ',' in the below list is used as splitter in the implementation. -# Use of ',' in the values for below key should be avoided. -# Use of spaces before and after ',' also should be avoided. -mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authentication - Identity Data Match,Demo Authentication - Address Data Match,Demo Authentication - Full Address Data Match,Demo Authentication - Secondary Language Match,Biometric Authentication - FMR Data Match,Biometric Authentication - IIR Data Match,Biometric Authentication - FID Data Match,Static Pin Authentication,eKYC - limited,eKYC - Full,eKYC - No - - - -#-----------------------------Virus Scanner-------------------------------------- -mosip.kernel.virus-scanner.host=clamav -mosip.kernel.virus-scanner.port=80 - -#------------------------Transliteration----------------------------------------------- -mosip.kernel.transliteration.arabic-language-code=ara -mosip.kernel.transliteration.franch-language-code=fra -mosip.kernel.transliteration.english-language-code=eng - - - -#-------Registration processor Notification types------------ -mosip.registration.processor.notification.types=SMS|EMAIL - - -mosip.default.dob.month=01 -mosip.default.dob.day=01 -mosip.login.mode= email,mobile - - -#---Language orientation----- -mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng,fra - - - -#**************** Notification Type ************* -#mosip.notificationtype=SMS|EMAIL -mosip.notificationtype=EMAIL -mosip.kernel.sms.proxy-sms=false -#******** Notification lanugage types - either PRIMARY or BOTH ******** -mosip.notification.language-type=BOTH - - -#-------------------System--------------- -logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO - -#-------------------Admin--------------- -mosip.min-digit-longitude-latitude=4 -mosip.kernel.filtervalue.max_columns=20 - -auth.server.admin.validate.url=${mz.ingress.base.url}/v1/authmanager/authorize/admin/validateToken - -#------------------PDF Genration----------------------------------------- -mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 -#------------------Quality Check----------------------------------------- -#Quality threshold for applicant iris -mosip.iris_threshold=0 -#Quality threshold for applicant leftslap fingerprint -mosip.leftslap_fingerprint_threshold=0 -#Quality threshold for applicant rightslap fingerprint -mosip.rightslap_fingerprint_threshold=0 -#Quality threshold for applicant thumbs fingerprint -mosip.thumbs_fingerprint_threshold=0 -#Quality threshold for applicant face -mosip.facequalitythreshold=0 -#Bio SDK Integration -mosip.fingerprint.provider=io.mosip.kernel.bioapi.impl.BioApiImpl -mosip.face.provider=io.mosip.kernel.bioapi.impl.BioApiImpl -mosip.iris.provider=io.mosip.kernel.bioapi.impl.BioApiImpl - -#-------UIN Alias------------------- -mosip.uin.alias= - -#---------------------------------kernel Salt Generator---------------------------------------------------# -mosip.kernel.salt-generator.chunk-size=10 -mosip.kernel.salt-generator.start-sequence=0 -mosip.kernel.salt-generator.end-sequence=999 -#----------------------------------------------------------------------------------------------------------# -server.max-http-header-size=10000000 - -mosip.kernel.auth.adapter.ssl-bypass=true - -# device registration/deregistration config -mosip.stage.environment=Developer - -# log level -logging.level.root=WARN -logging.level.io.mosip=INFO -logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO - -#iam adapter -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter - -# tomcat access logs -server.tomcat.accesslog.enabled=true -server.tomcat.accesslog.directory=/dev -server.tomcat.accesslog.prefix=stdout -server.tomcat.accesslog.buffered=false -server.tomcat.accesslog.suffix= -server.tomcat.accesslog.file-date-format= -server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}","req.userAgent":"%{User-Agent}i","req.xForwardedFor":"%{X-Forwarded-For}i","req.referer":"%{Referer}i","req.method":"%m","req.remoteHost":"%a"} -server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve - - -mosip.mandatory-languages=eng -mosip.optional-languages=ara,eng -mosip.min-languages.count=2 -mosip.max-languages.count=3 -mosip.recommended.centers.locCode=6 - -#Config key to pick the preferred language for communicating to the Resident -mosip.default.user-preferred-language-attribute=preferredLang - -# URL to get new Auth Token from OIDC provider & to do online validation of auth token with OIDC provider. -auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ - -# Map to find the realm for the inputted appid to get the token from OIDC provider. -mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} diff --git a/registration-processor-camel-routes-activate-default-dmz.xml b/registration-processor-camel-routes-activate-default-dmz.xml deleted file mode 100644 index 71c3b1b90dc..00000000000 --- a/registration-processor-camel-routes-activate-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification activated route"> - <from uri="eventbus://packet-receiver-activated-bus-out" /> - <log message="packet-reciever-->securezone-notification activated-route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-biometric-correction-default-dmz.xml b/registration-processor-camel-routes-biometric-correction-default-dmz.xml deleted file mode 100644 index d23999be45e..00000000000 --- a/registration-processor-camel-routes-biometric-correction-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification biometric_correction route"> - <from uri="eventbus://packet-receiver-biometric_correction-bus-out" /> - <log message="packet-reciever-->securezone-notification biometric_correction ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-deactivate-default-dmz.xml b/registration-processor-camel-routes-deactivate-default-dmz.xml deleted file mode 100644 index 9157eb14f19..00000000000 --- a/registration-processor-camel-routes-deactivate-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification deactivated route"> - <from uri="eventbus://packet-receiver-deactivated-bus-out" /> - <log message="packet-reciever-->securezone-notification deactivated-route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-lost-default-dmz.xml b/registration-processor-camel-routes-lost-default-dmz.xml deleted file mode 100644 index 55cbf750ce1..00000000000 --- a/registration-processor-camel-routes-lost-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification lost Route --> - <route id="packet-reciever-->securezone-notification lost route"> - <from uri="eventbus://packet-receiver-lost-bus-out" /> - <log message="packet-reciever-->securezone-notification ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-new-default-dmz.xml b/registration-processor-camel-routes-new-default-dmz.xml deleted file mode 100644 index a633ab73b07..00000000000 --- a/registration-processor-camel-routes-new-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification new route"> - <from uri="eventbus://packet-receiver-new-bus-out" /> - <log message="packet-reciever-->securezone-notification new ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-res-reprint-default-dmz.xml b/registration-processor-camel-routes-res-reprint-default-dmz.xml deleted file mode 100644 index d1aab074d9d..00000000000 --- a/registration-processor-camel-routes-res-reprint-default-dmz.xml +++ /dev/null @@ -1,38 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification res_reprint route"> - <from uri="eventbus://packet-receiver-res_reprint-bus-out" /> - <log message="packet-reciever-->securezone-notification res_reprint ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - ` - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-res-update-default-dmz.xml b/registration-processor-camel-routes-res-update-default-dmz.xml deleted file mode 100644 index e6ddcb64b7e..00000000000 --- a/registration-processor-camel-routes-res-update-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification res_update route"> - <from uri="eventbus://packet-receiver-res_update-bus-out" /> - <log message="packet-reciever-->securezone-notification res_update ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-camel-routes-update-default-dmz.xml b/registration-processor-camel-routes-update-default-dmz.xml deleted file mode 100644 index 5dab02e7839..00000000000 --- a/registration-processor-camel-routes-update-default-dmz.xml +++ /dev/null @@ -1,37 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <!-- Packet-Reciever to securezone-notification Route --> - <route id="packet-reciever-->securezone-notification update route"> - <from uri="eventbus://packet-receiver-update-bus-out" /> - <log message="packet-reciever-->securezone-notification update ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://mz.ingress:30080/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> -</routes> \ No newline at end of file diff --git a/registration-processor-default-dmz.properties b/registration-processor-default-dmz.properties deleted file mode 100644 index f35c9c28716..00000000000 --- a/registration-processor-default-dmz.properties +++ /dev/null @@ -1,257 +0,0 @@ -#################################################################################################### -#---------------------------------------- COMMON PROPERTIES ---------------------------------------- -#################################################################################################### - -#------------------------------------------Spring properties---------------------------------------# - -# DB details to which regproc dmz services and stage will connect -mosip.registration.processor.database.hostname=mz.ingress -mosip.registration.processor.database.port=30090 - -# URL prefix to connect to mz services cluster -mz.ingress.url=${mz.ingress.base.url} - -# Persistence properties -javax.persistence.jdbc.driver=org.postgresql.Driver -javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc -javax.persistence.jdbc.user=regprcuser -javax.persistence.jdbc.password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 - -# Hibernate properties -hibernate.hbm2ddl.auto=none -hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect -hibernate.jdbc.lob.non_contextual_creation=true -hibernate.show_sql=false - -# Health checker config followed by all spring apps -management.endpoint.health.show-details=always -management.endpoints.web.exposure.include=info,health,refresh - -#----------------------------------Registration processor rest client API's------------------------# - -# Audit Service URLs -AUDIT=${mz.ingress.url}/v1/auditmanager/audits - -# Auth Services URLs -KEYBASEDTOKENAPI=${mz.ingress.url}/v1/authmanager/authenticate/clientidsecretkey -GETINDIVIDUALIDFROMUSERID=${mz.ingress.url}/v1/authmanager/individualId -TOKENVALIDATE=${mz.ingress.url}/v1/authmanager/authorize/admin/validateToken -DIGITALSIGNATURE=${mz.ingress.url}/v1/keymanager/sign - -# IDA Services URLs -ida-internal-auth-uri=${mz.ingress.url}/idauthentication/v1/internal/auth -ida-internal-get-certificate-uri=${mz.ingress.url}/idauthentication/v1/internal/getCertificate - -# Keymanager service URLs -CRYPTOMANAGERDECRYPT=${mz.ingress.url}/v1/keymanager/decrypt -ENCRYPTURL=${mz.ingress.url}/v1/keymanager/encrypt - -#------------------------------------Other common libraries properties-----------------------------# - -# Landing zone folder where uploaded files are temporarily kept -registration.processor.LANDING_ZONE = /mnt/regproc/landing - -# Base base package to be used for scanning components of the IAM adapter to autowire -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter - -# Token generation request details -token.request.id=io.mosip.registration.processor -token.request.appid=regproc -token.request.version=1.0 -token.request.clientId=mosip-regproc-client -token.request.secretKey={cipher}215f555ae8266e12fed8144620b34fa3f2be2f805a3d28f9e0cfca3e777d18db -token.request.issuerUrl=${mosip.api.internal.url}/keycloak/auth/realms/mosip - -# Request id to be used for various internal services -mosip.registration.processor.digital.signature.id=io.mosip.registration.processor -mosip.registration.processor.audit.id=mosip.applicanttype.getApplicantType -mosip.registration.processor.crypto.decrypt.id=mosip.cryptomanager.decrypt - -# Kernel Crypto signature -registration.processor.signature.isEnabled=true - -# The elapse time beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=300 - -# Virus Scanner Connection details -mosip.kernel.virus-scanner.host=clamav -mosip.kernel.virus-scanner.port=80 -# virus scanner provider to be passed during runtime. This property will load provider during startup -mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl - -# Extension used for the packets -registration.processor.packet.ext=.zip -# Id used for referencing keys in keymanager belonging to regproc module -registration.processor.application.id=REGISTRATION -# Version string that will be used in the reponses -mosip.registration.processor.application.version=1.0 -# Date time pattern that should be followed in timestamp for both request and response -mosip.registration.processor.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -# Date pattern for registrationDate that should be followed in lostrid request -mosip.registration.processor.lostrid.registrationdate.pattern=yyyy-MM-dd -# Timezone that is expected to be followed in the request and response -mosip.registration.processor.timezone=GMT -# Allowed time difference between the request time and the curren time -mosip.registration.processor.grace.period=10800 - -# The list of comma separated stages that should be successfully completed before packet -# reaches the stage that uploads packets to the packet store -mosip.registration.processor.registration.status.stages-before-reaching-packet-store=PacketReceiverStage,SecurezoneNotificationStage - -# Stage Group Configuratoins -# Default base packages for stage beans to be scanned in a stage group -mosip.regproc.mosip-stage-executor.stage-beans-base-packages.default=io.mosip.registration.processor,io.mosip.registrationprocessor,io.mosip.registartion.processor -# Add any new base package of Stage bean specific to stage group as below -# mosip.regproc.stage-groups.stage-beans-base-packages.<stage_group_name>=${mosip.regproc.stage-groups.stage-beans-base-packages.default} -# Example: mosip.regproc.stage-groups.stage-beans-base-packages.stage-group-1=${mosip.regproc.stage-groups.stage-beans-base-packages.default},my.stage.bean.base.package - -# Mostly used for forming the config server URI in stages -packet.info.storage.service=* -registration.processor.identityjson=identity-mapping.json -config.server.file.storage.uri=${spring.cloud.config.uri}/${packet.info.storage.service}/${spring.profiles.active}/${spring.cloud.config.label}/ - -# main processor used in stages -registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE -# sub processor used in stages -registration.processor.sub-processes=BIOMETRIC_CORRECTION - -#--------------------------------Registration core library properties------------------------------# - -# Regproc supported eventbus types: vertx, kafka. Defaults to vertx if the config is not present -mosip.regproc.eventbus.type=kafka - -# Kafka event bus config, will be used only when the type is kafka -# Kafka cluster servers comma separated, common for all stages and camel bridge -mosip.regproc.eventbus.kafka.bootstrap.servers=kafka-0.kafka-headless.default.svc.cluster.local:9092,kafka-1.kafka-headless.default.svc.cluster.local:9092,kafka-2.kafka-headless.default.svc.cluster.local:9092 - -# workel pool size to process multiple requests parallely by stages -worker.pool.size=10 - -#################################################################################################### -#------------------------------------ WORKFLOW ENGINE PROPERTIES ----------------------------------- -#################################################################################################### - -#------------------------------------------camel-bridge--------------------------------------------# - -mosip.regproc.camel.bridge.eventbus.kafka.commit.type=single -mosip.regproc.camel.bridge.eventbus.kafka.max.poll.records=100 -mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 -# Above 3 camel kafka config will have no effect, it is kept because MosipBridgeFactory extends -# MosipVerticleAPIManager -# Kafka consumer group id, used by kafka to identify multiple instances of the same consumer -mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-brdige-dmz - -# Camel Route xml files corresponding to the dmz flow -camel.dmz.active.flows.file.names=registration-processor-camel-routes-new-default-dmz.xml,registration-processor-camel-routes-update-default-dmz.xml,registration-processor-camel-routes-activate-default-dmz.xml,registration-processor-camel-routes-res-update-default-dmz.xml,registration-processor-camel-routes-deactivate-default-dmz.xml,registration-processor-camel-routes-lost-default-dmz.xml,registration-processor-camel-routes-res-reprint-default-dmz.xml,registration-processor-camel-routes-biometric-correction-default-dmz.xml -# Current zone on which services and stages are runnning, can be dmz or mz -registration.processor.zone=dmz -# Pause settings used by camel to match expression and pause packet processing -# Eg: [{"matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","resumeRemoveTags" : "HOTLISTED"}] -mosip.regproc.camelbridge.pause-settings=[] -# Prefix used by all the address in the camel flow -mosip.regproc.camelbridge.endpoint-prefix=eventbus:// - - -#################################################################################################### -#------------------------------------ REGPROC SERVICES PROPERTIES ---------------------------------- -#################################################################################################### - -#-------------------------------------Registration Status service----------------------------------# - -# Exposed API ids and versions used for request validation -mosip.registration.processor.registration.status.id=mosip.registration.status -mosip.registration.processor.registration.sync.id=mosip.registration.sync -mosip.registration.processor.lostrid.id=mosip.registration.lostrid -# Registration External Status Id -mosip.registration.processor.registration.external.status.id=mosip.registration.external.status -# Packet external Status Id -mosip.registration.processor.packet.external.status.id=mosip.registration.packet.external.status -mosip.registration.processor.sync.version=1.0 -mosip.registration.processor.registration.status.version=1.0 -mosip.registration.processor.lostrid.version=1.0 -# Registration External Status Version -mosip.registration.processor.registration.external.status.version=1.0 -# Packet Status Version -mosip.registration.processor.packet.external.status.version=1.0 - -# LatestTransactionTypeCodes Before uploading to Object Store -mosip.registration.processor.packet.status.transactiontypecodes-before-uploading-to-objectstore=PACKET_RECEIVER,SECUREZONE_NOTIFICATION -# LatestTransactionTypeCode uploading to Object Store -mosip.registration.processor.packet.status.transactiontypecodes-uploading-to-objectstore=UPLOAD_PACKET -# LatestTransactionTypeCodes time based resend required -mosip.registration.processor.packet.status.transactiontypecodes-time-based-resend-required=PACKET_RECEIVER - -# Maximum no of time client is allowed to upload a packet on failure -registration.processor.max.retry=3 - -# The comma separate list of external statuses that should be considered as processed -# for search API response consumed by regclient -mosip.registration.processor.registration.status.external-statuses-to-consider-processed=UIN_GENERATED,REREGISTER,REJECTED,REPROCESS_FAILED - -# this property is used in lostrid api to get postal code -mosip.registration.processor.postalcode.req.url=${mz.ingress.url}/v1/masterdata/registrationcenters -#registration status api controller assigned roles -mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR -mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN -mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostexternalstatussearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT - -#################################################################################################### -#------------------------------------- STAGE SPECIFIC PROPERTIES ----------------------------------- -#################################################################################################### - -#-----------------------------------------Packet Receiver Stage------------------------------------# - -# Supported commmit config: auto, batch, single -mosip.regproc.packet.receiver.eventbus.kafka.commit.type=single -# Maximum records that can be received in one poll from kafka -mosip.regproc.packet.receiver.eventbus.kafka.max.poll.records=100 -# Interval between each poll calls to kafka in milli sec -mosip.regproc.packet.receiver.eventbus.kafka.poll.frequency=100 -# Kafka consumer group id, used by kafka to identify multiple instances of the same consumer -mosip.regproc.packet.receiver.eventbus.kafka.group.id=packet-receiver-stage - -# Base sevlet path for the stage -mosip.regproc.packet.receiver.server.servlet.path=/registrationprocessor/v1/packetreceiver -# Port number in which the application will run -mosip.regproc.packet.receiver.server.port=8081 -# Port number to be used by eventbus for communicating with other vertx apps in the cluster -mosip.regproc.packet.receiver.eventbus.port=5711 - -# Flag to disable the copying of tags from the packet manger to the message event -mosip.regproc.packet.receiver.message.tag.loading.disable=true -#Maximum file size to be upload from packet receiver -registration.processor.max.file.size=5 -# Module id that should be added in the responses -mosip.registration.processor.packet.id=mosip.registration.packet - -#################################################################################################### -#----------------------------- NOT USED PROPERTIES (To be removed later) --------------------------- -#################################################################################################### - -#-----packet-utility---------- -# The known packet sources. Should be set as all fieldCategory present in idschema -# (NOTE : if fieldCategory is set as pvt then the source should be id) -registration.processor.sourcepackets=id,evidence,optional -# The mandatory default source packet.(In default configuration this is thd id packet) -packet.default.source=id -# the default schema field cagegory (ex - private) -schema.default.fieldCategory=pvt - -registration.processor.notification_service_subscriber_hub_url=${mosip.api.internal.url}/hub/ -registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 -registration.processor.notification_service_subscriber_topic=registration_processor_workflow_completed_event -registration.processor.notification_service_subscriber_callback_url=${mosip.api.internal.url}/registrationprocessor/v1/notification/callback/notify - -mosip.regproc.message.tag.loading.disable=true - - -mosip.iam.adapter.appid=regproc -mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret={cipher}9f6a1d9751bdd7e59ca3a9dbe66b47db3ecb7025e66a6746911de2bd841c804f - -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client From a64fe2491779dbe83ca038517562a0428640f388 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 11:38:30 +0530 Subject: [PATCH 0549/1358] [MOSIP-19369] Cleanup. WIP. --- admin-default.properties | 40 ++--- applicanttype.mvel | 76 ++++---- application-default.properties | 208 +++++----------------- data-share-default.properties | 8 +- hazelcast_dmz.xml | 47 ----- hotlist-default.properties | 8 +- id-authentication-default.properties | 24 +-- id-repository-default.properties | 54 +++--- kernel-default.properties | 38 ++-- mock-abis-default.properties | 2 +- partner-management-default.properties | 32 ++-- pre-registration-default.properties | 60 +++---- print-default.properties | 12 +- registration-processor-default.properties | 69 +++---- resident-default.properties | 44 ++--- syncdata-default.properties | 36 ++-- 16 files changed, 295 insertions(+), 463 deletions(-) delete mode 100644 hazelcast_dmz.xml diff --git a/admin-default.properties b/admin-default.properties index 5b6521cabd1..9752702ef76 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -16,8 +16,8 @@ mosip.kernel.database.hostname=postgres mosip.kernel.database.port=80 ## Account management -authmanager.base.url=${mosip.kernel-auth-service.url}/v1/authmanager -mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager +authmanager.base.url=${mosip.authmanager.url}/v1/authmanager +mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager mosip.admin.accountmgmt.user-name-url=/username/ mosip.admin.accountmgmt.user-detail-url=/userdetail/ mosip.admin.accountmgmt.unblock-url=/unblock/ @@ -25,9 +25,9 @@ mosip.admin.accountmgmt.change-passoword-url=/changepassword/ mosip.admin.accountmgmt.reset-password-url=/resetpassword/ mosip.admin.app-id=admin -mosip.kernel.signature.cryptomanager-encrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/private/encrypt -auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.refreshToken.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/refreshToken +mosip.kernel.signature.cryptomanager-encrypt-url=${mosip.kernel.keymanager.url}/v1/keymanager/private/encrypt +auth.server.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.refreshToken.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/refreshToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client auth.role.prefix=ROLE_ auth.header.name=Authorization @@ -49,10 +49,10 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false ## Use registration -auth.server.user-register-url=${mosip.kernel-auth-service.url}/v1/authmanager/user -mosip.kernel.emailnotifier-url=${mosip.kernel-notification-service.url}/v1/notifier/email/send -auth.server.sendotp-url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/sendotp -auth.server.user-add-password-url=${mosip.kernel-auth-service.url}/v1/authmanager/user/addpassword +auth.server.user-register-url=${mosip.authmanager.url}/v1/authmanager/user +mosip.kernel.emailnotifier-url=${mosip.kernel.notification.url}/v1/notifier/email/send +auth.server.sendotp-url=${mosip.authmanager.url}/v1/authmanager/authenticate/sendotp +auth.server.user-add-password-url=${mosip.authmanager.url}/v1/authmanager/user/addpassword mosip.admin-appid=admin mosip.admin-otp-context=auth-otp mosip.admin-userid-otp-type=USERID @@ -66,7 +66,7 @@ mosip.admin.security.policy.type1=password mosip.admin.security.policy.type2=password,otp mosip.admin.security.policy.type3=otp mosip.admin.security.policy.role-policy-mapping={ZONAL_ADMIN:'type2',ZONAL_APPROVER:'type1',CENTRAL_ADMIN:'type1',CENTRAL_APPROVER:'type1',REGISTRATION_OFFICER:'type1',REGISTRATION_SUPERVISOR:'type1',REGISTRATION_OPERATOR:'type1'} -mosip.admin.security.policy.userrole-auth-url=${mosip.kernel-auth-service.url}/v1/authmanager/role/{appId}/{username} +mosip.admin.security.policy.userrole-auth-url=${mosip.authmanager.url}/v1/authmanager/role/{appId}/{username} ## Masterdata cards @@ -164,13 +164,13 @@ mosip.admin.masterdata.card.valid-document-fra=Documents valides mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u0635\u0627\u0644\u062D\u0629 ## UIN activate/deactivate -mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} +mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} mosip.kernel.packet-status-update-url=${mosip.regproc-registration-transaction-service.url}/v1/registrationtransaction/search mosip.kernel.packet-reciever-api-url=${mosip.packet-receiver-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets -mosip.kernel.zone-validation-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/zones/authorize +mosip.kernel.zone-validation-url=${mosip.kernel.masterdata.url}/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 -mosip.kernel.audit.manager.api=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits -mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.kernel.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined @@ -216,14 +216,14 @@ regproc.token.request.clientId=mosip-regproc-client regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 -KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # IAM adapter mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip -mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 # in minutes @@ -266,10 +266,10 @@ mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ -MACHINE_GET_API=${mosip.kernel-masterdata-service.url}/v1/masterdata/machines/mappedmachines/?pageNumber=0&pageSize=100&orderBy=cr_dtimes&direction=DESC -CRYPTOMANAGERDECRYPT_API=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt -CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt -CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/?pageNumber=0&pageSize=100&orderBy=cr_dtimes&direction=DESC +CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt +CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt +CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ mosip.admin.packetupload.packetsync.url=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/syncV2 mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,lastName diff --git a/applicanttype.mvel b/applicanttype.mvel index 69da629d5dc..5ae1fcdcd1f 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -96,97 +96,97 @@ def getApplicantType() { if( ageCode == 'KER-MSD-151' ) { return "KER-MSD-151"; } if(itc == null || genderType == null || ageCode == null || isBioExPresent == null ) { - return isUpdateFlow(identity) ? "000" : "KER-MSD-147"; + return isUpdateFlow(identity) ? "A000" : "KER-MSD-147"; } System.out.println(itc + " - " + genderType + " - " + ageCode + " - " + isBioExPresent); if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "001"; + return "A001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "002"; + return "A002"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "003"; + return "A003"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "004"; + return "A004"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "005"; + return "A005"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "006"; + return "A006"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "007"; + return "A007"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "008"; + return "A008"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "005"; + return "A005"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "006"; + return "A006"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "007"; + return "A007"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "008"; + return "A008"; } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "009"; + return "A009"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "010"; + return "A010"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "011"; + return "A011"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "012"; + return "A012"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "013"; + return "A013"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "016"; + return "A016"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "013"; + return "A013"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "016"; + return "A016"; } else if (itc == NonResident && genderType == MALE && ageCode == MINOR && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == MALE && ageCode == MINOR && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == NonResident && genderType == Others && ageCode == MINOR && isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == Others && ageCode == MINOR && isBioExPresent) { - return "015"; + return "A015"; } else if (itc == NonResident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { - return "015"; + return "A015"; } else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { - return "015"; + return "A015"; } else if (itc == NonResident && genderType == Others && ageCode == MINOR && !isBioExPresent) { - return "014"; + return "A014"; } else if (itc == Resident && genderType == Others && ageCode == MINOR && !isBioExPresent) { - return "015"; + return "A015"; } - return "000"; + return "A000"; } diff --git a/application-default.properties b/application-default.properties index e6a073c2459..5a25aec012c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -2,54 +2,11 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # override below properties for v2 deployment -# keycloak.host +# keycloak.internal.url # s3.accesskey # s3.region # s3.secretkey # mosip.api.internal.host -# mosip.mosip.admin.client.secret -# mosip.mosip.regproc.client.secret -# mosip.mosip.auth.client.secret -# mosip.mosip.ida.client.secret -# mosip.mosip.reg.client.secret -# preregistration.mosip.prereg.client.secret -# mosip.mosip.misp.client.secret -# mosip.mosip.partner.client.secret -# mosip.mosip.policymanager.client.secret -# mosip.mosip.partnermanager.client.secret -# mosip.mosip.resident.client.secret -# mosip.mosip.admin.services.client.secret -# mosip.mosip.crereq.client.secret -# mosip.mosip.creser.client.secret -# mosip.mosip.datsha.client.secret -# mosip.mosip.abis.client.secret -# mosip.mosip.creser.idpass.client.secret -# mosip.mosip.pms.client.secret -# keycloak.admin.password -# mosip.mosip.idrepo.client.secret -# mosip.mosip.syncdata.client.secret -# mosip.mosip.mpartner-default-auth.client.secret -# mosip.mosip.mpartner-default-print.client.secret -# email.smtp.host -# email.smtp.username -# email.smtp.secret -# activemq.password -# ida.websub.authtype.callback.secret -# ida.websub.credential.issue.callback.secret -# ida.websub.partner.service.callback.secret -# ida.websub.hotlist.callback.secret -# ida.websub.masterdata.templates.callback.secret -# ida.websub.masterdata.titles.callback.secret -# ida.websub.ca.certificate.callback.secret -# db.dbuser.password -# softhsm.kernel.pin -# softhsm.ida.pin -# prereg.captcha.site.key -# prereg.captcha.secret.key -# print.websub.hub.secret -# idrepo.websub.vid.credential.update.secret -# activemq.host -# activemq.core.port aplication.configuration.level.version=LTS @@ -58,102 +15,27 @@ aplication.configuration.level.version=LTS # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 -#mosip.api.internal.url=${mosip.api.internal.host} -#mosip.api.external.url=${mosipbox.public.url} - -#mosip.kernel.uin.salt=${mosip.kernel.tokenid.uin.salt} -#mosip.kernel.partnercode.salt=${mosip.kernel.tokenid.partnercode.salt} -kafka.profile=default.svc.cluster.local -kafka.port=9092 - - -mz.ingress.base.url=${mosip.api.internal.url} -mosip.admin-hotlist-service.url=http://admin-hotlist.admin -mosip.admin-service.url=http://admin-service.admin -mosip.admin-ui.url=http://admin-ui.admin -mosip.artifactory-service.url=http://artifactory.artifactory -mosip.clamav.url=http://clamav.clamav -mosip.config-server.url=http://config-server.config-server -#datashare is using domain externally so removed http(handled by protocol property.) -mosip.datashare-service.url=http://datashare.datashare -mosip.ida-auth-service.url=http://ida-auth.ida -mosip.ida-internal-service.url=http://ida-internal.ida -mosip.ida-otp-service.url=http://ida-otp.ida -mosip.idrepo-credential-request-generator.url=http://credentialrequest.idrepo -mosip.idrepo-credential-service.url=http://credential.idrepo -mosip.idrepo-identity-service.url=http://identity.idrepo -mosip.idrepo-vid-service.url=http://vid.idrepo -mosip.idrepo-bioextractor-service.url=http://bioextractor.idrepo -mosip.kernel-auditmanager-service.url=http://auditmanager.kernel -mosip.kernel-auth-service.url=http://authmanager.kernel -mosip.kernel-idgenerator-service.url=http://idgenerator.kernel -mosip.kernel-keymanager-service.url=http://keymanager.keymanager -mosip.kernel-masterdata-service.url=http://masterdata.kernel -mosip.kernel-notification-service.url=http://notifier.kernel -mosip.kernel-otpmanager-service.url=http://otpmanager.kernel -mosip.kernel-pridgenerator-service.url=http://pridgenerator.kernel -mosip.kernel-ridgenerator-service.url=http://ridgenerator.kernel -mosip.kernel-syncdata-service.url=http://syncdata.kernel -mosip.kernel.syncdata.syncjob.url=http://kernel-syncjob-service99 -mosip.keycloak.url=http://keycloak.keycloak -mosip.kubernetes.url=http://kubernetes.default -mosip.minio.url=http://minio.minio:9000 -mosip.mock-abis.url=http://mock-abis.abis -mosip.mock-biosdk-service.url=http://biosdk-service.biosdk -mosip.mock-mv.url=http://mock-mv.regproc -mosip.pms-partner-manager-service.url=http://pms-partner.pms -mosip.pms-policy-manager-service.url=http://pms-policy.pms -mosip.pms-ui.url=http://pms-ui.pms -mosip.postgres.url=http://postgres.postgres -mosip.prereg-application-service.url=http://prereg-application.prereg -mosip.prereg-batchjob-service.url=http://prereg-batchjob.prereg -mosip.prereg-booking-service.url=http://prereg-booking.prereg -mosip.prereg-captcha-service.url=http://prereg-captcha.prereg -mosip.prereg-datasync-service.url=http://prereg-datasync.prereg -mosip.prereg-ui.url=http://prereg-ui.prereg -mosip.print-service.url=http://print-service.print -mosip.regproc-manual-verification-stage.url=${mosip.mock-mv.url} -mosip.regproc-notification-service.url=http://regproc-notifier.regproc -mosip.regproc-registration-transaction-service.url=http://regproc-trans.regproc -mosip.regproc-reprocessor.url=http://regproc-reprocess.regproc -mosip.regproc-securezone-notification-stage.url=http://regproc-group2.regproc -mosip.regproc-workflowmanager.url=http://regproc-workflow.regproc -mosip.regproc-print-service.url=http://regproc-print-service.regproc -mosip.regproc-group1-service.url=http://regproc-group1.regproc -mosip.resident-service.url=http://resident-service.resident -mosip.service-hazelcast-server.url=http://service-hazelcast-server.regproc -mosip.softhsm-ida.url=http://softhsm-ida.ida -mosip.softhsm-keymanager.url=http://softhsm-keymanager.keymanager -mosip.ingress-nginx.url=http://ingress-nginx.default -mosip.kube-dns.url=http://kube-dns.default -mosip.dashboard-metrics-scraper.url=http://dashboard-metrics-scraper.default -mosip.kubernetes-dashboard.url=http://kubernetes-dashboard.default -mosip.elasticsearch-master.url=http://elasticsearch-master.cattle-logging-system -mosip.elasticsearch-master-headless.url=http://elasticsearch-master-headless.cattle-logging-system -mosip.graf-grafana.url=http://graf-grafana.rancher-monitoring-grafana -mosip.kibana-kibana.url=http://kibana-kibana.cattle-logging-system -mosip.metrics-server.url=http://metrics-server.default -mosip.prom-prometheus-alertmanager.url=http://prom-prometheus-alertmanager.default -mosip.prom-prometheus-node-exporter.url=http://prom-prometheus-node-exporter.default -mosip.prom-prometheus-pushgateway.url=http://prom-prometheus-pushgateway.default -mosip.prom-prometheus-server.url=http://prom-prometheus-server.default -mosip.packetmanager-service.url=http://packetmanager.packetmanager -mosip.packet-receiver-service.url=http://regproc-group1.regproc -mosip.regproc-status-service.url=http://regproc-status.regproc -mosip.websub.url=${mosip.api.internal.url} -keycloak.external.host=${keycloak.host} - -mosip.kernel.notification.email.from={cipher}36c31e62f69626c1a027747fae8657588c6ab527322d6fbdf4ea5b1934732505 +## Common properties used across different modules +mosip.api.internal.url=https://${mosip.api.internal.host} +mosip.kernel.authmanager.url=http://authmanager.kernel +mosip.kernel.masterdata.url=http://masterdata.kernel +mosip.kernel.keymanager.url=http://keymanager.kernel +mosip.kernel.auditmanager.url=http://auditmanager.kernel +mosip.kernel.notification.url=http://notifier.kernel +mosip.kernel.idgenerator.url=http://idgenerator.kernel +mosip.idrepo.identity.url=http://idrepo-identity.idrepo +mosip.idrepo.vid.url=http://idrepo-vid.idrepo +mosip.admin.hotlist.url=http://admin-hotlist.admin +mosip.pms.policymanager.url=http://pms-policy.pms +mosip.pms.partnermanager.url=http://pms-partner.pms +mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo +mosip.datashare.url=http://datashare.datashare +mosip.biosdk.service.url=http://biosdk-service.biosdk config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ - -#-------------------------------------------------------------------------------------------------- -#mosip.masterdata.base.url = http://masterdata.kernel -#mosip.syncdata.base.url=http://syncdata.kernel - # masterdata field data url -mosip.idobjectvalidator.masterdata.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/possiblevalues/{subType} +mosip.idobjectvalidator.masterdata.rest.uri=${mosip.kernel.masterdata.url}/v1/masterdata/possiblevalues/{subType} # Path to IDSchemaVersion. Path is defined as per JsonPath.compile. mosip.kernel.idobjectvalidator.identity.id-schema-version-path=identity.IDSchemaVersion # Path to dateOfBirth field. Path is defined as per JsonPath.compile. @@ -184,8 +66,8 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara,fra -mosip.right_to_left_orientation=ara +mosip.supported-languages=eng,fra +mosip.right_to_left_orientation= mosip.left_to_right_orientation=eng,fra ## Application IDs @@ -294,14 +176,13 @@ mosip.kernel.uin.not-start-with=0,1 #adjacent even digit limit for uin filter mosip.kernel.uin.length.conjugative-even-digits-limit=3 - ## Auth adapter -auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ -auth-token-generator.rest.issuerUrl=${keycloak.external.host}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.external.host}/auth/realms/mosip +auth.server.validate.url=${mosip.kernel.auth..url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip -#iam adapter +## iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} @@ -320,12 +201,12 @@ mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 mosip.kernel.crypto.hash-symmetric-key-length=256 mosip.kernel.crypto.hash-iteration=100000 mosip.kernel.crypto.sign-algorithm-name=RS256 -mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/publickey/{applicationId} -mosip.kernel.keymanager-service-decrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt -mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/auth/decrypt -mosip.kernel.keymanager-service-sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/sign -mosip.kernel.keymanager.cert.url=${mosip.kernel-keymanager-service.url}/v1/keymanager/getCertificate -mosip.kernel.keymanager-service-CsSign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/cssign +mosip.kernel.keymanager-service-publickey-url=${mosip.kernel.keymanager.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager-service-decrypt-url=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt +mosip.kernel.keymanager-service-auth-decrypt-url=${mosip.kernel.keymanager.url}/v1/keymanager/auth/decrypt +mosip.kernel.keymanager-service-sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/sign +mosip.kernel.keymanager.cert.url=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate +mosip.kernel.keymanager-service-CsSign-url=${mosip.kernel.keymanager.url}/v1/keymanager/cssign mosip.sign.applicationid=KERNEL mosip.sign.refid=SIGN mosip.kernel.cryptomanager.request_id=CRYPTOMANAGER.REQUEST @@ -361,7 +242,7 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=80 ## Transliteration @@ -389,7 +270,7 @@ logging.level.org.springframework.web.filter.CommonsRequestLoggingFilter=INFO ## Admin mosip.min-digit-longitude-latitude=4 mosip.kernel.filtervalue.max_columns=20 -auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken ## PDF generation. TODO: this password must be passed as config server env variable mosip.kernel.pdf_owner_password={cipher}6cbd7358f7a821132862475c16cf48e575c8e2c5f994fa7140ee08f364015b24 @@ -424,11 +305,11 @@ management.endpoints.web.exposure.include=* management.endpoint.prometheus.enabled=true management.metrics.export.prometheus.enabled=true -mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest -mosip.kernel.syncdata-service-dynamicfield-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/dynamicfields +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-dynamicfield-url=${mosip.kernel.masterdata.url}/v1/masterdata/dynamicfields mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ -mosip.kernel.keymanager-service-validate-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/validate -mosip.kernel.keymanager-service-csverifysign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/csverifysign +mosip.kernel.keymanager-service-validate-url=${mosip.kernel.keymanager.url}/v1/keymanager/validate +mosip.kernel.keymanager-service-csverifysign-url=${mosip.kernel.keymanager.url}/v1/keymanager/csverifysign ## GPS mosip.registration.gps_device_enable_flag=n @@ -471,11 +352,11 @@ object.store.swift.password=test object.store.swift.url=http://localhost:8080 packet.manager.account.name=packet-manager -CRYPTOMANAGER_DECRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt -CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt -IDSCHEMAURL=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest -KEYMANAGER_SIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/sign -AUDIT_URL=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt +CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt +IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest +KEYMANAGER_SIGN=${mosip.kernel.keymanager.url}/v1/keymanager/sign +AUDIT_URL=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits packet.default.source=id schema.default.fieldCategory=pvt,none @@ -503,12 +384,11 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.hub.url=${mosip.websub.url}/hub/ websub.publish.url=${mosip.websub.url}/hub/ - mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages=ara,fra +mosip.optional-languages=fra mosip.min-languages.count=2 -mosip.max-languages.count=3 +mosip.max-languages.count=2 # These are default languages used for sending notifications mosip.default.template-languages=eng,fra diff --git a/data-share-default.properties b/data-share-default.properties index c0bd0d83889..7aa1f4c753c 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -7,10 +7,10 @@ mosip.data.share.service.id=mosip.data.share mosip.data.share.service.version=1.0 -CRYPTOMANAGER_ENCRYPT=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt -KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign -PARTNER_POLICY=${mosip.pms-policy-manager-service.url}/v1/policymanager/policies/{policyId}/partner/{partnerId} -KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt +KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign +PARTNER_POLICY=${mosip.pms.policymanager.url}/v1/policymanager/policies/{policyId}/partner/{partnerId} +KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey data.share.application.id=PARTNER diff --git a/hazelcast_dmz.xml b/hazelcast_dmz.xml deleted file mode 100644 index 3ab6b64f7d0..00000000000 --- a/hazelcast_dmz.xml +++ /dev/null @@ -1,47 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<!-- ~ Copyright 2017 Red Hat, Inc. ~ ~ Red Hat licenses this file to you - under the Apache License, version 2.0 ~ (the "License"); you may not use - this file except in compliance with the ~ License. You may obtain a copy - of the License at: ~ ~ http://www.apache.org/licenses/LICENSE-2.0 ~ ~ Unless - required by applicable law or agreed to in writing, software ~ distributed - under the License is distributed on an "AS IS" BASIS, WITHOUT ~ WARRANTIES - OR CONDITIONS OF ANY KIND, either express or implied. See the ~ License for - the specific language governing permissions and limitations ~ under the License. --> - -<hazelcast - xsi:schemaLocation="http://www.hazelcast.com/schema/config hazelcast-config-3.10.xsd" - xmlns="http://www.hazelcast.com/schema/config" - xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> - <properties> - <property name="hazelcast.discovery.enabled">true</property> - <property name="hazelcast.logging.type">slf4j</property> - </properties> -<group> - <name>k8s</name> - <password/> - </group> - <network> - <join> - <multicast enabled="false"/> - <tcp-ip enabled="true"> - <interface>127.0.0.1</interface> - </tcp-ip> - </join> - <interfaces enabled="true"> - <interface>127.0.0.1</interface> - </interfaces> -<!-- For vertx uncomment the below join section and comment the above join and interfaces section. --> -<!-- <join> - <multicast enabled="false"/> - <tcp-ip enabled="false" /> - <discovery-strategies> - <discovery-strategy enabled="true" - class="com.hazelcast.kubernetes.HazelcastKubernetesDiscoveryStrategy"> - <properties> - <property name="service-dns">service-hazelcast-server.default.svc.cluster.local</property> - </properties> - </discovery-strategy> - </discovery-strategies> - </join> --> - </network> -</hazelcast> diff --git a/hotlist-default.properties b/hotlist-default.properties index d64a5cf7cdc..fdd711fcef4 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -37,21 +37,21 @@ mosip.hotlist.cleanup-schedule.init-delay=24 mosip.hotlist.cleanup-schedule.fixed-rate=24 ## REST services -mosip.idrepo.audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.idrepo.audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST mosip.idrepo.audit.rest.headers.mediaType=application/json -mosip.hotlist.encryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +mosip.hotlist.encryptor.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt mosip.hotlist.encryptor.rest.httpMethod=POST mosip.hotlist.encryptor.rest.headers.mediaType=application/json mosip.hotlist.encryptor.rest.timeout=100 -mosip.hotlist.decryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +mosip.hotlist.decryptor.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt mosip.hotlist.decryptor.rest.httpMethod=POST mosip.hotlist.decryptor.rest.headers.mediaType=application/json mosip.hotlist.decryptor.rest.timeout=100 -mosip.hotlist.audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.hotlist.audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.hotlist.audit.rest.httpMethod=POST mosip.hotlist.audit.rest.headers.mediaType=application/json diff --git a/id-authentication-default.properties b/id-authentication-default.properties index ae6d1e323b0..2adeccf5797 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -109,7 +109,7 @@ mosip.date-of-birth.pattern=yyyy/MM/dd ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace -mosip.biosdk.default.service.url=${mosip.mock-biosdk-service.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -133,7 +133,7 @@ mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.version=0.9 mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.default=${mosip.biosdk.default.service.url} ## Kernel-Audit -audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits audit.rest.httpMethod=POST audit.rest.headers.mediaType=${mosip.ida.request.mediaType} audit.rest.timeout=${mosip.ida.request.timeout.secs} @@ -151,31 +151,31 @@ otp-generate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-generate.rest.timeout=${mosip.ida.request.timeout.secs} ## Mail Notification -mail-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/email/send +mail-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/email/send mail-notification.rest.httpMethod=POST mail-notification.rest.headers.mediaType=multipart/form-data mail-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## SMS Notification -sms-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/sms/send +sms-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/sms/send sms-notification.rest.httpMethod=POST sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid/{rid}?type={type} +rid-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid/{rid} +rid-uin-auth.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} ## Partner service API to validate MISP Lisence Key - Partner ID - Partner API Key combination -id-pmp-service.rest.uri=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} +id-pmp-service.rest.uri=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partner_id}/apikey/{partner_api_key}/misp/{misp_license_key}/validate?needPartnerCert={need_partner_cert} id-pmp-service.rest.httpMethod=GET id-pmp-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-pmp-service.rest.timeout=${mosip.ida.request.timeout.secs} @@ -188,19 +188,19 @@ data-share-get.rest.timeout=10 data-share-get-decrypt-ref-id=${ida-auth-partner-id} ## Title Service rest api-GET -id-masterdata-title-service.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/title +id-masterdata-title-service.rest.uri=${mosip.kernel.masterdata.url}/v1/masterdata/title id-masterdata-title-service.rest.httpMethod=GET id-masterdata-title-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-title-service.rest.timeout=${mosip.ida.request.timeout.secs} ## Master Data - Template Single Language -id-masterdata-template-service.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} +id-masterdata-template-service.rest.uri=${mosip.kernel.masterdata.url}/v1/masterdata/templates/{langcode}/{templatetypecode} id-masterdata-template-service.rest.httpMethod=GET id-masterdata-template-service.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service.rest.timeout=${mosip.ida.request.timeout.secs} ## Master Data - Template Multi language -id-masterdata-template-service-multilang.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/templatetypecodes/{code} +id-masterdata-template-service-multilang.rest.uri=${mosip.kernel.masterdata.url}/v1/masterdata/templates/templatetypecodes/{code} id-masterdata-template-service-multilang.rest.httpMethod=GET id-masterdata-template-service-multilang.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service-multilang.rest.timeout=${mosip.ida.request.timeout.secs} @@ -513,13 +513,13 @@ cred-request-service-get-request-ids.pageSize=10 cred-request-service-get-request-ids.statusCode=ISSUED ida-max-credential-pull-window-days=2 ida-max-websub-messages-pull-window-days=2 -cred-request-service-get-request-ids.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/getRequestIds?direction=ASC&orderBy=updateDateTime&pageNumber={pageNumber}&pageSize=${cred-request-service-get-request-ids.pageSize}&statusCode=${cred-request-service-get-request-ids.statusCode}&effectivedtimes={effectivedtimes} +cred-request-service-get-request-ids.rest.uri=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/getRequestIds?direction=ASC&orderBy=updateDateTime&pageNumber={pageNumber}&pageSize=${cred-request-service-get-request-ids.pageSize}&statusCode=${cred-request-service-get-request-ids.statusCode}&effectivedtimes={effectivedtimes} cred-request-service-get-request-ids.rest.httpMethod=GET cred-request-service-get-request-ids.rest.headers.mediaType=${mosip.ida.request.mediaType} cred-request-service-get-request-ids.rest.timeout=${mosip.ida.request.timeout.secs} # Credential Request API to get Request IDs for the given status, pageStart and page -cred-request-service-retrigger-cred-issuance.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/retrigger/{requestId} +cred-request-service-retrigger-cred-issuance.rest.uri=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/retrigger/{requestId} cred-request-service-retrigger-cred-issuance.rest.httpMethod=PUT cred-request-service-retrigger-cred-issuance.rest.headers.mediaType=${mosip.ida.request.mediaType} cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/id-repository-default.properties b/id-repository-default.properties index d29e7a69ad0..b7b7c9fcdef 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -120,26 +120,26 @@ mosip.idrepo.vid.policy-file-url=${mosip.idrepo.mosip-config-url}mosip-vid-polic mosip.idrepo.draft-vid.default-type-to-create=PERPETUAL ## Rest servies -mosip.idrepo.audit.rest.uri=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.idrepo.audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.idrepo.audit.rest.httpMethod=POST mosip.idrepo.audit.rest.headers.mediaType=application/json -mosip.idrepo.encryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt +mosip.idrepo.encryptor.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt mosip.idrepo.encryptor.rest.httpMethod=POST mosip.idrepo.encryptor.rest.headers.mediaType=application/json mosip.idrepo.encryptor.rest.timeout=100 -mosip.idrepo.decryptor.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +mosip.idrepo.decryptor.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt mosip.idrepo.decryptor.rest.httpMethod=POST mosip.idrepo.decryptor.rest.headers.mediaType=application/json mosip.idrepo.decryptor.rest.timeout=100 -mosip.idrepo.vid-service.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/uin/{uin} +mosip.idrepo.vid-service.rest.uri=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin/{uin} mosip.idrepo.vid-service.rest.httpMethod=GET mosip.idrepo.vid-service.rest.headers.mediaType=application/json mosip.idrepo.vid-service.rest.timeout=100 -mosip.idrepo.retrieve-uin-by-vid.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/{vid} +mosip.idrepo.retrieve-uin-by-vid.rest.uri=${mosip.idrepo.vid.url}/idrepository/v1/vid/{vid} mosip.idrepo.retrieve-uin-by-vid.rest.httpMethod=GET mosip.idrepo.retrieve-uin-by-vid.rest.headers.mediaType=application/json mosip.idrepo.retrieve-uin-by-vid.rest.timeout=100 @@ -157,22 +157,22 @@ mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json mosip.idrepo.bio-extractor-service.rest.timeout=100 -mosip.idrepo.syncdata-service.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest +mosip.idrepo.syncdata-service.rest.uri=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest mosip.idrepo.syncdata-service.rest.httpMethod=GET mosip.idrepo.syncdata-service.rest.headers.mediaType=application/json mosip.idrepo.syncdata-service.rest.timeout=100 -mosip.idrepo.pmp.partner.rest.uri=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners?partnerType=Online_Verification_Partner +mosip.idrepo.pmp.partner.rest.uri=${mosip.pms.partnermanager.url}/v1/partnermanager/partners?partnerType=Online_Verification_Partner mosip.idrepo.pmp.partner.rest.httpMethod=GET mosip.idrepo.pmp.partner.rest.headers.mediaType=application/json mosip.idrepo.pmp.partner.rest.timeout=100 -mosip.idrepo.credential.request.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/requestgenerator +mosip.idrepo.credential.request.rest.uri=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator mosip.idrepo.credential.request.rest.httpMethod=POST mosip.idrepo.credential.request.rest.headers.mediaType=application/json mosip.idrepo.credential.request.rest.timeout=100 -mosip.idrepo.credential.cancel-request.rest.uri=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/cancel/{requestId} +mosip.idrepo.credential.cancel-request.rest.uri=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/cancel/{requestId} mosip.idrepo.credential.cancel-request.rest.httpMethod=GET mosip.idrepo.credential.cancel-request.rest.headers.mediaType=application/json mosip.idrepo.credential.cancel-request.rest.timeout=100 @@ -186,18 +186,18 @@ mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 # the credential request with below partner id to issue credential to new IDA partners. idrepo-dummy-online-verification-partner-id=MOVP -mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid/{uin} +mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json mosip.idrepo.retrieve-by-uin.rest.timeout=100 -mosip.idrepo.vid-generator.rest.uri=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/vid +mosip.idrepo.vid-generator.rest.uri=${mosip.kernel.idgenerator.url}/v1/idgenerator/vid mosip.idrepo.vid-generator.rest.httpMethod=GET mosip.idrepo.vid-generator.rest.headers.mediaType=application/json mosip.idrepo.vid-generator.rest.timeout=100 ## Websub -mosip.idrepo.websub.vid-credential-update.callback-url=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/callback/vid_credential_status_update +mosip.idrepo.websub.vid-credential-update.callback-url=${mosip.idrepo.identity.url}/idrepository/v1/identity/callback/vid_credential_status_update mosip.idrepo.websub.vid-credential-update.topic=VID_CRED_STATUS_UPDATE mosip.idrepo.websub.vid-credential-update.secret= ${idrepo.websub.vid.credential.update.secret} mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE @@ -206,19 +206,19 @@ mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE mosip.iam.adapter.clientid.id-repository=${mosip.idrepo.auth.client-id} mosip.iam.adapter.clientsecret.id-repository=${mosip.idrepo.auth.secret-key} mosip.iam.adapter.appid.id-repository=${mosip.idrepo.auth.app-id} -mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey -mosip.idrepo.uin-generator.rest.uri=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/uin +mosip.idrepo.uin-generator.rest.uri=${mosip.kernel.idgenerator.url}/v1/idgenerator/uin mosip.idrepo.uin-generator.rest.httpMethod=GET mosip.idrepo.uin-generator.rest.headers.mediaType=application/json mosip.idrepo.uin-generator.rest.timeout=100 -mosip.idrepo.draft-vid.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/draft/vid +mosip.idrepo.draft-vid.rest.uri=${mosip.idrepo.vid.url}/idrepository/v1/draft/vid mosip.idrepo.draft-vid.rest.httpMethod=POST mosip.idrepo.draft-vid.rest.headers.mediaType=application/json mosip.idrepo.draft-vid.rest.timeout=100 -mosip.idrepo.update-vid.rest.uri=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/{vid} +mosip.idrepo.update-vid.rest.uri=${mosip.idrepo.vid.url}/idrepository/v1/vid/{vid} mosip.idrepo.update-vid.rest.httpMethod=PATCH mosip.idrepo.update-vid.rest.headers.mediaType=application/json mosip.idrepo.update-vid.rest.timeout=100 @@ -267,8 +267,8 @@ credential.request.reprocess.locktimeout=60000 ## Rest services CRDENTIALSERVICE=${mosip.idrepo-credential-service.url}/v1/credentialservice/issue -KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey -CALLBACKURL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/callback/notifyStatus +KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +CALLBACKURL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/callback/notifyStatus ENCRYPTION=${mosip.idrepo.encryptor.rest.uri} DECRYPTION=${mosip.idrepo.decryptor.rest.uri} @@ -314,20 +314,20 @@ mosip.credential.service.share.prependThumbprint=false mosip.credential.service.retry.maxAttempts=3 mosip.credential.service.retry.maxDelay=100 -IDREPOGETIDBYID=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid +IDREPOGETIDBYID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http -mosip.data.share.internal.domain.name=${mosip.datashare-service.url} +mosip.data.share.internal.domain.name=${mosip.datashare.url} CREATEDATASHARE=/v1/datashare/create -KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey -KEYMANAGER_JWTSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign -KEYMANAGER_ENCRYPT_PIN=${mosip.kernel-keymanager-service.url}/v1/keymanager/encryptWithPin -KEYMANAGER_ENCRYPT_ZK=${mosip.kernel-keymanager-service.url}/v1/keymanager/zkEncrypt -PARTNER_POLICY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -PARTNER_EXTRACTION_POLICY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} +KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign +KEYMANAGER_ENCRYPT_PIN=${mosip.kernel.keymanager.url}/v1/keymanager/encryptWithPin +KEYMANAGER_ENCRYPT_ZK=${mosip.kernel.keymanager.url}/v1/keymanager/zkEncrypt +PARTNER_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +PARTNER_EXTRACTION_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} credential.service.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip # BioSDK service -mosip.biosdk.default.service.url=${mosip.mock-biosdk-service.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 diff --git a/kernel-default.properties b/kernel-default.properties index 35374c38150..6417e799b4b 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -25,7 +25,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification mosip.kernel.sms.enabled=false @@ -81,11 +81,11 @@ auth.primary.language=eng otp.manager.api.generate=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate otp.manager.api.verify=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate -otp.sender.api.email.send=${mosip.kernel-notification-service.url}/v1/notifier/email/send -otp.sender.api.sms.send=${mosip.kernel-notification-service.url}/v1/notifier/sms/send -masterdata.api.template=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/ +otp.sender.api.email.send=${mosip.kernel.notification.url}/v1/notifier/email/send +otp.sender.api.sms.send=${mosip.kernel.notification.url}/v1/notifier/sms/send +masterdata.api.template=${mosip.kernel.masterdata.url}/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} +idrepo.api.getuindetails=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client @@ -258,7 +258,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.authmanager.base-url=${mosip.authmanager.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -269,12 +269,12 @@ mosip.admin_realm_id=mosip master.search.maximum.rows=50 mosip.level=2 -mosip.kernel.masterdata.audit-url= ${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url= ${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 ## Register device # Keymanager runs in separate namespace "keymanager" -mosip.kernel.sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/sign +mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 ## Prereg @@ -292,7 +292,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken ## Proxy otp @@ -308,7 +308,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -360,7 +360,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/machines/%s/eng +mosip.kernel.syncdata-service-machine-url=${mosip.kernel.masterdata.url}/v1/masterdata/machines/%s/eng # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments @@ -372,10 +372,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.authmanager.url}/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key @@ -404,7 +404,7 @@ mosip.kernel.keymanager.113nothumbprint.support=false # Pause & resume api proeprties PACKET_RESUME_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflowaction PACKET_PAUSE_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflow/search -KEYBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey ## resubscription and subscription initial delay for masterdata service masterdata.websub.resubscription.delay.millis=48000000 @@ -428,7 +428,7 @@ mosip.admin.ui.configs=version:${aplication.configuration.level.version};locatio mosip.kernel.keymanager.113nothumbprint.support=false ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## identity schema backward compatability ######## @@ -439,13 +439,13 @@ scheduling.job.cron=0 0 2 * * ? mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 # masterdata swagger openApi -#openapi.masterdata.servers[0].url=${mosip.kernel-masterdata-service.url}/v1/masterdata +#openapi.masterdata.servers[0].url=${mosip.kernel.masterdata.url}/v1/masterdata #openapi.masterdata.servers[0].description=Admin Masterdata url #openapi.service.servers[0].url=https://${mosip.api.internal.host}/${server.servlet.context-path:${server.servlet.path:}} #openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's -zone.user.details.url=${mosip.kernel-auth-service.url}/v1/authmanager/userdetails +zone.user.details.url=${mosip.authmanager.url}/v1/authmanager/userdetails auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client diff --git a/mock-abis-default.properties b/mock-abis-default.properties index d087a4f593c..e05913976fb 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -8,7 +8,7 @@ management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 abis.return.duplicate=false -secret_url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +secret_url=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string secret_url.secretKey=${mosip.mosip.regproc.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 816fdecbc24..fb4b076ccba 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -102,9 +102,9 @@ pmp.partner.mobileNumbe.max.length=16 masterdata.registerdevice.timestamp.validate=+5 ## Keymanager -mosip.kernel.sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign +mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign ## Kernel services -mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits # ApplicationId for partner mosip.pmp.auth.appId =partner @@ -114,11 +114,11 @@ mosip.pmp.auth.clientId=mosip-partner-client mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} -pms.cert.service.token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey -pmp.ca.certificaticate.upload.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadCACertificate -pmp.partner.certificaticate.upload.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadPartnerCertificate -pmp.partner.certificaticate.get.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} -pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadOtherDomainCertificate +pms.cert.service.token.request.issuerUrl=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +pmp.ca.certificaticate.upload.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/uploadCACertificate +pmp.partner.certificaticate.upload.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/uploadPartnerCertificate +pmp.partner.certificaticate.get.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} +pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/uploadOtherDomainCertificate #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} @@ -126,7 +126,7 @@ mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub -pmp.certificaticate.datashare.rest.uri=http://${mosip.datashare-service.url}/v1/datashare/create +pmp.certificaticate.datashare.rest.uri=http://${mosip.datashare.url}/v1/datashare/create # Used for generating the datashare url pms.certs.datashare.policyId=mpolicy-default-cert pms.certs.datashare.subscriberId=mpartner-default-cert @@ -149,14 +149,14 @@ mosip.keycloak.admin.user.id=admin mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter -auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip -mosip.authmanager.client-token-endpoint=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 # in minutes @@ -205,20 +205,20 @@ mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/op ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy -mosip.kernel.device.search-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/devices/search +mosip.kernel.device.search-url=${mosip.kernel.masterdata.url}/v1/masterdata/devices/search token.request.appid=admin token.request.password=mosip token.request.username=110005 token.request.version=string token.request.id=v1 -token.request.issuerUrl=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +token.request.issuerUrl=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey token.request.clientId=admin -PASSWORDBASEDTOKENAPI=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/useridPwd +PASSWORDBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/useridPwd application.env.local=false # Notifications -emailResourse.url=${mosip.kernel-notification-service.url}/v1/notifier/email/send -resource.template.url=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} +emailResourse.url=${mosip.kernel.notification.url}/v1/notifier/email/send +resource.template.url=${mosip.kernel.masterdata.url}/v1/masterdata/templates/{langcode}/{templatetypecode} notifications.sent.before.days = 3 partner.registration.sub-template = partner-reg-sub-template partner.reg.content-template=partner-reg-content-template diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 9e02916f0de..bcf4b935c29 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -11,8 +11,8 @@ # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port javax.persistence.jdbc.driver=org.postgresql.Driver -mosip.database.ip=postgres -mosip.database.port=80 +mosip.database.ip=postgres-postgresql.postgres +mosip.database.port=5432 javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_prereg?useSSL=false javax.persistence.jdbc.user=prereguser javax.persistence.jdbc.password=${db.dbuser.password} @@ -37,9 +37,11 @@ mosip.adult.age=${mosip.kernel.applicant.type.age.limit} ## This version is set in the ID object created in pre-registration mosip.idschema.version=0.1 +mosip.prereg.application.url=http://prereg-application.prereg + ## Demographic Service demographic.service.version=v1 -demographic.service.env=${mosip.prereg-application-service.url} +demographic.service.env=${mosip.prereg.application.url} demographic.service.contextpath=preregistration/${demographic.service.version} demographic.resource.url=${demographic.service.env}/${demographic.service.contextpath} # ID values for application APIs @@ -61,7 +63,7 @@ mosip.id.preregistration.demographic.retrieve.date=mosip.pre-registration.demogr ## Document Service document.service.version=v1 -document.service.env=${mosip.prereg-application-service.url} +document.service.env=${mosip.prereg.application.url} document.service.contextpath=preregistration/${document.service.version} document.resource.url=${document.service.env}/${document.service.contextpath} @@ -131,7 +133,7 @@ preregistration.timespan.cancel=0 ## Batch job service batch.service.version=v1 -batch.service.env=${mosip.prereg-batchjob-service.url} +batch.service.env=http://prereg-batchjob.prereg batch.service.contextpath=preregistration/${batch.service.version}/batch batch.resource.url=${batch.service.env}/${batch.service.contextpath} ## Id values of batch job service @@ -163,20 +165,17 @@ bookingAvailablity.url=${booking.resource.url}/appointment/availability/sync updateConsumedStatus.url=${batch.resource.url}/consumedStatus #BatchJob-service URL for updating to expiredStatus expiredStatus.url=${batch.resource.url}/expiredStatus -#batch.appointment.cancel=${batch.service.env}/preregistration/v1 -batch.appointment.cancel=${mosip.prereg-application-service.url}/preregistration/v1/internal/applications/appointment/{preRegistrationId} +batch.appointment.cancel=${mosip.prereg.application.url}/preregistration/v1/internal/applications/appointment/{preRegistrationId} ## Login service - mosip.pre.reg.clientId=mosip.pre.reg.clientId -id-masterdata-template-service-multilang.rest.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/{langcode}/{templatetypecode} +id-masterdata-template-service-multilang.rest.uri=${mosip.kernel.masterdata.url}/v1/masterdata/templates/{langcode}/{templatetypecode} ## Masterdata service ## Base url is only used for masterdata. We give the in-cluster url here -mosip.base.url=${mosip.kernel-masterdata-service.url} - +mosip.base.url=${mosip.kernel.masterdata.url} masterdata.service.version=v1 -masterdata.service.env=${mosip.kernel-masterdata-service.url} +masterdata.service.env=${mosip.kernel.masterdata.url} masterdata.service.contextpath=masterdata masterdata.resource.url=${masterdata.service.env}/${masterdata.service.version}/${masterdata.service.contextpath} regCenter.url=${masterdata.resource.url}/registrationcenters @@ -196,7 +195,7 @@ cancel.appoinment.template=cancel-appointment ## Notification service notification.service.version=v1 -notification.service.env=${mosip.prereg-application-service.url} +notification.service.env=${mosip.prereg.application.url} notification.service.contextpath=preregistration/${notification.service.version} #notification.url=${notification.service.env}/${notification.service.version}/${notification.service.contextpath}/notification notification.url=${notification.service.env}/${notification.service.contextpath}/internal/notification @@ -205,24 +204,24 @@ mosip.pre-registration.notification.id.send=mosip.pre-registration.notification. # timeZone=Asia/Calcutta ## Email service -email.service.env=${mosip.kernel-notification-service.url} +email.service.env=${mosip.kernel.notification.url} email.service.contextpath=notifier #Kernel Service URL for Sending Emails emailResourse.url=${email.service.env}/${masterdata.service.version}/${email.service.contextpath}/email/send ## SMS service -sms.service.env=${mosip.kernel-notification-service.url} +sms.service.env=${mosip.kernel.notification.url} sms.service.contextpath=notifier #Kernel service URL for sending SMS smsResourse.url=${sms.service.env}/${masterdata.service.version}/${sms.service.contextpath}/sms/send ## Audit service -audit.service.env=${mosip.kernel-auditmanager-service.url} +audit.service.env=${mosip.kernel.auditmanager.url} audit.service.contextpath=auditmanager audit.url=${audit.service.env}/${masterdata.service.version}/${audit.service.contextpath}/audits ## Crypto service -crypto.service.env=${mosip.kernel-keymanager-service.url} +crypto.service.env=${mosip.kernel.keymanager.url} crypto.service.contextpath=keymanager ## Kernel Service URL for Encryption and decryption cryptoResource.url=${crypto.service.env}/${masterdata.service.version}/${crypto.service.contextpath} @@ -240,9 +239,9 @@ userIdType=USERID appId=prereg ## Auth service -kernel.auth.env=${mosip.kernel-auditmanager-service.url} +kernel.auth.env=${mosip.kernel.auditmanager.url} kernel.auth.contextpath=authmanager -auth.server.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## PRID service @@ -265,8 +264,8 @@ secret_url.version=string otp.request.flooding.duration=1 otp.request.flooding.max-count=3 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX -mail-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/email/send -sms-notification.rest.uri=${mosip.kernel-notification-service.url}/v1/notifier/sms/send +mail-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/email/send +sms-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/sms/send otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template @@ -417,6 +416,15 @@ mosip.iam.adapter.clientsecret=${preregistration.mosip.prereg.client.secret} # preregistration.mosip.prereg.client.secret mosip.iam.adapter.appid=prereg +# To generate token from keycloak in PreReg Data Sync Service. Used by kernel auth adapter. +mosip.iam.adapter.clientid.pre-registration-datasync-service=mosip-reg-client +mosip.iam.adapter.clientsecret.pre-registration-datasync-service=${mosip.mosip.reg.client.secret} +mosip.iam.adapter.appid.pre-registration-datasync-service=registrationclient + +#the custom auth provider component names list +mosip.security.authentication.provider.beans.list.pre-registration-application-service=customJWTAuthProvider +mosip.security.authentication.provider.beans.list.pre-registration-booking-service=customJWTAuthProvider + # Roles mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.putapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN @@ -447,10 +455,8 @@ mosip.role.prereg.postpreregsync=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RE mosip.role.prereg.getsyncpreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getsyncpreregistrationidmachineid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.postsyncconsumedpreregids=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,REGISTRATION_PROCESSOR - mosip.role.prereg.cancelappointmentpreregid=REGISTRATION_OFFICER,INDIVIDUAL,PRE_REGISTRATION_ADMIN mosip.role.prereg.deleteappointmentpreregid=REGISTRATION_OFFICER,INDIVIDUAL,PRE_REGISTRATION_ADMIN - mosip.role.prereg.getappointmentavailability=INDIVIDUAL mosip.role.prereg.postappointmentpreregistrationid=INDIVIDUAL mosip.role.prereg.postappointment=INDIVIDUAL @@ -461,11 +467,3 @@ mosip.role.prereg.deleteappointment=INDIVIDUAL mosip.role.prereg.getappointmentpreregistrationidregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getappointmentregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN -# To generate token from keycloak in PreReg Data Sync Service. Used by kernel auth adapter. -mosip.iam.adapter.clientid.pre-registration-datasync-service=mosip-reg-client -mosip.iam.adapter.clientsecret.pre-registration-datasync-service={cipher}f4ba53f63109c6559d882fda0b7e9f16620cbe15604ea83c940af995520905d7 -mosip.iam.adapter.appid.pre-registration-datasync-service=registrationclient - -#the custom auth provider component names list -mosip.security.authentication.provider.beans.list.pre-registration-application-service=customJWTAuthProvider -mosip.security.authentication.provider.beans.list.pre-registration-booking-service=customJWTAuthProvider diff --git a/print-default.properties b/print-default.properties index 4cfdcd08e60..ef472d2fb74 100644 --- a/print-default.properties +++ b/print-default.properties @@ -29,15 +29,15 @@ token.request.secretKey= ${mosip.mosip.regproc.client.secret} token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip # Audit service -AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.kernel.pdf_owner_password=123456 ## Auth service -authmanager.base.url=${mosip.kernel-auth-service.url} +authmanager.base.url=${mosip.authmanager.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey ## Master data services -MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata +MASTER=${mosip.kernel.masterdata.url}/v1/masterdata TEMPLATES=${MASTER}/templates mosip.print.audit.id=mosip.applicanttype.getApplicantType @@ -45,7 +45,7 @@ mosip.print.application.version=1.0 mosip.print.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' ## Encrypt services -PDFSIGN=${mosip.kernel-keymanager-service.url}/v1/keymanager/pdf/sign +PDFSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/pdf/sign mosip.print.service.id=mosip.print @@ -103,8 +103,8 @@ registration.processor.unMaskedUin.length=5 IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity -CREATEDATASHARE=http://${mosip.datashare-service.url}/v1/datashare/create -DECRYPTPINBASSED=${mosip.kernel-keymanager-service.url}/v1/keymanager/decryptWithPin +CREATEDATASHARE=http://${mosip.datashare.url}/v1/datashare/create +DECRYPTPINBASSED=${mosip.kernel.keymanager.url}/v1/keymanager/decryptWithPin mosip.print.prependThumbprint=true # websub authentication diff --git a/registration-processor-default.properties b/registration-processor-default.properties index bd35830e9b7..cc7a6d9cca5 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -4,13 +4,15 @@ # helm chart: # db.dbuser.password # mosip.mosip.regproc.client.secret -# mosip.api.internal.host -# keycloak.host +# keycloak.internal.url # activemq.host # activemq.core.port registration.processor.zone=default +mosip.regproc.notification.url=http://regproc-notifier.regproc +packetmanager.base.url=http://packetmanager.packetmanger + ## Health check management.endpoint.health.show-details=always management.endpoints.web.exposure.include=info,health,refresh @@ -29,8 +31,8 @@ registration.processor.bio.dedupe.reprocess.buffer.time=900 ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.registration.processor.database.hostname=postgres -mosip.registration.processor.database.port=80 +mosip.registration.processor.database.hostname=postgres-postgresql.postgres +mosip.registration.processor.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver javax.persistence.jdbc.url=jdbc:postgresql://${mosip.registration.processor.database.hostname}:${mosip.registration.processor.database.port}/mosip_regprc?currentSchema=regprc javax.persistence.jdbc.user=regprcuser @@ -76,13 +78,13 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## Audit Service -AUDIT=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits ## Auth Service -authmanager.base.url=${mosip.kernel-auth-service.url} +authmanager.base.url=${mosip.authmanager.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateToken GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid @@ -91,7 +93,7 @@ INTERNALAUTH=${IDAINTERNAL}/idauthentication/v1/internal/auth GETINDIVIDUALIDFROMUSERID=${authmanager.base.url}/v1/authmanager/individualId ## Master Data Services -MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata +MASTER=${mosip.kernel.masterdata.url}/v1/masterdata MACHINEHISTORY=${MASTER}/machineshistories CENTERHISTORY=${MASTER}/registrationcentershistory CENTERUSERMACHINEHISTORY=${MASTER}/getregistrationmachineusermappinghistory @@ -103,22 +105,22 @@ REGISTRATIONCENTERDEVICEHISTORY=${MASTER}/registrationcenterdevicehistory REGISTRATIONCENTERTIMESTAMP=${MASTER}/registrationcenters/validate USERDETAILS=${MASTER}/users TEMPLATES=${MASTER}/templates -DEVICEVALIDATEHISTORY=${mosip.pms-partner-manager-service.url}/v1/partnermanager/deviceprovidermanagement/validate +DEVICEVALIDATEHISTORY=${mosip.pms.partnermanager.url}/v1/partnermanager/deviceprovidermanagement/validate #To get the idschema from masterdata db IDSCHEMA=${MASTER}/idschema/latest LANGUAGE=${MASTER}/languages ## ID Repository Services -IDENTITY=${mosip.idrepo-identity-service.url} +IDENTITY=${mosip.idrepo.identity.url} IDREPOSITORY=${IDENTITY}/idrepository/v1/identity/ IDREPOGETIDBYUIN=${IDENTITY}/idrepository/v1/identity/idvid -UINGENERATOR=${mosip.kernel-idgenerator-service.url}/v1/idgenerator/uin +UINGENERATOR=${mosip.kernel.idgenerator.url}/v1/idgenerator/uin RETRIEVEIDENTITYFROMRID=${IDENTITY}/idrepository/v1/identity/idvid RETRIEVEIDENTITY=${IDENTITY}/idrepository/v1/identity/idvid -CREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid -GETUINBYVID=${mosip.idrepo-vid-service.url}/idrepository/v1/idvid -CREDENTIALREQUEST=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/requestgenerator -GETVIDSBYUIN=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/uin +CREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid +GETUINBYVID=${mosip.idrepo.vid.url}/idrepository/v1/idvid +CREDENTIALREQUEST=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator +GETVIDSBYUIN=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin IDREPOHASDRAFT=${IDENTITY}/idrepository/v1/identity/draft IDREPOGETDRAFT=${IDENTITY}/idrepository/v1/identity/draft IDREPOCREATEDRAFT=${IDENTITY}/idrepository/v1/identity/draft/create @@ -127,7 +129,7 @@ IDREPOPUBLISHDRAFT=${IDENTITY}/idrepository/v1/identity/draft/publish IDREPOEXTRACTBIOMETRICS=${IDENTITY}/idrepository/v1/identity/draft/extractbiometrics/ ## Encrypt Services -KEYMANAGER=${mosip.kernel-keymanager-service.url} +KEYMANAGER=${mosip.kernel.keymanager.url} ENCRYPTURL=${KEYMANAGER}/v1/keymanager/encrypt ENCRYPTIONSERVICE=${KEYMANAGER}/v1/keymanager/publickey @@ -140,7 +142,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo registration.processor.demodedupe.manual.adjudication.status=REJECTED # Validate hostlisted devices -DEVICEHOTLIST=${mosip.admin-hotlist-service.url}/v1/hotlist/status +DEVICEHOTLIST=${mosip.admin.hotlist.url}/v1/hotlist/status JWTVERIFY=${KEYMANAGER}/v1/keymanager/jwtVerify ## Crypto @@ -148,13 +150,13 @@ CRYPTOMANAGERDECRYPT=${KEYMANAGER}/v1/keymanager/decrypt crypto.PrependThumbprint.enable=true ## SMS and EMAIL notification services -NOTIFIER=${mosip.kernel-notification-service.url} +NOTIFIER=${mosip.kernel.notification.url} SMSNOTIFIER=${NOTIFIER}/v1/notifier/sms/send EMAILNOTIFIER=${NOTIFIER}/v1/notifier/email/send ## PMS -PMS=${mosip.pms-policy-manager-service.url}/v1/policymanager/policies -PARTNERGETBIOEXTRACTOR=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners +PMS=${mosip.pms.policymanager.url}/v1/policymanager/policies +PARTNERGETBIOEXTRACTOR=${mosip.pms.partnermanager.url}/v1/partnermanager/partners ## Registration status properties ## Max retries allowed by registration client if sanity check of packet fails in packet uploader stage. @@ -246,10 +248,10 @@ registration.processor.notification.emails= ## Notification service registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 -registration.processor.notification_service_subscriber_callback_url=${mosip.regproc-notification-service.url}/registrationprocessor/v1/notification/callback/notify +registration.processor.notification_service_subscriber_callback_url=${mosip.regproc.notification.url}/registrationprocessor/v1/notification/callback/notify registration.processor.notification_service_pausedforadditonalinfo_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_workflow_paused_for_additional_info_event -registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosip.regproc-notification-service.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo +registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosip.regproc.notification.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo # Email template code for PauseForAdditionalInfo mosip.regproc.notification_service.biometric_correction.email=RPR_PAUSED_FOR_ADD_INFO_EMAIL @@ -258,7 +260,6 @@ mosip.regproc.notification_service.biometric_correction.sms=RPR_PAUSED_FOR_ADD_I # SUBJECT template code for PauseForAdditionalInfo mosip.regproc.notification_service.biometric_correction.subject=Requesting the additional details for progressing on the application of UIN - ## Email registration.processor.uin.generated.subject=UIN Generated registration.processor.duplicate.uin.subject=Registration Failed because you have already Registered @@ -428,7 +429,6 @@ ida-internal-auth-uri=${IDAINTERNAL}/idauthentication/v1/internal/auth ida-internal-get-certificate-uri=${IDAINTERNAL}/idauthentication/v1/internal/getCertificate registration.processor.objectstore.adapter.name=S3Adapter -packetmanager.base.url=${mosip.packetmanager-service.url}/commons PACKETMANAGER_SEARCH_FIELD=${packetmanager.base.url}/v1/packetmanager/searchField PACKETMANAGER_SEARCH_FIELDS=${packetmanager.base.url}/v1/packetmanager/searchFields PACKETMANAGER_SEARCH_METAINFO=${packetmanager.base.url}/v1/packetmanager/metaInfo @@ -441,20 +441,21 @@ PACKETMANAGER_UPDATE_TAGS=${packetmanager.base.url}/v1/packetmanager/addOrUpdate PACKETMANAGER_DELETE_TAGS=${packetmanager.base.url}/v1/packetmanager/deleteTag PACKETMANAGER_GET_TAGS=${packetmanager.base.url}/v1/packetmanager/getTags DATASHARECREATEURL=/v1/datashare/create -DATASHAREGETEURL=http://${mosip.datashare-service.url}/v1/datashare/get +DATASHAREGETEURL=${mosip.datashare.url}/v1/datashare/get # Default abis is mock-abis provided by MOSIP registration.processor.policy.id=mpolicy-default-abis registration.processor.subscriber.id=mpartner-default-abis -mosip.regproc.data.share.internal.domain.name=${mosip.datashare-service.url} +## TODO: check if this is needed 'cause are not using pure domain anymore. +mosip.regproc.data.share.internal.domain.name=datashare.datashare mosip.regproc.data.share.protocol=http #iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK -mosip.biosdk.default.host=${mosip.mock-biosdk-service.url} -mosip.biosdk.default.service.url=${mosip.biosdk.default.host}/biosdk-service +#mosip.biosdk.default.host=${mosip.mock.biosdk.url} +mosip.biosdk.default.service.url=${mosip.biosdk.service.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -910,10 +911,11 @@ regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TE regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB -openapi.registrationProcessor.servers[0].url=${mosip.api.internal.url}/registrationprocessor/v1/registrationtransaction -openapi.registrationProcessor.servers[0].description=Registration Processor URL +## TODO: these are not needed. Check. +#openapi.registrationProcessor.servers[0].url=${mosip.api.internal.url}/registrationprocessor/v1/registrationtransaction +#openapi.registrationProcessor.servers[0].description=Registration Processor URL -NGINXDMZURL=${dmz.ingress.base.url}/registrationprocessor/v1/dmzpacketserver +NGINXDMZURL=http://regproc-pktserver.regproc/ # modifiable delay in websub subscription mosip.regproc.websub.resubscription.delay.millisecs=43200000 @@ -931,9 +933,8 @@ mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip -mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager -mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 # in minutes diff --git a/resident-default.properties b/resident-default.properties index 4b248566185..a11dddd6d7b 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -27,7 +27,7 @@ vid.revoke.id=mosip.vid.update resident.revokevid.id=mosip.resident.vidstatus PARTNER_REFERENCE_Id=mpartner-default-resident APPLICATION_Id=RESIDENT -DECRYPT_API_URL=${mosip.kernel-keymanager-service.url}/v1/keymanager/decrypt +DECRYPT_API_URL=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt ## Token generation token.request.id=io.mosip.resident @@ -39,53 +39,53 @@ resident.secretKey=${mosip.mosip.resident.client.secret} token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services -KERNELAUTHMANAGER=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/clientidsecretkey +KERNELAUTHMANAGER=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=${mosip.regproc-print-service.url}/registrationprocessor/v1/print/uincard INTERNALAUTH=${mosip.ida-internal-service.url}/idauthentication/v1/internal/auth INTERNALAUTHTRANSACTIONS=${mosip.ida-internal-service.url}/idauthentication/v1/internal/authTransactions KERNELENCRYPTIONSERVICE=${mosip.ida-internal-service.url}/idauthentication/v1/internal/getCertificate -IDAUTHCREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid -IDAUTHREVOKEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid/deactivate +IDAUTHCREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid +IDAUTHREVOKEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid/deactivate ## Notification service -IDREPOGETIDBYUIN=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid -IDREPOGETIDBYRID=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/idvid -GETUINBYVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid +IDREPOGETIDBYUIN=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid +IDREPOGETIDBYRID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid +GETUINBYVID=${mosip.idrepo.vid.url}/idrepository/v1/vid resident.notification.emails=mosiptestuser@gmail.com resident.notification.message=Notification has been sent to the provided contact detail(s) ## templates -MASTER=${mosip.kernel-masterdata-service.url}/v1/masterdata +MASTER=${mosip.kernel.masterdata.url}/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines MACHINESEARCH=${MASTER}/machines/search MACHINECREATE=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters RIDGENERATION=${mosip.kernel-ridgenerator-service.url}/v1/ridgenerator/generate/rid -CREATEVID=${mosip.idrepo-vid-service.url}/idrepository/v1/vid -IDREPOSITORY=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/ -ENCRYPTURL=${mosip.kernel-keymanager-service.url}/v1/keymanager/encrypt -PACKETSIGNPUBLICKEY=${mosip.kernel-keymanager-service.url}/v1/keymanager/tpmsigning/publickey -MIDSCHEMAURL=${mosip.kernel-keymanager-service.url}/v1/syncdata/latestidschema +CREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid +IDREPOSITORY=${mosip.idrepo.identity.url}/idrepository/v1/identity/ +ENCRYPTURL=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt +PACKETSIGNPUBLICKEY=${mosip.kernel.keymanager.url}/v1/keymanager/tpmsigning/publickey +MIDSCHEMAURL=${mosip.kernel.keymanager.url}/v1/syncdata/latestidschema # DMZ service call SYNCSERVICE=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/sync PACKETRECEIVER=${mosip.regproc-group1-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets -SMSNOTIFIER=${mosip.kernel-notification-service.url}/v1/notifier/sms/send -EMAILNOTIFIER=${mosip.kernel-notification-service.url}/v1/notifier/email/send -AUTHTYPESTATUSUPDATE=${mosip.idrepo-identity-service.url}/idrepository/v1/identity/authtypes/status +SMSNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/sms/send +EMAILNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/email/send +AUTHTYPESTATUSUPDATE=${mosip.idrepo.identity.url}/idrepository/v1/identity/authtypes/status #Regitstration processor reprint service #Registration status service REGISTRATIONSTATUSSEARCH=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/externalstatus/search resident.center.id=10001 resident.machine.id=10001 #Credential Req service -POLICY_REQ_URL=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies +POLICY_REQ_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies OTP_GEN_URL=${mosip.ida-internal-service.url}/idauthentication/v1/internal/otp -CREDENTIAL_STATUS_URL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/get/ -CREDENTIAL_REQ_URL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/requestgenerator -CREDENTIAL_CANCELREQ_URL=${mosip.idrepo-credential-request-generator.url}/v1/credentialrequest/cancel/ +CREDENTIAL_STATUS_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/get/ +CREDENTIAL_REQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator +CREDENTIAL_CANCELREQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/cancel/ CREDENTIAL_TYPES_URL=${mosip.idrepo-credential-service.url}/v1/credentialservice/types -PARTNER_API_URL=${mosip.pms-partner-manager-service.url}/v1/partnermanager/partners -mosip.kernel.masterdata.audit-url=${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +PARTNER_API_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners +mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits ## Config data resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' diff --git a/syncdata-default.properties b/syncdata-default.properties index a9971bdb169..dc5169ebc2b 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -13,7 +13,7 @@ # softhsm.kernel.pin ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.kernel.syncdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -23,7 +23,7 @@ mosip.kernel.syncdata.registration-center-config-file=registration-${spring.prof # Name of the file that is present in the config server which has global config. mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/idschema/latest +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification mosip.kernel.sms.enabled=false @@ -77,11 +77,11 @@ auth.primary.language=eng otp.manager.api.generate=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate otp.manager.api.verify=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate -otp.sender.api.email.send=${mosip.kernel-notification-service.url}/v1/notifier/email/send -otp.sender.api.sms.send={mosip.kernel-notification-service.url}/v1/notifier/sms/send -masterdata.api.template=${mosip.kernel-masterdata-service.url}/v1/masterdata/templates/ +otp.sender.api.email.send=${mosip.kernel.notification.url}/v1/notifier/email/send +otp.sender.api.sms.send={mosip.kernel.notification.url}/v1/notifier/sms/send +masterdata.api.template=${mosip.kernel.masterdata.url}/v1/masterdata/templates/ masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=${mosip.idrepo-identity-service.url}/v1/identity/uin/{uin} +idrepo.api.getuindetails=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client @@ -262,15 +262,15 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.authmanager.base-url=${mosip.authmanager.url}/v1/authmanager master.search.maximum.rows=50 mosip.level=2 -mosip.kernel.masterdata.audit-url= ${mosip.kernel-auditmanager-service.url}/v1/auditmanager/audits +mosip.kernel.masterdata.audit-url= ${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.keycloak.max-no-of-users=20000 ## Register device -mosip.kernel.keymanager-service-sign-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/jwtSign +mosip.kernel.keymanager-service-sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign masterdata.registerdevice.timestamp.validate=+10 ## Prereg @@ -288,7 +288,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client ## Proxy otp @@ -304,7 +304,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -354,7 +354,7 @@ mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident mosip.kernel.keymanager.keystore.keyreference.enable.cache=true # API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=${mosip.kernel-masterdata-service.url}/v1/masterdata/machines/%s +mosip.kernel.syncdata-service-machine-url=${mosip.kernel.masterdata.url}/v1/masterdata/machines/%s # Flag added to choose client crypto implementation in syncdata service # Needs to be updated to true in prod deployments @@ -366,10 +366,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel-auth-service.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=${mosip.kernel-auth-service.url}/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.authmanager.url}/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key @@ -396,7 +396,7 @@ syncdata.websub.resubscription.delay.millis=43200000 subscriptions-delay-on-startup=120000 #Property to fetch location hierarchies during client settings sync -mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel-masterdata-service.url}/v1/masterdata/locationHierarchyLevels +mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel.masterdata.url}/v1/masterdata/locationHierarchyLevels # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. # Make it to true if support is required. @@ -414,7 +414,7 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true syncdata.cache.evict.delta-sync.cron=0 0/15 * * * * syncdata.cache.snapshot.cron=0 0 23 * * * -mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager-service-publickey-url=${mosip.kernel.keymanager.url}/v1/keymanager/publickey/{applicationId} mosip.kernel.keymanager.unique.identifier.autoupdate=false From 010d65e08f9da4e3053f153135427e8d5839daa1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 12:05:00 +0530 Subject: [PATCH 0550/1358] [MOSIP-19369] WIP. --- application-default.properties | 2 ++ id-authentication-default.properties | 4 +-- kernel-default.properties | 47 ++++++++++++---------------- pre-registration-default.properties | 2 +- syncdata-default.properties | 4 +-- 5 files changed, 27 insertions(+), 32 deletions(-) diff --git a/application-default.properties b/application-default.properties index 5a25aec012c..80b0e9a62e1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -23,6 +23,7 @@ mosip.kernel.keymanager.url=http://keymanager.kernel mosip.kernel.auditmanager.url=http://auditmanager.kernel mosip.kernel.notification.url=http://notifier.kernel mosip.kernel.idgenerator.url=http://idgenerator.kernel +mosip.kernel.otpmanager.url=http://otpmanager.kernel mosip.idrepo.identity.url=http://idrepo-identity.idrepo mosip.idrepo.vid.url=http://idrepo-vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin @@ -31,6 +32,7 @@ mosip.pms.partnermanager.url=http://pms-partner.pms mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo mosip.datashare.url=http://datashare.datashare mosip.biosdk.service.url=http://biosdk-service.biosdk +mosip.regproc.workflow.url=http://regproc-workflow.regproc config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 2adeccf5797..9ce35de6c26 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -139,13 +139,13 @@ audit.rest.headers.mediaType=${mosip.ida.request.mediaType} audit.rest.timeout=${mosip.ida.request.timeout.secs} ## Kernel OTP Validator -otp-validate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate +otp-validate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/validate otp-validate.rest.httpMethod=GET otp-validate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-validate.rest.timeout=${mosip.ida.request.timeout.secs} ## Kernel OTP Generator -otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate +otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate otp-generate.rest.httpMethod=POST otp-generate.rest.headers.mediaType=${mosip.ida.request.mediaType} otp-generate.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/kernel-default.properties b/kernel-default.properties index 6417e799b4b..7784aa19f8e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.host +# keycloak.internal.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.ida.client.secret @@ -15,7 +15,6 @@ # email.smtp.secret ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel-syncdata-service.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -79,8 +78,8 @@ auth.refreshtoken.header=RefreshToken auth.jwt.refresh.expiry=86400000 auth.primary.language=eng -otp.manager.api.generate=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate -otp.manager.api.verify=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate +otp.manager.api.generate=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate +otp.manager.api.verify=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/validate otp.sender.api.email.send=${mosip.kernel.notification.url}/v1/notifier/email/send otp.sender.api.sms.send=${mosip.kernel.notification.url}/v1/notifier/sms/send masterdata.api.template=${mosip.kernel.masterdata.url}/v1/masterdata/templates/ @@ -135,8 +134,8 @@ kernel.prid.revoke-scheduler-days_of_week=* ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres -mosip.kernel.database.port=80 +mosip.kernel.database.hostname=postgres-postgresql.postgres +mosip.kernel.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect @@ -210,33 +209,33 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.external.host} +mosip.iam.base.url=${keycloak.internal.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.external.host}/auth/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.external.host}/auth/admin/ +mosip.iam.open-id-url=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${mosip.iam.base.url}/auth/admin/realms/{realmId} +mosip.iam.admin-url=${mosip.iam.base.url}/auth/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.external.host}/auth +keycloak.auth-server-url=${mosip.iam.base.url}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret={cipher}46b4a98aac7347e6a2d4f723e281cfd1e7b859100cc17494fc7ed9fb357a6cd9 +mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ mosip.admin_realm_id=mosip mosip.iam.master.realm-id=master @@ -402,8 +401,8 @@ subscriptions-delay-on-startup=120000 mosip.kernel.keymanager.113nothumbprint.support=false # Pause & resume api proeprties -PACKET_RESUME_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflowaction -PACKET_PAUSE_API=${mosip.regproc-workflowmanager.url}/registrationprocessor/v1/workflowmanager/workflow/search +PACKET_RESUME_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflowaction +PACKET_PAUSE_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflow/search KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey ## resubscription and subscription initial delay for masterdata service @@ -457,12 +456,12 @@ mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} mosip.service-context=/v1/masterdata mosip.service.end-points={cipher}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 - - spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true -## Roles +mosip.kernel.masterdata.template_idauthentication_event=MASTERDATA_IDAUTHENTICATION_TEMPLATES +mosip.kernel.masterdata.title_event=MASTERDATA_TITLES +## Roles mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN @@ -514,7 +513,6 @@ mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MA mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getdocumentcategories=GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN @@ -524,7 +522,6 @@ mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONA mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -#mosip.role.admin.masterdata.getdocumenttypesdocumentcategorycode=INDIVIDUAL,ID_AUTHENTICATION,ZONAL_ADMIN,PARTNER,PARTNER_ADMIN,PRE_REGISTRATION,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN @@ -754,7 +751,3 @@ mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATI mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT - - -mosip.kernel.masterdata.template_idauthentication_event=MASTERDATA_IDAUTHENTICATION_TEMPLATES -mosip.kernel.masterdata.title_event=MASTERDATA_TITLES \ No newline at end of file diff --git a/pre-registration-default.properties b/pre-registration-default.properties index bcf4b935c29..1789c139f61 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -266,7 +266,7 @@ otp.request.flooding.max-count=3 datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX mail-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/email/send sms-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/sms/send -otp-generate.rest.uri=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate +otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template diff --git a/syncdata-default.properties b/syncdata-default.properties index dc5169ebc2b..c4556e002b3 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -75,8 +75,8 @@ auth.refreshtoken.header=RefreshToken auth.jwt.refresh.expiry=86400000 auth.primary.language=eng -otp.manager.api.generate=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/generate -otp.manager.api.verify=${mosip.kernel-otpmanager-service.url}/v1/otpmanager/otp/validate +otp.manager.api.generate=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate +otp.manager.api.verify=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/validate otp.sender.api.email.send=${mosip.kernel.notification.url}/v1/notifier/email/send otp.sender.api.sms.send={mosip.kernel.notification.url}/v1/notifier/sms/send masterdata.api.template=${mosip.kernel.masterdata.url}/v1/masterdata/templates/ From 06842aa37e5df0475e366e256e8138d5f8c0307a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 12:11:14 +0530 Subject: [PATCH 0551/1358] [MOSIP-19369] WIP. --- admin-default.properties | 22 +++++++++------------- application-default.properties | 4 +++- kernel-default.properties | 2 +- pre-registration-default.properties | 4 ++-- resident-default.properties | 2 +- 5 files changed, 16 insertions(+), 18 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 9752702ef76..7ad39faf3d7 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -2,10 +2,9 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.host +# keycloak.internal.url # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.regproc.client.secret -# mosip.api.internal.host mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST @@ -180,14 +179,11 @@ mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} - -#tempuri=https://admin.v3box1.mosip.net -#mosip.admin-services.redirecturi=${tempuri}/v1/admin/login-redirect/ mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.external.hostl}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.interanl.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -207,9 +203,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client @@ -234,7 +230,7 @@ mosip.iam.adapter.self-token-renewal-enable=true # LostRid mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.lostrid.version=1.0 -LOST_RID_API=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/lostridsearch +LOST_RID_API=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/lostridsearch #logging.level.org.springframework.web.client.RestTemplate=DEBUG # Roles @@ -265,13 +261,13 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/?pageNumber=0&pageSize=100&orderBy=cr_dtimes&direction=DESC CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt -mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ -mosip.admin.packetupload.packetsync.url=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/syncV2 +mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel.syncdata.url}/v1/syncdata/tpm/publickey/ +mosip.admin.packetupload.packetsync.url=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/syncV2 mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,lastName mosip.admin.packetupload.packetsync.email=email mosip.admin.packetupload.packetsync.phone=phone diff --git a/application-default.properties b/application-default.properties index 80b0e9a62e1..24268dda3d8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -24,6 +24,7 @@ mosip.kernel.auditmanager.url=http://auditmanager.kernel mosip.kernel.notification.url=http://notifier.kernel mosip.kernel.idgenerator.url=http://idgenerator.kernel mosip.kernel.otpmanager.url=http://otpmanager.kernel +mosip.kernel.syncdata.url=http://syncdata.kernel mosip.idrepo.identity.url=http://idrepo-identity.idrepo mosip.idrepo.vid.url=http://idrepo-vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin @@ -33,6 +34,7 @@ mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo mosip.datashare.url=http://datashare.datashare mosip.biosdk.service.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc +mosip.regproc.status.service.url=http://regproc-status.regproc config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ @@ -309,7 +311,7 @@ management.metrics.export.prometheus.enabled=true mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest mosip.kernel.syncdata-service-dynamicfield-url=${mosip.kernel.masterdata.url}/v1/masterdata/dynamicfields -mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel-syncdata-service.url}/v1/syncdata/tpm/publickey/ +mosip.kernel.syncdata-service-get-tpm-publicKey-url=${mosip.kernel.syncdata.url}/v1/syncdata/tpm/publickey/ mosip.kernel.keymanager-service-validate-url=${mosip.kernel.keymanager.url}/v1/keymanager/validate mosip.kernel.keymanager-service-csverifysign-url=${mosip.kernel.keymanager.url}/v1/keymanager/csverifysign diff --git a/kernel-default.properties b/kernel-default.properties index 7784aa19f8e..eaedd79913d 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -389,7 +389,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/callback/partner/ca_certificate -syncdata.websub.callback.url.ca-cert=${mosip.kernel-syncdata-service.url}/v1/syncdata/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=${mosip.kernel.syncdata.url}/v1/syncdata/callback/partner/ca_certificate # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 1789c139f61..16ec9248169 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -251,8 +251,8 @@ mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid ## Syncdata service latestidschema.service.contextpath=latestidschemafetch the latest ID Schema for the ID object validator -mosip.preregistration.id-schema=${mosip.kernel-syncdata-service.url}/v1/syncdata/latestidschema -syncdata.resource.url=${mosip.kernel-syncdata-service.url}/v1/syncdata +mosip.preregistration.id-schema=${mosip.kernel.syncdata.url}/v1/syncdata/latestidschema +syncdata.resource.url=${mosip.kernel.syncdata.url}/v1/syncdata ## OTP sendOtp.resource.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath} diff --git a/resident-default.properties b/resident-default.properties index a11dddd6d7b..36a688c1805 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -67,7 +67,7 @@ PACKETSIGNPUBLICKEY=${mosip.kernel.keymanager.url}/v1/keymanager/tpmsigning/publ MIDSCHEMAURL=${mosip.kernel.keymanager.url}/v1/syncdata/latestidschema # DMZ service call -SYNCSERVICE=${mosip.regproc-status-service.url}/registrationprocessor/v1/registrationstatus/sync +SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync PACKETRECEIVER=${mosip.regproc-group1-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets SMSNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/sms/send EMAILNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/email/send From cb86f6a0b0bd09fc8c21da0614dd57f6e0ec77b7 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 12:34:12 +0530 Subject: [PATCH 0552/1358] [MOSIP-19369] WIP. --- data-share-default.properties | 4 ++-- hotlist-default.properties | 4 ++-- id-authentication-default.properties | 14 ++++---------- 3 files changed, 8 insertions(+), 14 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 7aa1f4c753c..9d7eda40fd6 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -1,7 +1,7 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# keycloak.host +# keycloak.internal.url # mosip.mosip.datsha.client.secret mosip.data.share.service.id=mosip.data.share @@ -24,7 +24,7 @@ data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare -data.share.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +data.share.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB mosip.data.share.protocol=http mosip.data.share.includeCertificateHash=false diff --git a/hotlist-default.properties b/hotlist-default.properties index fdd711fcef4..2761d26d2ff 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -5,8 +5,8 @@ spring.application.name=HOTLIST ## DB -mosip.hotlist.db.url=postgres -mosip.hotlist.db.port=80 +mosip.hotlist.db.url=postgres-postgresql.postgres +mosip.hotlist.db.port=5432 mosip.hotlist.db.db-name=mosip_hotlist mosip.hotlist.db.username=hotlistuser mosip.hotlist.db.password=${db.dbuser.password} diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 9ce35de6c26..fda55ab1236 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -11,12 +11,9 @@ # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # softhsm.ida.pin -# mosip.api.internal.host -# mosip.api.public.host # ida.websub.masterdata.templates.callback.secret # ida.websub.masterdata.titles.callback.secret - ## Client # The Online Verification partner ID associated to the IDA instance. # This is used to subscribe to the credential issuance event notification sent by credential service. @@ -35,8 +32,8 @@ mosip.ida.auth.appId=ida ## Database # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.ida.database.hostname=postgres -mosip.ida.database.port=80 +mosip.ida.database.hostname=postgres-postgresql.postgres +mosip.ida.database.port=5432 mosip.ida.database.user=idauser mosip.ida.database.password=${db.dbuser.password} @@ -205,8 +202,6 @@ id-masterdata-template-service-multilang.rest.httpMethod=GET id-masterdata-template-service-multilang.rest.headers.mediaType=${mosip.ida.request.mediaType} id-masterdata-template-service-multilang.rest.timeout=${mosip.ida.request.timeout.secs} - - ## Websub ida-websub-authtype-callback-secret=${ida.websub.authtype.callback.secret} ida-websub-credential-issue-callback-secret=${ida.websub.credential.issue.callback.secret} @@ -214,7 +209,6 @@ ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} - ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events @@ -484,7 +478,7 @@ mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} mosip.iam.adapter.clientsecret=${mosip.ida.auth.secretKey} mosip.iam.adapter.appid=${mosip.ida.auth.appId} -mosip.authmanager.client-token-endpoint=${mosip.api.internal.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey ## IDA key generator keymanager.persistence.jdbc.driver=org.postgresql.Driver @@ -553,7 +547,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url},${mosip.api.internal.url} +mosip.ida.allowed.domain.uris=${mosip.api.internal.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX From 90c85c018b43852ed9dd801a9f7ad0a629ebb7de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 12:52:42 +0530 Subject: [PATCH 0553/1358] [MOSIP-19369] WIP. --- application-default.properties | 1 + id-authentication-internal-default.properties | 1 - id-repository-default.properties | 15 +++++---------- resident-default.properties | 2 +- 4 files changed, 7 insertions(+), 12 deletions(-) diff --git a/application-default.properties b/application-default.properties index 24268dda3d8..587964cc1cb 100644 --- a/application-default.properties +++ b/application-default.properties @@ -31,6 +31,7 @@ mosip.admin.hotlist.url=http://admin-hotlist.admin mosip.pms.policymanager.url=http://pms-policy.pms mosip.pms.partnermanager.url=http://pms-partner.pms mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo +mosip.idrepo.credential.service.url=http://idrepo-credential.idrepo mosip.datashare.url=http://datashare.datashare mosip.biosdk.service.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 75568ed80ca..4ea87b06ce2 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -3,7 +3,6 @@ ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-web ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} - # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} diff --git a/id-repository-default.properties b/id-repository-default.properties index b7b7c9fcdef..6387b4b0db8 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -5,17 +5,16 @@ # mosip.mosip.crereq.client.secret # mosip.mosip.creser.client.secret # mosip.mosip.regproc.client.secret -# keycloak.host # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt -#idrepo.websub.vid.credential.update.secret +# idrepo.websub.vid.credential.update.secret management.endpoint.restart.enabled=true # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.idrepo.db.url=postgres -mosip.idrepo.db.port=80 +mosip.idrepo.db.url=postgres-postgresql.postgres +mosip.idrepo.db.port=5432 mosip.idrepo.db.identity.db-name=mosip_idrepo mosip.idrepo.db.identity.username=idrepouser mosip.idrepo.db.identity.password=${db.dbuser.password} @@ -152,7 +151,7 @@ mosip.iam.adapter.renewal-before-expiry-interval=15 mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false -mosip.idrepo.bio-extractor-service.rest.uri=${mosip.idrepo-bioextractor-service.url}/v1/bioextractor/{extractionFormat}/extracttemplates +mosip.idrepo.bio-extractor-service.rest.uri=${mosip.mock.biosdk.url}/biosdk-service/{extractionFormat}/extracttemplates mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json mosip.idrepo.bio-extractor-service.rest.timeout=100 @@ -266,7 +265,7 @@ credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 ## Rest services -CRDENTIALSERVICE=${mosip.idrepo-credential-service.url}/v1/credentialservice/issue +CRDENTIALSERVICE=${mosip.idrepo.credential.service.url}/v1/credentialservice/issue KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey CALLBACKURL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/callback/notifyStatus ENCRYPTION=${mosip.idrepo.encryptor.rest.uri} @@ -378,9 +377,7 @@ mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST,ID_REP mosip.role.idrepo.credentialrequest.getgetrequestid=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.getgetrequestids=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.putretriggerrequestid=CREDENTIAL_REQUEST - mosip.role.idrepo.credentialservice.postissue=CREDENTIAL_REQUEST - mosip.role.idrepo.identity.postidrepo=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.getidvidid=REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION,ID_REPOSITORY mosip.role.idrepo.identity.patchidrepo=REGISTRATION_PROCESSOR,ID_REPOSITORY @@ -393,7 +390,6 @@ mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESS mosip.role.idrepo.identity.draftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY - mosip.role.idrepo.vid.postvid=RESIDENT,REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.vid.getvid=REGISTRATION_PROCESSOR,ID_AUTHENTICATION,RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR,ID_REPOSITORY @@ -402,4 +398,3 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY - diff --git a/resident-default.properties b/resident-default.properties index 36a688c1805..c7242a4aecf 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -83,7 +83,7 @@ OTP_GEN_URL=${mosip.ida-internal-service.url}/idauthentication/v1/internal/otp CREDENTIAL_STATUS_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/get/ CREDENTIAL_REQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator CREDENTIAL_CANCELREQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/cancel/ -CREDENTIAL_TYPES_URL=${mosip.idrepo-credential-service.url}/v1/credentialservice/types +CREDENTIAL_TYPES_URL=${mosip.idrepo.credential.service.url}/v1/credentialservice/types PARTNER_API_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits From 79d70245a5acfcf20d4239931c832934bdaae2ab Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 13:08:08 +0530 Subject: [PATCH 0554/1358] [MOSIP-19369] WIP. --- application-default.properties | 2 ++ partner-management-default.properties | 18 +++++++++--------- print-default.properties | 10 +++++----- registration-default.properties | 2 +- registration-processor-default.properties | 2 +- resident-default.properties | 15 ++++++++------- syncdata-default.properties | 4 ++-- 7 files changed, 28 insertions(+), 25 deletions(-) diff --git a/application-default.properties b/application-default.properties index 587964cc1cb..8e3c27225fc 100644 --- a/application-default.properties +++ b/application-default.properties @@ -36,6 +36,8 @@ mosip.datashare.url=http://datashare.datashare mosip.biosdk.service.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc mosip.regproc.status.service.url=http://regproc-status.regproc +mosip.websub.url=http://websub.websub +mosip.ida.internal.url=http://ida-internal.ida config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ diff --git a/partner-management-default.properties b/partner-management-default.properties index fb4b076ccba..81bd7acc6f9 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -4,15 +4,15 @@ ## db.dbuser.password ## mosip.mosip.partner.client.secret ## mosip.mosip.pms.client.secret -## keycloak.host +## keycloak.internal.url ## keycloak.admin.password ## mosip.api.public.url ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace ## If database is external to production, provide the DNS or ip of the host and port -mosip.pmp.database.hostname=postgres -mosip.pmp.database.port=80 +mosip.pmp.database.hostname=postgres-postgresql.postgres +mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} @@ -135,13 +135,13 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.external.host}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.external.host}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.internal.url}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.internal.url}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli @@ -155,7 +155,7 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -229,6 +229,8 @@ apikey.status.content-template=apikey-status-content-template pms.notifications-schedule.init-delay = 24 pms.notifications-schedule.fixed-rate=24 +partner.register.as.user.in.iam.enable=false + ## Roles mosip.role.pms.postpoliciesgroupnew=PARTNER_ADMIN,POLICYMANAGER mosip.role.pms.putpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER @@ -303,5 +305,3 @@ mosip.role.pms.postmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.putmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmispsmispidlicensekey=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER - -partner.register.as.user.in.iam.enable=false diff --git a/print-default.properties b/print-default.properties index ef472d2fb74..edccf0eb7be 100644 --- a/print-default.properties +++ b/print-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # mosip.mosip.regproc.client.secret -# keycloak.host +# keycloak.internal.url # print.websub.hub.secret ## Websub @@ -26,7 +26,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -111,8 +111,8 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${mosip.api.internal.url}/keycloak/auth/realms/mosip -mosip.authmanager.base-url=http://kernel-auth-service/v1/authmanager +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes @@ -125,4 +125,4 @@ mosip.iam.adapter.renewal-before-expiry-interval=1440 mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter \ No newline at end of file +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter diff --git a/registration-default.properties b/registration-default.properties index 24d857edad3..9d4b120c091 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -403,7 +403,7 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR': # it is comma separated list of field ids mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferredLang - +## Roles mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT diff --git a/registration-processor-default.properties b/registration-processor-default.properties index cc7a6d9cca5..2bcb787b6eb 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -88,7 +88,7 @@ authmanager.base.url=${mosip.authmanager.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateToken GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid -IDAINTERNAL=${mosip.ida-internal-service.url} +IDAINTERNAL=${mosip.ida.internal.url} INTERNALAUTH=${IDAINTERNAL}/idauthentication/v1/internal/auth GETINDIVIDUALIDFROMUSERID=${authmanager.base.url}/v1/authmanager/individualId diff --git a/resident-default.properties b/resident-default.properties index c7242a4aecf..76293ce7933 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -39,11 +39,12 @@ resident.secretKey=${mosip.mosip.resident.client.secret} token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services + KERNELAUTHMANAGER=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey -REGPROCPRINT=${mosip.regproc-print-service.url}/registrationprocessor/v1/print/uincard -INTERNALAUTH=${mosip.ida-internal-service.url}/idauthentication/v1/internal/auth -INTERNALAUTHTRANSACTIONS=${mosip.ida-internal-service.url}/idauthentication/v1/internal/authTransactions -KERNELENCRYPTIONSERVICE=${mosip.ida-internal-service.url}/idauthentication/v1/internal/getCertificate +REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard +INTERNALAUTH=${mosip.ida.internal.url}/idauthentication/v1/internal/auth +INTERNALAUTHTRANSACTIONS=${mosip.ida.internal.url}/idauthentication/v1/internal/authTransactions +KERNELENCRYPTIONSERVICE=${mosip.ida.internal.url}/idauthentication/v1/internal/getCertificate IDAUTHCREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid IDAUTHREVOKEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid/deactivate ## Notification service @@ -68,18 +69,18 @@ MIDSCHEMAURL=${mosip.kernel.keymanager.url}/v1/syncdata/latestidschema # DMZ service call SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=${mosip.regproc-group1-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets +PACKETRECEIVER=http://regproc-group1.regproc/registrationprocessor/v1/packetreceiver/registrationpackets SMSNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/sms/send EMAILNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/email/send AUTHTYPESTATUSUPDATE=${mosip.idrepo.identity.url}/idrepository/v1/identity/authtypes/status #Regitstration processor reprint service #Registration status service -REGISTRATIONSTATUSSEARCH=${dmz.ingress.base.url}/registrationprocessor/v1/registrationstatus/externalstatus/search +REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search resident.center.id=10001 resident.machine.id=10001 #Credential Req service POLICY_REQ_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -OTP_GEN_URL=${mosip.ida-internal-service.url}/idauthentication/v1/internal/otp +OTP_GEN_URL=${mosip.ida.internal.url}/idauthentication/v1/internal/otp CREDENTIAL_STATUS_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/get/ CREDENTIAL_REQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator CREDENTIAL_CANCELREQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/cancel/ diff --git a/syncdata-default.properties b/syncdata-default.properties index c4556e002b3..18d49a89926 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -131,8 +131,8 @@ kernel.prid.revoke-scheduler-days_of_week=* ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres -mosip.kernel.database.port=80 +mosip.kernel.database.hostname=postgres-postgresql.postgres +mosip.kernel.database.port=5432 javax.persistence.jdbc.driver=org.postgresql.Driver hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect From 1c32f56804baf2cfc56dcda6a37dc04c3ab0f08b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 13:12:23 +0530 Subject: [PATCH 0555/1358] Synced with develop2-v2. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index eaedd79913d..d51b8b92daa 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -446,7 +446,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client From fa4fb89e8f7731d4be10917b4dc1215abe59be3d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 14:55:07 +0530 Subject: [PATCH 0556/1358] Minor --- resident-default.properties | 10 ++++++++-- 1 file changed, 8 insertions(+), 2 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 76293ce7933..f736b466343 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -3,7 +3,8 @@ # helm chart: # mosip.mosip.resident.client.secret # mosip.mosip.regproc.client.secret -#--------------ID and Version -------------- +# keycloak.internal.url. + auth.internal.id=mosip.identity.auth.internal auth.internal.version=1.0 mosip.registration.processor.print.id=mosip.registration.print @@ -39,7 +40,6 @@ resident.secretKey=${mosip.mosip.resident.client.secret} token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services - KERNELAUTHMANAGER=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard INTERNALAUTH=${mosip.ida.internal.url}/idauthentication/v1/internal/auth @@ -119,3 +119,9 @@ registration.processor.identityjson=identity-mapping.json resident.update-uin.machine-name-prefix = resident_machine_ resident.update-uin.machine-spec-id = 1001 resident.update-uin.machine-zone-code = MOR + +#Auth Adapter rest template authentication configs +mosip.iam.adapter.appid=resident +mosip.iam.adapter.clientid=mosip-resident-client +mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ From bc28a26ef2a72b79a4411f4ae23330ee708c0329 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 4 Jan 2022 14:58:01 +0530 Subject: [PATCH 0557/1358] Synced with develop2-v2. --- registration-processor-camel-routes-lost-default.xml | 2 +- registration-processor-camel-routes-new-default.xml | 2 +- registration-processor-camel-routes-res-reprint-default.xml | 2 +- registration-processor-camel-routes-res-update-default.xml | 2 +- registration-processor-camel-routes-update-default.xml | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index caac0d18368..b0a03fb8020 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -478,8 +478,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 134267ae97c..9826531d15c 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -519,8 +519,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index 044226a2cd4..5fa2dcafede 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -76,8 +76,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index bcd11c32aa7..3b19bb160a4 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -255,8 +255,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index c8683a1c5a6..7b9be37c84a 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -537,8 +537,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> + <to uri="workflow-cmd://complete-as-processed" /> </otherwise> </choice> </route> From c97a573b24c01f8cd478feb5b7177471672dae01 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 5 Jan 2022 11:20:11 +0530 Subject: [PATCH 0558/1358] Synced with develop2-v2. --- print-default.properties | 7 ++++--- registration-processor-camel-routes-lost-default.xml | 2 +- registration-processor-camel-routes-new-default.xml | 2 +- ...stration-processor-camel-routes-res-reprint-default.xml | 2 +- registration-processor-camel-routes-res-update-default.xml | 2 +- registration-processor-camel-routes-update-default.xml | 2 +- registration-processor-default.properties | 2 +- 7 files changed, 10 insertions(+), 9 deletions(-) diff --git a/print-default.properties b/print-default.properties index edccf0eb7be..f567af8b839 100644 --- a/print-default.properties +++ b/print-default.properties @@ -10,12 +10,13 @@ mosip.event.hubURL=${mosip.websub.url}/hub/ mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident -mosip.event.callBackUrl=${mosip.print-service.url}/v1/print/print/callback/notifyPrint +mosip.event.callBackUrl=${mosip.api.internal.url}/${server.servlet.context-path}/print/callback/notifyPrint + mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED mosip.event.secret=${print.websub.hub.secret} csrf.disabled=true -mosip.event.delay=120000 -print-websub-resubscription-delay-secs=43200 +mosip.event.delay-millisecs=120000 +print-websub-resubscription-delay-millisecs=21600000 registration.processor.print.textfile=registration-processor-print-text-file.json ## Token diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index b0a03fb8020..caac0d18368 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -478,8 +478,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 9826531d15c..134267ae97c 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -519,8 +519,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index 5fa2dcafede..044226a2cd4 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -76,8 +76,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index 3b19bb160a4..bcd11c32aa7 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -255,8 +255,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 7b9be37c84a..c8683a1c5a6 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -537,8 +537,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2bcb787b6eb..2cae8320013 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -944,7 +944,7 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=true # Roles -mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN +mosip.role.registration.getsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT From 8660b5923cf55181a1f1010bff14f1aaf822e2fa Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 5 Jan 2022 14:55:09 +0530 Subject: [PATCH 0559/1358] Minor correction. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index f736b466343..7057e92657d 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -124,4 +124,4 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ From d747ffb1c66e6c0fe962c49be98151083b0fc57b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 17:43:44 +0530 Subject: [PATCH 0560/1358] Auth url corrected. --- admin-default.properties | 20 ++++++++++---------- data-share-default.properties | 2 +- id-repository-default.properties | 6 +++--- kernel-default.properties | 20 ++++++++++---------- mock-abis-default.properties | 2 +- partner-management-default.properties | 12 ++++++------ pre-registration-default.properties | 2 +- print-default.properties | 2 +- registration-processor-default.properties | 2 +- resident-default.properties | 2 +- syncdata-default.properties | 16 ++++++++-------- 11 files changed, 43 insertions(+), 43 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 7ad39faf3d7..3ca32e53fb0 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -15,8 +15,8 @@ mosip.kernel.database.hostname=postgres mosip.kernel.database.port=80 ## Account management -authmanager.base.url=${mosip.authmanager.url}/v1/authmanager -mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager +authmanager.base.url=${mosip.kernel.authmanager.url}/v1/authmanager +mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.accountmgmt.user-name-url=/username/ mosip.admin.accountmgmt.user-detail-url=/userdetail/ mosip.admin.accountmgmt.unblock-url=/unblock/ @@ -25,8 +25,8 @@ mosip.admin.accountmgmt.reset-password-url=/resetpassword/ mosip.admin.app-id=admin mosip.kernel.signature.cryptomanager-encrypt-url=${mosip.kernel.keymanager.url}/v1/keymanager/private/encrypt -auth.server.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.refreshToken.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/refreshToken +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.refreshToken.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/refreshToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client auth.role.prefix=ROLE_ auth.header.name=Authorization @@ -48,10 +48,10 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false ## Use registration -auth.server.user-register-url=${mosip.authmanager.url}/v1/authmanager/user +auth.server.user-register-url=${mosip.kernel.authmanager.url}/v1/authmanager/user mosip.kernel.emailnotifier-url=${mosip.kernel.notification.url}/v1/notifier/email/send -auth.server.sendotp-url=${mosip.authmanager.url}/v1/authmanager/authenticate/sendotp -auth.server.user-add-password-url=${mosip.authmanager.url}/v1/authmanager/user/addpassword +auth.server.sendotp-url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/sendotp +auth.server.user-add-password-url=${mosip.kernel.authmanager.url}/v1/authmanager/user/addpassword mosip.admin-appid=admin mosip.admin-otp-context=auth-otp mosip.admin-userid-otp-type=USERID @@ -65,7 +65,7 @@ mosip.admin.security.policy.type1=password mosip.admin.security.policy.type2=password,otp mosip.admin.security.policy.type3=otp mosip.admin.security.policy.role-policy-mapping={ZONAL_ADMIN:'type2',ZONAL_APPROVER:'type1',CENTRAL_ADMIN:'type1',CENTRAL_APPROVER:'type1',REGISTRATION_OFFICER:'type1',REGISTRATION_SUPERVISOR:'type1',REGISTRATION_OPERATOR:'type1'} -mosip.admin.security.policy.userrole-auth-url=${mosip.authmanager.url}/v1/authmanager/role/{appId}/{username} +mosip.admin.security.policy.userrole-auth-url=${mosip.kernel.authmanager.url}/v1/authmanager/role/{appId}/{username} ## Masterdata cards @@ -212,14 +212,14 @@ regproc.token.request.clientId=mosip-regproc-client regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 -KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # IAM adapter mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip -mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 # in minutes diff --git a/data-share-default.properties b/data-share-default.properties index 9d7eda40fd6..ef8c6df6838 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -10,7 +10,7 @@ mosip.data.share.service.version=1.0 CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign PARTNER_POLICY=${mosip.pms.policymanager.url}/v1/policymanager/policies/{policyId}/partner/{partnerId} -KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey data.share.application.id=PARTNER diff --git a/id-repository-default.properties b/id-repository-default.properties index 6387b4b0db8..1bd4e13d127 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -205,7 +205,7 @@ mosip.idrepo.websub.credential-status-update.topic=CREDENTIAL_STATUS_UPDATE mosip.iam.adapter.clientid.id-repository=${mosip.idrepo.auth.client-id} mosip.iam.adapter.clientsecret.id-repository=${mosip.idrepo.auth.secret-key} mosip.iam.adapter.appid.id-repository=${mosip.idrepo.auth.app-id} -mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey mosip.idrepo.uin-generator.rest.uri=${mosip.kernel.idgenerator.url}/v1/idgenerator/uin mosip.idrepo.uin-generator.rest.httpMethod=GET @@ -266,7 +266,7 @@ credential.request.reprocess.locktimeout=60000 ## Rest services CRDENTIALSERVICE=${mosip.idrepo.credential.service.url}/v1/credentialservice/issue -KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey CALLBACKURL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/callback/notifyStatus ENCRYPTION=${mosip.idrepo.encryptor.rest.uri} DECRYPTION=${mosip.idrepo.decryptor.rest.uri} @@ -317,7 +317,7 @@ IDREPOGETIDBYID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http mosip.data.share.internal.domain.name=${mosip.datashare.url} CREATEDATASHARE=/v1/datashare/create -KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign KEYMANAGER_ENCRYPT_PIN=${mosip.kernel.keymanager.url}/v1/keymanager/encryptWithPin KEYMANAGER_ENCRYPT_ZK=${mosip.kernel.keymanager.url}/v1/keymanager/zkEncrypt diff --git a/kernel-default.properties b/kernel-default.properties index d51b8b92daa..1dca75911ee 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -257,7 +257,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.authmanager.url}/v1/authmanager +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -291,7 +291,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken ## Proxy otp @@ -307,7 +307,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -371,10 +371,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=${mosip.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=${mosip.authmanager.url}/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key @@ -403,7 +403,7 @@ mosip.kernel.keymanager.113nothumbprint.support=false # Pause & resume api proeprties PACKET_RESUME_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflowaction PACKET_PAUSE_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflow/search -KEYBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey ## resubscription and subscription initial delay for masterdata service masterdata.websub.resubscription.delay.millis=48000000 @@ -427,7 +427,7 @@ mosip.admin.ui.configs=version:${aplication.configuration.level.version};locatio mosip.kernel.keymanager.113nothumbprint.support=false ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## identity schema backward compatability ######## @@ -444,7 +444,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 #openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's -zone.user.details.url=${mosip.authmanager.url}/v1/authmanager/userdetails +zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client diff --git a/mock-abis-default.properties b/mock-abis-default.properties index e05913976fb..e2463c3688e 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -8,7 +8,7 @@ management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 abis.return.duplicate=false -secret_url=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string secret_url.secretKey=${mosip.mosip.regproc.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 81bd7acc6f9..7a7abf108cd 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -114,7 +114,7 @@ mosip.pmp.auth.clientId=mosip-partner-client mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} -pms.cert.service.token.request.issuerUrl=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +pms.cert.service.token.request.issuerUrl=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey pmp.ca.certificaticate.upload.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/uploadCACertificate pmp.partner.certificaticate.upload.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/uploadPartnerCertificate pmp.partner.certificaticate.get.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} @@ -149,14 +149,14 @@ mosip.keycloak.admin.user.id=admin mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter -auth.server.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip -mosip.authmanager.client-token-endpoint=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 # in minutes @@ -211,9 +211,9 @@ token.request.password=mosip token.request.username=110005 token.request.version=string token.request.id=v1 -token.request.issuerUrl=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +token.request.issuerUrl=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey token.request.clientId=admin -PASSWORDBASEDTOKENAPI=${mosip.authmanager.url}/v1/authmanager/authenticate/useridPwd +PASSWORDBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/useridPwd application.env.local=false # Notifications diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 16ec9248169..8894ef81440 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -241,7 +241,7 @@ appId=prereg ## Auth service kernel.auth.env=${mosip.kernel.auditmanager.url} kernel.auth.contextpath=authmanager -auth.server.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## PRID service diff --git a/print-default.properties b/print-default.properties index f567af8b839..c5fa9b94e83 100644 --- a/print-default.properties +++ b/print-default.properties @@ -34,7 +34,7 @@ AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.kernel.pdf_owner_password=123456 ## Auth service -authmanager.base.url=${mosip.authmanager.url} +authmanager.base.url=${mosip.kernel.authmanager.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey ## Master data services diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2cae8320013..5c829a8459a 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -84,7 +84,7 @@ token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits ## Auth Service -authmanager.base.url=${mosip.authmanager.url} +authmanager.base.url=${mosip.kernel.authmanager.url} KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsecretkey TOKENVALIDATE=${authmanager.base.url}/v1/authmanager/authorize/admin/validateToken GETRIDFROMUSERID=${authmanager.base.url}/v1/authmanager/rid diff --git a/resident-default.properties b/resident-default.properties index 7057e92657d..e1f1fd58551 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -40,7 +40,7 @@ resident.secretKey=${mosip.mosip.resident.client.secret} token.request.issuerUrl=${mosip.keycloak.issuerUrl} ## Auth Services -KERNELAUTHMANAGER=${mosip.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +KERNELAUTHMANAGER=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard INTERNALAUTH=${mosip.ida.internal.url}/idauthentication/v1/internal/auth INTERNALAUTHTRANSACTIONS=${mosip.ida.internal.url}/idauthentication/v1/internal/authTransactions diff --git a/syncdata-default.properties b/syncdata-default.properties index 18d49a89926..9e09f8f8634 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -13,7 +13,7 @@ # softhsm.kernel.pin ## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager +mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -262,7 +262,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.authmanager.url}/v1/authmanager +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager master.search.maximum.rows=50 mosip.level=2 @@ -288,7 +288,7 @@ kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* ## UIN Auth adapter config -auth.server.admin.validate.url=${mosip.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client,mosip-resident-client ## Proxy otp @@ -304,7 +304,7 @@ mosip.ui.spec.default.domain=registration-client mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} ## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.authmanager.url}/v1/authmanager +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false @@ -366,10 +366,10 @@ mosip.kernel.registrationclient.client.id=mosip-reg-client mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=${mosip.authmanager.url}/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=${mosip.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=${mosip.authmanager.url}/v1/authmanager/authenticate/sendotp +mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/sendotp # Sample Additional configuration required for real HSM configured though JCE. # Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key From 191f7ed4f8c35bd58f6abc52d4323b989d42b6fe Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 17:48:10 +0530 Subject: [PATCH 0561/1358] Keycloak base url added. --- kernel-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/kernel-default.properties b/kernel-default.properties index 1dca75911ee..36d8492fdd4 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -210,6 +210,7 @@ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties mosip.iam.base.url=${keycloak.internal.url} +mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip mosip.iam.open-id-url=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/ From 1eecba55f760180f2826d72f6fcd11ec5b2012ad Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 17:49:26 +0530 Subject: [PATCH 0562/1358] Keycloak url fixed. --- syncdata-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 9e09f8f8634..3ed04a3cf96 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.host +# keycloak.internal.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) # mosip.mosip.ida.client.secret @@ -206,7 +206,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.external.host} +mosip.iam.base-url=${keycloak.internal.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip mosip.iam.open-id-url =${keycloak.external.host}//auth/realms/{realmId}/protocol/openid-connect/ From a27dc6b7323985da11c61b7b9019a48397cd2d2c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 22:15:06 +0530 Subject: [PATCH 0563/1358] S3 url fixed. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 8e3c27225fc..9036e5ee0c7 100644 --- a/application-default.properties +++ b/application-default.properties @@ -349,7 +349,7 @@ hazelcast.config=classpath:hazelcast_default.xml object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=${mosip.minio.url} +object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 From 712d321b39d1e6d0d7f4c45d5267dc823ef065de Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 22:35:02 +0530 Subject: [PATCH 0564/1358] Keycloak urls corrected. --- admin-default.properties | 5 +++-- id-repository-default.properties | 5 +++-- partner-management-default.properties | 4 ++-- pre-registration-default.properties | 3 ++- syncdata-default.properties | 15 ++++++++------- 5 files changed, 18 insertions(+), 14 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 3ca32e53fb0..4860fecb33e 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -3,6 +3,7 @@ # helm chart: # db.dbuser.password # keycloak.internal.url +# keycloak.external.url # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.regproc.client.secret @@ -173,7 +174,7 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanag # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined -mosip.open-id.base-url=${keycloak.external.host} +mosip.open-id.base-url=${keycloak.external.url} mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code @@ -218,7 +219,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 diff --git a/id-repository-default.properties b/id-repository-default.properties index 1bd4e13d127..a74cefff2bb 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -8,6 +8,7 @@ # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # idrepo.websub.vid.credential.update.secret +# keycloak.internal.url management.endpoint.restart.enabled=true @@ -239,7 +240,7 @@ credential.request.token.request.clientId=${mosip.idrepo.credential-req-generato credential.request.token.request.secretKey=${mosip.idrepo.credential-req-generator.auth.secret-key} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator -credential.request.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +credential.request.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.credential.request.service.id=mosip.credential.request.generator mosip.credential.request.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.request.service.version=1.0 @@ -323,7 +324,7 @@ KEYMANAGER_ENCRYPT_PIN=${mosip.kernel.keymanager.url}/v1/keymanager/encryptWithP KEYMANAGER_ENCRYPT_ZK=${mosip.kernel.keymanager.url}/v1/keymanager/zkEncrypt PARTNER_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies PARTNER_EXTRACTION_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} -credential.service.token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +credential.service.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # BioSDK service mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service diff --git a/partner-management-default.properties b/partner-management-default.properties index 7a7abf108cd..3c74e36e4fb 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -198,10 +198,10 @@ mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 8894ef81440..cca53af5bed 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -6,6 +6,7 @@ # keycloak.host # prereg.captcha.site.key # prereg.captcha.secret.key +# keycloak.internal.url ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace @@ -284,7 +285,7 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -iam.base.url=${keycloak.external.host} +iam.base.url=${keycloak.internal.url} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration validationStatus=success context=auth-otp diff --git a/syncdata-default.properties b/syncdata-default.properties index 3ed04a3cf96..d78dd38e673 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -9,6 +9,7 @@ # mosip.mosip.admin.client.secret # mosip.mosip.reg.client.secret # preregistration.mosip.prereg.client.secret +# mosip.mosip.syncdata.client.secret # mosip.api.internal.host # softhsm.kernel.pin @@ -209,9 +210,9 @@ ridgenerator_database_password=${db.dbuser.password} mosip.iam.base-url=${keycloak.internal.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.external.host}//auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.external.host}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.external.host}/admin/ +mosip.iam.open-id-url =${keycloak.internal.url}//auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.internal.url}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.internal.url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -220,7 +221,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -228,14 +229,14 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.external.host}/auth +keycloak.auth-server-url=${keycloak.internal.url}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 6708b26c778e349aae0167fe6cf775968a5be9d5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 22:38:55 +0530 Subject: [PATCH 0565/1358] Prereg prop corrected. --- pre-registration-default.properties | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index cca53af5bed..c9d5ff863ec 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -94,7 +94,9 @@ mosip.kernel.objectstore.account-name=prereg ## Booking Service booking.service.version=v1 -booking.service.env=${mosip.prereg-booking-service.url} + +mosip.prereg.booking.url=http://prereg-booking.prereg +booking.service.env=${mosip.prereg.booking.url} booking.service.contextpath=preregistration/${booking.service.version} booking.resource.url=${booking.service.env}/${booking.service.contextpath} appointmentResourse.url=${booking.resource.url} @@ -400,9 +402,9 @@ object.store.s3.use.account.as.bucketname=true ## Spring cache spring.cache.type=none -mosip.preregistration.appointment.getavailablity.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment/availability/{registrationCenterId} -mosip.preregistration.appointment.book.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment/{preRegistrationId} -mosip.preregistration.appointment.multi.book.url=${mosip.prereg-booking-service.url}/preregistration/v1/appointment +mosip.preregistration.appointment.getavailablity.url=${mosip.prereg.booking.url}/preregistration/v1/appointment/availability/{registrationCenterId} +mosip.preregistration.appointment.book.url=${mosip.prereg.booking.url}/preregistration/v1/appointment/{preRegistrationId} +mosip.preregistration.appointment.multi.book.url=${mosip.prereg.booking.url}/preregistration/v1/appointment mosip.preregistration.applications.status.get = mosip.preregistration.applications.status mosip.preregistration.applications.details.get = mosip.preregistration.applications.detail.info mosip.preregistration.uispec.latest=mosip.preregistration.uispec.latest From 8768c8a02339122dc64ba9a05c7e438080a16835 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 22:40:37 +0530 Subject: [PATCH 0566/1358] Prereg prop corrected. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c9d5ff863ec..56b34c86211 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -383,7 +383,7 @@ mosip.preregistration.captcha.enable=true mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} -mosip.preregistration.captcha.resourse.url=${mosip.prereg-captcha-service.url}/preregistration/v1/captcha/validatecaptcha +mosip.preregistration.captcha.resourse.url=http://prereg-captcha.prereg/preregistration/v1/captcha/validatecaptcha mosip.preregistration.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify ## Security From e674d07250227d5bd1f17a252b0ae92cc3233208 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 22:43:16 +0530 Subject: [PATCH 0567/1358] Prereg prop corrected. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 56b34c86211..7ae08f5d987 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -248,7 +248,7 @@ auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authoriz auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-reg-client ## PRID service -kernel.prid.env=${mosip.kernel-pridgenerator-service.url} +kernel.prid.env=${mosip.kernel.pridgenerator.url} kernel.prid.contextpath=pridgenerator mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid.contextpath}/prid From bc4e74a4f165351ee037f583e9d746457e0184c9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 6 Jan 2022 22:44:38 +0530 Subject: [PATCH 0568/1358] Prop added. --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 9036e5ee0c7..8294edddd95 100644 --- a/application-default.properties +++ b/application-default.properties @@ -25,6 +25,7 @@ mosip.kernel.notification.url=http://notifier.kernel mosip.kernel.idgenerator.url=http://idgenerator.kernel mosip.kernel.otpmanager.url=http://otpmanager.kernel mosip.kernel.syncdata.url=http://syncdata.kernel +mosip.kernel.pridgenerator.url=http://pridgenerator.kernel mosip.idrepo.identity.url=http://idrepo-identity.idrepo mosip.idrepo.vid.url=http://idrepo-vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin From 3cce032057395040ec9f25479454c51e22acddf0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 07:08:22 +0530 Subject: [PATCH 0569/1358] Mock biosdk missing url added. --- application-default.properties | 2 +- registration-processor-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 8294edddd95..3d58128569e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -34,7 +34,7 @@ mosip.pms.partnermanager.url=http://pms-partner.pms mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo mosip.idrepo.credential.service.url=http://idrepo-credential.idrepo mosip.datashare.url=http://datashare.datashare -mosip.biosdk.service.url=http://biosdk-service.biosdk +mosip.mock.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc mosip.regproc.status.service.url=http://regproc-status.regproc mosip.websub.url=http://websub.websub diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5c829a8459a..c88d23b0d0b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -455,7 +455,7 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK #mosip.biosdk.default.host=${mosip.mock.biosdk.url} -mosip.biosdk.default.service.url=${mosip.biosdk.service.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 From b3bc362093b5401325ab9686fd670c711fec1ee4 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 07:22:29 +0530 Subject: [PATCH 0570/1358] Postgres url fixed. --- id-repository-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index a74cefff2bb..d9f2bcd49eb 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -224,8 +224,9 @@ mosip.idrepo.update-vid.rest.headers.mediaType=application/json mosip.idrepo.update-vid.rest.timeout=100 ## Credential request generator -mosip.credential.service.database.hostname=postgres -mosip.credential.service.database.port=80 +mosip.credential.service.database.hostname=postgres-postgresql.postgres +mosip.credential.service.database.port=5432 + mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.database.hostname}:${mosip.credential.service.database.port}/mosip_credential?currentSchema=credential mosip.credential.service.jdbc.user=credentialuser mosip.credential.service.jdbc.password=${db.dbuser.password} From 084a6a5beae679f1c220aaf1106687df4728b9fe Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 11:46:18 +0530 Subject: [PATCH 0571/1358] Websub props corrected. --- websub-consolidator.toml | 2 +- websub-service.toml | 5 +++-- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index f18db075710..dcccde82d82 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -1,6 +1,6 @@ [consolidatorService.config] # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "kafka.default:9092" +KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration diff --git a/websub-service.toml b/websub-service.toml index 5b62f66431c..be9a68ec110 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -7,7 +7,7 @@ SECURITY_ON = true SERVER_ID = "server-1" # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "kafka.default:9092" +KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration @@ -42,7 +42,8 @@ MESSAGE_DELIVERY_COUNT = 3 MESSAGE_DELIVERY_TIMEOUT = 10.0 # The base URL of IDP -MOSIP_AUTH_BASE_URL = "${mosip.api.internal.url}/v1/authmanager" +MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" + # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" From bbdb8beaf0691127f2345d2767833f0e762c8ea0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 12:01:13 +0530 Subject: [PATCH 0572/1358] Kafka props corrected. --- application-default.properties | 2 ++ websub-consolidator.toml | 2 +- websub-service.toml | 2 +- 3 files changed, 4 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 3d58128569e..52c6305e026 100644 --- a/application-default.properties +++ b/application-default.properties @@ -39,6 +39,8 @@ mosip.regproc.workflow.url=http://regproc-workflow.regproc mosip.regproc.status.service.url=http://regproc-status.regproc mosip.websub.url=http://websub.websub mosip.ida.internal.url=http://ida-internal.ida +kafka.profile=kafka.svc.cluster.local +kafka.port=9092 config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ diff --git a/websub-consolidator.toml b/websub-consolidator.toml index dcccde82d82..1229e93e56c 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -1,6 +1,6 @@ [consolidatorService.config] # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" +KAFKA_BOOTSTRAP_NODE = "kafka.${kafka.profile}:${kafka.port}" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration diff --git a/websub-service.toml b/websub-service.toml index be9a68ec110..1f5f063cec9 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -7,7 +7,7 @@ SECURITY_ON = true SERVER_ID = "server-1" # IP and Port of the Kafka bootstrap node -KAFKA_BOOTSTRAP_NODE = "kafka.kafka:9092" +KAFKA_BOOTSTRAP_NODE = "kafka.${kafka.profile}:${kafka.port}" # Kafka topic which will get notified for websub topic registration/deregistration # All the hubs must be pointed to the same Kafka topic to notify websub topic registration/deregistration From 58bad2a83a5e31edaa873afd00c2be5be9490b52 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 12:41:32 +0530 Subject: [PATCH 0573/1358] DB corrected. --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 4860fecb33e..57a1872419f 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -12,8 +12,8 @@ mosip.admin.request-id=ADMIN.REQUEST ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace # If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres -mosip.kernel.database.port=80 +mosip.kernel.database.hostname=postgres-postgresql.postgres +mosip.kernel.database.port=5432 ## Account management authmanager.base.url=${mosip.kernel.authmanager.url}/v1/authmanager From a474ef7096cf9ee85e19cad191f604fad1532b0f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 12:47:05 +0530 Subject: [PATCH 0574/1358] Urls fixed. --- admin-default.properties | 4 ++-- application-default.properties | 2 ++ 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 57a1872419f..45cd68ff009 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -165,8 +165,8 @@ mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u ## UIN activate/deactivate mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} -mosip.kernel.packet-status-update-url=${mosip.regproc-registration-transaction-service.url}/v1/registrationtransaction/search -mosip.kernel.packet-reciever-api-url=${mosip.packet-receiver-service.url}/registrationprocessor/v1/packetreceiver/registrationpackets +mosip.kernel.packet-status-update-url=${mosip.regproc.transaction.service.url}/v1/registrationtransaction/search +mosip.kernel.packet-reciever-api-url=${mosip.packet.receiver.url}/registrationprocessor/v1/packetreceiver/registrationpackets mosip.kernel.zone-validation-url=${mosip.kernel.masterdata.url}/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 mosip.kernel.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits diff --git a/application-default.properties b/application-default.properties index 52c6305e026..a3f5d279d32 100644 --- a/application-default.properties +++ b/application-default.properties @@ -37,6 +37,8 @@ mosip.datashare.url=http://datashare.datashare mosip.mock.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc mosip.regproc.status.service.url=http://regproc-status.regproc +mosip.regproc.transaction.service.url=http://regproc-trans.regproc +mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub mosip.ida.internal.url=http://ida-internal.ida kafka.profile=kafka.svc.cluster.local From 48d10c4e01085492b0250a22699b0b22d8b9c650 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 16:46:53 +0530 Subject: [PATCH 0575/1358] Keycloak url updated. --- admin-default.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 45cd68ff009..fb58fd3ec36 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -174,7 +174,6 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanag # The base-url below should be an external URL to connect to keycloak # keycloak.external.url is Ansible defined -mosip.open-id.base-url=${keycloak.external.url} mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code @@ -183,8 +182,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.interanl.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client From f5b3b320d2a058139c6ceb9a5617194374f4588c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 16:50:48 +0530 Subject: [PATCH 0576/1358] Keycloak url corrected. --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index fb58fd3ec36..c7bce025743 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -203,9 +203,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client From 0f61b3ee4139439541b774b0ef04b69a85db54fa Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 16:53:10 +0530 Subject: [PATCH 0577/1358] Keycloak url experiments. --- admin-default.properties | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index c7bce025743..0b1886964b1 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -172,8 +172,6 @@ mosip.kernel.registrationcenterid.length=5 mosip.kernel.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits -# The base-url below should be an external URL to connect to keycloak -# keycloak.external.url is Ansible defined mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code @@ -182,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client From 79aabdfa92d8fbbec0bfbce0ec84a0264726f221 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 7 Jan 2022 21:14:42 +0530 Subject: [PATCH 0578/1358] Keycloak url experiments. --- admin-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 0b1886964b1..6871f0a7f20 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.internal.url +# keycloak.external.url # keycloak.external.url # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.regproc.client.secret @@ -180,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/?pageNumber=0&pageSize=100&orderBy=cr_dtimes&direction=DESC CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt From 5963e0756b21934e4523ac8b66ba4c59df376a52 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 8 Jan 2022 17:49:41 +0530 Subject: [PATCH 0579/1358] Secrets updated. --- id-authentication-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index fda55ab1236..98a8a5eca4f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -26,7 +26,8 @@ ida-auth-partner-id=mpartner-default-auth #Note: since the Online verification Partner ID is used as client ID, for a different IDA instance, this needs to be changed accordingly #and also to be added to the 'auth.server.admin.allowed.audience' property of all dependency modules. mosip.ida.auth.clientId=${ida-auth-partner-id} -mosip.ida.auth.secretKey=${mosip.mosip.ida.client.secret} +mosip.ida.auth.secretKey=${mosip.mpartner.default.auth.secret} + mosip.ida.auth.appId=ida ## Database From f133483bfb7a7b0df493a1e02a317398b09608db Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 8 Jan 2022 18:39:04 +0530 Subject: [PATCH 0580/1358] Synced with develop2-v2. --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 6871f0a7f20..e62f76848b5 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -260,7 +260,7 @@ mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ -MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/?pageNumber=0&pageSize=100&orderBy=cr_dtimes&direction=DESC +MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt From c2a04829846039f8b41d36be1a97dbfe56f40bfd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 9 Jan 2022 09:59:37 +0530 Subject: [PATCH 0581/1358] Applicanttype synced with develop2-v2. --- applicanttype.mvel | 76 +++++++++++++++++++++++----------------------- 1 file changed, 38 insertions(+), 38 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 5ae1fcdcd1f..69da629d5dc 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -96,97 +96,97 @@ def getApplicantType() { if( ageCode == 'KER-MSD-151' ) { return "KER-MSD-151"; } if(itc == null || genderType == null || ageCode == null || isBioExPresent == null ) { - return isUpdateFlow(identity) ? "A000" : "KER-MSD-147"; + return isUpdateFlow(identity) ? "000" : "KER-MSD-147"; } System.out.println(itc + " - " + genderType + " - " + ageCode + " - " + isBioExPresent); if (itc == NonResident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "A001"; + return "001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "A002"; + return "002"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { - return "A003"; + return "003"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { - return "A004"; + return "004"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "A005"; + return "005"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "A006"; + return "006"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { - return "A007"; + return "007"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { - return "A008"; + return "008"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "A005"; + return "005"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "A006"; + return "006"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { - return "A007"; + return "007"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { - return "A008"; + return "008"; } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "A009"; + return "009"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "A010"; + return "010"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && isBioExPresent) { - return "A011"; + return "011"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && isBioExPresent) { - return "A012"; + return "012"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "A013"; + return "013"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && isBioExPresent) { - return "A016"; + return "016"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "A013"; + return "013"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && isBioExPresent) { - return "A016"; + return "016"; } else if (itc == NonResident && genderType == MALE && ageCode == MINOR && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == MALE && ageCode == MINOR && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == NonResident && genderType == Others && ageCode == MINOR && isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == Others && ageCode == MINOR && isBioExPresent) { - return "A015"; + return "015"; } else if (itc == NonResident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { - return "A015"; + return "015"; } else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { - return "A015"; + return "015"; } else if (itc == NonResident && genderType == Others && ageCode == MINOR && !isBioExPresent) { - return "A014"; + return "014"; } else if (itc == Resident && genderType == Others && ageCode == MINOR && !isBioExPresent) { - return "A015"; + return "015"; } - return "A000"; + return "000"; } From 0ff9f337e819713248c362071f83fa47f8befe38 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 9 Jan 2022 10:05:33 +0530 Subject: [PATCH 0582/1358] Synced with develop2-v2. --- id-authentication-default.properties | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 98a8a5eca4f..23129d5a5a2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -105,6 +105,12 @@ mosip.date-of-birth.attribute.name=dateOfBirth # Used in DOB matching and Child Auth filter mosip.date-of-birth.pattern=yyyy/MM/dd +# The separators for composite ID Attribute such as fullAddress. +# By default the separator is space. +# Usage: ida.id.attribute.separator.<id_attribute>=<separator string> +# For Example, full address attributes are separated with comman (,). +ida.id.attribute.separator.fullAddress=, + ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service @@ -566,6 +572,9 @@ ida-zero-knowledge-unencrypted-credential-attributes= springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha +# for Fraud management +mosip.ida.fraud-analysis-enabled=true + ## Roles mosip.role.idauth.postotp=RESIDENT mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT From 6c8dabd9db03c3bcb2be2e6ad88923f84d1e4774 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 9 Jan 2022 20:42:49 +0530 Subject: [PATCH 0583/1358] Keymanager url corrected. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index a3f5d279d32..2f950824c70 100644 --- a/application-default.properties +++ b/application-default.properties @@ -19,7 +19,7 @@ mosip.recommended.centers.locCode=5 mosip.api.internal.url=https://${mosip.api.internal.host} mosip.kernel.authmanager.url=http://authmanager.kernel mosip.kernel.masterdata.url=http://masterdata.kernel -mosip.kernel.keymanager.url=http://keymanager.kernel +mosip.kernel.keymanager.url=http://keymanager.keymanager mosip.kernel.auditmanager.url=http://auditmanager.kernel mosip.kernel.notification.url=http://notifier.kernel mosip.kernel.idgenerator.url=http://idgenerator.kernel From caa6cdad036b10dfa3426c3107a5fc78275134cd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 Jan 2022 12:01:17 +0530 Subject: [PATCH 0584/1358] Props corrected. --- kernel-default.properties | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 36d8492fdd4..735ef08c5a1 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -13,8 +13,11 @@ # email.smtp.host # email.smtp.username # email.smtp.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt ## Sync data +mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles mosip.kernel.syncdata.auth-user-details=/userdetails mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST @@ -94,10 +97,6 @@ mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} -## Token id salts -mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} -mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} - ## VID generator service mosip.kernel.vid.min-unused-threshold=100000 mosip.kernel.vid.vids-to-generate=200000 From 45aa1d6a3ca3add28d8ae1ffb085d64bb7bee0a9 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 10 Jan 2022 15:02:44 +0530 Subject: [PATCH 0585/1358] updated issuer uri. --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index e62f76848b5..33c9161aa49 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt From b8e8e5b6de8d966477b2095571116ec4c77a1f1a Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 10 Jan 2022 15:13:24 +0530 Subject: [PATCH 0586/1358] updated issuer uri. --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 33c9161aa49..8d964416530 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 From aada3514bc8421c9a0607d2bc10ef2c4bd1fab0f Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 10 Jan 2022 15:30:37 +0530 Subject: [PATCH 0587/1358] updated issuer uri. --- admin-default.properties | 4 ++-- application-default.properties | 2 ++ 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 8d964416530..e62f76848b5 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt diff --git a/application-default.properties b/application-default.properties index 2f950824c70..767c16b9c20 100644 --- a/application-default.properties +++ b/application-default.properties @@ -44,6 +44,8 @@ mosip.ida.internal.url=http://ida-internal.ida kafka.profile=kafka.svc.cluster.local kafka.port=9092 + + config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # masterdata field data url From 006be3f4ff6702fbfe63cb7cb5c08a27ea5ef1fc Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 10 Jan 2022 15:58:02 +0530 Subject: [PATCH 0588/1358] updated issuer uri and URL. --- admin-default.properties | 2 +- application-default.properties | 2 +- resident-default.properties | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index e62f76848b5..7ec2af05a25 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 diff --git a/application-default.properties b/application-default.properties index 767c16b9c20..7798eb871aa 100644 --- a/application-default.properties +++ b/application-default.properties @@ -192,7 +192,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=${mosip.kernel.auth..url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip diff --git a/resident-default.properties b/resident-default.properties index e1f1fd58551..1ea27ec0b60 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -124,4 +124,4 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ From 81561d422ef55fc14de70d9e9840416ce9d55df1 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 10 Jan 2022 16:20:07 +0530 Subject: [PATCH 0589/1358] updated issuer uri and URL. --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 7ec2af05a25..e62f76848b5 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 From d0130facc63f53509ce905bdb150b145f6e64e32 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Mon, 10 Jan 2022 16:28:53 +0530 Subject: [PATCH 0590/1358] Update application-default.properties --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 7798eb871aa..c0bd98a8df2 100644 --- a/application-default.properties +++ b/application-default.properties @@ -193,8 +193,8 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=${mosip.kernel.auth..url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ -auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +auth-token-generator.rest.issuerUrl=${keycloak.external.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.external.url}/auth/realms/mosip ## iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter From 4e28770d8204b287b22dc6388cb73187ac84ba3a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 Jan 2022 16:49:14 +0530 Subject: [PATCH 0591/1358] Keycloak url made external throughout. --- application-default.properties | 2 +- data-share-default.properties | 4 ++-- id-repository-default.properties | 6 +++--- kernel-default.properties | 4 ++-- partner-management-default.properties | 14 +++++++------- pre-registration-default.properties | 4 ++-- print-default.properties | 6 +++--- registration-processor-default.properties | 6 +++--- resident-default.properties | 2 +- syncdata-default.properties | 18 +++++++++--------- 10 files changed, 33 insertions(+), 33 deletions(-) diff --git a/application-default.properties b/application-default.properties index c0bd98a8df2..9cdb48aeb57 100644 --- a/application-default.properties +++ b/application-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # override below properties for v2 deployment -# keycloak.internal.url +# keycloak.external.url # s3.accesskey # s3.region # s3.secretkey diff --git a/data-share-default.properties b/data-share-default.properties index ef8c6df6838..c2317ea6dcd 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -1,7 +1,7 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# keycloak.internal.url +# keycloak.external.url # mosip.mosip.datsha.client.secret mosip.data.share.service.id=mosip.data.share @@ -24,7 +24,7 @@ data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare -data.share.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +data.share.token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB mosip.data.share.protocol=http mosip.data.share.includeCertificateHash=false diff --git a/id-repository-default.properties b/id-repository-default.properties index d9f2bcd49eb..e47b6d23c9c 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -8,7 +8,7 @@ # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # idrepo.websub.vid.credential.update.secret -# keycloak.internal.url +# keycloak.external.url management.endpoint.restart.enabled=true @@ -241,7 +241,7 @@ credential.request.token.request.clientId=${mosip.idrepo.credential-req-generato credential.request.token.request.secretKey=${mosip.idrepo.credential-req-generator.auth.secret-key} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator -credential.request.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +credential.request.token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip mosip.credential.request.service.id=mosip.credential.request.generator mosip.credential.request.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.request.service.version=1.0 @@ -325,7 +325,7 @@ KEYMANAGER_ENCRYPT_PIN=${mosip.kernel.keymanager.url}/v1/keymanager/encryptWithP KEYMANAGER_ENCRYPT_ZK=${mosip.kernel.keymanager.url}/v1/keymanager/zkEncrypt PARTNER_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies PARTNER_EXTRACTION_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} -credential.service.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +credential.service.token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip # BioSDK service mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service diff --git a/kernel-default.properties b/kernel-default.properties index 735ef08c5a1..8f2bd2d401c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.internal.url +# keycloak.external.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.ida.client.secret @@ -208,7 +208,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.internal.url} +mosip.iam.base.url=${keycloak.external.url} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip diff --git a/partner-management-default.properties b/partner-management-default.properties index 3c74e36e4fb..966997b9115 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -4,7 +4,7 @@ ## db.dbuser.password ## mosip.mosip.partner.client.secret ## mosip.mosip.pms.client.secret -## keycloak.internal.url +## keycloak.external.url ## keycloak.admin.password ## mosip.api.public.url @@ -135,13 +135,13 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.internal.url}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.internal.url}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.external.url}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.external.url}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli @@ -155,7 +155,7 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -198,10 +198,10 @@ mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 7ae08f5d987..85f38c6d665 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -6,7 +6,7 @@ # keycloak.host # prereg.captcha.site.key # prereg.captcha.secret.key -# keycloak.internal.url +# keycloak.external.url ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace @@ -287,7 +287,7 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -iam.base.url=${keycloak.internal.url} +iam.base.url=${keycloak.external.url} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration validationStatus=success context=auth-otp diff --git a/print-default.properties b/print-default.properties index c5fa9b94e83..724ff2d6c76 100644 --- a/print-default.properties +++ b/print-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # mosip.mosip.regproc.client.secret -# keycloak.internal.url +# keycloak.external.url # print.websub.hub.secret ## Websub @@ -27,7 +27,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -112,7 +112,7 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c88d23b0d0b..c4484416ffc 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -4,7 +4,7 @@ # helm chart: # db.dbuser.password # mosip.mosip.regproc.client.secret -# keycloak.internal.url +# keycloak.external.url # activemq.host # activemq.core.port @@ -78,7 +78,7 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -933,7 +933,7 @@ mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 diff --git a/resident-default.properties b/resident-default.properties index 1ea27ec0b60..77c1b04b81a 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -3,7 +3,7 @@ # helm chart: # mosip.mosip.resident.client.secret # mosip.mosip.regproc.client.secret -# keycloak.internal.url. +# keycloak.external.url. auth.internal.id=mosip.identity.auth.internal auth.internal.version=1.0 diff --git a/syncdata-default.properties b/syncdata-default.properties index d78dd38e673..5ec405528e0 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.internal.url +# keycloak.external.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) # mosip.mosip.ida.client.secret @@ -207,12 +207,12 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.internal.url} +mosip.iam.base-url=${keycloak.external.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.internal.url}//auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.internal.url}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.internal.url}/admin/ +mosip.iam.open-id-url =${keycloak.external.url}//auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.external.url}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.external.url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -221,7 +221,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -229,14 +229,14 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.internal.url}/auth +keycloak.auth-server-url=${keycloak.external.url}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 7d1e456d58bcef97e4f7a0f21a01ba9fd1531a09 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 10 Jan 2022 19:13:28 +0530 Subject: [PATCH 0592/1358] updated datashare url --- partner-management-default.properties | 2 +- print-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 966997b9115..15697e143f1 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -126,7 +126,7 @@ mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub -pmp.certificaticate.datashare.rest.uri=http://${mosip.datashare.url}/v1/datashare/create +pmp.certificaticate.datashare.rest.uri=${mosip.datashare.url}/v1/datashare/create # Used for generating the datashare url pms.certs.datashare.policyId=mpolicy-default-cert pms.certs.datashare.subscriberId=mpartner-default-cert diff --git a/print-default.properties b/print-default.properties index 724ff2d6c76..d58067fa2e8 100644 --- a/print-default.properties +++ b/print-default.properties @@ -104,7 +104,7 @@ registration.processor.unMaskedUin.length=5 IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity -CREATEDATASHARE=http://${mosip.datashare.url}/v1/datashare/create +CREATEDATASHARE=${mosip.datashare.url}/v1/datashare/create DECRYPTPINBASSED=${mosip.kernel.keymanager.url}/v1/keymanager/decryptWithPin mosip.print.prependThumbprint=true From 09643014ddd6db26f4625dee8f75bc522b67d32f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 Jan 2022 21:02:51 +0530 Subject: [PATCH 0593/1358] Idrepo urls corrected. --- application-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index 9cdb48aeb57..c8cf0dec82c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -26,13 +26,13 @@ mosip.kernel.idgenerator.url=http://idgenerator.kernel mosip.kernel.otpmanager.url=http://otpmanager.kernel mosip.kernel.syncdata.url=http://syncdata.kernel mosip.kernel.pridgenerator.url=http://pridgenerator.kernel -mosip.idrepo.identity.url=http://idrepo-identity.idrepo -mosip.idrepo.vid.url=http://idrepo-vid.idrepo +mosip.idrepo.identity.url=http://identity.idrepo +mosip.idrepo.vid.url=http://vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin mosip.pms.policymanager.url=http://pms-policy.pms mosip.pms.partnermanager.url=http://pms-partner.pms -mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo -mosip.idrepo.credential.service.url=http://idrepo-credential.idrepo +mosip.idrepo.credrequest.generator.url=http://credentialrequest.idrepo +mosip.idrepo.credential.service.url=http://credential.idrepo mosip.datashare.url=http://datashare.datashare mosip.mock.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc From 6bd1e136e6548ff3573ae43d431992f2ca1f6ed5 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 11:47:38 +0530 Subject: [PATCH 0594/1358] Updated idrepo url as external url. --- id-authentication-default.properties | 4 ++-- id-repository-default.properties | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 23129d5a5a2..8fa7fc65504 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -167,13 +167,13 @@ sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid}?type={type} +rid-uin.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid} +rid-uin-auth.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/id-repository-default.properties b/id-repository-default.properties index e47b6d23c9c..56b021bca25 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -186,7 +186,7 @@ mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 # the credential request with below partner id to issue credential to new IDA partners. idrepo-dummy-online-verification-partner-id=MOVP -mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{uin} +mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json mosip.idrepo.retrieve-by-uin.rest.timeout=100 From a10a670e9472967c6b83c86c158ebc38809a784a Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 12:23:30 +0530 Subject: [PATCH 0595/1358] added mpartner for allowed audience. --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 56b021bca25..f232b773c84 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -367,7 +367,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-idrepo-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-idrepo-client,mpartner-default-auth #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha From 2ecd1b4fcf14a6be468b2afb84009e7bc6576ed0 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 16:52:33 +0530 Subject: [PATCH 0596/1358] Updated datashare domain url. --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index f232b773c84..0409ca37ed6 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -317,7 +317,7 @@ mosip.credential.service.retry.maxDelay=100 IDREPOGETIDBYID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http -mosip.data.share.internal.domain.name=${mosip.datashare.url} +mosip.data.share.internal.domain.name=datashare.datashare CREATEDATASHARE=/v1/datashare/create KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign From 6ea3e7abc358b065188f19b4c51bf9a54bdb74b3 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 11 Jan 2022 21:00:12 +0530 Subject: [PATCH 0597/1358] added the property auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client --- registration-processor-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c4484416ffc..a29ea912e17 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -954,3 +954,5 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT + +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client From e7cd3da81858765c4a7cf6ed0e3849566ab46d4c Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 22:01:08 +0530 Subject: [PATCH 0598/1358] Packet manager typo fixed --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a29ea912e17..677b7bd1a71 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -11,7 +11,7 @@ registration.processor.zone=default mosip.regproc.notification.url=http://regproc-notifier.regproc -packetmanager.base.url=http://packetmanager.packetmanger +packetmanager.base.url=http://packetmanager.packetmanager ## Health check management.endpoint.health.show-details=always From e1ef274e926f99f3eb50c3610dea14a910d28702 Mon Sep 17 00:00:00 2001 From: Rajul Joshi <rajul@Rajuls-MacBook.local> Date: Wed, 12 Jan 2022 12:32:44 +0530 Subject: [PATCH 0599/1358] Packetmanager url corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 677b7bd1a71..e380a291732 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -11,7 +11,7 @@ registration.processor.zone=default mosip.regproc.notification.url=http://regproc-notifier.regproc -packetmanager.base.url=http://packetmanager.packetmanager +packetmanager.base.url=http://packetmanager.packetmanager/commons ## Health check management.endpoint.health.show-details=always From a4d881c5104677b15dfcfa414bd92a2e55a7bd9d Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 12 Jan 2022 14:02:35 +0530 Subject: [PATCH 0600/1358] Sync with sprint-6 release. --- id-authentication-default.properties | 2 +- registration-processor-camel-routes-lost-default.xml | 2 +- registration-processor-camel-routes-new-default.xml | 2 +- registration-processor-camel-routes-res-reprint-default.xml | 3 +-- registration-processor-camel-routes-res-update-default.xml | 3 +-- registration-processor-camel-routes-update-default.xml | 3 +-- websub-service.toml | 2 +- 7 files changed, 7 insertions(+), 10 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 8fa7fc65504..5d4bb97e0e7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -99,7 +99,7 @@ ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} # The attribute name in the Mapping Json used to fetch Anonymous profile preferred language attribute mosip.preferred.language.attribute.name=preferredLanguage # The attribute name in the Mapping Json used to fetch Anonymous profile location attributes -mosip.location.profile.attribute.name=locationProfile +mosip.location.profile.attribute.name=locationHierarchyForProfiling # Used in Child Auth Filter mosip.date-of-birth.attribute.name=dateOfBirth # Used in DOB matching and Child Auth filter diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index caac0d18368..3d15e356956 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -502,8 +502,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://anonymous-profile" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 134267ae97c..72a26fed05f 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -543,8 +543,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://anonymous-profile" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index 044226a2cd4..f7d633d8d99 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -76,7 +76,6 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> @@ -100,8 +99,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://anonymous-profile" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index bcd11c32aa7..0874a31a1a9 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -255,7 +255,6 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> @@ -279,8 +278,8 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://anonymous-profile" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index c8683a1c5a6..085b9b78f6b 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -537,7 +537,6 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> @@ -559,8 +558,8 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <to uri="workflow-cmd://anonymous-profile" /> <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> </otherwise> </choice> </route> diff --git a/websub-service.toml b/websub-service.toml index 1f5f063cec9..250f3ca1e54 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -39,7 +39,7 @@ MESSAGE_DELIVERY_RETRY_INTERVAL = 3.0 MESSAGE_DELIVERY_COUNT = 3 # The message delivery timeout -MESSAGE_DELIVERY_TIMEOUT = 10.0 +MESSAGE_DELIVERY_TIMEOUT = 60.0 # The base URL of IDP MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" From 242b524cd72295f45ef56b01d4353b473aacd9e6 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 12 Jan 2022 19:19:15 +0530 Subject: [PATCH 0601/1358] added tcp to activemq url --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index f531470cbf3..2f0c1476faf 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "${activemq.host}:${activemq.core.port}", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From 62f838e40a51b15d6a502e047f87c58a52e7cc50 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 12 Jan 2022 19:23:20 +0530 Subject: [PATCH 0602/1358] added tcp to activemq url --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e380a291732..306db4fb131 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -271,7 +271,7 @@ registration.processor.updated.subject=UIN Details Updated ## Queue registration.processor.queue.username=artemis registration.processor.queue.password=${activemq.password} -registration.processor.queue.url=${activemq.host}:${activemq.core.port} +registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ registration.processor.queue.manualverification.request=mosip-to-mv From c3f31a57b47e215278e572ce073e7581378f84dd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 15 Jan 2022 22:46:34 +0530 Subject: [PATCH 0603/1358] Regproc prop corrected. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 306db4fb131..07b2d6f1a56 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -97,7 +97,7 @@ MASTER=${mosip.kernel.masterdata.url}/v1/masterdata MACHINEHISTORY=${MASTER}/machineshistories CENTERHISTORY=${MASTER}/registrationcentershistory CENTERUSERMACHINEHISTORY=${MASTER}/getregistrationmachineusermappinghistory -REVERSEDATASYNC=${mosip.prereg-datasync-service.url}/preregistration/v1/sync/consumedPreRegIds +REVERSEDATASYNC=http://prereg-datasync.prereg/preregistration/v1/sync/consumedPreRegIds CENTERDETAILS=${MASTER}/registrationcenters MACHINEDETAILS=${MASTER}/machines DEVICESHISTORIES=${MASTER}/deviceshistories From 3f3a9b32844bbfbc53a0d417ffd02ff1df871930 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 17 Jan 2022 09:42:18 +0530 Subject: [PATCH 0604/1358] Synced with develop2-v2 --- admin-default.properties | 2 +- application-default.properties | 4 +-- hotlist-default.properties | 31 +++++++++++++++++++++-- id-authentication-default.properties | 6 +++++ id-repository-default.properties | 11 ++++++-- packet-manager-default.properties | 2 +- registration-processor-default.properties | 4 +-- 7 files changed, 50 insertions(+), 10 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index e62f76848b5..6c877bec8a2 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -165,7 +165,7 @@ mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u ## UIN activate/deactivate mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} -mosip.kernel.packet-status-update-url=${mosip.regproc.transaction.service.url}/v1/registrationtransaction/search +mosip.kernel.packet-status-update-url=${mosip.regproc.transaction.service.url}/registrationprocessor/v1/registrationtransaction/search mosip.kernel.packet-reciever-api-url=${mosip.packet.receiver.url}/registrationprocessor/v1/packetreceiver/registrationpackets mosip.kernel.zone-validation-url=${mosip.kernel.masterdata.url}/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 diff --git a/application-default.properties b/application-default.properties index c8cf0dec82c..e2a065654a6 100644 --- a/application-default.properties +++ b/application-default.properties @@ -199,8 +199,8 @@ mosip.keycloak.issuerUrl=${keycloak.external.url}/auth/realms/mosip ## iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true -mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} -mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} +mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} ## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING diff --git a/hotlist-default.properties b/hotlist-default.properties index 2761d26d2ff..d71b5e540f2 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -1,7 +1,8 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# db.dbuser.password +# db.dbuser.password +# mosip.mosip.hotlist.client.secret spring.application.name=HOTLIST ## DB @@ -23,9 +24,20 @@ mosip.hotlist.datasource.password=${mosip.hotlist.db.password} mosip.hotlist.datasource.url=jdbc:postgresql://${mosip.hotlist.db.url}:${mosip.hotlist.db.port}/${mosip.hotlist.db.db-name} mosip.hotlist.datasource.dialect=${mosip.hotlist.db.dialect} +#Admin hotlist service authentication details +mosip.admin.hotlist.auth.client-id=mosip-hotlist-client +mosip.admin.hotlist.auth.secret-key=${mosip.mosip.hotlist.client.secret} +mosip.admin.hotlist.auth.app-id=hotlist + # Websub mosip.hotlist.topic-to-publish=MOSIP_HOTLIST +#Auth Adapter +mosip.iam.adapter.clientid.HOTLIST=${mosip.admin.hotlist.auth.client-id} +mosip.iam.adapter.clientsecret.HOTLIST=${mosip.admin.hotlist.auth.secret-key} +mosip.iam.adapter.appid.HOTLIST=${mosip.admin.hotlist.auth.app-id} +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey + ## Encryption/decyrption mosip.hotlist.crypto.app-id=ADMIN_SERVICES mosip.hotlist.crypto.ref-id=hotlist_service @@ -51,6 +63,22 @@ mosip.hotlist.decryptor.rest.httpMethod=POST mosip.hotlist.decryptor.rest.headers.mediaType=application/json mosip.hotlist.decryptor.rest.timeout=100 +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=15 +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=15 +#this should be false if you don?t use the self token restTemplate from auth adapter true if you do (needed for websubclient). +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false + + +# Roles authorized for hotlist APIs +mosip.role.admin.hotlist.postHotlistBlock=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.hotlist.getHotlistStatus=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION,ID_REPOSITORY +mosip.role.admin.hotlist.postHotlistUnblock=ZONAL_ADMIN,GLOBAL_ADMIN + +auth.server.admin.allowed.audience=mosip-hotlist-client,mosip-regproc-client,mosip-ida-client,mosip-idrepo-client + mosip.hotlist.audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.hotlist.audit.rest.httpMethod=POST mosip.hotlist.audit.rest.headers.mediaType=application/json @@ -70,4 +98,3 @@ kernel.retry.retryable.exceptions=io.mosip.hotlist.exception.HotlistRetryExcepti #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= -auth.server.admin.allowed.audience=mosip-regproc-client diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 5d4bb97e0e7..49bba0a1672 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -575,6 +575,12 @@ springdoc.swagger-ui.operationsSorter=alpha # for Fraud management mosip.ida.fraud-analysis-enabled=true +mosip.ida.active-async-thread-count=100 + +# Logging of thread queue done based on below value in ms. Logging is done only if queue value of any one thread group crosses below specified threshold. +mosip.ida.monitor-thread-queue-in-ms=600000 +mosip.ida.max-thread-queue-threshold=100 + ## Roles mosip.role.idauth.postotp=RESIDENT mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT diff --git a/id-repository-default.properties b/id-repository-default.properties index 0409ca37ed6..5d668e455a2 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -43,6 +43,14 @@ mosip.idrepo.crypto.refId.uin-data=identity_data mosip.idrepo.crypto.refId.demo-doc-data=demographic_data mosip.idrepo.crypto.refId.bio-doc-data=biometric_data + +# Limit the number of async threads created in IDRepo services. This count is divided into 4 thread groups configured in IdRepoConfig.class +mosip.idrepo.active-async-thread-count=100 + +# Logging of thread queue done based on below value in ms. Logging is done only if queue value of any one thread group crosses below specified threshold. +mosip.idrepo.monitor-thread-queue-in-ms=600000 +mosip.idrepo.max-thread-queue-threshold=100 + ## Kernel retry # The retry limit excluding the first attempt before attempting for retries. Default is set to 5. kernel.retry.attempts.limit=5 @@ -367,8 +375,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-idrepo-client,mpartner-default-auth - +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 0a4be330459..800871d81a1 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -2,7 +2,7 @@ mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator # Roles -mosip.role.commons-packet.postcreatepacket=REGISTRATION_PROCESSOR +mosip.role.commons-packet.putcreatepacket=REGISTRATION_PROCESSOR mosip.role.commons-packet.postaddtag=REGISTRATION_PROCESSOR mosip.role.commons-packet.postaddorupdatetag=REGISTRATION_PROCESSOR mosip.role.commons-packet.postdeletetag=REGISTRATION_PROCESSOR diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 07b2d6f1a56..499cc79bb81 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -139,7 +139,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo # Status for matched records in demo dedupe stage. # 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. -registration.processor.demodedupe.manual.adjudication.status=REJECTED +registration.processor.demodedupe.manual.adjudication.status=PENDING # Validate hostlisted devices DEVICEHOTLIST=${mosip.admin.hotlist.url}/v1/hotlist/status @@ -944,7 +944,7 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=true # Roles -mosip.role.registration.getsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN +mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT From 03ea836df1d72239b3fb0e2f2be8f382319e40d5 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Mon, 17 Jan 2022 11:23:35 +0530 Subject: [PATCH 0605/1358] Synced with develop2-v2 --- registration-processor-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 499cc79bb81..e6549277850 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -956,3 +956,5 @@ mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR, auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client + +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face \ No newline at end of file From 50418ed53069517e3cf1a9bf5791899888218c1e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 17 Jan 2022 11:28:27 +0530 Subject: [PATCH 0606/1358] S3 props moved to individual property files. --- application-default.properties | 12 ------------ data-share-default.properties | 11 +++++++++++ id-repository-default.properties | 11 +++++++++++ pre-registration-default.properties | 12 ++++++++++++ registration-processor-default.properties | 12 +++++++++++- 5 files changed, 45 insertions(+), 13 deletions(-) diff --git a/application-default.properties b/application-default.properties index e2a065654a6..5df10d5cb42 100644 --- a/application-default.properties +++ b/application-default.properties @@ -3,9 +3,6 @@ # helm chart: # override below properties for v2 deployment # keycloak.external.url -# s3.accesskey -# s3.region -# s3.secretkey # mosip.api.internal.host aplication.configuration.level.version=LTS @@ -351,15 +348,6 @@ default.provider.version=v1.0 object.store.base.location=/home/mosip hazelcast.config=classpath:hazelcast_default.xml - -## S3 object store adapter. -object.store.s3.accesskey=${s3.accesskey} -object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com -object.store.s3.region=${s3.region} -object.store.s3.readlimit=10000000 - ## Swift object.store.swift.username=test object.store.swift.password=test diff --git a/data-share-default.properties b/data-share-default.properties index c2317ea6dcd..ed29b59dc8a 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -3,6 +3,9 @@ # helm chart: # keycloak.external.url # mosip.mosip.datsha.client.secret +# s3.accesskey +# s3.region +# s3.secretkey mosip.data.share.service.id=mosip.data.share mosip.data.share.service.version=1.0 @@ -36,3 +39,11 @@ mosip.data.share.prependThumbprint=false auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client mosip.auth.filter_disable=false + +# Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 diff --git a/id-repository-default.properties b/id-repository-default.properties index 5d668e455a2..efb7f42f69f 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -9,6 +9,9 @@ # mosip.kernel.tokenid.partnercode.salt # idrepo.websub.vid.credential.update.secret # keycloak.external.url +# s3.accesskey +# s3.region +# s3.secretkey management.endpoint.restart.enabled=true @@ -380,6 +383,14 @@ auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosi springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha +# Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + # Roles mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST,ID_REPOSITORY mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST,ID_REPOSITORY diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 85f38c6d665..25b96da1543 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -7,6 +7,9 @@ # prereg.captcha.site.key # prereg.captcha.secret.key # keycloak.external.url +# s3.accesskey +# s3.region +# s3.secretkey ## Database properties # Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace @@ -428,6 +431,15 @@ mosip.iam.adapter.appid.pre-registration-datasync-service=registrationclient mosip.security.authentication.provider.beans.list.pre-registration-application-service=customJWTAuthProvider mosip.security.authentication.provider.beans.list.pre-registration-booking-service=customJWTAuthProvider +# Object store + +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + # Roles mosip.role.prereg.postapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.putapplications=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 499cc79bb81..de0fe9028ef 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -1,4 +1,3 @@ - # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: @@ -7,6 +6,9 @@ # keycloak.external.url # activemq.host # activemq.core.port +# s3.accesskey +# s3.region +# s3.secretkey registration.processor.zone=default @@ -943,6 +945,14 @@ mosip.iam.adapter.renewal-before-expiry-interval=30 mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=true +## Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + # Roles mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR From e4e85bc333eb2db3acfd8a158c9cf2d25b097dcf Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 10 Jan 2022 21:02:51 +0530 Subject: [PATCH 0607/1358] Idrepo urls corrected. --- application-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index 9cdb48aeb57..c8cf0dec82c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -26,13 +26,13 @@ mosip.kernel.idgenerator.url=http://idgenerator.kernel mosip.kernel.otpmanager.url=http://otpmanager.kernel mosip.kernel.syncdata.url=http://syncdata.kernel mosip.kernel.pridgenerator.url=http://pridgenerator.kernel -mosip.idrepo.identity.url=http://idrepo-identity.idrepo -mosip.idrepo.vid.url=http://idrepo-vid.idrepo +mosip.idrepo.identity.url=http://identity.idrepo +mosip.idrepo.vid.url=http://vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin mosip.pms.policymanager.url=http://pms-policy.pms mosip.pms.partnermanager.url=http://pms-partner.pms -mosip.idrepo.credrequest.generator.url=http://idrepo-credentialrequest.idrepo -mosip.idrepo.credential.service.url=http://idrepo-credential.idrepo +mosip.idrepo.credrequest.generator.url=http://credentialrequest.idrepo +mosip.idrepo.credential.service.url=http://credential.idrepo mosip.datashare.url=http://datashare.datashare mosip.mock.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc From 35aef3a2874959845cc84c1d8a5f6b7e1f994b8c Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 11:47:38 +0530 Subject: [PATCH 0608/1358] Updated idrepo url as external url. --- id-authentication-default.properties | 4 ++-- id-repository-default.properties | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 23129d5a5a2..8fa7fc65504 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -167,13 +167,13 @@ sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid}?type={type} +rid-uin.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid} +rid-uin-auth.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} diff --git a/id-repository-default.properties b/id-repository-default.properties index e47b6d23c9c..56b021bca25 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -186,7 +186,7 @@ mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 # the credential request with below partner id to issue credential to new IDA partners. idrepo-dummy-online-verification-partner-id=MOVP -mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{uin} +mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json mosip.idrepo.retrieve-by-uin.rest.timeout=100 From 1696e40750a8cd2ba5bbd9c33f776646aa8e40ed Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 12:23:30 +0530 Subject: [PATCH 0609/1358] added mpartner for allowed audience. --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 56b021bca25..f232b773c84 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -367,7 +367,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-idrepo-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-resident-client,mosip-ida-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-idrepo-client,mpartner-default-auth #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha From 0da462b7bd2ab4775e25e16a316f20f4deeff1e4 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 11 Jan 2022 16:52:33 +0530 Subject: [PATCH 0610/1358] Updated datashare domain url. --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index f232b773c84..0409ca37ed6 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -317,7 +317,7 @@ mosip.credential.service.retry.maxDelay=100 IDREPOGETIDBYID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http -mosip.data.share.internal.domain.name=${mosip.datashare.url} +mosip.data.share.internal.domain.name=datashare.datashare CREATEDATASHARE=/v1/datashare/create KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign From 4be672dc72b09b4f072a32879ce780ecc6ca98a8 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 19 Jan 2022 17:04:57 +0530 Subject: [PATCH 0611/1358] added missing prop. --- admin-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 6c877bec8a2..dd05e73e955 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -269,3 +269,6 @@ mosip.admin.packetupload.packetsync.url=${mosip.regproc.status.service.url}/regi mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,lastName mosip.admin.packetupload.packetsync.email=email mosip.admin.packetupload.packetsync.phone=phone + +# Mapping identity json to map with the applicant id json +registration.processor.identityjson=identity-mapping.json \ No newline at end of file From 0cd24e72fd50ccb83bb6419c87ff2f5f66f47e01 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 19 Jan 2022 17:46:03 +0530 Subject: [PATCH 0612/1358] added missing prop. --- id-authentication-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 49bba0a1672..fe2c3fc31fb 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -328,7 +328,8 @@ ida.demo.address.normalization.regex.eng[21]=9[tT][hH]${ida.norm.sep}9 ida.demo.address.normalization.regex.eng[22]=0[tT][hH]${ida.norm.sep}0 # Note: the common normalization attributes will be replaced at the end. # Special characters are removed : . , - * ( ) [ ] ` ' / \ # " -ida.demo.common.normalization.regex.any[0]=[\\.|,|\\-|\\*|\\(|\\)|\\[|\\]|`|\\'|/|\\|#|\"] +# Replace spcial char with space.Trailing space is removed from property. As a workaround first replacing with " ." then removing the "." +ida.demo.common.normalization.regex.any[0]=[\\.|,|\\-|\\*|\\(|\\)|\\[|\\]|`|\\'|/|\\|#|\"]${ida.norm.sep} . # Trailing space is removed from property. As a workaround first replacing with " ." then removing the "." ida.demo.common.normalization.regex.any[1]=\\s+${ida.norm.sep} . ida.demo.common.normalization.regex.any[2]=\\.${ida.norm.sep} From 448f4325f085fc325fab4239ff167dbd1d076445 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 19 Jan 2022 17:55:58 +0530 Subject: [PATCH 0613/1358] sync with dev --- admin-default.properties | 3 ++- mosip-cbeff.xsd | 38 +++++++++++++++++++++++--------------- 2 files changed, 25 insertions(+), 16 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index dd05e73e955..7b4bc4c6d6a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -270,5 +270,6 @@ mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,last mosip.admin.packetupload.packetsync.email=email mosip.admin.packetupload.packetsync.phone=phone -# Mapping identity json to map with the applicant id json +mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\W|\w]{1,100}$) + registration.processor.identityjson=identity-mapping.json \ No newline at end of file diff --git a/mosip-cbeff.xsd b/mosip-cbeff.xsd index c39a985c276..b31269eb20b 100644 --- a/mosip-cbeff.xsd +++ b/mosip-cbeff.xsd @@ -1,20 +1,20 @@ <?xml version="1.0" encoding="utf-8"?> <!-- -Permission is hereby granted, free of charge in perpetuity, to any person +Permission is hereby granted, free of charge in perpetuity, to any person obtaining a copy of the Schema, to use, copy, modify, merge and distribute free -of charge, copies of the Schema for the purposes of developing, implementing, -installing and using software based on the Schema, and to permit persons to +of charge, copies of the Schema for the purposes of developing, implementing, +installing and using software based on the Schema, and to permit persons to whom the Schema is furnished to do so, subject to the following conditions: -THE SCHEMA IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR -IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +THE SCHEMA IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE -AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SCHEMA OR THE USE OR OTHER DEALINGS IN THE -SCHEMA. +SCHEMA. --> -<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" -xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http://standards.iso.org/iso-iec/19785/-3/ed-2/" elementFormDefault="qualified" attributeFormDefault="unqualified"> +<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" + xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http://standards.iso.org/iso-iec/19785/-3/ed-2/" elementFormDefault="qualified" attributeFormDefault="unqualified"> <xs:element name="BIR" type="BIRType"/> <xs:complexType name="BIRType"> <xs:sequence> @@ -27,7 +27,7 @@ xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http:// <xs:element name="BIR" type="BIRType" minOccurs="0" maxOccurs="unbounded"/> <xs:element name="BDB" type="xs:base64Binary" minOccurs="0" /> <xs:element name="SB" type="xs:base64Binary" minOccurs="0" /> - <xs:element name="Others" type="Entry" minOccurs="0" maxOccurs="unbounded" nillable="true"/> + <xs:element name="others" type="OthersListType" minOccurs="0" maxOccurs="unbounded" nillable="true"/> </xs:sequence> </xs:complexType> <xs:complexType name="VersionType"> @@ -172,11 +172,19 @@ xmlns="http://standards.iso.org/iso-iec/19785/-3/ed-2/" targetNamespace="http:// </xs:restriction> </xs:simpleType> - <xs:complexType name="Entry"> + <xs:complexType name="OthersListType"> <xs:sequence> - <xs:element name="Key" type="xs:string"/> - <xs:element name="Value" type="xs:string"/> + <xs:element name="entry" type="Entry" + nillable="true" maxOccurs="unbounded" + minOccurs="0"/> </xs:sequence> </xs:complexType> - -</xs:schema> \ No newline at end of file + <xs:complexType name="Entry"> + <xs:simpleContent> + <xs:extension base="xs:string"> + <xs:attribute name="key" type="xs:string" + use="required"/> + </xs:extension> + </xs:simpleContent> + </xs:complexType> +</xs:schema> From f8ec7be017699fb0be818f28ac57c811cd55922b Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Wed, 19 Jan 2022 18:40:49 +0530 Subject: [PATCH 0614/1358] Added missing prop for s3 --- application-default.properties | 2 +- packet-manager-default.properties | 12 ++++++++++++ 2 files changed, 13 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 5df10d5cb42..ef52dbe9dc5 100644 --- a/application-default.properties +++ b/application-default.properties @@ -5,6 +5,7 @@ # keycloak.external.url # mosip.api.internal.host + aplication.configuration.level.version=LTS ## Idobject validator @@ -42,7 +43,6 @@ kafka.profile=kafka.svc.cluster.local kafka.port=9092 - config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # masterdata field data url diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 800871d81a1..28b460729fb 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -1,3 +1,7 @@ +# s3.accesskey +# s3.region +# s3.secretkey + # Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator @@ -16,3 +20,11 @@ mosip.role.commons-packet.postdocument=DOCUMENT_READ mosip.role.commons-packet.postsearchfields=DATA_READ mosip.role.commons-packet.postsearchfield=DATA_READ auth.server.admin.allowed.audience=mosip-regproc-client + +# Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 \ No newline at end of file From a8a37d4df55ba13f198978eafd882885ffbb9a92 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Thu, 20 Jan 2022 16:52:25 +0530 Subject: [PATCH 0615/1358] Update kernel-default.properties --- kernel-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 8f2bd2d401c..a09358c24df 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -751,3 +751,6 @@ mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATI mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT + + +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=200 From f1256ef8401faa757575fa424350c44b90c31c8e Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Thu, 20 Jan 2022 17:00:04 +0530 Subject: [PATCH 0616/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index a09358c24df..26b44a6ec15 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -753,4 +753,4 @@ mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHE mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=200 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 From 3428bc430db3fd3075906c74d9b86edd2c24f958 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 21 Jan 2022 09:57:04 +0530 Subject: [PATCH 0617/1358] Keycloak url changed to internal. --- admin-default.properties | 16 ++++++++-------- application-default.properties | 8 ++++---- data-share-default.properties | 4 ++-- id-repository-default.properties | 6 +++--- kernel-default.properties | 4 ++-- partner-management-default.properties | 14 +++++++------- pre-registration-default.properties | 4 ++-- print-default.properties | 6 +++--- registration-processor-default.properties | 6 +++--- resident-default.properties | 4 ++-- syncdata-default.properties | 18 +++++++++--------- 11 files changed, 45 insertions(+), 45 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 7b4bc4c6d6a..56a74814ed7 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -2,8 +2,8 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.external.url -# keycloak.external.url +# keycloak.internal.url +# keycloak.internal.url # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.regproc.client.secret @@ -180,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -201,9 +201,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt diff --git a/application-default.properties b/application-default.properties index ef52dbe9dc5..5df08d332da 100644 --- a/application-default.properties +++ b/application-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # override below properties for v2 deployment -# keycloak.external.url +# keycloak.internal.url # mosip.api.internal.host @@ -189,9 +189,9 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=${mosip.kernel.auth..url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ -auth-token-generator.rest.issuerUrl=${keycloak.external.url}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.external.url}/auth/realms/mosip +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter diff --git a/data-share-default.properties b/data-share-default.properties index ed29b59dc8a..159eb260e92 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -1,7 +1,7 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# keycloak.external.url +# keycloak.internal.url # mosip.mosip.datsha.client.secret # s3.accesskey # s3.region @@ -27,7 +27,7 @@ data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 data.share.token.request.id=io.mosip.datashare -data.share.token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +data.share.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip spring.servlet.multipart.max-file-size=4MB mosip.data.share.protocol=http mosip.data.share.includeCertificateHash=false diff --git a/id-repository-default.properties b/id-repository-default.properties index efb7f42f69f..d0228bcbe1d 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -8,7 +8,7 @@ # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # idrepo.websub.vid.credential.update.secret -# keycloak.external.url +# keycloak.internal.url # s3.accesskey # s3.region # s3.secretkey @@ -252,7 +252,7 @@ credential.request.token.request.clientId=${mosip.idrepo.credential-req-generato credential.request.token.request.secretKey=${mosip.idrepo.credential-req-generator.auth.secret-key} credential.request.token.request.version=1.0 credential.request.token.request.id=io.mosip.credentialrequestgenerator -credential.request.token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +credential.request.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.credential.request.service.id=mosip.credential.request.generator mosip.credential.request.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.credential.request.service.version=1.0 @@ -336,7 +336,7 @@ KEYMANAGER_ENCRYPT_PIN=${mosip.kernel.keymanager.url}/v1/keymanager/encryptWithP KEYMANAGER_ENCRYPT_ZK=${mosip.kernel.keymanager.url}/v1/keymanager/zkEncrypt PARTNER_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies PARTNER_EXTRACTION_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/bioextractors/{policyId} -credential.service.token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +credential.service.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # BioSDK service mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service diff --git a/kernel-default.properties b/kernel-default.properties index 26b44a6ec15..a02acb4ff35 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.external.url +# keycloak.internal.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.ida.client.secret @@ -208,7 +208,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.external.url} +mosip.iam.base.url=${keycloak.internal.url} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip diff --git a/partner-management-default.properties b/partner-management-default.properties index 15697e143f1..a9d2beb4e5c 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -4,7 +4,7 @@ ## db.dbuser.password ## mosip.mosip.partner.client.secret ## mosip.mosip.pms.client.secret -## keycloak.external.url +## keycloak.internal.url ## keycloak.admin.password ## mosip.api.public.url @@ -135,13 +135,13 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.external.url}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.external.url}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.internal.url}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.internal.url}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli @@ -155,7 +155,7 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -198,10 +198,10 @@ mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 25b96da1543..5f7ab74934b 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -6,7 +6,7 @@ # keycloak.host # prereg.captcha.site.key # prereg.captcha.secret.key -# keycloak.external.url +# keycloak.internal.url # s3.accesskey # s3.region # s3.secretkey @@ -290,7 +290,7 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -iam.base.url=${keycloak.external.url} +iam.base.url=${keycloak.internal.url} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration validationStatus=success context=auth-otp diff --git a/print-default.properties b/print-default.properties index d58067fa2e8..860bada33ab 100644 --- a/print-default.properties +++ b/print-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # mosip.mosip.regproc.client.secret -# keycloak.external.url +# keycloak.internal.url # print.websub.hub.secret ## Websub @@ -27,7 +27,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -112,7 +112,7 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d905772c47b..96512b57b23 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -3,7 +3,7 @@ # helm chart: # db.dbuser.password # mosip.mosip.regproc.client.secret -# keycloak.external.url +# keycloak.internal.url # activemq.host # activemq.core.port # s3.accesskey @@ -80,7 +80,7 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -935,7 +935,7 @@ mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 diff --git a/resident-default.properties b/resident-default.properties index 77c1b04b81a..e1f1fd58551 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -3,7 +3,7 @@ # helm chart: # mosip.mosip.resident.client.secret # mosip.mosip.regproc.client.secret -# keycloak.external.url. +# keycloak.internal.url. auth.internal.id=mosip.identity.auth.internal auth.internal.version=1.0 @@ -124,4 +124,4 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ diff --git a/syncdata-default.properties b/syncdata-default.properties index 5ec405528e0..d78dd38e673 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.external.url +# keycloak.internal.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) # mosip.mosip.ida.client.secret @@ -207,12 +207,12 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.external.url} +mosip.iam.base-url=${keycloak.internal.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.external.url}//auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.external.url}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.external.url}/admin/ +mosip.iam.open-id-url =${keycloak.internal.url}//auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.internal.url}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.internal.url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -221,7 +221,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -229,14 +229,14 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.external.url}/auth +keycloak.auth-server-url=${keycloak.internal.url}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From c2c180f035f898bd3afdc42c5f05ae366d44d6cc Mon Sep 17 00:00:00 2001 From: Mayura Deshmukh <52281514+mayuradesh@users.noreply.github.com> Date: Thu, 27 Jan 2022 16:21:12 +0530 Subject: [PATCH 0618/1358] Updated ReadMe.md --- README.md | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/README.md b/README.md index b80d6e49da9..9f5aa498c98 100644 --- a/README.md +++ b/README.md @@ -1,4 +1,32 @@ # MOSIP Configuration +## Configuration properties + MOSIP uses Spring CLoud Config Server to read the properties files. So, to use the properties files in this repo, please update the IP addresses, keys and passwords and then point to this repo in spring cloud config in kernel module. +## Config server + +Local Config Server Installation Guide + +### Overview +MOSIP uses Config Server to read the properties files. + +### Download + +1. Download Config server jar [config-server](https://mvnrepository.com/artifact/io.mosip.kernel/kernel-config-server) + +2. Clone the Mosip config repo [mosip-config](https://github.com/mosip/mosip-config/tree/develop2-v2) + +### Run + +To run config server jar set the following attribute + +``` +-Dspring.cloud.config.server.native.search-locations = point to mosip-config repo location +``` + +### Run Config Server Jar + +``` +java -jar -Dspring.profiles.active=native -Dspring.cloud.config.server.native.search-locations=file:C:\mosipcode\mosip-config\sandbox -Dspring.cloud.config.server.accept-empty=true -Dspring.cloud.config.server.git.force-pull=false -Dspring.cloud.config.server.git.cloneOnStart=false -Dspring.cloud.config.server.git.refreshRate=0 kernel-config-server-1.0.6.jar +``` From 6cdf8ac9d15a283252df72f01dd207ebc83d5636 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 17:07:01 +0530 Subject: [PATCH 0619/1358] Updated develop3-v3 inline with develop2-v2 --- admin-default.properties | 17 ++++++----- application-default.properties | 9 ++++++ credential-service-default.properties | 15 +++++++++- hotlist-default.properties | 20 ++++++------- kernel-default.properties | 36 +++++------------------ packet-manager-default.properties | 8 ++++- partner-management-default.properties | 14 ++++----- print-default.properties | 15 ++++++---- registration-default.properties | 9 +++++- registration-processor-default.properties | 22 +++----------- resident-default.properties | 9 ++++-- syncdata-default.properties | 18 ++++++------ 12 files changed, 100 insertions(+), 92 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 56a74814ed7..f1d0e540998 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -180,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.external.hostl}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -201,9 +201,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt @@ -270,6 +270,7 @@ mosip.admin.packetupload.packetsync.name=fullName,name,firstName,middleName,last mosip.admin.packetupload.packetsync.email=email mosip.admin.packetupload.packetsync.phone=phone -mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\W|\w]{1,100}$) +mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\\W|\\w]{1,100}$) -registration.processor.identityjson=identity-mapping.json \ No newline at end of file +# Mapping identity json to map with the applicant id json +registration.processor.identityjson=identity-mapping.json diff --git a/application-default.properties b/application-default.properties index 5df08d332da..bb25226831a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -348,6 +348,15 @@ default.provider.version=v1.0 object.store.base.location=/home/mosip hazelcast.config=classpath:hazelcast_default.xml + +## S3 object store adapter. +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +object.store.s3.url=${mosip.minio.url} +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + ## Swift object.store.swift.username=test object.store.swift.password=test diff --git a/credential-service-default.properties b/credential-service-default.properties index 213de396373..4d904547cf2 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -9,4 +9,17 @@ mosip.iam.adapter.clientsecret.credential-service=${mosip.idrepo.credential.auth mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id} -mosip.auth.filter_disable=false \ No newline at end of file +mosip.auth.filter_disable=false + + +mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.api.internal.url}/mosipvc/mosip-context.json" : "mosip-context.json"} +mosip.credential.service.vercred.context.uri=vccontext.jsonld +mosip.credential.service.vercred.id.url=${mosip.api.internal.url}/credentials/ +mosip.credential.service.vercred.issuer.url=${mosip.api.internal.url}/mosipvc/controller.json +mosip.credential.service.vercred.types=VerifiableCredential,MOSIPVerifiableCredential +mosip.credential.service.vercred.proof.purpose=assertionMethod +mosip.credential.service.vercred.proof.type=RsaSignature2018 +mosip.credential.service.vercred.proof.verificationmethod=${mosip.api.internal.url}/mosipvc/public-key.json + +KEYMANAGER_VERCRED_SIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwsSign +credentialType.formatter.VERCRED=VerCredProvider diff --git a/hotlist-default.properties b/hotlist-default.properties index d71b5e540f2..36f6a2749f9 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -63,6 +63,10 @@ mosip.hotlist.decryptor.rest.httpMethod=POST mosip.hotlist.decryptor.rest.headers.mediaType=application/json mosip.hotlist.decryptor.rest.timeout=100 +mosip.hotlist.audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +mosip.hotlist.audit.rest.httpMethod=POST +mosip.hotlist.audit.rest.headers.mediaType=application/json + # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 # in minutes @@ -72,16 +76,6 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false -# Roles authorized for hotlist APIs -mosip.role.admin.hotlist.postHotlistBlock=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.hotlist.getHotlistStatus=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION,ID_REPOSITORY -mosip.role.admin.hotlist.postHotlistUnblock=ZONAL_ADMIN,GLOBAL_ADMIN - -auth.server.admin.allowed.audience=mosip-hotlist-client,mosip-regproc-client,mosip-ida-client,mosip-idrepo-client - -mosip.hotlist.audit.rest.uri=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits -mosip.hotlist.audit.rest.httpMethod=POST -mosip.hotlist.audit.rest.headers.mediaType=application/json ## Retry configs # The retry limit excluding the first attempt before attempting for retries. Default is set to 5. @@ -98,3 +92,9 @@ kernel.retry.retryable.exceptions=io.mosip.hotlist.exception.HotlistRetryExcepti #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= +# Roles authorized for hotlist APIs +mosip.role.admin.hotlist.postHotlistBlock=HOTLIST_ADMIN,HOTLIST_ADMIN +mosip.role.admin.hotlist.getHotlistStatus=HOTLIST_ADMIN,HOTLIST_ADMIN,REGISTRATION_PROCESSOR,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,ID_AUTHENTICATION,ID_REPOSITORY +mosip.role.admin.hotlist.postHotlistUnblock=HOTLIST_ADMIN,HOTLIST_ADMIN + +auth.server.admin.allowed.audience=mosip-hotlist-client,mosip-regproc-client,mosip-ida-client,mosip-idrepo-client diff --git a/kernel-default.properties b/kernel-default.properties index a02acb4ff35..5b18abb8f79 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -208,7 +208,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.internal.url} +mosip.iam.base.url=${keycloak.external.host} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip @@ -227,8 +227,6 @@ keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.iam.authorization_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code @@ -257,14 +255,8 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager -mosip.admin.login_flow.name=authorization_code -mosip.admin.login_flow.response_type=code -mosip.admin.login_flow.scope=cls -mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} -mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ -mosip.admin_realm_id=mosip +mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager + master.search.maximum.rows=50 mosip.level=2 @@ -301,14 +293,6 @@ mosip.security.provider.name=SunPKCS11-pkcs11-proxy ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client -#### Required for admin UI ############## -## this pattern like --> display column : configKey. -## We can provide multiple values with ";" separated -mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} - -## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager -mosip.kernel.masterdata.auth-user-details=/userdetails ## Security properties mosip.security.csrf-enable=false mosip.security.cors-enable=false @@ -351,7 +335,6 @@ mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,RE ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 -datastores=db_1_DS,db_2_DS mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident @@ -395,10 +378,6 @@ syncdata.websub.resubscription.retry.count=3 # Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup=120000 -# Flag to identify the support of no thumbprint in 1.1.3 version. -# Added this for backward compatability. default is false, means support is not required. -# Make it to true if support is required. -mosip.kernel.keymanager.113nothumbprint.support=false # Pause & resume api proeprties PACKET_RESUME_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflowaction @@ -426,16 +405,14 @@ mosip.admin.ui.configs=version:${aplication.configuration.level.version};locatio # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false -## Used to get IAM user details. +## Used to get IAM user details. mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails -## identity schema backward compatability ######## -mosip.ui.spec.default.domain=registration-client ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=300 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 # masterdata swagger openApi #openapi.masterdata.servers[0].url=${mosip.kernel.masterdata.url}/v1/masterdata @@ -751,6 +728,7 @@ mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATI mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 +mosip.kernel.keymanager.jwtsign.validate.json=false \ No newline at end of file diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 28b460729fb..00580d84e45 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -27,4 +27,10 @@ object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.region=${s3.region} -object.store.s3.readlimit=10000000 \ No newline at end of file +object.store.s3.readlimit=10000000 + +# IAM adapter +mosip.iam.adapter.appid=regproc +mosip.iam.adapter.clientid=mosip-regproc-client +mosip.iam.adapter.clientsecret=abc123 +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip diff --git a/partner-management-default.properties b/partner-management-default.properties index a9d2beb4e5c..5f53a674104 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -135,13 +135,13 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.internal.url}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.internal.url}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.external.host}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.external.host}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli @@ -155,7 +155,7 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -181,7 +181,7 @@ mosip.security.secure-cookie:false partner.search.maximum.rows=10 ## Allowed credential types which partner can map against to policy -pmp.allowed.credential.types=auth,qrcode,euin,reprint +pmp.allowed.credential.types=auth,qrcode,euin,reprint,vercred ## Allowed partner types who can map policies to credential types policy.credential.type.mapping.allowed.partner.types=Credential_Partner,Online_Verification_Partner @@ -198,10 +198,10 @@ mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy diff --git a/print-default.properties b/print-default.properties index 860bada33ab..378030b9557 100644 --- a/print-default.properties +++ b/print-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # mosip.mosip.regproc.client.secret -# keycloak.internal.url +# keycloak.external.host # print.websub.hub.secret ## Websub @@ -27,7 +27,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -60,8 +60,6 @@ mosip.print.service.uincard.upperrightx=300 mosip.print.service.uincard.upperrighty=300 mosip.print.service.uincard.signature.reason="signing" -# #Audit request id -mosip.print.audit.id=mosip.applicanttype.getApplicantType ## Kernel Crypto signature registration.processor.signature.isEnabled=true @@ -110,9 +108,9 @@ mosip.print.prependThumbprint=true # websub authentication mosip.iam.adapter.clientid=mpartner-default-print -mosip.iam.adapter.clientsecret=3a1a9527-e58b-483d-b4ec-252cd2d805df +mosip.iam.adapter.clientsecret=${mosip.mpartner.default.print.secret} mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes @@ -127,3 +125,8 @@ mosip.iam.adapter.renewal-before-expiry-interval=1440 mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter + +# p12 file +mosip.print.crypto.p12.filename=partner.p12 +mosip.print.crypto.p12.password={cipher}714cd7ff4c1aa550e7371fabcce089bf6411d69709e6c19aae808eb612c9d31e +mosip.print.crypto.p12.alias=partner diff --git a/registration-default.properties b/registration-default.properties index 9d4b120c091..9f9ab8868c3 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -403,8 +403,15 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR': # it is comma separated list of field ids mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferredLang -## Roles + mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN + + +## Connection and read timeouts for MDM requests in millis +mosip.registration.mdm.connection.timeout=10000 +mosip.registration.mdm.RCAPTURE.connection.timeout=40000 +mosip.registration.mdm.MOSIPDINFO.connection.timeout=5000 +mosip.registration.mdm.MOSIPDISC.connection.timeout=5000 \ No newline at end of file diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 96512b57b23..5aa6107f9d0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -3,7 +3,7 @@ # helm chart: # db.dbuser.password # mosip.mosip.regproc.client.secret -# keycloak.internal.url +# keycloak.external.host # activemq.host # activemq.core.port # s3.accesskey @@ -80,7 +80,7 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -166,7 +166,6 @@ registration.processor.max.retry=10 mosip.registration.processor.registration.status.id=mosip.registration.status mosip.registration.processor.registration.sync.id=mosip.registration.sync mosip.registration.processor.registration.transaction.id=mosip.registration.transaction -mosip.registration.processor.sync.version=1.0 mosip.registration.processor.registration.status.version=1.0 mosip.registration.processor.transaction.version=1.0 mosip.registration.processor.lostrid.id=mosip.registration.lostrid @@ -347,8 +346,6 @@ registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudicatio registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication # Manual verification queue message expiry in seconds, if given 0 then message will never expire # Buffer time above the expiry queue to allow reprocessing (in seconds) -registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication -registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication registration.processor.manual.adjudication.queue.username=${registration.processor.queue.username} registration.processor.manual.adjudication.queue.password=${registration.processor.queue.password} registration.processor.manual.adjudication.queue.url=${registration.processor.queue.url} @@ -363,7 +360,6 @@ mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service -mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event ## Workflow manager mosip.regproc.workflow-manager.action.api-id=mosip.registration.processor.workflow.action @@ -394,14 +390,6 @@ mosip.regproc.workflow-manager.action.job.months=* #schedular weeks configuration mosip.regproc.workflow-manager.action.job.days_of_week=* -mosip.regproc.workflow.action.job.server.port=8026 -mosip.regproc.workflow.action.job.eventbus.port=5754 -mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/workflowmanager - -mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single -mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 -mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 -mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service mosip.regproc.workflow.manager.eventbus.kafka.commit.type=single mosip.regproc.workflow.manager.eventbus.kafka.max.poll.records=100 @@ -935,7 +923,7 @@ mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 @@ -963,8 +951,6 @@ mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,RE mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT - - -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-reg-client mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face \ No newline at end of file diff --git a/resident-default.properties b/resident-default.properties index e1f1fd58551..fc71e26dc7d 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -3,8 +3,9 @@ # helm chart: # mosip.mosip.resident.client.secret # mosip.mosip.regproc.client.secret -# keycloak.internal.url. +# keycloak.external.host +#--------------ID and Version -------------- auth.internal.id=mosip.identity.auth.internal auth.internal.version=1.0 mosip.registration.processor.print.id=mosip.registration.print @@ -124,4 +125,8 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ + +mosip.service-context=/resident/v1 +mosip.service.end-points=/**/* +mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT \ No newline at end of file diff --git a/syncdata-default.properties b/syncdata-default.properties index d78dd38e673..96c5411a4a5 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.internal.url +# keycloak.external.host # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) # mosip.mosip.ida.client.secret @@ -207,12 +207,12 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.internal.url} +mosip.iam.base-url=${keycloak.external.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.internal.url}//auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.internal.url}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.internal.url}/admin/ +mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.external.host}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.external.host}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -221,7 +221,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -229,14 +229,14 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.internal.url}/auth +keycloak.auth-server-url=${keycloak.external.host}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 4225533c1b2defde85d9d4f323017993d399292b Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 19:46:46 +0530 Subject: [PATCH 0620/1358] updated keycloak urls --- admin-default.properties | 18 ++++++++++-------- application-default.properties | 9 ++++++--- data-share-default.properties | 3 +++ kernel-default.properties | 5 ++++- packet-manager-default.properties | 4 ++-- partner-management-default.properties | 9 ++++++--- pre-registration-default.properties | 5 +++-- registration-processor-default.properties | 7 +++++-- resident-default.properties | 5 ++++- 9 files changed, 43 insertions(+), 22 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index f1d0e540998..76d54f80a3e 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -1,9 +1,11 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# db.dbuser.password -# keycloak.internal.url +# db.dbuser.password # keycloak.internal.url +# keycloak.internal.host +# keycloak.external.host +# keycloak.external.url # mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.mosip.regproc.client.secret @@ -180,8 +182,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.external.hostl}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -201,9 +203,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client @@ -216,7 +218,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +261,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt diff --git a/application-default.properties b/application-default.properties index bb25226831a..91f267c2e25 100644 --- a/application-default.properties +++ b/application-default.properties @@ -2,8 +2,11 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # override below properties for v2 deployment -# keycloak.internal.url -# mosip.api.internal.host +# keycloak.external.host +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url +# mosip.api.internal.host aplication.configuration.level.version=LTS @@ -188,7 +191,7 @@ mosip.kernel.uin.not-start-with=0,1 mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter -auth.server.validate.url=${mosip.kernel.auth..url}/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip diff --git a/data-share-default.properties b/data-share-default.properties index 159eb260e92..ef468b9602a 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -1,6 +1,9 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: +# keycloak.external.host +# keycloak.external.url +# keycloak.internal.host # keycloak.internal.url # mosip.mosip.datsha.client.secret # s3.accesskey diff --git a/kernel-default.properties b/kernel-default.properties index 5b18abb8f79..8f99e027864 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -2,6 +2,9 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password +# keycloak.external.host +# keycloak.external.url +# keycloak.internal.host # keycloak.internal.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) @@ -208,7 +211,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.external.host} +mosip.iam.base.url=${keycloak.internal.host} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 00580d84e45..57c5cfd4ed0 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -32,5 +32,5 @@ object.store.s3.readlimit=10000000 # IAM adapter mosip.iam.adapter.appid=regproc mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret=abc123 -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.clientsecret={mosip.mosip.regproc.client.secret} +mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip diff --git a/partner-management-default.properties b/partner-management-default.properties index 5f53a674104..10f7e840f83 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -4,6 +4,9 @@ ## db.dbuser.password ## mosip.mosip.partner.client.secret ## mosip.mosip.pms.client.secret +## keycloak.external.host +## keycloak.external.url +## keycloak.internal.host ## keycloak.internal.url ## keycloak.admin.password ## mosip.api.public.url @@ -135,13 +138,13 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.external.host}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.external.host}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.internal.host}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.internal.host}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 5f7ab74934b..a62ef89fa95 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -3,9 +3,11 @@ # helm chart: # db.dbuser.password # preregistration.mosip.prereg.client.secret -# keycloak.host # prereg.captcha.site.key # prereg.captcha.secret.key +# keycloak.external.host +# keycloak.external.url +# keycloak.internal.host # keycloak.internal.url # s3.accesskey # s3.region @@ -306,7 +308,6 @@ mosip.kernel.idobjectvalidator.masterdata.documentcategories.rest.uri=${masterda mosip.kernel.idobjectvalidator.masterdata.documenttypes.rest.uri=${masterdata.resource.url}/documenttypes/{documentcategorycode}/{langcode} mosip.kernel.idobjectvalidator.masterdata.locations.rest.uri=${masterdata.resource.url}/locations/{langcode} mosip.kernel.idobjectvalidator.masterdata.locationhierarchy.rest.uri=${masterdata.resource.url}/locations/locationhierarchy/{hierarchyname} -mosip.kernel.idobjectvalidator.masterdata.documentcategories.lang.rest.uri=${masterdata.resource.url}/documentcategories/{langcode} ## Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5aa6107f9d0..f84deb1aa98 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -4,6 +4,9 @@ # db.dbuser.password # mosip.mosip.regproc.client.secret # keycloak.external.host +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url # activemq.host # activemq.core.port # s3.accesskey @@ -80,7 +83,7 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.host}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -923,7 +926,7 @@ mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 diff --git a/resident-default.properties b/resident-default.properties index fc71e26dc7d..e34e7b2f22c 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -4,6 +4,9 @@ # mosip.mosip.resident.client.secret # mosip.mosip.regproc.client.secret # keycloak.external.host +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url #--------------ID and Version -------------- auth.internal.id=mosip.identity.auth.internal @@ -125,7 +128,7 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.external.host}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.host}/auth/realms/ mosip.service-context=/resident/v1 mosip.service.end-points=/**/* From faaad8b78fb0b85e3376559a81beaa892058402c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 19:59:43 +0530 Subject: [PATCH 0621/1358] updated keycloak urls WIP --- partner-management-default.properties | 2 +- print-default.properties | 9 ++++++--- registration-default.properties | 2 +- syncdata-default.properties | 17 ++++++++++------- 4 files changed, 18 insertions(+), 12 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 10f7e840f83..614df177e44 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -158,7 +158,7 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 diff --git a/print-default.properties b/print-default.properties index 378030b9557..3d4cc1a59cc 100644 --- a/print-default.properties +++ b/print-default.properties @@ -2,7 +2,10 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # mosip.mosip.regproc.client.secret -# keycloak.external.host +## keycloak.external.host +## keycloak.external.url +## keycloak.internal.host +## keycloak.internal.url # print.websub.hub.secret ## Websub @@ -27,7 +30,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.external.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.host}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -110,7 +113,7 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=${mosip.mpartner.default.print.secret} mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes diff --git a/registration-default.properties b/registration-default.properties index 9f9ab8868c3..67154c789d8 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -403,7 +403,7 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR': # it is comma separated list of field ids mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferredLang - +## Roles mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT diff --git a/syncdata-default.properties b/syncdata-default.properties index 96c5411a4a5..c5f5e9a77c5 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -3,6 +3,9 @@ # helm chart: # db.dbuser.password # keycloak.external.host +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url # keycloak.admin.password # mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) # mosip.mosip.ida.client.secret @@ -207,12 +210,12 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.external.host} +mosip.iam.base-url=${keycloak.internal.host} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.external.host}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.external.host}/admin/ +mosip.iam.open-id-url =${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.internal.host}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.internal.host}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -221,7 +224,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.external.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -235,8 +238,8 @@ keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 2c7db1eae81273e753a9edd97f71a23fbf41784e Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 20:12:47 +0530 Subject: [PATCH 0622/1358] updated keycloak urls WIP --- kernel-default.properties | 2 +- packet-manager-default.properties | 2 +- partner-management-default.properties | 8 ++++---- print-default.properties | 4 ++-- registration-processor-default.properties | 4 ++-- resident-default.properties | 2 +- syncdata-default.properties | 16 ++++++++-------- 7 files changed, 19 insertions(+), 19 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 8f99e027864..1605e4aeb58 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -211,7 +211,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.internal.host} +mosip.iam.base.url=${keycloak.internal.url} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 57c5cfd4ed0..5baa31a7d4a 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -33,4 +33,4 @@ object.store.s3.readlimit=10000000 mosip.iam.adapter.appid=regproc mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret={mosip.mosip.regproc.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip diff --git a/partner-management-default.properties b/partner-management-default.properties index 614df177e44..fa0f5bd7e86 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -138,13 +138,13 @@ pms.certs.datashare.subscriberId=mpartner-default-cert # These configurations are used to create user in keycloak and map to a role. # Pre-Condition: All partner types should be created as roles in keycloak. -mosip.iam.realm.operations.base-url = ${keycloak.internal.host}/auth/admin/realms/{realmId} -mosip.iam.admin-url =${keycloak.internal.host}/auth/admin/ +mosip.iam.realm.operations.base-url = ${keycloak.internal.url}/auth/admin/realms/{realmId} +mosip.iam.admin-url =${keycloak.internal.url}/auth/admin/ mosip.iam.admin-realm-id =admin mosip.iam.roles-extn-url =realms/mosip/roles mosip.iam.users-extn-url = realms/mosip/users mosip.iam.role-user-mapping-url =/{userId}/role-mappings/realm -mosip.iam.open-id-url =${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.open-id-url =${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/ mosip.iam.master.realm-id=master mosip.iam.default.realm-id=mosip mosip.keycloak.admin.client.id=admin-cli @@ -158,7 +158,7 @@ auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token -mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 diff --git a/print-default.properties b/print-default.properties index 3d4cc1a59cc..9d8849b55a5 100644 --- a/print-default.properties +++ b/print-default.properties @@ -30,7 +30,7 @@ token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGV token.request.version=1.0 token.request.clientId=mosip-regproc-client token.request.secretKey= ${mosip.mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.internal.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -113,7 +113,7 @@ mosip.print.prependThumbprint=true mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=${mosip.mpartner.default.print.secret} mosip.iam.adapter.appid=print -mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey # in minutes diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f84deb1aa98..cc824280516 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -83,7 +83,7 @@ token.request.clientId=mosip-regproc-client token.request.secretKey=${mosip.mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.internal.host}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -926,7 +926,7 @@ mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 diff --git a/resident-default.properties b/resident-default.properties index e34e7b2f22c..222063aa167 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -128,7 +128,7 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.host}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.service-context=/resident/v1 mosip.service.end-points=/**/* diff --git a/syncdata-default.properties b/syncdata-default.properties index c5f5e9a77c5..f4f18355307 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -210,12 +210,12 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base-url=${keycloak.internal.host} +mosip.iam.base-url=${keycloak.internal.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url =${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${keycloak.internal.host}/admin/realms/{realmId} -mosip.iam.admin-url=${keycloak.internal.host}/admin/ +mosip.iam.open-id-url =${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${keycloak.internal.url}/admin/realms/{realmId} +mosip.iam.admin-url=${keycloak.internal.url}/admin/ mosip.iam.roles-extn-url=realms/mosip/roles mosip.iam.users-extn-url=realms/mosip/users mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm @@ -224,7 +224,7 @@ mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users mosip.iam.adapter.clientid=mosip-syncdata-client mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient -mosip.iam.adapter.issuerURL=${keycloak.internal.host}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey mosip.iam.adapter.validate-expiry-check-rate=15 mosip.iam.adapter.renewal-before-expiry-interval=15 @@ -232,14 +232,14 @@ mosip.iam.adapter.self-token-renewal-enable=true keycloak.realm=registration-client keycloak.resource=account -keycloak.auth-server-url=${keycloak.external.host}/auth +keycloak.auth-server-url=${keycloak.internal.url}/auth keycloak.ssl-required=none keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.internal.host}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls From 82c9e0f620d8f5bf4513abdd9e3183cb7621b82e Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 20:15:00 +0530 Subject: [PATCH 0623/1358] updated keycloak urls WIP --- partner-management-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index fa0f5bd7e86..4e8e7949355 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -201,10 +201,10 @@ mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.external.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy From 93381112d1bd7cef53580ebea9bd170dec9fb937 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 20:35:30 +0530 Subject: [PATCH 0624/1358] removed aws s3 properties from application-default.properties as it is not required --- application-default.properties | 7 ------- 1 file changed, 7 deletions(-) diff --git a/application-default.properties b/application-default.properties index 91f267c2e25..0a92cd3ac7f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -352,13 +352,6 @@ object.store.base.location=/home/mosip hazelcast.config=classpath:hazelcast_default.xml -## S3 object store adapter. -object.store.s3.accesskey=${s3.accesskey} -object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=${mosip.minio.url} -object.store.s3.region=${s3.region} -object.store.s3.readlimit=10000000 ## Swift object.store.swift.username=test From 188b126e5fbbe30a09e8955698b5aaba49ddc7b8 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 31 Jan 2022 20:39:42 +0530 Subject: [PATCH 0625/1358] added roles to mosip.role.keymanager.postpdfsign --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 1605e4aeb58..b3a37f157e8 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -724,7 +724,7 @@ mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_A mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_REQUEST mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT From 77b9fbd59a785ea4b88e217e0ffb61bf0205ba70 Mon Sep 17 00:00:00 2001 From: JyotiPrakashNayak <jyoti.nayak@mindtree.com> Date: Wed, 2 Feb 2022 12:56:12 +0530 Subject: [PATCH 0626/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d905772c47b..25eeee9af56 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -252,7 +252,7 @@ registration.processor.notification.emails= registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 registration.processor.notification_service_subscriber_callback_url=${mosip.regproc.notification.url}/registrationprocessor/v1/notification/callback/notify registration.processor.notification_service_pausedforadditonalinfo_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 -mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_workflow_paused_for_additional_info_event +mosip.regproc.workflow.pausedforadditionalinfo.topic=REGISTRATION_PROCESSOR_WORKFLOW_PAUSED_FOR_ADDITIONAL_INFO_EVENT registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosip.regproc.notification.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo # Email template code for PauseForAdditionalInfo @@ -355,7 +355,7 @@ registration.processor.manual.adjudication.queue.url=${registration.processor.qu registration.processor.manual.adjudication.queue.typeOfQueue=${registration.processor.queue.typeOfQueue} #WorkflowAction service websub topic name -mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event +mosip.regproc.workflow.complete.topic=REGISTRATION_PROCESSOR_WORKFLOW_COMPLETED_EVENT mosip.regproc.workflow.action.job.server.port=8026 mosip.regproc.workflow.action.job.eventbus.port=5754 mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/workflowmanager @@ -363,7 +363,6 @@ mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service -mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event ## Workflow manager mosip.regproc.workflow-manager.action.api-id=mosip.registration.processor.workflow.action @@ -967,4 +966,4 @@ mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR, auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face \ No newline at end of file +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face From 104d9024baea4b065b052d0f8815eb576ed8cea1 Mon Sep 17 00:00:00 2001 From: JyotiPrakashNayak <jyoti.nayak@mindtree.com> Date: Wed, 2 Feb 2022 13:08:52 +0530 Subject: [PATCH 0627/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index cc824280516..dc699c7517a 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -254,7 +254,7 @@ registration.processor.notification.emails= registration.processor.notification_service_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 registration.processor.notification_service_subscriber_callback_url=${mosip.regproc.notification.url}/registrationprocessor/v1/notification/callback/notify registration.processor.notification_service_pausedforadditonalinfo_subscriber_secret={cipher}1b1c1a60abf045c34fff60457976178e5c70c949634ad568f5a5510007bfa438 -mosip.regproc.workflow.pausedforadditionalinfo.topic=registration_processor_workflow_paused_for_additional_info_event +mosip.regproc.workflow.pausedforadditionalinfo.topic=REGISTRATION_PROCESSOR_WORKFLOW_PAUSED_FOR_ADDITIONAL_INFO_EVENT registration.processor.notification_service_pausedforadditonalinfo_subscriber_callback_url=${mosip.regproc.notification.url}/registrationprocessor/v1/notification/callback/notifyPausedForAdditionalInfo # Email template code for PauseForAdditionalInfo @@ -355,14 +355,13 @@ registration.processor.manual.adjudication.queue.url=${registration.processor.qu registration.processor.manual.adjudication.queue.typeOfQueue=${registration.processor.queue.typeOfQueue} #WorkflowAction service websub topic name -mosip.regproc.workflow.complete.topic=registration_processor_workflow_completed_event +mosip.regproc.workflow.complete.topic=REGISTRATION_PROCESSOR_WORKFLOW_COMPLETED_EVENT mosip.regproc.workflow.action.job.server.port=8026 mosip.regproc.workflow.action.job.eventbus.port=5754 mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/workflowmanager mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 -mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service ## Workflow manager mosip.regproc.workflow-manager.action.api-id=mosip.registration.processor.workflow.action @@ -956,4 +955,4 @@ mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RE mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face \ No newline at end of file +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face From 0ff4fc18f25f6e75f9201b94f9025500bbd8babb Mon Sep 17 00:00:00 2001 From: JyotiPrakashNayak <jyoti.nayak@mindtree.com> Date: Wed, 2 Feb 2022 15:46:22 +0530 Subject: [PATCH 0628/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index dc699c7517a..c76a6451cc5 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -362,6 +362,7 @@ mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/ mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 +mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service ## Workflow manager mosip.regproc.workflow-manager.action.api-id=mosip.registration.processor.workflow.action From 036b285c19f0dfd32a9c0686c480fa661e8a1cf6 Mon Sep 17 00:00:00 2001 From: JyotiPrakashNayak <jyoti.nayak@mindtree.com> Date: Wed, 2 Feb 2022 20:12:17 +0530 Subject: [PATCH 0629/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c76a6451cc5..5425527a324 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -934,7 +934,7 @@ mosip.iam.adapter.validate-expiry-check-rate=30 mosip.iam.adapter.renewal-before-expiry-interval=30 #this should be false if you dont use this restTemplate true if you do mosip.iam.adapter.self-token-renewal-enable=true -mosip.auth.filter_disable=true +mosip.auth.filter_disable=false ## Object store object.store.s3.accesskey=${s3.accesskey} From fa574f4a52a3c542f4e3a4b6d0780376ea05dafd Mon Sep 17 00:00:00 2001 From: JyotiPrakashNayak <jyoti.nayak@mindtree.com> Date: Wed, 2 Feb 2022 20:15:30 +0530 Subject: [PATCH 0630/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 25eeee9af56..a3c42330154 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -942,7 +942,7 @@ mosip.iam.adapter.validate-expiry-check-rate=30 mosip.iam.adapter.renewal-before-expiry-interval=30 #this should be false if you dont use this restTemplate true if you do mosip.iam.adapter.self-token-renewal-enable=true -mosip.auth.filter_disable=true +mosip.auth.filter_disable=false ## Object store object.store.s3.accesskey=${s3.accesskey} From ac7e9e36e12eea1f0436c49e696092d3d074161f Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 4 Feb 2022 11:27:38 +0530 Subject: [PATCH 0631/1358] Updated authmanager base url --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index b3a37f157e8..be676b14c3b 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -258,7 +258,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel-auth-service.url}/v1/authmanager +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager master.search.maximum.rows=50 @@ -734,4 +734,4 @@ mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDU mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE -mosip.kernel.keymanager.jwtsign.validate.json=false \ No newline at end of file +mosip.kernel.keymanager.jwtsign.validate.json=false From 15b1cd538be2ca8889ab57a905884c90816f545f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 8 Feb 2022 06:51:51 +0530 Subject: [PATCH 0632/1358] [MOSIP-18494] Client names updated. --- admin-default.properties | 17 +++++++-------- application-default.properties | 4 ++-- credential-request-default.properties | 4 ++-- credential-service-default.properties | 8 +++----- data-share-default.properties | 4 ++-- hotlist-default.properties | 4 ++-- id-authentication-default.properties | 1 - id-repository-default.properties | 10 ++++----- kernel-default.properties | 25 +++++++++++------------ mock-abis-default.properties | 4 ++-- partner-management-default.properties | 13 +++++------- pre-registration-default.properties | 2 +- print-default.properties | 8 ++------ registration-processor-default.properties | 14 ++++++++----- resident-default.properties | 16 +++++++-------- syncdata-default.properties | 24 +++++++++++----------- 16 files changed, 75 insertions(+), 83 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 76d54f80a3e..b2f9c0e3d0f 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -3,11 +3,9 @@ # helm chart: # db.dbuser.password # keycloak.internal.url -# keycloak.internal.host -# keycloak.external.host # keycloak.external.url -# mosip.mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) -# mosip.mosip.regproc.client.secret +# mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.regproc.client.secret mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST @@ -178,7 +176,7 @@ mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/audi mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client -mosip.admin-services.open-id.clientsecret=${mosip.mosip.admin.client.secret} +mosip.admin-services.open-id.clientsecret=${mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code @@ -197,7 +195,7 @@ mosip.security.secure-cookie=false # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-admin-client -mosip.iam.module.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.module.clientsecret=${mosip.admin.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls @@ -209,7 +207,7 @@ mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/ope regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client -regproc.token.request.secretKey=${mosip.mosip.regproc.client.secret} +regproc.token.request.secretKey=${mosip.regproc.client.secret} regproc.token.request.id=io.mosip.registration.processor regproc.token.request.version=1.0 KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -217,7 +215,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli # IAM adapter mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes @@ -274,5 +272,8 @@ mosip.admin.packetupload.packetsync.phone=phone mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\\W|\\w]{1,100}$) +<<<<<<< Updated upstream # Mapping identity json to map with the applicant id json +======= +>>>>>>> Stashed changes registration.processor.identityjson=identity-mapping.json diff --git a/application-default.properties b/application-default.properties index 0a92cd3ac7f..62a3a6bbf58 100644 --- a/application-default.properties +++ b/application-default.properties @@ -199,8 +199,8 @@ mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true -mosip.kernel.auth.appid-realm-map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} -mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} +mosip.kernel.auth.appid-realm-map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} +mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} ## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING diff --git a/credential-request-default.properties b/credential-request-default.properties index cc34d671297..886ce20acb4 100644 --- a/credential-request-default.properties +++ b/credential-request-default.properties @@ -1,6 +1,6 @@ #IDRepo credential request generator authentication detalis mosip.idrepo.credential-req-generator.auth.client-id=mosip-crereq-client -mosip.idrepo.credential-req-generator.auth.secret-key=${mosip.mosip.crereq.client.secret} +mosip.idrepo.credential-req-generator.auth.secret-key=${mosip.crereq.client.secret} mosip.idrepo.credential-req-generator.auth.app-id=crereq #------------------------- Kernel Auth Adapter self token generator properties ----------------------------# @@ -8,4 +8,4 @@ mosip.iam.adapter.clientid.credential-request=${mosip.idrepo.credential-req-gene mosip.iam.adapter.clientsecret.credential-request=${mosip.idrepo.credential-req-generator.auth.secret-key} mosip.iam.adapter.appid.credential-request=${mosip.idrepo.credential-req-generator.auth.app-id} -mosip.auth.filter_disable=false \ No newline at end of file +mosip.auth.filter_disable=false diff --git a/credential-service-default.properties b/credential-service-default.properties index 4d904547cf2..0c19724fe81 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -1,17 +1,15 @@ -#IDRepo credential service authentication detalis +# IDRepo credential service authentication details mosip.idrepo.credential.auth.client-id=mosip-creser-client -mosip.idrepo.credential.auth.secret-key=${mosip.mosip.creser.client.secret} +mosip.idrepo.credential.auth.secret-key=${mosip.creser.client.secret} mosip.idrepo.credential.auth.app-id=creser -#------------------------- Kernel Auth Adapter self token generator properties ----------------------------# +## Kernel Auth Adapter self token generator properties mosip.iam.adapter.clientid.credential-service=${mosip.idrepo.credential.auth.client-id} mosip.iam.adapter.clientsecret.credential-service=${mosip.idrepo.credential.auth.secret-key} mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id} - mosip.auth.filter_disable=false - mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.api.internal.url}/mosipvc/mosip-context.json" : "mosip-context.json"} mosip.credential.service.vercred.context.uri=vccontext.jsonld mosip.credential.service.vercred.id.url=${mosip.api.internal.url}/credentials/ diff --git a/data-share-default.properties b/data-share-default.properties index ef468b9602a..ed6abbd9c20 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -5,7 +5,7 @@ # keycloak.external.url # keycloak.internal.host # keycloak.internal.url -# mosip.mosip.datsha.client.secret +# mosip.datsha.client.secret # s3.accesskey # s3.region # s3.secretkey @@ -25,7 +25,7 @@ mosip.data.share.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' mosip.data.share.urlshortner=false data.share.token.request.appid=datsha data.share.token.request.clientId=mosip-datsha-client -data.share.token.request.secretKey=${mosip.mosip.datsha.client.secret} +data.share.token.request.secretKey=${mosip.datsha.client.secret} data.share.token.request.password= data.share.token.request.username= data.share.token.request.version=1.0 diff --git a/hotlist-default.properties b/hotlist-default.properties index 36f6a2749f9..c0ca979c816 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# mosip.mosip.hotlist.client.secret +# mosip.hotlist.client.secret spring.application.name=HOTLIST ## DB @@ -26,7 +26,7 @@ mosip.hotlist.datasource.dialect=${mosip.hotlist.db.dialect} #Admin hotlist service authentication details mosip.admin.hotlist.auth.client-id=mosip-hotlist-client -mosip.admin.hotlist.auth.secret-key=${mosip.mosip.hotlist.client.secret} +mosip.admin.hotlist.auth.secret-key=${mosip.hotlist.client.secret} mosip.admin.hotlist.auth.app-id=hotlist # Websub diff --git a/id-authentication-default.properties b/id-authentication-default.properties index fe2c3fc31fb..e1ccf4fdb0a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -2,7 +2,6 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# mosip.mosip.ida.client.secret # ida.websub.authtype.callback.secret # ida.websub.credential.issue.callback.secret # ida.websub.partner.service.callback.secret diff --git a/id-repository-default.properties b/id-repository-default.properties index d0228bcbe1d..ce56fb91df5 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -2,9 +2,9 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# mosip.mosip.crereq.client.secret -# mosip.mosip.creser.client.secret -# mosip.mosip.regproc.client.secret +# mosip.crereq.client.secret +# mosip.creser.client.secret +# mosip.regproc.client.secret # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # idrepo.websub.vid.credential.update.secret @@ -31,7 +31,7 @@ mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details mosip.idrepo.auth.client-id=mosip-idrepo-client -mosip.idrepo.auth.secret-key=${mosip.mosip.idrepo.client.secret} +mosip.idrepo.auth.secret-key=${mosip.idrepo.client.secret} mosip.idrepo.auth.app-id=idrepo # For auditing @@ -298,7 +298,7 @@ WEBSUBSECRET=test # Credential service credential.service.token.request.appid=${mosip.idrepo.credential.auth.app-id} credential.service.token.request.clientId=${mosip.idrepo.credential.auth.client-id} -credential.service.token.request.secretKey=${mosip.mosip.creser.client.secret} +credential.service.token.request.secretKey=${mosip.creser.client.secret} credential.service.token.request.id=io.mosip.credentialstore # Credential formatter properties mosip.credential.vc.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss'Z' diff --git a/kernel-default.properties b/kernel-default.properties index be676b14c3b..821c5e00895 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -7,11 +7,11 @@ # keycloak.internal.host # keycloak.internal.url # keycloak.admin.password -# mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) -# mosip.mosip.ida.client.secret -# mosip.mosip.admin.client.secret -# mosip.mosip.reg.client.secret -# preregistration.mosip.prereg.client.secret +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret # softhsm.kernel.pin # email.smtp.host # email.smtp.username @@ -94,11 +94,11 @@ idrepo.api.getuindetails=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key=${mosip.mosip.auth.client.secret} +mosip.kernel.auth.secret.key=${mosip.auth.client.secret} mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} +mosip.kernel.ida.secret.key=${mosip.ida.client.secret} ## VID generator service mosip.kernel.vid.min-unused-threshold=100000 @@ -236,7 +236,7 @@ mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip.mosip.admin.client.secret} +mosip.admin.clientsecret=${mosip.admin.client.secret} mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ mosip.admin_realm_id=mosip mosip.iam.master.realm-id=master @@ -260,7 +260,6 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager - master.search.maximum.rows=50 mosip.level=2 mosip.kernel.masterdata.audit-url= ${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -272,9 +271,9 @@ mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/sign masterdata.registerdevice.timestamp.validate=+10 ## Prereg -mosip.kernel.prereg.realm-id=preregistration +mosip.kernel.prereg.realm-id=mosip mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} +mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron @@ -354,7 +353,7 @@ mosip.syncdata.tpm.required=false mosip.kernel.registrationclient.app.id=registrationclient mosip.kernel.registrationclient.client.id=mosip-reg-client # env variable -mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} +mosip.kernel.registrationclient.secret.key=${mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd @@ -430,7 +429,7 @@ auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosi mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.mosip.admin.client.secret} +mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} #AdminMaster endpoints to access without authentication mosip.service-context=/v1/masterdata diff --git a/mock-abis-default.properties b/mock-abis-default.properties index e2463c3688e..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -1,7 +1,7 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# mosip.mosip.regproc.client.secret +# mosip.regproc.client.secret spring.cloud.config.name=mock-abis spring.application.name=mock-abis-service management.endpoint.health.show-details=always @@ -11,5 +11,5 @@ abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string -secret_url.secretKey=${mosip.mosip.regproc.client.secret} +secret_url.secretKey=${mosip.regproc.client.secret} secret_url.appId=regproc diff --git a/partner-management-default.properties b/partner-management-default.properties index 4e8e7949355..12e3d11c1b2 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -2,11 +2,8 @@ ## DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server ## helm chart: ## db.dbuser.password -## mosip.mosip.partner.client.secret -## mosip.mosip.pms.client.secret -## keycloak.external.host -## keycloak.external.url -## keycloak.internal.host +## mosip.partner.client.secret +## mosip.pms.client.secret ## keycloak.internal.url ## keycloak.admin.password ## mosip.api.public.url @@ -114,7 +111,7 @@ mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services mosip.pmp.auth.clientId=mosip-partner-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.mosip.partner.client.secret} +mosip.pmp.auth.secretKey= ${mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -125,7 +122,7 @@ pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel.keymanager.url}/ #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} -mosip.iam.adapter.clientsecret=${mosip.mosip.partner.client.secret} +mosip.iam.adapter.clientsecret=${mosip.partner.client.secret} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub @@ -197,7 +194,7 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret=${mosip.mosip.partner.client.secret} +mosip.iam.module.clientsecret=${mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code diff --git a/pre-registration-default.properties b/pre-registration-default.properties index a62ef89fa95..af8c1f53ce2 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -425,7 +425,7 @@ mosip.iam.adapter.appid=prereg # To generate token from keycloak in PreReg Data Sync Service. Used by kernel auth adapter. mosip.iam.adapter.clientid.pre-registration-datasync-service=mosip-reg-client -mosip.iam.adapter.clientsecret.pre-registration-datasync-service=${mosip.mosip.reg.client.secret} +mosip.iam.adapter.clientsecret.pre-registration-datasync-service=${mosip.reg.client.secret} mosip.iam.adapter.appid.pre-registration-datasync-service=registrationclient #the custom auth provider component names list diff --git a/print-default.properties b/print-default.properties index 9d8849b55a5..f0b4d8e7d6b 100644 --- a/print-default.properties +++ b/print-default.properties @@ -1,11 +1,7 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# mosip.mosip.regproc.client.secret -## keycloak.external.host -## keycloak.external.url -## keycloak.internal.host -## keycloak.internal.url +# mosip.regproc.client.secret # print.websub.hub.secret ## Websub @@ -29,7 +25,7 @@ token.request.username=registrationprocessor token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGVnY3M1DIeKGFAeBNfi6jH5qgj1KCUmFONLwSmfcrPx9m6MYXXQMYwyAeq13Msy1fcG1AtZQASKeLbuMCaRwinwdt7C/WYzvVVv47NojD+VmHHVTY3qBXJ4dwZ0/BqmUBPXyYrJPKTcdouxT76bgm5+fXXNcT7lciXgD1aCnWKziL5nDa6Y9dhc+ZPyM0d+I0JfS+emsByt7tWgcZukQkOEx8JWfcCR4eVpERYVa/ps/EAuQRXmxIvnr54GSCc/KKpwnYnjLtKIx/75I6pezBdKU/BBJG1syjQp9VQC9adSI5fdsn3ijkxJjC9TSIFJKDlTHqNCnJaxQXcSBWL4Y= token.request.version=1.0 token.request.clientId=mosip-regproc-client -token.request.secretKey= ${mosip.mosip.regproc.client.secret} +token.request.secretKey= ${mosip.regproc.client.secret} token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # Audit service diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5425527a324..e4340a2a957 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -2,10 +2,8 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# mosip.mosip.regproc.client.secret -# keycloak.external.host -# keycloak.external.url # keycloak.internal.host +# mosip.regproc.client.secret # keycloak.internal.url # activemq.host # activemq.core.port @@ -80,7 +78,7 @@ token.request.id=io.mosip.registration.processor token.request.appid=regproc token.request.version=1.0 token.request.clientId=mosip-regproc-client -token.request.secretKey=${mosip.mosip.regproc.client.secret} +token.request.secretKey=${mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip @@ -924,7 +922,7 @@ mosip.registration.processor.registration.external.status.version=1.0 mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} +mosip.iam.adapter.clientsecret=${mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -956,4 +954,10 @@ mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RE mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-reg-client +<<<<<<< Updated upstream +======= + +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client + +>>>>>>> Stashed changes mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face diff --git a/resident-default.properties b/resident-default.properties index 222063aa167..07331c979e7 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -1,12 +1,10 @@ # Follow properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: -# mosip.mosip.resident.client.secret -# mosip.mosip.regproc.client.secret -# keycloak.external.host -# keycloak.external.url -# keycloak.internal.host # keycloak.internal.url +# mosip.resident.client.secret +# mosip.regproc.client.secret +# keycloak.internal.url. #--------------ID and Version -------------- auth.internal.id=mosip.identity.auth.internal @@ -39,7 +37,7 @@ token.request.id=io.mosip.resident resident.appid=resident token.request.version=1.0 resident.clientId=mosip-resident-client -resident.secretKey=${mosip.mosip.resident.client.secret} +resident.secretKey=${mosip.resident.client.secret} # Below is defined in application properties token.request.issuerUrl=${mosip.keycloak.issuerUrl} @@ -110,7 +108,7 @@ mosip.registration.processor.registration.sync.id=mosip.registration.sync id.repo.vidType=Perpetual token.request.appid=resident token.request.clientId=mosip-resident-client -token.request.secretKey=${mosip.mosip.resident.client.secret} +token.request.secretKey=${mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter #TODO remove reg-client service accunt in production env @@ -127,9 +125,9 @@ resident.update-uin.machine-zone-code = MOR #Auth Adapter rest template authentication configs mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client -mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} +mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.service-context=/resident/v1 mosip.service.end-points=/**/* -mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT \ No newline at end of file +mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT diff --git a/syncdata-default.properties b/syncdata-default.properties index f4f18355307..dcf79ec8c0d 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -7,12 +7,12 @@ # keycloak.internal.host # keycloak.internal.url # keycloak.admin.password -# mosip.mosip.auth.client.secret (convention: <realm>.<keycloak client name>) -# mosip.mosip.ida.client.secret -# mosip.mosip.admin.client.secret -# mosip.mosip.reg.client.secret -# preregistration.mosip.prereg.client.secret -# mosip.mosip.syncdata.client.secret +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret +# mosip.syncdata.client.secret # mosip.api.internal.host # softhsm.kernel.pin @@ -89,11 +89,11 @@ idrepo.api.getuindetails=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} mosip.kernel.auth.app.id=auth mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key=${mosip.mosip.auth.client.secret} +mosip.kernel.auth.secret.key=${mosip.auth.client.secret} mosip.kernel.ida.app.id=ida mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key=${mosip.mosip.ida.client.secret} +mosip.kernel.ida.secret.key=${mosip.ida.client.secret} ## Token id salts mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} @@ -222,7 +222,7 @@ mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users #Self token resttemplate related to configuration mosip.iam.adapter.clientid=mosip-syncdata-client -mosip.iam.adapter.clientsecret=${mosip.mosip.syncdata.client.secret} +mosip.iam.adapter.clientsecret=${mosip.syncdata.client.secret} mosip.iam.adapter.appid=registrationclient mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey @@ -278,9 +278,9 @@ mosip.kernel.keymanager-service-sign-url=${mosip.kernel.keymanager.url}/v1/keyma masterdata.registerdevice.timestamp.validate=+10 ## Prereg -mosip.kernel.prereg.realm-id=preregistration +mosip.kernel.prereg.realm-id=mosip mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key=${preregistration.mosip.prereg.client.secret} +mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron @@ -367,7 +367,7 @@ mosip.syncdata.tpm.required=false mosip.kernel.registrationclient.app.id=registrationclient mosip.kernel.registrationclient.client.id=mosip-reg-client # env variable -mosip.kernel.registrationclient.secret.key=${mosip.mosip.reg.client.secret} +mosip.kernel.registrationclient.secret.key=${mosip.reg.client.secret} # API to fetch auth token and refresh token used by syncdata-service mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd From 1dece05ec8121449515296623127c1c12b9c0977 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Tue, 8 Feb 2022 20:12:30 +0530 Subject: [PATCH 0633/1358] [ MOSIP-19884 ] Updated prereg client secrets --- pre-registration-default.properties | 11 +++++------ 1 file changed, 5 insertions(+), 6 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index af8c1f53ce2..b84352e529a 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -2,7 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# preregistration.mosip.prereg.client.secret +# mosip.prereg.client.secret # prereg.captcha.site.key # prereg.captcha.secret.key # keycloak.external.host @@ -151,7 +151,7 @@ mosip.preregistration.batchjob.service.expired.id=mosip.pre-registration.batchjo # Batch Job Service used to fetch token from key cloak mosip.batch.token.authmanager.appId=prereg mosip.batch.token.authmanager.userName=mosip-prereg-client -mosip.batch.token.authmanager.password=${preregistration.mosip.prereg.client.secret} +mosip.batch.token.authmanager.password=${mosip.prereg.client.secret} mosip.batch.token.authmanager.url=${kernel.auth.env}/${masterdata.service.version}/${kernel.auth.contextpath}/authenticate/clientidsecretkey mosip.batch.token.request.id= @@ -240,7 +240,7 @@ preregistration.crypto.PrependThumbprint=false ## KeyCloak ## Both below fields must match with what is there on Keycloak properties clientId=mosip-prereg-client -secretKey=${preregistration.mosip.prereg.client.secret} +secretKey=${mosip.prereg.client.secret} ## Used for Key Creating KeyCloak session userIdType=USERID @@ -418,9 +418,9 @@ preregistration.cookie.contextpath=/ # To generate token from keycloak. Use by kernel auth adapter. mosip.iam.adapter.clientid=mosip-prereg-client -mosip.iam.adapter.clientsecret=${preregistration.mosip.prereg.client.secret} +mosip.iam.adapter.clientsecret=${mosip.prereg.client.secret} -# preregistration.mosip.prereg.client.secret +# mosip.prereg.client.secret mosip.iam.adapter.appid=prereg # To generate token from keycloak in PreReg Data Sync Service. Used by kernel auth adapter. @@ -482,4 +482,3 @@ mosip.role.prereg.putbatchappointmentpreregistrationid=PRE_REGISTRATION_ADMIN,RE mosip.role.prereg.deleteappointment=INDIVIDUAL mosip.role.prereg.getappointmentpreregistrationidregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getappointmentregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN - From efee9067494359efc51187278068c014e184ecb0 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Wed, 9 Feb 2022 16:00:26 +0530 Subject: [PATCH 0634/1358] Update kernel-default.properties --- kernel-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 821c5e00895..c537225d0d9 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -13,12 +13,15 @@ # mosip.reg.client.secret # mosip.prereg.client.secret # softhsm.kernel.pin +# softhsm-security-pin # email.smtp.host # email.smtp.username # email.smtp.secret # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt +softhsm.kernel.pin=${softhsm.security.pin} + ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles From 109b1df54828ffa40e4037dbf9719c265b65ab9f Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Thu, 10 Feb 2022 10:09:11 +0530 Subject: [PATCH 0635/1358] updated config for mosip-file-server --- cred-v1.jsonld | 237 +++++++++++++++++++++++++++++++++++++++++++++ mosip-context.json | 24 +++++ odrl.jsonld | 200 ++++++++++++++++++++++++++++++++++++++ vccontext.jsonld | 9 ++ 4 files changed, 470 insertions(+) create mode 100644 cred-v1.jsonld create mode 100644 mosip-context.json create mode 100644 odrl.jsonld create mode 100644 vccontext.jsonld diff --git a/cred-v1.jsonld b/cred-v1.jsonld new file mode 100644 index 00000000000..26169278c43 --- /dev/null +++ b/cred-v1.jsonld @@ -0,0 +1,237 @@ +{ + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "VerifiableCredential": { + "@id": "https://www.w3.org/2018/credentials#VerifiableCredential", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "cred": "https://www.w3.org/2018/credentials#", + "sec": "https://w3id.org/security#", + "xsd": "http://www.w3.org/2001/XMLSchema#", + + "credentialSchema": { + "@id": "cred:credentialSchema", + "@type": "@id", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "cred": "https://www.w3.org/2018/credentials#", + + "JsonSchemaValidator2018": "cred:JsonSchemaValidator2018" + } + }, + "credentialStatus": {"@id": "cred:credentialStatus", "@type": "@id"}, + "credentialSubject": {"@id": "cred:credentialSubject", "@type": "@id"}, + "evidence": {"@id": "cred:evidence", "@type": "@id"}, + "expirationDate": {"@id": "cred:expirationDate", "@type": "xsd:dateTime"}, + "holder": {"@id": "cred:holder", "@type": "@id"}, + "issued": {"@id": "cred:issued", "@type": "xsd:dateTime"}, + "issuer": {"@id": "cred:issuer", "@type": "@id"}, + "issuanceDate": {"@id": "cred:issuanceDate", "@type": "xsd:dateTime"}, + "proof": {"@id": "sec:proof", "@type": "@id", "@container": "@graph"}, + "refreshService": { + "@id": "cred:refreshService", + "@type": "@id", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "cred": "https://www.w3.org/2018/credentials#", + + "ManualRefreshService2018": "cred:ManualRefreshService2018" + } + }, + "termsOfUse": {"@id": "cred:termsOfUse", "@type": "@id"}, + "validFrom": {"@id": "cred:validFrom", "@type": "xsd:dateTime"}, + "validUntil": {"@id": "cred:validUntil", "@type": "xsd:dateTime"} + } + }, + + "VerifiablePresentation": { + "@id": "https://www.w3.org/2018/credentials#VerifiablePresentation", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "cred": "https://www.w3.org/2018/credentials#", + "sec": "https://w3id.org/security#", + + "holder": {"@id": "cred:holder", "@type": "@id"}, + "proof": {"@id": "sec:proof", "@type": "@id", "@container": "@graph"}, + "verifiableCredential": {"@id": "cred:verifiableCredential", "@type": "@id", "@container": "@graph"} + } + }, + + "EcdsaSecp256k1Signature2019": { + "@id": "https://w3id.org/security#EcdsaSecp256k1Signature2019", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + "xsd": "http://www.w3.org/2001/XMLSchema#", + + "challenge": "sec:challenge", + "created": {"@id": "http://purl.org/dc/terms/created", "@type": "xsd:dateTime"}, + "domain": "sec:domain", + "expires": {"@id": "sec:expiration", "@type": "xsd:dateTime"}, + "jws": "sec:jws", + "nonce": "sec:nonce", + "proofPurpose": { + "@id": "sec:proofPurpose", + "@type": "@vocab", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + + "assertionMethod": {"@id": "sec:assertionMethod", "@type": "@id", "@container": "@set"}, + "authentication": {"@id": "sec:authenticationMethod", "@type": "@id", "@container": "@set"} + } + }, + "proofValue": "sec:proofValue", + "verificationMethod": {"@id": "sec:verificationMethod", "@type": "@id"} + } + }, + + "EcdsaSecp256r1Signature2019": { + "@id": "https://w3id.org/security#EcdsaSecp256r1Signature2019", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + "xsd": "http://www.w3.org/2001/XMLSchema#", + + "challenge": "sec:challenge", + "created": {"@id": "http://purl.org/dc/terms/created", "@type": "xsd:dateTime"}, + "domain": "sec:domain", + "expires": {"@id": "sec:expiration", "@type": "xsd:dateTime"}, + "jws": "sec:jws", + "nonce": "sec:nonce", + "proofPurpose": { + "@id": "sec:proofPurpose", + "@type": "@vocab", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + + "assertionMethod": {"@id": "sec:assertionMethod", "@type": "@id", "@container": "@set"}, + "authentication": {"@id": "sec:authenticationMethod", "@type": "@id", "@container": "@set"} + } + }, + "proofValue": "sec:proofValue", + "verificationMethod": {"@id": "sec:verificationMethod", "@type": "@id"} + } + }, + + "Ed25519Signature2018": { + "@id": "https://w3id.org/security#Ed25519Signature2018", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + "xsd": "http://www.w3.org/2001/XMLSchema#", + + "challenge": "sec:challenge", + "created": {"@id": "http://purl.org/dc/terms/created", "@type": "xsd:dateTime"}, + "domain": "sec:domain", + "expires": {"@id": "sec:expiration", "@type": "xsd:dateTime"}, + "jws": "sec:jws", + "nonce": "sec:nonce", + "proofPurpose": { + "@id": "sec:proofPurpose", + "@type": "@vocab", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + + "assertionMethod": {"@id": "sec:assertionMethod", "@type": "@id", "@container": "@set"}, + "authentication": {"@id": "sec:authenticationMethod", "@type": "@id", "@container": "@set"} + } + }, + "proofValue": "sec:proofValue", + "verificationMethod": {"@id": "sec:verificationMethod", "@type": "@id"} + } + }, + + "RsaSignature2018": { + "@id": "https://w3id.org/security#RsaSignature2018", + "@context": { + "@version": 1.1, + "@protected": true, + + "challenge": "sec:challenge", + "created": {"@id": "http://purl.org/dc/terms/created", "@type": "xsd:dateTime"}, + "domain": "sec:domain", + "expires": {"@id": "sec:expiration", "@type": "xsd:dateTime"}, + "jws": "sec:jws", + "nonce": "sec:nonce", + "proofPurpose": { + "@id": "sec:proofPurpose", + "@type": "@vocab", + "@context": { + "@version": 1.1, + "@protected": true, + + "id": "@id", + "type": "@type", + + "sec": "https://w3id.org/security#", + + "assertionMethod": {"@id": "sec:assertionMethod", "@type": "@id", "@container": "@set"}, + "authentication": {"@id": "sec:authenticationMethod", "@type": "@id", "@container": "@set"} + } + }, + "proofValue": "sec:proofValue", + "verificationMethod": {"@id": "sec:verificationMethod", "@type": "@id"} + } + }, + + "proof": {"@id": "https://w3id.org/security#proof", "@type": "@id", "@container": "@graph"} + } +} \ No newline at end of file diff --git a/mosip-context.json b/mosip-context.json new file mode 100644 index 00000000000..340d83a04ed --- /dev/null +++ b/mosip-context.json @@ -0,0 +1,24 @@ +{ + "@context": [{ + "@version": 1.1 + },"https://www.w3.org/ns/odrl.jsonld", { + "mosip": "${mosip.api.internal.url}/mosip#", + "schema": "http://schema.org/", + "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", + "vcVer": "mosip:vcVer", + "UIN": "mosip:UIN", + "addressLine1": "mosip:addressLine1", + "addressLine2": "mosip:addressLine2", + "addressLine3": "mosip:addressLine3", + "city": "mosip:city", + "dateOfBirth": "mosip:dateOfBirth", + "email": "mosip:email", + "fullName": "mosip:fullName", + "gender": "mosip:gender", + "phone": "mosip:phone", + "postalCode": "mosip:postalCode", + "province": "mosip:province", + "region": "mosip:region", + "biometrics": "mosip:biometrics" + }] +} \ No newline at end of file diff --git a/odrl.jsonld b/odrl.jsonld new file mode 100644 index 00000000000..3ac366acc47 --- /dev/null +++ b/odrl.jsonld @@ -0,0 +1,200 @@ +{ + "@context": { + "odrl": "http://www.w3.org/ns/odrl/2/", + "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", + "rdfs": "http://www.w3.org/2000/01/rdf-schema#", + "owl": "http://www.w3.org/2002/07/owl#", + "skos": "http://www.w3.org/2004/02/skos/core#", + "dct": "http://purl.org/dc/terms/", + "xsd": "http://www.w3.org/2001/XMLSchema#", + "vcard": "http://www.w3.org/2006/vcard/ns#", + "foaf": "http://xmlns.com/foaf/0.1/", + "schema": "http://schema.org/", + "cc": "http://creativecommons.org/ns#", + + "uid": "@id", + "type": "@type", + + "Policy": "odrl:Policy", + "Rule": "odrl:Rule", + "profile": {"@type": "@id", "@id": "odrl:profile"}, + + "inheritFrom": {"@type": "@id", "@id": "odrl:inheritFrom"}, + + "ConflictTerm": "odrl:ConflictTerm", + "conflict": {"@type": "@vocab", "@id": "odrl:conflict"}, + "perm": "odrl:perm", + "prohibit": "odrl:prohibit", + "invalid": "odrl:invalid", + + "Agreement": "odrl:Agreement", + "Assertion": "odrl:Assertion", + "Offer": "odrl:Offer", + "Privacy": "odrl:Privacy", + "Request": "odrl:Request", + "Set": "odrl:Set", + "Ticket": "odrl:Ticket", + + "Asset": "odrl:Asset", + "AssetCollection": "odrl:AssetCollection", + "relation": {"@type": "@id", "@id": "odrl:relation"}, + "hasPolicy": {"@type": "@id", "@id": "odrl:hasPolicy"}, + + "target": {"@type": "@id", "@id": "odrl:target"}, + "output": {"@type": "@id", "@id": "odrl:output"}, + + "partOf": {"@type": "@id", "@id": "odrl:partOf"}, + "source": {"@type": "@id", "@id": "odrl:source"}, + + "Party": "odrl:Party", + "PartyCollection": "odrl:PartyCollection", + "function": {"@type": "@vocab", "@id": "odrl:function"}, + "PartyScope": "odrl:PartyScope", + + "assignee": {"@type": "@id", "@id": "odrl:assignee"}, + "assigner": {"@type": "@id", "@id": "odrl:assigner"}, + "assigneeOf": {"@type": "@id", "@id": "odrl:assigneeOf"}, + "assignerOf": {"@type": "@id", "@id": "odrl:assignerOf"}, + "attributedParty": {"@type": "@id", "@id": "odrl:attributedParty"}, + "attributingParty": {"@type": "@id", "@id": "odrl:attributingParty"}, + "compensatedParty": {"@type": "@id", "@id": "odrl:compensatedParty"}, + "compensatingParty": {"@type": "@id", "@id": "odrl:compensatingParty"}, + "consentingParty": {"@type": "@id", "@id": "odrl:consentingParty"}, + "consentedParty": {"@type": "@id", "@id": "odrl:consentedParty"}, + "informedParty": {"@type": "@id", "@id": "odrl:informedParty"}, + "informingParty": {"@type": "@id", "@id": "odrl:informingParty"}, + "trackingParty": {"@type": "@id", "@id": "odrl:trackingParty"}, + "trackedParty": {"@type": "@id", "@id": "odrl:trackedParty"}, + "contractingParty": {"@type": "@id", "@id": "odrl:contractingParty"}, + "contractedParty": {"@type": "@id", "@id": "odrl:contractedParty"}, + + "Action": "odrl:Action", + "action": {"@type": "@vocab", "@id": "odrl:action"}, + "includedIn": {"@type": "@id", "@id": "odrl:includedIn"}, + "implies": {"@type": "@id", "@id": "odrl:implies"}, + + "Permission": "odrl:Permission", + "permission": {"@type": "@id", "@id": "odrl:permission"}, + + "Prohibition": "odrl:Prohibition", + "prohibition": {"@type": "@id", "@id": "odrl:prohibition"}, + + "obligation": {"@type": "@id", "@id": "odrl:obligation"}, + + "use": "odrl:use", + "grantUse": "odrl:grantUse", + "aggregate": "odrl:aggregate", + "annotate": "odrl:annotate", + "anonymize": "odrl:anonymize", + "archive": "odrl:archive", + "concurrentUse": "odrl:concurrentUse", + "derive": "odrl:derive", + "digitize": "odrl:digitize", + "display": "odrl:display", + "distribute": "odrl:distribute", + "execute": "odrl:execute", + "extract": "odrl:extract", + "give": "odrl:give", + "index": "odrl:index", + "install": "odrl:install", + "modify": "odrl:modify", + "move": "odrl:move", + "play": "odrl:play", + "present": "odrl:present", + "print": "odrl:print", + "read": "odrl:read", + "reproduce": "odrl:reproduce", + "sell": "odrl:sell", + "stream": "odrl:stream", + "textToSpeech": "odrl:textToSpeech", + "transfer": "odrl:transfer", + "transform": "odrl:transform", + "translate": "odrl:translate", + + "Duty": "odrl:Duty", + "duty": {"@type": "@id", "@id": "odrl:duty"}, + "consequence": {"@type": "@id", "@id": "odrl:consequence"}, + "remedy": {"@type": "@id", "@id": "odrl:remedy"}, + + "acceptTracking": "odrl:acceptTracking", + "attribute": "odrl:attribute", + "compensate": "odrl:compensate", + "delete": "odrl:delete", + "ensureExclusivity": "odrl:ensureExclusivity", + "include": "odrl:include", + "inform": "odrl:inform", + "nextPolicy": "odrl:nextPolicy", + "obtainConsent": "odrl:obtainConsent", + "reviewPolicy": "odrl:reviewPolicy", + "uninstall": "odrl:uninstall", + "watermark": "odrl:watermark", + + "Constraint": "odrl:Constraint", + "LogicalConstraint": "odrl:LogicalConstraint", + "constraint": {"@type": "@id", "@id": "odrl:constraint"}, + "refinement": {"@type": "@id", "@id": "odrl:refinement"}, + "Operator": "odrl:Operator", + "operator": {"@type": "@vocab", "@id": "odrl:operator"}, + "RightOperand": "odrl:RightOperand", + "rightOperand": "odrl:rightOperand", + "rightOperandReference":{"@type": "xsd:anyURI", "@id": "odrl:rightOperandReference"}, + "LeftOperand": "odrl:LeftOperand", + "leftOperand": {"@type": "@vocab", "@id": "odrl:leftOperand"}, + "unit": "odrl:unit", + "dataType": {"@type": "xsd:anyType", "@id": "odrl:datatype"}, + "status": "odrl:status", + + "absolutePosition": "odrl:absolutePosition", + "absoluteSpatialPosition": "odrl:absoluteSpatialPosition", + "absoluteTemporalPosition":"odrl:absoluteTemporalPosition", + "absoluteSize": "odrl:absoluteSize", + "count": "odrl:count", + "dateTime": "odrl:dateTime", + "delayPeriod": "odrl:delayPeriod", + "deliveryChannel": "odrl:deliveryChannel", + "elapsedTime": "odrl:elapsedTime", + "event": "odrl:event", + "fileFormat": "odrl:fileFormat", + "industry": "odrl:industry:", + "language": "odrl:language", + "media": "odrl:media", + "meteredTime": "odrl:meteredTime", + "payAmount": "odrl:payAmount", + "percentage": "odrl:percentage", + "product": "odrl:product", + "purpose": "odrl:purpose", + "recipient": "odrl:recipient", + "relativePosition": "odrl:relativePosition", + "relativeSpatialPosition": "odrl:relativeSpatialPosition", + "relativeTemporalPosition":"odrl:relativeTemporalPosition", + "relativeSize": "odrl:relativeSize", + "resolution": "odrl:resolution", + "spatial": "odrl:spatial", + "spatialCoordinates": "odrl:spatialCoordinates", + "systemDevice": "odrl:systemDevice", + "timeInterval": "odrl:timeInterval", + "unitOfCount": "odrl:unitOfCount", + "version": "odrl:version", + "virtualLocation": "odrl:virtualLocation", + + "eq": "odrl:eq", + "gt": "odrl:gt", + "gteq": "odrl:gteq", + "lt": "odrl:lt", + "lteq": "odrl:lteq", + "neq": "odrl:neg", + "isA": "odrl:isA", + "hasPart": "odrl:hasPart", + "isPartOf": "odrl:isPartOf", + "isAllOf": "odrl:isAllOf", + "isAnyOf": "odrl:isAnyOf", + "isNoneOf": "odrl:isNoneOf", + "or": "odrl:or", + "xone": "odrl:xone", + "and": "odrl:and", + "andSequence": "odrl:andSequence", + + "policyUsage": "odrl:policyUsage" + + } +} \ No newline at end of file diff --git a/vccontext.jsonld b/vccontext.jsonld new file mode 100644 index 00000000000..2e0ca6bdfdb --- /dev/null +++ b/vccontext.jsonld @@ -0,0 +1,9 @@ +{ + "context" : [ + "https://www.w3.org/2018/credentials/v1", + "${mosip.api.internal.url}/mosipvc/mosip-context.json", + { + "sec": "https://w3id.org/security#" + } +] +} \ No newline at end of file From bd8df7f953f79ebc64899882c912c957c8105966 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <46880392+mandeepdhiman123@users.noreply.github.com> Date: Thu, 10 Feb 2022 12:36:15 +0530 Subject: [PATCH 0636/1358] Update admin-default.properties --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index b2f9c0e3d0f..e0b60c709e7 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -201,9 +201,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client From a3522a22dc982c0114b815743fdb9b4ff73ec25b Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 10 Feb 2022 13:11:22 +0530 Subject: [PATCH 0637/1358] removed wrong commits. --- admin-default.properties | 5 ----- registration-processor-default.properties | 7 ------- 2 files changed, 12 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index e0b60c709e7..06d61de2d42 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -271,9 +271,4 @@ mosip.admin.packetupload.packetsync.email=email mosip.admin.packetupload.packetsync.phone=phone mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\\W|\\w]{1,100}$) - -<<<<<<< Updated upstream -# Mapping identity json to map with the applicant id json -======= ->>>>>>> Stashed changes registration.processor.identityjson=identity-mapping.json diff --git a/registration-processor-default.properties b/registration-processor-default.properties index e4340a2a957..2f7979377ce 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -952,12 +952,5 @@ mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,RE mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-reg-client - -<<<<<<< Updated upstream -======= - auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client - ->>>>>>> Stashed changes mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face From d41e65206d60cc9202de0667817805e35957a6d2 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 10 Feb 2022 13:21:49 +0530 Subject: [PATCH 0638/1358] removed wrong commits. --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2f7979377ce..9e50a94d2f3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -142,7 +142,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo # Status for matched records in demo dedupe stage. # 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. -registration.processor.demodedupe.manual.adjudication.status=PENDING +registration.processor.demodedupe.manual.adjudication.status=REJECTED # Validate hostlisted devices DEVICEHOTLIST=${mosip.admin.hotlist.url}/v1/hotlist/status @@ -167,10 +167,10 @@ registration.processor.max.retry=10 mosip.registration.processor.registration.status.id=mosip.registration.status mosip.registration.processor.registration.sync.id=mosip.registration.sync mosip.registration.processor.registration.transaction.id=mosip.registration.transaction +mosip.registration.processor.sync.version=1.0 mosip.registration.processor.registration.status.version=1.0 mosip.registration.processor.transaction.version=1.0 mosip.registration.processor.lostrid.id=mosip.registration.lostrid -mosip.registration.processor.sync.version=1.0 mosip.registration.processor.lostrid.version=1.0 mosip.registration.processor.registration.external.status.id=mosip.registration.external.status From 2920bda3b80b306f1ac1b6e837ae3cf25471deba Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 11 Feb 2022 15:40:12 +0530 Subject: [PATCH 0639/1358] Updated mpartner-default-print secret --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index f0b4d8e7d6b..add74841f4e 100644 --- a/print-default.properties +++ b/print-default.properties @@ -107,7 +107,7 @@ mosip.print.prependThumbprint=true # websub authentication mosip.iam.adapter.clientid=mpartner-default-print -mosip.iam.adapter.clientsecret=${mosip.mpartner.default.print.secret} +mosip.iam.adapter.clientsecret=${mpartner.default.print.secret} mosip.iam.adapter.appid=print mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager From 95e65ff47ec5b2936391991aa9b09c9c3b2c3f2c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Feb 2022 16:24:42 +0530 Subject: [PATCH 0640/1358] Updated keycloak host to external host --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 06d61de2d42..4ee8417538a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt From 8a8be9c55093c0d9bf4763d3472563355176878c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 11 Feb 2022 16:38:07 +0530 Subject: [PATCH 0641/1358] Revert "Updated keycloak host to external host" --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 4ee8417538a..06d61de2d42 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt From 8aa18ce779809edf3f85b13ab7ce7e4ea5a3f404 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Feb 2022 16:39:54 +0530 Subject: [PATCH 0642/1358] Updated keycloak host to internal host For testing purpose --- admin-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 06d61de2d42..e6f3658f5e9 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -180,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -201,9 +201,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client From b68acedb0b184dfe4136b596569c2d3a8eaebb0a Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 11 Feb 2022 16:51:08 +0530 Subject: [PATCH 0643/1358] Revert "Updated keycloak host to internal host" --- admin-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index e6f3658f5e9..06d61de2d42 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -180,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -201,9 +201,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client From 1392a1a39f33c89c529f9cd15e8250a9322a2614 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Feb 2022 18:04:55 +0530 Subject: [PATCH 0644/1358] Updated keycloak host to external host For testing purpose --- admin-default.properties | 4 ++-- kernel-default.properties | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 06d61de2d42..4ee8417538a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt diff --git a/kernel-default.properties b/kernel-default.properties index c537225d0d9..c9e97f863f7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -214,7 +214,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.internal.url} +mosip.iam.base.url=${keycloak.external.url} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip From 1e888161b3dfe9d8e48563d51980a6922c41d597 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 11 Feb 2022 18:15:56 +0530 Subject: [PATCH 0645/1358] Revert "Updated keycloak host to external host" --- admin-default.properties | 4 ++-- kernel-default.properties | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 4ee8417538a..06d61de2d42 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -216,7 +216,7 @@ KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/cli mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=1440 @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt diff --git a/kernel-default.properties b/kernel-default.properties index c9e97f863f7..c537225d0d9 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -214,7 +214,7 @@ ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:$ ridgenerator_database_password=${db.dbuser.password} ## Keycloak properties -mosip.iam.base.url=${keycloak.external.url} +mosip.iam.base.url=${keycloak.internal.url} mosip.iam.base-url=${mosip.iam.base.url} mosip.iam.admin-realm-id=admin mosip.iam.default.realm-id=mosip From 080ef70cf1a824f0aea454596729fdb235ab3289 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 13 Feb 2022 07:16:03 +0530 Subject: [PATCH 0646/1358] Email from address updated. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index c537225d0d9..a24fa16ed08 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -49,7 +49,7 @@ mosip.kernel.sms.sender=sender mosip.kernel.sms.unicode=unicode ## Email notification -mosip.kernel.notification.email.from=info@mosip.io +mosip.kernel.notification.email.from=do-not-reply@mosip.io spring.mail.host=${email.smtp.host} spring.mail.username=${email.smtp.username} spring.mail.password=${email.smtp.secret} From a0017154c078eb07e86c53f539173a43f1a35aa6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 17 Feb 2022 14:28:45 +0530 Subject: [PATCH 0647/1358] Keycloak urls set. --- admin-default.properties | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 06d61de2d42..8871d1475ff 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -180,8 +180,8 @@ mosip.admin-services.open-id.clientsecret=${mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth -mosip.admin-services.open-id.token_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client @@ -201,9 +201,9 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client @@ -259,7 +259,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt From 084f251caf8e8dadb3bfb7a20ee2de5b30e9c69b Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 17 Feb 2022 15:00:11 +0530 Subject: [PATCH 0648/1358] updated admin auth url to external. --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 8871d1475ff..093b619334c 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -180,7 +180,7 @@ mosip.admin-services.open-id.clientsecret=${mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true @@ -201,7 +201,7 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token From 5593be9d2eb6ba47709efa014a6ba359acab1ef2 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 17 Feb 2022 15:02:42 +0530 Subject: [PATCH 0649/1358] updated admin auth url to external. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index a24fa16ed08..fff94c508b3 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -233,7 +233,7 @@ keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true -mosip.iam.authorization_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code From 36feec51d90489253d6e460a57c0b3c4c4b07c9f Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 17 Feb 2022 15:11:13 +0530 Subject: [PATCH 0650/1358] reverted open-id.authorization_endpoint url back to internal. --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 093b619334c..a80e39606e9 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -180,7 +180,7 @@ mosip.admin-services.open-id.clientsecret=${mosip.admin.client.secret} mosip.admin-services.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ mosip.admin-services.open-id.login_flow.scope=email mosip.admin-services.open-id.login_flow.response_type=code -mosip.admin-services.open-id.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth +mosip.admin-services.open-id.authorization_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.admin-services.open-id.token_endpoint=${keycloak.internal.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin-services.cookie.security=true From 2b67d758b28c7059007b6129c43701bd5b9422f0 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 17 Feb 2022 15:40:18 +0530 Subject: [PATCH 0651/1358] updated auth.server.admin.issuer.uri to external for admin-ui redirect. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 62a3a6bbf58..dcb1898d1da 100644 --- a/application-default.properties +++ b/application-default.properties @@ -192,7 +192,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From 6b3df6208594e82045a5862ab202d877b1c86cdd Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 17 Feb 2022 16:23:12 +0530 Subject: [PATCH 0652/1358] updated client sercret placeholder --- id-authentication-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index e1ccf4fdb0a..f828ca28444 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -8,6 +8,7 @@ # ida.websub.ca.certificate.callback.secret # ida.websub.hotlist.callback.secret # mosip.kernel.tokenid.uin.salt +# mpartner.default.auth.secret # mosip.kernel.tokenid.partnercode.salt # softhsm.ida.pin # ida.websub.masterdata.templates.callback.secret @@ -25,7 +26,7 @@ ida-auth-partner-id=mpartner-default-auth #Note: since the Online verification Partner ID is used as client ID, for a different IDA instance, this needs to be changed accordingly #and also to be added to the 'auth.server.admin.allowed.audience' property of all dependency modules. mosip.ida.auth.clientId=${ida-auth-partner-id} -mosip.ida.auth.secretKey=${mosip.mpartner.default.auth.secret} +mosip.ida.auth.secretKey=${mpartner.default.auth.secret} mosip.ida.auth.appId=ida From 81ad8fdd5859ff1ed8f9890c343d12b67f509cae Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 17 Feb 2022 16:38:24 +0530 Subject: [PATCH 0653/1358] Updated comments to ui based application redirect properties. --- admin-default.properties | 4 +++- application-default.properties | 2 ++ kernel-default.properties | 2 ++ 3 files changed, 7 insertions(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index a80e39606e9..dfb893a9fde 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -201,6 +201,8 @@ mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code + +#This is the endpoint use by ui(browser) based applications to redirect to open-id system. This URL should be reachable through the browser. mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token @@ -259,7 +261,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ + MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt diff --git a/application-default.properties b/application-default.properties index dcb1898d1da..1f2929004e2 100644 --- a/application-default.properties +++ b/application-default.properties @@ -192,6 +192,8 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken + +#This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip diff --git a/kernel-default.properties b/kernel-default.properties index fff94c508b3..cccb6d744cf 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -233,7 +233,9 @@ keycloak.public-client=true keycloak.use-resource-role-mappings=true keycloak.verify-token-audience=true +#This is the endpoint use by ui(browser) based applications to redirect to open-id system. This URL should be reachable through the browser. mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth + mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code From 6da510e59129f62b977974cc561e0bd314417a3d Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 18 Feb 2022 11:58:59 +0530 Subject: [PATCH 0654/1358] Updated ida properties for keycloak token. --- id-authentication-default.properties | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f828ca28444..404eea58541 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -547,6 +547,12 @@ ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authenticatio mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 + +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.issuer.uri=${keycloak.internal.host}/auth/realms/ +auth-token-generator.rest.issuerUrl=${keycloak.internal.host}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.internal.host}/auth/realms/mosip + #Fixed delay in which cleanup will be done in Hours mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 From 765d30f55e874f84e15abbeb7a5d6e5012902c76 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 18 Feb 2022 12:03:30 +0530 Subject: [PATCH 0655/1358] updated keycloak url for ida --- id-authentication-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 404eea58541..94fc512c819 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -549,9 +549,9 @@ mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normali auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.internal.host}/auth/realms/ -auth-token-generator.rest.issuerUrl=${keycloak.internal.host}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.internal.host}/auth/realms/mosip +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip #Fixed delay in which cleanup will be done in Hours mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 From 69aea6d37ddbcd22fa95b2911f56a9af32f5932a Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 18 Feb 2022 12:03:44 +0530 Subject: [PATCH 0656/1358] updated keycloak url for ida From cd741df5790c45875ed31d8e3ffd94646b6d690e Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 18 Feb 2022 13:20:15 +0530 Subject: [PATCH 0657/1358] Updated ida properties for keycloak token issuerurl --- id-authentication-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 94fc512c819..fa395615167 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -549,9 +549,8 @@ mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normali auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.external.url}/auth/realms/mosip #Fixed delay in which cleanup will be done in Hours mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 From cf05d414be6f60cbdaa91ed491505aeff1cc4869 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 18 Feb 2022 14:08:30 +0530 Subject: [PATCH 0658/1358] Updated ida properties for keycloak token issuerurl --- id-authentication-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index fa395615167..d9e4677fc32 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -548,9 +548,10 @@ mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.external.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip #Fixed delay in which cleanup will be done in Hours mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 From e95605eac421fdbcaa798e103dc931bafcebb4b3 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 18 Feb 2022 15:53:34 +0530 Subject: [PATCH 0659/1358] updated auth.server.admin.issuer.uri to keyclaok external url --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d9e4677fc32..0ff98b69a44 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -548,7 +548,7 @@ mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From 27718c96e74d6b5b0eea1797d1e78bc1a59f6ea2 Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Fri, 18 Feb 2022 16:33:36 +0530 Subject: [PATCH 0660/1358] Updated ida properties for keycloak token issuerurl --- id-authentication-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 0ff98b69a44..c457bf53ef2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -547,11 +547,12 @@ ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authenticatio mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 - +#This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken + +#This url should be reachable internally to issue token. auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip -mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip #Fixed delay in which cleanup will be done in Hours mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 From 9eee48ec52eaa5518be676df378d90d38a245d2b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 19 Feb 2022 06:20:56 +0530 Subject: [PATCH 0661/1358] Swagger param specified. --- kernel-default.properties | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index cccb6d744cf..54dd3e15dd3 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -19,6 +19,7 @@ # email.smtp.secret # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt +# mosip.api.internal.url softhsm.kernel.pin=${softhsm.security.pin} @@ -422,10 +423,8 @@ scheduling.job.cron=0 0 2 * * ? mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 # masterdata swagger openApi -#openapi.masterdata.servers[0].url=${mosip.kernel.masterdata.url}/v1/masterdata -#openapi.masterdata.servers[0].description=Admin Masterdata url -#openapi.service.servers[0].url=https://${mosip.api.internal.host}/${server.servlet.context-path:${server.servlet.path:}} -#openapi.service.servers[0].description=For Swagger +openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} +openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails From 0817c3815d271999e045af6fe42e1c4d26e123a0 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 19 Feb 2022 09:07:00 +0530 Subject: [PATCH 0662/1358] Swagger params updated. --- application-default.properties | 4 ++-- kernel-default.properties | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index 1f2929004e2..c208285bf26 100644 --- a/application-default.properties +++ b/application-default.properties @@ -414,7 +414,7 @@ mosip.notification.timezone=GMT+05:30 mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34}[a-zA-Z0-9]$ ## Swagger -#openapi.service.servers[0].url=https://${mosip.api.internal.host}${server.servlet.context-path:${server.servlet.pa th:}} -#openapi.service.servers[0].description=For Swagger +openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} +openapi.service.servers[0].description=For Swagger mosip.auth.filter_disable=false diff --git a/kernel-default.properties b/kernel-default.properties index 54dd3e15dd3..c0622be46ea 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -423,8 +423,8 @@ scheduling.job.cron=0 0 2 * * ? mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 # masterdata swagger openApi -openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} -openapi.service.servers[0].description=For Swagger +#openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} +#openapi.service.servers[0].description=For Swagger #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails From 12cf51e3412454925593bfb5491784fe7d0c5d87 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 19 Feb 2022 09:13:10 +0530 Subject: [PATCH 0663/1358] Minor --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index c208285bf26..bb82c07a460 100644 --- a/application-default.properties +++ b/application-default.properties @@ -414,7 +414,7 @@ mosip.notification.timezone=GMT+05:30 mosip.centertypecode.validate.regex=^[a-zA-Z0-9]([_-](?![_-])|[a-zA-Z0-9]){0,34}[a-zA-Z0-9]$ ## Swagger -openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} +openapi.service.servers[0].url=${mosip.api.internal.url}${server.servlet.context-path:${server.servlet.path:}} openapi.service.servers[0].description=For Swagger mosip.auth.filter_disable=false From 509f12fb07cd9a74a829844781cec26322a52cf2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 21 Feb 2022 18:23:09 +0530 Subject: [PATCH 0664/1358] Allowed audience updated. --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 12e3d11c1b2..6b0ac95fa56 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -151,7 +151,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token From 411e6fe582f3b566bde320476d4115f6b98c6d46 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <mandeep.kumar@technoforte.co.in> Date: Tue, 22 Feb 2022 09:38:38 +0530 Subject: [PATCH 0665/1358] Update data-share-default.properties --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index ed6abbd9c20..3fc18254cda 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -38,7 +38,7 @@ mosip.data.share.includeCertificate=false mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=false - +mosip.role.durian.postcreatepolicyidsubscriberid=CREATE_SHARE auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client mosip.auth.filter_disable=false From d88b127f8fd63d2d42699b93a35c4681b0e7ca4e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Feb 2022 15:14:48 +0530 Subject: [PATCH 0666/1358] Clamav updated for testing. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index bb82c07a460..49949e3ab8d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -258,8 +258,8 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav.clamav -mosip.kernel.virus-scanner.port=80 +mosip.kernel.virus-scanner.host=clamav.clamav2 +mosip.kernel.virus-scanner.port=3310 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara From a237dd4f0292a96cbcb01f902935e1ee326345ea Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Feb 2022 15:21:25 +0530 Subject: [PATCH 0667/1358] Clamav updated for testing --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 9e50a94d2f3..7181421d41a 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -235,8 +235,8 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav -mosip.kernel.virus-scanner.port=80 +mosip.kernel.virus-scanner.host=clamav.clamav2 +mosip.kernel.virus-scanner.port=3310 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl From 98846fccea04e9c595998c131a3a9ab1acf072c8 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Feb 2022 15:39:39 +0530 Subject: [PATCH 0668/1358] [MOSIP-20285] Clamv prop updated based on latest method of installation. --- application-default.properties | 2 +- registration-processor-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 49949e3ab8d..859823ccc4d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -258,7 +258,7 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav.clamav2 +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=3310 ## Transliteration diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 7181421d41a..28e6537562d 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -235,7 +235,7 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav.clamav2 +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=3310 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 From 63d7ebab76ca0832fb84d125229f8cdc5e0ac26b Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Thu, 24 Feb 2022 13:33:23 +0530 Subject: [PATCH 0669/1358] updated logging level. --- application-default.properties | 4 ++-- print-default.properties | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/application-default.properties b/application-default.properties index 859823ccc4d..0bdeb9fe3b1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -374,10 +374,10 @@ mosip.stage.environment=Developer ## Log level -logging.level.root=WARN +logging.level.root=DEBUG logging.level.io.mosip=DEBUG logging.level.io.vertx=DEBUG -logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO +logging.level.io.mosip.kernel.auth.defaultadapter.filter=DEBUG ## Tomcat access logs server.tomcat.accesslog.enabled=true diff --git a/print-default.properties b/print-default.properties index add74841f4e..c67037da64d 100644 --- a/print-default.properties +++ b/print-default.properties @@ -83,9 +83,9 @@ mosip.kernel.pin.length=6 mosip.kernel.tokenid.length=36 ## log level -logging.level.root=WARN -logging.level.io.mosip=INFO -logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO +logging.level.root=DEBUG +logging.level.io.mosip=DEBUG +logging.level.io.mosip.kernel.auth.defaultadapter.filter=DEBUG ## tomcat access logs server.tomcat.accesslog.enabled=true From f37ea7e1c565683d152deb26712d6422fd3f81b3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 24 Feb 2022 15:18:46 +0530 Subject: [PATCH 0670/1358] Clamav updated for testing. --- application-default.properties | 2 +- registration-processor-default.properties | 2 -- 2 files changed, 1 insertion(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index 859823ccc4d..49949e3ab8d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -258,7 +258,7 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.host=clamav.clamav2 mosip.kernel.virus-scanner.port=3310 ## Transliteration diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 28e6537562d..1b29817f1f0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -235,8 +235,6 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav.clamav -mosip.kernel.virus-scanner.port=3310 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl From 20f1b8789d1cc127d0844cff239a5b983494de8f Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 24 Feb 2022 15:26:45 +0530 Subject: [PATCH 0671/1358] Clamav reverted back. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index ea7b25279fc..0bdeb9fe3b1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -258,7 +258,7 @@ mosip.kernel.licensekey.permissions=OTP Trigger,OTP Authentication,Demo Authenti ## Virus scanner # Here we specify the Kubernetes service name if clamav runs inside cluster -mosip.kernel.virus-scanner.host=clamav.clamav2 +mosip.kernel.virus-scanner.host=clamav.clamav mosip.kernel.virus-scanner.port=3310 ## Transliteration From 9a4645e8b559993c211c2a858b02627f1fa47c16 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 25 Feb 2022 16:51:42 +0530 Subject: [PATCH 0672/1358] Property updated as per https://github.com/mosip/mosip-openid-bridge/pull/88 --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 0bdeb9fe3b1..8659d4e2843 100644 --- a/application-default.properties +++ b/application-default.properties @@ -194,6 +194,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken #This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. +auth.server.admin.issuer.internal.uri=${keycloak.internal.url} auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From 1eac268fcd064386ebadb33771f15ef0af5e3b8a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 25 Feb 2022 18:19:56 +0530 Subject: [PATCH 0673/1358] Keycloak url corrected. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 8659d4e2843..a8738e7e4a6 100644 --- a/application-default.properties +++ b/application-default.properties @@ -194,7 +194,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken #This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. -auth.server.admin.issuer.internal.uri=${keycloak.internal.url} +auth.server.admin.issuer.internal.uri=${keycloak.internal.url}/ auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From cc54e8e19b262b8d82285cdc8b506586f96c53dc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 25 Feb 2022 18:33:25 +0530 Subject: [PATCH 0674/1358] DEBUG -> INFO. --- application-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index a8738e7e4a6..29924f4443b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -375,10 +375,10 @@ mosip.stage.environment=Developer ## Log level -logging.level.root=DEBUG -logging.level.io.mosip=DEBUG -logging.level.io.vertx=DEBUG -logging.level.io.mosip.kernel.auth.defaultadapter.filter=DEBUG +logging.level.root=INFO +logging.level.io.mosip=INFO +logging.level.io.vertx=INFO +logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## Tomcat access logs server.tomcat.accesslog.enabled=true From ce94aff10bab7db9b5fe490b8060b553ed051d49 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 25 Feb 2022 18:35:53 +0530 Subject: [PATCH 0675/1358] Keycloak prop corrected. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 29924f4443b..c889114c193 100644 --- a/application-default.properties +++ b/application-default.properties @@ -194,7 +194,7 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken #This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. -auth.server.admin.issuer.internal.uri=${keycloak.internal.url}/ +auth.server.admin.issuer.internal.uri=${keycloak.internal.url}/auth/realms/ auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From 87c3a5964f4010ddc655906e977883974d5c0428 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 28 Feb 2022 11:58:17 +0530 Subject: [PATCH 0676/1358] Appid prop of packet manager. --- packet-manager-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 5baa31a7d4a..cf9d10e2286 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -30,7 +30,7 @@ object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 # IAM adapter -mosip.iam.adapter.appid=regproc +mosip.iam.adapter.appid.packet-manager=regproc mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret={mosip.mosip.regproc.client.secret} mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip From 8d999d4537c2c5adf42e91c4f2dd0fb26dba9113 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 28 Feb 2022 12:11:31 +0530 Subject: [PATCH 0677/1358] Reverted previous change. --- packet-manager-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index cf9d10e2286..5baa31a7d4a 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -30,7 +30,7 @@ object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 # IAM adapter -mosip.iam.adapter.appid.packet-manager=regproc +mosip.iam.adapter.appid=regproc mosip.iam.adapter.clientid=mosip-regproc-client mosip.iam.adapter.clientsecret={mosip.mosip.regproc.client.secret} mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip From e8e8db6d9566bc6023fd569dace3e510bd4311fc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 28 Feb 2022 12:25:40 +0530 Subject: [PATCH 0678/1358] Client secret property corrected. --- packet-manager-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 5baa31a7d4a..7939858c75a 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -32,5 +32,5 @@ object.store.s3.readlimit=10000000 # IAM adapter mosip.iam.adapter.appid=regproc mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret={mosip.mosip.regproc.client.secret} +mosip.iam.adapter.clientsecret={mosip.regproc.client.secret} mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip From 470f23123ae81b92303236876b2af20d6829e603 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Mon, 28 Feb 2022 12:32:42 +0530 Subject: [PATCH 0679/1358] Secret prop corrected. --- packet-manager-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 7939858c75a..59ac07098e9 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -32,5 +32,5 @@ object.store.s3.readlimit=10000000 # IAM adapter mosip.iam.adapter.appid=regproc mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret={mosip.regproc.client.secret} +mosip.iam.adapter.clientsecret=${mosip.regproc.client.secret} mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip From 4435d6344758b4bc1db7dd150396b0ad6abf7085 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 2 Mar 2022 09:23:10 +0530 Subject: [PATCH 0680/1358] MOSIP file server urls corrected. --- application-default.properties | 1 + credential-service-default.properties | 14 ++++++++++---- id-repository-default.properties | 2 +- partner-management-default.properties | 1 - vccontext.jsonld | 4 ++-- 5 files changed, 14 insertions(+), 8 deletions(-) diff --git a/application-default.properties b/application-default.properties index c889114c193..07c922173b1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -41,6 +41,7 @@ mosip.regproc.status.service.url=http://regproc-status.regproc mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub +mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida kafka.profile=kafka.svc.cluster.local kafka.port=9092 diff --git a/credential-service-default.properties b/credential-service-default.properties index 0c19724fe81..896a823e804 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -1,3 +1,9 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# mosip.creser.client.secret +# + # IDRepo credential service authentication details mosip.idrepo.credential.auth.client-id=mosip-creser-client mosip.idrepo.credential.auth.secret-key=${mosip.creser.client.secret} @@ -10,14 +16,14 @@ mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id mosip.auth.filter_disable=false -mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.api.internal.url}/mosipvc/mosip-context.json" : "mosip-context.json"} +mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.file.server.url}/mosipvc/mosip-context.json" : "mosip-context.json"} mosip.credential.service.vercred.context.uri=vccontext.jsonld -mosip.credential.service.vercred.id.url=${mosip.api.internal.url}/credentials/ -mosip.credential.service.vercred.issuer.url=${mosip.api.internal.url}/mosipvc/controller.json +mosip.credential.service.vercred.id.url=${mosip.idrepo.credential.service.url}/credentials/ +mosip.credential.service.vercred.issuer.url=${mosip.file.server.url}/mosipvc/controller.json mosip.credential.service.vercred.types=VerifiableCredential,MOSIPVerifiableCredential mosip.credential.service.vercred.proof.purpose=assertionMethod mosip.credential.service.vercred.proof.type=RsaSignature2018 -mosip.credential.service.vercred.proof.verificationmethod=${mosip.api.internal.url}/mosipvc/public-key.json +mosip.credential.service.vercred.proof.verificationmethod=${mosip.file.server.url}/mosipvc/public-key.json KEYMANAGER_VERCRED_SIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwsSign credentialType.formatter.VERCRED=VerCredProvider diff --git a/id-repository-default.properties b/id-repository-default.properties index ce56fb91df5..16b7aa871f3 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -197,7 +197,7 @@ mosip.idrepo.credential-status-update-job.fixed-delay-in-ms=10000 # the credential request with below partner id to issue credential to new IDA partners. idrepo-dummy-online-verification-partner-id=MOVP -mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{uin} +mosip.idrepo.retrieve-by-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{uin} mosip.idrepo.retrieve-by-uin.rest.httpMethod=GET mosip.idrepo.retrieve-by-uin.rest.headers.mediaType=application/json mosip.idrepo.retrieve-by-uin.rest.timeout=100 diff --git a/partner-management-default.properties b/partner-management-default.properties index 6b0ac95fa56..6fbca0f5b48 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -16,7 +16,6 @@ mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} - ## Auth device mosip.authdevice.database.hostname=postgres mosip.authdevice.database.port=80 diff --git a/vccontext.jsonld b/vccontext.jsonld index 2e0ca6bdfdb..ff878ef02df 100644 --- a/vccontext.jsonld +++ b/vccontext.jsonld @@ -1,9 +1,9 @@ { "context" : [ "https://www.w3.org/2018/credentials/v1", - "${mosip.api.internal.url}/mosipvc/mosip-context.json", + "${mosip.file.server.url}/mosipvc/mosip-context.json", { "sec": "https://w3id.org/security#" } ] -} \ No newline at end of file +} From 3c77742021c59444ca42d879408ed0566cfff213 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 2 Mar 2022 09:26:42 +0530 Subject: [PATCH 0681/1358] Idrepo urls corrected. --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index c457bf53ef2..528d1ea8e4a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -167,13 +167,13 @@ sms-notification.rest.headers.mediaType=${mosip.ida.request.mediaType} sms-notification.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (with type specified as query param) - Used in Internal Auth based on User ID -rid-uin.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{rid}?type={type} +rid-uin.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid}?type={type} rid-uin.rest.httpMethod=GET rid-uin.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin.rest.timeout=${mosip.ida.request.timeout.secs} ## Get Identity Data for RID (without type specified) - Used in Internal Auth based on User ID -rid-uin-auth.rest.uri=${mosip.api.internal.url}/idrepository/v1/identity/idvid/{rid} +rid-uin-auth.rest.uri=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{rid} rid-uin-auth.rest.httpMethod=GET rid-uin-auth.rest.headers.mediaType=${mosip.ida.request.mediaType} rid-uin-auth.rest.timeout=${mosip.ida.request.timeout.secs} From 105722592fb6f012a28e232ce088d07ae2b82507 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 2 Mar 2022 13:37:37 +0530 Subject: [PATCH 0682/1358] uncommented mosip.kernel.keymanager.keystore.keyreference.enable.cache to false --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index c457bf53ef2..9d0427b156e 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -499,7 +499,7 @@ zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production -#mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false ## Admin # Configure N time period threshold for accepting auth/OTP/KYC request for a country From a12df5479fc4295f04913f6acd60979ca13bae6d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 2 Mar 2022 13:46:44 +0530 Subject: [PATCH 0683/1358] Unused property removed. --- syncdata-default.properties | 3 --- 1 file changed, 3 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index dcf79ec8c0d..f7c4abcb431 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -346,9 +346,6 @@ datastores=ldap_1_DS,db_1_DS,db_2_DS ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM -## List of keys to auto generate. -mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS - ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 From 63d4a983b65f32bf2f299f3b005a42d28176bfc1 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 2 Mar 2022 19:24:52 +0530 Subject: [PATCH 0684/1358] Callback urls corrected in IDA. --- id-authentication-external-default.properties | 6 +++--- id-authentication-internal-default.properties | 6 +++--- id-authentication-otp-default.properties | 6 +++--- 3 files changed, 9 insertions(+), 9 deletions(-) diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index 1f6672a5c35..086a58a97c9 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=http://ida-auth.ida/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=http://ida-auth.ida/${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=http://ida-auth.ida/${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 4ea87b06ce2..961e46cda8a 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=http://ida-internal.ida/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=http://ida-internal.ida/${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=http://ida-internal.ida/${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index 11256a5d2bc..b35e261ec1a 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=http://ida-otp.ida/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=${mosip.api.internal.url}/${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=http://ida-otp.ida/${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=${mosip.api.internal.url}/${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=http://ida-otp.ida/${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} From a2a4e449334847e1bd00baf3ef90132b18a954fc Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 3 Mar 2022 05:47:10 +0530 Subject: [PATCH 0685/1358] Print callback URL updated. --- print-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index c67037da64d..932cec0df12 100644 --- a/print-default.properties +++ b/print-default.properties @@ -9,7 +9,8 @@ mosip.event.hubURL=${mosip.websub.url}/hub/ mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident -mosip.event.callBackUrl=${mosip.api.internal.url}/${server.servlet.context-path}/print/callback/notifyPrint +## This callback is called by Websub to notify print +mosip.event.callBackUrl=http://print-service.print/${server.servlet.context-path}/print/callback/notifyPrint mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED mosip.event.secret=${print.websub.hub.secret} From e2337989033a4a1ef78880f6bd3d8ff2af87e5ba Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 3 Mar 2022 13:38:32 +0530 Subject: [PATCH 0686/1358] In-cluster API link specified in Syncdata. --- syncdata-default.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index f7c4abcb431..22fdd76cb01 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -13,7 +13,6 @@ # mosip.reg.client.secret # mosip.prereg.client.secret # mosip.syncdata.client.secret -# mosip.api.internal.host # softhsm.kernel.pin ## Sync data @@ -385,7 +384,7 @@ syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED syncdata.websub.callback.secret.ca-cert=secret # Callback url for partner CA certificate CRUD event syncdata.websub.callback.url.path.ca-cert=/websub/callback/cacert -syncdata.websub.callback.url.ca-cert=${mosip.api.internal.url}/${server.servlet.context-path}/websub/callback/cacert +syncdata.websub.callback.url.ca-cert=${mosip.kernel.syncdata.url}/${server.servlet.context-path}/websub/callback/cacert # Number of retires on subscription failure syncdata.websub.resubscription.retry.count=3 # The time interval in seconds to schedule subscription of topics which is done as a @@ -403,7 +402,7 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel.masterdata.ur # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false -mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.internal.url}/v1/syncdata/scripts/applicanttype.mvel +mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.kernel.syncdata.url}/v1/syncdata/scripts/applicanttype.mvel mosip.sync.entity.auth-required.APPLICANTTYPE.MVEL=true mosip.sync.entity.auth-token.APPLICANTTYPE.MVEL=Authorization:OAUTH mosip.sync.entity.encrypted.APPLICANTTYPE.MVEL=false From 31a815eb5fdeedb087d01a01259e727dcff2a2f6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Thu, 3 Mar 2022 17:12:45 +0530 Subject: [PATCH 0687/1358] Callback urls corrected. --- id-authentication-default.properties | 13 +------------ id-authentication-internal-default.properties | 12 ++++++++++++ 2 files changed, 13 insertions(+), 12 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f8883cc93a1..a827d8cca64 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -216,26 +216,15 @@ ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} -ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} -## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} -ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} -ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} -ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} -ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events -ida-websub-partner-service-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} +ida-websub-partner-service-callback-url=${mosip.pms.partnermanager.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} ida-websub-partner-service-apikey-approved-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/apikey_approved ida-websub-partner-service-partner-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_updated ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/policy_updated ida-websub-partner-service-partner-api-key-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_api_key_updated ida-websub-partner-service-misp-license-generated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_generated ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated -## Callback url for hotlist event -ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=${mosip.api.internal.url}/${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 961e46cda8a..bf608668899 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -2,6 +2,18 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-p ida-websub-masterdata-templates-callback-url=http://ida-internal.ida/${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles ida-websub-masterdata-titles-callback-url=http://ida-internal.ida/${ida-websub-masterdata-titles-callback-relative-url} +## Callback url for hotlist event +ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist +ida-websub-hotlist-callback-url=http://ida-internal.ida/${ida-websub-hotlist-callback-relative-url} + +ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} +ida-websub-auth-type-callback-url=http://ida-internal.ida/${ida-websub-auth-type-callback-relative-url} +## Callback url for credential issueance event notification, including id remove/deactivate/activate events +ida-websub-idchage-callback-url=http://ida-internal.ida/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} +ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} +ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} +ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate From daddcecdccf3c34616d1cd6538fe60b789c5204e Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 11:18:28 +0530 Subject: [PATCH 0688/1358] Minor cleanup. --- application-default.properties | 2 ++ id-authentication-external-default.properties | 6 +++--- id-authentication-internal-default.properties | 12 ++++++------ id-authentication-otp-default.properties | 6 +++--- 4 files changed, 14 insertions(+), 12 deletions(-) diff --git a/application-default.properties b/application-default.properties index 07c922173b1..9417f3d19a9 100644 --- a/application-default.properties +++ b/application-default.properties @@ -43,6 +43,8 @@ mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida +mosip.ida.auth.url=http://ida-auth.ida +mosip.ida.otp.url=http://ida-otp.ida kafka.profile=kafka.svc.cluster.local kafka.port=9092 diff --git a/id-authentication-external-default.properties b/id-authentication-external-default.properties index 086a58a97c9..651d4dbb2a5 100644 --- a/id-authentication-external-default.properties +++ b/id-authentication-external-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=http://ida-auth.ida/${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.ida.auth.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=http://ida-auth.ida/${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.ida.auth.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=http://ida-auth.ida/${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.ida.auth.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index bf608668899..ebd980db8d4 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -1,15 +1,15 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=http://ida-internal.ida/${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.ida.internal.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=http://ida-internal.ida/${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.ida.internal.url}${ida-websub-masterdata-titles-callback-relative-url} ## Callback url for hotlist event ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=http://ida-internal.ida/${ida-websub-hotlist-callback-relative-url} +ida-websub-hotlist-callback-url=${mosip.ida.internal.url}${ida-websub-hotlist-callback-relative-url} ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=http://ida-internal.ida/${ida-websub-auth-type-callback-relative-url} +ida-websub-auth-type-callback-url=${mosip.ida.internal.url}${ida-websub-auth-type-callback-relative-url} ## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=http://ida-internal.ida/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchage-callback-url=${mosip.ida.internal.url}${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} @@ -17,7 +17,7 @@ ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-p # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=http://ida-internal.ida/${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.ida.internal.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} diff --git a/id-authentication-otp-default.properties b/id-authentication-otp-default.properties index b35e261ec1a..97e243469f4 100644 --- a/id-authentication-otp-default.properties +++ b/id-authentication-otp-default.properties @@ -1,11 +1,11 @@ ida-websub-masterdata-templates-callback-relative-url=${server.servlet.context-path}/callback/masterdata/templates -ida-websub-masterdata-templates-callback-url=http://ida-otp.ida/${ida-websub-masterdata-templates-callback-relative-url} +ida-websub-masterdata-templates-callback-url=${mosip.ida.otp.url}${ida-websub-masterdata-templates-callback-relative-url} ida-websub-masterdata-titles-callback-relative-url=${server.servlet.context-path}/callback/masterdata/titles -ida-websub-masterdata-titles-callback-url=http://ida-otp.ida/${ida-websub-masterdata-titles-callback-relative-url} +ida-websub-masterdata-titles-callback-url=${mosip.ida.otp.url}${ida-websub-masterdata-titles-callback-relative-url} # Callback url for partner CA certification upload event ida-websub-ca-cert-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/ca_certificate -ida-websub-ca-cert-callback-url=http://ida-otp.ida/${ida-websub-ca-cert-callback-relative-url} +ida-websub-ca-cert-callback-url=${mosip.ida.otp.url}${ida-websub-ca-cert-callback-relative-url} # Secret for partner CA certification upload callback ida-websub-ca-certificate-callback-secret=${ida.websub.ca.certificate.callback.secret} From 7d740b7fd1b6286f9aa94d217860d543d59647af Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 18:23:53 +0530 Subject: [PATCH 0689/1358] VC property added in print. --- print-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/print-default.properties b/print-default.properties index 932cec0df12..31ef2fb1659 100644 --- a/print-default.properties +++ b/print-default.properties @@ -130,3 +130,6 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.print.crypto.p12.filename=partner.p12 mosip.print.crypto.p12.password={cipher}714cd7ff4c1aa550e7371fabcce089bf6411d69709e6c19aae808eb612c9d31e mosip.print.crypto.p12.alias=partner + +# verifiable credential +mosip.print.verify.credentials.flag=false From 18bd7cfda34fff43b91cb582341b53aaa0cd1742 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 18:31:17 +0530 Subject: [PATCH 0690/1358] App id corrected. --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index 31ef2fb1659..68db4d23eff 100644 --- a/print-default.properties +++ b/print-default.properties @@ -109,7 +109,7 @@ mosip.print.prependThumbprint=true # websub authentication mosip.iam.adapter.clientid=mpartner-default-print mosip.iam.adapter.clientsecret=${mpartner.default.print.secret} -mosip.iam.adapter.appid=print +mosip.iam.adapter.appid=admin mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey From 70b48d2c9de396048f1577bacd0756ae931a800d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 18:32:12 +0530 Subject: [PATCH 0691/1358] Log level changed to INFO. --- print-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/print-default.properties b/print-default.properties index 68db4d23eff..8e4f9658a30 100644 --- a/print-default.properties +++ b/print-default.properties @@ -84,9 +84,9 @@ mosip.kernel.pin.length=6 mosip.kernel.tokenid.length=36 ## log level -logging.level.root=DEBUG -logging.level.io.mosip=DEBUG -logging.level.io.mosip.kernel.auth.defaultadapter.filter=DEBUG +logging.level.root=INFO +logging.level.io.mosip=INFO +logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## tomcat access logs server.tomcat.accesslog.enabled=true From a5ee779ecb8b157896e29a5fcb84efad1442aeb2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 18:40:03 +0530 Subject: [PATCH 0692/1358] Pwd updated. --- print-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index 8e4f9658a30..c9ff24e6a4f 100644 --- a/print-default.properties +++ b/print-default.properties @@ -128,7 +128,8 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # p12 file mosip.print.crypto.p12.filename=partner.p12 -mosip.print.crypto.p12.password={cipher}714cd7ff4c1aa550e7371fabcce089bf6411d69709e6c19aae808eb612c9d31e +## password hardcoded in print service. TODO: Make it configurable. +mosip.print.crypto.p12.password=password@123 mosip.print.crypto.p12.alias=partner # verifiable credential From 9626bb6f68931e8255db2d6f22c9744efdc80395 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 19:00:36 +0530 Subject: [PATCH 0693/1358] Allowed audience updated. --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index 3fc18254cda..90c842de45b 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -39,7 +39,7 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=false mosip.role.durian.postcreatepolicyidsubscriberid=CREATE_SHARE -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client,mpartner-default-print,mosip-resident-client mosip.auth.filter_disable=false From 0585d6bd3c64e7da7cb1f16db02ca76ed821aa07 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 4 Mar 2022 19:28:40 +0530 Subject: [PATCH 0694/1358] Opencrvs props added. --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index 9417f3d19a9..6880259e260 100644 --- a/application-default.properties +++ b/application-default.properties @@ -345,8 +345,10 @@ packetmanager.packet.signature.disable-verification=true mosip.commons.packetnames=id,evidence,optional provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl provider.packetreader.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketReaderImpl +provider.packetreader.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketReaderImpl provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl +provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true From aa758a811e0479313ca8cfd3bdae87878bb0d330 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 5 Mar 2022 10:17:03 +0530 Subject: [PATCH 0695/1358] Log level changed to INFO. --- pre-registration-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index b84352e529a..6e10f257b21 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -29,8 +29,7 @@ hibernate.show_sql=false hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true -## Hickari Logs for Database -logging.level.com.zaxxer.hikari=DEBUG +logging.level.com.zaxxer.hikari=INFO ## Project Version for the API response version=1.0 From 967174555c517f19a6f383b763539621339097bf Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 7 Mar 2022 13:39:31 +0530 Subject: [PATCH 0696/1358] added mosip public url --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 6880259e260..0751b3794cd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -17,6 +17,7 @@ aplication.configuration.level.version=LTS mosip.recommended.centers.locCode=5 ## Common properties used across different modules +mosipbox.public.url=${mosip.api.internal.url} mosip.api.internal.url=https://${mosip.api.internal.host} mosip.kernel.authmanager.url=http://authmanager.kernel mosip.kernel.masterdata.url=http://masterdata.kernel From 31be5ed8cb07d49420166bf47eb1bb5bc146ae6b Mon Sep 17 00:00:00 2001 From: mandeepdhiman123 <mandeep.kumar@technoforte.co.in> Date: Tue, 8 Mar 2022 10:21:55 +0530 Subject: [PATCH 0697/1358] updated reprocess time. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1b29817f1f0..2941f9d432c 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -288,7 +288,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=4800 +registration.processor.reprocess.elapse.time=180 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From 9e155889ce175725d72646eade11c26ee111869a Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 8 Mar 2022 13:27:53 +0530 Subject: [PATCH 0698/1358] [ MOSIP-20475 ] Added new properties --- admin-default.properties | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index dfb893a9fde..ed974d2e2ac 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -240,6 +240,12 @@ mosip.role.admin.getbulkuploadtranscationtranscationid=GLOBAL_ADMIN mosip.role.admin.getbulkuploadgetalltransactions=GLOBAL_ADMIN mosip.role.admin.postauditmanagerlog=GLOBAL_ADMIN,ZONAL_ADMIN + +mosip.role.admin.getgeneratecsrcertificateapplicationidreferenceid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.postuploadcertificate=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.postgeneratecsr=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.postuploadotherdomaincertificate=GLOBAL_ADMIN,ZONAL_ADMIN + # packet-manager mosip.commons.packetnames=id,evidence,optional provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl @@ -274,3 +280,9 @@ mosip.admin.packetupload.packetsync.phone=phone mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\\W|\\w]{1,100}$) registration.processor.identityjson=identity-mapping.json + +###Key manager url's used by KeyManagerDelegation api from admin-service to delegate request +mosip.kernel.keymanager.generatecsr=${mosip.kernel-keymanager-service.url}/v1/keymanager/generateCSR +mosip.kernel.keymanager.getcertificate=${mosip.kernel-keymanager-service.url}/v1/keymanager/getCertificate? +mosip.kernel.keymanager.uploadcertificate=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadCertificate +mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadOtherDomainCertificate From ecb5b39bfe18d8fc882eadc3c272fa8f8bedabcb Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 8 Mar 2022 13:37:47 +0530 Subject: [PATCH 0699/1358] [ MOSIP-20475 ] updated keymanager properties in admin-default.properties --- admin-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index ed974d2e2ac..1e1f3ea1c55 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -282,7 +282,7 @@ mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\\W|\\w]{1,100 registration.processor.identityjson=identity-mapping.json ###Key manager url's used by KeyManagerDelegation api from admin-service to delegate request -mosip.kernel.keymanager.generatecsr=${mosip.kernel-keymanager-service.url}/v1/keymanager/generateCSR -mosip.kernel.keymanager.getcertificate=${mosip.kernel-keymanager-service.url}/v1/keymanager/getCertificate? -mosip.kernel.keymanager.uploadcertificate=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadCertificate -mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel-keymanager-service.url}/v1/keymanager/uploadOtherDomainCertificate +mosip.kernel.keymanager.generatecsr=${mosip.kernel.keymanager.url}/v1/keymanager/generateCSR +mosip.kernel.keymanager.getcertificate=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate? +mosip.kernel.keymanager.uploadcertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadCertificate +mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadOtherDomainCertificate From 8e6540530af896fd6f2b340e06fa3a6b3f4b5af2 Mon Sep 17 00:00:00 2001 From: Mayura Deshmukh <mayura.deshmukh@gmail.com> Date: Thu, 10 Mar 2022 11:22:36 +0530 Subject: [PATCH 0700/1358] Latest from develop-v2 --- kernel-default.properties | 4 ++-- pre-registration-default.properties | 5 +++-- 2 files changed, 5 insertions(+), 4 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index c0622be46ea..7ca701994bc 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -694,8 +694,8 @@ mosip.role.admin.masterdata.postdynamicfieldsfiltervalues=ZONAL_ADMIN,GLOBAL_ADM mosip.role.admin.masterdata.putlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postotpgenerate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.getotpvalidate=INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.postotpgenerate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getotpvalidate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN,ID_REPOSITORY mosip.role.keymanager.postcssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 6e10f257b21..c40a2bdc609 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -199,6 +199,7 @@ email.acknowledgement.template=Email-Acknowledgement email.acknowledgement.subject.template=Acknowledgement-email-subject sms.acknowledgement.template=SMS-Acknowledgement cancel.appoinment.template=cancel-appointment +cancel.appointment.email.subject=cancel-appointment-email-subject ## Notification service notification.service.version=v1 @@ -476,8 +477,8 @@ mosip.role.prereg.getappointmentavailability=INDIVIDUAL mosip.role.prereg.postappointmentpreregistrationid=INDIVIDUAL mosip.role.prereg.postappointment=INDIVIDUAL mosip.role.prereg.getappointmentpreregistrationid=REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN,PRE_REGISTRATION_ADMIN,INDIVIDUAL -mosip.role.prereg.putappointmentpreregistrationid=INDIVIDUAL +mosip.role.prereg.putappointmentpreregistrationid=INDIVIDUAL,PRE_REGISTRATION_ADMIN mosip.role.prereg.putbatchappointmentpreregistrationid=PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR -mosip.role.prereg.deleteappointment=INDIVIDUAL +mosip.role.prereg.deleteappointment=INDIVIDUAL,PRE_REGISTRATION_ADMIN mosip.role.prereg.getappointmentpreregistrationidregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN mosip.role.prereg.getappointmentregistrationcenterid=INDIVIDUAL,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_ADMIN From 930017fc2f18db87f0e261bfb4ebd9150276611d Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Mar 2022 19:11:01 +0530 Subject: [PATCH 0701/1358] [ MOSIP-20594 ] added resident-app-default.properties for resident-app service --- resident-app-default.properties | 177 ++++++++++++++++++++++++++++++++ 1 file changed, 177 insertions(+) create mode 100644 resident-app-default.properties diff --git a/resident-app-default.properties b/resident-app-default.properties new file mode 100644 index 00000000000..a52f20c39e4 --- /dev/null +++ b/resident-app-default.properties @@ -0,0 +1,177 @@ + +# MOSIP +mosipbox.public.url=${mosipbox.public.url} +public.url=${mosipbox.public.url}/residentmobileapp +mosip.resident.base.url=${mosip.resident-service.url}/resident/v1 + + +RESIDENT_OTP=${mosip.resident.base.url}/req/otp +RESIDENT_CREDENTIAL_REQUEST=${mosip.resident.base.url}/req/credential +RESIDENT_CREDENTIAL_REQUEST_STATUS=${RESIDENT_CREDENTIAL_REQUEST}/status +RESIDENT_VID=${mosip.resident.base.url}/vid +RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock +RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock + + +# Resident App +credential.template=template.json +credential.sample=sample_credential.json +credential.data.path=data +safetynet.api.key= +safetynet.api.url=https://www.googleapis.com/androidcheck/v1/attestations/verify?key=${safetynet.api.key} + +registration.processor.print.textfile=registration-processor-print-text-file.json + +# Websub +mosip.event.hubUrl=${mosipbox.public.url}/hub/ +mosip.event.hub.subUrl=${mosip.event.hubUrl} +mosip.event.hub.pubUrl=${mosip.event.hubUrl} + + +# MOSIP partner +mosip.partner.id=mpartner-default-mobile +mosip.event.callBackUrl=${public.url}/credentialshare/callback/notify +mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED +mosip.event.secret=Kslk30SNF2AChs2 + + +mosip.partner.crypto.p12.filename=keystore.p12 +mosip.partner.crypto.p12.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.crypto.p12.alias=partner +mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.prependThumbprint=true + + +mosip.datashare.partner.id=mpartner-default-resident +mosip.datashare.policy.id=mpolicy-default-resident + + +csrf.disabled=true +# Delayed websub subscription. Default is 5 seconds in ms. +mosip.event.delay-millisecs=5000 +# Websub re-subscription workaround for losing subscribed topic when MOSIP websub update or restart. Default is 5 minutes in ms. +websub-resubscription-delay-millisecs=300000 + +#-------------TOKEN GENERATION---------------- +#Token generation request id +token.request.id=io.mosip.registration.processor +#Token generation app id +token.request.appid=regproc +#Token generation username +token.request.username=registrationprocessor +#Token generation password +token.request.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +#Token generation version +token.request.version=1.0 +#Token generation Client Id +token.request.clientId=mosip-regproc-client +#Token generation secret key +token.request.secretKey={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +#Token generation issuer url +token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip + +#Audit Service +AUDIT=${mosipbox.public.url}/v1/auditmanager/audits +AUDIT_URL=${mosipbox.public.url}/v1/auditmanager/audits +KEYBASEDTOKENAPI=${mosipbox.public.url}/v1/authmanager/authenticate/clientidsecretkey + +#Master Data Services +# MASTER=http://kernel-masterdata-service/v1/masterdata +MASTER=${mosipbox.public.url}/v1/masterdata +TEMPLATES=${MASTER}/templates + +#Packet receiver application version +mosip.print.application.version=1.0 +#Request Date Time format +mosip.print.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' + + +#-------------Printing Service-------------------- +mosip.print.service.id=mosip.print + +#Audit request id +mosip.print.audit.id=mosip.applicanttype.getApplicantType +mosip.country.code=MOR + +#Kernel Crypto signature +registration.processor.signature.isEnabled=true + +# Language Supported By Platform - ISO +mosip.supported-languages=eng,ara,fra + +mosip.template-language=eng +mosip.optional-languages=fra,ara +mosip.mandatory-languages=eng + +# mosip.primary-language=eng +# mosip.secondary-language=ara + +#----------------------- CBEFF Util-------------------------------------------------- +# Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. +mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/print/${spring.profiles.active}/${spring.cloud.config.label}/ +# Cbeff XSD file name in config server +mosip.kernel.xsdfile=mosip-cbeff.xsd + +#----------------------------- Applicant Type -------------------------------------------------- +mosip.kernel.applicant.type.age.limit = 5 + +#----------------------------- Static PIN -------------------------------------------------- +mosip.kernel.pin.length=6 + +#-----------------------------TOKEN-ID Properties--------------------------------- +#length of the token id +mosip.kernel.tokenid.length=36 + +# log level +logging.level.root=WARN +logging.level.io.mosip=INFO +# logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO +logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG +logging.level.org.springframework.http.client=DEBUG +logging.level.io.mosip.residentapp=INFO +logging.level.reactor.netty.http.client=INFO +# tomcat access logs +server.tomcat.accesslog.enabled=true +server.tomcat.accesslog.directory=/dev +server.tomcat.accesslog.prefix=stdout +server.tomcat.accesslog.buffered=false +server.tomcat.accesslog.suffix= +server.tomcat.accesslog.file-date-format= +server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}"} +server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve +registration.processor.unMaskedUin.length=5 + +IDSchema.Version=1.0 +registration.processor.identityjson=identity-mapping.json +registration.processor.demographic.identity=identity +CREATEDATASHARE=${mosipbox.public.url}/v1/datashare/create +DECRYPTPINBASSED=${mosipbox.public.url}/v1/keymanager/decryptWithPin + +config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profiles.active}/${spring.cloud.config.label}/ + + +#Auth Adapter rest template authentication configs +mosip.iam.adapter.appid=partner +mosip.iam.adapter.clientid=mpartner-default-mobile +mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} +auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ + +mosip.iam.adapter.issuerURL=${mosipbox.public.url}/keycloak/auth/realms/mosip +mosip.authmanager.base-url=${mosipbox.public.url}/v1/authmanager +mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey +auth.server.admin.validate.url=${mosip.authmanager.base-url}/v1/authmanager/authorize/admin/validateToken + + +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=1440 + +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=1440 + +#this should be false if you don?t use this restTemplate true if you do + +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} + From 2fdcde6e3b5701bcfa06b2d8b9d39ae27b74068c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Mar 2022 19:13:35 +0530 Subject: [PATCH 0702/1358] [ MOSIP-20594 ] added resident service secret --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index a52f20c39e4..1aaea19b4f1 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -153,7 +153,7 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile #Auth Adapter rest template authentication configs mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile -mosip.iam.adapter.clientsecret=${mosip.mosip.resident.client.secret} +mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ mosip.iam.adapter.issuerURL=${mosipbox.public.url}/keycloak/auth/realms/mosip From ee6fac5d5a8b3b2489272f7eb05666154ae6e902 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Mar 2022 19:23:22 +0530 Subject: [PATCH 0703/1358] [ MOSIP-20594 ] updated resident-app-default.properties --- resident-app-default.properties | 23 +++++++++++------------ 1 file changed, 11 insertions(+), 12 deletions(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index 1aaea19b4f1..4f64588f850 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -1,7 +1,6 @@ # MOSIP -mosipbox.public.url=${mosipbox.public.url} -public.url=${mosipbox.public.url}/residentmobileapp +public.url=$https://{mosip.api.internal.host}/residentmobileapp mosip.resident.base.url=${mosip.resident-service.url}/resident/v1 @@ -23,7 +22,7 @@ safetynet.api.url=https://www.googleapis.com/androidcheck/v1/attestations/verify registration.processor.print.textfile=registration-processor-print-text-file.json # Websub -mosip.event.hubUrl=${mosipbox.public.url}/hub/ +mosip.event.hubUrl=$https://{mosip.api.internal.host}/hub/ mosip.event.hub.subUrl=${mosip.event.hubUrl} mosip.event.hub.pubUrl=${mosip.event.hubUrl} @@ -68,16 +67,16 @@ token.request.clientId=mosip-regproc-client #Token generation secret key token.request.secretKey={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 #Token generation issuer url -token.request.issuerUrl=${mosipbox.public.url}/keycloak/auth/realms/mosip +token.request.issuerUrl=$https://{mosip.api.internal.host}/keycloak/auth/realms/mosip #Audit Service -AUDIT=${mosipbox.public.url}/v1/auditmanager/audits -AUDIT_URL=${mosipbox.public.url}/v1/auditmanager/audits -KEYBASEDTOKENAPI=${mosipbox.public.url}/v1/authmanager/authenticate/clientidsecretkey +AUDIT=$https://{mosip.api.internal.host}/v1/auditmanager/audits +AUDIT_URL=$https://{mosip.api.internal.host}/v1/auditmanager/audits +KEYBASEDTOKENAPI=$https://{mosip.api.internal.host}/v1/authmanager/authenticate/clientidsecretkey #Master Data Services # MASTER=http://kernel-masterdata-service/v1/masterdata -MASTER=${mosipbox.public.url}/v1/masterdata +MASTER=$https://{mosip.api.internal.host}/v1/masterdata TEMPLATES=${MASTER}/templates #Packet receiver application version @@ -144,8 +143,8 @@ registration.processor.unMaskedUin.length=5 IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity -CREATEDATASHARE=${mosipbox.public.url}/v1/datashare/create -DECRYPTPINBASSED=${mosipbox.public.url}/v1/keymanager/decryptWithPin +CREATEDATASHARE=$https://{mosip.api.internal.host}/v1/datashare/create +DECRYPTPINBASSED=$https://{mosip.api.internal.host}/v1/keymanager/decryptWithPin config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profiles.active}/${spring.cloud.config.label}/ @@ -156,8 +155,8 @@ mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ -mosip.iam.adapter.issuerURL=${mosipbox.public.url}/keycloak/auth/realms/mosip -mosip.authmanager.base-url=${mosipbox.public.url}/v1/authmanager +mosip.iam.adapter.issuerURL=$https://{mosip.api.internal.host}/keycloak/auth/realms/mosip +mosip.authmanager.base-url=$https://{mosip.api.internal.host}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey auth.server.admin.validate.url=${mosip.authmanager.base-url}/v1/authmanager/authorize/admin/validateToken From 4353d74f8bf046130e810972bc81aa5e92d1159b Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Mar 2022 19:25:50 +0530 Subject: [PATCH 0704/1358] [ MOSIP-20594 ] updated resident-app-default.properties --- resident-app-default.properties | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index 4f64588f850..a95fb8cbb7f 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -1,6 +1,6 @@ # MOSIP -public.url=$https://{mosip.api.internal.host}/residentmobileapp +public.url=https://${mosip.api.internal.host}/residentmobileapp mosip.resident.base.url=${mosip.resident-service.url}/resident/v1 @@ -22,7 +22,7 @@ safetynet.api.url=https://www.googleapis.com/androidcheck/v1/attestations/verify registration.processor.print.textfile=registration-processor-print-text-file.json # Websub -mosip.event.hubUrl=$https://{mosip.api.internal.host}/hub/ +mosip.event.hubUrl=https://${mosip.api.internal.host}/hub/ mosip.event.hub.subUrl=${mosip.event.hubUrl} mosip.event.hub.pubUrl=${mosip.event.hubUrl} @@ -67,16 +67,16 @@ token.request.clientId=mosip-regproc-client #Token generation secret key token.request.secretKey={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 #Token generation issuer url -token.request.issuerUrl=$https://{mosip.api.internal.host}/keycloak/auth/realms/mosip +token.request.issuerUrl=https://${mosip.api.internal.host}/keycloak/auth/realms/mosip #Audit Service -AUDIT=$https://{mosip.api.internal.host}/v1/auditmanager/audits -AUDIT_URL=$https://{mosip.api.internal.host}/v1/auditmanager/audits -KEYBASEDTOKENAPI=$https://{mosip.api.internal.host}/v1/authmanager/authenticate/clientidsecretkey +AUDIT=https://${mosip.api.internal.host}/v1/auditmanager/audits +AUDIT_URL=https://${mosip.api.internal.host}/v1/auditmanager/audits +KEYBASEDTOKENAPI=https://${mosip.api.internal.host}/v1/authmanager/authenticate/clientidsecretkey #Master Data Services # MASTER=http://kernel-masterdata-service/v1/masterdata -MASTER=$https://{mosip.api.internal.host}/v1/masterdata +MASTER=https://${mosip.api.internal.host}/v1/masterdata TEMPLATES=${MASTER}/templates #Packet receiver application version @@ -143,8 +143,8 @@ registration.processor.unMaskedUin.length=5 IDSchema.Version=1.0 registration.processor.identityjson=identity-mapping.json registration.processor.demographic.identity=identity -CREATEDATASHARE=$https://{mosip.api.internal.host}/v1/datashare/create -DECRYPTPINBASSED=$https://{mosip.api.internal.host}/v1/keymanager/decryptWithPin +CREATEDATASHARE=https://${mosip.api.internal.host}/v1/datashare/create +DECRYPTPINBASSED=https://${mosip.api.internal.host}/v1/keymanager/decryptWithPin config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profiles.active}/${spring.cloud.config.label}/ @@ -155,8 +155,8 @@ mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ -mosip.iam.adapter.issuerURL=$https://{mosip.api.internal.host}/keycloak/auth/realms/mosip -mosip.authmanager.base-url=$https://{mosip.api.internal.host}/v1/authmanager +mosip.iam.adapter.issuerURL=https://${mosip.api.internal.host}/keycloak/auth/realms/mosip +mosip.authmanager.base-url=https://${mosip.api.internal.host}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey auth.server.admin.validate.url=${mosip.authmanager.base-url}/v1/authmanager/authorize/admin/validateToken From f0a205c11a2a761b3da002bb5e09736bef6dee35 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Mar 2022 20:13:31 +0530 Subject: [PATCH 0705/1358] [ MOSIP-20594 ] updated resident app keycloak urls --- resident-app-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index a95fb8cbb7f..c940c0d0e04 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -67,7 +67,7 @@ token.request.clientId=mosip-regproc-client #Token generation secret key token.request.secretKey={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 #Token generation issuer url -token.request.issuerUrl=https://${mosip.api.internal.host}/keycloak/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip #Audit Service AUDIT=https://${mosip.api.internal.host}/v1/auditmanager/audits @@ -153,9 +153,9 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${mosip.api.internal.url}/keycloak/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ -mosip.iam.adapter.issuerURL=https://${mosip.api.internal.host}/keycloak/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=https://${mosip.api.internal.host}/v1/authmanager mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey auth.server.admin.validate.url=${mosip.authmanager.base-url}/v1/authmanager/authorize/admin/validateToken From 96b2d448bb13d489c770cccfbb418207dd3b1a08 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 11 Mar 2022 20:16:16 +0530 Subject: [PATCH 0706/1358] [ MOSIP-20594 ] updated resident app keycloak urls --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index c940c0d0e04..f06c429615f 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -153,7 +153,7 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/mosip mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=https://${mosip.api.internal.host}/v1/authmanager From e574286f37261e36ba8041b00be6934ec92f5fa6 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Fri, 11 Mar 2022 20:22:33 +0530 Subject: [PATCH 0707/1358] Revert "[ MOSIP-20594 ] updated resident app keycloak urls" --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index f06c429615f..c940c0d0e04 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -153,7 +153,7 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/mosip +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=https://${mosip.api.internal.host}/v1/authmanager From 14ed152ba6a92838e0a54fca482cef50b9468e42 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 12 Mar 2022 11:10:06 +0530 Subject: [PATCH 0708/1358] CORS enabled for testing. Reset it later. --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 7ca701994bc..de6bc13d70d 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -302,10 +302,10 @@ mosip.security.provider.name=SunPKCS11-pkcs11-proxy mosip.ui.spec.default.domain=registration-client ## Security properties -mosip.security.csrf-enable=false -mosip.security.cors-enable=false +mosip.security.csrf-enable=true +mosip.security.cors-enable=true mosip.security.origins=localhost:8080 -mosip.security.secure-cookie=false +mosip.security.secure-cookie=true ## ROOT key identifier mosip.root.key.applicationid=ROOT From dfe55fc3752a7917eb60e616c84bb7870d3cc1b2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 12 Mar 2022 11:14:54 +0530 Subject: [PATCH 0709/1358] Reverted back previous change. --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index de6bc13d70d..7ca701994bc 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -302,10 +302,10 @@ mosip.security.provider.name=SunPKCS11-pkcs11-proxy mosip.ui.spec.default.domain=registration-client ## Security properties -mosip.security.csrf-enable=true -mosip.security.cors-enable=true +mosip.security.csrf-enable=false +mosip.security.cors-enable=false mosip.security.origins=localhost:8080 -mosip.security.secure-cookie=true +mosip.security.secure-cookie=false ## ROOT key identifier mosip.root.key.applicationid=ROOT From 5517a716fc55dcacd58709ccc3cafe8f749cc56b Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 12 Mar 2022 11:17:58 +0530 Subject: [PATCH 0710/1358] CORS setting changed for testing. --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 1e1f3ea1c55..ed796e59ec7 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -187,8 +187,8 @@ mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client ## Security -mosip.security.csrf-enable=false -mosip.security.cors-enable=false +mosip.security.csrf-enable=true +mosip.security.cors-enable=true mosip.security.origins=localhost:8080 mosip.security.secure-cookie=false From 026c427d46832dd8c8bafc68a564af0e3504ebdd Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 15 Mar 2022 10:34:28 +0530 Subject: [PATCH 0711/1358] Redundant comments removed. --- registration-processor-camel-routes-new-default.xml | 7 ------- 1 file changed, 7 deletions(-) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 72a26fed05f..1a2ad6c899a 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -33,7 +33,6 @@ </otherwise> </choice> </route> - <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader new route"> <from uri="eventbus://securezone-notification-new-bus-out" /> <log message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> @@ -55,7 +54,6 @@ </otherwise> </choice> </route> - <!-- packet-uploader to packet-validator Route --> <route id="packet-uploader-->packet-validator new route"> <from uri="eventbus://packet-uploader-new-bus-out" /> <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> @@ -77,7 +75,6 @@ </otherwise> </choice> </route> - <!-- Packet Validator to Packet classifier Route --> <route id="packet-validator-->packet-classifier new route"> <from uri="eventbus://packet-validator-new-bus-out" /> <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> @@ -101,7 +98,6 @@ </otherwise> </choice> </route> - <!-- Packet Classifier to Quality Classifier Route --> <route id="packet-classifier-->cmd-validator new route"> <from uri="eventbus://packet-classifier-new-bus-out" /> <log message="packet-classifier-->quality-classifier new route ${bodyAs(String)}" /> @@ -450,7 +446,6 @@ </otherwise> </choice> </route> - <!-- UIN Generator to biometric-extraction Route --> <route id="uin-generation route-->biometric-extraction-stage new route"> <from uri="eventbus://uin-generator-new-bus-out" /> <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> @@ -475,7 +470,6 @@ </otherwise> </choice> </route> - <!-- biometric-extraction to finalization Route --> <route id="biometric-extraction route-->finalization-stage new route"> <from uri="eventbus://biometric-extraction-new-bus-out" /> <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> @@ -499,7 +493,6 @@ </otherwise> </choice> </route> - <!-- finalization to Printing Route --> <route id="finalization route-->printing-stage new route"> <from uri="eventbus://finalization-new-bus-out" /> <log message="finalization-->printing-stage route ${bodyAs(String)}" /> From 8120fbde52e4d3a4da18a9552c602e165fdffe53 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Tue, 15 Mar 2022 11:11:54 +0530 Subject: [PATCH 0712/1358] [MOSIP-8576] Added camel route for opencrvs --- ...ssor-camel-routes-opencrvs-new-default.xml | 250 ++++++++++++++++++ 1 file changed, 250 insertions(+) create mode 100644 registration-processor-camel-routes-opencrvs-new-default.xml diff --git a/registration-processor-camel-routes-opencrvs-new-default.xml b/registration-processor-camel-routes-opencrvs-new-default.xml new file mode 100644 index 00000000000..cf14151eb24 --- /dev/null +++ b/registration-processor-camel-routes-opencrvs-new-default.xml @@ -0,0 +1,250 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <route id="packet-receiver-->securezone-notification new route"> + <from uri="eventbus://packet-receiver-new-bus-out" /> + <log message="packet-receiver-->securezone-notification new ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> + <route id="securezone-notification-->packet-uploader new route"> + <from uri="eventbus://securezone-notification-new-bus-out" /> + <log message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-uploader-->packet-validator new route"> + <from uri="eventbus://packet-uploader-new-bus-out" /> + <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-validator-->packet-classifier new route"> + <from uri="eventbus://packet-validator-new-bus-out" /> + <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://packet-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-classifier-->demo-dedupe new route"> + <from uri="eventbus://packet-classifier-new-bus-out" /> + <log message="packet-classifier-->demo-dedupe new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="demo-dedupe-->uin-generator new route"> + <from uri="eventbus://demo-dedupe-new-bus-out" /> + <log message="demo-dedupe-->uin-generator new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> +<!-- <when>--> +<!-- <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath>--> +<!-- <to uri="eventbus://abis-handler-bus-in" />--> +<!-- </when>--> +<!-- <when>--> +<!-- <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath>--> +<!-- <to uri="eventbus://manual-adjudication-bus-in" />--> +<!-- </when>--> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="uin-generation route-->finalization-stage new route"> + <from uri="eventbus://uin-generator-new-bus-out" /> + <log message="uin-generation-->finalization-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> + <route id="finalization route-->printing-stage new route"> + <from uri="eventbus://finalization-new-bus-out" /> + <log message="finalization-->printing-stage route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage--> opencrvs-stage new route"> + <from uri="eventbus://printing-new-bus-out" /> + <log message="printing-stage--> opencrvs-stage new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://opencrvs-new-bus-in" /> + </otherwise> + </choice> + </route> + <route id="opencrvs-stage route --> new route"> + <from uri="eventbus://opencrvs-new-bus-out" /> + <log message="opencrvs-stage route--> route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> +</routes> From 48425ab28d8e4cb60f765dc545ff585c40129557 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 15 Mar 2022 14:05:34 +0530 Subject: [PATCH 0713/1358] [ DSD-841 ] develop3-v3 inline with develop2-v2 & 1.2.0.1 --- id-authentication-default.properties | 2 +- kernel-default.properties | 15 +++++++-------- pre-registration-default.properties | 2 +- registration-processor-default.properties | 3 +-- resident-default.properties | 2 ++ syncdata-default.properties | 2 +- websub-service.toml | 8 ++++++++ 7 files changed, 21 insertions(+), 13 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index a827d8cca64..89a1fb9dadb 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -408,7 +408,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 ## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false ## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.authentication.core.exception.IdAuthRetryException,io.mosip.authentication.core.exception.IdAuthenticationBaseException +kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException ## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= diff --git a/kernel-default.properties b/kernel-default.properties index 7ca701994bc..e666b4f0bdf 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -406,7 +406,7 @@ syncdata.websub.resubscription.delay.millis=48000000 ## Admin UI ## this pattern like --> display column : configKey. ## We can provide multiple values with ";" separated -mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code} +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns} # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. @@ -420,7 +420,7 @@ mosip.kernel.masterdata.auth-user-details=/userdetails ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=0 # masterdata swagger openApi #openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} @@ -429,8 +429,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=340 #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client - +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} @@ -636,7 +635,7 @@ mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMI mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRINT_PARTNER mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN @@ -697,15 +696,15 @@ mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESI mosip.role.kernel.postotpgenerate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getotpvalidate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT -mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN,ID_REPOSITORY +mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN,ID_REPOSITORY,HOTLIST_ADMIN mosip.role.keymanager.postcssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postcsverifysign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmsigningpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.posttpmencryptionpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST -mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST,HOTLIST_ADMIN +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST,HOTLIST_ADMIN mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT diff --git a/pre-registration-default.properties b/pre-registration-default.properties index c40a2bdc609..9db0611fc40 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -293,7 +293,7 @@ mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.inva mosip.preregistration.login.id.config=mosip.pre-registration.login.config iam.base.url=${keycloak.internal.url} -auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/preregistration +auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/mosip validationStatus=success context=auth-otp prereg.auth.jwt.secret=Yn2kjibddFAWtnPJ2AFlL8WXmohJMCvigQggaEypa5E= diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2941f9d432c..d73c556976b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -504,8 +504,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] - +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": "packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 diff --git a/resident-default.properties b/resident-default.properties index 07331c979e7..54b026cc8fd 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -131,3 +131,5 @@ auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.service-context=/resident/v1 mosip.service.end-points=/**/* mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT + +mosip.ida.env=Production \ No newline at end of file diff --git a/syncdata-default.properties b/syncdata-default.properties index 22fdd76cb01..33c0c8bd2e2 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -414,7 +414,7 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true syncdata.cache.evict.delta-sync.cron=0 0/15 * * * * syncdata.cache.snapshot.cron=0 0 23 * * * -mosip.kernel.keymanager-service-publickey-url=${mosip.kernel.keymanager.url}/v1/keymanager/publickey/{applicationId} +mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/getCertificate?applicationId={applicationId} mosip.kernel.keymanager.unique.identifier.autoupdate=false diff --git a/websub-service.toml b/websub-service.toml index 250f3ca1e54..0185dd7f704 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -47,3 +47,11 @@ MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" + +[ballerina.http.accessLogConfig] +# Enable printing access logs in console +console = true # Default is false + +[ballerina.http.traceLogAdvancedConfig] +# Enable printing trace logs in console +console = true # Default is false From 70cd6a2e4753ad14439fc143a5265355411fdcf2 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 15 Mar 2022 16:23:34 +0530 Subject: [PATCH 0714/1358] [ DSD-841 ] fix keymanager url --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 33c0c8bd2e2..3f789c6d8b1 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -414,7 +414,7 @@ spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true syncdata.cache.evict.delta-sync.cron=0 0/15 * * * * syncdata.cache.snapshot.cron=0 0 23 * * * -mosip.kernel.keymanager-service-publickey-url=${mosip.kernel-keymanager-service.url}/v1/keymanager/getCertificate?applicationId={applicationId} +mosip.kernel.keymanager-service-publickey-url=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate?applicationId={applicationId} mosip.kernel.keymanager.unique.identifier.autoupdate=false From b904aeb43463f5890bbf968de50b43c883fc6f68 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 15 Mar 2022 18:49:05 +0530 Subject: [PATCH 0715/1358] [ DSD-841 ] updated keycloak url --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 0751b3794cd..6639b240aba 100644 --- a/application-default.properties +++ b/application-default.properties @@ -198,8 +198,8 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken #This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. -auth.server.admin.issuer.internal.uri=${keycloak.internal.url}/auth/realms/ -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.internal.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From 0256ccc9fc208c8751fe2b6ca61a53aa656fb78e Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Tue, 15 Mar 2022 18:54:39 +0530 Subject: [PATCH 0716/1358] Revert "[ DSD-841 ] updated keycloak url" --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 6639b240aba..0751b3794cd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -198,8 +198,8 @@ mosip.kernel.uin.length.conjugative-even-digits-limit=3 auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken #This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. -auth.server.admin.issuer.internal.uri=${keycloak.external.url}/auth/realms/ -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.internal.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip From fac6511821f647bc3be3bbebe4b18cc1ea6087dc Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 15 Mar 2022 21:17:44 +0530 Subject: [PATCH 0717/1358] [ DSD-841 ] added new admin properties --- admin-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index ed796e59ec7..6e2c97c7346 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -286,3 +286,8 @@ mosip.kernel.keymanager.generatecsr=${mosip.kernel.keymanager.url}/v1/keymanager mosip.kernel.keymanager.getcertificate=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate? mosip.kernel.keymanager.uploadcertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadCertificate mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadOtherDomainCertificate + +# this property are used in AdminProxyService to get base url and version +mosip.admin.masterdata.service.version=v1 +mosip.admin.keymanager.service.version=v1 +mosip.admin.base.url=https://${mosip.api.internal.host}/ \ No newline at end of file From 5c7abf5d9e56b568c1d4a8ebaceab4f451cef4b5 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Wed, 16 Mar 2022 12:56:35 +0530 Subject: [PATCH 0718/1358] [MOSIP-8576] Edited camel route for opencrvs with proper process name --- ...ssor-camel-routes-opencrvs-new-default.xml | 250 ----------- ...ssor-camel-routes-opencrvs_new-default.xml | 406 ++++++++++++++++++ 2 files changed, 406 insertions(+), 250 deletions(-) delete mode 100644 registration-processor-camel-routes-opencrvs-new-default.xml create mode 100644 registration-processor-camel-routes-opencrvs_new-default.xml diff --git a/registration-processor-camel-routes-opencrvs-new-default.xml b/registration-processor-camel-routes-opencrvs-new-default.xml deleted file mode 100644 index cf14151eb24..00000000000 --- a/registration-processor-camel-routes-opencrvs-new-default.xml +++ /dev/null @@ -1,250 +0,0 @@ -<routes xmlns="http://camel.apache.org/schema/spring"> - <route id="packet-receiver-->securezone-notification new route"> - <from uri="eventbus://packet-receiver-new-bus-out" /> - <log message="packet-receiver-->securezone-notification new ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> - </otherwise> - </choice> - </route> - <route id="securezone-notification-->packet-uploader new route"> - <from uri="eventbus://securezone-notification-new-bus-out" /> - <log message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <to uri="eventbus://packet-uploader-bus-in" /> - </otherwise> - </choice> - </route> - <route id="packet-uploader-->packet-validator new route"> - <from uri="eventbus://packet-uploader-new-bus-out" /> - <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - </when> - <otherwise> - <to uri="eventbus://packet-validator-bus-in" /> - </otherwise> - </choice> - </route> - <route id="packet-validator-->packet-classifier new route"> - <from uri="eventbus://packet-validator-new-bus-out" /> - <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="eventbus://packet-classifier-bus-in" /> - </otherwise> - </choice> - </route> - <route id="packet-classifier-->demo-dedupe new route"> - <from uri="eventbus://packet-classifier-new-bus-out" /> - <log message="packet-classifier-->demo-dedupe new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="eventbus://demo-dedupe-bus-in" /> - </otherwise> - </choice> - </route> - <route id="demo-dedupe-->uin-generator new route"> - <from uri="eventbus://demo-dedupe-new-bus-out" /> - <log message="demo-dedupe-->uin-generator new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-rejected" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> -<!-- <when>--> -<!-- <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath>--> -<!-- <to uri="eventbus://abis-handler-bus-in" />--> -<!-- </when>--> -<!-- <when>--> -<!-- <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath>--> -<!-- <to uri="eventbus://manual-adjudication-bus-in" />--> -<!-- </when>--> - <otherwise> - <to uri="eventbus://uin-generator-bus-in" /> - </otherwise> - </choice> - </route> - <route id="uin-generation route-->finalization-stage new route"> - <from uri="eventbus://uin-generator-new-bus-out" /> - <log message="uin-generation-->finalization-stage route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="eventbus://finalization-bus-in" /> - <to uri="workflow-cmd://anonymous-profile" /> - </otherwise> - </choice> - </route> - <route id="finalization route-->printing-stage new route"> - <from uri="eventbus://finalization-new-bus-out" /> - <log message="finalization-->printing-stage route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> - <to uri="eventbus://printing-bus-in" /> - </otherwise> - </choice> - </route> - <route id="printing-stage--> opencrvs-stage new route"> - <from uri="eventbus://printing-new-bus-out" /> - <log message="printing-stage--> opencrvs-stage new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="eventbus://opencrvs-new-bus-in" /> - </otherwise> - </choice> - </route> - <route id="opencrvs-stage route --> new route"> - <from uri="eventbus://opencrvs-new-bus-out" /> - <log message="opencrvs-stage route--> route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </otherwise> - </choice> - </route> -</routes> diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml new file mode 100644 index 00000000000..1a8dfdd2149 --- /dev/null +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -0,0 +1,406 @@ +<routes xmlns="http://camel.apache.org/schema/spring"> + <route id="packet-receiver-->securezone-notification opencrvs_new route"> + <from uri="eventbus://packet-receiver-opencrvs_new-bus-out" /> + <log message="packet-receiver-->securezone-notification opencrvs_new ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <process ref="tokenGenerationProcessor" /> + <setHeader headerName="CamelHttpMethod"> + <constant>POST</constant> + </setHeader> + <setHeader headerName="Content-Type"> + <constant>application/json</constant> + </setHeader> + <setHeader headerName="Cookie"> + <simple>${header.Cookie}</simple> + </setHeader> + <setBody> + <simple>${bodyAs(String)}</simple> + </setBody> + <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + </otherwise> + </choice> + </route> + <route id="securezone-notification-->packet-uploader opencrvs_new route"> + <from uri="eventbus://securezone-notification-opencrvs_new-bus-out" /> + <log message="securezone-notification-->packet-uploader opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-uploader-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-uploader-->packet-validator opencrvs_new route"> + <from uri="eventbus://packet-uploader-opencrvs_new-bus-out" /> + <log message="packet-uploader-->packet-validator opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + </when> + <otherwise> + <to uri="eventbus://packet-validator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-validator-->packet-classifier opencrvs_new route"> + <from uri="eventbus://packet-validator-opencrvs_new-bus-out" /> + <log message="packet-validator-->packet-classifier opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://packet-classifier-bus-in" /> + </otherwise> + </choice> + </route> + <route id="packet-classifier-->demo-dedupe opencrvs_new route"> + <from uri="eventbus://packet-classifier-opencrvs_new-bus-out" /> + <log message="packet-classifier-->introducer-validator/demo-dedupe opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?((@['tags']['AGE_GROUP'] == 'INFANT' || @['tags']['AGE_GROUP'] == 'MINOR') && @['tags']['INTRODUCER_AVAILABILITY'] == 'true')]</jsonpath> + <to uri="eventbus://introducer-validator-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="introducer-validator-->demo-dedupe opencrvs_new route"> + <from uri="eventbus://introducer-validator-opencrvs_new-bus-out" /> + <log message="introducer-validator-->demo-dedupe opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://demo-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="demo-dedupe-->bio-dedupe opencrvs_new route"> + <from uri="eventbus://demo-dedupe-opencrvs_new-bus-out" /> + <log message="demo-dedupe-->bio-dedupe opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://bio-dedupe-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-handler-->abis-middleware opencrvs_new route"> + <from uri="eventbus://abis-handler-opencrvs_new-bus-out" /> + <log message="abis-handler-->abis-middleware opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> + <to uri="eventbus://abis-middle-ware-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'demo-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://demo-dedupe-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'bio-dedupe-bus-in')]</jsonpath> + <to uri="eventbus://bio-dedupe-bus-in" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> + <route id="bio-dedupe-->uin-generator opencrvs_new route"> + <from uri="eventbus://bio-dedupe-opencrvs_new-bus-out" /> + <log message="bio-dedupe-->uin-generator opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'verification-bus-in')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> + <to uri="eventbus://abis-handler-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="verification-->uin-generator opencrvs_new route"> + <from uri="eventbus://verification-opencrvs_new-bus-out" /> + <log message="verification-->uin-generator opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="abis-middleware-->abis-handler opencrvs_new route"> + <from uri="eventbus://abis-middle-ware-opencrvs_new-bus-out" /> + <log message="abis-middleware route-->abis-handler opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://abis-handler-bus-in" /> + </otherwise> + </choice> + </route> + <route id="manual-adjudication-->uin-generator opencrvs_new route"> + <from uri="eventbus://manual-adjudication-opencrvs_new-bus-out" /> + <log message="manual-adjudication-->uin-generator opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://uin-generator-bus-in" /> + </otherwise> + </choice> + </route> + <route id="uin-generator-->finalization opencrvs_new route"> + <from uri="eventbus://uin-generator-opencrvs_new-bus-out" /> + <log message="uin-generator-->finalization opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://finalization-bus-in" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> + <route id="finalization-->printing-stage opencrvs_new route"> + <from uri="eventbus://finalization-opencrvs_new-bus-out" /> + <log message="finalization-->printing-stage opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://printing-bus-in" /> + </otherwise> + </choice> + </route> + <route id="printing-stage-->opencrvs-stage opencrvs_new route"> + <from uri="eventbus://printing-opencrvs_new-bus-out" /> + <log message="printing-stage-->opencrvs-stage opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-failed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> + <otherwise> + <to uri="eventbus://opencrvs-bus-in" /> + </otherwise> + </choice> + </route> + <route id="opencrvs-stage--> opencrvs_new route"> + <from uri="eventbus://opencrvs-opencrvs_new-bus-out" /> + <log message="opencrvs-stage--> opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> + <otherwise> + <to uri="workflow-cmd://complete-as-processed" /> + <to uri="workflow-cmd://anonymous-profile" /> + </otherwise> + </choice> + </route> +</routes> From 707b97af5e2eea96558ba5511270a4ddf1aebc98 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 16 Mar 2022 13:22:08 +0530 Subject: [PATCH 0719/1358] [ DSD-841 ] disabled property mosip.kernel.keymanager.keystore.keyreference.enable.cache --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index e666b4f0bdf..f2e5d9edc28 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -347,7 +347,7 @@ zkcrypto.random.key.generate.count=10000 mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident # Keymanager service keystore cache properties -mosip.kernel.keymanager.keystore.keyreference.enable.cache=true +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false # API to get machine based on machine id mosip.kernel.syncdata-service-machine-url=${mosip.kernel.masterdata.url}/v1/masterdata/machines/%s/eng From 4cbc18d08a1146a08ac110a9f71bf2ae29b633b4 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 16 Mar 2022 13:59:11 +0530 Subject: [PATCH 0720/1358] [ DSD-841 ] updated object store url --- data-share-default.properties | 2 +- id-repository-default.properties | 2 +- packet-manager-default.properties | 2 +- pre-registration-default.properties | 2 +- registration-processor-default.properties | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 90c842de45b..3b2d73c9821 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -47,6 +47,6 @@ mosip.auth.filter_disable=false object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/id-repository-default.properties b/id-repository-default.properties index 16b7aa871f3..84ae5bed5a4 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -387,7 +387,7 @@ springdoc.swagger-ui.operationsSorter=alpha object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 59ac07098e9..bff47db960f 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -25,7 +25,7 @@ auth.server.admin.allowed.audience=mosip-regproc-client object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 9db0611fc40..94aea318127 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -437,7 +437,7 @@ mosip.security.authentication.provider.beans.list.pre-registration-booking-servi object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/registration-processor-default.properties b/registration-processor-default.properties index d73c556976b..21d4d90f030 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -935,7 +935,7 @@ mosip.auth.filter_disable=false object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} ## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 From e156be383dea24f5633c97b05e0f9190677aaaa6 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 16 Mar 2022 18:22:24 +0530 Subject: [PATCH 0721/1358] [ DSD-841 ] updated mosip.sync.entity.url.APPLICANTTYPE.MVEL --- syncdata-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 3f789c6d8b1..9a29894c198 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -402,7 +402,7 @@ mosip.kernel.masterdata.locationhierarchylevels.uri=${mosip.kernel.masterdata.ur # Make it to true if support is required. mosip.kernel.keymanager.113nothumbprint.support=false -mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.kernel.syncdata.url}/v1/syncdata/scripts/applicanttype.mvel +mosip.sync.entity.url.APPLICANTTYPE.MVEL=${mosip.api.internal.url}/v1/syncdata/scripts/applicanttype.mvel mosip.sync.entity.auth-required.APPLICANTTYPE.MVEL=true mosip.sync.entity.auth-token.APPLICANTTYPE.MVEL=Authorization:OAUTH mosip.sync.entity.encrypted.APPLICANTTYPE.MVEL=false From 5ca9fb94e1800d781e9c8cff1297ba24d74f16e3 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 18 Mar 2022 10:52:23 +0530 Subject: [PATCH 0722/1358] [MOSIP-8576] Added opencrvs.properties --- opencrvs-default.properties | 68 +++++++++++++++++++++++++++++++++++++ 1 file changed, 68 insertions(+) create mode 100644 opencrvs-default.properties diff --git a/opencrvs-default.properties b/opencrvs-default.properties new file mode 100644 index 00000000000..89454631360 --- /dev/null +++ b/opencrvs-default.properties @@ -0,0 +1,68 @@ +mediator.core.pool.size=2 +mediator.max.pool.size=2 +mediator.queue.capacity=500 + +opencrvs.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' + +opencrvs.center.id=45451 +opencrvs.machine.id=45452 +opencrvs.appid=opencrvs +opencrvs.appName=OPENCRVS +opencrvs.audit.app.id=${opencrvs.appid} +opencrvs.audit.app.name=${opencrvs.appName} +opencrvs.data.gender.default.lang.code=eng +opencrvs.data.lang.code.mapping=eng:eng|english|en,fra:french|fr|fra|fre +opencrvs.data.dummy.address.line1="[{\"language\":\"eng\",\"value\":\"1234, block 1, road no1\"}]" +opencrvs.data.dummy.address.line2="[{\"language\":\"eng\",\"value\":\"Street 1, place1\"}]" +opencrvs.data.dummy.address.line3="[{\"language\":\"eng\",\"value\":\"behind place2\"}]" +opencrvs.data.dummy.region="[{\"language\":\"eng\",\"value\":\"Rabat Sale Kenitra\"}]" +opencrvs.data.dummy.province="[{\"language\":\"eng\",\"value\":\"Kenitra\"}]" +opencrvs.data.dummy.city="[{\"language\":\"eng\",\"value\":\"Kenitra\"}]" +opencrvs.data.dummy.zone="[{\"language\":\"eng\",\"value\":\"Ben Mansour\"}]" +opencrvs.data.dummy.postal.code="[{\"language\":\"eng\",\"value\":\"14022\"}]" +# opencrvs.subscribe.startup=false +# opecnrvs.auth.url= +# opencrvs.callback.url= +# opencrvs.webhooks.url= +# opencrvs.client.id=mosip-opencrvs-client +# opencrvs.client.id=mosip-regproc-client +# opencrvs.client.secret.key=abc123 +# opencrvs.client.sha.secret=abc123 +# mosip.opencrvs.client.id=mosip-regproc-client +# mosip.opencrvs.client.secret.key= + +mosip.iam.token_endpoint=http://${keycloak.internal.host}/auth/realms/mosip/protocol/openid-connect/token + +config.server.file.storage.uri=http://config-server.config-server/config/*/default/release-1.2.0/ +registration.processor.identityjson=identity-mapping.json + +mosip.registration.processor.registration.sync.id=mosip.registration.sync +mosip.registration.processor.application.version=1.0 + +MIDSCHEMAURL=${mosip.kernel.syncdata-service-idschema-url} +SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=${mosip.packet.receiver.url}/registrationprocessor/v1/packetreceiver/registrationpackets +RIDGENERATION=http://ridgenerator.kernel/v1/ridgenerator/generate/rid + +IDSchema.Version=0.1 +id.repo.update=mosip.id.update +objectstore.crypto.name=OnlinePacketCryptoServiceImpl + +objectstore.adapter.name=PosixAdapter +object.store.base.location=./packets/mosip-opencrvs/ + +mosip.opencrvs.db.datasource.jdbc-url=jdbc:postgresql://postgres-postgresql.postgres:5432/mosip_opencrvs +mosip.opencrvs.db.datasource.username=opencrvsuser +# mosip.opencrvs.db.datasource.password= +mosip.opencrvs.db.datasource.birth.transaction.table=opencrvs.birth_transactions +mosip.opencrvs.db.datasource.cr.by=system +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + +mosip.opencrvs.kafka.bootstrap.server=kafka.kafka:9092 +mosip.opencrvs.kafka.topic=OPENCRVS_BIRTH_RECORDS +mosip.opencrvs.kafka.admin.request.timeout.ms=2000 +mosip.opencrvs.kafka.consumer.group.id=mediatorReceiver +mosip.opencrvs.kafka.consumer.poll.interval.ms=1000 +mosip.opencrvs.kafka.consumer.auto.offset.reset=latest +mosip.opencrvs.kafka.consumer.enable.auto.commit=true +mosip.opencrvs.kafka.consumer.auto.commit.interval.ms=500 \ No newline at end of file From 228bc501ee757bbb46e524f79f928991f1ee5a10 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 18 Mar 2022 12:33:38 +0530 Subject: [PATCH 0723/1358] [MOSIP-8576] Update opencrvs-default.properties --- opencrvs-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 89454631360..e79ddac2d8c 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -22,7 +22,7 @@ opencrvs.data.dummy.zone="[{\"language\":\"eng\",\"value\":\"Ben Mansour\"}]" opencrvs.data.dummy.postal.code="[{\"language\":\"eng\",\"value\":\"14022\"}]" # opencrvs.subscribe.startup=false # opecnrvs.auth.url= -# opencrvs.callback.url= +# opencrvs.birth.callback.url= # opencrvs.webhooks.url= # opencrvs.client.id=mosip-opencrvs-client # opencrvs.client.id=mosip-regproc-client @@ -65,4 +65,4 @@ mosip.opencrvs.kafka.consumer.group.id=mediatorReceiver mosip.opencrvs.kafka.consumer.poll.interval.ms=1000 mosip.opencrvs.kafka.consumer.auto.offset.reset=latest mosip.opencrvs.kafka.consumer.enable.auto.commit=true -mosip.opencrvs.kafka.consumer.auto.commit.interval.ms=500 \ No newline at end of file +mosip.opencrvs.kafka.consumer.auto.commit.interval.ms=500 From 03584ce16aad4e5b739c04a1242405d4bef856d0 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 18 Mar 2022 14:12:23 +0530 Subject: [PATCH 0724/1358] [MOSIP-8576] Added Startup delay for subscribe --- opencrvs-default.properties | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index e79ddac2d8c..431cf293b6c 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -1,6 +1,6 @@ -mediator.core.pool.size=2 -mediator.max.pool.size=2 -mediator.queue.capacity=500 +mediator.core.pool.size=20 +mediator.max.pool.size=200 +mediator.queue.capacity=50 opencrvs.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' @@ -21,6 +21,7 @@ opencrvs.data.dummy.city="[{\"language\":\"eng\",\"value\":\"Kenitra\"}]" opencrvs.data.dummy.zone="[{\"language\":\"eng\",\"value\":\"Ben Mansour\"}]" opencrvs.data.dummy.postal.code="[{\"language\":\"eng\",\"value\":\"14022\"}]" # opencrvs.subscribe.startup=false +# opencrvs.subscribe.startup.delay.ms= # opecnrvs.auth.url= # opencrvs.birth.callback.url= # opencrvs.webhooks.url= From 84fd84f3177d1ad2497ad3fc03479e1d11e91943 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 18 Mar 2022 16:02:18 +0530 Subject: [PATCH 0725/1358] Keycloak host->url. --- opencrvs-default.properties | 9 +++++++-- 1 file changed, 7 insertions(+), 2 deletions(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 89454631360..91d8a56f973 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -1,3 +1,8 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# keycloak.internal.url + mediator.core.pool.size=2 mediator.max.pool.size=2 mediator.queue.capacity=500 @@ -31,7 +36,7 @@ opencrvs.data.dummy.postal.code="[{\"language\":\"eng\",\"value\":\"14022\"}]" # mosip.opencrvs.client.id=mosip-regproc-client # mosip.opencrvs.client.secret.key= -mosip.iam.token_endpoint=http://${keycloak.internal.host}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token config.server.file.storage.uri=http://config-server.config-server/config/*/default/release-1.2.0/ registration.processor.identityjson=identity-mapping.json @@ -65,4 +70,4 @@ mosip.opencrvs.kafka.consumer.group.id=mediatorReceiver mosip.opencrvs.kafka.consumer.poll.interval.ms=1000 mosip.opencrvs.kafka.consumer.auto.offset.reset=latest mosip.opencrvs.kafka.consumer.enable.auto.commit=true -mosip.opencrvs.kafka.consumer.auto.commit.interval.ms=500 \ No newline at end of file +mosip.opencrvs.kafka.consumer.auto.commit.interval.ms=500 From 9018baaeb9ed78d2e8cb22e0e0650cc1043d5fdf Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 18 Mar 2022 18:47:16 +0530 Subject: [PATCH 0726/1358] [MOSIP-8576] Edited opencrvs props --- opencrvs-default.properties | 34 +++++++++++++++++++++++++--------- 1 file changed, 25 insertions(+), 9 deletions(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 564a4639ced..359eb01e3ad 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -1,8 +1,24 @@ -# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# Following properites have their values assigned via 'overrides' environment variables of config server docker. # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # keycloak.internal.url +# Following properties get their values from environment variables of mediator helm chart. +# DO NOT define the following properties in this file. + +# opencrvs.subscribe.startup=false +# opencrvs.subscribe.startup.delay.ms= +# opecnrvs.auth.url= +# opencrvs.birth.callback.url= +# opencrvs.webhooks.url= +# opencrvs.client.id=mosip-opencrvs-client +# opencrvs.client.id=mosip-regproc-client +# opencrvs.client.secret.key=abc123 +# opencrvs.client.sha.secret=abc123 +# mosip.opencrvs.client.id=mosip-regproc-client +# mosip.opencrvs.client.secret.key= +# mosip.opencrvs.db.datasource.password= + mediator.core.pool.size=20 mediator.max.pool.size=200 mediator.queue.capacity=50 @@ -17,14 +33,14 @@ opencrvs.audit.app.id=${opencrvs.appid} opencrvs.audit.app.name=${opencrvs.appName} opencrvs.data.gender.default.lang.code=eng opencrvs.data.lang.code.mapping=eng:eng|english|en,fra:french|fr|fra|fre -opencrvs.data.dummy.address.line1="[{\"language\":\"eng\",\"value\":\"1234, block 1, road no1\"}]" -opencrvs.data.dummy.address.line2="[{\"language\":\"eng\",\"value\":\"Street 1, place1\"}]" -opencrvs.data.dummy.address.line3="[{\"language\":\"eng\",\"value\":\"behind place2\"}]" -opencrvs.data.dummy.region="[{\"language\":\"eng\",\"value\":\"Rabat Sale Kenitra\"}]" -opencrvs.data.dummy.province="[{\"language\":\"eng\",\"value\":\"Kenitra\"}]" -opencrvs.data.dummy.city="[{\"language\":\"eng\",\"value\":\"Kenitra\"}]" -opencrvs.data.dummy.zone="[{\"language\":\"eng\",\"value\":\"Ben Mansour\"}]" -opencrvs.data.dummy.postal.code="[{\"language\":\"eng\",\"value\":\"14022\"}]" +opencrvs.data.dummy.address.line1=[{"language":"eng","value":"1234, block 1, road no1"}] +opencrvs.data.dummy.address.line2=[{"language":"eng","value":"Street 1, place1"}] +opencrvs.data.dummy.address.line3=[{"language":"eng","value":"behind place2"}] +opencrvs.data.dummy.region=[{"language":"eng","value":"Rabat Sale Kenitra"}] +opencrvs.data.dummy.province=[{"language":"eng","value":"Kenitra"}] +opencrvs.data.dummy.city=[{"language":"eng","value":"Kenitra"}] +opencrvs.data.dummy.zone=[{"language":"eng","value":"Ben Mansour"}] +opencrvs.data.dummy.postal.code=[{"language":"eng","value":"14022"}] # opencrvs.subscribe.startup=false # opencrvs.subscribe.startup.delay.ms= # opecnrvs.auth.url= From c189586c24b6a16a55edb84ac9a6f487d4fe37c6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 18 Mar 2022 22:30:36 +0530 Subject: [PATCH 0727/1358] Comments added. --- data-share-default.properties | 3 ++- id-repository-default.properties | 3 ++- packet-manager-default.properties | 3 ++- pre-registration-default.properties | 3 ++- registration-processor-default.properties | 3 ++- 5 files changed, 10 insertions(+), 5 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 3b2d73c9821..3be30655e2d 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -46,7 +46,8 @@ mosip.auth.filter_disable=false # Object store object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/id-repository-default.properties b/id-repository-default.properties index 84ae5bed5a4..ca5ca033644 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -386,7 +386,8 @@ springdoc.swagger-ui.operationsSorter=alpha # Object store object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/packet-manager-default.properties b/packet-manager-default.properties index bff47db960f..85f29c401f3 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -24,7 +24,8 @@ auth.server.admin.allowed.audience=mosip-regproc-client # Object store object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 94aea318127..3ddd062e75e 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -436,7 +436,8 @@ mosip.security.authentication.provider.beans.list.pre-registration-booking-servi object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 21d4d90f030..b6fcc1c507f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -934,7 +934,8 @@ mosip.auth.filter_disable=false ## Object store object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 From 8084822741a5664472413f546c1c048f46e6d89a Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Fri, 18 Mar 2022 22:56:00 +0530 Subject: [PATCH 0728/1358] Opencrvs added as source. --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 0751b3794cd..bcd3d26c6ae 100644 --- a/application-default.properties +++ b/application-default.properties @@ -338,10 +338,10 @@ mosip.registration.gps_device_enable_flag=n ## Packet manager ## if source is not passed, packetmanager supports below default strategy - ## 1. 'exception' : it will throw exception. -## 2. 'defaultPriority' : use default priority packetmanager.default.priority. +## 2. 'defaultPriority' : use default priority packetmanager.default.priority. packetmanager.default.read.strategy=defaultPriority packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT -packetmanager.name.source={default:'REGISTRATION_CLIENT',resident:'RESIDENT'} +packetmanager.name.source={default:'REGISTRATION_CLIENT',resident:'RESIDENT',opencrvs:'OPENCRVS'} packetmanager.packet.signature.disable-verification=true mosip.commons.packetnames=id,evidence,optional provider.packetreader.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|BIOMETRIC_CORRECTION,classname:io.mosip.commons.packet.impl.PacketReaderImpl From d2ae9225c6ac3a898ca922a1d3f2395be918b866 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Sat, 19 Mar 2022 15:55:39 +0530 Subject: [PATCH 0729/1358] [MOSIP-8576] Added birth process type --- opencrvs-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 359eb01e3ad..52601297ab5 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -53,6 +53,9 @@ opencrvs.data.dummy.postal.code=[{"language":"eng","value":"14022"}] # mosip.opencrvs.client.id=mosip-regproc-client # mosip.opencrvs.client.secret.key= +# The following process.type should the same one present in provider.packetwriter.opencrvs and provider.packetreader.opencrvs, in application-default.properties +opencrvs.birth.process.type=OPENCRVS_NEW + mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token config.server.file.storage.uri=http://config-server.config-server/config/*/default/release-1.2.0/ From 8eb02e5d4bf0da47f146196c977504ed80eae05d Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 19 Mar 2022 17:49:50 +0530 Subject: [PATCH 0730/1358] Opencrvs process added. --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b6fcc1c507f..674e1c5cd88 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -69,7 +69,7 @@ worker.pool.size=10 camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml # main processor used in stages -registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE +registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE,OPENCRVS_NEW # sub processor used in stages registration.processor.sub-processes=BIOMETRIC_CORRECTION @@ -741,7 +741,7 @@ packetmanager.name.source.resident=RESIDENT packetmanager.name.source.default=REGISTRATION_CLIENT object.store.s3.use.account.as.bucketname=true -# default priority for correction packets +# Default priority for correction packets. # To define priority use below stage names. For example, field 'gender' has priority in uin-generator-stage. The key for uin-generator-stage is 'uingenerator'. So the key would be 'packetmanager.provider.uingenerator.gender' # packetreceiver,packetuploader,packetvalidator,qualitychecker,osivalidator,demodedupe,classification,biodedupe,bioauth,manualverification,uingenerator,messagesender packetmanager.provider.uingenerator.lastName=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT From 1735ad3ffe651f10986cfabff83336b4508097aa Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Sat, 19 Mar 2022 17:54:32 +0530 Subject: [PATCH 0731/1358] [MOSIP-8576] Added prop to disable reproduce opencrvs --- opencrvs-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 52601297ab5..6d99a5ebb1d 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -56,6 +56,10 @@ opencrvs.data.dummy.postal.code=[{"language":"eng","value":"14022"}] # The following process.type should the same one present in provider.packetwriter.opencrvs and provider.packetreader.opencrvs, in application-default.properties opencrvs.birth.process.type=OPENCRVS_NEW +# Incase the mediator encounters error creating and uploading the packet, it will reproduce the same if this is true. +opencrvs.reproduce.on.error=false +opencrvs.reproduce.on.error.delay.ms=10000 + mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token config.server.file.storage.uri=http://config-server.config-server/config/*/default/release-1.2.0/ From bcd92e5e4b0a9fe938e3ce49ad524c0cb1491ad9 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sat, 19 Mar 2022 18:43:48 +0530 Subject: [PATCH 0732/1358] Camel flow file for opencrvs added in configuration. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 674e1c5cd88..70c2773ae58 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -66,7 +66,7 @@ cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow -camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml +camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml,registration-processor-camel-routes-opencrvs_new-default.xml # main processor used in stages registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE,OPENCRVS_NEW From 5ae1bd5c83d10906a9ce09e839fec16bab55b197 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Mon, 21 Mar 2022 10:04:35 +0530 Subject: [PATCH 0733/1358] reduced the registration.processor.reprocess.elapse.time to 300 --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1b29817f1f0..2b06e5fd297 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -288,7 +288,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=4800 +registration.processor.reprocess.elapse.time=300 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From 1fe60fa4fc6822ac14f0e89e632b71ffec761967 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 21 Mar 2022 11:58:43 +0530 Subject: [PATCH 0734/1358] [ DSD-841 ] updated resident url in resident-app-default.properties --- application-default.properties | 3 ++- resident-app-default.properties | 2 +- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index bcd3d26c6ae..28b7593fd98 100644 --- a/application-default.properties +++ b/application-default.properties @@ -12,7 +12,7 @@ aplication.configuration.level.version=LTS ## Idobject validator -# This config is used for loading recommended centers based on the value of the config. +# This config is used for loading recommended centers based on the value of the config. # The value depicts the location hierarchy code of the hierarchy based on which the recommended centers is loaded mosip.recommended.centers.locCode=5 @@ -46,6 +46,7 @@ mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida mosip.ida.auth.url=http://ida-auth.ida mosip.ida.otp.url=http://ida-otp.ida +mosip.resident.url=http://resident.resident kafka.profile=kafka.svc.cluster.local kafka.port=9092 diff --git a/resident-app-default.properties b/resident-app-default.properties index c940c0d0e04..ed88cffe46a 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -1,7 +1,7 @@ # MOSIP public.url=https://${mosip.api.internal.host}/residentmobileapp -mosip.resident.base.url=${mosip.resident-service.url}/resident/v1 +mosip.resident.base.url=${mosip.resident.url}/resident/v1 RESIDENT_OTP=${mosip.resident.base.url}/req/otp From f54334f7428376f4a1191e906a8ea12e089720c0 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 21 Mar 2022 17:16:42 +0530 Subject: [PATCH 0735/1358] [ DSD-841 ] updated audit manager url in admin-default.properties --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 6e2c97c7346..fb8d02b8419 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -172,7 +172,7 @@ mosip.kernel.registrationcenterid.length=5 mosip.kernel.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits -mosip.admin-services.audit.manager.api=${mosip.auditmanager-service.url}/v1/auditmanager/audits +mosip.admin-services.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client From b3d5bbc65be156a74cc5683d54a851de326587b3 Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Tue, 22 Mar 2022 11:43:03 +0530 Subject: [PATCH 0736/1358] enable debug logging --- admin-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index fb8d02b8419..99b369cd75b 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -231,7 +231,7 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.lostrid.version=1.0 LOST_RID_API=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/lostridsearch -#logging.level.org.springframework.web.client.RestTemplate=DEBUG +logging.level.org.springframework.web.client.RestTemplate=DEBUG # Roles mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN @@ -290,4 +290,4 @@ mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.u # this property are used in AdminProxyService to get base url and version mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 -mosip.admin.base.url=https://${mosip.api.internal.host}/ \ No newline at end of file +mosip.admin.base.url=https://${mosip.api.internal.host}/ From cb4ef3c60cf9afda837a25b29111b06660d87be3 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Mar 2022 12:32:49 +0530 Subject: [PATCH 0737/1358] Opencrvs property added. --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index bcd3d26c6ae..360d43056cf 100644 --- a/application-default.properties +++ b/application-default.properties @@ -340,7 +340,8 @@ mosip.registration.gps_device_enable_flag=n ## 1. 'exception' : it will throw exception. ## 2. 'defaultPriority' : use default priority packetmanager.default.priority. packetmanager.default.read.strategy=defaultPriority -packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +#packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT +packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT,source:OPENCRVS\/process:OPENCRVS_NEW packetmanager.name.source={default:'REGISTRATION_CLIENT',resident:'RESIDENT',opencrvs:'OPENCRVS'} packetmanager.packet.signature.disable-verification=true mosip.commons.packetnames=id,evidence,optional From 0b30b3fe1a951c5d22b2e775db449aa1e9037584 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Mar 2022 12:42:25 +0530 Subject: [PATCH 0738/1358] Minor cleanup. --- application-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 138762972c3..c9e99c52b79 100644 --- a/application-default.properties +++ b/application-default.properties @@ -341,7 +341,6 @@ mosip.registration.gps_device_enable_flag=n ## 1. 'exception' : it will throw exception. ## 2. 'defaultPriority' : use default priority packetmanager.default.priority. packetmanager.default.read.strategy=defaultPriority -#packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT packetmanager.default.priority=source:REGISTRATION_CLIENT\/process:BIOMETRIC_CORRECTION|NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT,source:OPENCRVS\/process:OPENCRVS_NEW packetmanager.name.source={default:'REGISTRATION_CLIENT',resident:'RESIDENT',opencrvs:'OPENCRVS'} packetmanager.packet.signature.disable-verification=true From b223abced8846bed8c5b1a25208961c9fc10ba46 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Mar 2022 13:25:17 +0530 Subject: [PATCH 0739/1358] Mandatory fields for opencrvs added. --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index c9e99c52b79..01ada94cccb 100644 --- a/application-default.properties +++ b/application-default.properties @@ -73,6 +73,7 @@ mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.child-registra mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.other=IDSchemaVersion,UIN mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.lost=IDSchemaVersion mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.biometric_correction=IDSchemaVersion +mosip.kernel.idobjectvalidator.mandatory-attributes.reg-processor.opencrvs_new=IDSchemaVersion # Value used in IdObjectReferenceValidator when value is not available mosip.kernel.idobjectvalidator.masterdata.value-not-available=NA From 774ef047f593beb7a805899d975990a9bd74f243 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Tue, 22 Mar 2022 14:21:51 +0530 Subject: [PATCH 0740/1358] [MOSIP-8576] Changing identity fields --- opencrvs-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 6d99a5ebb1d..0fee5d03530 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -40,7 +40,8 @@ opencrvs.data.dummy.region=[{"language":"eng","value":"Rabat Sale Kenitra"}] opencrvs.data.dummy.province=[{"language":"eng","value":"Kenitra"}] opencrvs.data.dummy.city=[{"language":"eng","value":"Kenitra"}] opencrvs.data.dummy.zone=[{"language":"eng","value":"Ben Mansour"}] -opencrvs.data.dummy.postal.code=[{"language":"eng","value":"14022"}] +opencrvs.data.dummy.postal.code="14022" +opencrvs.data.dummy.phone="9898989898" # opencrvs.subscribe.startup=false # opencrvs.subscribe.startup.delay.ms= # opecnrvs.auth.url= From a93e14d90e37ec274181e1c5c0cf7e7bbce8557e Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Tue, 22 Mar 2022 16:32:50 +0530 Subject: [PATCH 0741/1358] Added mosip.service.end-points property --- admin-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/admin-default.properties b/admin-default.properties index 99b369cd75b..64dcb7fea4d 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -291,3 +291,4 @@ mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.u mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=https://${mosip.api.internal.host}/ +mosip.service.end-points=/**/masterdata/**,/**/keymanager/** From a38bc6b6c1432929e4596ecbd49aecb4b8b63515 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Mar 2022 21:17:18 +0530 Subject: [PATCH 0742/1358] Dedupe for infant enabled. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 0783898a9b6..f4fcd39c378 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -408,7 +408,7 @@ mosip.registration.processor.sms.id=mosip.sms.send registration.processor.signature.isEnabled=true ## Enable this flag only if infant biometrics are captured, and dedup is desired. -registration.processor.infant.dedupe=N +registration.processor.infant.dedupe=Y # ID Authentication IDAUTHENCRYPTION=${IDAINTERNAL}/idauthentication/v1/internal/encrypt From c20de21233f5e5281cdb86f4651ac2c051b10462 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Mar 2022 21:36:09 +0530 Subject: [PATCH 0743/1358] Reverted previous change. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f4fcd39c378..0783898a9b6 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -408,7 +408,7 @@ mosip.registration.processor.sms.id=mosip.sms.send registration.processor.signature.isEnabled=true ## Enable this flag only if infant biometrics are captured, and dedup is desired. -registration.processor.infant.dedupe=Y +registration.processor.infant.dedupe=N # ID Authentication IDAUTHENCRYPTION=${IDAINTERNAL}/idauthentication/v1/internal/encrypt From 6fe8cbcff1c415f833bffe5d2ca4198c7cb0bbc2 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Tue, 22 Mar 2022 21:51:16 +0530 Subject: [PATCH 0744/1358] Biodedupe stage removed. --- ...ssor-camel-routes-opencrvs_new-default.xml | 152 +----------------- 1 file changed, 2 insertions(+), 150 deletions(-) diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml index 1a8dfdd2149..ec4fbf3b448 100644 --- a/registration-processor-camel-routes-opencrvs_new-default.xml +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -148,157 +148,9 @@ </otherwise> </choice> </route> - <route id="demo-dedupe-->bio-dedupe opencrvs_new route"> + <route id="demo-dedupe-->uin-generator opencrvs_new route"> <from uri="eventbus://demo-dedupe-opencrvs_new-bus-out" /> - <log message="demo-dedupe-->bio-dedupe opencrvs_new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-rejected" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> - <to uri="eventbus://abis-handler-bus-in" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> - <to uri="eventbus://manual-adjudication-bus-in" /> - </when> - <otherwise> - <to uri="eventbus://bio-dedupe-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-handler-->abis-middleware opencrvs_new route"> - <from uri="eventbus://abis-handler-opencrvs_new-bus-out" /> - <log message="abis-handler-->abis-middleware opencrvs_new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-middle-ware-bus-in')]</jsonpath> - <to uri="eventbus://abis-middle-ware-bus-in" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'demo-dedupe-bus-in')]</jsonpath> - <to uri="eventbus://demo-dedupe-bus-in" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'bio-dedupe-bus-in')]</jsonpath> - <to uri="eventbus://bio-dedupe-bus-in" /> - </when> - <otherwise> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </otherwise> - </choice> - </route> - <route id="bio-dedupe-->uin-generator opencrvs_new route"> - <from uri="eventbus://bio-dedupe-opencrvs_new-bus-out" /> - <log message="bio-dedupe-->uin-generator opencrvs_new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-rejected" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'verification-bus-in')]</jsonpath> - <to uri="eventbus://verification-bus-in" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> - <to uri="eventbus://abis-handler-bus-in" /> - </when> - <when> - <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> - <to uri="eventbus://manual-adjudication-bus-in" /> - </when> - <otherwise> - <to uri="eventbus://uin-generator-bus-in" /> - </otherwise> - </choice> - </route> - <route id="verification-->uin-generator opencrvs_new route"> - <from uri="eventbus://verification-opencrvs_new-bus-out" /> - <log message="verification-->uin-generator opencrvs_new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="eventbus://uin-generator-bus-in" /> - </otherwise> - </choice> - </route> - <route id="abis-middleware-->abis-handler opencrvs_new route"> - <from uri="eventbus://abis-middle-ware-opencrvs_new-bus-out" /> - <log message="abis-middleware route-->abis-handler opencrvs_new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> - <when> - <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> - <to uri="workflow-cmd://complete-as-failed" /> - <to uri="workflow-cmd://anonymous-profile" /> - </when> - <otherwise> - <to uri="eventbus://abis-handler-bus-in" /> - </otherwise> - </choice> - </route> - <route id="manual-adjudication-->uin-generator opencrvs_new route"> - <from uri="eventbus://manual-adjudication-opencrvs_new-bus-out" /> - <log message="manual-adjudication-->uin-generator opencrvs_new route ${bodyAs(String)}" /> + <log message="demo-dedupe-->uin-generator opencrvs_new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> From f4e1383d75675ba55423128f46b256c91729a5d5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 23 Mar 2022 06:31:48 +0530 Subject: [PATCH 0745/1358] Minor change in print property. --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index c9ff24e6a4f..6a0a4c9fd38 100644 --- a/print-default.properties +++ b/print-default.properties @@ -10,7 +10,7 @@ mosip.partner.id=mpartner-default-print mosip.datashare.partner.id=mpartner-default-resident mosip.datashare.policy.id=mpolicy-default-resident ## This callback is called by Websub to notify print -mosip.event.callBackUrl=http://print-service.print/${server.servlet.context-path}/print/callback/notifyPrint +mosip.event.callBackUrl=http://print-service.print${server.servlet.context-path}/print/callback/notifyPrint mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED mosip.event.secret=${print.websub.hub.secret} From dcd0f1196397873a2b465b865b21620796a5238e Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Thu, 24 Mar 2022 11:17:37 +0530 Subject: [PATCH 0746/1358] [MOSIP-20858] Regproc Opencrvs stage added --- ...ssor-camel-routes-opencrvs_new-default.xml | 21 ++++--------------- registration-processor-default.properties | 10 +++++++++ 2 files changed, 14 insertions(+), 17 deletions(-) diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml index ec4fbf3b448..455d206d304 100644 --- a/registration-processor-camel-routes-opencrvs_new-default.xml +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -214,13 +214,13 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://printing-bus-in" /> + <to uri="eventbus://opencrvs-bus-in" /> </otherwise> </choice> </route> - <route id="printing-stage-->opencrvs-stage opencrvs_new route"> - <from uri="eventbus://printing-opencrvs_new-bus-out" /> - <log message="printing-stage-->opencrvs-stage opencrvs_new route ${bodyAs(String)}" /> + <route id="opencrvs-stage--> opencrvs_new route"> + <from uri="eventbus://opencrvs-opencrvs_new-bus-out" /> + <log message="opencrvs-stage--> opencrvs_new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -236,19 +236,6 @@ <to uri="workflow-cmd://complete-as-failed" /> <to uri="workflow-cmd://anonymous-profile" /> </when> - <otherwise> - <to uri="eventbus://opencrvs-bus-in" /> - </otherwise> - </choice> - </route> - <route id="opencrvs-stage--> opencrvs_new route"> - <from uri="eventbus://opencrvs-opencrvs_new-bus-out" /> - <log message="opencrvs-stage--> opencrvs_new route ${bodyAs(String)}" /> - <choice> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> <to uri="workflow-cmd://anonymous-profile" /> diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 0783898a9b6..6f128404fcc 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -737,6 +737,16 @@ mosip.regproc.printing.server.port=8099 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 +#opencrvs-stage +mosip.regproc.opencrvs.eventbus.kafka.commit.type=single +mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 +mosip.regproc.opencrvs.eventbus.kafka.poll.frequency=100 +mosip.regproc.opencrvs.eventbus.kafka.group.id=opencrvs-stage +mosip.regproc.opencrvs.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.opencrvs.server.port=8045 +mosip.regproc.opencrvs.server.servlet.path=/registrationprocessor/v1/opencrvs-stage +mosip.regproc.opencrvs.eventbus.port=5745 + packetmanager.name.source.resident=RESIDENT packetmanager.name.source.default=REGISTRATION_CLIENT object.store.s3.use.account.as.bucketname=true From 735bb466cab92d279c5dfadd1820be25cca6f5ba Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Thu, 24 Mar 2022 16:05:57 +0530 Subject: [PATCH 0747/1358] [MOSIP-20858] Regproc Opencrvs stage edited --- registration-processor-camel-routes-opencrvs_new-default.xml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml index 455d206d304..40fd34e8e87 100644 --- a/registration-processor-camel-routes-opencrvs_new-default.xml +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -195,9 +195,9 @@ </otherwise> </choice> </route> - <route id="finalization-->printing-stage opencrvs_new route"> + <route id="finalization-->opencrvs-stage opencrvs_new route"> <from uri="eventbus://finalization-opencrvs_new-bus-out" /> - <log message="finalization-->printing-stage opencrvs_new route ${bodyAs(String)}" /> + <log message="finalization-->opencrvs-stage opencrvs_new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> From bf7b77444256712a69d861cae4f9ff556660734a Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 25 Mar 2022 16:25:31 +0530 Subject: [PATCH 0748/1358] [MOSIP-20858] Added issuer and credentialtype for opencrvs partner --- partner-management-default.properties | 2 +- registration-processor-default.properties | 2 ++ 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 6fbca0f5b48..ff381272d19 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -180,7 +180,7 @@ mosip.security.secure-cookie:false partner.search.maximum.rows=10 ## Allowed credential types which partner can map against to policy -pmp.allowed.credential.types=auth,qrcode,euin,reprint,vercred +pmp.allowed.credential.types=auth,qrcode,euin,reprint,vercred,opencrvs ## Allowed partner types who can map policies to credential types policy.credential.type.mapping.allowed.partner.types=Credential_Partner,Online_Verification_Partner diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 6f128404fcc..5c75b070772 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -746,6 +746,8 @@ mosip.regproc.opencrvs.message.expiry-time-limit=${mosip.regproc.common.stage.me mosip.regproc.opencrvs.server.port=8045 mosip.regproc.opencrvs.server.servlet.path=/registrationprocessor/v1/opencrvs-stage mosip.regproc.opencrvs.eventbus.port=5745 +mosip.regproc.opencrvs.credentialtype=opencrvs +mosip.regproc.opencrvs.issuer=opencrvs-partner packetmanager.name.source.resident=RESIDENT packetmanager.name.source.default=REGISTRATION_CLIENT From f99f8b833911f0a94646ee83047a5b7fa1d31072 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 25 Mar 2022 18:12:11 +0530 Subject: [PATCH 0749/1358] [MOSIP-20858] Revereted the camel opencrvs stage --- ...ssor-camel-routes-opencrvs_new-default.xml | 25 ++++++++++++++----- 1 file changed, 19 insertions(+), 6 deletions(-) diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml index 40fd34e8e87..ec4fbf3b448 100644 --- a/registration-processor-camel-routes-opencrvs_new-default.xml +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -195,9 +195,9 @@ </otherwise> </choice> </route> - <route id="finalization-->opencrvs-stage opencrvs_new route"> + <route id="finalization-->printing-stage opencrvs_new route"> <from uri="eventbus://finalization-opencrvs_new-bus-out" /> - <log message="finalization-->opencrvs-stage opencrvs_new route ${bodyAs(String)}" /> + <log message="finalization-->printing-stage opencrvs_new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -214,13 +214,13 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="eventbus://opencrvs-bus-in" /> + <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> </route> - <route id="opencrvs-stage--> opencrvs_new route"> - <from uri="eventbus://opencrvs-opencrvs_new-bus-out" /> - <log message="opencrvs-stage--> opencrvs_new route ${bodyAs(String)}" /> + <route id="printing-stage-->opencrvs-stage opencrvs_new route"> + <from uri="eventbus://printing-opencrvs_new-bus-out" /> + <log message="printing-stage-->opencrvs-stage opencrvs_new route ${bodyAs(String)}" /> <choice> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == true)]</jsonpath> @@ -236,6 +236,19 @@ <to uri="workflow-cmd://complete-as-failed" /> <to uri="workflow-cmd://anonymous-profile" /> </when> + <otherwise> + <to uri="eventbus://opencrvs-bus-in" /> + </otherwise> + </choice> + </route> + <route id="opencrvs-stage--> opencrvs_new route"> + <from uri="eventbus://opencrvs-opencrvs_new-bus-out" /> + <log message="opencrvs-stage--> opencrvs_new route ${bodyAs(String)}" /> + <choice> + <when> + <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> + <to uri="workflow-cmd://mark-as-reprocess" /> + </when> <otherwise> <to uri="workflow-cmd://complete-as-processed" /> <to uri="workflow-cmd://anonymous-profile" /> From d2138f317036b4c613dc28c715da42add280a25d Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Mon, 28 Mar 2022 12:57:38 +0530 Subject: [PATCH 0750/1358] [MOSIP-8576] Added allowed audience --- data-share-default.properties | 2 +- id-repository-default.properties | 2 +- kernel-default.properties | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 3be30655e2d..6be511ea086 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -39,7 +39,7 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=false mosip.role.durian.postcreatepolicyidsubscriberid=CREATE_SHARE -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client,mpartner-default-print,mosip-resident-client +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client,mpartner-default-print,mosip-resident-client,opencrvs-partner mosip.auth.filter_disable=false diff --git a/id-repository-default.properties b/id-repository-default.properties index ca5ca033644..88fceca6f48 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -378,7 +378,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha diff --git a/kernel-default.properties b/kernel-default.properties index f2e5d9edc28..ae709711646 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -429,7 +429,7 @@ mosip.kernel.partner.issuer.certificate.allowed.grace.duration=0 #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} From 1fb6b8f3a41b7395d7982695e00f163203c5d8ee Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Mon, 28 Mar 2022 13:12:00 +0530 Subject: [PATCH 0751/1358] Added auth.allowed.urls in develop3-v3 --- admin-default.properties | 1 + kernel-default.properties | 5 ++++- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 64dcb7fea4d..6cf80f60a72 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -292,3 +292,4 @@ mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=https://${mosip.api.internal.host}/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** +auth.allowed.urls=${mosip.api.internal.url}/admin-ui/ diff --git a/kernel-default.properties b/kernel-default.properties index ae709711646..adeee4bde3b 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -735,5 +735,8 @@ mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHE mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE - +mosip.kernel.masterdata.template_idauthentication_event=MASTERDATA_IDAUTHENTICATION_TEMPLATES +mosip.kernel.masterdata.title_event=MASTERDATA_TITLES mosip.kernel.keymanager.jwtsign.validate.json=false + +auth.allowed.urls=http://localhost:5000/ From 0595a6fe71efda23954c3040ebff8a7790003fed Mon Sep 17 00:00:00 2001 From: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> Date: Mon, 28 Mar 2022 14:51:14 +0530 Subject: [PATCH 0752/1358] Removed grace.period property. --- kernel-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index f2e5d9edc28..ad5b76e5ac5 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -420,7 +420,6 @@ mosip.kernel.masterdata.auth-user-details=/userdetails ## scheduler do it's job at 2am scheduling.job.cron=0 0 2 * * ? -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=0 # masterdata swagger openApi #openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} From c319dd42041d1f58b51cfeadfb619538bd0f91ce Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <mandeep.kumar@technoforte.co.in> Date: Tue, 29 Mar 2022 18:47:53 +0530 Subject: [PATCH 0753/1358] Update admin-default.properties --- admin-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/admin-default.properties b/admin-default.properties index 6cf80f60a72..3cd2558756c 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -7,6 +7,7 @@ # mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.regproc.client.secret +logging.level.org.springframework.security=DEBUG mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST ## Database properties From c408372bdabcce5044e10b2580f60c0518473fc9 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <mandeep.kumar@technoforte.co.in> Date: Tue, 29 Mar 2022 18:59:03 +0530 Subject: [PATCH 0754/1358] Update admin-default.properties --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 3cd2558756c..bd4b34f5166 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -188,7 +188,7 @@ mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client ## Security -mosip.security.csrf-enable=true +mosip.security.csrf-enable=false mosip.security.cors-enable=true mosip.security.origins=localhost:8080 mosip.security.secure-cookie=false From 582984df685686cf8284ddf2f27fc3e351403f7a Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Tue, 29 Mar 2022 19:12:40 +0530 Subject: [PATCH 0755/1358] modified allowed url for admin --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index bd4b34f5166..0368b408369 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -293,4 +293,4 @@ mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=https://${mosip.api.internal.host}/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** -auth.allowed.urls=${mosip.api.internal.url}/admin-ui/ +auth.allowed.urls=https://admin.dev3.mosip.net/ From 69597735dbf3840521fc3b4d8e64ad2ab1c6ecbd Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <mandeep.kumar@technoforte.co.in> Date: Tue, 29 Mar 2022 20:00:42 +0530 Subject: [PATCH 0756/1358] Revert "modified allowed url for admin" --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 0368b408369..bd4b34f5166 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -293,4 +293,4 @@ mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=https://${mosip.api.internal.host}/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** -auth.allowed.urls=https://admin.dev3.mosip.net/ +auth.allowed.urls=${mosip.api.internal.url}/admin-ui/ From bbb1df5d48a47d88fe82acc9bf798ff58dd42b6b Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Tue, 29 Mar 2022 20:13:01 +0530 Subject: [PATCH 0757/1358] modified allowed url for admin --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index bd4b34f5166..0368b408369 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -293,4 +293,4 @@ mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=https://${mosip.api.internal.host}/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** -auth.allowed.urls=${mosip.api.internal.url}/admin-ui/ +auth.allowed.urls=https://admin.dev3.mosip.net/ From 8220799974793aa5377457e6fc2a4432e64347d8 Mon Sep 17 00:00:00 2001 From: Mandeep Dhiman <mandeep.kumar@technoforte.co.in> Date: Wed, 30 Mar 2022 09:32:20 +0530 Subject: [PATCH 0758/1358] Update admin-default.properties --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 0368b408369..eaab1dd8e89 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -7,7 +7,7 @@ # mosip.admin.client.secret (convention: <realm>.<keycloak client name>.secret) # mosip.regproc.client.secret -logging.level.org.springframework.security=DEBUG + mosip.admin.version-id=v1.0 mosip.admin.request-id=ADMIN.REQUEST ## Database properties From f352bef613bf6e52acb28e1a1a8181a8b661c6f4 Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Wed, 30 Mar 2022 11:56:55 +0530 Subject: [PATCH 0759/1358] disable cors for admin --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index eaab1dd8e89..e9139c7ae5c 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -189,7 +189,7 @@ mosip.ui.spec.default.domain=registration-client ## Security mosip.security.csrf-enable=false -mosip.security.cors-enable=true +mosip.security.cors-enable=false mosip.security.origins=localhost:8080 mosip.security.secure-cookie=false From 5626c5a81a0f461bb4ff56e630448c93dbf6a9b7 Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Wed, 30 Mar 2022 17:15:02 +0530 Subject: [PATCH 0760/1358] enable csrf for admin --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index e9139c7ae5c..4409809376d 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -188,7 +188,7 @@ mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client ## Security -mosip.security.csrf-enable=false +mosip.security.csrf-enable=true mosip.security.cors-enable=false mosip.security.origins=localhost:8080 mosip.security.secure-cookie=false From 31e990ca66b1f98776331c739fce53cc9f985d2c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 30 Mar 2022 18:44:33 +0530 Subject: [PATCH 0761/1358] [ MOSIP-20973 ] added property for auth.allowed.urls --- partner-management-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index ff381272d19..3afa1665b6a 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -67,6 +67,9 @@ hibernate.cache.use_structured_entries=false hibernate.generate_statistics=false spring.datasource.initialization-mode=never +## This property is used by kernel-authcodeflowproxy-api to check request is coming from allowed urls not. +auth.allowed.urls=${mosip.api.internal.url}/pmp-ui/ + ## Application ID of PMP. Used to upload other domain certs application.id=PARTNER application.name=partner From b4f8d0c207be70a46c48342d38f2e14c16f568ae Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 31 Mar 2022 16:06:54 +0530 Subject: [PATCH 0762/1358] [ DSD-897 ] updated ida-websub-partner-service-callback-url --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 89a1fb9dadb..d73939deb8a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -218,7 +218,7 @@ ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.template ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events -ida-websub-partner-service-callback-url=${mosip.pms.partnermanager.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} +ida-websub-partner-service-callback-url=${mosip.ida.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} ida-websub-partner-service-apikey-approved-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/apikey_approved ida-websub-partner-service-partner-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_updated ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/policy_updated From b966912d2d6545cad416e9ff68878589e4c70eb2 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 1 Apr 2022 11:07:20 +0530 Subject: [PATCH 0763/1358] [ MOSIP-20594 ] added secret for keycloak client "mpartner-default-mobile" --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index ed88cffe46a..81c1ec364b4 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -152,7 +152,7 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile #Auth Adapter rest template authentication configs mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile -mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} +mosip.iam.adapter.clientsecret=${mpartner.default.mobile.secret} auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip From f295a82e226889835e34cc7ca8a72abfb636b576 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 1 Apr 2022 18:07:16 +0530 Subject: [PATCH 0764/1358] [MOSIP-8576] Edited with latest Changes in mosip-side mediator with websub subscription --- opencrvs-default.properties | 45 +++++++++++++++++++------------------ 1 file changed, 23 insertions(+), 22 deletions(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index 0fee5d03530..a34180e9c22 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -5,19 +5,21 @@ # Following properties get their values from environment variables of mediator helm chart. # DO NOT define the following properties in this file. - -# opencrvs.subscribe.startup=false -# opencrvs.subscribe.startup.delay.ms= -# opecnrvs.auth.url= -# opencrvs.birth.callback.url= -# opencrvs.webhooks.url= -# opencrvs.client.id=mosip-opencrvs-client -# opencrvs.client.id=mosip-regproc-client -# opencrvs.client.secret.key=abc123 -# opencrvs.client.sha.secret=abc123 -# mosip.opencrvs.client.id=mosip-regproc-client + +# opencrvs.receive.credential.url= +# mosip.receive.credential.url= +# opencrvs.auth.url= +# opencrvs.client.id= +# opencrvs.client.id= +# opencrvs.client.secret.key= +# opencrvs.client.sha.secret= +# mosip.opencrvs.client.id=mosip-opencrvs-client # mosip.opencrvs.client.secret.key= # mosip.opencrvs.db.datasource.password= +# mosip.opencrvs.partner.client.id=opencrvs-partner +# mosip.opencrvs.partner.client.sha.secret= +# mosip.opencrvs.partner.username=opencrvs-partner +# mosip.opencrvs.partner.password= mediator.core.pool.size=20 mediator.max.pool.size=200 @@ -42,17 +44,6 @@ opencrvs.data.dummy.city=[{"language":"eng","value":"Kenitra"}] opencrvs.data.dummy.zone=[{"language":"eng","value":"Ben Mansour"}] opencrvs.data.dummy.postal.code="14022" opencrvs.data.dummy.phone="9898989898" -# opencrvs.subscribe.startup=false -# opencrvs.subscribe.startup.delay.ms= -# opecnrvs.auth.url= -# opencrvs.birth.callback.url= -# opencrvs.webhooks.url= -# opencrvs.client.id=mosip-opencrvs-client -# opencrvs.client.id=mosip-regproc-client -# opencrvs.client.secret.key=abc123 -# opencrvs.client.sha.secret=abc123 -# mosip.opencrvs.client.id=mosip-regproc-client -# mosip.opencrvs.client.secret.key= # The following process.type should the same one present in provider.packetwriter.opencrvs and provider.packetreader.opencrvs, in application-default.properties opencrvs.birth.process.type=OPENCRVS_NEW @@ -61,7 +52,17 @@ opencrvs.birth.process.type=OPENCRVS_NEW opencrvs.reproduce.on.error=false opencrvs.reproduce.on.error.delay.ms=10000 +mosip.opencrvs.websub.resubscribe=true +mosip.opencrvs.websub.resubscribe.init.delay.ms=20000 +mosip.opencrvs.websub.resubscribe.delay.ms=21600000 + +mosip.opencrvs.decrypt.privkey.path="/certs/mnt/mosip-priv.key" +mosip.opencrvs.signverify.pubkey.path="/certs/mnt/opencrvs-pub.key" + +kernel.auth.adapter.available=false + mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.validate_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/userinfo config.server.file.storage.uri=http://config-server.config-server/config/*/default/release-1.2.0/ registration.processor.identityjson=identity-mapping.json From 8980c09f5f7b9af84fd7c778e594d4c0b3b1a263 Mon Sep 17 00:00:00 2001 From: Lalith Kota <kotalalith@gmail.com> Date: Fri, 1 Apr 2022 18:48:23 +0530 Subject: [PATCH 0765/1358] [MOSIP-8576] Certs Path --- opencrvs-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/opencrvs-default.properties b/opencrvs-default.properties index a34180e9c22..3a3268ca33d 100644 --- a/opencrvs-default.properties +++ b/opencrvs-default.properties @@ -56,8 +56,8 @@ mosip.opencrvs.websub.resubscribe=true mosip.opencrvs.websub.resubscribe.init.delay.ms=20000 mosip.opencrvs.websub.resubscribe.delay.ms=21600000 -mosip.opencrvs.decrypt.privkey.path="/certs/mnt/mosip-priv.key" -mosip.opencrvs.signverify.pubkey.path="/certs/mnt/opencrvs-pub.key" +mosip.opencrvs.decrypt.privkey.path=/certs/mnt/mosip-priv.key +mosip.opencrvs.signverify.pubkey.path=/certs/mnt/opencrvs-pub.key kernel.auth.adapter.available=false From 0bc0a8e3680a0806e879ed9ac6544a6158de0df6 Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Mon, 4 Apr 2022 09:47:33 +0530 Subject: [PATCH 0766/1358] disable csrf for admin --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 4409809376d..e9139c7ae5c 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -188,7 +188,7 @@ mosip.admin-services.cookie.security=true mosip.ui.spec.default.domain=registration-client ## Security -mosip.security.csrf-enable=true +mosip.security.csrf-enable=false mosip.security.cors-enable=false mosip.security.origins=localhost:8080 mosip.security.secure-cookie=false From 5c66321802bedacd2880cb6dac87ee165db5dd8e Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 4 Apr 2022 11:28:08 +0530 Subject: [PATCH 0767/1358] [ MOSIP-20594 ] Added mimoto-default.properties file for resident-app service --- mimoto-default.properties | 175 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 175 insertions(+) create mode 100644 mimoto-default.properties diff --git a/mimoto-default.properties b/mimoto-default.properties new file mode 100644 index 00000000000..e51a9b15686 --- /dev/null +++ b/mimoto-default.properties @@ -0,0 +1,175 @@ +# MOSIP + +public.url=${mosip.api.internal.url}/residentmobileapp +mosip.resident.base.url=${mosip.resident.url}/resident/v1 + + +RESIDENT_OTP=${mosip.resident.base.url}/req/otp +RESIDENT_CREDENTIAL_REQUEST=${mosip.resident.base.url}/req/credential +RESIDENT_CREDENTIAL_REQUEST_STATUS=${RESIDENT_CREDENTIAL_REQUEST}/status +RESIDENT_VID=${mosip.resident.base.url}/vid +RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock +RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock + + +# Resident App +credential.template=template.json +credential.sample=sample_credential.json +credential.data.path=data +safetynet.api.key= +safetynet.api.url=https://www.googleapis.com/androidcheck/v1/attestations/verify?key=${safetynet.api.key} + +registration.processor.print.textfile=registration-processor-print-text-file.json + +# Websub +mosip.event.hubUrl=${mosip.websub.url}/hub/ +mosip.event.hub.subUrl=${mosip.event.hubUrl} +mosip.event.hub.pubUrl=${mosip.event.hubUrl} + + +# MOSIP partner +mosip.partner.id=mpartner-default-mobile +mosip.event.callBackUrl=${public.url}/credentialshare/callback/notify +mosip.event.topic=${mosip.partner.id}/CREDENTIAL_ISSUED +mosip.event.secret=Kslk30SNF2AChs2 + + +mosip.partner.crypto.p12.filename=keystore.p12 +mosip.partner.crypto.p12.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.crypto.p12.alias=partner +mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.prependThumbprint=true + + +mosip.datashare.partner.id=mpartner-default-resident +mosip.datashare.policy.id=mpolicy-default-resident + + +csrf.disabled=true +# Delayed websub subscription. Default is 5 seconds in ms. +mosip.event.delay-millisecs=5000 +# Websub re-subscription workaround for losing subscribed topic when MOSIP websub update or restart. Default is 5 minutes in ms. +websub-resubscription-delay-millisecs=300000 + +#-------------TOKEN GENERATION---------------- +#Token generation request id +token.request.id=io.mosip.registration.processor +#Token generation app id +token.request.appid=regproc +#Token generation username +token.request.username=registrationprocessor +#Token generation password +token.request.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +#Token generation version +token.request.version=1.0 +#Token generation Client Id +token.request.clientId=mosip-regproc-client +#Token generation secret key +token.request.secretKey={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +#Token generation issuer url +token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip + +#Audit Service +AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +AUDIT_URL=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey + +#Master Data Services +# MASTER=http://kernel-masterdata-service/v1/masterdata +MASTER=${mosip.kernel.masterdata.url}/v1/masterdata +TEMPLATES=${MASTER}/templates + +#Packet receiver application version +mosip.print.application.version=1.0 +#Request Date Time format +mosip.print.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' + + +#-------------Printing Service-------------------- +mosip.print.service.id=mosip.print + +#Audit request id +mosip.print.audit.id=mosip.applicanttype.getApplicantType +mosip.country.code=MOR + +#Kernel Crypto signature +registration.processor.signature.isEnabled=true + +# Language Supported By Platform - ISO +mosip.supported-languages=eng,ara,fra + +mosip.template-language=eng +mosip.optional-languages=fra,ara +mosip.mandatory-languages=eng + +# mosip.primary-language=eng +# mosip.secondary-language=ara + +#----------------------- CBEFF Util-------------------------------------------------- +# Cbeff URL where the files will be stored in git, change it accordingly in case of change of storage location. +mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/print/${spring.profiles.active}/${spring.cloud.config.label}/ +# Cbeff XSD file name in config server +mosip.kernel.xsdfile=mosip-cbeff.xsd + +#----------------------------- Applicant Type -------------------------------------------------- +mosip.kernel.applicant.type.age.limit = 5 + +#----------------------------- Static PIN -------------------------------------------------- +mosip.kernel.pin.length=6 + +#-----------------------------TOKEN-ID Properties--------------------------------- +#length of the token id +mosip.kernel.tokenid.length=36 + +# log level +logging.level.root=WARN +logging.level.io.mosip=INFO +# logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO +logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG +logging.level.org.springframework.http.client=DEBUG +logging.level.io.mosip.residentapp=INFO +logging.level.reactor.netty.http.client=INFO +# tomcat access logs +server.tomcat.accesslog.enabled=true +server.tomcat.accesslog.directory=/dev +server.tomcat.accesslog.prefix=stdout +server.tomcat.accesslog.buffered=false +server.tomcat.accesslog.suffix= +server.tomcat.accesslog.file-date-format= +server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}"} +server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve +registration.processor.unMaskedUin.length=5 + +IDSchema.Version=1.0 +registration.processor.identityjson=identity-mapping.json +registration.processor.demographic.identity=identity +CREATEDATASHARE=${mosip.datashare.url}/v1/datashare/create +DECRYPTPINBASSED=${mosip.kernel.keymanager.url}/v1/keymanager/decryptWithPin + +config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profiles.active}/${spring.cloud.config.label}/ + + +#Auth Adapter rest template authentication configs +mosip.iam.adapter.appid=partner +mosip.iam.adapter.clientid=mpartner-default-mobile +mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ + +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/authenticate/clientidsecretkey +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken + + +# in minutes +mosip.iam.adapter.validate-expiry-check-rate=1440 + +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=1440 + +#this should be false if you don?t use this restTemplate true if you do + +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} From 44241e996d421bcad4149de587053a41f33289f2 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 4 Apr 2022 12:17:41 +0530 Subject: [PATCH 0768/1358] [ MOSIP-20594 ] updated internal keycloak url & updated authmanager url --- mimoto-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index e51a9b15686..5aa64eca104 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -67,7 +67,7 @@ token.request.clientId=mosip-regproc-client #Token generation secret key token.request.secretKey={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 #Token generation issuer url -token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip #Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -153,11 +153,11 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager -mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/authenticate/clientidsecretkey +mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken From b037b586500a47879bd1bfc753dddfcf724ed63a Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 4 Apr 2022 15:27:44 +0530 Subject: [PATCH 0769/1358] [ MOSIP-20594 ] update auth.server.admin.issuer.uri to keycloak external --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 5aa64eca104..5a9e5d435bf 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -153,7 +153,7 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager From a4a20329964f6107b00bbc0bd026ecf07f3dd73a Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 4 Apr 2022 17:46:54 +0530 Subject: [PATCH 0770/1358] [ MOSIP-20594 ] updated keycloak client secret and auth issuer.url --- mimoto-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 5a9e5d435bf..37f7e7750ab 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -152,8 +152,8 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile #Auth Adapter rest template authentication configs mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile -mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +mosip.iam.adapter.clientsecret=${mpartner.default.mobile.secret} +auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager From ef20287987d6d7d04aa948cfeca77ba29e133716 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 5 Apr 2022 11:05:00 +0530 Subject: [PATCH 0771/1358] [ MOSIP-20594 ] updated keycloak client secret and auth issuer.url --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 37f7e7750ab..8cc3323c4c7 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -153,7 +153,7 @@ config.server.file.storage.uri=${spring.cloud.config.uri}/print/${spring.profile mosip.iam.adapter.appid=partner mosip.iam.adapter.clientid=mpartner-default-mobile mosip.iam.adapter.clientsecret=${mpartner.default.mobile.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager From fc9dcdb2b41362c9874ca3c4fa87f159c93100a5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 6 Apr 2022 20:50:07 +0530 Subject: [PATCH 0772/1358] Minor cleanup. --- pre-registration-default.properties | 2 -- syncdata-default.properties | 2 -- 2 files changed, 4 deletions(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 3ddd062e75e..d200225b120 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -5,8 +5,6 @@ # mosip.prereg.client.secret # prereg.captcha.site.key # prereg.captcha.secret.key -# keycloak.external.host -# keycloak.external.url # keycloak.internal.host # keycloak.internal.url # s3.accesskey diff --git a/syncdata-default.properties b/syncdata-default.properties index 9a29894c198..0631b6e8354 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -2,8 +2,6 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.external.host -# keycloak.external.url # keycloak.internal.host # keycloak.internal.url # keycloak.admin.password From c8cce35088fcf85b3435d63ea5cf4b7579a05da6 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 6 Apr 2022 20:51:24 +0530 Subject: [PATCH 0773/1358] Minor cleanup. --- kernel-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 878af0ac7f9..0d37243c386 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -2,7 +2,6 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# keycloak.external.host # keycloak.external.url # keycloak.internal.host # keycloak.internal.url From 326a42d66779a333035595467ccc89784a9e375c Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Wed, 6 Apr 2022 20:55:01 +0530 Subject: [PATCH 0774/1358] Minor cleanup. --- application-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 01ada94cccb..ba54a482f87 100644 --- a/application-default.properties +++ b/application-default.properties @@ -2,9 +2,7 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # override below properties for v2 deployment -# keycloak.external.host # keycloak.external.url -# keycloak.internal.host # keycloak.internal.url # mosip.api.internal.host From 380a28c6df73d8ea1087e8703c89a3a4ec9eb4e0 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 8 Apr 2022 14:25:14 +0530 Subject: [PATCH 0775/1358] Disabled captcha --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index d200225b120..947813721e8 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -381,7 +381,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=true +mosip.preregistration.captcha.enable=false mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} From 50262ad56ada2dc746662848a1bd8a025732a0f5 Mon Sep 17 00:00:00 2001 From: Puneet Joshi <puneet@mosip.io> Date: Sun, 10 Apr 2022 22:12:43 +0530 Subject: [PATCH 0776/1358] Client added in allowed audience. --- id-authentication-internal-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index ebd980db8d4..30aafc10c60 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,4 +32,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client From 0964b766a9a31bfa525eb3df8bc2c0e766adc1b3 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 12 Apr 2022 13:50:21 +0530 Subject: [PATCH 0777/1358] [ DSD-930 ] updated 1.2.0.1-v3 branch with latest --- admin-default.properties | 5 +- application-default.properties | 18 ++++-- credential-service-default.properties | 2 +- hotlist-default.properties | 2 +- id-authentication-default.properties | 21 +++++-- id-repository-default.properties | 6 +- kernel-default.properties | 6 +- mosip-cbeff.xsd | 1 + mosip-context.json | 42 ++++++++++--- partner-management-default.properties | 6 +- print-default.properties | 2 +- registration-default.properties | 59 ++++++++++++++++++- ...on-processor-camel-routes-lost-default.xml | 1 - ...ion-processor-camel-routes-new-default.xml | 17 ++++-- registration-processor-default.properties | 8 ++- resident-default.properties | 2 +- syncdata-default.properties | 3 + 17 files changed, 156 insertions(+), 45 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index e9139c7ae5c..e5cf5fbd04c 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -174,6 +174,7 @@ mosip.kernel.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/ mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.admin-services.audit.manager.api=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +mosip.open-id.base-url=${keycloak.internal.url} mosip.admin-services.open-id.realmid=mosip mosip.admin-services.open-id.login_flow.name=authorization_code mosip.admin-services.open-id.clientid=mosip-admin-client @@ -268,7 +269,7 @@ mosip.kernel.jsonvalidator.property-source = LOCAL mosip.kernel.jsonvalidator.file-storage-uri=LOCAL mosip.kernel.machineid.length=5 - +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ MACHINE_GET_API=${mosip.kernel.masterdata.url}/v1/masterdata/machines/mappedmachines/ CRYPTOMANAGERDECRYPT_API=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt @@ -293,4 +294,4 @@ mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=https://${mosip.api.internal.host}/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** -auth.allowed.urls=https://admin.dev3.mosip.net/ +auth.allowed.urls=https://${mosip.admin.host}/ diff --git a/application-default.properties b/application-default.properties index ba54a482f87..7a48cef4153 100644 --- a/application-default.properties +++ b/application-default.properties @@ -29,12 +29,17 @@ mosip.kernel.pridgenerator.url=http://pridgenerator.kernel mosip.idrepo.identity.url=http://identity.idrepo mosip.idrepo.vid.url=http://vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin +mosip.admin.service.url=http://admin-service.admin +mosip.admin.ui.url=http://admin-ui.admin mosip.pms.policymanager.url=http://pms-policy.pms mosip.pms.partnermanager.url=http://pms-partner.pms +mosip.pms.ui.url=http://pms-ui.pms mosip.idrepo.credrequest.generator.url=http://credentialrequest.idrepo mosip.idrepo.credential.service.url=http://credential.idrepo mosip.datashare.url=http://datashare.datashare -mosip.mock.biosdk.url=http://biosdk-service.biosdk +mosip.ida.biosdk.url=http://biosdk-service.biosdk +mosip.regproc.biosdk.url=http://biosdk-service.biosdk +mosip.idrepo.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc mosip.regproc.status.service.url=http://regproc-status.regproc mosip.regproc.transaction.service.url=http://regproc-trans.regproc @@ -45,6 +50,7 @@ mosip.ida.internal.url=http://ida-internal.ida mosip.ida.auth.url=http://ida-auth.ida mosip.ida.otp.url=http://ida-otp.ida mosip.resident.url=http://resident.resident +mosip.artifactory.url=http://artifactory.artifactory kafka.profile=kafka.svc.cluster.local kafka.port=9092 @@ -84,8 +90,8 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,fra -mosip.right_to_left_orientation= +mosip.supported-languages=eng,fra,ara +mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng,fra ## Application IDs @@ -402,12 +408,12 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages=fra +mosip.optional-languages=fra,ara mosip.min-languages.count=2 -mosip.max-languages.count=2 +mosip.max-languages.count=3 # These are default languages used for sending notifications -mosip.default.template-languages=eng,fra +mosip.default.template-languages=eng,fra,ara # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/credential-service-default.properties b/credential-service-default.properties index 896a823e804..9dbf0acfd9e 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -16,7 +16,7 @@ mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id mosip.auth.filter_disable=false -mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.file.server.url}/mosipvc/mosip-context.json" : "mosip-context.json"} +mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.file.server.url}/.well-known/mosip-context.json" : "mosip-context.json"} mosip.credential.service.vercred.context.uri=vccontext.jsonld mosip.credential.service.vercred.id.url=${mosip.idrepo.credential.service.url}/credentials/ mosip.credential.service.vercred.issuer.url=${mosip.file.server.url}/mosipvc/controller.json diff --git a/hotlist-default.properties b/hotlist-default.properties index c0ca979c816..cbf0d64c517 100644 --- a/hotlist-default.properties +++ b/hotlist-default.properties @@ -15,7 +15,7 @@ mosip.hotlist.db.driverClassName=org.postgresql.Driver mosip.hotlist.db.dialect=org.hibernate.dialect.PostgreSQL92Dialect ## Data validation -mosip.hotlist.allowedIdTypes=UIN,VID,MACHINE_ID,PARTNER_ID,OPERATOR_ID,CENTER_ID,DEVICE,DEVICE_MODEL,FTM_PUBLIC_KEY +mosip.hotlist.allowedIdTypes=UIN,VID,MACHINE_ID,PARTNER_ID,OPERATOR_ID,CENTER_ID,DEVICE,DEVICE_MODEL,FTM_PUBLIC_KEY,DEVICE_PROVIDER ## Data source mosip.hotlist.datasource.driverClassName=${mosip.hotlist.db.driverClassName} diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d73939deb8a..1c372bf88ea 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -113,7 +113,9 @@ ida.id.attribute.separator.fullAddress=, ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace -mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.ida.biosdk.url}/biosdk-service +## For real biosdk +# mosip.biosdk.default.service.url=${mosip.ida.biosdk-service.url}/api # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -216,6 +218,14 @@ ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} +ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} +ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} +## Callback url for credential issueance event notification, including id remove/deactivate/activate events +ida-websub-idchage-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} +ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} +ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} +ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.ida.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} @@ -225,6 +235,9 @@ ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet ida-websub-partner-service-partner-api-key-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_api_key_updated ida-websub-partner-service-misp-license-generated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_generated ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated +## Callback url for hotlist event +ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist +ida-websub-hotlist-callback-url=${mosip.api.internal.url}/${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 @@ -408,7 +421,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 ## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false ## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException +kernel.retry.retryable.exceptions=io.mosip.authentication.core.exception.IdAuthRetryException,io.mosip.authentication.core.exception.IdAuthenticationBaseException ## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -488,7 +501,7 @@ zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production -mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +#mosip.kernel.keymanager.keystore.keyreference.enable.cache=false ## Admin # Configure N time period threshold for accepting auth/OTP/KYC request for a country @@ -556,7 +569,7 @@ mosip.ida.allowed.domain.uris=${mosip.api.internal.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX #The list of attributes in identity that are to be decrypted by default -ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang #------ Un-encrypted Credential Attributes list ----------- #The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). diff --git a/id-repository-default.properties b/id-repository-default.properties index 88fceca6f48..aefca740c9a 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -65,7 +65,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 # Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false #Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException +kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -163,7 +163,7 @@ mosip.iam.adapter.renewal-before-expiry-interval=15 mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false -mosip.idrepo.bio-extractor-service.rest.uri=${mosip.mock.biosdk.url}/biosdk-service/{extractionFormat}/extracttemplates +mosip.idrepo.bio-extractor-service.rest.uri=${mosip.idrepo.biosdk.url}/biosdk-service/{extractionFormat}/extracttemplates mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json mosip.idrepo.bio-extractor-service.rest.timeout=100 @@ -339,7 +339,7 @@ PARTNER_EXTRACTION_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/part credential.service.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # BioSDK service -mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.idrepo.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 diff --git a/kernel-default.properties b/kernel-default.properties index 0d37243c386..78a63323993 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -237,6 +237,7 @@ keycloak.verify-token-audience=true mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -263,7 +264,6 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager master.search.maximum.rows=50 mosip.level=2 @@ -405,7 +405,7 @@ syncdata.websub.resubscription.delay.millis=48000000 ## Admin UI ## this pattern like --> display column : configKey. ## We can provide multiple values with ";" separated -mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns} +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns};filterValueMaxCount:{"default":${mosip.kernel.filtervalue.max_columns},"registrationcenters":50,"locations":100} # Flag to identify the support of no thumbprint in 1.1.3 version. # Added this for backward compatability. default is false, means support is not required. @@ -733,8 +733,6 @@ mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHE mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE -mosip.kernel.masterdata.template_idauthentication_event=MASTERDATA_IDAUTHENTICATION_TEMPLATES -mosip.kernel.masterdata.title_event=MASTERDATA_TITLES mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ diff --git a/mosip-cbeff.xsd b/mosip-cbeff.xsd index b31269eb20b..edfa430a93d 100644 --- a/mosip-cbeff.xsd +++ b/mosip-cbeff.xsd @@ -113,6 +113,7 @@ SCHEMA. <xs:enumeration value="Palm"/> <xs:enumeration value="BackOfHand"/> <xs:enumeration value="Wrist"/> + <xs:enumeration value="ExceptionPhoto"/> </xs:restriction> </xs:simpleType> <xs:simpleType name="MultipleTypesType"> diff --git a/mosip-context.json b/mosip-context.json index 340d83a04ed..e01a8d4b883 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -2,23 +2,47 @@ "@context": [{ "@version": 1.1 },"https://www.w3.org/ns/odrl.jsonld", { - "mosip": "${mosip.api.internal.url}/mosip#", + "mosip": "${mosipbox.public.url}/mosip#", "schema": "http://schema.org/", "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", "vcVer": "mosip:vcVer", "UIN": "mosip:UIN", - "addressLine1": "mosip:addressLine1", - "addressLine2": "mosip:addressLine2", - "addressLine3": "mosip:addressLine3", - "city": "mosip:city", + "addressLine1": { + "@id": "${mosip.api.internal.url}/mosip#addressLine1", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "addressLine2": { + "@id": "${mosip.api.internal.url}/mosip#addressLine2", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "addressLine3": { + "@id": "${mosip.api.internal.url}/mosip#addressLine3", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "city": { + "@id": "${mosip.api.internal.url}/mosip#city", + "@context": {"value": "rdf:value", "lang": "@language"} + }, "dateOfBirth": "mosip:dateOfBirth", "email": "mosip:email", - "fullName": "mosip:fullName", - "gender": "mosip:gender", + "fullName": { + "@id": "${mosip.api.internal.url}/mosip#fullName", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "gender": { + "@id": "${mosip.api.internal.url}/mosip#gender", + "@context": {"value": "rdf:value", "lang": "@language"} + }, "phone": "mosip:phone", "postalCode": "mosip:postalCode", - "province": "mosip:province", - "region": "mosip:region", + "province": { + "@id": "${mosip.api.internal.url}/mosip#province", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "region": { + "@id": "${mosip.api.internal.url}/mosip#region", + "@context": {"value": "rdf:value", "lang": "@language"} + }, "biometrics": "mosip:biometrics" }] } \ No newline at end of file diff --git a/partner-management-default.properties b/partner-management-default.properties index 3afa1665b6a..ee71539b67d 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -58,8 +58,8 @@ mosip.datasource.regdevice.hibernate.dialect=org.hibernate.dialect.PostgreSQL95D hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.hbm2ddl.auto=none -hibernate.show_sql=true -hibernate.format_sql=true +hibernate.show_sql=false +hibernate.format_sql=false hibernate.connection.charSet=utf8 hibernate.cache.use_second_level_cache=false hibernate.cache.use_query_cache=false @@ -68,7 +68,7 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never ## This property is used by kernel-authcodeflowproxy-api to check request is coming from allowed urls not. -auth.allowed.urls=${mosip.api.internal.url}/pmp-ui/ +auth.allowed.urls=${mosip.pms.host}/pmp-ui/#/pmp/home ## Application ID of PMP. Used to upload other domain certs application.id=PARTNER diff --git a/print-default.properties b/print-default.properties index 6a0a4c9fd38..f06af5dc362 100644 --- a/print-default.properties +++ b/print-default.properties @@ -66,7 +66,7 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,fra +mosip.supported-languages=eng,fra,ara mosip.template-language=eng mosip.optional-languages=fra,ara mosip.mandatory-languages=eng diff --git a/registration-default.properties b/registration-default.properties index 67154c789d8..c48829578d3 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -414,4 +414,61 @@ mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRAT mosip.registration.mdm.connection.timeout=10000 mosip.registration.mdm.RCAPTURE.connection.timeout=40000 mosip.registration.mdm.MOSIPDINFO.connection.timeout=5000 -mosip.registration.mdm.MOSIPDISC.connection.timeout=5000 \ No newline at end of file +mosip.registration.mdm.MOSIPDISC.connection.timeout=5000 + +mosip.registration.HTTP_API_READ_TIMEOUT=60000 +mosip.registration.HTTP_API_WRITE_TIMEOUT=60000 + +## Global properties +mosip.right_to_left_orientation=${mosip.right_to_left_orientation} +mosip.left_to_right_orientation=${mosip.left_to_right_orientation} +mosip.mandatory-languages=${mosip.mandatory-languages} +mosip.optional-languages=${mosip.optional-languages} +mosip.min-languages.count=${mosip.min-languages.count} +mosip.max-languages.count=${mosip.max-languages.count} +mosip.kernel.keygenerator.symmetric-key-length=${mosip.kernel.keygenerator.symmetric-key-length} +mosip.kernel.keygenerator.asymmetric-key-length=${mosip.kernel.keygenerator.asymmetric-key-length} +mosip.kernel.keygenerator.asymmetric-algorithm-name=${mosip.kernel.keygenerator.asymmetric-algorithm-name} +mosip.kernel.keygenerator.symmetric-algorithm-name=${mosip.kernel.keygenerator.symmetric-algorithm-name} +mosip.kernel.crypto.symmetric-algorithm-name=${mosip.kernel.crypto.symmetric-algorithm-name} +mosip.kernel.crypto.asymmetric-algorithm-name=${mosip.kernel.crypto.asymmetric-algorithm-name} +mosip.kernel.crypto.gcm-tag-length=${mosip.kernel.crypto.gcm-tag-length} +mosip.kernel.crypto.hash-symmetric-key-length=${mosip.kernel.crypto.hash-symmetric-key-length} +mosip.kernel.crypto.hash-algorithm-name=${mosip.kernel.crypto.hash-algorithm-name} +mosip.kernel.crypto.sign-algorithm-name=${mosip.kernel.crypto.sign-algorithm-name} +mosip.kernel.crypto.hash-iteration=${mosip.kernel.crypto.hash-iteration} +mosip.kernel.data-key-splitter=${mosip.kernel.data-key-splitter} +mosip.kernel.signature.signature-request-id=${mosip.kernel.signature.signature-request-id} +mosip.kernel.signature.signature-version-id=${mosip.kernel.signature.signature-version-id} +mosip.kernel.prid.restricted-numbers=${mosip.kernel.prid.restricted-numbers} +mosip.kernel.prid.length=${mosip.kernel.prid.length} +mosip.kernel.prid.sequence-limit=${mosip.kernel.prid.sequence-limit} +mosip.kernel.prid.repeating-block-limit=${mosip.kernel.prid.repeating-block-limit} +mosip.kernel.prid.repeating-limit=${mosip.kernel.prid.repeating-limit} +mosip.kernel.prid.not-start-with=${mosip.kernel.prid.not-start-with} +mosip.kernel.uin.length=${mosip.kernel.uin.length} +mosip.kernel.uin.restricted-numbers=${mosip.kernel.uin.restricted-numbers} +mosip.kernel.uin.length.repeating-block-limit=${mosip.kernel.uin.length.repeating-block-limit} +mosip.kernel.uin.length.sequence-limit=${mosip.kernel.uin.length.sequence-limit} +mosip.kernel.uin.length.repeating-limit=${mosip.kernel.uin.length.repeating-limit} +mosip.kernel.uin.length.conjugative-even-digits-limit=${mosip.kernel.uin.length.conjugative-even-digits-limit} +mosip.kernel.uin.length.reverse-digits-limit=${mosip.kernel.uin.length.reverse-digits-limit} +mosip.kernel.uin.length.digits-limit=${mosip.kernel.uin.length.digits-limit} +mosip.kernel.vid.restricted-numbers=${mosip.kernel.vid.restricted-numbers} +mosip.kernel.vid.not-start-with=${mosip.kernel.vid.not-start-with} +mosip.kernel.vid.length.repeating-limit=${mosip.kernel.vid.length.repeating-limit} +mosip.kernel.vid.length.repeating-block-limit=${mosip.kernel.vid.length.repeating-block-limit} +mosip.kernel.vid.length.sequence-limit=${mosip.kernel.vid.length.sequence-limit} +mosip.kernel.vid.length=${mosip.kernel.vid.length} +mosip.kernel.registrationcenterid.length=${mosip.kernel.registrationcenterid.length} +mosip.kernel.machineid.length=${mosip.kernel.machineid.length} +## RID +mosip.kernel.rid.length=${mosip.kernel.rid.length} +mosip.kernel.rid.timestamp-length=${mosip.kernel.rid.timestamp-length} +mosip.kernel.rid.sequence-length=${mosip.kernel.rid.sequence-length} +## Virus scanner +# Here we specify the Kubernetes service name if clamav runs inside cluster +mosip.kernel.virus-scanner.host=${mosip.kernel.virus-scanner.host} +mosip.kernel.virus-scanner.port=${mosip.kernel.virus-scanner.port} +mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} +## end of global properties diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index 3d15e356956..686bd0d8437 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -478,7 +478,6 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 1a2ad6c899a..16d8c55baea 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -33,6 +33,7 @@ </otherwise> </choice> </route> + <!-- securezone-notification to packet-uploader Route --> <route id="securezone-notification-->packet-uploader new route"> <from uri="eventbus://securezone-notification-new-bus-out" /> <log message="securezone-notification-->packet-uploader new route ${bodyAs(String)}" /> @@ -54,6 +55,7 @@ </otherwise> </choice> </route> + <!-- packet-uploader to packet-validator Route --> <route id="packet-uploader-->packet-validator new route"> <from uri="eventbus://packet-uploader-new-bus-out" /> <log message="packet-uploader-->packet-validator new route ${bodyAs(String)}" /> @@ -75,6 +77,7 @@ </otherwise> </choice> </route> + <!-- Packet Validator to Packet classifier Route --> <route id="packet-validator-->packet-classifier new route"> <from uri="eventbus://packet-validator-new-bus-out" /> <log message="packet-validator-->packet-classifier new route ${bodyAs(String)}" /> @@ -98,6 +101,7 @@ </otherwise> </choice> </route> + <!-- Packet Classifier to Quality Classifier Route --> <route id="packet-classifier-->cmd-validator new route"> <from uri="eventbus://packet-classifier-new-bus-out" /> <log message="packet-classifier-->quality-classifier new route ${bodyAs(String)}" /> @@ -284,10 +288,6 @@ <to uri="workflow-cmd://complete-as-failed" /> <to uri="workflow-cmd://anonymous-profile" /> </when> - <when> - <jsonpath>$.[?(@['isValid'] == true && @['internalError'] == true)]</jsonpath> - <to uri="workflow-cmd://mark-as-reprocess" /> - </when> <when> <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> @@ -301,6 +301,11 @@ <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> <to uri="eventbus://manual-adjudication-bus-in" /> </when> + <when> + <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> + <to uri="workflow-cmd://complete-as-rejected" /> + <to uri="workflow-cmd://anonymous-profile" /> + </when> <otherwise> <to uri="eventbus://bio-dedupe-bus-in" /> </otherwise> @@ -446,6 +451,7 @@ </otherwise> </choice> </route> + <!-- UIN Generator to biometric-extraction Route --> <route id="uin-generation route-->biometric-extraction-stage new route"> <from uri="eventbus://uin-generator-new-bus-out" /> <log message="uin-generation-->biometric-extraction-stage route ${bodyAs(String)}" /> @@ -470,6 +476,7 @@ </otherwise> </choice> </route> + <!-- biometric-extraction to finalization Route --> <route id="biometric-extraction route-->finalization-stage new route"> <from uri="eventbus://biometric-extraction-new-bus-out" /> <log message="biometric-extraction-->finalization-stage route ${bodyAs(String)}" /> @@ -493,6 +500,7 @@ </otherwise> </choice> </route> + <!-- finalization to Printing Route --> <route id="finalization route-->printing-stage new route"> <from uri="eventbus://finalization-new-bus-out" /> <log message="finalization-->printing-stage route ${bodyAs(String)}" /> @@ -512,7 +520,6 @@ <to uri="workflow-cmd://anonymous-profile" /> </when> <otherwise> - <to uri="workflow-cmd://complete-as-processed" /> <to uri="eventbus://printing-bus-in" /> </otherwise> </choice> diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5c75b070772..b7c9473db1b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -235,6 +235,8 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip +mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.port=3310 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl @@ -443,8 +445,8 @@ mosip.regproc.data.share.protocol=http mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK -#mosip.biosdk.default.host=${mosip.mock.biosdk.url} -mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service +#mosip.biosdk.default.host=${mosip.regproc.biosdk.url} +mosip.biosdk.default.service.url=${mosip.regproc.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -504,7 +506,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": "packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 diff --git a/resident-default.properties b/resident-default.properties index 54b026cc8fd..bb0e31c101c 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -119,7 +119,7 @@ registration.processor.identityjson=identity-mapping.json #machine creation and search configs resident.update-uin.machine-name-prefix = resident_machine_ -resident.update-uin.machine-spec-id = 1001 +resident.update-uin.machine-spec-id = RESIDENT-1 resident.update-uin.machine-zone-code = MOR #Auth Adapter rest template authentication configs diff --git a/syncdata-default.properties b/syncdata-default.properties index 0631b6e8354..e15c4ddd7a0 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -343,6 +343,9 @@ datastores=ldap_1_DS,db_1_DS,db_2_DS ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM +## List of keys to auto generate. +mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS + ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 From 6637d566c8930c3e7451d92314807814c7b5e45e Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Tue, 12 Apr 2022 18:03:44 +0530 Subject: [PATCH 0778/1358] Update partner-management-default.properties --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index ee71539b67d..14b87b165e0 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -68,7 +68,7 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never ## This property is used by kernel-authcodeflowproxy-api to check request is coming from allowed urls not. -auth.allowed.urls=${mosip.pms.host}/pmp-ui/#/pmp/home +auth.allowed.urls=${mosip.pmp.host}/pmp-ui/#/pmp/home ## Application ID of PMP. Used to upload other domain certs application.id=PARTNER From a966f3eae3146d8d69c8d214fae99f5d9c9886f1 Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Mon, 25 Apr 2022 13:34:24 +0530 Subject: [PATCH 0779/1358] MOSIP-21477 --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index e5cf5fbd04c..088185b5398 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -292,6 +292,6 @@ mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.u # this property are used in AdminProxyService to get base url and version mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 -mosip.admin.base.url=https://${mosip.api.internal.host}/ +mosip.admin.base.url=http://admin-proxy mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ From c75cf34db25475c03135888a8217dc0429e79720 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 28 Apr 2022 11:42:07 +0530 Subject: [PATCH 0780/1358] MOSIP-21337 : updated admin-default.properties --- admin-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 088185b5398..da637c561b3 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -295,3 +295,7 @@ mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=http://admin-proxy mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ + +##This property is used for validation in kernel-masterdata-service +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] +mosip.kernel.masterdata.name.validate.regex=[^a-z] \ No newline at end of file From c798e3c0713918530d528148db2b7ee769990ea2 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Mon, 2 May 2022 18:07:59 +0530 Subject: [PATCH 0781/1358] Revert "MOSIP-21337 : updated admin-default.properties" --- admin-default.properties | 4 ---- 1 file changed, 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index da637c561b3..088185b5398 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -295,7 +295,3 @@ mosip.admin.keymanager.service.version=v1 mosip.admin.base.url=http://admin-proxy mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ - -##This property is used for validation in kernel-masterdata-service -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] -mosip.kernel.masterdata.name.validate.regex=[^a-z] \ No newline at end of file From 9022335de8ad1a638ea23a40b62ab2d2c3f60571 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 5 May 2022 18:43:56 +0530 Subject: [PATCH 0782/1358] [ DSD-952 ] set language to eng & ara --- application-default.properties | 13 ++++++------- mimoto-default.properties | 4 ++-- print-default.properties | 4 ++-- registration-default.properties | 1 - resident-app-default.properties | 4 ++-- 5 files changed, 12 insertions(+), 14 deletions(-) diff --git a/application-default.properties b/application-default.properties index 7a48cef4153..09ef8a21745 100644 --- a/application-default.properties +++ b/application-default.properties @@ -90,9 +90,9 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,fra,ara +mosip.supported-languages=eng,ara mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng,fra +mosip.left_to_right_orientation=eng ## Application IDs mosip.prereg.app-id=PRE_REGISTRATION @@ -274,7 +274,6 @@ mosip.kernel.virus-scanner.port=3310 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara -mosip.kernel.transliteration.franch-language-code=fra mosip.kernel.transliteration.english-language-code=eng ## DOB @@ -408,12 +407,12 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages=fra,ara -mosip.min-languages.count=2 -mosip.max-languages.count=3 +mosip.optional-languages=ara +mosip.min-languages.count=1 +mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng,fra,ara +mosip.default.template-languages=eng,ara # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/mimoto-default.properties b/mimoto-default.properties index 8cc3323c4c7..ce8fde91263 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=fra,ara +mosip.optional-languages=ara mosip.mandatory-languages=eng # mosip.primary-language=eng diff --git a/print-default.properties b/print-default.properties index f06af5dc362..26c9f8055ef 100644 --- a/print-default.properties +++ b/print-default.properties @@ -66,9 +66,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,fra,ara +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=fra,ara +mosip.optional-languages=ara mosip.mandatory-languages=eng ## CBEFF util diff --git a/registration-default.properties b/registration-default.properties index c48829578d3..980f1d7ce47 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -322,7 +322,6 @@ mosip.kernel.idobjectvalidator.property-source=LOCAL mosip.kernel.transliteration.arabic-language-code=ara #Language Code for French Language. Should not be modified -mosip.kernel.transliteration.franch-language-code=fra #Language Code for English Language. Should not be modified mosip.kernel.transliteration.english-language-code=eng diff --git a/resident-app-default.properties b/resident-app-default.properties index 81c1ec364b4..dcf8f091b70 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=fra,ara +mosip.optional-languages=ara mosip.mandatory-languages=eng # mosip.primary-language=eng From 4a9803cb7c8be0f185998b20ab36ed6010206009 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 5 May 2022 18:45:38 +0530 Subject: [PATCH 0783/1358] [ DSD-952 ] set language to eng & ara --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 088185b5398..7a7594c75cc 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -71,7 +71,7 @@ mosip.admin.security.policy.userrole-auth-url=${mosip.kernel.authmanager.url}/v1 ## Masterdata cards -mosip.admin.masterdata.lang-code=eng,ara,fra +mosip.admin.masterdata.lang-code=eng,ara mosip.admin-services.required.roles=GLOBAL_ADMIN #masterdata machine From ca01114ef7bb3c87be6fd2ea5a332c1973e573e6 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 6 May 2022 16:31:15 +0530 Subject: [PATCH 0784/1358] [MOSIP-21369] added mosip-deployment-client to allowed.audience --- admin-default.properties | 2 +- application-default.properties | 1 + id-authentication-internal-default.properties | 2 +- kernel-default.properties | 2 +- partner-management-default.properties | 2 +- 5 files changed, 5 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 7a7594c75cc..51df696f088 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -166,7 +166,7 @@ mosip.admin.masterdata.card.valid-document-ara=\u0648\u062B\u0627\u0626\u0642 \u ## UIN activate/deactivate mosip.admin.uinmgmt.uin-detail-search=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} -mosip.kernel.packet-status-update-url=${mosip.regproc.transaction.service.url}/registrationprocessor/v1/registrationtransaction/search +mosip.kernel.packet-status-update-url=${mosip.regproc.transaction.service.url}/registrationprocessor/v1/registrationtransaction/search/ mosip.kernel.packet-reciever-api-url=${mosip.packet.receiver.url}/registrationprocessor/v1/packetreceiver/registrationpackets mosip.kernel.zone-validation-url=${mosip.kernel.masterdata.url}/v1/masterdata/zones/authorize mosip.kernel.registrationcenterid.length=5 diff --git a/application-default.properties b/application-default.properties index 09ef8a21745..ab593bc9b17 100644 --- a/application-default.properties +++ b/application-default.properties @@ -26,6 +26,7 @@ mosip.kernel.idgenerator.url=http://idgenerator.kernel mosip.kernel.otpmanager.url=http://otpmanager.kernel mosip.kernel.syncdata.url=http://syncdata.kernel mosip.kernel.pridgenerator.url=http://pridgenerator.kernel +mosip.kernel.ridgenerator.url=http://ridgenerator.kernel mosip.idrepo.identity.url=http://identity.idrepo mosip.idrepo.vid.url=http://vid.idrepo mosip.admin.hotlist.url=http://admin-hotlist.admin diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 30aafc10c60..4b05ca5f01b 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,4 +32,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client,mosip-deployment-client diff --git a/kernel-default.properties b/kernel-default.properties index 78a63323993..271183709f8 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -427,7 +427,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 14b87b165e0..4afa500ea73 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -153,7 +153,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client,mosip-deployment-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token From cc65baeba92720dc2dfa35ecf2a8a804a17548c6 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 6 May 2022 18:03:38 +0530 Subject: [PATCH 0785/1358] [MOSIP-21369] added mosip-deployment-client to allowed.audience --- id-authentication-internal-default.properties | 2 +- kernel-default.properties | 2 +- partner-management-default.properties | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 30aafc10c60..4b05ca5f01b 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,4 +32,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client,mosip-deployment-client diff --git a/kernel-default.properties b/kernel-default.properties index 78a63323993..271183709f8 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -427,7 +427,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 14b87b165e0..4afa500ea73 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -153,7 +153,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client,mosip-deployment-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token From 642ee96857488dd452522ebad725886a78e270fb Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 6 May 2022 18:05:57 +0530 Subject: [PATCH 0786/1358] [MOSIP-21369] added mosip-deployment-client to allowed.audience --- id-authentication-internal-default.properties | 2 +- kernel-default.properties | 2 +- partner-management-default.properties | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 30aafc10c60..4b05ca5f01b 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,4 +32,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client,mosip-deployment-client diff --git a/kernel-default.properties b/kernel-default.properties index 78a63323993..271183709f8 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -427,7 +427,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 14b87b165e0..4afa500ea73 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -153,7 +153,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client,mosip-deployment-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token From 867657bde676279094785fb00d4e49ac7deb26d2 Mon Sep 17 00:00:00 2001 From: gaganama <anjinkumars@gmail.com> Date: Wed, 18 May 2022 20:27:55 +0530 Subject: [PATCH 0787/1358] [ DSD -1026 ] updating partner-management-default.properties for pmp-ui --- partner-management-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 4afa500ea73..4734d634a58 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -68,7 +68,7 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never ## This property is used by kernel-authcodeflowproxy-api to check request is coming from allowed urls not. -auth.allowed.urls=${mosip.pmp.host}/pmp-ui/#/pmp/home +auth.allowed.urls=https://${mosip.pmp.host}/ ## Application ID of PMP. Used to upload other domain certs application.id=PARTNER @@ -198,9 +198,9 @@ mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client mosip.iam.module.clientsecret=${mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ -mosip.iam.module.login_flow.scope=cls +mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token From 75fce06c88a919b3762d3843ec672f4e1abbfa89 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Thu, 19 May 2022 14:58:32 +0530 Subject: [PATCH 0788/1358] [DSD-1026] updated the prop --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 14b87b165e0..4947e9974b7 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -200,7 +200,7 @@ mosip.iam.module.clientsecret=${mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token From 13b9ac0f05f4d76a0be625431e54b44c0707adf4 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Thu, 19 May 2022 15:09:22 +0530 Subject: [PATCH 0789/1358] [DSD-1026] updated the prop --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 4947e9974b7..ef65495d9fb 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -203,7 +203,7 @@ mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy From 2b7baa9d765e232616c93046c9aeb896109547dd Mon Sep 17 00:00:00 2001 From: Nagarjuna K <nagarjunabtechece@gmail.com> Date: Mon, 23 May 2022 11:38:06 +0530 Subject: [PATCH 0790/1358] Revert "[DSD-1026] updated the prop" --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index e5bc04cf50f..4734d634a58 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -203,7 +203,7 @@ mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy From f65a4a91a6941d31acedd3f9a164b132c6f44f79 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Mon, 23 May 2022 11:49:51 +0530 Subject: [PATCH 0791/1358] Update id-authentication-default.properties updated ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 1c372bf88ea..eaaf6337229 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -543,7 +543,7 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth -ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl +ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl ## Demo SDK integration mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 From 49f11cc37c9215c28414cacf8e7ceb38b2898202 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <72004356+syed-salman-technoforte@users.noreply.github.com> Date: Mon, 23 May 2022 11:59:55 +0530 Subject: [PATCH 0792/1358] [ DSD-1026 ] updated mosip-pmp-client secrets --- partner-management-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 4734d634a58..09b4781fee4 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -196,7 +196,7 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret=${mosip.partner.client.secret} +mosip.iam.module.clientsecret=${mosip.pms.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code From 1afbbcd33d5d2b0a6fb681a89bbe4a1b133e5238 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 23 May 2022 12:17:27 +0530 Subject: [PATCH 0793/1358] [ MOSIP-22128 ] updated clients to mosip-partner-client --- partner-management-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 09b4781fee4..81c66583310 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -195,8 +195,8 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code -mosip.iam.module.clientID=mosip-pms-client -mosip.iam.module.clientsecret=${mosip.pms.client.secret} +mosip.iam.module.clientID=mosip-partner-client +mosip.iam.module.clientsecret=${mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code From 9b59e5da91696710964e54f3d263a162042205a6 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 23 May 2022 15:59:55 +0530 Subject: [PATCH 0794/1358] [ MOSIP-22128 ] updated client details --- kernel-default.properties | 2 +- partner-management-default.properties | 14 +++++++------- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 271183709f8..600cb4016fb 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -427,7 +427,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} diff --git a/partner-management-default.properties b/partner-management-default.properties index 4afa500ea73..3165190814b 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -68,7 +68,7 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never ## This property is used by kernel-authcodeflowproxy-api to check request is coming from allowed urls not. -auth.allowed.urls=${mosip.pmp.host}/pmp-ui/#/pmp/home +auth.allowed.urls=https://${mosip.pmp.host}/ ## Application ID of PMP. Used to upload other domain certs application.id=PARTNER @@ -109,11 +109,11 @@ mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits # ApplicationId for partner -mosip.pmp.auth.appId =partner +mosip.pmp.auth.appId=partner # Kernel auth client ID for partner management services mosip.pmp.auth.clientId=mosip-partner-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey= ${mosip.partner.client.secret} +mosip.pmp.auth.secretKey=${mosip.partner.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -124,7 +124,7 @@ pmp-keymanager.upload.other.domain.cert.rest.uri=${mosip.kernel.keymanager.url}/ #Auth token generation mosip.iam.adapter.clientid=${mosip.pmp.auth.clientId} -mosip.iam.adapter.clientsecret=${mosip.partner.client.secret} +mosip.iam.adapter.clientsecret=${mosip.pmp.auth.secretKey} mosip.iam.adapter.appid=${mosip.pmp.auth.appId} # Used to get data share url to publish to websub @@ -195,12 +195,12 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code -mosip.iam.module.clientID=mosip-pms-client +mosip.iam.module.clientID=mosip-partner-client mosip.iam.module.clientsecret=${mosip.partner.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ -mosip.iam.module.login_flow.scope=cls +mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code -mosip.iam.authorization_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token From 304d602fd4d9cc85f551ba099b1413ccf01595c9 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Mon, 23 May 2022 17:32:18 +0530 Subject: [PATCH 0795/1358] Update id-authentication-default.properties Added Preferred lang to zero knowledge properties --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index eaaf6337229..4dee61c5367 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -576,7 +576,7 @@ ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferre #These attributes will not be decrypted when fetching the records from IDA DB for Authentication/EKYC/OTP requests. #By default all attributes are assumed to be Zero Knowledge encrypted. #Specify the attributes here only if they are not encrypted as per the datashare policy. -ida-zero-knowledge-unencrypted-credential-attributes= +ida-zero-knowledge-unencrypted-credential-attributes=preferredLang #openapi properties to sort tags and operations in Id Authentication springdoc.swagger-ui.tagsSorter=alpha From d4787cc8d7c26c4889482fffb2bb51670db71289 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Mon, 23 May 2022 19:33:00 +0530 Subject: [PATCH 0796/1358] Update auth-policy-schema.json Added kyc attributes --- auth-policy-schema.json | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/auth-policy-schema.json b/auth-policy-schema.json index ef345a8cbdf..b5173828fcd 100644 --- a/auth-policy-schema.json +++ b/auth-policy-schema.json @@ -50,6 +50,12 @@ "enum":["random","partner","policy"] } }, + "kycLanguages": { + "type": "array", + "items": { + "type": "string" + } + }, "required":[ "authTokenType", "allowedAuthTypes", From 930e35a044479aa06c9abdcd9cfa66e20babf7f3 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 10:25:21 +0530 Subject: [PATCH 0797/1358] Changed abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 28c1736461096ab892cc31dab01678cd0bce22b9 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 11:50:08 +0530 Subject: [PATCH 0798/1358] Update mandatory.modalities with Exception Photo --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b7c9473db1b..bee18fc4b78 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -506,7 +506,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +#mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 @@ -965,4 +965,4 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face,EXCEPTION_PHOTO From 596606d43dc8e49ef7312634c94ad0370199b615 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 12:09:38 +0530 Subject: [PATCH 0799/1358] Reverted return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 7f6aaabb91a9c9a75ce12cf9289402ad24990a95 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 12:41:24 +0530 Subject: [PATCH 0800/1358] Reverted mandatory.modalities --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index bee18fc4b78..df3a4ba51ae 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -965,4 +965,4 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face,EXCEPTION_PHOTO +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face From d6505d2c27faeb944e3f89bbc458ce95661d4f94 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 13:33:32 +0530 Subject: [PATCH 0801/1358] Updated pause-settings --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index df3a4ba51ae..b7c9473db1b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -506,7 +506,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -#mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 From 1e387568d1f346b71aebcc6d4f76964f01a3ea33 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 14:19:35 +0530 Subject: [PATCH 0802/1358] Update mandatory.modalities with Exception photo --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b7c9473db1b..296a618b587 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -965,4 +965,4 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face,EXCEPTION_PHOTO From 1e51ba8fe6e63cefaf44346ed84507c1d40ac174 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Tue, 24 May 2022 15:16:06 +0530 Subject: [PATCH 0803/1358] Update auth-policy-schema.json Updated kyc languages --- auth-policy-schema.json | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/auth-policy-schema.json b/auth-policy-schema.json index b5173828fcd..d8ddb7f7e4d 100644 --- a/auth-policy-schema.json +++ b/auth-policy-schema.json @@ -48,14 +48,15 @@ "authTokenType":{ "type":"string", "enum":["random","partner","policy"] - } - }, - "kycLanguages": { + }, + "kycLanguages": { "type": "array", "items": { "type": "string" } - }, + } + }, + "required":[ "authTokenType", "allowedAuthTypes", From 793c4d24ee2583c6958cbc627a012ebb2c69e266 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 24 May 2022 18:19:25 +0530 Subject: [PATCH 0804/1358] Update return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From a1c1e363439baf61bb211db3487c40fd741d5b5b Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Wed, 25 May 2022 17:20:03 +0530 Subject: [PATCH 0805/1358] Changed defaultResumeAction to "STOP_PROCESSING" --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 296a618b587..4323bfad5fd 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -506,7 +506,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "STOP_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 From dc5565f3899a73dd99b2a4af91efc8917051f23b Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Thu, 26 May 2022 15:02:06 +0530 Subject: [PATCH 0806/1358] Fix for revoke VID url --- resident-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index bb0e31c101c..d10dd077e0e 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -48,7 +48,7 @@ INTERNALAUTH=${mosip.ida.internal.url}/idauthentication/v1/internal/auth INTERNALAUTHTRANSACTIONS=${mosip.ida.internal.url}/idauthentication/v1/internal/authTransactions KERNELENCRYPTIONSERVICE=${mosip.ida.internal.url}/idauthentication/v1/internal/getCertificate IDAUTHCREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid -IDAUTHREVOKEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid/deactivate +IDAUTHREVOKEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid ## Notification service IDREPOGETIDBYUIN=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid IDREPOGETIDBYRID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid @@ -132,4 +132,4 @@ mosip.service-context=/resident/v1 mosip.service.end-points=/**/* mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT -mosip.ida.env=Production \ No newline at end of file +mosip.ida.env=Production From 14b1bae9d1c8871ef329f270e0739aae2e5e4a28 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 26 May 2022 16:18:58 +0530 Subject: [PATCH 0807/1358] Reverted return.duplicat to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From e0c37fb4d3f039e0f4603cf8e3e55b1884022423 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 31 May 2022 14:07:50 +0530 Subject: [PATCH 0808/1358] Updated return.duplicate=true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 1b0a06e3b9021130025022c3e9f5bd1ed7edb084 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 31 May 2022 14:19:53 +0530 Subject: [PATCH 0809/1358] Update return duplicates to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 7e08fe8aebaf29ecb8d649f98613fe2358e2075d Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Wed, 1 Jun 2022 09:26:49 +0530 Subject: [PATCH 0810/1358] Updated abis.return.duplicate=true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 5d973b60cf01705108f2d2ef038348a093cc0a40 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 1 Jun 2022 20:08:47 +0530 Subject: [PATCH 0811/1358] [ DSD-1078 ] updated mosip-context.json --- mosip-context.json | 51 +++++++++++++++++++++++++--------------------- 1 file changed, 28 insertions(+), 23 deletions(-) diff --git a/mosip-context.json b/mosip-context.json index e01a8d4b883..ba37660726b 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -1,48 +1,53 @@ { "@context": [{ - "@version": 1.1 - },"https://www.w3.org/ns/odrl.jsonld", { - "mosip": "${mosipbox.public.url}/mosip#", + "@version": 1.1 + },"https://www.w3.org/ns/odrl.jsonld", { + "mosip": "https://${mosip.api.host}/mosip#", "schema": "http://schema.org/", "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", "vcVer": "mosip:vcVer", "UIN": "mosip:UIN", "addressLine1": { - "@id": "${mosip.api.internal.url}/mosip#addressLine1", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#addressLine1", + "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine2": { - "@id": "${mosip.api.internal.url}/mosip#addressLine2", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#addressLine2", + "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine3": { - "@id": "${mosip.api.internal.url}/mosip#addressLine3", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#addressLine3", + "@context": {"value": "rdf:value", "lang": "@language"} }, "city": { - "@id": "${mosip.api.internal.url}/mosip#city", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#city", + "@context": {"value": "rdf:value", "lang": "@language"} }, + "gender": { + "@id": "https://${mosip.api.host}/mosip#gender", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "residenceStatus": { + "@id": "https://${mosip.api.host}/mosip#residenceStatus", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "dateOfBirth": "mosip:dateOfBirth", "email": "mosip:email", "fullName": { - "@id": "${mosip.api.internal.url}/mosip#fullName", - "@context": {"value": "rdf:value", "lang": "@language"} - }, - "gender": { - "@id": "${mosip.api.internal.url}/mosip#gender", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#fullName", + "@context": {"value": "rdf:value", "lang": "@language"} }, - "phone": "mosip:phone", + "phone": "mosip:phone", "postalCode": "mosip:postalCode", "province": { - "@id": "${mosip.api.internal.url}/mosip#province", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#province", + "@context": {"value": "rdf:value", "lang": "@language"} }, "region": { - "@id": "${mosip.api.internal.url}/mosip#region", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#region", + "@context": {"value": "rdf:value", "lang": "@language"} }, "biometrics": "mosip:biometrics" }] -} \ No newline at end of file +} From 5f6c026f43220997b708c9c948f4e6775f62e796 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 1 Jun 2022 20:08:47 +0530 Subject: [PATCH 0812/1358] [ DSD-1078 ] updated mosip-context.json --- mosip-context.json | 51 +++++++++++++++++++++++++--------------------- 1 file changed, 28 insertions(+), 23 deletions(-) diff --git a/mosip-context.json b/mosip-context.json index e01a8d4b883..ba37660726b 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -1,48 +1,53 @@ { "@context": [{ - "@version": 1.1 - },"https://www.w3.org/ns/odrl.jsonld", { - "mosip": "${mosipbox.public.url}/mosip#", + "@version": 1.1 + },"https://www.w3.org/ns/odrl.jsonld", { + "mosip": "https://${mosip.api.host}/mosip#", "schema": "http://schema.org/", "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", "vcVer": "mosip:vcVer", "UIN": "mosip:UIN", "addressLine1": { - "@id": "${mosip.api.internal.url}/mosip#addressLine1", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#addressLine1", + "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine2": { - "@id": "${mosip.api.internal.url}/mosip#addressLine2", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#addressLine2", + "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine3": { - "@id": "${mosip.api.internal.url}/mosip#addressLine3", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#addressLine3", + "@context": {"value": "rdf:value", "lang": "@language"} }, "city": { - "@id": "${mosip.api.internal.url}/mosip#city", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#city", + "@context": {"value": "rdf:value", "lang": "@language"} }, + "gender": { + "@id": "https://${mosip.api.host}/mosip#gender", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "residenceStatus": { + "@id": "https://${mosip.api.host}/mosip#residenceStatus", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "dateOfBirth": "mosip:dateOfBirth", "email": "mosip:email", "fullName": { - "@id": "${mosip.api.internal.url}/mosip#fullName", - "@context": {"value": "rdf:value", "lang": "@language"} - }, - "gender": { - "@id": "${mosip.api.internal.url}/mosip#gender", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#fullName", + "@context": {"value": "rdf:value", "lang": "@language"} }, - "phone": "mosip:phone", + "phone": "mosip:phone", "postalCode": "mosip:postalCode", "province": { - "@id": "${mosip.api.internal.url}/mosip#province", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#province", + "@context": {"value": "rdf:value", "lang": "@language"} }, "region": { - "@id": "${mosip.api.internal.url}/mosip#region", - "@context": {"value": "rdf:value", "lang": "@language"} + "@id": "https://${mosip.api.host}/mosip#region", + "@context": {"value": "rdf:value", "lang": "@language"} }, "biometrics": "mosip:biometrics" }] -} \ No newline at end of file +} From 29eb1382b57b5d56d238141560a111432ea9a36e Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 2 Jun 2022 13:06:30 +0530 Subject: [PATCH 0813/1358] Update return duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 07292cd9fe478f60f9fab0d2151528f2065b2090 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 2 Jun 2022 14:48:24 +0530 Subject: [PATCH 0814/1358] Update return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 067910e733036133424de0c318dbd517ed9de699 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 2 Jun 2022 15:04:18 +0530 Subject: [PATCH 0815/1358] Changed return.duplicate=false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 2a45257ac1cb0f5ed7c29fcc4e49c6c1704df36c Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Thu, 2 Jun 2022 15:20:45 +0530 Subject: [PATCH 0816/1358] [MOSIP-22166] updated the props --- application-default.properties | 2 +- id-authentication-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index ab593bc9b17..a9975e89f06 100644 --- a/application-default.properties +++ b/application-default.properties @@ -38,7 +38,7 @@ mosip.pms.ui.url=http://pms-ui.pms mosip.idrepo.credrequest.generator.url=http://credentialrequest.idrepo mosip.idrepo.credential.service.url=http://credential.idrepo mosip.datashare.url=http://datashare.datashare -mosip.ida.biosdk.url=http://biosdk-service.biosdk +mosip.mock.biosdk.url=http://biosdk-service.biosdk mosip.regproc.biosdk.url=http://biosdk-service.biosdk mosip.idrepo.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4dee61c5367..f31b81d12bd 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -113,7 +113,7 @@ ida.id.attribute.separator.fullAddress=, ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace -mosip.biosdk.default.service.url=${mosip.ida.biosdk.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service ## For real biosdk # mosip.biosdk.default.service.url=${mosip.ida.biosdk-service.url}/api # The fully qualified Class Name of the BIO SDK API implemented for Finger modality From 8e6f9a2d157246559be05d040e89aa85899b7045 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Thu, 2 Jun 2022 15:34:52 +0530 Subject: [PATCH 0817/1358] [DSD-1080] added the latest cbeff.xsd --- mosip-cbeff.xsd | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mosip-cbeff.xsd b/mosip-cbeff.xsd index edfa430a93d..1bede505788 100644 --- a/mosip-cbeff.xsd +++ b/mosip-cbeff.xsd @@ -188,4 +188,4 @@ SCHEMA. </xs:extension> </xs:simpleContent> </xs:complexType> -</xs:schema> +</xs:schema> \ No newline at end of file From cfa95c9b422149ccb29c9530bd05dbe917daa096 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <loganathan.sekar@mindtree.com> Date: Thu, 2 Jun 2022 16:13:24 +0530 Subject: [PATCH 0818/1358] Fixed config issues in qa5 --- application-default.properties | 2 +- resident-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index a9975e89f06..c95e996008c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -202,7 +202,7 @@ mosip.kernel.uin.not-start-with=0,1 mosip.kernel.uin.length.conjugative-even-digits-limit=3 ## Auth adapter -auth.server.validate.url=${mosip.kernel.auth.url}/v1/authmanager/authorize/admin/validateToken +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken #This is the frontend url configured in the open-id system. This url should match the issuer attribute in JWT. auth.server.admin.issuer.internal.uri=${keycloak.internal.url}/auth/realms/ diff --git a/resident-default.properties b/resident-default.properties index d10dd077e0e..5ce9c8a47d6 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -62,7 +62,7 @@ MACHINEDETAILS=${MASTER}/machines MACHINESEARCH=${MASTER}/machines/search MACHINECREATE=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters -RIDGENERATION=${mosip.kernel-ridgenerator-service.url}/v1/ridgenerator/generate/rid +RIDGENERATION=${mosip.kernel.ridgenerator.url}/v1/ridgenerator/generate/rid CREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid IDREPOSITORY=${mosip.idrepo.identity.url}/idrepository/v1/identity/ ENCRYPTURL=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt From d6abf671f856d23e92f69205c918e24374b2ded9 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Thu, 2 Jun 2022 16:29:07 +0530 Subject: [PATCH 0819/1358] Corrected syncdata url --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 5ce9c8a47d6..928835ae5e3 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -67,7 +67,7 @@ CREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid IDREPOSITORY=${mosip.idrepo.identity.url}/idrepository/v1/identity/ ENCRYPTURL=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt PACKETSIGNPUBLICKEY=${mosip.kernel.keymanager.url}/v1/keymanager/tpmsigning/publickey -MIDSCHEMAURL=${mosip.kernel.keymanager.url}/v1/syncdata/latestidschema +MIDSCHEMAURL=${mosip.kernel.syncdata.url}/v1/syncdata/latestidschema # DMZ service call SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync From 3d165a63916b90a86538dea56fe259d6f4742a4e Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 2 Jun 2022 17:14:43 +0530 Subject: [PATCH 0820/1358] MOSIP-21337 : Updated kernel-default properties --- kernel-default.properties | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 600cb4016fb..75cbf373aaa 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -736,3 +736,10 @@ mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENT mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ + +##These properties are used for validation in kernel-masterdata-service +#For example, Arabic needs to be added along with english +#the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag +#the final value in this case might look like [^a-z\u0600-\u06FF] +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] +mosip.kernel.masterdata.name.validate.regex=[^A-Za-z] \ No newline at end of file From 542d2ae6d0c258ffce15fdecaca68f6c897c5f4d Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 3 Jun 2022 14:10:51 +0530 Subject: [PATCH 0821/1358] updated the prop --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 947813721e8..2015866dbc8 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -290,7 +290,7 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -iam.base.url=${keycloak.internal.url} +iam.base.url=${keycloak.external.url} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/mosip validationStatus=success context=auth-otp From 7a0eb87082ff44ce2224da6b818f4eafd1bf193b Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 3 Jun 2022 14:18:28 +0530 Subject: [PATCH 0822/1358] Update pre-registration-default.properties --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 2015866dbc8..947813721e8 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -290,7 +290,7 @@ mosip.preregistration.login.id.validateotp=mosip.pre-registration.login.useridot mosip.preregistration.login.id.invalidatetoken=mosip.pre-registration.login.invalidate mosip.preregistration.login.id.config=mosip.pre-registration.login.config -iam.base.url=${keycloak.external.url} +iam.base.url=${keycloak.internal.url} auth-token-generator.rest.issuerUrl=${iam.base.url}/auth/realms/mosip validationStatus=success context=auth-otp From 1a05c6957e236fdee1c0a30345117d3e0062d14c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 6 Jun 2022 13:27:48 +0530 Subject: [PATCH 0823/1358] [ MOSIP-22358 ] updated mosip.admin.base.url --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 51df696f088..3d5028a87b0 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -292,6 +292,6 @@ mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.u # this property are used in AdminProxyService to get base url and version mosip.admin.masterdata.service.version=v1 mosip.admin.keymanager.service.version=v1 -mosip.admin.base.url=http://admin-proxy +mosip.admin.base.url=http://admin-proxy.admin mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ From 293630a9a8a7d67490297c7c345dfab65fa60f19 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 6 Jun 2022 14:04:57 +0530 Subject: [PATCH 0824/1358] [ MOSIP-22358 ] updated mosip.admin.base.url, masterdata and keymanager --- admin-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 3d5028a87b0..1e9945118cc 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -290,8 +290,8 @@ mosip.kernel.keymanager.uploadcertificate=${mosip.kernel.keymanager.url}/v1/keym mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadOtherDomainCertificate # this property are used in AdminProxyService to get base url and version -mosip.admin.masterdata.service.version=v1 -mosip.admin.keymanager.service.version=v1 -mosip.admin.base.url=http://admin-proxy.admin +mosip.admin.masterdata.service.version=masterdata.kernel/v1 +mosip.admin.keymanager.service.version=keymanager.keymanager/v1 +mosip.admin.base.url=http:/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ From 4235ae49130e5a0f8e994c0fbc2254a2306a86d1 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 6 Jun 2022 15:08:22 +0530 Subject: [PATCH 0825/1358] update reset_password_url --- registration-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/registration-default.properties b/registration-default.properties index 980f1d7ce47..4781be63054 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -363,7 +363,8 @@ mosip.registration.quality_check_with_sdk=N mosip.registration.replace_sdk_quality_score=N #URL for reset password -mosip.registration.reset_password_url=${mosip.api.internal.url}/keycloak/auth/realms/mosip/account/ +#mosip.registration.reset_password_url=${mosip.api.internal.url}/keycloak/auth/realms/mosip/account/ +mosip.registration.reset_password_url=${keycloak.external.url}/auth/realms/mosip/account #Flag to check / bypass device cert validation mosip.registration.onboard_yourself_url=https://docs.mosip.io/platform/modules/registration-client/first-user-registration-and-onboarding From b85501e99b0992777059e1153f415b52e712c296 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 6 Jun 2022 17:14:04 +0530 Subject: [PATCH 0826/1358] [ MOSIP-22358 ] updated mosip.admin.base.url, masterdata and keymanager --- admin-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 088185b5398..68ba069da95 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -290,8 +290,8 @@ mosip.kernel.keymanager.uploadcertificate=${mosip.kernel.keymanager.url}/v1/keym mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadOtherDomainCertificate # this property are used in AdminProxyService to get base url and version -mosip.admin.masterdata.service.version=v1 -mosip.admin.keymanager.service.version=v1 -mosip.admin.base.url=http://admin-proxy +mosip.admin.masterdata.service.version=masterdata.kernel/v1 +mosip.admin.keymanager.service.version=keymanager.keymanager/v1 +mosip.admin.base.url=http:/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ From cbbf5071b008fc8168a26a1617017c8961a05802 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 6 Jun 2022 17:15:49 +0530 Subject: [PATCH 0827/1358] [ MOSIP-21337 ] updated kernel masterdata code and name validator --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 75cbf373aaa..8a8a142fa72 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -741,5 +741,5 @@ auth.allowed.urls=http://localhost:5000/ #For example, Arabic needs to be added along with english #the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag #the final value in this case might look like [^a-z\u0600-\u06FF] -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] -mosip.kernel.masterdata.name.validate.regex=[^A-Za-z] \ No newline at end of file +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] \ No newline at end of file From bf4fd408bd27e31096a1f32b3a4759354395da5f Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Mon, 6 Jun 2022 17:25:54 +0530 Subject: [PATCH 0828/1358] [ DSD-1078 ] updated fileserver to external domain --- credential-service-default.properties | 6 +++--- mosip-context.json | 20 ++++++++++---------- vccontext.jsonld | 2 +- 3 files changed, 14 insertions(+), 14 deletions(-) diff --git a/credential-service-default.properties b/credential-service-default.properties index 9dbf0acfd9e..02b710a497a 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -16,14 +16,14 @@ mosip.iam.adapter.appid.credential-service=${mosip.idrepo.credential.auth.app-id mosip.auth.filter_disable=false -mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "${mosip.file.server.url}/.well-known/mosip-context.json" : "mosip-context.json"} +mosip.credential.service.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "https://${mosip.api.public.host}/.well-known/mosip-context.json" : "mosip-context.json"} mosip.credential.service.vercred.context.uri=vccontext.jsonld mosip.credential.service.vercred.id.url=${mosip.idrepo.credential.service.url}/credentials/ -mosip.credential.service.vercred.issuer.url=${mosip.file.server.url}/mosipvc/controller.json +mosip.credential.service.vercred.issuer.url=https://${mosip.api.public.host}/.well-known/controller.json mosip.credential.service.vercred.types=VerifiableCredential,MOSIPVerifiableCredential mosip.credential.service.vercred.proof.purpose=assertionMethod mosip.credential.service.vercred.proof.type=RsaSignature2018 -mosip.credential.service.vercred.proof.verificationmethod=${mosip.file.server.url}/mosipvc/public-key.json +mosip.credential.service.vercred.proof.verificationmethod=https://${mosip.api.public.host}/.well-known/public-key.json KEYMANAGER_VERCRED_SIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwsSign credentialType.formatter.VERCRED=VerCredProvider diff --git a/mosip-context.json b/mosip-context.json index ba37660726b..e7d79e94181 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -2,50 +2,50 @@ "@context": [{ "@version": 1.1 },"https://www.w3.org/ns/odrl.jsonld", { - "mosip": "https://${mosip.api.host}/mosip#", + "mosip": "https://${mosip.api.public.host}/mosip#", "schema": "http://schema.org/", "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", "vcVer": "mosip:vcVer", "UIN": "mosip:UIN", "addressLine1": { - "@id": "https://${mosip.api.host}/mosip#addressLine1", + "@id": "https://${mosip.api.public.host}/mosip#addressLine1", "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine2": { - "@id": "https://${mosip.api.host}/mosip#addressLine2", + "@id": "https://${mosip.api.public.host}/mosip#addressLine2", "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine3": { - "@id": "https://${mosip.api.host}/mosip#addressLine3", + "@id": "https://${mosip.api.public.host}/mosip#addressLine3", "@context": {"value": "rdf:value", "lang": "@language"} }, "city": { - "@id": "https://${mosip.api.host}/mosip#city", + "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} }, "gender": { - "@id": "https://${mosip.api.host}/mosip#gender", + "@id": "https://${mosip.api.public.host}/mosip#gender", "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { - "@id": "https://${mosip.api.host}/mosip#residenceStatus", + "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", "@context": {"value": "rdf:value", "lang": "@language"} }, "dateOfBirth": "mosip:dateOfBirth", "email": "mosip:email", "fullName": { - "@id": "https://${mosip.api.host}/mosip#fullName", + "@id": "https://${mosip.api.public.host}/mosip#fullName", "@context": {"value": "rdf:value", "lang": "@language"} }, "phone": "mosip:phone", "postalCode": "mosip:postalCode", "province": { - "@id": "https://${mosip.api.host}/mosip#province", + "@id": "https://${mosip.api.public.host}/mosip#province", "@context": {"value": "rdf:value", "lang": "@language"} }, "region": { - "@id": "https://${mosip.api.host}/mosip#region", + "@id": "https://${mosip.api.public.host}/mosip#region", "@context": {"value": "rdf:value", "lang": "@language"} }, "biometrics": "mosip:biometrics" diff --git a/vccontext.jsonld b/vccontext.jsonld index ff878ef02df..f9ceeb9f6bd 100644 --- a/vccontext.jsonld +++ b/vccontext.jsonld @@ -1,7 +1,7 @@ { "context" : [ "https://www.w3.org/2018/credentials/v1", - "${mosip.file.server.url}/mosipvc/mosip-context.json", + "https://${mosip.api.public.host}/.well-known/mosip-context.json", { "sec": "https://w3id.org/security#" } From 544bcb5e1f06832b38a935ddad7b866a3fa83d37 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 6 Jun 2022 20:15:49 +0530 Subject: [PATCH 0829/1358] Updated admin-default properties and partner-management default properties --- admin-default.properties | 5 +++++ partner-management-default.properties | 5 +++++ 2 files changed, 10 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 68ba069da95..57fd3ccd991 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -295,3 +295,8 @@ mosip.admin.keymanager.service.version=keymanager.keymanager/v1 mosip.admin.base.url=http:/ mosip.service.end-points=/**/masterdata/**,/**/keymanager/** auth.allowed.urls=https://${mosip.admin.host}/ + +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file diff --git a/partner-management-default.properties b/partner-management-default.properties index 3165190814b..a6282ae7aeb 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -307,3 +307,8 @@ mosip.role.pms.postmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.putmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmispsmispidlicensekey=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER + +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file From 72550c9d5b66529c477c7421f22e25731db17256 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 6 Jun 2022 20:25:01 +0530 Subject: [PATCH 0830/1358] Updated Admin-default properties and partner-management default properties --- admin-default.properties | 7 ++++++- partner-management-default.properties | 5 +++++ 2 files changed, 11 insertions(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 7b4bc4c6d6a..d95c8244c14 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -272,4 +272,9 @@ mosip.admin.packetupload.packetsync.phone=phone mosip.admin.audit.manager.eventName.pattern=^(Click|Page View): ([\W|\w]{1,100}$) -registration.processor.identityjson=identity-mapping.json \ No newline at end of file +registration.processor.identityjson=identity-mapping.json + +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file diff --git a/partner-management-default.properties b/partner-management-default.properties index 15697e143f1..f2113d818dd 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -305,3 +305,8 @@ mosip.role.pms.postmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.putmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER mosip.role.pms.getmispsmispidlicensekey=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER + +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file From ed2b8aa4f2c177dbddb377d0973bfa2526db3cac Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 6 Jun 2022 20:30:04 +0530 Subject: [PATCH 0831/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a3c42330154..8bce31547a9 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -966,4 +966,4 @@ mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR, auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face \ No newline at end of file From c73194786083a145c75acf40028680ff9957e432 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 6 Jun 2022 20:34:49 +0530 Subject: [PATCH 0832/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 67 +++++++++++------------ 1 file changed, 33 insertions(+), 34 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8bce31547a9..4323bfad5fd 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -2,8 +2,9 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # db.dbuser.password -# mosip.mosip.regproc.client.secret -# keycloak.external.url +# keycloak.internal.host +# mosip.regproc.client.secret +# keycloak.internal.url # activemq.host # activemq.core.port # s3.accesskey @@ -65,10 +66,10 @@ cluster.manager.file.name=hazelcast_default.xml # Workel pool size to process multiple requests parallely worker.pool.size=10 # Route files corresponding to the secure flow -camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml +camel.secure.active.flows.file.names=registration-processor-camel-routes-new-default.xml,registration-processor-camel-routes-update-default.xml,registration-processor-camel-routes-activate-default.xml,registration-processor-camel-routes-res-update-default.xml,registration-processor-camel-routes-deactivate-default.xml,registration-processor-camel-routes-lost-default.xml,registration-processor-camel-routes-res-reprint-default.xml,registration-processor-camel-routes-biometric-correction-default.xml,registration-processor-camel-routes-opencrvs_new-default.xml # main processor used in stages -registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE +registration.processor.main-processes=NEW,UPDATE,LOST,RES_UPDATE,ACTIVATE,DEACTIVATE,OPENCRVS_NEW # sub processor used in stages registration.processor.sub-processes=BIOMETRIC_CORRECTION @@ -77,10 +78,10 @@ token.request.id=io.mosip.registration.processor token.request.appid=regproc token.request.version=1.0 token.request.clientId=mosip-regproc-client -token.request.secretKey=${mosip.mosip.regproc.client.secret} +token.request.secretKey=${mosip.regproc.client.secret} # Token generation issuer url. NOTE: The url here must match the one mentioned in keycloak auth token, otherwise # performance of system will be severly affected. -token.request.issuerUrl=${keycloak.external.url}/auth/realms/mosip +token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## Audit Service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits @@ -141,7 +142,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo # Status for matched records in demo dedupe stage. # 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. -registration.processor.demodedupe.manual.adjudication.status=PENDING +registration.processor.demodedupe.manual.adjudication.status=REJECTED # Validate hostlisted devices DEVICEHOTLIST=${mosip.admin.hotlist.url}/v1/hotlist/status @@ -170,7 +171,6 @@ mosip.registration.processor.sync.version=1.0 mosip.registration.processor.registration.status.version=1.0 mosip.registration.processor.transaction.version=1.0 mosip.registration.processor.lostrid.id=mosip.registration.lostrid -mosip.registration.processor.sync.version=1.0 mosip.registration.processor.lostrid.version=1.0 mosip.registration.processor.registration.external.status.id=mosip.registration.external.status @@ -235,8 +235,8 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav -mosip.kernel.virus-scanner.port=80 +mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.port=3310 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl @@ -290,7 +290,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=4800 +registration.processor.reprocess.elapse.time=300 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron @@ -347,8 +347,6 @@ registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudicatio registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication # Manual verification queue message expiry in seconds, if given 0 then message will never expire # Buffer time above the expiry queue to allow reprocessing (in seconds) -registration.processor.manual.adjudication.policy.id=mpolicy-default-adjudication -registration.processor.manual.adjudication.subscriber.id=mpartner-default-adjudication registration.processor.manual.adjudication.queue.username=${registration.processor.queue.username} registration.processor.manual.adjudication.queue.password=${registration.processor.queue.password} registration.processor.manual.adjudication.queue.url=${registration.processor.queue.url} @@ -393,14 +391,6 @@ mosip.regproc.workflow-manager.action.job.months=* #schedular weeks configuration mosip.regproc.workflow-manager.action.job.days_of_week=* -mosip.regproc.workflow.action.job.server.port=8026 -mosip.regproc.workflow.action.job.eventbus.port=5754 -mosip.regproc.workflow.action.job.server.servlet.path=/registrationprocessor/v1/workflowmanager - -mosip.regproc.workflow.action.job.eventbus.kafka.commit.type=single -mosip.regproc.workflow.action.job.eventbus.kafka.max.poll.records=100 -mosip.regproc.workflow.action.job.eventbus.kafka.poll.frequency=100 -mosip.regproc.workflow.action.job.eventbus.kafka.group.id=workflow-manager-service mosip.regproc.workflow.manager.eventbus.kafka.commit.type=single mosip.regproc.workflow.manager.eventbus.kafka.max.poll.records=100 @@ -455,8 +445,8 @@ mosip.regproc.data.share.protocol=http mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK -#mosip.biosdk.default.host=${mosip.mock.biosdk.url} -mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service +#mosip.biosdk.default.host=${mosip.regproc.biosdk.url} +mosip.biosdk.default.service.url=${mosip.regproc.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -516,8 +506,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] - +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "STOP_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 @@ -750,11 +739,23 @@ mosip.regproc.printing.server.port=8099 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 +#opencrvs-stage +mosip.regproc.opencrvs.eventbus.kafka.commit.type=single +mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 +mosip.regproc.opencrvs.eventbus.kafka.poll.frequency=100 +mosip.regproc.opencrvs.eventbus.kafka.group.id=opencrvs-stage +mosip.regproc.opencrvs.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.opencrvs.server.port=8045 +mosip.regproc.opencrvs.server.servlet.path=/registrationprocessor/v1/opencrvs-stage +mosip.regproc.opencrvs.eventbus.port=5745 +mosip.regproc.opencrvs.credentialtype=opencrvs +mosip.regproc.opencrvs.issuer=opencrvs-partner + packetmanager.name.source.resident=RESIDENT packetmanager.name.source.default=REGISTRATION_CLIENT object.store.s3.use.account.as.bucketname=true -# default priority for correction packets +# Default priority for correction packets. # To define priority use below stage names. For example, field 'gender' has priority in uin-generator-stage. The key for uin-generator-stage is 'uingenerator'. So the key would be 'packetmanager.provider.uingenerator.gender' # packetreceiver,packetuploader,packetvalidator,qualitychecker,osivalidator,demodedupe,classification,biodedupe,bioauth,manualverification,uingenerator,messagesender packetmanager.provider.uingenerator.lastName=source:REGISTRATION_CLIENT\/process:NEW|UPDATE|LOST,source:RESIDENT\/process:ACTIVATED|DEACTIVATED|RES_UPDATE|RES_REPRINT @@ -932,9 +933,9 @@ mosip.registration.processor.registration.external.status.version=1.0 mosip.registration.processor.packet.external.status.version=1.0 mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret=${mosip.mosip.regproc.client.secret} +mosip.iam.adapter.clientsecret=${mosip.regproc.client.secret} mosip.iam.adapter.appid=regproc -mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey # in minutes mosip.iam.adapter.validate-expiry-check-rate=30 @@ -947,8 +948,9 @@ mosip.auth.filter_disable=false ## Object store object.store.s3.accesskey=${s3.accesskey} object.store.s3.secretkey=${s3.secretkey} -## If minio, and running inside cluster URL will be something like http://minio.minio:9000. -object.store.s3.url=s3.${s3.region}.amazonaws.com +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 @@ -962,8 +964,5 @@ mosip.role.registration.getPostsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,RE mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT - - auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client - -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face \ No newline at end of file +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face,EXCEPTION_PHOTO From 6d3c893a04060a228e4fda5f556ac4f84d53a97c Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 6 Jun 2022 20:37:52 +0530 Subject: [PATCH 0833/1358] Update registration-processor-default.properties From 0d0367ea2f88a852d0e7ef1defe2e324a327eb2c Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 6 Jun 2022 20:38:47 +0530 Subject: [PATCH 0834/1358] Update registration-processor-default.properties From 7f89128813b4dbd3eda1e275ca945f333ab29f2e Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 9 Jun 2022 18:19:36 +0530 Subject: [PATCH 0835/1358] Added Threshold quality for Iris and Face BioAuth --- registration-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/registration-default.properties b/registration-default.properties index 4781be63054..881cf38b274 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -231,6 +231,11 @@ mosip.registration.mds.deduplication.enable.flag=N #Threshold quality for Fingerprint biometric authentication mosip.fingerprint_authentication.quality_score=30 +#Threshold quality for Iris biometric authentication +mosip.iris_authentication.quality_score=30 + +#Threshold quality for Face biometric authentication +mosip.face_authentication.quality_score=30 #Jobs From 15ae94058ffeb8ae9205e13fba632d52cd4cd834 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 9 Jun 2022 18:57:17 +0530 Subject: [PATCH 0836/1358] [ MOSIP-22406 ] disabled kernel notification health check --- kernel-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/kernel-default.properties b/kernel-default.properties index 271183709f8..a25b8fb01c0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -61,6 +61,7 @@ spring.mail.properties.mail.smtp.auth=true spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB +management.health.mail.enabled=false ## set this property to "false" disable kernel notification health check ## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE From 4eb8b4c5c9c4506a4cdb790e3520c5ccfd5112f1 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Thu, 9 Jun 2022 18:59:49 +0530 Subject: [PATCH 0837/1358] [ MOSIP-22406 ] disabled kernel notification health check --- kernel-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index a25b8fb01c0..7719cf3fa8f 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -61,7 +61,9 @@ spring.mail.properties.mail.smtp.auth=true spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB -management.health.mail.enabled=false ## set this property to "false" disable kernel notification health check + +## set this property to "false" to disable kernel notification health check +management.health.mail.enabled=false ## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE From 9bb907b7c7d58df7b013a94d300a3ffbffbf0182 Mon Sep 17 00:00:00 2001 From: Yashavant1629 <102220960+Yashavant1629@users.noreply.github.com> Date: Mon, 13 Jun 2022 17:56:30 +0530 Subject: [PATCH 0838/1358] Added the below properties MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ##This property is used for validation in kernel-masterdata-service mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\0600–06FF] mosip.kernel.masterdata.name.validate.regex=[^a-z\0600–06FF] --- kernel-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 7719cf3fa8f..fc8f5543dac 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -739,3 +739,7 @@ mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENT mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ + +##This property is used for validation in kernel-masterdata-service +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\0600–06FF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\0600–06FF] From 68bd72d62feed023e3025e0c561da728170725fb Mon Sep 17 00:00:00 2001 From: Yashavant1629 <102220960+Yashavant1629@users.noreply.github.com> Date: Mon, 13 Jun 2022 18:07:32 +0530 Subject: [PATCH 0839/1358] Update kernel-default.properties updated regex property --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index fc8f5543dac..21e0a37453e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -741,5 +741,5 @@ mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ ##This property is used for validation in kernel-masterdata-service -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\0600–06FF] -mosip.kernel.masterdata.name.validate.regex=[^a-z\0600–06FF] +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\0600–\06FF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\0600–\06FF] From bcd9bc2ca0c9d1039b62ac6f135d4655f94a025a Mon Sep 17 00:00:00 2001 From: Yashavant1629 <102220960+Yashavant1629@users.noreply.github.com> Date: Mon, 13 Jun 2022 18:13:06 +0530 Subject: [PATCH 0840/1358] Update kernel-default.properties updated regex property --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 21e0a37453e..ab9e7676f2e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -741,5 +741,5 @@ mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ ##This property is used for validation in kernel-masterdata-service -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\0600–\06FF] -mosip.kernel.masterdata.name.validate.regex=[^a-z\0600–\06FF] +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600–\u06FF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600–\u06FF] From 2c43d98d01e882a3d586fe3c2bb423cc4a24d0ed Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Mon, 13 Jun 2022 18:49:51 +0530 Subject: [PATCH 0841/1358] MOSIP-21337 : Updated kernel default properties --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index ab9e7676f2e..e39dae653e0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -741,5 +741,5 @@ mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ ##This property is used for validation in kernel-masterdata-service -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600–\u06FF] -mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600–\u06FF] +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF] From 744427794fd3ade3e21c0d546bd98829de997228 Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Tue, 14 Jun 2022 13:00:55 +0530 Subject: [PATCH 0842/1358] [ DSD-1119 ] removed management.health.mail.enabled ## set this property to "false" to disable kernel notification health check management.health.mail.enabled=false --- kernel-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index e39dae653e0..90d1011a596 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -62,8 +62,6 @@ spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB -## set this property to "false" to disable kernel notification health check -management.health.mail.enabled=false ## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE From f70283a7b276fd0fa6c43e6689931767de14315f Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Mon, 20 Jun 2022 12:10:03 +0530 Subject: [PATCH 0843/1358] Updated properties file --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 7a48cef4153..65358ff55cd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -285,7 +285,7 @@ mosip.login.mode= email,mobile ## Notification mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL -mosip.kernel.sms.proxy-sms=true +mosip.kernel.sms.proxy-sms=false mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true ## Notification lanugage types: either PRIMARY or BOTH From 67c904834f01d0deafebef6d30370a8205219146 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Mon, 20 Jun 2022 13:31:29 +0530 Subject: [PATCH 0844/1358] Added temporary workaround for kernel-notifier --- kernel-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 8a8a142fa72..d174f71715b 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -742,4 +742,5 @@ auth.allowed.urls=http://localhost:5000/ #the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag #the final value in this case might look like [^a-z\u0600-\u06FF] mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] -mosip.kernel.masterdata.name.validate.regex=[^a-z\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] \ No newline at end of file +mosip.kernel.masterdata.name.validate.regex=[^a-z\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] +management.health.mail.enabled=false From 78f7ed3d77dd4337d7c6bafbaeff30c39576a31d Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 20 Jun 2022 14:07:37 +0530 Subject: [PATCH 0845/1358] enabled PrependThumbprint --- data-share-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/data-share-default.properties b/data-share-default.properties index 6be511ea086..52537547358 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -37,7 +37,7 @@ mosip.data.share.includeCertificateHash=false mosip.data.share.includeCertificate=false mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 -mosip.data.share.prependThumbprint=false +mosip.data.share.prependThumbprint=true mosip.role.durian.postcreatepolicyidsubscriberid=CREATE_SHARE auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client,mpartner-default-print,mosip-resident-client,opencrvs-partner From 61ac8ed6f97d8665fe2cbf4629e9aa932eb1dfbd Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 20 Jun 2022 18:19:02 +0530 Subject: [PATCH 0846/1358] enabled debug for reg-status-service --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index c95e996008c..fd22c70b23e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -390,6 +390,7 @@ mosip.stage.environment=Developer logging.level.root=INFO logging.level.io.mosip=INFO logging.level.io.vertx=INFO +logging.level.io.mosip.registration.processor.status=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## Tomcat access logs From 1cf63af0ddbe40b6051c76b58ef432392981528e Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 21 Jun 2022 13:10:10 +0530 Subject: [PATCH 0847/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index d174f71715b..7e84d20fcff 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -743,4 +743,4 @@ auth.allowed.urls=http://localhost:5000/ #the final value in this case might look like [^a-z\u0600-\u06FF] mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0C80-\u0CFF\u0900-\u097F\u0B80-\u0BFF] -management.health.mail.enabled=false +management.health.mail.enabled=true From 6fb4b9101b3901bb530226c4e763dc41794b4155 Mon Sep 17 00:00:00 2001 From: NishantKumar4559 <100404536+NishantKumar4559@users.noreply.github.com> Date: Tue, 5 Jul 2022 12:46:15 +0530 Subject: [PATCH 0848/1358] Update registration-processor-default.properties removed face from mosip.regproc.cbeff-validation.mandatory.modalities --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 4323bfad5fd..16071995b31 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -965,4 +965,4 @@ mosip.role.registration.getPostlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFF mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client -mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,Face,EXCEPTION_PHOTO +mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO From c2f094b0545ceac3ba59ffb5a8093a908f598cc5 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Mon, 11 Jul 2022 15:25:23 +0530 Subject: [PATCH 0849/1358] [DSD-1211] added the properties.. --- registration-processor-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 16071995b31..4652f386e97 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -966,3 +966,6 @@ mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RE mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO + +registration.processor.lostrid.max.registrationid=5 +mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 \ No newline at end of file From 4f55fbfe9249e2a43a2dfe0605bae134c1a19e70 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 19 Jul 2022 17:25:31 +0530 Subject: [PATCH 0850/1358] Updated abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From ed6c19330caae4dfb9495c9b298d5e1f0af39a58 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 19 Jul 2022 17:46:17 +0530 Subject: [PATCH 0851/1358] Reverted abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From b3708f068c0a459403e5e60a52a2038dc9b4f90c Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Fri, 22 Jul 2022 12:35:32 +0530 Subject: [PATCH 0852/1358] Added missing configs --- registration-processor-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b7c9473db1b..ee6f4a02ce4 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -316,6 +316,7 @@ registration.processor.verification.queue.password=${registration.processor.queu registration.processor.verification.queue.url=${registration.processor.queue.url} registration.processor.verification.queue.typeOfQueue=${registration.processor.queue.typeOfQueue} registration.processor.verification.queue.response=verification-to-mosip +registration.processor.queue.verification.request=mosip-to-verification registration.processor.verification.policy.id=mpolicy-default-adjudication registration.processor.verification.subscriber.id=mpartner-default-adjudication registration.processor.queue.verification.request.messageTTL=5400 @@ -338,6 +339,8 @@ mosip.registration.processor.manual.adjudication.decision.id=mosip.manual.adjudi mosip.registration.processor.manual.adjudication.biometric.id=mosip.manual.adjudication.biometric mosip.registration.processor.manual.adjudication.demographic.id=mosip.manual.adjudication.demographic mosip.registration.processor.manual.adjudication.packetinfo.id=mosip.manual.adjudication.packetinfo +registration.processor.queue.manual.adjudication.request=mosip-to-adjudication +registration.processor.manual.adjudication.queue.response=adjudication-to-mosip #Manual verification queue message expiry in seconds, if given 0 then message will never expire registration.processor.queue.manual.adjudication.request.messageTTL=5400 @@ -527,6 +530,7 @@ mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.s mosip.regproc.packet.uploader.server.port=8087 mosip.regproc.packet.uploader.server.servlet.path=/registrationprocessor/v1/uploader mosip.regproc.packet.uploader.eventbus.port=5714 +packet.manager.iteration.addition.enabled=true packet.uploader.stage=registration-processor-packet-uploader-stage From 1fa3464cc1eb16f48596f21b1f06e1b48ecca81a Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Fri, 22 Jul 2022 12:36:52 +0530 Subject: [PATCH 0853/1358] MOSIP-23101 : additional field search configuration --- packet-manager-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 85f29c401f3..ff436cc381e 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -4,6 +4,8 @@ # Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator +# The additional fields to be searched apart from demograpgics +packetmanager.additional.fields.search.from.metainfo=officerBiometricFileName,supervisorBiometricFileName # Roles mosip.role.commons-packet.putcreatepacket=REGISTRATION_PROCESSOR From 2d4007b52d05264fd3de22e3ad369053095dc744 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Fri, 22 Jul 2022 12:38:41 +0530 Subject: [PATCH 0854/1358] MOSIP-23101 : additional field search configuration --- packet-manager-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 85f29c401f3..ff436cc381e 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -4,6 +4,8 @@ # Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator +# The additional fields to be searched apart from demograpgics +packetmanager.additional.fields.search.from.metainfo=officerBiometricFileName,supervisorBiometricFileName # Roles mosip.role.commons-packet.putcreatepacket=REGISTRATION_PROCESSOR From d5e5fb3a03ad13cde7bdd96179b60f9f30167bdf Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 22 Jul 2022 16:03:42 +0530 Subject: [PATCH 0855/1358] Changed return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 944e17d1f2f8d22b19a71e8db43652b1b9d71707 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 22 Jul 2022 16:53:19 +0530 Subject: [PATCH 0856/1358] Updated mock.mv.decision to REJECTED --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 4652f386e97..ece19278e08 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -843,7 +843,7 @@ mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability- ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] -mock.mv.decision=APPROVED +mock.mv.decision=REJECTED # salt generation properties mosip.regproc.db.url=${javax.persistence.jdbc.url} @@ -968,4 +968,4 @@ auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO registration.processor.lostrid.max.registrationid=5 -mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 \ No newline at end of file +mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 From d807dc52354a987d4b611392dff1ee4fd833a2a5 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 25 Jul 2022 11:08:24 +0530 Subject: [PATCH 0857/1358] Updated abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 40fd5e6f94bbdb21c6690ea98a09441540e50fc8 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 29 Jul 2022 11:53:05 +0530 Subject: [PATCH 0858/1358] [DSD-1273] config changes cherry-pick --- registration-default.properties | 22 ++++++++++++++-------- 1 file changed, 14 insertions(+), 8 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 881cf38b274..633c0504c59 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -324,12 +324,13 @@ mosip.kernel.idobjectvalidator.property-source=LOCAL #----For Transliteration Component---- #Language Code for Arabic Language. Should not be modified -mosip.kernel.transliteration.arabic-language-code=ara +mosip.kernel.transliteration.arabic-language-code=${mosip.kernel.transliteration.arabic-language-code} #Language Code for French Language. Should not be modified +mosip.kernel.transliteration.franch-language-code=${mosip.kernel.transliteration.franch-language-code} #Language Code for English Language. Should not be modified -mosip.kernel.transliteration.english-language-code=eng +mosip.kernel.transliteration.english-language-code=${mosip.kernel.transliteration.english-language-code} #----For CBEFF Component---- @@ -408,12 +409,6 @@ mosip.regproc.packet.classifier.tagging.agegroup.ranges={'INFANT':'0-5','MINOR': # it is comma separated list of field ids mosip.registration.fields.to.retain.post.prid.fetch=consent,consentText,preferredLang -## Roles -mosip.role.registration.postlostridsearch=REGISTRATION_ADMIN,REGISTRATION_OFFICER,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.registration.postsync=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.postsyncv2=REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,RESIDENT -mosip.role.registration.getsearchrid=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN - ## Connection and read timeouts for MDM requests in millis mosip.registration.mdm.connection.timeout=10000 @@ -477,3 +472,14 @@ mosip.kernel.virus-scanner.host=${mosip.kernel.virus-scanner.host} mosip.kernel.virus-scanner.port=${mosip.kernel.virus-scanner.port} mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} ## end of global properties + +## backward compatibility fields +mosip.registration.uin.update.configured.fields=test +#mosip.primary-language=eng +#mosip.secondary-language=fra,ara +mosip.primary-language=${mosip.primary-language} +mosip.secondary-language=${mosip.secondary-language} +mosip.registration.ideal_time=900 +mosip.kernel.applicant.type.age.limit=0 +mosip.registration.max_age=200 + From 9091ec153d7fb4615c71ebe06d2432366b180e50 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 29 Jul 2022 13:02:51 +0530 Subject: [PATCH 0859/1358] Disable printing trace logs in console --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 0185dd7f704..2f5516a32ed 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -54,4 +54,4 @@ console = true # Default is false [ballerina.http.traceLogAdvancedConfig] # Enable printing trace logs in console -console = true # Default is false +console = false # Default is false From 274e44763fb9e84d20b9675eb0732769577cc1cc Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 29 Jul 2022 13:40:22 +0530 Subject: [PATCH 0860/1358] [DSD-1273] added language changes --- admin-default.properties | 2 +- application-default.properties | 9 +++++---- mimoto-default.properties | 4 ++-- print-default.properties | 4 ++-- resident-app-default.properties | 2 +- 5 files changed, 11 insertions(+), 10 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 060e1902f95..4174179c65a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -71,7 +71,7 @@ mosip.admin.security.policy.userrole-auth-url=${mosip.kernel.authmanager.url}/v1 ## Masterdata cards -mosip.admin.masterdata.lang-code=eng,ara +mosip.admin.masterdata.lang-code=eng,ara,fra mosip.admin-services.required.roles=GLOBAL_ADMIN #masterdata machine diff --git a/application-default.properties b/application-default.properties index e352bdc561c..76ab83f588d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -91,7 +91,7 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng @@ -276,6 +276,7 @@ mosip.kernel.virus-scanner.port=3310 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara mosip.kernel.transliteration.english-language-code=eng +mosip.kernel.transliteration.french-language-code=fra ## DOB mosip.default.dob.month=01 @@ -410,11 +411,11 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges mosip.optional-languages=ara -mosip.min-languages.count=1 -mosip.max-languages.count=2 +mosip.min-languages.count=2 +mosip.max-languages.count=3 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara +mosip.default.template-languages=eng,ara,fra # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/mimoto-default.properties b/mimoto-default.properties index ce8fde91263..77cf8701915 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng diff --git a/print-default.properties b/print-default.properties index 26c9f8055ef..0ec39bec316 100644 --- a/print-default.properties +++ b/print-default.properties @@ -66,9 +66,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng ## CBEFF util diff --git a/resident-app-default.properties b/resident-app-default.properties index dcf8f091b70..91cb59ec474 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,7 +96,7 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.template-language=eng mosip.optional-languages=ara From 8fa914f29eda5d0ca8b233eec4d8baa5f809122c Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 29 Jul 2022 13:43:20 +0530 Subject: [PATCH 0861/1358] [DSD-1273] added fra lang in resident-app-default.properties --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index 91cb59ec474..8c45381053b 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -99,7 +99,7 @@ registration.processor.signature.isEnabled=true mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng From 2c965b7289cf1efc1dcba8e84d690eeb69319bb8 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Fri, 29 Jul 2022 14:50:14 +0530 Subject: [PATCH 0862/1358] Using same object bucket name --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index aefca740c9a..ba9965e36a0 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepository +mosip.idrepo.objectstore.bucket-name=idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details From 1c453bb1265afdbc446466841f9ed6a223d9f0ec Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 3 Aug 2022 18:09:55 +0530 Subject: [PATCH 0863/1358] Update registration-default.properties --- registration-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 633c0504c59..0742631e7c4 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -475,8 +475,6 @@ mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} ## backward compatibility fields mosip.registration.uin.update.configured.fields=test -#mosip.primary-language=eng -#mosip.secondary-language=fra,ara mosip.primary-language=${mosip.primary-language} mosip.secondary-language=${mosip.secondary-language} mosip.registration.ideal_time=900 From 60e742c64fa61ce1ccb361859204f7f346d6d7f5 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 9 Aug 2022 09:27:08 +0530 Subject: [PATCH 0864/1358] [ MOSIP-23405 ] Enabled the sms proxy property. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index e352bdc561c..fd22c70b23e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -285,7 +285,7 @@ mosip.login.mode= email,mobile ## Notification mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL -mosip.kernel.sms.proxy-sms=false +mosip.kernel.sms.proxy-sms=true mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true ## Notification lanugage types: either PRIMARY or BOTH From d2fd0a0fee1747cbcc944abba0355e6d1b3af0ff Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 9 Aug 2022 10:03:09 +0530 Subject: [PATCH 0865/1358] [ MOSIP-23405 ] Enabled the sms proxy property. --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 76ab83f588d..6deb0de935f 100644 --- a/application-default.properties +++ b/application-default.properties @@ -286,7 +286,7 @@ mosip.login.mode= email,mobile ## Notification mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL -mosip.kernel.sms.proxy-sms=false +mosip.kernel.sms.proxy-sms=true mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true ## Notification lanugage types: either PRIMARY or BOTH From eefd0cd896d9b3e8cf56e1cf452d39d7bdea8435 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 9 Aug 2022 12:23:12 +0530 Subject: [PATCH 0866/1358] made api's to public.. --- mosip-context.json | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/mosip-context.json b/mosip-context.json index c2b5e493449..4da43560e8f 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -2,33 +2,33 @@ "@context": [{ "@version": 1.1 },"https://www.w3.org/ns/odrl.jsonld", { - "mosip": "https://${mosip.api.host}/mosip#", + "mosip": "https://${mosip.api.public.host}/mosip#", "schema": "http://schema.org/", "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", "vcVer": "mosip:vcVer", "UIN": "mosip:UIN", "addressLine1": { - "@id": "https://${mosip.api.host}/mosip#addressLine1", + "@id": "https://${mosip.api.public.host}/mosip#addressLine1", "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine2": { - "@id": "https://${mosip.api.host}/mosip#addressLine2", + "@id": "https://${mosip.api.public.host}/mosip#addressLine2", "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine3": { - "@id": "https://${mosip.api.host}/mosip#addressLine3", + "@id": "https://${mosip.api.public.host}/mosip#addressLine3", "@context": {"value": "rdf:value", "lang": "@language"} }, "city": { - "@id": "https://${mosip.api.host}/mosip#city", + "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} }, "gender": { - "@id": "https://${mosip.api.host}/mosip#gender", + "@id": "https://${mosip.api.public.host}/mosip#gender", "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { - "@id": "https://${mosip.api.host}/mosip#residenceStatus", + "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", "@context": {"value": "rdf:value", "lang": "@language"} }, @@ -36,7 +36,7 @@ "email": "mosip:email", "fullName": { - "@id": "https://${mosip.api.host}/mosip#fullName", + "@id": "https://${mosip.api.public.host}/mosip#fullName", "@context": {"value": "rdf:value", "lang": "@language"} }, @@ -44,11 +44,11 @@ "postalCode": "mosip:postalCode", "province": { - "@id": "https://${mosip.api.host}/mosip#province", + "@id": "https://${mosip.api.public.host}/mosip#province", "@context": {"value": "rdf:value", "lang": "@language"} }, "region": { - "@id": "https://${mosip.api.host}/mosip#region", + "@id": "https://${mosip.api.public.host}/mosip#region", "@context": {"value": "rdf:value", "lang": "@language"} }, From e77c6bd4ce2d66f4b17608db9b5080024a008890 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 9 Aug 2022 12:53:26 +0530 Subject: [PATCH 0867/1358] [DSD-1312] updated the context url's.. --- mosip-context.json | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/mosip-context.json b/mosip-context.json index c2b5e493449..4da43560e8f 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -2,33 +2,33 @@ "@context": [{ "@version": 1.1 },"https://www.w3.org/ns/odrl.jsonld", { - "mosip": "https://${mosip.api.host}/mosip#", + "mosip": "https://${mosip.api.public.host}/mosip#", "schema": "http://schema.org/", "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", "vcVer": "mosip:vcVer", "UIN": "mosip:UIN", "addressLine1": { - "@id": "https://${mosip.api.host}/mosip#addressLine1", + "@id": "https://${mosip.api.public.host}/mosip#addressLine1", "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine2": { - "@id": "https://${mosip.api.host}/mosip#addressLine2", + "@id": "https://${mosip.api.public.host}/mosip#addressLine2", "@context": {"value": "rdf:value", "lang": "@language"} }, "addressLine3": { - "@id": "https://${mosip.api.host}/mosip#addressLine3", + "@id": "https://${mosip.api.public.host}/mosip#addressLine3", "@context": {"value": "rdf:value", "lang": "@language"} }, "city": { - "@id": "https://${mosip.api.host}/mosip#city", + "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} }, "gender": { - "@id": "https://${mosip.api.host}/mosip#gender", + "@id": "https://${mosip.api.public.host}/mosip#gender", "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { - "@id": "https://${mosip.api.host}/mosip#residenceStatus", + "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", "@context": {"value": "rdf:value", "lang": "@language"} }, @@ -36,7 +36,7 @@ "email": "mosip:email", "fullName": { - "@id": "https://${mosip.api.host}/mosip#fullName", + "@id": "https://${mosip.api.public.host}/mosip#fullName", "@context": {"value": "rdf:value", "lang": "@language"} }, @@ -44,11 +44,11 @@ "postalCode": "mosip:postalCode", "province": { - "@id": "https://${mosip.api.host}/mosip#province", + "@id": "https://${mosip.api.public.host}/mosip#province", "@context": {"value": "rdf:value", "lang": "@language"} }, "region": { - "@id": "https://${mosip.api.host}/mosip#region", + "@id": "https://${mosip.api.public.host}/mosip#region", "@context": {"value": "rdf:value", "lang": "@language"} }, From ca7118674649996540bed38f596853f16e6c6dd9 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Wed, 10 Aug 2022 16:03:20 +0530 Subject: [PATCH 0868/1358] Updated abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From a8801cdb6b60cf1e9ba766f6f36b1417479e9b40 Mon Sep 17 00:00:00 2001 From: nagarjunakuchi <nagarjunabtechece@gmail.com> Date: Thu, 11 Aug 2022 15:02:16 +0530 Subject: [PATCH 0869/1358] Removed roles configurations --- partner-management-default.properties | 85 +-------------------------- 1 file changed, 2 insertions(+), 83 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index a6282ae7aeb..bc07324353b 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -74,10 +74,7 @@ auth.allowed.urls=https://${mosip.pmp.host}/ application.id=PARTNER application.name=partner -## To configure starting value or initial value of mispId. -## ex: if value = 3 ==> mispId starts from 100 -## if value = 4 ==> mispId starts from 1000 -mosip.kernel.mispid.length = 3 +## To configure the length of the misp license key mosip.kernel.idgenerator.misp.license-key-length = 50 ## To configure the partner types for which extractors are required. It should be "," separated. pmp.bioextractors.required.partner.types = Credential_Partner,Online_Verification_Partner @@ -100,9 +97,6 @@ pmp.partner.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+) pmp.partner.partnerId.max.length=36 pmp.partner.mobileNumbe.max.length=16 -## Time difference between request creation and request processing -masterdata.registerdevice.timestamp.validate=+5 - ## Keymanager mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign ## Kernel services @@ -233,82 +227,7 @@ pms.notifications-schedule.fixed-rate=24 partner.register.as.user.in.iam.enable=false -## Roles -mosip.role.pms.postpoliciesgroupnew=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.putpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.postpolicies=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.postpoliciespolicyidgrouppublish=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.putpoliciespolicyid=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.patchpoliciespolicyidgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpolicies=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpoliciespolicyid=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpoliciesapikey=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpoliciespolicyidpartnerpartnerid=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpoliciesgroupall=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.postpoliciesgroupsearch=PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.postpoliciessearch=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.getpoliciesconfigkey=PARTNER_ADMIN,POLICYMANAGER -mosip.role.pms.postpoliciesgroupfiltervalues=PARTNER_ADMIN,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER -mosip.role.pms.postpoliciesfiltervalues=PARTNER_ADMIN,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER -mosip.role.pms.getactivegroupgroupname=AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,ABIS_PARTNER,MANUAL_ADJUDICATION,POLICYMANAGER -mosip.role.pms.postdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER -mosip.role.pms.putdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER -mosip.role.pms.patchdevicedetail=PARTNER_ADMIN -mosip.role.pms.postdevicedetailsearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER -mosip.role.pms.postdevicedetaildevicetypesearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER -mosip.role.pms.postdevicedetailfiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER -mosip.role.pms.postdevicedetaildevicetypefiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER -mosip.role.pms.postdevicedetaildevicesubtypefiltervalues=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER -mosip.role.pms.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT -mosip.role.pms.postftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER -mosip.role.pms.putftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER -mosip.role.pms.patchftpchipdetail=PARTNER_ADMIN -mosip.role.pms.postftpchipdetailuploadcertificate=PARTNER_ADMIN,FTM_PROVIDER -mosip.role.pms.getftpchipdetailgetpartnercertificate=PARTNER_ADMIN,FTM_PROVIDER -mosip.role.pms.postftpchipdetailsearch=PARTNER_ADMIN,FTM_PROVIDER -mosip.role.pms.postregistereddevices=PARTNER_ADMIN,FTM_PROVIDER,ZONAL_ADMIN -mosip.role.pms.postregistereddevicesderegister=PARTNER_ADMIN,FTM_PROVIDER,ZONAL_ADMIN -mosip.role.pms.postregistereddevicessearch=PARTNER,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION -mosip.role.pms.postsecurebiometricinterface=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER -mosip.role.pms.putsecurebiometricinterface=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER -mosip.role.pms.patchsecurebiometricinterface=PARTNER_ADMIN -mosip.role.pms.postsecurebiometricinterfacesearch=PARTNER_ADMIN,FTM_PROVIDER,DEVICE_PROVIDER -mosip.role.pms.postpartners=PARTNER,PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER -mosip.role.pms.patchpartnerspartneridapikeyrequest=PARTNER_ADMIN,AUTH_PARTNER,PARTNER,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_PARTNER -mosip.role.pms.postpartnerspartneridbioextractorspolicyid=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER -mosip.role.pms.getpartnerspartneridbioextractorspolicyid=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER -mosip.role.pms.postpartnerspartneridcredentialtypepolicyid=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER -mosip.role.pms.getpartnerspartneridcredentialtypepolicies=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER -mosip.role.pms.postpartnerspartneridcontactadd=CREATE_SHARE,PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER -mosip.role.pms.putpartnerspartnerid=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER -mosip.role.pms.getpartnerspartnerid=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER,RESIDENT -mosip.role.pms.getpartnerspartneridapikeyrequest=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER -mosip.role.pms.getpartnerspartneridapikeyapikeyreqid=PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,CREDENTIAL_ISSUANCE,AUTH_PARTNER -mosip.role.pms.postpartnerscertificatecaupload=PARTNER_ADMIN,FTM_PROVIDER,AUTH_PARTNER,PMS_USER,ONLINE_VERIFICATION_PARTNER,PARTNERMANAGER -mosip.role.pms.postpartnerscertificateupload=PARTNER_ADMIN,PARTNER_ADMIN,FTM_PROVIDER,AUTH_PARTNER,PMS_USER,ONLINE_VERIFICATION_PARTNER,PARTNERMANAGER,ID_AUTHENTICATION,CREDENTIAL_ISSUANCE,CREDENTIAL_PARTNER -mosip.role.pms.getpartnerspartneridcertificate=PARTNER_ADMIN,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,ONLINE_VERIFICATION_PARTNER -mosip.role.pms.postpartnerssearch=PARTNER_ADMIN,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,ONLINE_VERIFICATION_PARTNER -mosip.role.pms.postpartnerspartnertypesearch=PARTNER_ADMIN,FTM_PROVIDER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,ONLINE_VERIFICATION_PARTNER -mosip.role.pms.postpartnersfiltervalues=PARTNER_ADMIN,PARTNER,ONLINE_VERIFICATION_PARTNER -mosip.role.pms.postpartnersapikeyrequestfiltervalues=PARTNER_ADMIN,FTM_PROVIDER,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER -mosip.role.pms.postpartnersapikeyrequestsearch=PARTNER_ADMIN,FTM_PROVIDER,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,DEVICE_PROVIDER,PMS_USER,ONLINE_VERIFICATION_PARTNER -mosip.role.pms.postpartnersapikeysearch=PARTNER_ADMIN,FTM_PROVIDER,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,DEVICE_PROVIDER,ONLINE_VERIFICATION_PARTNER,PMS_USER -mosip.role.pms.putpartnerspartneridapikeypolicies=PARTNERMANAGER,PARTNER_ADMIN -mosip.role.pms.patchpartnerspartnerid=PARTNERMANAGER,PARTNER_ADMIN -mosip.role.pms.patchpartnerspartneridapikey=PARTNERMANAGER,PARTNER_ADMIN -mosip.role.pms.getpartnerspartneridapikeymisplicensekey=PARTNERMANAGER,PARTNER_ADMIN,ID_AUTHENTICATION,CREDENTIAL_ISSUANCE -mosip.role.pms.patchpartnersapikey=PARTNERMANAGER,PARTNER_ADMIN -mosip.role.pms.getpartners=REGISTRATION_PROCESSOR,RESIDENT,PARTNER_ADMIN,ID_AUTHENTICATION,CREDENTIAL_ISSUANCE,PARTNERMANAGER -mosip.role.pms.getpartnerspartneridapikey=PARTNERMANAGER,PARTNER_ADMIN -mosip.role.pms.getpartnersapikey=PARTNERMANAGER,PARTNER_ADMIN -mosip.role.pms.getpartnersapikeykey=PARTNER_ADMIN,PARTNERMANAGER -mosip.role.pms.postmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER -mosip.role.pms.putmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER -mosip.role.pms.getmisps=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER -mosip.role.pms.getmispsmispidlicensekey=PARTNER_ADMIN,MISP_PARTNER,MISP,PARTNERMANAGER - # query param usd to refer url to redirect after logout mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri # end session endpoint in OIDC -mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file From 057c6f5baa45bf2e2b4ab3acafdda7694d3d16ae Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 11 Aug 2022 16:07:26 +0530 Subject: [PATCH 0870/1358] Updated abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From ecee54c3a0a100188e466159bee075efc6f5350d Mon Sep 17 00:00:00 2001 From: ckm007 <chandrakeshavmishra@gmail.com> Date: Mon, 15 Aug 2022 19:02:01 +0530 Subject: [PATCH 0871/1358] [MOSIP-23519] Config changes after diff preparation for upgrade --- kernel-default.properties | 5 ----- print-default.properties | 11 --------- registration-default.properties | 40 +++++++++++++++++++++++++++++++++ resident-default.properties | 3 +++ 4 files changed, 43 insertions(+), 16 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0f5a268be71..c3d71ccdefb 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -408,11 +408,6 @@ syncdata.websub.resubscription.delay.millis=48000000 ## We can provide multiple values with ";" separated mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns};filterValueMaxCount:{"default":${mosip.kernel.filtervalue.max_columns},"registrationcenters":50,"locations":100} -# Flag to identify the support of no thumbprint in 1.1.3 version. -# Added this for backward compatability. default is false, means support is not required. -# Make it to true if support is required. -mosip.kernel.keymanager.113nothumbprint.support=false - ## Used to get IAM user details. mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.masterdata.auth-user-details=/userdetails diff --git a/print-default.properties b/print-default.properties index 0ec39bec316..c40bcd4c3a2 100644 --- a/print-default.properties +++ b/print-default.properties @@ -19,16 +19,6 @@ mosip.event.delay-millisecs=120000 print-websub-resubscription-delay-millisecs=21600000 registration.processor.print.textfile=registration-processor-print-text-file.json -## Token -token.request.id=io.mosip.registration.processor -token.request.appid=regproc -token.request.username=registrationprocessor -token.request.password={cipher}AQABt4aBjlC2OxQNy04L3OtJm8KaTDwSJhV3lEpUh6xBM2xGVnY3M1DIeKGFAeBNfi6jH5qgj1KCUmFONLwSmfcrPx9m6MYXXQMYwyAeq13Msy1fcG1AtZQASKeLbuMCaRwinwdt7C/WYzvVVv47NojD+VmHHVTY3qBXJ4dwZ0/BqmUBPXyYrJPKTcdouxT76bgm5+fXXNcT7lciXgD1aCnWKziL5nDa6Y9dhc+ZPyM0d+I0JfS+emsByt7tWgcZukQkOEx8JWfcCR4eVpERYVa/ps/EAuQRXmxIvnr54GSCc/KKpwnYnjLtKIx/75I6pezBdKU/BBJG1syjQp9VQC9adSI5fdsn3ijkxJjC9TSIFJKDlTHqNCnJaxQXcSBWL4Y= -token.request.version=1.0 -token.request.clientId=mosip-regproc-client -token.request.secretKey= ${mosip.regproc.client.secret} -token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip - # Audit service AUDIT=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.kernel.pdf_owner_password=123456 @@ -40,7 +30,6 @@ KEYBASEDTOKENAPI=${authmanager.base.url}/v1/authmanager/authenticate/clientidsec ## Master data services MASTER=${mosip.kernel.masterdata.url}/v1/masterdata TEMPLATES=${MASTER}/templates -mosip.print.audit.id=mosip.applicanttype.getApplicantType mosip.print.application.version=1.0 mosip.print.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' diff --git a/registration-default.properties b/registration-default.properties index 0742631e7c4..7be2b150fda 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -481,3 +481,43 @@ mosip.registration.ideal_time=900 mosip.kernel.applicant.type.age.limit=0 mosip.registration.max_age=200 +# Parameters required for Backward Compatibility +# These parameters needed for supporting previous versions of registration clients in case of upgraded env. + +mosip.registration.mdm.hostProtocol=http +mosip.mdm.enabled=TRUE +mosip.registration.ui_sync_data=y +mosip.registration.Login_Credentials_Sync.frequency=190 +mosip.registration.consent_fra="Je comprends que les données recueillies à mon sujet lors de la enregistrement par ladite autorité comprennent mon - <br> • nom <br>• Date de naissance <br>• genre <br>• adresse <br>• coordonnées <br>• Documents <br>Je comprends également que ces informations seront stockées et traitées dans le but de vérifier mon identité afin d'accéder à divers services, ou de se conformer à une obligation légale. Je donne mon consentement pour la collecte de ces données à cette fin." +mosip.camera.resolution.width=2592 +mosip.registration.eod_process_config_flag=Y +mosip.id.validation.identity.CNIENumber=^([0-9]{10,30})$ +mosip.registration.important_guidelines_eng=COUNTRY TO DEFINE THE TEXT OF GUIDELINES +mosip.registration.mds.iris.dedup.enable.flag=N +mosip.registration.mds.face.dedup.enable.flag=N +mosip.registration.consent_eng=I understand that the data collected about me during registration by the said authority includes my -<br>• Name <br> • Date of birth <br> • Gender <br> • Address <br> • Contact details <br> • Documents <br> I also understand that this information will be stored and processed for the purpose of verifying my identity in order to access various services, or to comply with a legal obligation. I give my consent for the collection of this data for this purpose. +mosip.registration.cbeff_only_unique_tags=Y +current_mdm_spec=0.9.2 +mosip.registration.re_capture_time=10 +mosip.registration.fingerprint_enable_flag=Y +mosip.registration.mds.fingerprint.dedup.enable.flag=N +mosip.registration.important_guidelines_ara=COUNTRY TO DEFINE THE TEXT OF GUIDELINES +mosip.registration.webcam_name=logitech +mosip.registration.User_Role_Setup_Sync.frequency=190 +mosip.registration.face_recapture_time=5 +mosip.registration.key_policy_sync_threshold_value=1 +mosip.registration.send_notification_disable_flag=y +mosip.registration.mdm.contextPath= +mosip.registration.face_enable_flag=Y +mosip.registration.important_guidelines_fra=COUNTRY TO DEFINE THE TEXT OF GUIDELINES +mosip.id.validation.identity.referenceIdentityNumber=^([0-9]{10,30})$ +mosip.camera.resolution.height=1944 +mosip.registration.consent_ara=" أدرك أن البيانات التي تم جمعها عني أثناء التسجيل من قِبل السلطة المذكورة تتضمن بياناتي - <br> • الاسم <br>• تاريخ الميلاد <br>• نوع الجنس <br>• العنوان <br>• تفاصيل الاتصال <br>• الوثائق <br> كما أفهم أنه سيتم تخزين هذه المعلومات ومعالجتها بغرض التحقق من هويتي من أجل الوصول إلى خدمات مختلفة، أو الامتثال لالتزام قانوني. وأوافق على جمع هذه البيانات لهذا الغرض. " +mosip.registration.iris_enable_flag=Y +mosip.registration.user_on_board_threshold_limit=1 +mosip.registration.quality_score=60 +mosip.registration.webcam_library_name=sarxos +mosip.registration.DOCUMENT_SCANNER_DEPTH=100 +mosip.registration.document_scanner_dpi=75 +mosip.registration.document_scanner_brightness=10 + diff --git a/resident-default.properties b/resident-default.properties index 928835ae5e3..579f6d44daa 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -133,3 +133,6 @@ mosip.service.end-points=/**/* mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production + +object.store.base.location=/home/mosip + From 572dd1581d70bee4c02b5d51e3b96db134e8f17e Mon Sep 17 00:00:00 2001 From: urviljoshi <urvvil08@gmail.com> Date: Tue, 16 Aug 2022 13:09:40 +0530 Subject: [PATCH 0872/1358] props added for healthcheck and init task --- websub-consolidator.toml | 11 +++++++++++ websub-service.toml | 40 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 51 insertions(+) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index 1229e93e56c..b68677bd964 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -21,3 +21,14 @@ POLLING_INTERVAL = 10.0 # The period in which Kafka close method waits to complete GRACEFUL_CLOSE_PERIOD = 5.0 + +CURRENT_WORKING_DIR = "user.dir"; + +# The disk space threshold for healthcheck +DISK_SPACE_THRESHOLD = 10485760; + +# The port that is used to start the consolidator +CONSOLIDATOR_PORT = 9192; + +# consolidator health endpoint +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; \ No newline at end of file diff --git a/websub-service.toml b/websub-service.toml index 2f5516a32ed..aa2c61f64be 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -55,3 +55,43 @@ console = true # Default is false [ballerina.http.traceLogAdvancedConfig] # Enable printing trace logs in console console = false # Default is false + + +# The token validation URL of IDP +DISK_SPACE_THRESHOLD = 10485760; + +# The token validation URL of IDP +PARTNER_USER_ID_PREFIX = "service-account-"; + + +CURRENT_WORKING_DIR = "user.dir"; + +# The period between retry requests +INTENT_VERIFICATION_RETRY_INTERVAL = 3; + +# The maximum retry count +INTENT_VERIFICATION_COUNT = 3; + +# The period between retry requests +INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0; + +# The maximum retry count +INTENT_VERIFICATION_MAX_INTERVAL = 20; + +# The maximum retry count +KAFKA_CONSUMER_MAX_POLL_RECORDS = 50; + +# The maximum retry count +KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728; + +# The maximum retry count +KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288; + +# Kafka topic which is stores consolidated websub subscribers for this server +META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; + +# consolidator base url +CONSOLIDATOR_BASE_URL = "http://websub-consolidator"; + +# consolidator health endpoint +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; \ No newline at end of file From cbd6c27f446323db4c81f0c28c7899039524679b Mon Sep 17 00:00:00 2001 From: ckm007 <chandrakeshavmishra@gmail.com> Date: Tue, 16 Aug 2022 13:12:22 +0530 Subject: [PATCH 0873/1358] [MOSIP-23519] licencekeymanager properties removed --- kernel-default.properties | 5 ----- 1 file changed, 5 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index c3d71ccdefb..11dd745cdca 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -205,11 +205,6 @@ syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosi syncdata_database_username=masteruser syncdata_database_password=${db.dbuser.password} -licensekeymanager.persistence.jdbc.driver=org.postgresql.Driver -licensekeymanager_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -licensekeymanager_database_username=masteruser -licensekeymanager_database_password=${db.dbuser.password} - ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc ridgenerator_database_password=${db.dbuser.password} From 633029f0f45c1c7fbd2082ac9c026b4923836676 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 16 Aug 2022 16:01:27 +0530 Subject: [PATCH 0874/1358] Update print-default.properties --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index 26c9f8055ef..46e9259bf7a 100644 --- a/print-default.properties +++ b/print-default.properties @@ -133,4 +133,4 @@ mosip.print.crypto.p12.password=password@123 mosip.print.crypto.p12.alias=partner # verifiable credential -mosip.print.verify.credentials.flag=false +mosip.print.verify.credentials.flag=true From 60144588629ca1565acbd96e4e768ed41977e4ee Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 17 Aug 2022 16:21:08 +0530 Subject: [PATCH 0875/1358] logging.level.io.mosip changed above property value from INFO to DEBUG --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index 46e9259bf7a..b84850e82e7 100644 --- a/print-default.properties +++ b/print-default.properties @@ -85,7 +85,7 @@ mosip.kernel.tokenid.length=36 ## log level logging.level.root=INFO -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## tomcat access logs From c78bf5340a19aa55f09042720e023ada95c72739 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 19 Aug 2022 18:44:40 +0530 Subject: [PATCH 0876/1358] updated the websub prop --- websub-service.toml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/websub-service.toml b/websub-service.toml index aa2c61f64be..bab9fb02372 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -91,7 +91,7 @@ KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288; META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; # consolidator base url -CONSOLIDATOR_BASE_URL = "http://websub-consolidator"; +CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}"; # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; \ No newline at end of file +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; From b7c16ddf968e090c4ff496cf7bef971113c1635c Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 19 Aug 2022 18:47:19 +0530 Subject: [PATCH 0877/1358] added the websub prop --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 6deb0de935f..8d86b3815f6 100644 --- a/application-default.properties +++ b/application-default.properties @@ -46,6 +46,7 @@ mosip.regproc.status.service.url=http://regproc-status.regproc mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub +mosip.consolidator.url=http://consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida mosip.ida.auth.url=http://ida-auth.ida From 58bd6a900c3198025b90d525dcf1ee85fe57af40 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 19 Aug 2022 19:09:48 +0530 Subject: [PATCH 0878/1358] [DSD-1352] updated the languages --- admin-default.properties | 2 +- application-default.properties | 9 ++++----- mimoto-default.properties | 4 ++-- print-default.properties | 4 ++-- resident-app-default.properties | 2 +- 5 files changed, 10 insertions(+), 11 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 4174179c65a..060e1902f95 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -71,7 +71,7 @@ mosip.admin.security.policy.userrole-auth-url=${mosip.kernel.authmanager.url}/v1 ## Masterdata cards -mosip.admin.masterdata.lang-code=eng,ara,fra +mosip.admin.masterdata.lang-code=eng,ara mosip.admin-services.required.roles=GLOBAL_ADMIN #masterdata machine diff --git a/application-default.properties b/application-default.properties index 8d86b3815f6..5816ba192ff 100644 --- a/application-default.properties +++ b/application-default.properties @@ -92,7 +92,7 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng @@ -277,7 +277,6 @@ mosip.kernel.virus-scanner.port=3310 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara mosip.kernel.transliteration.english-language-code=eng -mosip.kernel.transliteration.french-language-code=fra ## DOB mosip.default.dob.month=01 @@ -412,11 +411,11 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges mosip.optional-languages=ara -mosip.min-languages.count=2 -mosip.max-languages.count=3 +mosip.min-languages.count=1 +mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara,fra +mosip.default.template-languages=eng,ara # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/mimoto-default.properties b/mimoto-default.properties index 77cf8701915..ce8fde91263 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara mosip.mandatory-languages=eng # mosip.primary-language=eng diff --git a/print-default.properties b/print-default.properties index bbe922cf1f6..d993652f9d7 100644 --- a/print-default.properties +++ b/print-default.properties @@ -55,9 +55,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara mosip.mandatory-languages=eng ## CBEFF util diff --git a/resident-app-default.properties b/resident-app-default.properties index 8c45381053b..6052fac3a49 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,7 +96,7 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng mosip.optional-languages=ara,fra From 332ebdb213ad45f39e74420cca75d78178bc5c66 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 19 Aug 2022 19:11:28 +0530 Subject: [PATCH 0879/1358] [DSD-1352] removed fra lang --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index 6052fac3a49..dcf8f091b70 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -99,7 +99,7 @@ registration.processor.signature.isEnabled=true mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara mosip.mandatory-languages=eng # mosip.primary-language=eng From 92fdeef2eaa23cd3e2b9852bde12140cd2e1c8dd Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 19 Aug 2022 21:47:37 +0530 Subject: [PATCH 0880/1358] [DSD-1352] removed semi colon from prop file --- websub-consolidator.toml | 8 ++++---- websub-service.toml | 24 ++++++++++++------------ 2 files changed, 16 insertions(+), 16 deletions(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index b68677bd964..0e0216d5e94 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -22,13 +22,13 @@ POLLING_INTERVAL = 10.0 # The period in which Kafka close method waits to complete GRACEFUL_CLOSE_PERIOD = 5.0 -CURRENT_WORKING_DIR = "user.dir"; +CURRENT_WORKING_DIR = "user.dir" # The disk space threshold for healthcheck -DISK_SPACE_THRESHOLD = 10485760; +DISK_SPACE_THRESHOLD = 10485760 # The port that is used to start the consolidator -CONSOLIDATOR_PORT = 9192; +CONSOLIDATOR_PORT = 9192 # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; \ No newline at end of file +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" \ No newline at end of file diff --git a/websub-service.toml b/websub-service.toml index bab9fb02372..835254b2a5a 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -58,40 +58,40 @@ console = false # Default is false # The token validation URL of IDP -DISK_SPACE_THRESHOLD = 10485760; +DISK_SPACE_THRESHOLD = 10485760 # The token validation URL of IDP -PARTNER_USER_ID_PREFIX = "service-account-"; +PARTNER_USER_ID_PREFIX = "service-account-" -CURRENT_WORKING_DIR = "user.dir"; +CURRENT_WORKING_DIR = "user.dir" # The period between retry requests -INTENT_VERIFICATION_RETRY_INTERVAL = 3; +INTENT_VERIFICATION_RETRY_INTERVAL = 3 # The maximum retry count -INTENT_VERIFICATION_COUNT = 3; +INTENT_VERIFICATION_COUNT = 3 # The period between retry requests -INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0; +INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 # The maximum retry count -INTENT_VERIFICATION_MAX_INTERVAL = 20; +INTENT_VERIFICATION_MAX_INTERVAL = 20 # The maximum retry count -KAFKA_CONSUMER_MAX_POLL_RECORDS = 50; +KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 # The maximum retry count -KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728; +KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 # The maximum retry count -KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288; +KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 # Kafka topic which is stores consolidated websub subscribers for this server META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; # consolidator base url -CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}"; +CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" From eff6dffb5a1665d1f21e3b102df9d22e00357c61 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Sun, 21 Aug 2022 23:36:38 +0530 Subject: [PATCH 0881/1358] Update websub-service.toml --- websub-service.toml | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/websub-service.toml b/websub-service.toml index 835254b2a5a..0bb36b37fc5 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -58,40 +58,40 @@ console = false # Default is false # The token validation URL of IDP -DISK_SPACE_THRESHOLD = 10485760 +#DISK_SPACE_THRESHOLD = 10485760 # The token validation URL of IDP -PARTNER_USER_ID_PREFIX = "service-account-" +#PARTNER_USER_ID_PREFIX = "service-account-" -CURRENT_WORKING_DIR = "user.dir" +#CURRENT_WORKING_DIR = "user.dir" # The period between retry requests -INTENT_VERIFICATION_RETRY_INTERVAL = 3 +#INTENT_VERIFICATION_RETRY_INTERVAL = 3 # The maximum retry count -INTENT_VERIFICATION_COUNT = 3 +#INTENT_VERIFICATION_COUNT = 3 # The period between retry requests -INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 +#INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 # The maximum retry count -INTENT_VERIFICATION_MAX_INTERVAL = 20 +#INTENT_VERIFICATION_MAX_INTERVAL = 20 # The maximum retry count -KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 +#KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 # The maximum retry count -KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 +#KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 # The maximum retry count -KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 +#KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 # Kafka topic which is stores consolidated websub subscribers for this server -META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; +#META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; # consolidator base url -CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" +#CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" +#CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" From 562433645e173c1eac55ef3323053b35199a5e46 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Sun, 21 Aug 2022 23:38:18 +0530 Subject: [PATCH 0882/1358] Update websub-consolidator.toml --- websub-consolidator.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index 0e0216d5e94..fac58b9c7a2 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -31,4 +31,4 @@ DISK_SPACE_THRESHOLD = 10485760 CONSOLIDATOR_PORT = 9192 # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" \ No newline at end of file +#CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" From a96a14d95581657e8735f424153d61afa099a523 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Sun, 21 Aug 2022 23:41:14 +0530 Subject: [PATCH 0883/1358] Update websub-consolidator.toml --- websub-consolidator.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index fac58b9c7a2..7c264876a19 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -31,4 +31,4 @@ DISK_SPACE_THRESHOLD = 10485760 CONSOLIDATOR_PORT = 9192 # consolidator health endpoint -#CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" +# CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" From e80a1af1e5ac429aad264a675eefcb85a7c8c7c8 Mon Sep 17 00:00:00 2001 From: urviljoshi <urvvil08@gmail.com> Date: Mon, 22 Aug 2022 00:33:38 +0530 Subject: [PATCH 0884/1358] removed working dir as it has to be same --- websub-consolidator.toml | 3 +-- websub-service.toml | 26 ++++++++++++-------------- 2 files changed, 13 insertions(+), 16 deletions(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index 7c264876a19..1076b3907f5 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -22,7 +22,6 @@ POLLING_INTERVAL = 10.0 # The period in which Kafka close method waits to complete GRACEFUL_CLOSE_PERIOD = 5.0 -CURRENT_WORKING_DIR = "user.dir" # The disk space threshold for healthcheck DISK_SPACE_THRESHOLD = 10485760 @@ -31,4 +30,4 @@ DISK_SPACE_THRESHOLD = 10485760 CONSOLIDATOR_PORT = 9192 # consolidator health endpoint -# CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" diff --git a/websub-service.toml b/websub-service.toml index 0bb36b37fc5..7b84b7b1df4 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -58,40 +58,38 @@ console = false # Default is false # The token validation URL of IDP -#DISK_SPACE_THRESHOLD = 10485760 +DISK_SPACE_THRESHOLD = 10485760 # The token validation URL of IDP -#PARTNER_USER_ID_PREFIX = "service-account-" +PARTNER_USER_ID_PREFIX = "service-account-" -#CURRENT_WORKING_DIR = "user.dir" - # The period between retry requests -#INTENT_VERIFICATION_RETRY_INTERVAL = 3 +INTENT_VERIFICATION_RETRY_INTERVAL = 3 # The maximum retry count -#INTENT_VERIFICATION_COUNT = 3 +INTENT_VERIFICATION_COUNT = 3 # The period between retry requests -#INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 +INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 # The maximum retry count -#INTENT_VERIFICATION_MAX_INTERVAL = 20 +INTENT_VERIFICATION_MAX_INTERVAL = 20 # The maximum retry count -#KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 +KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 # The maximum retry count -#KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 +KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 # The maximum retry count -#KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 +KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 # Kafka topic which is stores consolidated websub subscribers for this server -#META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; +META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; # consolidator base url -#CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" +CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint -#CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" From 4e27aa0998fea3ddfc265ef89ecd35eb9c511139 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Mon, 22 Aug 2022 09:12:50 +0530 Subject: [PATCH 0885/1358] Update websub-service.toml --- websub-service.toml | 17 ++++++++--------- 1 file changed, 8 insertions(+), 9 deletions(-) diff --git a/websub-service.toml b/websub-service.toml index 7b84b7b1df4..660ff7aee0f 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -48,15 +48,6 @@ MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" -[ballerina.http.accessLogConfig] -# Enable printing access logs in console -console = true # Default is false - -[ballerina.http.traceLogAdvancedConfig] -# Enable printing trace logs in console -console = false # Default is false - - # The token validation URL of IDP DISK_SPACE_THRESHOLD = 10485760 @@ -93,3 +84,11 @@ CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" + +[ballerina.http.accessLogConfig] +# Enable printing access logs in console +console = true # Default is false + +[ballerina.http.traceLogAdvancedConfig] +# Enable printing trace logs in console +console = false # Default is false From 99892a56f690c680b8b83ed31b2bbd6f9adf85f6 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Mon, 22 Aug 2022 09:49:51 +0530 Subject: [PATCH 0886/1358] Update websub-service.toml --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 660ff7aee0f..f1da8960087 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -77,7 +77,7 @@ KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 # Kafka topic which is stores consolidated websub subscribers for this server -META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; +META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers" # consolidator base url CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" From 297f8004aad8654a7a126d9f9950e898d07a82be Mon Sep 17 00:00:00 2001 From: urviljoshi <urvvil08@gmail.com> Date: Mon, 22 Aug 2022 09:57:24 +0530 Subject: [PATCH 0887/1358] int changed to decimal --- websub-service.toml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/websub-service.toml b/websub-service.toml index f1da8960087..13741f43fd2 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -56,7 +56,7 @@ PARTNER_USER_ID_PREFIX = "service-account-" # The period between retry requests -INTENT_VERIFICATION_RETRY_INTERVAL = 3 +INTENT_VERIFICATION_RETRY_INTERVAL = 3.0 # The maximum retry count INTENT_VERIFICATION_COUNT = 3 @@ -65,7 +65,7 @@ INTENT_VERIFICATION_COUNT = 3 INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 # The maximum retry count -INTENT_VERIFICATION_MAX_INTERVAL = 20 +INTENT_VERIFICATION_MAX_INTERVAL = 20.0 # The maximum retry count KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 From 505490fca480420ce6a5dfaa5906b438241d8c4a Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Mon, 22 Aug 2022 11:20:46 +0530 Subject: [PATCH 0888/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 5816ba192ff..605caf4484a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -46,7 +46,7 @@ mosip.regproc.status.service.url=http://regproc-status.regproc mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub -mosip.consolidator.url=http://consolidator.websub +mosip.consolidator.url=http://websub-consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida mosip.ida.auth.url=http://ida-auth.ida From 669fd39a93e94e030740d3b6a2dde8b02c6ae985 Mon Sep 17 00:00:00 2001 From: urviljoshi <urvvil08@gmail.com> Date: Tue, 23 Aug 2022 18:51:28 +0530 Subject: [PATCH 0889/1358] merging changes done in qa5 issue to 1.2.0.1 --- websub-consolidator.toml | 7 +++---- websub-service.toml | 43 +++++++++++++++++++--------------------- 2 files changed, 23 insertions(+), 27 deletions(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index b68677bd964..cb3258ff7c4 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -22,13 +22,12 @@ POLLING_INTERVAL = 10.0 # The period in which Kafka close method waits to complete GRACEFUL_CLOSE_PERIOD = 5.0 -CURRENT_WORKING_DIR = "user.dir"; # The disk space threshold for healthcheck -DISK_SPACE_THRESHOLD = 10485760; +DISK_SPACE_THRESHOLD = 10485760 # The port that is used to start the consolidator -CONSOLIDATOR_PORT = 9192; +CONSOLIDATOR_PORT = 9192 # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; \ No newline at end of file +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" \ No newline at end of file diff --git a/websub-service.toml b/websub-service.toml index bab9fb02372..3d4a1aab78c 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -48,50 +48,47 @@ MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" -[ballerina.http.accessLogConfig] -# Enable printing access logs in console -console = true # Default is false - -[ballerina.http.traceLogAdvancedConfig] -# Enable printing trace logs in console -console = false # Default is false - - # The token validation URL of IDP -DISK_SPACE_THRESHOLD = 10485760; +DISK_SPACE_THRESHOLD = 10485760 # The token validation URL of IDP -PARTNER_USER_ID_PREFIX = "service-account-"; +PARTNER_USER_ID_PREFIX = "service-account-" -CURRENT_WORKING_DIR = "user.dir"; - # The period between retry requests -INTENT_VERIFICATION_RETRY_INTERVAL = 3; +INTENT_VERIFICATION_RETRY_INTERVAL = 3.0 # The maximum retry count -INTENT_VERIFICATION_COUNT = 3; +INTENT_VERIFICATION_COUNT = 3 # The period between retry requests -INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0; +INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 # The maximum retry count -INTENT_VERIFICATION_MAX_INTERVAL = 20; +INTENT_VERIFICATION_MAX_INTERVAL = 20.0 # The maximum retry count -KAFKA_CONSUMER_MAX_POLL_RECORDS = 50; +KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 # The maximum retry count -KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728; +KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 # The maximum retry count -KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288; +KAFKA_CONSUMER_MAX_PARTITION_FETCH_BYTES = 524288 # Kafka topic which is stores consolidated websub subscribers for this server -META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers"; +META_TOPICS = "registered-websub-topics,consolidated-websub-topics,registered-websub-subscribers,consolidated-websub-subscribers" # consolidator base url -CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}"; +CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health"; +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" + +[ballerina.http.accessLogConfig] +# Enable printing access logs in console +console = true # Default is false + +[ballerina.http.traceLogAdvancedConfig] +# Enable printing trace logs in console +console = false # Default is false \ No newline at end of file From 80827e4c6984a2bac06054dda75b4bb358de986a Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Wed, 24 Aug 2022 19:07:34 +0530 Subject: [PATCH 0890/1358] cipher password doesnot work | workaround --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index ce8fde91263..76329816669 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -35,7 +35,7 @@ mosip.event.secret=Kslk30SNF2AChs2 mosip.partner.crypto.p12.filename=keystore.p12 -mosip.partner.crypto.p12.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.crypto.p12.password=abc123 mosip.partner.crypto.p12.alias=partner mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 mosip.partner.prependThumbprint=true From cb4b9e67423b9ac64d30b4691a2bade0d11b94c9 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 25 Aug 2022 15:44:46 +0530 Subject: [PATCH 0891/1358] Updated abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 2d1e01d14f4cebd029725be871705d893b24f058 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 26 Aug 2022 11:56:26 +0530 Subject: [PATCH 0892/1358] Update manual.adjudication, MV, Pause setting Upadted manual.adjudication.status to PENDING, mock.mv.decision to APPROVED and pause-settings to RESUME_PROCESSING --- registration-processor-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 27115e5eb4e..454f3c5bd1b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -142,7 +142,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo # Status for matched records in demo dedupe stage. # 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. -registration.processor.demodedupe.manual.adjudication.status=REJECTED +registration.processor.demodedupe.manual.adjudication.status=PENDING # Validate hostlisted devices DEVICEHOTLIST=${mosip.admin.hotlist.url}/v1/hotlist/status @@ -509,7 +509,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "STOP_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 @@ -847,7 +847,7 @@ mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability- ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] -mock.mv.decision=REJECTED +mock.mv.decision=APPROVED # salt generation properties mosip.regproc.db.url=${javax.persistence.jdbc.url} From 26d4ef49e51bf75bf6ec73feed8bc1a9a6e5567f Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 29 Aug 2022 12:27:15 +0530 Subject: [PATCH 0893/1358] Reverted abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 71aad9b5f04b716789988b2182ec5a0316084def Mon Sep 17 00:00:00 2001 From: santhoshsunder <102220709+santhoshsunder@users.noreply.github.com> Date: Mon, 29 Aug 2022 19:21:43 +0530 Subject: [PATCH 0894/1358] testing deleted --- mosip-context.json | 4 ---- 1 file changed, 4 deletions(-) diff --git a/mosip-context.json b/mosip-context.json index 4da43560e8f..6d7a162b625 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -22,10 +22,6 @@ "city": { "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} - }, - "gender": { - "@id": "https://${mosip.api.public.host}/mosip#gender", - "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", From 8f65984df38e918a1d7a427cf32040f7b80f6525 Mon Sep 17 00:00:00 2001 From: santhoshsunder <102220709+santhoshsunder@users.noreply.github.com> Date: Mon, 29 Aug 2022 19:49:57 +0530 Subject: [PATCH 0895/1358] reverting back the changes --- mosip-context.json | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/mosip-context.json b/mosip-context.json index 6d7a162b625..4da43560e8f 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -22,6 +22,10 @@ "city": { "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} + }, + "gender": { + "@id": "https://${mosip.api.public.host}/mosip#gender", + "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", From 7a7465933527eb847e33b75d6624a3f015560872 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 30 Aug 2022 12:17:37 +0530 Subject: [PATCH 0896/1358] [ MOSIP-23768 ] added controller.json for mosip-file-server --- controller.json | 7 +++++++ 1 file changed, 7 insertions(+) create mode 100644 controller.json diff --git a/controller.json b/controller.json new file mode 100644 index 00000000000..85301676af4 --- /dev/null +++ b/controller.json @@ -0,0 +1,7 @@ +{ + "@context": "https://w3id.org/security/v2", + "id": "${mosipbox.public.url}/.well-known/controller.json", + "assertionMethod": [ + "${mosipbox.public.url}/.well-known/public-key.json" + ] +} \ No newline at end of file From 4191241b14e20b71a282da8cd8c490e56d44f76b Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Mon, 5 Sep 2022 11:30:47 +0530 Subject: [PATCH 0897/1358] [DSD-1394]Added controller.json file --- controller.json | 7 +++++++ 1 file changed, 7 insertions(+) create mode 100644 controller.json diff --git a/controller.json b/controller.json new file mode 100644 index 00000000000..ed238229ab5 --- /dev/null +++ b/controller.json @@ -0,0 +1,7 @@ +{ + "@context": "https://w3id.org/security/v2", + "id": "https://${mosip.api.public.host}/.well-known/controller.json", + "assertionMethod": [ + "https://${mosip.api.public.host}/.well-known/public-key.json" + ] +} \ No newline at end of file From b0eaf254bbeac65c21fa859b8f00ce96f9ee822e Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Mon, 5 Sep 2022 11:30:47 +0530 Subject: [PATCH 0898/1358] Added controller.json file and updated the conf as per qa5-v3 --- application-default.properties | 2 +- controller.json | 10 +++++----- print-default.properties | 4 ++-- registration-processor-default.properties | 6 +++--- 4 files changed, 11 insertions(+), 11 deletions(-) diff --git a/application-default.properties b/application-default.properties index 8d86b3815f6..efaa89ce00a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -46,7 +46,7 @@ mosip.regproc.status.service.url=http://regproc-status.regproc mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub -mosip.consolidator.url=http://consolidator.websub +mosip.consolidator.url=http://websub-consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida mosip.ida.auth.url=http://ida-auth.ida diff --git a/controller.json b/controller.json index 85301676af4..ed238229ab5 100644 --- a/controller.json +++ b/controller.json @@ -1,7 +1,7 @@ { - "@context": "https://w3id.org/security/v2", - "id": "${mosipbox.public.url}/.well-known/controller.json", - "assertionMethod": [ - "${mosipbox.public.url}/.well-known/public-key.json" - ] + "@context": "https://w3id.org/security/v2", + "id": "https://${mosip.api.public.host}/.well-known/controller.json", + "assertionMethod": [ + "https://${mosip.api.public.host}/.well-known/public-key.json" + ] } \ No newline at end of file diff --git a/print-default.properties b/print-default.properties index c40bcd4c3a2..bbe922cf1f6 100644 --- a/print-default.properties +++ b/print-default.properties @@ -74,7 +74,7 @@ mosip.kernel.tokenid.length=36 ## log level logging.level.root=INFO -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## tomcat access logs @@ -122,4 +122,4 @@ mosip.print.crypto.p12.password=password@123 mosip.print.crypto.p12.alias=partner # verifiable credential -mosip.print.verify.credentials.flag=false +mosip.print.verify.credentials.flag=true diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 27115e5eb4e..454f3c5bd1b 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -142,7 +142,7 @@ mosip.registration.processor.digital.signature.id=io.mosip.registration.processo # Status for matched records in demo dedupe stage. # 'REJECTED' will automatically reject packets failed in demo dedupe. It will not be sent for manual verification. -registration.processor.demodedupe.manual.adjudication.status=REJECTED +registration.processor.demodedupe.manual.adjudication.status=PENDING # Validate hostlisted devices DEVICEHOTLIST=${mosip.admin.hotlist.url}/v1/hotlist/status @@ -509,7 +509,7 @@ mosip.regproc.camel.bridge.eventbus.kafka.poll.frequency=100 #MosipVerticleAPIManager mosip.regproc.camel.bridge.eventbus.kafka.group.id=camel-bridge mosip.regproc.camelbridge.endpoint-prefix=eventbus:// -mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "STOP_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] +mosip.regproc.camelbridge.pause-settings=[{"ruleId" :"PAUSE","matchExpression": "$.tags[?(@['AGE_GROUP'] == 'ADULT'&& @['ID_OBJECT-residenceStatus'] == 'Foreigner')]","pauseFor": 180,"defaultResumeAction": "RESUME_PROCESSING","fromAddress": "eventbus://packet-classifier-new-bus-out","ruleDescription" : "Non resident adult applicant packet"}],[{"ruleId" :"HOTLISTED_OPERATOR","matchExpression": "$.tags[?(@['HOTLISTED'] == 'operator')]","pauseFor": 432000,"defaultResumeAction": "STOP_PROCESSING","fromAddress": ".*","ruleDescription" : "Packet created by hotlisted operator"}] ## Securzone stage (NOTE: not used in V3, but need this for service to start) mosip.regproc.securezone.notification.eventbus.kafka.commit.type=single mosip.regproc.securezone.notification.eventbus.kafka.max.poll.records=100 @@ -847,7 +847,7 @@ mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability- ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] -mock.mv.decision=REJECTED +mock.mv.decision=APPROVED # salt generation properties mosip.regproc.db.url=${javax.persistence.jdbc.url} From b6108a8a0c51bd2540e1285440add4ced379165a Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Mon, 5 Sep 2022 12:13:45 +0530 Subject: [PATCH 0899/1358] reverted changes in print-default.properties --- print-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/print-default.properties b/print-default.properties index bbe922cf1f6..c40bcd4c3a2 100644 --- a/print-default.properties +++ b/print-default.properties @@ -74,7 +74,7 @@ mosip.kernel.tokenid.length=36 ## log level logging.level.root=INFO -logging.level.io.mosip=DEBUG +logging.level.io.mosip=INFO logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## tomcat access logs @@ -122,4 +122,4 @@ mosip.print.crypto.p12.password=password@123 mosip.print.crypto.p12.alias=partner # verifiable credential -mosip.print.verify.credentials.flag=true +mosip.print.verify.credentials.flag=false From 35fdec67c0e1ce6c618e9e062af0a0963043a7b1 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 5 Sep 2022 14:40:16 +0530 Subject: [PATCH 0900/1358] MOSIP-23584 : changed printing stage port to 8097 --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 454f3c5bd1b..2c28e99206f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -739,7 +739,7 @@ mosip.regproc.printing.eventbus.kafka.max.poll.records=100 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} -mosip.regproc.printing.server.port=8099 +mosip.regproc.printing.server.port=8097 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 From 58928c52df8efe11f03e06907cc2430402149a48 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 5 Sep 2022 14:41:25 +0530 Subject: [PATCH 0901/1358] MOSIP-23584 : changed printing stage port to 8097 --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 454f3c5bd1b..2c28e99206f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -739,7 +739,7 @@ mosip.regproc.printing.eventbus.kafka.max.poll.records=100 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} -mosip.regproc.printing.server.port=8099 +mosip.regproc.printing.server.port=8097 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 From 5d687ddb55597c9d22d863aeddbdf4d08e96b782 Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 14 Sep 2022 11:42:19 +0530 Subject: [PATCH 0902/1358] mosip.kernel.mail.content.html.enable=true Added above property for getting correct email format --- kernel-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 11dd745cdca..755c755d2ae 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -738,3 +738,7 @@ mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF] management.health.mail.enabled=true + + +# html content for email notification +mosip.kernel.mail.content.html.enable=true From 92acbefb4ce34d8cd4f7bb59ae822d7bdf494a5a Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Wed, 14 Sep 2022 16:53:10 +0530 Subject: [PATCH 0903/1358] Updated mosip.default.template-languages=eng --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 605caf4484a..eea97ab0815 100644 --- a/application-default.properties +++ b/application-default.properties @@ -415,7 +415,7 @@ mosip.min-languages.count=1 mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara +mosip.default.template-languages=eng # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang From 5bca170be70664091050077505c6dcac45a3b6a2 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Wed, 14 Sep 2022 17:28:24 +0530 Subject: [PATCH 0904/1358] Reverted back the changes to mosip.default.template-languages=eng, ara --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index eea97ab0815..605caf4484a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -415,7 +415,7 @@ mosip.min-languages.count=1 mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng +mosip.default.template-languages=eng,ara # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang From 847aaf690747d72d1d6d8c236f49a3e72e06125a Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 15 Sep 2022 14:41:26 +0530 Subject: [PATCH 0905/1358] Updating abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 4d1491c84a52b75306f170c2580a8c53b9178b48 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 16 Sep 2022 11:30:45 +0530 Subject: [PATCH 0906/1358] updated abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From abcae5b0c77332a1a4122d3ec205dcf8ebc50a01 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 16 Sep 2022 14:08:53 +0530 Subject: [PATCH 0907/1358] Changing reprocess elapse time and MockMV decision Changing reprocess elapse time to 3600 and mock mv decision to REJECTED --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2c28e99206f..83fcd924d08 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -290,7 +290,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=300 +registration.processor.reprocess.elapse.time=3600 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron @@ -847,7 +847,7 @@ mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability- ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] -mock.mv.decision=APPROVED +mock.mv.decision=REJECTED # salt generation properties mosip.regproc.db.url=${javax.persistence.jdbc.url} From 00b6dea113d7082b2a5cc7526283054110cd7379 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Mon, 19 Sep 2022 15:01:02 +0530 Subject: [PATCH 0908/1358] Space is added --- admin-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/admin-default.properties b/admin-default.properties index 4174179c65a..ae6f3134041 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -16,6 +16,9 @@ mosip.admin.request-id=ADMIN.REQUEST mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 +#test + + ## Account management authmanager.base.url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager From 39352a950d405b9757839237f1e61bfadf068a60 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 19 Sep 2022 18:38:39 +0530 Subject: [PATCH 0909/1358] MOSIP-23025 : added failure listener configurable period --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 2f0c1476faf..b9f17c63f1d 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?clientFailureCheckPeriod=30000", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From 70fd4731890e00552af31e39757811fb4d22e826 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 19 Sep 2022 18:43:18 +0530 Subject: [PATCH 0910/1358] MOSIP-23025 : added failure listener configurable period --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 2f0c1476faf..b9f17c63f1d 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?clientFailureCheckPeriod=30000", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From 0c9dedc0b181347dd95216cef00abd54a3970e4f Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 19 Sep 2022 19:04:07 +0530 Subject: [PATCH 0911/1358] Revert "MOSIP-23025 : added failure listener configurable period" --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index b9f17c63f1d..2f0c1476faf 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?clientFailureCheckPeriod=30000", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From c0443973c698931b72c510132815eafbdde33046 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 19 Sep 2022 19:04:15 +0530 Subject: [PATCH 0912/1358] Revert "MOSIP-23025 : added failure listener configurable period" --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index b9f17c63f1d..2f0c1476faf 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?clientFailureCheckPeriod=30000", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From df615e1118f5904d29788fb9bdcee4b0121a8fe1 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 11:06:50 +0530 Subject: [PATCH 0913/1358] Performance fix Added --- kernel-default.properties | 6 ++- registration-processor-default.properties | 62 +++++++++++++++-------- 2 files changed, 45 insertions(+), 23 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 11dd745cdca..d9c9ec1ecd0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -279,8 +279,10 @@ mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 -kernel.uin.transfer-scheduler-minutes=48 -kernel.uin.transfer-scheduler-hours=17 +#kernel.uin.transfer-scheduler-minutes=48 +#kernel.uin.transfer-scheduler-hours=17 +kernel.uin.transfer-scheduler-minutes=0 +kernel.uin.transfer-scheduler-hours=* kernel.uin.transfer-scheduler-days_of_month=* kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2c28e99206f..2cf7b0d7b22 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -523,8 +523,10 @@ mosip.regproc.securezone.notification.message.tag.loading.disable=true #packet-uploader-stage mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single -mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 -mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 +#mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 +mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=5 +#mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 +mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.uploader.eventbus.kafka.group.id=packet-uploader-stage mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.packet.uploader.server.port=8087 @@ -535,9 +537,12 @@ packet.manager.iteration.addition.enabled=true packet.uploader.stage=registration-processor-packet-uploader-stage #packet-validator-stage -mosip.regproc.packet.validator.eventbus.kafka.commit.type=single -mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 -mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 +#mosip.regproc.packet.validator.eventbus.kafka.commit.type=single +mosip.regproc.packet.validator.eventbus.kafka.commit.type=batch +#mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=4 +#mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 +mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.validator.eventbus.kafka.group.id=packet-validator-stage mosip.regproc.packet.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.packet.validator.server.port=8088 @@ -582,7 +587,8 @@ mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:m ## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single -mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 +#mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 +mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=10 mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.classifier.eventbus.kafka.group.id=packet-classifier-stage mosip.regproc.packet.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -592,7 +598,8 @@ mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/pa ## Quality classifier stage mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single -mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 +#mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 +mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=10 mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.quality.classifier.eventbus.kafka.group.id=quality-classifier-stage mosip.regproc.quality.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -620,9 +627,12 @@ mosip.regproc.introducer-validator.eventbus.port=5728 mosip.regproc.introducer-validator.server.servlet.path=/registrationprocessor/v1/introducervalidator #demo-dedupe-stage -mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single -mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 -mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 +#mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single +mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=auto +#mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 +mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=10 +#mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 +mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=1000 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.demo.dedupe.server.port=8091 @@ -631,7 +641,8 @@ mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedu #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single -mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 +#mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 +mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=10 mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.handler.eventbus.kafka.group.id=abis-handler-stage mosip.regproc.abis.handler.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -644,8 +655,10 @@ mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger' mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye'} #bio-dedupe-stage -mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single -mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 +#mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single +mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=batch +#mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 +mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=10 mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.bio.dedupe.eventbus.kafka.group.id=bio-dedupe-stage mosip.regproc.bio.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -654,9 +667,12 @@ mosip.regproc.bio.dedupe.eventbus.port=5718 mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe # uin-generator-stage -mosip.regproc.uin.generator.eventbus.kafka.commit.type=single -mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 -mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 +#mosip.regproc.uin.generator.eventbus.kafka.commit.type=single +mosip.regproc.uin.generator.eventbus.kafka.commit.type=batch +#mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 +mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=3 +#mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 +mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=500 mosip.regproc.uin.generator.eventbus.kafka.group.id=uin-generator-stage mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.uin.generator.server.port=8099 @@ -666,7 +682,8 @@ mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-ge # abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 -mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 +#mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 +mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=30000 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.abis.middleware.server.port=8091 @@ -696,7 +713,8 @@ mosip.regproc.finalization.message.expiry-time-limit=${mosip.regproc.common.stag # biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single -mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 +#mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 +mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=10 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 mosip.regproc.biometric.authentication.eventbus.kafka.group.id=biometric-authentication-stage mosip.regproc.biometric.authentication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -725,7 +743,8 @@ mosip.regproc.supervisor-validator.server.servlet.path=/registrationprocessor/v1 ## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single -mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 +#mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 +mosip.regproc.message.sender.eventbus.kafka.max.poll.records=10 mosip.regproc.message.sender.eventbus.kafka.poll.frequency=100 mosip.regproc.message.sender.eventbus.kafka.group.id=message-sender-stage mosip.regproc.message.sender.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -735,7 +754,8 @@ mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sende #printing-stage mosip.regproc.printing.eventbus.kafka.commit.type=single -mosip.regproc.printing.eventbus.kafka.max.poll.records=100 +#mosip.regproc.printing.eventbus.kafka.max.poll.records=100 +mosip.regproc.printing.eventbus.kafka.max.poll.records=5 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -745,7 +765,7 @@ mosip.regproc.printing.eventbus.port=5722 #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single -mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 +#mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 mosip.regproc.opencrvs.eventbus.kafka.poll.frequency=100 mosip.regproc.opencrvs.eventbus.kafka.group.id=opencrvs-stage mosip.regproc.opencrvs.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} From 6925b3c7b984fe76ed3b35e891cb0bad7b5c5163 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 11:10:15 +0530 Subject: [PATCH 0914/1358] Space Removed --- admin-default.properties | 3 --- 1 file changed, 3 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index ae6f3134041..4174179c65a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -16,9 +16,6 @@ mosip.admin.request-id=ADMIN.REQUEST mosip.kernel.database.hostname=postgres-postgresql.postgres mosip.kernel.database.port=5432 -#test - - ## Account management authmanager.base.url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.accountmgmt.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager From 2929d697b6bf99daa171bbaea54cedd0f913f322 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 11:20:13 +0530 Subject: [PATCH 0915/1358] Performance Fix Added --- registration-processor-default.properties | 17 +++++++++++------ 1 file changed, 11 insertions(+), 6 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2cf7b0d7b22..5bc8d3739d1 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -326,7 +326,8 @@ mosip.regproc.verification.server.servlet.path=/registrationprocessor/v1/verific # Manual adjudication mosip.regproc.manual.adjudication.eventbus.kafka.commit.type=single -mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 +#mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 +mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=10 mosip.regproc.manual.adjudication.eventbus.kafka.poll.frequency=100 mosip.regproc.manual.adjudication.eventbus.kafka.group.id=manual-adjudication-stage mosip.regproc.manual.adjudication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -553,7 +554,8 @@ mosip.regproc.packet.validator.validate-applicant-document.processes=NEW,UPDATE, ## Operator validator mosip.regproc.operator-validator.eventbus.kafka.commit.type=single -mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.operator-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.operator-validator.eventbus.kafka.group.id=operator-validator-stage mosip.regproc.operator-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -563,7 +565,8 @@ mosip.regproc.operator-validator.server.servlet.path=/registrationprocessor/v1/o # Command validator mosip.regproc.cmd-validator.eventbus.kafka.commit.type=single -mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.cmd-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.cmd-validator.eventbus.kafka.group.id=cmd-validator-stage mosip.regproc.cmd-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -618,7 +621,8 @@ mosip.regproc.quality.classifier.tagging.quality.modalities=Iris,Finger,Face ## Introducer validator stage mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single -mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.introducer-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.introducer-validator.eventbus.kafka.group.id=introducer-validator-stage mosip.regproc.introducer-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -733,7 +737,8 @@ mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reproces ## Supervisor validator stage mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single -mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.supervisor-validator.eventbus.kafka.group.id=supervisor-validator-stage mosip.regproc.supervisor-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -765,7 +770,7 @@ mosip.regproc.printing.eventbus.port=5722 #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single -#mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 +mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 mosip.regproc.opencrvs.eventbus.kafka.poll.frequency=100 mosip.regproc.opencrvs.eventbus.kafka.group.id=opencrvs-stage mosip.regproc.opencrvs.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} From 20cecf33790665d51f88e4fea49b5dae09951696 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 11:20:13 +0530 Subject: [PATCH 0916/1358] Performance Fix Added --- registration-processor-default.properties | 17 +++++++++++------ 1 file changed, 11 insertions(+), 6 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2cf7b0d7b22..5bc8d3739d1 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -326,7 +326,8 @@ mosip.regproc.verification.server.servlet.path=/registrationprocessor/v1/verific # Manual adjudication mosip.regproc.manual.adjudication.eventbus.kafka.commit.type=single -mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 +#mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 +mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=10 mosip.regproc.manual.adjudication.eventbus.kafka.poll.frequency=100 mosip.regproc.manual.adjudication.eventbus.kafka.group.id=manual-adjudication-stage mosip.regproc.manual.adjudication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -553,7 +554,8 @@ mosip.regproc.packet.validator.validate-applicant-document.processes=NEW,UPDATE, ## Operator validator mosip.regproc.operator-validator.eventbus.kafka.commit.type=single -mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.operator-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.operator-validator.eventbus.kafka.group.id=operator-validator-stage mosip.regproc.operator-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -563,7 +565,8 @@ mosip.regproc.operator-validator.server.servlet.path=/registrationprocessor/v1/o # Command validator mosip.regproc.cmd-validator.eventbus.kafka.commit.type=single -mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.cmd-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.cmd-validator.eventbus.kafka.group.id=cmd-validator-stage mosip.regproc.cmd-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -618,7 +621,8 @@ mosip.regproc.quality.classifier.tagging.quality.modalities=Iris,Finger,Face ## Introducer validator stage mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single -mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.introducer-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.introducer-validator.eventbus.kafka.group.id=introducer-validator-stage mosip.regproc.introducer-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -733,7 +737,8 @@ mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reproces ## Supervisor validator stage mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single -mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 +#mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.supervisor-validator.eventbus.kafka.group.id=supervisor-validator-stage mosip.regproc.supervisor-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -765,7 +770,7 @@ mosip.regproc.printing.eventbus.port=5722 #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single -#mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 +mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 mosip.regproc.opencrvs.eventbus.kafka.poll.frequency=100 mosip.regproc.opencrvs.eventbus.kafka.group.id=opencrvs-stage mosip.regproc.opencrvs.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} From 03e5c8d098f084b9cb7661b0e6ca7ffd2b0acb60 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 13:02:40 +0530 Subject: [PATCH 0917/1358] Performance Fix Added --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5bc8d3739d1..55ddcbfaafa 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -768,6 +768,7 @@ mosip.regproc.printing.server.port=8097 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 + #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 From a10989caf17a57bc07a94c11b60c21375adbdd72 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 14:17:33 +0530 Subject: [PATCH 0918/1358] Performance Fix Added And Removed the commented line --- kernel-default.properties | 2 -- registration-processor-default.properties | 25 ----------------------- 2 files changed, 27 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index d9c9ec1ecd0..4989c59c36e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -279,8 +279,6 @@ mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 -#kernel.uin.transfer-scheduler-minutes=48 -#kernel.uin.transfer-scheduler-hours=17 kernel.uin.transfer-scheduler-minutes=0 kernel.uin.transfer-scheduler-hours=* kernel.uin.transfer-scheduler-days_of_month=* diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 55ddcbfaafa..1154d631084 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -524,9 +524,7 @@ mosip.regproc.securezone.notification.message.tag.loading.disable=true #packet-uploader-stage mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single -#mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=5 -#mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.uploader.eventbus.kafka.group.id=packet-uploader-stage mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -538,11 +536,8 @@ packet.manager.iteration.addition.enabled=true packet.uploader.stage=registration-processor-packet-uploader-stage #packet-validator-stage -#mosip.regproc.packet.validator.eventbus.kafka.commit.type=single mosip.regproc.packet.validator.eventbus.kafka.commit.type=batch -#mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=4 -#mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.validator.eventbus.kafka.group.id=packet-validator-stage mosip.regproc.packet.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -554,7 +549,6 @@ mosip.regproc.packet.validator.validate-applicant-document.processes=NEW,UPDATE, ## Operator validator mosip.regproc.operator-validator.eventbus.kafka.commit.type=single -#mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.operator-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.operator-validator.eventbus.kafka.group.id=operator-validator-stage @@ -565,7 +559,6 @@ mosip.regproc.operator-validator.server.servlet.path=/registrationprocessor/v1/o # Command validator mosip.regproc.cmd-validator.eventbus.kafka.commit.type=single -#mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.cmd-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.cmd-validator.eventbus.kafka.group.id=cmd-validator-stage @@ -590,7 +583,6 @@ mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:m ## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single -#mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=10 mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.classifier.eventbus.kafka.group.id=packet-classifier-stage @@ -601,7 +593,6 @@ mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/pa ## Quality classifier stage mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single -#mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=10 mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.quality.classifier.eventbus.kafka.group.id=quality-classifier-stage @@ -621,7 +612,6 @@ mosip.regproc.quality.classifier.tagging.quality.modalities=Iris,Finger,Face ## Introducer validator stage mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single -#mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.introducer-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.introducer-validator.eventbus.kafka.group.id=introducer-validator-stage @@ -631,11 +621,8 @@ mosip.regproc.introducer-validator.eventbus.port=5728 mosip.regproc.introducer-validator.server.servlet.path=/registrationprocessor/v1/introducervalidator #demo-dedupe-stage -#mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=auto -#mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=10 -#mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=1000 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -645,7 +632,6 @@ mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedu #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single -#mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=10 mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.handler.eventbus.kafka.group.id=abis-handler-stage @@ -659,9 +645,7 @@ mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger' mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye'} #bio-dedupe-stage -#mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=batch -#mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=10 mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.bio.dedupe.eventbus.kafka.group.id=bio-dedupe-stage @@ -671,11 +655,8 @@ mosip.regproc.bio.dedupe.eventbus.port=5718 mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe # uin-generator-stage -#mosip.regproc.uin.generator.eventbus.kafka.commit.type=single mosip.regproc.uin.generator.eventbus.kafka.commit.type=batch -#mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=3 -#mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=500 mosip.regproc.uin.generator.eventbus.kafka.group.id=uin-generator-stage mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -686,7 +667,6 @@ mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-ge # abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 -#mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=30000 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -717,7 +697,6 @@ mosip.regproc.finalization.message.expiry-time-limit=${mosip.regproc.common.stag # biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single -#mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=10 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 mosip.regproc.biometric.authentication.eventbus.kafka.group.id=biometric-authentication-stage @@ -737,7 +716,6 @@ mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reproces ## Supervisor validator stage mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single -#mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.supervisor-validator.eventbus.kafka.group.id=supervisor-validator-stage @@ -748,7 +726,6 @@ mosip.regproc.supervisor-validator.server.servlet.path=/registrationprocessor/v1 ## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single -#mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 mosip.regproc.message.sender.eventbus.kafka.max.poll.records=10 mosip.regproc.message.sender.eventbus.kafka.poll.frequency=100 mosip.regproc.message.sender.eventbus.kafka.group.id=message-sender-stage @@ -759,7 +736,6 @@ mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sende #printing-stage mosip.regproc.printing.eventbus.kafka.commit.type=single -#mosip.regproc.printing.eventbus.kafka.max.poll.records=100 mosip.regproc.printing.eventbus.kafka.max.poll.records=5 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage @@ -768,7 +744,6 @@ mosip.regproc.printing.server.port=8097 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 - #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 From 11bcd4cb3c32972ec6a41a3d2457850987c94f7a Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 14:17:33 +0530 Subject: [PATCH 0919/1358] Performance Fix Added And Removed the commented line --- kernel-default.properties | 2 -- registration-processor-default.properties | 25 ----------------------- 2 files changed, 27 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index d9c9ec1ecd0..4989c59c36e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -279,8 +279,6 @@ mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 -#kernel.uin.transfer-scheduler-minutes=48 -#kernel.uin.transfer-scheduler-hours=17 kernel.uin.transfer-scheduler-minutes=0 kernel.uin.transfer-scheduler-hours=* kernel.uin.transfer-scheduler-days_of_month=* diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 55ddcbfaafa..1154d631084 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -524,9 +524,7 @@ mosip.regproc.securezone.notification.message.tag.loading.disable=true #packet-uploader-stage mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single -#mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=5 -#mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.uploader.eventbus.kafka.group.id=packet-uploader-stage mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -538,11 +536,8 @@ packet.manager.iteration.addition.enabled=true packet.uploader.stage=registration-processor-packet-uploader-stage #packet-validator-stage -#mosip.regproc.packet.validator.eventbus.kafka.commit.type=single mosip.regproc.packet.validator.eventbus.kafka.commit.type=batch -#mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=4 -#mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.validator.eventbus.kafka.group.id=packet-validator-stage mosip.regproc.packet.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -554,7 +549,6 @@ mosip.regproc.packet.validator.validate-applicant-document.processes=NEW,UPDATE, ## Operator validator mosip.regproc.operator-validator.eventbus.kafka.commit.type=single -#mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.operator-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.operator-validator.eventbus.kafka.group.id=operator-validator-stage @@ -565,7 +559,6 @@ mosip.regproc.operator-validator.server.servlet.path=/registrationprocessor/v1/o # Command validator mosip.regproc.cmd-validator.eventbus.kafka.commit.type=single -#mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.cmd-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.cmd-validator.eventbus.kafka.group.id=cmd-validator-stage @@ -590,7 +583,6 @@ mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:m ## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single -#mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=10 mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.classifier.eventbus.kafka.group.id=packet-classifier-stage @@ -601,7 +593,6 @@ mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/pa ## Quality classifier stage mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single -#mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=10 mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.quality.classifier.eventbus.kafka.group.id=quality-classifier-stage @@ -621,7 +612,6 @@ mosip.regproc.quality.classifier.tagging.quality.modalities=Iris,Finger,Face ## Introducer validator stage mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single -#mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.introducer-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.introducer-validator.eventbus.kafka.group.id=introducer-validator-stage @@ -631,11 +621,8 @@ mosip.regproc.introducer-validator.eventbus.port=5728 mosip.regproc.introducer-validator.server.servlet.path=/registrationprocessor/v1/introducervalidator #demo-dedupe-stage -#mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=auto -#mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=10 -#mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=1000 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -645,7 +632,6 @@ mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedu #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single -#mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=10 mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.handler.eventbus.kafka.group.id=abis-handler-stage @@ -659,9 +645,7 @@ mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger' mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye'} #bio-dedupe-stage -#mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=batch -#mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=10 mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.bio.dedupe.eventbus.kafka.group.id=bio-dedupe-stage @@ -671,11 +655,8 @@ mosip.regproc.bio.dedupe.eventbus.port=5718 mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe # uin-generator-stage -#mosip.regproc.uin.generator.eventbus.kafka.commit.type=single mosip.regproc.uin.generator.eventbus.kafka.commit.type=batch -#mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=3 -#mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=500 mosip.regproc.uin.generator.eventbus.kafka.group.id=uin-generator-stage mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -686,7 +667,6 @@ mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-ge # abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 -#mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=30000 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -717,7 +697,6 @@ mosip.regproc.finalization.message.expiry-time-limit=${mosip.regproc.common.stag # biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single -#mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=10 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 mosip.regproc.biometric.authentication.eventbus.kafka.group.id=biometric-authentication-stage @@ -737,7 +716,6 @@ mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reproces ## Supervisor validator stage mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single -#mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.supervisor-validator.eventbus.kafka.group.id=supervisor-validator-stage @@ -748,7 +726,6 @@ mosip.regproc.supervisor-validator.server.servlet.path=/registrationprocessor/v1 ## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single -#mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 mosip.regproc.message.sender.eventbus.kafka.max.poll.records=10 mosip.regproc.message.sender.eventbus.kafka.poll.frequency=100 mosip.regproc.message.sender.eventbus.kafka.group.id=message-sender-stage @@ -759,7 +736,6 @@ mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sende #printing-stage mosip.regproc.printing.eventbus.kafka.commit.type=single -#mosip.regproc.printing.eventbus.kafka.max.poll.records=100 mosip.regproc.printing.eventbus.kafka.max.poll.records=5 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage @@ -768,7 +744,6 @@ mosip.regproc.printing.server.port=8097 mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage mosip.regproc.printing.eventbus.port=5722 - #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single mosip.regproc.opencrvs.eventbus.kafka.max.poll.records=100 From 9752fc310d6a712a6f399dce2e314196c96c477c Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 14:23:42 +0530 Subject: [PATCH 0920/1358] Performance Fix Added And Removed the commented line --- kernel-default.properties | 1 + registration-processor-default.properties | 1 - 2 files changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 4989c59c36e..770ada5c3d3 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -276,6 +276,7 @@ mosip.kernel.prereg.realm-id=mosip mosip.kernel.prereg.client.id=mosip-prereg-client mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} + ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1154d631084..07eb4c22c90 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -845,7 +845,6 @@ mosip.regproc.packet.classifier.tagging.exceptionbiometrics.bio-value-mapping={' # file Identity segment and should have proper default source configured mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability-expression-map={'INTRODUCER_AVAILABILITY':'introducerUIN || introducerRID || introducerVID'} - ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] mock.mv.decision=APPROVED From 17053bb332ff0277fd31f2dc97a6226b0c4a78ed Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 16:10:58 +0530 Subject: [PATCH 0921/1358] Performance Fix Added and Reviewed --- kernel-default.properties | 1 - registration-processor-default.properties | 8 ++++---- 2 files changed, 4 insertions(+), 5 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 770ada5c3d3..4989c59c36e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -276,7 +276,6 @@ mosip.kernel.prereg.realm-id=mosip mosip.kernel.prereg.client.id=mosip-prereg-client mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} - ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 07eb4c22c90..c05b9fe4665 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -326,7 +326,6 @@ mosip.regproc.verification.server.servlet.path=/registrationprocessor/v1/verific # Manual adjudication mosip.regproc.manual.adjudication.eventbus.kafka.commit.type=single -#mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=10 mosip.regproc.manual.adjudication.eventbus.kafka.poll.frequency=100 mosip.regproc.manual.adjudication.eventbus.kafka.group.id=manual-adjudication-stage @@ -593,7 +592,7 @@ mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/pa ## Quality classifier stage mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single -mosip.regproc.quality.checker.eventbus.kafka.max.poll.records=10 +mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=10 mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.quality.classifier.eventbus.kafka.group.id=quality-classifier-stage mosip.regproc.quality.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -621,7 +620,7 @@ mosip.regproc.introducer-validator.eventbus.port=5728 mosip.regproc.introducer-validator.server.servlet.path=/registrationprocessor/v1/introducervalidator #demo-dedupe-stage -mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=auto +mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=10 mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=1000 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage @@ -667,7 +666,7 @@ mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-ge # abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 -mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=30000 +mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=5000 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.abis.middleware.server.port=8091 @@ -845,6 +844,7 @@ mosip.regproc.packet.classifier.tagging.exceptionbiometrics.bio-value-mapping={' # file Identity segment and should have proper default source configured mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability-expression-map={'INTRODUCER_AVAILABILITY':'introducerUIN || introducerRID || introducerVID'} + ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] mock.mv.decision=APPROVED From ea6689cd83ac62e06031b3e05c9e0bc66899fed0 Mon Sep 17 00:00:00 2001 From: Kavya V Nirakari <kavya.nirakari@infystrat.com> Date: Tue, 20 Sep 2022 16:20:41 +0530 Subject: [PATCH 0922/1358] Performance Fix Added --- kernel-default.properties | 4 +- registration-processor-default.properties | 48 +++++++++++------------ 2 files changed, 26 insertions(+), 26 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 755c755d2ae..f170036ec5a 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -279,8 +279,8 @@ mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 -kernel.uin.transfer-scheduler-minutes=48 -kernel.uin.transfer-scheduler-hours=17 +kernel.uin.transfer-scheduler-minutes=0 +kernel.uin.transfer-scheduler-hours=* kernel.uin.transfer-scheduler-days_of_month=* kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 83fcd924d08..19c67612a48 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -326,7 +326,7 @@ mosip.regproc.verification.server.servlet.path=/registrationprocessor/v1/verific # Manual adjudication mosip.regproc.manual.adjudication.eventbus.kafka.commit.type=single -mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=100 +mosip.regproc.manual.adjudication.eventbus.kafka.max.poll.records=10 mosip.regproc.manual.adjudication.eventbus.kafka.poll.frequency=100 mosip.regproc.manual.adjudication.eventbus.kafka.group.id=manual-adjudication-stage mosip.regproc.manual.adjudication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -523,8 +523,8 @@ mosip.regproc.securezone.notification.message.tag.loading.disable=true #packet-uploader-stage mosip.regproc.packet.uploader.eventbus.kafka.commit.type=single -mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=100 -mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=100 +mosip.regproc.packet.uploader.eventbus.kafka.max.poll.records=5 +mosip.regproc.packet.uploader.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.uploader.eventbus.kafka.group.id=packet-uploader-stage mosip.regproc.packet.uploader.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.packet.uploader.server.port=8087 @@ -535,9 +535,9 @@ packet.manager.iteration.addition.enabled=true packet.uploader.stage=registration-processor-packet-uploader-stage #packet-validator-stage -mosip.regproc.packet.validator.eventbus.kafka.commit.type=single -mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=100 -mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=100 +mosip.regproc.packet.validator.eventbus.kafka.commit.type=batch +mosip.regproc.packet.validator.eventbus.kafka.max.poll.records=4 +mosip.regproc.packet.validator.eventbus.kafka.poll.frequency=500 mosip.regproc.packet.validator.eventbus.kafka.group.id=packet-validator-stage mosip.regproc.packet.validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.packet.validator.server.port=8088 @@ -548,7 +548,7 @@ mosip.regproc.packet.validator.validate-applicant-document.processes=NEW,UPDATE, ## Operator validator mosip.regproc.operator-validator.eventbus.kafka.commit.type=single -mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.operator-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.operator-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.operator-validator.eventbus.kafka.group.id=operator-validator-stage mosip.regproc.operator-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -558,7 +558,7 @@ mosip.regproc.operator-validator.server.servlet.path=/registrationprocessor/v1/o # Command validator mosip.regproc.cmd-validator.eventbus.kafka.commit.type=single -mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.cmd-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.cmd-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.cmd-validator.eventbus.kafka.group.id=cmd-validator-stage mosip.regproc.cmd-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -582,7 +582,7 @@ mosip.regproc.cmd-validator.device.digital-id-timestamp-format=yyyy-MM-dd'T'HH:m ## Packet classifier stage mosip.regproc.packet.classifier.eventbus.kafka.commit.type=single -mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=100 +mosip.regproc.packet.classifier.eventbus.kafka.max.poll.records=10 mosip.regproc.packet.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.packet.classifier.eventbus.kafka.group.id=packet-classifier-stage mosip.regproc.packet.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -592,7 +592,7 @@ mosip.regproc.packet.classifier.server.servlet.path=/registrationprocessor/v1/pa ## Quality classifier stage mosip.regproc.quality.classifier.eventbus.kafka.commit.type=single -mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=100 +mosip.regproc.quality.classifier.eventbus.kafka.max.poll.records=10 mosip.regproc.quality.classifier.eventbus.kafka.poll.frequency=100 mosip.regproc.quality.classifier.eventbus.kafka.group.id=quality-classifier-stage mosip.regproc.quality.classifier.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -611,7 +611,7 @@ mosip.regproc.quality.classifier.tagging.quality.modalities=Iris,Finger,Face ## Introducer validator stage mosip.regproc.introducer-validator.eventbus.kafka.commit.type=single -mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.introducer-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.introducer-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.introducer-validator.eventbus.kafka.group.id=introducer-validator-stage mosip.regproc.introducer-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -621,8 +621,8 @@ mosip.regproc.introducer-validator.server.servlet.path=/registrationprocessor/v1 #demo-dedupe-stage mosip.regproc.demo.dedupe.eventbus.kafka.commit.type=single -mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=100 -mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=100 +mosip.regproc.demo.dedupe.eventbus.kafka.max.poll.records=10 +mosip.regproc.demo.dedupe.eventbus.kafka.poll.frequency=1000 mosip.regproc.demo.dedupe.eventbus.kafka.group.id=demo-dedupe-stage mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.demo.dedupe.server.port=8091 @@ -631,7 +631,7 @@ mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedu #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single -mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=100 +mosip.regproc.abis.handler.eventbus.kafka.max.poll.records=10 mosip.regproc.abis.handler.eventbus.kafka.poll.frequency=100 mosip.regproc.abis.handler.eventbus.kafka.group.id=abis-handler-stage mosip.regproc.abis.handler.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -644,8 +644,8 @@ mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger' mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye'} #bio-dedupe-stage -mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=single -mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=100 +mosip.regproc.bio.dedupe.eventbus.kafka.commit.type=batch +mosip.regproc.bio.dedupe.eventbus.kafka.max.poll.records=10 mosip.regproc.bio.dedupe.eventbus.kafka.poll.frequency=100 mosip.regproc.bio.dedupe.eventbus.kafka.group.id=bio-dedupe-stage mosip.regproc.bio.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -654,9 +654,9 @@ mosip.regproc.bio.dedupe.eventbus.port=5718 mosip.regproc.bio.dedupe.server.servlet.path=/registrationprocessor/v1/biodedupe # uin-generator-stage -mosip.regproc.uin.generator.eventbus.kafka.commit.type=single -mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=100 -mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=100 +mosip.regproc.uin.generator.eventbus.kafka.commit.type=batch +mosip.regproc.uin.generator.eventbus.kafka.max.poll.records=3 +mosip.regproc.uin.generator.eventbus.kafka.poll.frequency=500 mosip.regproc.uin.generator.eventbus.kafka.group.id=uin-generator-stage mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.uin.generator.server.port=8099 @@ -666,7 +666,7 @@ mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-ge # abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single mosip.regproc.abis.middleware.eventbus.kafka.max.poll.records=100 -mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=100 +mosip.regproc.abis.middleware.eventbus.kafka.poll.frequency=5000 mosip.regproc.abis.middleware.eventbus.kafka.group.id=abis-middle-ware-stage mosip.regproc.abis.middleware.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} mosip.regproc.abis.middleware.server.port=8091 @@ -696,7 +696,7 @@ mosip.regproc.finalization.message.expiry-time-limit=${mosip.regproc.common.stag # biometric-authentication-stage mosip.regproc.biometric.authentication.eventbus.kafka.commit.type=single -mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=100 +mosip.regproc.biometric.authentication.eventbus.kafka.max.poll.records=10 mosip.regproc.biometric.authentication.eventbus.kafka.poll.frequency=100 mosip.regproc.biometric.authentication.eventbus.kafka.group.id=biometric-authentication-stage mosip.regproc.biometric.authentication.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -715,7 +715,7 @@ mosip.regproc.reprocessor.server.servlet.path=/registrationprocessor/v1/reproces ## Supervisor validator stage mosip.regproc.supervisor-validator.eventbus.kafka.commit.type=single -mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=100 +mosip.regproc.supervisor-validator.eventbus.kafka.max.poll.records=10 mosip.regproc.supervisor-validator.eventbus.kafka.poll.frequency=100 mosip.regproc.supervisor-validator.eventbus.kafka.group.id=supervisor-validator-stage mosip.regproc.supervisor-validator.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -725,7 +725,7 @@ mosip.regproc.supervisor-validator.server.servlet.path=/registrationprocessor/v1 ## Message sender stage mosip.regproc.message.sender.eventbus.kafka.commit.type=single -mosip.regproc.message.sender.eventbus.kafka.max.poll.records=100 +mosip.regproc.message.sender.eventbus.kafka.max.poll.records=10 mosip.regproc.message.sender.eventbus.kafka.poll.frequency=100 mosip.regproc.message.sender.eventbus.kafka.group.id=message-sender-stage mosip.regproc.message.sender.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} @@ -735,7 +735,7 @@ mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sende #printing-stage mosip.regproc.printing.eventbus.kafka.commit.type=single -mosip.regproc.printing.eventbus.kafka.max.poll.records=100 +mosip.regproc.printing.eventbus.kafka.max.poll.records=5 mosip.regproc.printing.eventbus.kafka.poll.frequency=100 mosip.regproc.printing.eventbus.kafka.group.id=printing-stage mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} From dcb7539d02ecf520641e59988249940bc12adcfd Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Thu, 22 Sep 2022 14:52:56 +0530 Subject: [PATCH 0923/1358] for testing activemq connection (#2702) * for testing activemq connection * Update registration-processor-abis.json --- registration-processor-abis.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 2f0c1476faf..b2404a8656f 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?reconnectSupported=true&startupMaxReconnectAttempts=100&warnAfterReconnectAttempts=2&maxReconnectDelay=30000&maxReconnectAttempts=1000", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", From 46b7cc21d87268c8c90783c939a41eddcd18a2c3 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Thu, 22 Sep 2022 15:31:37 +0530 Subject: [PATCH 0924/1358] registration.processor.queue.connection.retry.count = 100 (#2703) --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 19c67612a48..018c317b4b0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -275,6 +275,7 @@ registration.processor.queue.username=artemis registration.processor.queue.password=${activemq.password} registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ +registration.processor.queue.connection.retry.count=100 registration.processor.queue.manualverification.request=mosip-to-mv # queue name where mosip will receive response from external mv system From 4ffd6a679caf97f04a5aeb88c8f861416a450038 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 22 Sep 2022 18:58:28 +0530 Subject: [PATCH 0925/1358] Update reprocess elapse time to 900 --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 018c317b4b0..6e58187708c 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -291,7 +291,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=3600 +registration.processor.reprocess.elapse.time=900 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From f266e65c4d03e4c32461e9b580e4d2242b1a4921 Mon Sep 17 00:00:00 2001 From: Monobikash Das <monobikash.das@mindtree.com> Date: Thu, 22 Sep 2022 20:43:54 +0530 Subject: [PATCH 0926/1358] Added activemq configs --- registration-processor-abis.json | 2 +- registration-processor-default.properties | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index 2f0c1476faf..b2404a8656f 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?reconnectSupported=true&startupMaxReconnectAttempts=100&warnAfterReconnectAttempts=2&maxReconnectDelay=30000&maxReconnectAttempts=1000", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c05b9fe4665..656073b40a0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -275,6 +275,7 @@ registration.processor.queue.username=artemis registration.processor.queue.password=${activemq.password} registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ +registration.processor.queue.connection.retry.count=100 registration.processor.queue.manualverification.request=mosip-to-mv # queue name where mosip will receive response from external mv system From 1f7759554b6a12716b577134994147053bae0977 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Wed, 28 Sep 2022 16:09:18 +0530 Subject: [PATCH 0927/1358] Removed health check for notifier service. --- kernel-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 4989c59c36e..92ac5e4956f 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -737,4 +737,3 @@ auth.allowed.urls=http://localhost:5000/ mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF] -management.health.mail.enabled=true From 75addfaa945d9fbefeadcea66a6518b5b71eaa1c Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Mon, 3 Oct 2022 16:30:05 +0530 Subject: [PATCH 0928/1358] [DSD-1491]decreased otp expiry time --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 605caf4484a..8aa05f0a98e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -252,7 +252,7 @@ mosip.kernel.otp.default-length=6 ## Default crypto function: HmacSHA512, HmacSHA256, HmacSHA1. mosip.kernel.otp.mac-algorithm=HmacSHA512 ## OTP expires after the given time (in seconds). -mosip.kernel.otp.expiry-time=180 +mosip.kernel.otp.expiry-time=60 ## Key is frozen for the given time (in seconds). mosip.kernel.otp.key-freeze-time=1800 ## Number of validation attempts allowed. From fac0c8f40e31846feef699bfd2a427372ef258fb Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Mon, 31 Oct 2022 12:47:15 +0530 Subject: [PATCH 0929/1358] Fix for DDL execution in credential request generator on startup Fix for DDL execution in credential request generator on startup --- id-repository-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index ba9965e36a0..a60c65bf737 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -242,7 +242,8 @@ mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.d mosip.credential.service.jdbc.user=credentialuser mosip.credential.service.jdbc.password=${db.dbuser.password} mosip.credential.service.jdbc.driver=org.postgresql.Driver -hibernate.hbm2ddl.auto=update +hibernate.hbm2ddl.auto=none +spring.jpa.hibernate.ddl-auto=none hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.show_sql=false From eabf7fa77086aac7b74625a8356995ca2438deb4 Mon Sep 17 00:00:00 2001 From: M1022006 <sowmya.goudar@mindtree.com> Date: Wed, 2 Nov 2022 17:42:30 +0530 Subject: [PATCH 0930/1358] MOSIP-24284 config changes --- id-repository-default.properties | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index a60c65bf737..d92329309a1 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -266,17 +266,12 @@ mosip.credential.request.crypto-ref-id=credential_request mosip.credential.request.job.timedelay=15000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 -# This property can be set to auth,print or keep it empty so batch will pick up all records# -credential.request.type=auth credential.request.retry.max.count=10 credential.request.reprocess.statuscodes=FAILED,RETRY -credential.batch.core.pool.size=10 -credential.batch.max.pool.size=10 -credential.batch.queue.capacity=10 credential.batch.page.size=10 -credential.batch.chunk.size=10 credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 +credential.batch.status=NEW ## Rest services CRDENTIALSERVICE=${mosip.idrepo.credential.service.url}/v1/credentialservice/issue From fc97ecb64c1d1d547dd10a4df3c0ae26367af8c9 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 2 Nov 2022 20:19:36 +0530 Subject: [PATCH 0931/1358] added the missing prop --- id-repository-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/id-repository-default.properties b/id-repository-default.properties index d92329309a1..b891ca39ca8 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -415,3 +415,5 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY + +credential.request.type=auth From ba493ce13f3a5f2bac76e5892c570020bb340649 Mon Sep 17 00:00:00 2001 From: M1022006 <sowmya.goudar@mindtree.com> Date: Thu, 3 Nov 2022 09:58:01 +0530 Subject: [PATCH 0932/1358] MOSIP-24284 removed unused property --- id-repository-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index b891ca39ca8..d92329309a1 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -415,5 +415,3 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY - -credential.request.type=auth From f19e25b0770458611f03f7d49e7e76a845f9575b Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Fri, 18 Nov 2022 19:58:18 +0530 Subject: [PATCH 0933/1358] [DSD-1644] added compliance-toolkit-default.properties file --- compliance-toolkit-default.properties | 177 ++++++++++++++++++++++++++ 1 file changed, 177 insertions(+) create mode 100644 compliance-toolkit-default.properties diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties new file mode 100644 index 00000000000..b1c9ad22ef5 --- /dev/null +++ b/compliance-toolkit-default.properties @@ -0,0 +1,177 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# mosip.prereg.client.secret +# prereg.captcha.site.key +# prereg.captcha.secret.key +# keycloak.internal.host +# keycloak.internal.url +# s3.accesskey +# s3.region +# s3.secretkey + +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +#javax.persistence.jdbc.driver=org.postgresql.Driver +#mosip.database.ip=postgres-postgresql.postgres +#mosip.database.port=5432 +#javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_prereg?useSSL=false +#javax.persistence.jdbc.user=prereguser +#javax.persistence.jdbc.password=${db.dbuser.password} + +##DB properties +javax.persistence.jdbc.driver=org.postgresql.Driver +mosip.database.ip=postgres-postgresql.postgres +mosip.database.port=5432 +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_toolkit?useSSL=false +javax.persistence.jdbc.user=toolkituser +javax.persistence.jdbc.password=${db.dbuser.password} + +## Hibernate +hibernate.hbm2ddl.auto=none +hibernate.show_sql=false +hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect +hibernate.jdbc.lob.non_contextual_creation=true + +logging.level.com.zaxxer.hikari=DEBUG + +## Project Version for the API response +version=1.0 + +server.servlet.context-path=/v1/toolkit + +## Security properties +mosip.security.csrf-enable=false +mosip.security.cors-enable=false +mosip.security.origins=localhost:8099 +mosip.security.secure-cookie=false + +#iam +mosip.api.internal.url=https://${mosip.api.internal.host} +#keycloak.external.url=${mosip.api.internal.url}/keycloak +iam.base.url=${keycloak.external.url} + +#iam adapter setup +mosip.service-context=${server.servlet.context-path} +mosip.service.end-points=/**/toolkit/** +mosip.global.end-points=/**/assets/**,/**/icons/**,/**/screenshots/**,/favicon**,/**/favicon**,/**/css/**,/**/js/**,/**/error**,/**/webjars/**,/**/csrf,/*/,/**/authenticate/**,/**/actuator/**,/sendOtp,/validateOtp,/invalidateToken,/config,/login,/logout,/validateOTP,/sendOTP,/**/login,/**/login/**,/**/login-redirect/**,/**/logout/**,/**/h2-console/**,/**/**/license/**,/**/callback/**,/**/authenticate/** +#mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT,DELETE +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.auth.filter_disable=false +mosip.kernel.auth.adapter.ssl-bypass=true +mosip.kernel.auth.appid-realm-map={toolkit:'mosip'} +mosip.kernel.auth.appids.realm.map={toolkit:'mosip'} + +#iam adapter +mosip.iam.adapter.appid=toolkit +mosip.iam.adapter.clientid=mosip-toolkit-client +mosip.iam.adapter.clientsecret=${mosip.toolkit.client.secret} + +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.allowed.audience=mosip-toolkit-client +auth.allowed.urls=https://${mosip.compliance.host}/ +mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs + +auth.server.validate.url=${mosip.api.internal.url}/v1/authmanager/authorize/admin/validateToken + +## below are required for kernel-authcodeflowproxy-api dependency +mosip.iam.module.login_flow.name=authorization_code +mosip.iam.module.login_flow.scope=email +mosip.iam.module.login_flow.response_type=code +mosip.iam.module.clientid=mosip-toolkit-client +mosip.iam.module.clientsecret=${mosip.toolkit.client.secret} +mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/toolkit/login-redirect/ +mosip.iam.module.admin_realm_id=mosip +mosip.iam.base-url=${iam.base.url} +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.token_endpoint=${iam.base.url}/auth/realms/mosip/protocol/openid-connect/token +auth.server.admin.validate.url=${mosip.api.internal.url}/v1/authmanager/authorize/admin/validateToken + +## below are required for kernel CBEFF util dependency +mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ +mosip.kernel.xsdfile=mosip-cbeff.xsd + +## Minio +object.store.s3.use.account.as.bucketname=true + +## To store documents +mosip.kernel.objectstore.account-name=compliance-toolkit + +# Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + +## Signature Validation of SBI +mosip.service.auth.appid=regproc +mosip.service.auth.clientid=mosip-pms-client +mosip.service.auth.secretkey=${mosip.pms.client.secret} +mosip.service.validation.url=${mosip.api.internal.url}/v1/partnermanager/deviceprovidermanagement/validate +mosip.service.authmanager.url=${mosip.api.internal.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.service.keymanager.verifyCertificateTrust.url=${mosip.api.internal.url}/v1/keymanager/verifyCertificateTrust + +mosip.toolkit.sbi.ports=4501,4502,4503,4504,4505,4506,4507,4508,4509,4510 +mosip.toolkit.sbi.timeout=20000 + +# Threshold value against which the quality check score value will be evaluated for Fingerprint biometric type. +mosip.toolkit.sdk.finger.qualitycheck.threshold.value=60 +# Threshold value against which the quality check score value will be evaluated for Face biometric type. +mosip.toolkit.sdk.face.qualitycheck.threshold.value=30 +# Threshold value against which the quality check score value will be evaluated for Iris biometric type. +mosip.toolkit.sdk.iris.qualitycheck.threshold.value=60 + +# TestRuns more than this limit will be moved to archives +mosip.toolkit.testrun.archive.offset=5 + +mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.port=3310 + +#Enable or disable the virus scanner(true/false) +mosip.toolkit.document.scan=true + +##the id for API +mosip.toolkit.api.id.projects.get=mosip.toolkit.projects.retrieve +mosip.toolkit.api.id.sbi.project.get=mosip.toolkit.sbi.project.retrieve +mosip.toolkit.api.id.collections.get=mosip.toolkit.collections.retrieve +mosip.toolkit.api.id.collection.get=mosip.toolkit.collection.retrieve +mosip.toolkit.api.id.sdk.project.get=mosip.toolkit.sdk.project.retrieve +mosip.toolkit.api.id.sdk.project.put=mosip.toolkit.sdk.project.update +mosip.toolkit.api.id.sdk.project.post=mosip.toolkit.sdk.project.add +mosip.toolkit.api.id.collection.post=mosip.toolkit.collection.add +mosip.toolkit.api.id.sbi.project.post=mosip.toolkit.sbi.project.add +mosip.toolkit.api.id.testcase.project.get=mosip.toolkit.testcase.project.retrieve +mosip.toolkit.api.id.validations.post=mosip.toolkit.api.id.validations +mosip.toolkit.api.id.generate.sdk.request.post=mosip.toolkit.api.id.generate.sdk.request +mosip.toolkit.api.id.collection.testcases.get=mosip.toolkit.collection.testcases.retrieve +mosip.toolkit.api.id.collection.testcase.post=mosip.toolkit.collection.testcase.add +mosip.toolkit.api.id.testrun.post=mosip.toolkit.testrun.add +mosip.toolkit.api.id.testrun.put=mosip.toolkit.testrun.update +mosip.toolkit.api.id.testrun.details.post=mosip.toolkit.testrun.details.add +mosip.toolkit.api.id.testrun.details.get=mosip.toolkit.testrun.details.retrieve +mosip.toolkit.api.id.testcase.get=mosip.toolkit.testcase.retrieve +mosip.toolkit.api.id.testrun.history.get=mosip.toolkit.testrun.history.retrieve +mosip.toolkit.api.id.testrun.status.get=mosip.toolkit.testrun.status.retrieve +mosip.toolkit.api.id.sdk.generate.request=mosip.toolkit.api.id.sdk.generate.request +mosip.toolkit.api.id.biometric.testdata.get=mosip.toolkit.biometric.testdata.retrieve +mosip.toolkit.api.id.biometric.testdata.post=mosip.toolkit.biometric.testdata.add +mosip.toolkit.api.id.biometric.testdata.filenames.get=mosip.toolkit.biometric.testdata.filenames.retrieve +mosip.toolkit.api.id.resource.file.post=mosip.toolkit.resource.file.add + +#Roles for validation +mosip.toolkit.roles.uploadResource=GLOBAL_ADMIN +mosip.toolkit.roles.saveTestCases=GLOBAL_ADMIN + +## Determines file upload type allowed in UI +mosip.toolkit.documentupload.allowed.file.type = application/zip +# Determines the file name length(with extension) allowed in UI +mosip.toolkit.documentupload.allowed.file.nameLength = 50 +# Determines maximum size of file allowed uploaded 10 MB +mosip.toolkit.documentupload.allowed.file.size = 10000000 + +mosip.toolkit.max.allowed.gallery.files=5 \ No newline at end of file From f91b34d589aa3697541e2cfc5d5ff0e7614b2a9a Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 21 Nov 2022 16:57:19 +0530 Subject: [PATCH 0934/1358] Toolkit added auth.server.admin.allowed.audience Updated auth.server.admin.allowed.audience by adding toolkit-client --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index f170036ec5a..3ad194a8df2 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -418,7 +418,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client From 380d54e181df2ea991baca7841af959181644895 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 25 Nov 2022 10:19:51 +0530 Subject: [PATCH 0935/1358] Updated allowed file size mosip.toolkit.documentupload.allowed.file.size = 20000000 --- compliance-toolkit-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index b1c9ad22ef5..e02be544fcb 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -172,6 +172,6 @@ mosip.toolkit.documentupload.allowed.file.type = application/zip # Determines the file name length(with extension) allowed in UI mosip.toolkit.documentupload.allowed.file.nameLength = 50 # Determines maximum size of file allowed uploaded 10 MB -mosip.toolkit.documentupload.allowed.file.size = 10000000 +mosip.toolkit.documentupload.allowed.file.size = 20000000 -mosip.toolkit.max.allowed.gallery.files=5 \ No newline at end of file +mosip.toolkit.max.allowed.gallery.files=5 From c74d6b90c9ff62e926f20484c353c2eb3448ec64 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Fri, 9 Dec 2022 11:46:25 +0530 Subject: [PATCH 0936/1358] [DSD-1773] Added config changes for ida service. --- id-authentication-default.properties | 88 +++++++++---------- id-authentication-internal-default.properties | 8 +- 2 files changed, 51 insertions(+), 45 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f31b81d12bd..ac7cc120b6f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -114,8 +114,6 @@ ida.id.attribute.separator.fullAddress=, ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service -## For real biosdk -# mosip.biosdk.default.service.url=${mosip.ida.biosdk-service.url}/api # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -218,14 +216,6 @@ ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} -ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} -## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} -ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} -ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} -ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} -ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.ida.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} @@ -235,9 +225,9 @@ ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet ida-websub-partner-service-partner-api-key-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_api_key_updated ida-websub-partner-service-misp-license-generated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_generated ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated -## Callback url for hotlist event -ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=${mosip.api.internal.url}/${ida-websub-hotlist-callback-relative-url} + +ida-websub-partner-service-oidc-client-created-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/oidc_client_created +ida-websub-partner-service-oidc-client-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/oidc_client_updated #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 @@ -275,7 +265,8 @@ ida-topic-pmp-misp-license-updated=MISP_LICENSE_UPDATED ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE - +ida-topic-pmp-oidc-client-created=OIDC_CLIENT_CREATED +ida-topic-pmp-oidc-client-updated=OIDC_CLIENT_UPDATED # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 # in minutes @@ -384,7 +375,8 @@ ida.api.id.vid=mosip.identity.vid ida.api.id.internal=mosip.identity.auth.internal ida.api.id.auth.transactions=mosip.identity.authtransactions.read ida.api.id.otp.internal=mosip.identity.otp.internal - +ida.api.id.kycauth=mosip.identity.kycauth +ida.api.id.kycexchange=mosip.identity.kycexchange ## Request versions ida.api.version.auth=1.0 ida.api.version.kyc=1.0 @@ -394,7 +386,8 @@ ida.api.version.vid=1.0 ida.api.version.internal=1.0 ida.api.version.auth.transactions=1.0 ida.api.version.otp.internal=1.0 - +ida.api.version.kycauth=1.0 +ida.api.version.kycexchange=1.0 ## Auth response token config ## Preference to turn on/off of authentication response token for a Country ## A partner specific policy will govern how the response token is generated, whether it should be Random/Partner or Policy specific @@ -421,7 +414,8 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 ## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false ## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.authentication.core.exception.IdAuthRetryException,io.mosip.authentication.core.exception.IdAuthenticationBaseException +kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException + ## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -501,7 +495,7 @@ zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production -#mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false ## Admin # Configure N time period threshold for accepting auth/OTP/KYC request for a country @@ -543,8 +537,7 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth -ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl - +ida.mosip.internal.auth.filter.classes.in.execution.order==io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl ## Demo SDK integration mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 @@ -569,14 +562,14 @@ mosip.ida.allowed.domain.uris=${mosip.api.internal.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX #The list of attributes in identity that are to be decrypted by default -ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email #------ Un-encrypted Credential Attributes list ----------- #The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). #These attributes will not be decrypted when fetching the records from IDA DB for Authentication/EKYC/OTP requests. #By default all attributes are assumed to be Zero Knowledge encrypted. #Specify the attributes here only if they are not encrypted as per the datashare policy. -ida-zero-knowledge-unencrypted-credential-attributes=preferredLang +ida-zero-knowledge-unencrypted-credential-attributes= #openapi properties to sort tags and operations in Id Authentication springdoc.swagger-ui.tagsSorter=alpha @@ -596,25 +589,32 @@ mosip.role.idauth.postotp=RESIDENT mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.idauth.postverifyidentity=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.idauth.getauthtransactionsindividualid=RESIDENT -mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST -mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST -mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadotherdomaincertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN -mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencrypt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postdecrypt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postencryptwithpin=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptwithpin=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptdt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptdt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratemasterkeyobjecttype=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postgeneratecsr=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postuploadcertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postuploadotherdomaincertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postgeneratesymmetrickey=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.putrevokekey=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcacertificate=PARTNER_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=PARTNER_ADMIN,PARTNER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postverifycertificatetrust=PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postvalidate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT + +#logging.level.root=DEBUG + +# Secret will be used during kyc token generation. +mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ +kyc.token.expire.time.adjustment.seconds=300 +kyc.exchange.default.lang=eng diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 4b05ca5f01b..33411b5a630 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,4 +32,10 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client,mosip-deployment-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-deployment-client + +# Configuration to enable the enable/disable the retriggering of missing credential in IDA internal service startup. +# If the property is not defined, it is disabled by default. +# Note: if enabled, a setup with more than one pod of ida-internal-service will result in multiple retriggering of credentials by each pods. +# To avoid that issue, first keep one pod applied the with enabled flag, then disable the configuration and then scale it up. +ida-missing-credential-retrigger-enabled=false \ No newline at end of file From 8253e289d4ae6102a45fb2b7b367bbbae6e3d9a2 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Fri, 9 Dec 2022 11:49:06 +0530 Subject: [PATCH 0937/1358] [DSD-1773] Added config changes for ida service. --- ida-partner.cer | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 ida-partner.cer diff --git a/ida-partner.cer b/ida-partner.cer new file mode 100644 index 00000000000..92ac02f621e --- /dev/null +++ b/ida-partner.cer @@ -0,0 +1,22 @@ +-----BEGIN CERTIFICATE----- +MIIDrDCCApSgAwIBAgIIE5RHue4Ke5UwDQYJKoZIhvcNAQELBQAwdjELMAkGA1UE +BhMCSU4xCzAJBgNVBAgMAktBMRIwEAYDVQQHDAlCQU5HQUxPUkUxDTALBgNVBAoM +BElJVEIxIDAeBgNVBAsMF01PU0lQLVRFQ0gtQ0VOVEVSIChJREEpMRUwEwYDVQQD +DAx3d3cubW9zaXAuaW8wHhcNMjIxMjAyMTM1NDQzWhcNMjQxMjAxMTM1NDQzWjB1 +MQswCQYDVQQGEwJJTjELMAkGA1UECAwCS0ExEjAQBgNVBAcMCUJBTkdBTE9SRTEN +MAsGA1UECgwESUlUQjEgMB4GA1UECwwXTU9TSVAtVEVDSC1DRU5URVIgKElEQSkx +FDASBgNVBAMMC0lEQS1QQVJUTkVSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB +CgKCAQEA0IoecLH6IHKZZixLNZO++hC0XtH0wUeMQ5CoFBRC6jBsyZgEHSqvGYUc +t7r3rcLDWuiufz8VsdlzLCwV/Mw30ZB9sAut7g7wU1ak6pZfkUTLmsOgSq3szW4R +W3u2FlMoAtUdtHClSSymJ2lwCMsKyIwfXxrB1+T0YzRISIUToYZ/atMs+ntJyyyD +aIG1SNZi/L5CM5D0L7QhG19bgrMrgFGuk+z4CNcPBx4NHqkcowRePT3/lp98aLtB +2Rt6FQ/naTQMRK/L19sQTvQgaYClfq9Yeuv1w449NFuJ/MixXdj3A/8OvGM6fgV7 +vHzZR8gSHNK9XpPfkyYUgXq+h2CHzQIDAQABoz8wPTAMBgNVHRMBAf8EAjAAMB0G +A1UdDgQWBBSpx0wEBrp2hw1U8OMWzalKwaMn5DAOBgNVHQ8BAf8EBAMCBSAwDQYJ +KoZIhvcNAQELBQADggEBAFzssGHBrBYV6OKY7PbFVge2B+SxvIRrUxFSnJIqxyGs +mwgvEobzprH2pDir7xmQYNzG/npCw9980sJHxXRaojsby4+zxpECvTDa/00CVa3B +4BQCumaF6aqXaY9/Eabijay9lmkKOc7robNyn0W0H39XciO0ECas+byK0EjXyvzw +tUS2WZPnl1DXZBb6Z3yPZ/1e00dhga/IyDvBATR+++m69P0HHAOWOUKqtUDEfHTj +kopRmdOKv70fgoXOGi0ucnCIqpJF6CiinR7PTsNXZ5IVTDQ3jdpmh9lL4Mi4gmPu +F0SRhkXVig2LLe/OiQx7+0mjtPdKz4oEy1qeah+gCnY= +-----END CERTIFICATE----- \ No newline at end of file From 6f3cbcf474f7c06189e17a3bcca870c694fb15c0 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 9 Dec 2022 19:36:54 +0530 Subject: [PATCH 0938/1358] Revert "[DSD-1773] Added config changes for ida service." --- id-authentication-default.properties | 88 +++++++++---------- id-authentication-internal-default.properties | 8 +- ida-partner.cer | 22 ----- 3 files changed, 45 insertions(+), 73 deletions(-) delete mode 100644 ida-partner.cer diff --git a/id-authentication-default.properties b/id-authentication-default.properties index ac7cc120b6f..f31b81d12bd 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -114,6 +114,8 @@ ida.id.attribute.separator.fullAddress=, ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service +## For real biosdk +# mosip.biosdk.default.service.url=${mosip.ida.biosdk-service.url}/api # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -216,6 +218,14 @@ ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} +ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} +ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} +## Callback url for credential issueance event notification, including id remove/deactivate/activate events +ida-websub-idchage-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} +ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} +ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} +ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} +ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.ida.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} @@ -225,9 +235,9 @@ ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet ida-websub-partner-service-partner-api-key-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_api_key_updated ida-websub-partner-service-misp-license-generated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_generated ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated - -ida-websub-partner-service-oidc-client-created-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/oidc_client_created -ida-websub-partner-service-oidc-client-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/oidc_client_updated +## Callback url for hotlist event +ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist +ida-websub-hotlist-callback-url=${mosip.api.internal.url}/${ida-websub-hotlist-callback-relative-url} #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 @@ -265,8 +275,7 @@ ida-topic-pmp-misp-license-updated=MISP_LICENSE_UPDATED ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE -ida-topic-pmp-oidc-client-created=OIDC_CLIENT_CREATED -ida-topic-pmp-oidc-client-updated=OIDC_CLIENT_UPDATED + # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 # in minutes @@ -375,8 +384,7 @@ ida.api.id.vid=mosip.identity.vid ida.api.id.internal=mosip.identity.auth.internal ida.api.id.auth.transactions=mosip.identity.authtransactions.read ida.api.id.otp.internal=mosip.identity.otp.internal -ida.api.id.kycauth=mosip.identity.kycauth -ida.api.id.kycexchange=mosip.identity.kycexchange + ## Request versions ida.api.version.auth=1.0 ida.api.version.kyc=1.0 @@ -386,8 +394,7 @@ ida.api.version.vid=1.0 ida.api.version.internal=1.0 ida.api.version.auth.transactions=1.0 ida.api.version.otp.internal=1.0 -ida.api.version.kycauth=1.0 -ida.api.version.kycexchange=1.0 + ## Auth response token config ## Preference to turn on/off of authentication response token for a Country ## A partner specific policy will govern how the response token is generated, whether it should be Random/Partner or Policy specific @@ -414,8 +421,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 ## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false ## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException - +kernel.retry.retryable.exceptions=io.mosip.authentication.core.exception.IdAuthRetryException,io.mosip.authentication.core.exception.IdAuthenticationBaseException ## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -495,7 +501,7 @@ zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production -mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +#mosip.kernel.keymanager.keystore.keyreference.enable.cache=false ## Admin # Configure N time period threshold for accepting auth/OTP/KYC request for a country @@ -537,7 +543,8 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth -ida.mosip.internal.auth.filter.classes.in.execution.order==io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl +ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl + ## Demo SDK integration mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 @@ -562,14 +569,14 @@ mosip.ida.allowed.domain.uris=${mosip.api.internal.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX #The list of attributes in identity that are to be decrypted by default -ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang #------ Un-encrypted Credential Attributes list ----------- #The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). #These attributes will not be decrypted when fetching the records from IDA DB for Authentication/EKYC/OTP requests. #By default all attributes are assumed to be Zero Knowledge encrypted. #Specify the attributes here only if they are not encrypted as per the datashare policy. -ida-zero-knowledge-unencrypted-credential-attributes= +ida-zero-knowledge-unencrypted-credential-attributes=preferredLang #openapi properties to sort tags and operations in Id Authentication springdoc.swagger-ui.tagsSorter=alpha @@ -589,32 +596,25 @@ mosip.role.idauth.postotp=RESIDENT mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.idauth.postverifyidentity=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.idauth.getauthtransactionsindividualid=RESIDENT -mosip.role.keymanager.postencrypt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST -mosip.role.keymanager.postdecrypt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST -mosip.role.keymanager.postencryptwithpin=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptwithpin=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencryptdt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptdt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratemasterkeyobjecttype=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.getgetcertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER -mosip.role.keymanager.postgeneratecsr=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER -mosip.role.keymanager.postuploadcertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER -mosip.role.keymanager.postuploadotherdomaincertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER -mosip.role.keymanager.postgeneratesymmetrickey=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.putrevokekey=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadcacertificate=PARTNER_ADMIN -mosip.role.keymanager.postuploadpartnercertificate=PARTNER_ADMIN,PARTNER -mosip.role.keymanager.getgetpartnercertificatepartnercertid=PARTNER_ADMIN,PARTNER -mosip.role.keymanager.postverifycertificatetrust=PARTNER_ADMIN,PARTNER -mosip.role.keymanager.postsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postvalidate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postpdfsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT - -#logging.level.root=DEBUG - -# Secret will be used during kyc token generation. -mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ -kyc.token.expire.time.adjustment.seconds=300 -kyc.exchange.default.lang=eng +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadotherdomaincertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 33411b5a630..4b05ca5f01b 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,10 +32,4 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-deployment-client - -# Configuration to enable the enable/disable the retriggering of missing credential in IDA internal service startup. -# If the property is not defined, it is disabled by default. -# Note: if enabled, a setup with more than one pod of ida-internal-service will result in multiple retriggering of credentials by each pods. -# To avoid that issue, first keep one pod applied the with enabled flag, then disable the configuration and then scale it up. -ida-missing-credential-retrigger-enabled=false \ No newline at end of file +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client,mosip-deployment-client diff --git a/ida-partner.cer b/ida-partner.cer deleted file mode 100644 index 92ac02f621e..00000000000 --- a/ida-partner.cer +++ /dev/null @@ -1,22 +0,0 @@ ------BEGIN CERTIFICATE----- -MIIDrDCCApSgAwIBAgIIE5RHue4Ke5UwDQYJKoZIhvcNAQELBQAwdjELMAkGA1UE -BhMCSU4xCzAJBgNVBAgMAktBMRIwEAYDVQQHDAlCQU5HQUxPUkUxDTALBgNVBAoM -BElJVEIxIDAeBgNVBAsMF01PU0lQLVRFQ0gtQ0VOVEVSIChJREEpMRUwEwYDVQQD -DAx3d3cubW9zaXAuaW8wHhcNMjIxMjAyMTM1NDQzWhcNMjQxMjAxMTM1NDQzWjB1 -MQswCQYDVQQGEwJJTjELMAkGA1UECAwCS0ExEjAQBgNVBAcMCUJBTkdBTE9SRTEN -MAsGA1UECgwESUlUQjEgMB4GA1UECwwXTU9TSVAtVEVDSC1DRU5URVIgKElEQSkx -FDASBgNVBAMMC0lEQS1QQVJUTkVSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB -CgKCAQEA0IoecLH6IHKZZixLNZO++hC0XtH0wUeMQ5CoFBRC6jBsyZgEHSqvGYUc -t7r3rcLDWuiufz8VsdlzLCwV/Mw30ZB9sAut7g7wU1ak6pZfkUTLmsOgSq3szW4R -W3u2FlMoAtUdtHClSSymJ2lwCMsKyIwfXxrB1+T0YzRISIUToYZ/atMs+ntJyyyD -aIG1SNZi/L5CM5D0L7QhG19bgrMrgFGuk+z4CNcPBx4NHqkcowRePT3/lp98aLtB -2Rt6FQ/naTQMRK/L19sQTvQgaYClfq9Yeuv1w449NFuJ/MixXdj3A/8OvGM6fgV7 -vHzZR8gSHNK9XpPfkyYUgXq+h2CHzQIDAQABoz8wPTAMBgNVHRMBAf8EAjAAMB0G -A1UdDgQWBBSpx0wEBrp2hw1U8OMWzalKwaMn5DAOBgNVHQ8BAf8EBAMCBSAwDQYJ -KoZIhvcNAQELBQADggEBAFzssGHBrBYV6OKY7PbFVge2B+SxvIRrUxFSnJIqxyGs -mwgvEobzprH2pDir7xmQYNzG/npCw9980sJHxXRaojsby4+zxpECvTDa/00CVa3B -4BQCumaF6aqXaY9/Eabijay9lmkKOc7robNyn0W0H39XciO0ECas+byK0EjXyvzw -tUS2WZPnl1DXZBb6Z3yPZ/1e00dhga/IyDvBATR+++m69P0HHAOWOUKqtUDEfHTj -kopRmdOKv70fgoXOGi0ucnCIqpJF6CiinR7PTsNXZ5IVTDQ3jdpmh9lL4Mi4gmPu -F0SRhkXVig2LLe/OiQx7+0mjtPdKz4oEy1qeah+gCnY= ------END CERTIFICATE----- \ No newline at end of file From bc161e1541ec32c42f3207d9d9f8dc1dfb663ffa Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Mon, 12 Dec 2022 14:23:29 +0530 Subject: [PATCH 0939/1358] [DSD-1788] Added config changes for idp service. --- id-authentication-default.properties | 83 +++--- id-authentication-internal-default.properties | 8 +- ida-partner.cer | 22 ++ idp-default.properties | 252 ++++++++++++++++++ 4 files changed, 324 insertions(+), 41 deletions(-) create mode 100644 ida-partner.cer create mode 100644 idp-default.properties diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f31b81d12bd..f664eb039aa 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -115,8 +115,6 @@ ida.id.attribute.separator.fullAddress=, ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service ## For real biosdk -# mosip.biosdk.default.service.url=${mosip.ida.biosdk-service.url}/api -# The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 # The version of the BIO SDK API implemeted for Finger modality @@ -218,14 +216,6 @@ ida-websub-partner-service-callback-secret=${ida.websub.partner.service.callback ida-websub-hotlist-callback-secret=${ida.websub.hotlist.callback.secret} ida-websub-masterdata-templates-callback-secret=${ida.websub.masterdata.templates.callback.secret} ida-websub-masterdata-titles-callback-secret=${ida.websub.masterdata.titles.callback.secret} -ida-websub-auth-type-callback-relative-url=${server.servlet.context-path}/callback/authTypeCallback/${ida-auth-partner-id} -ida-websub-auth-type-callback-url=${mosip.api.internal.url}/${ida-websub-auth-type-callback-relative-url} -## Callback url for credential issueance event notification, including id remove/deactivate/activate events -ida-websub-idchage-callback-url=${mosip.api.internal.url}/${server.servlet.context-path}/callback/idchange/{eventType}/${ida-auth-partner-id} -ida-websub-idchange-credential-issued-callback-relative-url=${server.servlet.context-path}/callback/idchange/credential_issued/${ida-auth-partner-id} -ida-websub-idchange-remove-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/remove_id/${ida-auth-partner-id} -ida-websub-idchange-deactivate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/deactivate_id/${ida-auth-partner-id} -ida-websub-idchange-activate-id-callback-relative-url=${server.servlet.context-path}/callback/idchange/activate_id/${ida-auth-partner-id} ida-websub-credential-issue-callback-url= ## Callback url for MISP/Partner change notification events ida-websub-partner-service-callback-url=${mosip.ida.internal.url}/${server.servlet.context-path}/callback/partnermanagement/{eventType} @@ -235,9 +225,9 @@ ida-websub-partner-service-policy-updated-callback-relative-url=${server.servlet ida-websub-partner-service-partner-api-key-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/partner_api_key_updated ida-websub-partner-service-misp-license-generated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_generated ida-websub-partner-service-misp-license-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/misp_license_updated -## Callback url for hotlist event -ida-websub-hotlist-callback-relative-url=${server.servlet.context-path}/callback/hotlist -ida-websub-hotlist-callback-url=${mosip.api.internal.url}/${ida-websub-hotlist-callback-relative-url} +ida-websub-partner-service-oidc-client-created-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/oidc_client_created +ida-websub-partner-service-oidc-client-updated-callback-relative-url=${server.servlet.context-path}/callback/partnermanagement/oidc_client_updated + #Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. subscriptions-delay-on-startup_millisecs=120000 @@ -275,6 +265,8 @@ ida-topic-pmp-misp-license-updated=MISP_LICENSE_UPDATED ida-topic-pmp-partner-api-key-approved=APIKEY_APPROVED ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE +ida-topic-pmp-oidc-client-created=OIDC_CLIENT_CREATED +ida-topic-pmp-oidc-client-updated=OIDC_CLIENT_UPDATED # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -384,6 +376,8 @@ ida.api.id.vid=mosip.identity.vid ida.api.id.internal=mosip.identity.auth.internal ida.api.id.auth.transactions=mosip.identity.authtransactions.read ida.api.id.otp.internal=mosip.identity.otp.internal +ida.api.id.kycauth=mosip.identity.kycauth +ida.api.id.kycexchange=mosip.identity.kycexchange ## Request versions ida.api.version.auth=1.0 @@ -394,6 +388,8 @@ ida.api.version.vid=1.0 ida.api.version.internal=1.0 ida.api.version.auth.transactions=1.0 ida.api.version.otp.internal=1.0 +ida.api.version.kycauth=1.0 +ida.api.version.kycexchange=1.0 ## Auth response token config ## Preference to turn on/off of authentication response token for a Country @@ -421,7 +417,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 ## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false ## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.authentication.core.exception.IdAuthRetryException,io.mosip.authentication.core.exception.IdAuthenticationBaseException +kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureExceptionf ## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -501,7 +497,7 @@ zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida ## TODO: For testing. Revert in production -#mosip.kernel.keymanager.keystore.keyreference.enable.cache=false +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false ## Admin # Configure N time period threshold for accepting auth/OTP/KYC request for a country @@ -543,7 +539,7 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth -ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl +ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl ## Demo SDK integration mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 @@ -569,14 +565,14 @@ mosip.ida.allowed.domain.uris=${mosip.api.internal.url} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX #The list of attributes in identity that are to be decrypted by default -ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email #------ Un-encrypted Credential Attributes list ----------- #The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). #These attributes will not be decrypted when fetching the records from IDA DB for Authentication/EKYC/OTP requests. #By default all attributes are assumed to be Zero Knowledge encrypted. #Specify the attributes here only if they are not encrypted as per the datashare policy. -ida-zero-knowledge-unencrypted-credential-attributes=preferredLang +ida-zero-knowledge-unencrypted-credential-attributes= #openapi properties to sort tags and operations in Id Authentication springdoc.swagger-ui.tagsSorter=alpha @@ -596,25 +592,32 @@ mosip.role.idauth.postotp=RESIDENT mosip.role.idauth.postauth=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.idauth.postverifyidentity=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT mosip.role.idauth.getauthtransactionsindividualid=RESIDENT -mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST -mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST -mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadotherdomaincertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN -mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencrypt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postdecrypt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_REQUEST +mosip.role.keymanager.postencryptwithpin=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptwithpin=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptdt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptdt=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratemasterkeyobjecttype=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postgeneratecsr=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postuploadcertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postuploadotherdomaincertificate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postgeneratesymmetrickey=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.putrevokekey=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcacertificate=PARTNER_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=PARTNER_ADMIN,PARTNER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postverifycertificatetrust=PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postvalidate=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtsign=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT + +#logging.level.root=DEBUG + +# Secret will be used during kyc token generation. +mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ +kyc.token.expire.time.adjustment.seconds=300 +kyc.exchange.default.lang=eng \ No newline at end of file diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 4b05ca5f01b..33411b5a630 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -32,4 +32,10 @@ authrequest.received-time-allowed.seconds=120 authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture authrequest.biometrics.allowed-segment-time-difference-in-seconds=60 -auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-partnermanager-client,mosip-deployment-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-ida-client,mosip-deployment-client + +# Configuration to enable the enable/disable the retriggering of missing credential in IDA internal service startup. +# If the property is not defined, it is disabled by default. +# Note: if enabled, a setup with more than one pod of ida-internal-service will result in multiple retriggering of credentials by each pods. +# To avoid that issue, first keep one pod applied the with enabled flag, then disable the configuration and then scale it up. +ida-missing-credential-retrigger-enabled=false \ No newline at end of file diff --git a/ida-partner.cer b/ida-partner.cer new file mode 100644 index 00000000000..92ac02f621e --- /dev/null +++ b/ida-partner.cer @@ -0,0 +1,22 @@ +-----BEGIN CERTIFICATE----- +MIIDrDCCApSgAwIBAgIIE5RHue4Ke5UwDQYJKoZIhvcNAQELBQAwdjELMAkGA1UE +BhMCSU4xCzAJBgNVBAgMAktBMRIwEAYDVQQHDAlCQU5HQUxPUkUxDTALBgNVBAoM +BElJVEIxIDAeBgNVBAsMF01PU0lQLVRFQ0gtQ0VOVEVSIChJREEpMRUwEwYDVQQD +DAx3d3cubW9zaXAuaW8wHhcNMjIxMjAyMTM1NDQzWhcNMjQxMjAxMTM1NDQzWjB1 +MQswCQYDVQQGEwJJTjELMAkGA1UECAwCS0ExEjAQBgNVBAcMCUJBTkdBTE9SRTEN +MAsGA1UECgwESUlUQjEgMB4GA1UECwwXTU9TSVAtVEVDSC1DRU5URVIgKElEQSkx +FDASBgNVBAMMC0lEQS1QQVJUTkVSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB +CgKCAQEA0IoecLH6IHKZZixLNZO++hC0XtH0wUeMQ5CoFBRC6jBsyZgEHSqvGYUc +t7r3rcLDWuiufz8VsdlzLCwV/Mw30ZB9sAut7g7wU1ak6pZfkUTLmsOgSq3szW4R +W3u2FlMoAtUdtHClSSymJ2lwCMsKyIwfXxrB1+T0YzRISIUToYZ/atMs+ntJyyyD +aIG1SNZi/L5CM5D0L7QhG19bgrMrgFGuk+z4CNcPBx4NHqkcowRePT3/lp98aLtB +2Rt6FQ/naTQMRK/L19sQTvQgaYClfq9Yeuv1w449NFuJ/MixXdj3A/8OvGM6fgV7 +vHzZR8gSHNK9XpPfkyYUgXq+h2CHzQIDAQABoz8wPTAMBgNVHRMBAf8EAjAAMB0G +A1UdDgQWBBSpx0wEBrp2hw1U8OMWzalKwaMn5DAOBgNVHQ8BAf8EBAMCBSAwDQYJ +KoZIhvcNAQELBQADggEBAFzssGHBrBYV6OKY7PbFVge2B+SxvIRrUxFSnJIqxyGs +mwgvEobzprH2pDir7xmQYNzG/npCw9980sJHxXRaojsby4+zxpECvTDa/00CVa3B +4BQCumaF6aqXaY9/Eabijay9lmkKOc7robNyn0W0H39XciO0ECas+byK0EjXyvzw +tUS2WZPnl1DXZBb6Z3yPZ/1e00dhga/IyDvBATR+++m69P0HHAOWOUKqtUDEfHTj +kopRmdOKv70fgoXOGi0ucnCIqpJF6CiinR7PTsNXZ5IVTDQ3jdpmh9lL4Mi4gmPu +F0SRhkXVig2LLe/OiQx7+0mjtPdKz4oEy1qeah+gCnY= +-----END CERTIFICATE----- \ No newline at end of file diff --git a/idp-default.properties b/idp-default.properties new file mode 100644 index 00000000000..be16464cb3e --- /dev/null +++ b/idp-default.properties @@ -0,0 +1,252 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at https://mozilla.org/MPL/2.0/. + +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url +# keycloak.admin.password +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret +# softhsm.kernel.pin +# softhsm-security-pin +# email.smtp.host +# email.smtp.username +# email.smtp.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt +# mosip.api.internal.url +# mosip.api.public.url + +## IdP MISP License key +mosip.idp.misp.license.key=nsWvISPTJAzxEOlFX31Z7zorsJeaaDUM2BvKsi8pogLpj3A1Sm + +mosip.idp.clientmgmt.create-client=SCOPE_add_oidc_client +mosip.idp.clientmgmt.update-client=SCOPE_update_oidc_client +mosip.idp.systeminfo.get-certificate=SCOPE_get_certificate +mosip.idp.systeminfo.upload-certificate=SCOPE_upload_certificate + +mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop-v3/amr-acr-mapping.json +mosip.idp.auth-ignore-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ + ${server.servlet.path}/authorization/**,${server.servlet.path}/actuator/**,/favicon.ico,\ + /v1/notifier/actuator/prometheus,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ + ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/linked-authorization/** + +#spring.autoconfigure.exclude[0]=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration +spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip +spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs + +mosip.idp.supported-id-regex=\\S* + +#Id and access token validity intervals +mosip.idp.access-token.expire.seconds=7200 +mosip.idp.id-token-expire-seconds=7200 + +## link transaction +mosip.idp.link-code-expire-in-secs=60 +mosip.idp.kafka.linked-session.topic=idp-linked +mosip.idp.kafka.linked-auth-code.topic=idp-consented + +## kafka configurations +spring.kafka.bootstrap-servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} +spring.kafka.consumer.group-id=idp-consumer +spring.kafka.consumer.enable-auto-commit=true +#spring.kafka.listener.concurrency=1 + +## ---------------------------------------- IdP (oauth & openid) config ------------------------------------------- + +## supported scopes +mosip.idp.supported.authorize.scopes={'identity.readonly','vid.manage','vid.readonly','auth.readonly','auth.method.manage','identity.update','auth.history.readonly','notifications.readonly','notifications.manage','credential.manage','auth.history.manage','card.manage'} +mosip.idp.supported.openid.scopes={'profile','email','phone'} +mosip.idp.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone','locale','individual_id'},'email' : {'email'}, 'phone' : {'phone'}} + +## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. +mosip.idp.supported.response.types={'code'} + +## Form of Authorization Grant presented to token endpoint +mosip.idp.supported.grant.types={'authorization_code'} + +## specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User +# page-The Authorization Server SHOULD display the authentication and consent UI consistent with a full User Agent page view. If the display parameter is not specified, this is the default display mode. +# popup-The Authorization Server SHOULD display the authentication and consent UI consistent with a popup User Agent window. The popup User Agent window should be of an appropriate size for a login-focused dialog and should not obscure the entire window that it is popping up over. +# touch-The Authorization Server SHOULD display the authentication and consent UI consistent with a device that leverages a touch interface. +# wap-The Authorization Server SHOULD display the authentication and consent UI consistent with a "feature phone" type display. +mosip.idp.supported.ui.displays={'page','popup','touch','wap'} + +## specifies whether the Authorization Server prompts the End-User for reauthentication and consent +# none-The Authorization Server MUST NOT display any authentication or consent user interface pages. +# An error is returned if an End-User is not already authenticated or the Client does not have pre-configured consent +# for the requested Claims or does not fulfill other conditions for processing the request. +# The error code will typically be login_required, interaction_required, or another code defined in Section 3.1.2.6. +# This can be used as a method to check for existing authentication and/or consent. +# login-The Authorization Server SHOULD prompt the End-User for reauthentication. If it cannot reauthenticate the End-User, \ +# it MUST return an error, typically login_required. +# consent-The Authorization Server SHOULD prompt the End-User for consent before returning information to the Client. +# If it cannot obtain consent, it MUST return an error, typically consent_required. +# select_account-The Authorization Server SHOULD prompt the End-User to select a user account. This enables an End-User +# who has multiple accounts at the Authorization Server to select amongst the multiple accounts that they might have current +# sessions for. If it cannot obtain an account selection choice made by the End-User, it MUST return an error, +# typically account_selection_required. +mosip.idp.supported.ui.prompts={'none','login','consent','select_account'} + +## Type of the client assertion +mosip.idp.supported.client.assertion.types={'urn:ietf:params:oauth:client-assertion-type:jwt-bearer'} + +## Type of the client authentication methods for token endpoint +mosip.idp.supported.client.auth.methods={'private_key_jwt'} + +## ---------------------------------------- Cache configuration ------------------------------------------- +mosip.idp.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented + +#spring.cache.type=redis +#spring.cache.cache-names=${mosip.idp.cache.names} +#spring.redis.host=localhost +#spring.redis.port=6379 +management.health.redis.enabled=false + +spring.cache.type=simple +mosip.idp.cache.key.hash.algorithm=SHA3-256 +mosip.idp.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ + 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200 } +mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'authenticated': 300, 'authcodegenerated': 300, \ + 'userinfo': ${mosip.idp.access-token.expire.seconds}, 'linkcodegenerated' : ${mosip.idp.link-code-expire-in-secs}, \ + 'linked': 300 , 'linkedcode': ${mosip.idp.link-code-expire-in-secs}, 'linkedauth' : 300, 'consented': 300 } + +## ------------------------------------------ Auth Wrapper ------------------------------------------------ + +mosip.idp.authn.wrapper.impl=IdentityAuthenticationService +mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/ida-partner.cer +mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ +mosip.idp.authn.wrapper.ida-domainUri=https://idp.dev2.mosip.net +mosip.idp.authn.wrapper.ida-env=Developer +mosip.idp.authn.ida.otp-channels=email,mobile + +#mosip.idp.authn.wrapper.impl=MockAuthenticationService +mosip.idp.authn.mock.impl.token-expire-sec=1800 +mosip.idp.authn.mock.impl.persona-repo=/home/mosip/mock-auth-data +mosip.idp.authn.mock.impl.policy-repo=/home/mosip/mock-auth-data +mosip.idp.authn.mock.impl.claims-mapping-file=/home/mosip/mock-auth-data/claims_attributes_mapping.json + +## ------------------------------------------ Discovery openid-configuration ------------------------------------------------ +mosip.idp.domain.url=https://${mosip.api.public.host} +mosip.idp.discovery.issuer-id=${mosip.idp.domain.url}${server.servlet.path} + +mosip.idp.discovery.key-values={'issuer': '${mosip.idp.discovery.issuer-id}' ,\ + \ 'authorization_endpoint': '${mosip.idp.domain.url}${server.servlet.path}/authorize' , \ + \ 'token_endpoint': '${mosip.idp.domain.url}${server.servlet.path}/oauth/token' ,\ + \ 'userinfo_endpoint' : '${mosip.idp.domain.url}${server.servlet.path}/oidc/userinfo' , \ + \ 'introspection_endpoint' : '${mosip.idp.domain.url}${server.servlet.path}/oauth/introspect' , \ + \ 'jwks_uri' : '${mosip.idp.domain.url}${server.servlet.path}/oauth/jwks.json' , \ + \ 'scopes_supported' : ${mosip.idp.supported.openid.scopes}, \ + \ 'response_types_supported' : ${mosip.idp.supported.response.types}, \ + \ 'response_modes_supported' : { 'query' }, \ + \ 'token_endpoint_auth_methods_supported' : ${mosip.idp.supported.client.auth.methods}, \ + \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, \ + \ 'userinfo_signing_alg_values_supported' : {'RS256'}, \ + \ 'userinfo_encryption_alg_values_supported' : {'RSAXXXXX'},\ + \ 'userinfo_encryption_enc_values_supported' : {'A128GCM'}, \ + \ 'id_token_signing_alg_values_supported' : {'RS256'}, \ + \ 'claim_types_supported': {'normal'}, \ + \ 'claims_parameter_supported' : true, \ + \ 'display_values_supported' : ${mosip.idp.supported.ui.displays}, \ + \ 'subject_types_supported' : { 'pairwise' }, \ + \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone','locale','individual_id'}, \ + \ 'acr_values_supported' : {},\ + \ 'request_parameter_supported' : false, \ + \ 'ui_locales_supported' : {} } + +##----------------------------------------- Database properties ------------------------------------------- + +mosip.idp.database.hostname=postgres-postgresql.postgres +mosip.idp.database.port=5432 +spring.datasource.url=jdbc:postgresql://${mosip.idp.database.hostname}:${mosip.idp.database.port}/mosip_idp?currentSchema=idp +spring.datasource.username=idpuser +spring.datasource.password=${db.dbuser.password} + +spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect +spring.jpa.show-sql=false +spring.jpa.hibernate.ddl-auto=none +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + +#------------------------------------ Key-manager specific properties -------------------------------------- +#Crypto asymmetric algorithm name +mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING +#Crypto symmetric algorithm name +mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding +#Keygenerator asymmetric algorithm name +mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA +#Keygenerator symmetric algorithm name +mosip.kernel.keygenerator.symmetric-algorithm-name=AES +#Asymmetric algorithm key length +mosip.kernel.keygenerator.asymmetric-key-length=2048 +#Symmetric algorithm key length +mosip.kernel.keygenerator.symmetric-key-length=256 +#Encrypted data and encrypted symmetric key separator +mosip.kernel.data-key-splitter=#KEY_SPLITTER# +#GCM tag length +mosip.kernel.crypto.gcm-tag-length=128 +#Hash algo name +mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 +#Symmtric key length used in hash +mosip.kernel.crypto.hash-symmetric-key-length=256 +#No of iterations in hash +mosip.kernel.crypto.hash-iteration=100000 +#Sign algo name +mosip.kernel.crypto.sign-algorithm-name=RS256 +#Certificate Sign algo name +mosip.kernel.certificate.sign.algorithm=SHA256withRSA + +#mosip.kernel.keymanager.hsm.config-path=local.p12 +#mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +#mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} + +#Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +# For PKCS11 provide Path of config file. +# For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. +# For Offline & JCE property can be left blank, specified value will be ignored. +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +# Passkey of keystore for PKCS11, PKCS12 +# For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} + + +mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io +mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER +mosip.kernel.keymanager.certificate.default.organization=IITB +mosip.kernel.keymanager.certificate.default.location=BANGALORE +mosip.kernel.keymanager.certificate.default.state=KA +mosip.kernel.keymanager.certificate.default.country=IN + +mosip.kernel.keymanager.softhsm.certificate.common-name=www.mosip.io +mosip.kernel.keymanager.softhsm.certificate.organizational-unit=MOSIP +mosip.kernel.keymanager.softhsm.certificate.organization=IITB +mosip.kernel.keymanager.softhsm.certificate.country=IN + +# Application Id for PMS master key. +mosip.kernel.partner.sign.masterkey.application.id=PMS +mosip.kernel.partner.allowed.domains=DEVICE + +mosip.kernel.keymanager-service-validate-url=https://${mosip.hostname}/keymanager/validate +mosip.kernel.keymanager.jwtsign.validate.json=false +mosip.keymanager.dao.enabled=false +crypto.PrependThumbprint.enable=true + +## ---------------------------------------------- UI configs ------------------------------------------------------------------ + +mosip.idp.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ + 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ + 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ + 'send.otp.channels' : 'email' } + + +logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file From bdff183c79a07b24cec237cef769585f2cc93863 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Mon, 12 Dec 2022 14:39:16 +0530 Subject: [PATCH 0940/1358] [DSD-1788] Updated config changes for idp service. --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f664eb039aa..391d1a5c207 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -560,7 +560,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url} +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://idp.qa-1201-b2.mosip.net biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX From ce62859108914adf56d10183a84012353e2034d8 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Mon, 12 Dec 2022 20:27:20 +0530 Subject: [PATCH 0941/1358] Updated properties to enable mock-smtp service --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 92ac5e4956f..2179290188f 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -55,9 +55,9 @@ spring.mail.username=${email.smtp.username} spring.mail.password=${email.smtp.secret} spring.mail.port=587 spring.mail.properties.mail.transport.protocol=smtp -spring.mail.properties.mail.smtp.starttls.required=true -spring.mail.properties.mail.smtp.starttls.enable=true -spring.mail.properties.mail.smtp.auth=true +spring.mail.properties.mail.smtp.starttls.required=false +spring.mail.properties.mail.smtp.starttls.enable=false +spring.mail.properties.mail.smtp.auth=false spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB From 4c5c37f20b9c14c465bb56907f4b439c70d3521d Mon Sep 17 00:00:00 2001 From: pramod444 <pramodbelal8@gmail.com> Date: Tue, 13 Dec 2022 12:57:57 +0530 Subject: [PATCH 0942/1358] [DSD-1803] Updated resident-default.properties from develop2-v3. --- resident-default.properties | 568 +++++++++++++++++++++++++++++++++++- 1 file changed, 562 insertions(+), 6 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 579f6d44daa..3f131e22d27 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -12,8 +12,15 @@ auth.internal.version=1.0 mosip.registration.processor.print.id=mosip.registration.print mosip.registration.processor.application.version=1.0 vid.create.id=mosip.vid.create +mosip.resident.create.vid.version=v1 resident.vid.version=v1 +resident.vid.version.new=1.0 +resident.revokevid.version=v1 +resident.revokevid.version.new=1.0 resident.vid.id=mosip.resident.vid +resident.vid.id.generate=mosip.resident.vid.generate +resident.vid.policy.id=mosip.resident.vid.policy +resident.vid.get.id=mosip.resident.vid.get auth.type.status.id=mosip.identity.authtype.status.update resident.authlock.id=mosip.resident.authlock resident.checkstatus.id=mosip.resident.checkstatus @@ -24,13 +31,41 @@ resident.rid.id=mosip.resident.rid resident.updateuin.id=mosip.resident.updateuin resident.authunlock.id=mosip.resident.authunlock resident.authhistory.id=mosip.resident.authhistory +resident.authLockStatusUpdateV2.id=mosip.resident.auth.lock.unlock +resident.authLockStatusUpdateV2.version=v1 +resident.service.history.id=mosip.service.history.get +resident.service.history.version=1.0 +resident.document.get.id=mosip.resident.document.get +resident.document.get.version=v1 +resident.document.list.id=mosip.resident.document.list +resident.document.list.version=v1 +resident.service.pin.status.id=mosip.resident.pin.status +resident.service.pin.status.version=v1 +resident.service.unpin.status.id=mosip.resident.unpin.status +resident.service.unpin.status.version=v1 +resident.document.delete.id=mosip.resident.document.delete +resident.document.delete.version=v1 +resident.contact.details.update.id=mosip.resident.contact.details.update.id +resident.contact.details.send.otp.id=mosip.resident.contact.details.send.otp.id mosip.resident.service.status.check.id=mosip.registration.external.status mosip.resident.service.status.check.version=1.0 +resident.service.unreadnotificationlist.id=mosip.resident.service.history.unread +resident.service.event.id=mosip.resident.event.status +resident.service.event.version=1.0 +resident.identity.info.id=mosip.resident.identity.info +resident.identity.info.version=1.0 +resident.share.credential.id=mosip.resident.share.credential +resident.share.credential.version=1.0 +mosip.resident.request.response.version=1.0 vid.revoke.id=mosip.vid.update resident.revokevid.id=mosip.resident.vidstatus +mosip.resident.revokevid.id=mosip.resident.vid.revoke PARTNER_REFERENCE_Id=mpartner-default-resident +mosip.resident.transliteration.transliterate.id=mosip.resident.transliteration.transliterate APPLICATION_Id=RESIDENT DECRYPT_API_URL=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt +mosip-prereg-host=${mosip.prereg.host} +mosip-prereg-ui-url=https://${mosip-prereg-host}/pre-registration-ui/ ## Token generation token.request.id=io.mosip.resident @@ -41,6 +76,10 @@ resident.secretKey=${mosip.resident.client.secret} # Below is defined in application properties token.request.issuerUrl=${mosip.keycloak.issuerUrl} + +ida.online-verification-partner-id=mpartner-default-auth + + ## Auth Services KERNELAUTHMANAGER=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard @@ -69,6 +108,20 @@ ENCRYPTURL=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt PACKETSIGNPUBLICKEY=${mosip.kernel.keymanager.url}/v1/keymanager/tpmsigning/publickey MIDSCHEMAURL=${mosip.kernel.syncdata.url}/v1/syncdata/latestidschema +#Master Data api calls +VALID_DOCUMENT_BY_LANGCODE_URL=${MASTER}/validdocuments/{langCode} +LOCATION_HIERARCHY_LEVEL_BY_LANGCODE_URL=${MASTER}/locationHierarchyLevels/{langcode} +IMMEDIATE_CHILDREN_BY_LOCATIONCODE_AND_LANGCODE_URL=${MASTER}/locations/immediatechildren/{locationcode}/{langcode} +LOCATION_INFO_BY_LOCCODE_AND_LANGCODE_URL=${MASTER}/locations/info/{locationcode}/{langcode} +REGISTRATION_CENTER_FOR_LOCATION_CODE_URL=${MASTER}/registrationcenters/{langcode}/{hierarchylevel}/names +REGISTRATION_CENTER_BY_LOCATION_TYPE_AND_SEARCH_TEXT_PAGINATED_URL=${MASTER}/registrationcenters/page/{langcode}/{hierarchylevel}/{name} +COORDINATE_SPECIFIC_REGISTRATION_CENTERS_URL=${MASTER}/getcoordinatespecificregistrationcenters/{langcode}/{longitude}/{latitude}/{proximitydistance} +APPLICANT_VALID_DOCUMENT_URL=${MASTER}/applicanttype/{applicantId}/languages +WORKING_DAYS_BY_REGISTRATION_ID=${MASTER}/workingdays/{registrationCenterID}/{langCode} +LATEST_ID_SCHEMA_URL =${MASTER}/idschema/latest +TEMPLATES_BY_LANGCODE_AND_TEMPLATETYPECODE_URL=${MASTER}/templates/{langcode}/{templatetypecode} +GENDER_TYPE_BY_LANGCODE=${MASTER}/gendertypes/{langcode} + # DMZ service call SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync PACKETRECEIVER=http://regproc-group1.regproc/registrationprocessor/v1/packetreceiver/registrationpackets @@ -79,7 +132,8 @@ AUTHTYPESTATUSUPDATE=${mosip.idrepo.identity.url}/idrepository/v1/identity/autht #Registration status service REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search resident.center.id=10001 -resident.machine.id=10001 +resident.machine.id=10080 + #Credential Req service POLICY_REQ_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies OTP_GEN_URL=${mosip.ida.internal.url}/idauthentication/v1/internal/otp @@ -89,10 +143,15 @@ CREDENTIAL_CANCELREQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credential CREDENTIAL_TYPES_URL=${mosip.idrepo.credential.service.url}/v1/credentialservice/types PARTNER_API_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +RETRIEVE_VIDS=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin/ + +#IdRepo Service calls +IDREPO_IDENTITY_UPDATE_COUNT=${mosip.idrepo.identity.url}/idrepository/v1/identity/update-count + ## Config data resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -auth.types.allowed=demo,bio-Finger,bio-Iris,bio-FACE +auth.types.allowed=otp-email,otp-phone,demo,bio-FINGER,bio-IRIS,bio-FACE resident.identityjson=identity-mapping.json mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ @@ -112,7 +171,7 @@ token.request.secretKey=${mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter #TODO remove reg-client service accunt in production env -auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client +auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client,mosip-resident-service-client-idp #Mapping Identity json to map with the applicant id json registration.processor.identityjson=identity-mapping.json @@ -126,13 +185,510 @@ resident.update-uin.machine-zone-code = MOR mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -auth.server.admin.issuer.uri=${keycloak.internal.url}/auth/realms/ mosip.service-context=/resident/v1 -mosip.service.end-points=/**/* +## The exclusion list of URL patterns that should not be part of authentication and authorization +mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/get-individual-id,/**/req/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registrationcenters/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user + mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production -object.store.base.location=/home/mosip +#------------Request IDs--------------------- +# The request IDs used in Resident REST APIs +mosip.resident.api.id.otp.request=mosip.identity.otp.internal +mosip.resident.api.id.auth=mosip.identity.auth.internal + +#------------Request Versions--------------------- +# The request versions used in Resident REST APIs +mosip.resident.api.version.otp.request=1.0 +mosip.resident.api.version.auth=1.0 + +resident.view.history.serviceType.filters=ALL,AUTHENTICATION_REQUEST,SERVICE_REQUEST,DATA_UPDATE_REQUEST,ID_MANAGEMENT_REQUEST,DATA_SHARE_REQUEST +resident.view.history.status.filters=all,success,in-progress,failed + +#Comma separated values of property keys to be exposed to /proxy/config/ui-properties API + +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id,mosip.captcha.sitekey,mosip.captcha.secretkey + + + +#IdRepo Identity call +IDREPO_IDENTITY_URL=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{id} + +#Pre-reg application service call +#PREREG_TRANSLITERATION_URL=${mosip.prereg.application.url}/preregistration/v1/transliteration/transliterate + +#Database config +mosip.resident.database.hostname=postgres-postgresql.postgres +mosip.resident.database.port=5432 + +javax.persistence.jdbc.driver=org.postgresql.Driver +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.resident.database.hostname}:${mosip.resident.database.port}/mosip_resident +javax.persistence.jdbc.user=residentuser +javax.persistence.jdbc.password=${db.dbuser.password} + +auth.allowed.urls=https://${mosip.resident.host}/,https://${mosip.resident.host}/resident-ui/ + + +# IAM +mosip.iam.module.login_flow.name=authorization_code + +########################################################### +# IdP config +# Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. +################## MOSIP IdP config +#mosip.iam.module.clientID=mosip-resident-service-client-idp +#mosip.iam.module.clientsecret= +#mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp +#mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize +#mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token +#mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo +#mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json +#auth.server.admin.issuer.uri=${mosip.iam.base.url} +#auth.server.admin.issuer.domain.validate=true +#auth.server.admin.oidc.userinfo.url=${mosip.iam.userinfo_endpoint} +#mosip.iam.module.token.endpoint.private-key-jwt.auth.enabled=true +#mosip.iam.module.token.endpoint.private-key-jwt.expiry.seconds=7200 +#mosip.resident.oidc.userinfo.jwt.signed=true +# AuthAdaptor ValdidateTokenHelper: This property will directly apply the certs URL without need for constructing the path from issuer URL. +# This is useful to keep a different certs URL for integrating with MOSIP IdP for offline token validation. +#auth.server.admin.oidc.certs.url=${mosip.iam.certs_endpoint} +################### MOSIP IdP config ends + +################### Mock-keycloak IdP config +mosip.iam.module.clientID=mosip-resident-client +mosip.iam.module.clientsecret=${mosip.resident.client.secret} +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.userinfo_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/userinfo +mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs +mosip.iam.module.token.endpoint.private-key-jwt.auth.enabled=false +mosip.resident.oidc.userinfo.jwt.signed=false +################### Mock-keycloak IdP config ends +########################################################### +mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ +#mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ +#mosip.iam.module.login_flow.scope=cls +mosip.iam.module.login_flow.scope=openid profile identity.readonly identity.update vid.readonly vid.manage auth.readonly auth.method.manage auth.history.readonly auth.history.manage card.manage credential.manage notifications.readonly notifications.manage +mosip.iam.module.login_flow.response_type=code + +mosip.iam.module.admin_realm_id=mosip + +#User-info claim attributes in open-id-connect based login with UIN/VID in MOSIP-IDP +mosip.resident.identity.claim.individual-id=individual_id +mosip.resident.identity.claim.ida-token=ida_token + +#Scopes +mosip.scope.resident.getinputattributevalues=identity.readonly +mosip.scope.resident.patchrevokevid=vid.manage +mosip.scope.resident.postgeneratevid=vid.manage +mosip.scope.resident.getvids=vid.readonly +mosip.scope.resident.getAuthTransactions=auth.readonly +mosip.scope.resident.postAuthTypeUnlock=auth.method.manage +mosip.scope.resident.postAuthTypeStatus=auth.method.manage +mosip.scope.resident.getAuthLockStatus=auth.method.manage +mosip.scope.resident.patchUpdateUin=identity.update +mosip.scope.resident.getServiceAuthHistoryRoles=auth.history.readonly +mosip.scope.resident.postSendPhysicalCard=card.manage +mosip.scope.resident.getUnreadServiceList=notifications.readonly +mosip.scope.resident.getNotificationCount=notifications.readonly +mosip.scope.resident.getNotificationClick=notifications.manage +mosip.scope.resident.getupdatedttimes=notifications.manage +mosip.scope.resident.postRequestDownloadPersonalizedCard=card.manage +mosip.scope.resident.postRequestShareCredWithPartner=credential.manage +mosip.scope.resident.postUnPinStatus=auth.history.manage +mosip.scope.resident.postPinStatus=auth.history.manage +mosip.scope.resident.getDownloadCard=card.manage +mosip.scope.resident.postPersonalizedCard=card.manage +mosip.scope.resident.getOrderRedirect=card.manage + +## Key manager +mosip.resident.keymanager.encrypt-uri=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt +mosip.resident.keymanager.decrypt-uri=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt + +# Object Store configuration +mosip.resident.object.store.account-name=resident +mosip.resident.object.store.bucket-name=resident +mosip.resident.object.store.adapter-name=s3Adapter +object.store.s3.use.account.as.bucketname=true + +# Key manager encryption/decryption configuration +mosip.resident.keymanager.application-name=RESIDENT +mosip.resident.keymanager.reference-id=resident_document +mosip.datashare.application.id=PARTNER +mosip.datashare.reference.id=mparter-default-euin + +# Virus Scanner configuration +mosip.resident.virus-scanner.enabled=true + +# VID Policy url +mosip.resident.vid-policy-url=${config.server.file.storage.uri}mosip-vid-policy.json + + + +# Resident UI Schema JSON file name +resident-ui-schema-file-name-prefix=resident-ui +# IDA Mapping JSON file URI +resident-ui-schema-file-url=${config.server.file.storage.uri}${resident-ui-schema-file-name-prefix} +# Resident UI Schema JSON file property source +resident-ui-schema-file-source-prefix=url:${resident-ui-schema-file-url} + + +# Identity Mapping JSON file name +identity-mapping-file-name=identity-mapping.json +# IDA Mapping JSON file URI +identity-mapping-file-url=${config.server.file.storage.uri}${identity-mapping-file-name} +# Identity Mapping JSON file property source +identity-mapping-file-source=url:${identity-mapping-file-url} + + + +# Identity Data format MVEL file name +resident-data-format-mvel-file-name=identity-data-formatter.mvel +resident-data-format-mvel-file-url=${config.server.file.storage.uri}${resident-data-format-mvel-file-name} +resident-data-format-mvel-file-source=url:${resident-data-format-mvel-file-url} + + + +# WebSub Topic and callback propertis for auth type status event +resident.websub.authtype-status.secret=${resident.websub.authtype.status.secret} +resident.websub.authtype-status.topic=AUTH_TYPE_STATUS_UPDATE_ACK +resident.websub.callback.authtype-status.relative.url=${server.servlet.context-path}/callback/authTypeCallback +resident.websub.callback.authtype-status.url=${mosip.api.internal.url}${resident.websub.callback.authtype-status.relative.url} + +# Callback properties for AuthTransactionStatus +resident.websub.authTransaction-status.secret=${resident.websub.auth.transaction.status.secret} +resident.websub.authTransaction-status.topic=AUTHENTICATION_TRANSACTION_STATUS +resident.websub.callback.authTransaction-status.relative.url=${server.servlet.context-path}/callback/authTransaction +resident.websub.callback.authTransaction-status.url=${mosip.api.internal.url}${resident.websub.callback.authTransaction-status.relative.url} + + + +#--------------------------------TokenId generator---------------------------------------------------# +mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} +mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} +#------------------------------------ + +# Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + +# Partner Service URL +mosip.pms.pmp.partner.rest.uri=${mosip.pms.partnermanager.url}/v1/partnermanager/partners?partnerType=Online_Verification_Partner + +#Mask functions +resident.email.mask.function=maskEmail +resident.phone.mask.function=maskPhone +resident.data.mask.function=convertToMaskDataFormat + +#property for dateOfBirth +resident.dateofbirth.pattern=yyyy/MM/dd + +resident.documents.category=individualBiometrics + +#order card payment +mosip.resident.order.card.payment.enabled=true + +#Check Order Status URL +GET_ORDER_STATUS_URL=${mosip.resident.url}/resident/v1/mock/print-partner/check-order-status + +RESIDENT_REQ_CREDENTIAL_URL=${mosip.resident.url}/resident/v1/req/credential/status/ + +DIGITAL_CARD_STATUS_URL=${mosip.digitalcard.service.url}/v1/digitalcard/ +mosip.resident.service.mock.pdf.url=https://uidai.gov.in/images/New_eAadhaar1.pdf + + +#templates for resident +resident.template.tnc.order-a-physical-card=tnc-order-a-physical-card +resident.template.tnc.share-cred-with-partner=tnc-share-cred-with-partner +resident.template.tnc.update-demo=tnc-update-demo + +# Batch job configuration for credential status update +mosip.resident.update.service.status.job.enabled=true +mosip.resident.update.service.status.job.initial-delay=60000 +mosip.resident.update.service.status.job.interval.millisecs=60000 + +# auth-type unlock duration +resident.auth-type.default.unlock.duration.seconds=100 + +#templates for email subject +resident.template.email.subject.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received-email-subject +resident.template.email.subject.success.cust-and-down-my-card=cust-and-down-my-card-success-email-subject +resident.template.email.subject.failure.cust-and-down-my-card=cust-and-down-my-card-failure-email-subject + +resident.template.email.subject.request-received.order-a-physical-card=order-a-physical-card-request-received-email-subject +resident.template.email.subject.success.order-a-physical-card=order-a-physical-card-success-email-subject +resident.template.email.subject.failure.order-a-physical-card=order-a-physical-card-failure-email-subject + +resident.template.email.subject.request-received.share-cred-with-partner=share-cred-with-partner-request-received-email-subject +resident.template.email.subject.success.share-cred-with-partner=share-cred-with-partner-success-email-subject +resident.template.email.subject.failure.share-cred-with-partner=share-cred-with-partner-failure-email-subject + +resident.template.email.subject.request-received.lock-unlock-auth=lock-unlock-auth-request-received-email-subject +resident.template.email.subject.success.lock-unlock-auth=lock-unlock-auth-success-email-subject +resident.template.email.subject.failure.lock-unlock-auth=lock-unlock-auth-failure-email-subject + +resident.template.email.subject.request-received.update-demo-data=update-demo-data-request-received-email-subject +resident.template.email.subject.success.update-demo-data=update-demo-data-success-email-subject +resident.template.email.subject.failure.update-demo-data=update-demo-data-failure-email-subject + +resident.template.email.subject.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received-email-subject +resident.template.email.subject.success.gen-or-revoke-vid=gen-or-revoke-vid-success-email-subject +resident.template.email.subject.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure-email-subject + +resident.template.email.subject.request-received.get-my-uin-card=get-my-uin-card-request-received-email-subject +resident.template.email.subject.success.get-my-uin-card=get-my-uin-card-success-email-subject +resident.template.email.subject.failure.get-my-uin-card=get-my-uin-card-failure-email-subject + +resident.template.email.subject.request-received.verify-my-phone-email=verify-my-phone-email-request-received-email-subject +resident.template.email.subject.success.verify-my-phone-email=verify-my-phone-email-success-email-subject +resident.template.email.subject.failure.verify-my-phone-email=verify-my-phone-email-failure-email-subject + +#templates for email content +resident.template.email.content.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received-email-content +resident.template.email.content.success.cust-and-down-my-card=cust-and-down-my-card-success-email-content +resident.template.email.content.failure.cust-and-down-my-card=cust-and-down-my-card-failure-email-content + +resident.template.email.content.request-received.order-a-physical-card=order-a-physical-card-request-received-email-content +resident.template.email.content.success.order-a-physical-card=order-a-physical-card-success-email-content +resident.template.email.content.failure.order-a-physical-card=order-a-physical-card-failure-email-content + +resident.template.email.content.request-received.share-cred-with-partner=share-cred-with-partner-request-received-email-content +resident.template.email.content.success.share-cred-with-partner=share-cred-with-partner-success-email-content +resident.template.email.content.failure.share-cred-with-partner=share-cred-with-partner-failure-email-content + +resident.template.email.content.request-received.lock-unlock-auth=lock-unlock-auth-request-received-email-content +resident.template.email.content.success.lock-unlock-auth=lock-unlock-auth-success-email-content +resident.template.email.content.failure.lock-unlock-auth=lock-unlock-auth-failure-email-content + +resident.template.email.content.request-received.update-demo-data=update-demo-data-request-received-email-content +resident.template.email.content.success.update-demo-data=update-demo-data-success-email-content +resident.template.email.content.failure.update-demo-data=update-demo-data-failure-email-content + +resident.template.email.content.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received-email-content +resident.template.email.content.success.gen-or-revoke-vid=gen-or-revoke-vid-success-email-content +resident.template.email.content.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure-email-content + +resident.template.email.content.request-received.get-my-uin-card=get-my-uin-card-request-received-email-content +resident.template.email.content.success.get-my-uin-card=get-my-uin-card-success-email-content +resident.template.email.content.failure.get-my-uin-card=get-my-uin-card-failure-email-content + +resident.template.email.content.request-received.verify-my-phone-email=verify-my-phone-email-request-received-email-content +resident.template.email.content.success.verify-my-phone-email=verify-my-phone-email-success-email-content +resident.template.email.content.failure.verify-my-phone-email=verify-my-phone-email-failure-email-content + +#templates for sms content +resident.template.sms.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received_SMS +resident.template.sms.success.cust-and-down-my-card=cust-and-down-my-card-success_SMS +resident.template.sms.failure.cust-and-down-my-card=cust-and-down-my-card-failure_SMS + +resident.template.sms.request-received.order-a-physical-card=order-a-physical-card-request-received_SMS +resident.template.sms.success.order-a-physical-card=order-a-physical-card-success_SMS +resident.template.sms.failure.order-a-physical-card=order-a-physical-card-failure_SMS + +resident.template.sms.request-received.share-cred-with-partner=share-cred-with-partner-request-received_SMS +resident.template.sms.success.share-cred-with-partner=share-cred-with-partner-success_SMS +resident.template.sms.failure.share-cred-with-partner=share-cred-with-partner-failure_SMS + +resident.template.sms.request-received.lock-unlock-auth=lock-unlock-auth-request-received_SMS +resident.template.sms.success.lock-unlock-auth=lock-unlock-auth-success_SMS +resident.template.sms.failure.lock-unlock-auth=lock-unlock-auth-failure_SMS + +resident.template.sms.request-received.update-demo-data=update-demo-data-request-received_SMS +resident.template.sms.success.update-demo-data=update-demo-data-success_SMS +resident.template.sms.failure.update-demo-data=update-demo-data-failure_SMS + +resident.template.sms.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received_SMS +resident.template.sms.success.gen-or-revoke-vid=gen-or-revoke-vid-success_SMS +resident.template.sms.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure_SMS + +resident.template.sms.request-received.get-my-uin-card=get-my-uin-card-request-received_SMS +resident.template.sms.success.get-my-uin-card=get-my-uin-card-success_SMS +resident.template.sms.failure.get-my-uin-card=get-my-uin-card-failure_SMS + +resident.template.sms.request-received.verify-my-phone-email=verify-my-phone-email-request-received_SMS +resident.template.sms.success.verify-my-phone-email=verify-my-phone-email-success_SMS +resident.template.sms.failure.verify-my-phone-email=verify-my-phone-email-failure_SMS + +#templates for bell-icon notification +resident.template.bell-icon.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received_BELL +resident.template.bell-icon.success.cust-and-down-my-card=cust-and-down-my-card-success_BELL +resident.template.bell-icon.failure.cust-and-down-my-card=cust-and-down-my-card-failure_BELL + +resident.template.bell-icon.request-received.order-a-physical-card=order-a-physical-card-request-received_BELL +resident.template.bell-icon.success.order-a-physical-card=order-a-physical-card-success_BELL +resident.template.bell-icon.failure.order-a-physical-card=order-a-physical-card-failure_BELL + +resident.template.bell-icon.request-received.share-cred-with-partner=share-cred-with-partner-request-received_BELL +resident.template.bell-icon.success.share-cred-with-partner=share-cred-with-partner-success_BELL +resident.template.bell-icon.failure.share-cred-with-partner=share-cred-with-partner-failure_BELL + +resident.template.bell-icon.request-received.lock-unlock-auth=lock-unlock-auth-request-received_BELL +resident.template.bell-icon.success.lock-unlock-auth=lock-unlock-auth-success_BELL +resident.template.bell-icon.failure.lock-unlock-auth=lock-unlock-auth-failure_BELL + +resident.template.bell-icon.request-received.update-demo-data=update-demo-data-request-received_BELL +resident.template.bell-icon.success.update-demo-data=update-demo-data-success_BELL +resident.template.bell-icon.failure.update-demo-data=update-demo-data-failure_BELL + +resident.template.bell-icon.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received_BELL +resident.template.bell-icon.success.gen-or-revoke-vid=gen-or-revoke-vid-success_BELL +resident.template.bell-icon.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure_BELL + +resident.template.bell-icon.request-received.get-my-uin-card=get-my-uin-card-request-received_BELL +resident.template.bell-icon.success.get-my-uin-card=get-my-uin-card-success_BELL +resident.template.bell-icon.failure.get-my-uin-card=get-my-uin-card-failure_BELL + +resident.template.bell-icon.request-received.verify-my-phone-email=verify-my-phone-email-request-received_BELL +resident.template.bell-icon.success.verify-my-phone-email=verify-my-phone-email-success_BELL +resident.template.bell-icon.failure.verify-my-phone-email=verify-my-phone-email-failure_BELL + +#templates for purpose (success) content +resident.template.purpose.success.cust-and-down-my-card=cust-and-down-my-card-positive-purpose +resident.template.purpose.success.order-a-physical-card=order-a-physical-card-positive purpose +resident.template.purpose.success.share-cred-with-partner=share-cred-with-partner-positive-purpose +resident.template.purpose.success.lock-unlock-auth=lock-unlock-auth-positive-purpose +resident.template.purpose.success.update-demo-data=update-demo-data-positive-purpose +resident.template.purpose.success.gen-or-revoke-vid=gen-or-revoke-vid-positive-purpose +resident.template.purpose.success.get-my-uin-card=get-my-uin-card-positive-purpose +resident.template.purpose.success.verify-my-phone-email=verify-my-phone-email-positive-purpose + +#templates for purpose (in-progress/failure) content +resident.template.purpose.failure.cust-and-down-my-card=cust-and-down-my-card-negative-purpose +resident.template.purpose.failure.order-a-physical-card=order-a-physical-card-negative purpose +resident.template.purpose.failure.share-cred-with-partner=share-cred-with-partner-negative-purpose +resident.template.purpose.failure.lock-unlock-auth=lock-unlock-auth-negative-purpose +resident.template.purpose.failure.update-demo-data=update-demo-data-negative-purpose +resident.template.purpose.failure.gen-or-revoke-vid=gen-or-revoke-vid-negative-purpose +resident.template.purpose.failure.get-my-uin-card=get-my-uin-card-negative-purpose +resident.template.purpose.failure.verify-my-phone-email=verify-my-phone-email-negative-purpose + +#templates for summary (success) content +resident.template.summary.success.cust-and-down-my-card=cust-and-down-my-card-success-summary +resident.template.summary.success.order-a-physical-card=order-a-physical-card-success-summary +resident.template.summary.success.share-cred-with-partner=share-cred-with-partner-success-summary +resident.template.summary.success.lock-unlock-auth=lock-unlock-auth-success-summary +resident.template.summary.success.update-demo-data=update-demo-data-success-summary +resident.template.summary.success.gen-or-revoke-vid=gen-or-revoke-vid-success-summary +resident.template.summary.success.get-my-uin-card=get-my-uin-card-success-summary +resident.template.summary.success.verify-my-phone-email=verify-my-phone-email-success-summary + +#templates for acknowledgement +resident.template.ack.share-cred-with-partner=acknowledgement-share-cred-with-partner +resident.template.ack.manage-my-vid=acknowledgement-manage-my-vid +resident.template.ack.order-a-physical-card=acknowledgement-order-a-physical-card +resident.template.ack.download-a-personalized-card=acknowledgement-download-a-personalized-card +resident.template.ack.update-demographic-data=acknowledgement-update-demographic-data +resident.template.ack.verify-email-id-or-phone-number=acknowledgement-verify-email-id-or-phone-number +resident.template.ack.secure-my-id=acknowledgement-secure-my-id +resident.template.email.subject.success.send-otp=receive-otp-mail-subject +resident.template.email.content.success.send-otp=receive-otp-mail-content +resident.template.email.subject.success.validate-otp=validate-otp-mail-subject +resident.template.email.content.success.validate-otp=validate-otp-mail-content +resident.template.sms.success.send-otp=receive-otp +resident.template.sms.success.validate-otp=validate-otp + +#template for list of supporting documents +resident.template.support-docs-list=supporting-docs-list + +mosip.resident.service.history.template.type.code=service-history-type +resident.template.registration.centers.list=registration-centers-list +mosip.resident.grievance.url=https://${mosip.api.public.host}/resident/v1/mock/external/grievance/redressel?name={name}&emailId={email}&phoneNo={phone}&eventId={eventId} + +#template required properties +resident.template.date.pattern=dd-MM-yyyy +resident.template.time.pattern=HH:mm:ss +resident.ui.track-service-request-url=https://${mosip.resident.host}/#/uinservices/trackservicerequest?eid= + +otpChannel.mobile=phone +otpChannel.email=email +otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate + +#to get id_token in cookie and validate it +auth.validate.id-token=true + +mosip.resident.download.uin.card=mosip.resident.download.uin.card +GET_RID_BY_INDIVIDUAL_ID=${mosip.idrepo.identity.url}/idrepository/v1/identity/get-rid/{individualId} + +mosip.resident.access_token.auth_mode.claim-name=acr +mosip.resident.oidc.id_token.ida_token.claim-name=sub +idToken=id_token +mosip.resident.oidc.userinfo.encryption.enabled=false +mosip.resident.oidc.keymanager.reference.id=IDP_USER_INFO +mosip.client.assertion.reference.id= +mosip.include.payload=true +mosip.include.certificate=true +mosip.include.cert.hash=false +mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign +mosip.iam.module.login_flow.claim={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +resident.identity.schematype.with.photo=personalized-card + +#Rectangle coordinates for pfd signataured data +mosip.resident.service.uincard.lowerleftx=73 +mosip.resident.service.uincard.lowerlefty=100 +mosip.resident.service.uincard.upperrightx=300 +mosip.resident.service.uincard.upperrighty=300 +mosip.resident.service.uincard.signature.reason="Digitally Signed" + +PDFSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/pdf/sign + +# get partner details +PARTNER_DETAILS_NEW_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/new + +#pdf signature appid & refId +mosip.resident.sign.pdf.application.id=KERNEL +mosip.resident.sign.pdf.reference.id=SIGN + +mosip.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer + +# request id for download personalized card +mosip.resident.download.personalized.card=mosip.resident.euin +#method name to create password +resident.create.password.method.name=getPassword +#File name for the downloaded personalized card. "eventId" and "timestamp" are configurable. If they are removed from below property then they will be removed from file name also. +mosip.resident.download.registration.centre.file.name.convention=Registration_centers_{timestamp} +mosip.resident.download.supporting.document.file.name.convention=Supporting_documents_{timestamp} +mosip.resident.download.personalized.card.naming.convention=Personalised_card_{eventId}_{timestamp} +mosip.resident.ack.manage_my_vid.name.convention=Ack_Manage_my_VID_{eventId}_{timestamp} +mosip.resident.ack.secure_my_id.name.convention=Ack_secure_my_ID_{eventId}_{timestamp} +mosip.resident.ack.personalised_card.name.convention=Ack_personalised_card_{eventId}_{timestamp} +mosip.resident.ack.update_my_data.name.convention=Ack_update_my_data_{eventId}_{timestamp} +mosip.resident.ack.share_credential.name.convention=Ack_share_credential_{eventId}_{timestamp} +mosip.resident.ack.order_physical_card.name.convention=Ack_order_physical_card_{eventId}_{timestamp} +mosip.resident.ack.name.convention=Ack_{eventId}_{timestamp} +mosip.resident.uin.card.name.convention=UIN_{eventId}_{timestamp} +mosip.resident.vid.card.name.convention=VID_{eventId}_{timestamp} +mosip.resident.download.nearest.registration.centre.file.name.convention=Registration_centers_{timestamp} +mosip.resident.download.service.history.file.name.convention=View_history_{timestamp} + +mosip.resident.request.credential.credentialType=euin +mosip.resident.request.credential.isEncrypt=true +mosip.resident.request.credential.encryption.key=abc123 + +mosip.resident.request.vid.card.id=mosip.resident.request.vid.card +mosip.resident.request.vid.card.version=1.0 +mosip.credential.issuer=mpartner-default-digitalcard + +#claim names +mosip.resident.name.token.claim-name=name +mosip.resident.photo.token.claim-photo=picture +mosip.resident.individual.id.claim.name=individual_id + +mosip.resident.applicant.name.property=applicantName +mosip.resident.photo.attribute.name=photo +mosip.digital.card.credential.type=PDFCard + +mosip.credential.request.service.id=mosip.credential.request.service.id +mosip.credential.request.service.version=1.0 + +## OTP flooding +## Configure Time limit for OTP Flooding scenario (in minutes) +otp.request.flooding.duration=1 +otp.request.flooding.max-count=10 \ No newline at end of file From c02a0456622f900a841d556c1df32359005a9d82 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Tue, 13 Dec 2022 13:48:24 +0530 Subject: [PATCH 0943/1358] [DSD-1788] added missing prop file --- identity-data-formatter.mvel | 46 ++++++++++++++++++++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 identity-data-formatter.mvel diff --git a/identity-data-formatter.mvel b/identity-data-formatter.mvel new file mode 100644 index 00000000000..0c9b0ea7b7d --- /dev/null +++ b/identity-data-formatter.mvel @@ -0,0 +1,46 @@ + +def maskPhone(inputPhoneNum) { + +return inputPhoneNum.replaceAll(".(?=.{4})", "*"); +}; + +def maskEmail(inputEmailAddr) { + +return inputEmailAddr.replaceAll("(^[^@]{3}|(?!^)\\G)[^@]", "$1*"); +}; + +def convertToMaskDataFormat(maskData) { + int maskDataLength = 0; + char ch = '*'; + if (maskData.indexOf("@") > 0){ + maskDataLength = maskData.indexOf("@"); + } else { + maskDataLength = maskData.length(); + } + maskDataLength -= 2; + for (int i = 1; i < maskDataLength; ++i) { + maskData = maskData.substring(0, i) + ch + maskData.substring(i + 1); + } + return maskData; +}; + +def getPassword(attributeValues) { + String pdfPwd = ""; + for(String attribute:attributeValues) { + attribute = getFormattedPasswordAttribute(attribute); + pdfPwd = pdfPwd.concat(attribute.substring(0, 4)); + } + return pdfPwd; +}; + +def getFormattedPasswordAttribute(password){ + if(password.length()==3){ + return password=password.concat(password.substring(0,1)); + }else if(password.length()==2){ + return password=password.repeat(2); + }else if(password.length()==1) { + return password=password.repeat(4); + }else { + return password; + } +}; \ No newline at end of file From d4ad8fe79ea89ebf4278bdef94c46c572142b84f Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Tue, 13 Dec 2022 14:17:35 +0530 Subject: [PATCH 0944/1358] [DSD-1788] added missing prop file --- resident-ui-personalized-card-schema.json | 895 ++++++++++++++++++++ resident-ui-share-credential-schema.json | 895 ++++++++++++++++++++ resident-ui-update-demographics-schema.json | 895 ++++++++++++++++++++ 3 files changed, 2685 insertions(+) create mode 100644 resident-ui-personalized-card-schema.json create mode 100644 resident-ui-share-credential-schema.json create mode 100644 resident-ui-update-demographics-schema.json diff --git a/resident-ui-personalized-card-schema.json b/resident-ui-personalized-card-schema.json new file mode 100644 index 00000000000..5fba7ed748b --- /dev/null +++ b/resident-ui-personalized-card-schema.json @@ -0,0 +1,895 @@ +{ + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "title", + "description": "Title", + "labelName": { + "eng": "Title", + "ara": "عنوان", + "hin": "पशीर्षक", + "kan": "ಶೀರ್ಷಿಕೆ", + "tam": "தலைப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "ara": "الاسم الكامل", + "fra": "Nom complet", + "hin": "पूरा नाम", + "kan": "ಪೂರ್ಣ ಹೆಸರು", + "tam": "முழு பெயர்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "ara": "تاريخ الولادة", + "fra": "Date de naissance", + "hin": "जन्म की तारीख", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "tam": "பிறந்த தேதி" + }, + "controlType": "ageDate", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "ara": "جنس", + "fra": "Le genre", + "hin": "लिंग", + "kan": "ಲಿಂಗ", + "tam": "பாலினம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "nationality", + "description": "nationality", + "labelName": { + "fra": "Nationalité", + "ara": "الجنسية", + "eng": "Nationality", + "hin": "राष्ट्रीयता", + "kan": "ರಾಷ್ಟ್ರೀಯತೆ", + "tam": "தேசியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "flagb", + "description": "Je suis né(e) au maroc", + "labelName": { + "fra": "Je suis né(e) au maroc", + "ara": "ولدت في المغرب", + "eng": "I was born in Morocco", + "hin": "झंडाब", + "kan": "ಧ್ವಜ", + "tam": "கொடி" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "personal_info", + "preview": true + }, + { + "id": "placeOfBirth", + "description": "Lieu de naissance", + "labelName": { + "fra": "Lieu de naissance", + "ara": "مكان الإزدياد", + "eng": "Place of birth", + "hin": "जन्म स्थान", + "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", + "tam": "பிறந்த இடம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "listCountry", + "description": "Pay de naissance", + "labelName": { + "fra": "Pay de naissance", + "ara": "بلد الإزدياد", + "eng": "Birth Pay", + "hin": "सूचीदेश", + "kan": "ಪಟ್ಟಿ ದೇಶ", + "tam": "பட்டியல் நாடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "ऊपरी क्षेत्र", + "kan": "ಪ್ರದೇಶ", + "tam": "பிராந்தியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 1, + "parentLocCode": "MOR", + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "ara": "المحافظة", + "fra": "Province", + "hin": "प्रांत", + "kan": "ಪ್ರಾಂತ್ಯ", + "tam": "மாகாணம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 2, + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "kan": "ನಗರ", + "tam": "நகரம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 3, + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "kan": "ವಲಯ", + "tam": "மண்டலம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "locationHierarchyLevel": 4, + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "ara": "الكود البريدى", + "fra": "code postal", + "hin": "डाक कोड", + "kan": "ಅಂಚೆ ಕೋಡ್", + "tam": "அஞ்சல் குறியீடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "locationHierarchyLevel": 5, + "required": true + }, + { + "id": "residenceStatus", + "description": "Quartier/Résidence/Douar", + "labelName": { + "fra": "Quartier/Résidence/Douar", + "ara": "الحي / السكن / الدوار", + "eng": "Residence Status", + "hin": "निवास स्थान", + "kan": "ನಿವಾಸ", + "tam": "குடியிருப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "addressType", + "description": "Type d'habitat", + "labelName": { + "fra": "Type d'habitat", + "ara": "نوع السكن", + "eng": "Habitat type", + "kan": "ವಿಳಾಸದ ವಿಧ", + "hin": "पता मुद्रलेख", + "tam": "முகவரி வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true, + "tooltip": false + }, + { + "id": "portNo", + "description": "N Porte", + "labelName": { + "fra": "N° Porte", + "ara": "رقم الباب", + "eng": "Port No", + "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पोर्ट नंबर", + "tam": "துறை எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "apptNo", + "description": "N immeuble", + "labelName": { + "fra": "N° immeuble", + "ara": "رقم المبنى", + "eng": "Appt no", + "kan": "appt ಸಂಖ್ಯೆ", + "hin": "उपयुक्त संख्या", + "tam": "appt எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "address_info", + "preview": true + }, + { + "id": "addressLine1", + "description": "Adresse de résidence", + "labelName": { + "fra": "Adresse de résidence", + "ara": "عنوان السكن", + "eng": "Adresse Line1", + "hin": "पता पंक्ति 1", + "kan": "ವಿಳಾಸ 1", + "tam": "முகவரி வரி 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,100}$).*", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "referenceCNIENumber", + "description": "CNIE", + "labelName": { + "fra": "CNIE", + "ara": "رقم البطاقة الوطنية", + "eng": "CNIE", + "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", + "hin": "संदर्भ सीएनआईई नंबर", + "tam": "குறிப்பு CNIE எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "card_info", + "preview": true + }, + { + "id": "resOuPass", + "description": "Je dispose", + "labelName": { + "fra": "Je dispose", + "ara": "أملك", + "eng": "I have", + "kan": "resOuPass", + "hin": "resOuPass", + "tam": "resOuPass" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": false, + "tooltip": false + }, + { + "id": "referenceResidencyNumber", + "description": "Numéro d'identité du résident étranger", + "labelName": { + "fra": "Numéro d'identité du résident étranger", + "ara": "رقم هوية المقيم الأجنبي", + "eng": "Identity number of the foreign resident", + "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", + "hin": "संदर्भ निवास संख्या", + "tam": "குறிப்பு குடியிருப்பு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "[A-Za-z][0-9]{6}[A-Za-z]", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "passportNumber", + "description": "Numéro de passport", + "labelName": { + "fra": "Numéro de Passeport", + "ara": "رقم جواز السفر", + "eng": "Passport number", + "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पासपोर्ट संख्या", + "tam": "கடவுச்சீட்டு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": false + }, + { + "id": "flagidcs", + "description": "Je dispose d'un IDCS", + "labelName": { + "fra": "Je dispose d'un IDCS", + "ara": "أملك المعرف المدني والاجتماعي الرقمي", + "eng": "I have an IDCS", + "kan": "ಧ್ವಜಗಳು", + "hin": "फ्लैगिड्स", + "tam": "கொடிகள்" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "birthCertificateNumber", + "description": "Numéro Acte de Naissance", + "labelName": { + "fra": "Numéro Acte de Naissance", + "ara": "رقم شهادة الميلاد", + "eng": "Birth Certificate Number", + "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", + "hin": "जन्म प्रमाणपत्र संख्या", + "tam": "பிறப்புச் சான்றிதழ் எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true + }, + { + "id": "civilRegistryNumber", + "description": "Numéro Acte de Naissance digitalisé", + "labelName": { + "fra": "Numéro Acte de Naissance digitalisé", + "ara": "رقم شهادة الميلاد الرقمي", + "eng": "Digital Birth Certificate Number", + "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", + "hin": "सिविल रजिस्ट्री नंबर", + "tam": "சிவில் பதிவு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "ara": "هاتف", + "fra": "Téléphone", + "hin": "फ़ोन", + "kan": "ದೂರವಾಣಿ", + "tam": "தொலைபேசி" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[+]*([0-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "ara": "البريد الإلكتروني", + "fra": "Email", + "hin": "ईमेल", + "kan": "ಇಮೇಲ್", + "tam": "மின்னஞ்சல்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "guardianType", + "description": "Type de Tuteur", + "labelName": { + "fra": "Type de Tuteur", + "ara": "نوع الوصي", + "eng": "Tutor type", + "kan": "ರಕ್ಷಕ ವಿಧ", + "hin": "संरक्षक प्रकार", + "tam": "பாதுகாவலர் வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": false + }, + { + "id": "introducerName", + "description": "Prénom du tuteur", + "labelName": { + "eng": "introducer Name", + "ara": "مقدم Name", + "fra": "introducteur Name", + "kan": "ಪರಿಚಯಕಾರ Name", + "hin": "परिचयकर्ता Name", + "tam": "அறிமுகம் Name" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "introducerUIN", + "description": "Identifiant digital civil et social du tuteur", + "labelName": { + "eng": "introducer UIN", + "ara": "مقدم UIN", + "fra": "introducteur UIN", + "kan": "ಪರಿಚಯಕಾರ UIN", + "hin": "परिचयकर्ता UIN", + "tam": "அறிமுகம் UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{10}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceRID", + "description": "Identifiant RNP RID du tuteur", + "labelName": { + "eng": "introducer RID", + "ara": "مقدم RID", + "fra": "introducteur RID", + "kan": "ಪರಿಚಯಕಾರ RID", + "hin": "परिचयकर्ता RID", + "tam": "அறிமுகம் RID" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{29}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceCNIE", + "description": "Numéro d'identité du tuteur", + "labelName": { + "eng": "introducer CNIE", + "ara": "مقدم CNIE", + "fra": "introducteur CNIE", + "kan": "ಪರಿಚಯಕಾರ CNIE", + "hin": "परिचयकर्ता CNIE", + "tam": "அறிமுகம் CNIE" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "relationWithChild", + "description": "Lien de parenté", + "labelName": { + "fra": "Lien de parenté", + "ara": "صلة القرابة", + "eng": "Relationship", + "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", + "hin": "बच्चे के साथ संबंध", + "tam": "குழந்தையுடன் உறவு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "ara": "إثبات العنوان", + "fra": "Preuve d'adresse", + "eng": "Address Proof", + "hin": "निवास प्रमाण पत्र", + "kan": "ವಿಳಾಸ ಪುರಾವೆ", + "tam": "முகவரி சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "eng": "Identity Proof", + "hin": "पहचान प्रमाण", + "kan": "ಗುರುತಿನ ಪುರಾವೆ", + "tam": "அடையாள சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "ara": "إثبات العلاقة", + "fra": "Preuve de relation", + "eng": "Relationship Proof", + "hin": "संबंध प्रमाण", + "kan": "ಸಂಬಂಧ ಪುರಾವೆ", + "tam": "உறவு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": true + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "ara": "دليل DOB", + "fra": "Preuve de date de naissance", + "eng": "DOB Proof", + "hin": "जन्मतिथि प्रमाण", + "kan": "DOB ಪ್ರೂಫ್", + "tam": "DOB ஆதாரம்" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "ara": "إثبات الاستثناء", + "fra": "Preuve d'exception", + "eng": "Exception Proof", + "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", + "tam": "விதிவிலக்கு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} \ No newline at end of file diff --git a/resident-ui-share-credential-schema.json b/resident-ui-share-credential-schema.json new file mode 100644 index 00000000000..5fba7ed748b --- /dev/null +++ b/resident-ui-share-credential-schema.json @@ -0,0 +1,895 @@ +{ + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "title", + "description": "Title", + "labelName": { + "eng": "Title", + "ara": "عنوان", + "hin": "पशीर्षक", + "kan": "ಶೀರ್ಷಿಕೆ", + "tam": "தலைப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "ara": "الاسم الكامل", + "fra": "Nom complet", + "hin": "पूरा नाम", + "kan": "ಪೂರ್ಣ ಹೆಸರು", + "tam": "முழு பெயர்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "ara": "تاريخ الولادة", + "fra": "Date de naissance", + "hin": "जन्म की तारीख", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "tam": "பிறந்த தேதி" + }, + "controlType": "ageDate", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "ara": "جنس", + "fra": "Le genre", + "hin": "लिंग", + "kan": "ಲಿಂಗ", + "tam": "பாலினம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "nationality", + "description": "nationality", + "labelName": { + "fra": "Nationalité", + "ara": "الجنسية", + "eng": "Nationality", + "hin": "राष्ट्रीयता", + "kan": "ರಾಷ್ಟ್ರೀಯತೆ", + "tam": "தேசியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "flagb", + "description": "Je suis né(e) au maroc", + "labelName": { + "fra": "Je suis né(e) au maroc", + "ara": "ولدت في المغرب", + "eng": "I was born in Morocco", + "hin": "झंडाब", + "kan": "ಧ್ವಜ", + "tam": "கொடி" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "personal_info", + "preview": true + }, + { + "id": "placeOfBirth", + "description": "Lieu de naissance", + "labelName": { + "fra": "Lieu de naissance", + "ara": "مكان الإزدياد", + "eng": "Place of birth", + "hin": "जन्म स्थान", + "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", + "tam": "பிறந்த இடம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "listCountry", + "description": "Pay de naissance", + "labelName": { + "fra": "Pay de naissance", + "ara": "بلد الإزدياد", + "eng": "Birth Pay", + "hin": "सूचीदेश", + "kan": "ಪಟ್ಟಿ ದೇಶ", + "tam": "பட்டியல் நாடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "ऊपरी क्षेत्र", + "kan": "ಪ್ರದೇಶ", + "tam": "பிராந்தியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 1, + "parentLocCode": "MOR", + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "ara": "المحافظة", + "fra": "Province", + "hin": "प्रांत", + "kan": "ಪ್ರಾಂತ್ಯ", + "tam": "மாகாணம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 2, + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "kan": "ನಗರ", + "tam": "நகரம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 3, + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "kan": "ವಲಯ", + "tam": "மண்டலம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "locationHierarchyLevel": 4, + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "ara": "الكود البريدى", + "fra": "code postal", + "hin": "डाक कोड", + "kan": "ಅಂಚೆ ಕೋಡ್", + "tam": "அஞ்சல் குறியீடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "locationHierarchyLevel": 5, + "required": true + }, + { + "id": "residenceStatus", + "description": "Quartier/Résidence/Douar", + "labelName": { + "fra": "Quartier/Résidence/Douar", + "ara": "الحي / السكن / الدوار", + "eng": "Residence Status", + "hin": "निवास स्थान", + "kan": "ನಿವಾಸ", + "tam": "குடியிருப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "addressType", + "description": "Type d'habitat", + "labelName": { + "fra": "Type d'habitat", + "ara": "نوع السكن", + "eng": "Habitat type", + "kan": "ವಿಳಾಸದ ವಿಧ", + "hin": "पता मुद्रलेख", + "tam": "முகவரி வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true, + "tooltip": false + }, + { + "id": "portNo", + "description": "N Porte", + "labelName": { + "fra": "N° Porte", + "ara": "رقم الباب", + "eng": "Port No", + "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पोर्ट नंबर", + "tam": "துறை எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "apptNo", + "description": "N immeuble", + "labelName": { + "fra": "N° immeuble", + "ara": "رقم المبنى", + "eng": "Appt no", + "kan": "appt ಸಂಖ್ಯೆ", + "hin": "उपयुक्त संख्या", + "tam": "appt எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "address_info", + "preview": true + }, + { + "id": "addressLine1", + "description": "Adresse de résidence", + "labelName": { + "fra": "Adresse de résidence", + "ara": "عنوان السكن", + "eng": "Adresse Line1", + "hin": "पता पंक्ति 1", + "kan": "ವಿಳಾಸ 1", + "tam": "முகவரி வரி 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,100}$).*", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "referenceCNIENumber", + "description": "CNIE", + "labelName": { + "fra": "CNIE", + "ara": "رقم البطاقة الوطنية", + "eng": "CNIE", + "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", + "hin": "संदर्भ सीएनआईई नंबर", + "tam": "குறிப்பு CNIE எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "card_info", + "preview": true + }, + { + "id": "resOuPass", + "description": "Je dispose", + "labelName": { + "fra": "Je dispose", + "ara": "أملك", + "eng": "I have", + "kan": "resOuPass", + "hin": "resOuPass", + "tam": "resOuPass" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": false, + "tooltip": false + }, + { + "id": "referenceResidencyNumber", + "description": "Numéro d'identité du résident étranger", + "labelName": { + "fra": "Numéro d'identité du résident étranger", + "ara": "رقم هوية المقيم الأجنبي", + "eng": "Identity number of the foreign resident", + "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", + "hin": "संदर्भ निवास संख्या", + "tam": "குறிப்பு குடியிருப்பு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "[A-Za-z][0-9]{6}[A-Za-z]", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "passportNumber", + "description": "Numéro de passport", + "labelName": { + "fra": "Numéro de Passeport", + "ara": "رقم جواز السفر", + "eng": "Passport number", + "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पासपोर्ट संख्या", + "tam": "கடவுச்சீட்டு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": false + }, + { + "id": "flagidcs", + "description": "Je dispose d'un IDCS", + "labelName": { + "fra": "Je dispose d'un IDCS", + "ara": "أملك المعرف المدني والاجتماعي الرقمي", + "eng": "I have an IDCS", + "kan": "ಧ್ವಜಗಳು", + "hin": "फ्लैगिड्स", + "tam": "கொடிகள்" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "birthCertificateNumber", + "description": "Numéro Acte de Naissance", + "labelName": { + "fra": "Numéro Acte de Naissance", + "ara": "رقم شهادة الميلاد", + "eng": "Birth Certificate Number", + "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", + "hin": "जन्म प्रमाणपत्र संख्या", + "tam": "பிறப்புச் சான்றிதழ் எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true + }, + { + "id": "civilRegistryNumber", + "description": "Numéro Acte de Naissance digitalisé", + "labelName": { + "fra": "Numéro Acte de Naissance digitalisé", + "ara": "رقم شهادة الميلاد الرقمي", + "eng": "Digital Birth Certificate Number", + "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", + "hin": "सिविल रजिस्ट्री नंबर", + "tam": "சிவில் பதிவு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "ara": "هاتف", + "fra": "Téléphone", + "hin": "फ़ोन", + "kan": "ದೂರವಾಣಿ", + "tam": "தொலைபேசி" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[+]*([0-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "ara": "البريد الإلكتروني", + "fra": "Email", + "hin": "ईमेल", + "kan": "ಇಮೇಲ್", + "tam": "மின்னஞ்சல்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "guardianType", + "description": "Type de Tuteur", + "labelName": { + "fra": "Type de Tuteur", + "ara": "نوع الوصي", + "eng": "Tutor type", + "kan": "ರಕ್ಷಕ ವಿಧ", + "hin": "संरक्षक प्रकार", + "tam": "பாதுகாவலர் வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": false + }, + { + "id": "introducerName", + "description": "Prénom du tuteur", + "labelName": { + "eng": "introducer Name", + "ara": "مقدم Name", + "fra": "introducteur Name", + "kan": "ಪರಿಚಯಕಾರ Name", + "hin": "परिचयकर्ता Name", + "tam": "அறிமுகம் Name" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "introducerUIN", + "description": "Identifiant digital civil et social du tuteur", + "labelName": { + "eng": "introducer UIN", + "ara": "مقدم UIN", + "fra": "introducteur UIN", + "kan": "ಪರಿಚಯಕಾರ UIN", + "hin": "परिचयकर्ता UIN", + "tam": "அறிமுகம் UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{10}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceRID", + "description": "Identifiant RNP RID du tuteur", + "labelName": { + "eng": "introducer RID", + "ara": "مقدم RID", + "fra": "introducteur RID", + "kan": "ಪರಿಚಯಕಾರ RID", + "hin": "परिचयकर्ता RID", + "tam": "அறிமுகம் RID" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{29}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceCNIE", + "description": "Numéro d'identité du tuteur", + "labelName": { + "eng": "introducer CNIE", + "ara": "مقدم CNIE", + "fra": "introducteur CNIE", + "kan": "ಪರಿಚಯಕಾರ CNIE", + "hin": "परिचयकर्ता CNIE", + "tam": "அறிமுகம் CNIE" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "relationWithChild", + "description": "Lien de parenté", + "labelName": { + "fra": "Lien de parenté", + "ara": "صلة القرابة", + "eng": "Relationship", + "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", + "hin": "बच्चे के साथ संबंध", + "tam": "குழந்தையுடன் உறவு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "ara": "إثبات العنوان", + "fra": "Preuve d'adresse", + "eng": "Address Proof", + "hin": "निवास प्रमाण पत्र", + "kan": "ವಿಳಾಸ ಪುರಾವೆ", + "tam": "முகவரி சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "eng": "Identity Proof", + "hin": "पहचान प्रमाण", + "kan": "ಗುರುತಿನ ಪುರಾವೆ", + "tam": "அடையாள சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "ara": "إثبات العلاقة", + "fra": "Preuve de relation", + "eng": "Relationship Proof", + "hin": "संबंध प्रमाण", + "kan": "ಸಂಬಂಧ ಪುರಾವೆ", + "tam": "உறவு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": true + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "ara": "دليل DOB", + "fra": "Preuve de date de naissance", + "eng": "DOB Proof", + "hin": "जन्मतिथि प्रमाण", + "kan": "DOB ಪ್ರೂಫ್", + "tam": "DOB ஆதாரம்" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "ara": "إثبات الاستثناء", + "fra": "Preuve d'exception", + "eng": "Exception Proof", + "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", + "tam": "விதிவிலக்கு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} \ No newline at end of file diff --git a/resident-ui-update-demographics-schema.json b/resident-ui-update-demographics-schema.json new file mode 100644 index 00000000000..5fba7ed748b --- /dev/null +++ b/resident-ui-update-demographics-schema.json @@ -0,0 +1,895 @@ +{ + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "title", + "description": "Title", + "labelName": { + "eng": "Title", + "ara": "عنوان", + "hin": "पशीर्षक", + "kan": "ಶೀರ್ಷಿಕೆ", + "tam": "தலைப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "ara": "الاسم الكامل", + "fra": "Nom complet", + "hin": "पूरा नाम", + "kan": "ಪೂರ್ಣ ಹೆಸರು", + "tam": "முழு பெயர்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "ara": "تاريخ الولادة", + "fra": "Date de naissance", + "hin": "जन्म की तारीख", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "tam": "பிறந்த தேதி" + }, + "controlType": "ageDate", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "ara": "جنس", + "fra": "Le genre", + "hin": "लिंग", + "kan": "ಲಿಂಗ", + "tam": "பாலினம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "nationality", + "description": "nationality", + "labelName": { + "fra": "Nationalité", + "ara": "الجنسية", + "eng": "Nationality", + "hin": "राष्ट्रीयता", + "kan": "ರಾಷ್ಟ್ರೀಯತೆ", + "tam": "தேசியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "flagb", + "description": "Je suis né(e) au maroc", + "labelName": { + "fra": "Je suis né(e) au maroc", + "ara": "ولدت في المغرب", + "eng": "I was born in Morocco", + "hin": "झंडाब", + "kan": "ಧ್ವಜ", + "tam": "கொடி" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "personal_info", + "preview": true + }, + { + "id": "placeOfBirth", + "description": "Lieu de naissance", + "labelName": { + "fra": "Lieu de naissance", + "ara": "مكان الإزدياد", + "eng": "Place of birth", + "hin": "जन्म स्थान", + "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", + "tam": "பிறந்த இடம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "listCountry", + "description": "Pay de naissance", + "labelName": { + "fra": "Pay de naissance", + "ara": "بلد الإزدياد", + "eng": "Birth Pay", + "hin": "सूचीदेश", + "kan": "ಪಟ್ಟಿ ದೇಶ", + "tam": "பட்டியல் நாடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "ऊपरी क्षेत्र", + "kan": "ಪ್ರದೇಶ", + "tam": "பிராந்தியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 1, + "parentLocCode": "MOR", + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "ara": "المحافظة", + "fra": "Province", + "hin": "प्रांत", + "kan": "ಪ್ರಾಂತ್ಯ", + "tam": "மாகாணம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 2, + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "kan": "ನಗರ", + "tam": "நகரம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 3, + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "kan": "ವಲಯ", + "tam": "மண்டலம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "locationHierarchyLevel": 4, + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "ara": "الكود البريدى", + "fra": "code postal", + "hin": "डाक कोड", + "kan": "ಅಂಚೆ ಕೋಡ್", + "tam": "அஞ்சல் குறியீடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "locationHierarchyLevel": 5, + "required": true + }, + { + "id": "residenceStatus", + "description": "Quartier/Résidence/Douar", + "labelName": { + "fra": "Quartier/Résidence/Douar", + "ara": "الحي / السكن / الدوار", + "eng": "Residence Status", + "hin": "निवास स्थान", + "kan": "ನಿವಾಸ", + "tam": "குடியிருப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "addressType", + "description": "Type d'habitat", + "labelName": { + "fra": "Type d'habitat", + "ara": "نوع السكن", + "eng": "Habitat type", + "kan": "ವಿಳಾಸದ ವಿಧ", + "hin": "पता मुद्रलेख", + "tam": "முகவரி வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true, + "tooltip": false + }, + { + "id": "portNo", + "description": "N Porte", + "labelName": { + "fra": "N° Porte", + "ara": "رقم الباب", + "eng": "Port No", + "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पोर्ट नंबर", + "tam": "துறை எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "apptNo", + "description": "N immeuble", + "labelName": { + "fra": "N° immeuble", + "ara": "رقم المبنى", + "eng": "Appt no", + "kan": "appt ಸಂಖ್ಯೆ", + "hin": "उपयुक्त संख्या", + "tam": "appt எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "address_info", + "preview": true + }, + { + "id": "addressLine1", + "description": "Adresse de résidence", + "labelName": { + "fra": "Adresse de résidence", + "ara": "عنوان السكن", + "eng": "Adresse Line1", + "hin": "पता पंक्ति 1", + "kan": "ವಿಳಾಸ 1", + "tam": "முகவரி வரி 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,100}$).*", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "referenceCNIENumber", + "description": "CNIE", + "labelName": { + "fra": "CNIE", + "ara": "رقم البطاقة الوطنية", + "eng": "CNIE", + "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", + "hin": "संदर्भ सीएनआईई नंबर", + "tam": "குறிப்பு CNIE எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "card_info", + "preview": true + }, + { + "id": "resOuPass", + "description": "Je dispose", + "labelName": { + "fra": "Je dispose", + "ara": "أملك", + "eng": "I have", + "kan": "resOuPass", + "hin": "resOuPass", + "tam": "resOuPass" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": false, + "tooltip": false + }, + { + "id": "referenceResidencyNumber", + "description": "Numéro d'identité du résident étranger", + "labelName": { + "fra": "Numéro d'identité du résident étranger", + "ara": "رقم هوية المقيم الأجنبي", + "eng": "Identity number of the foreign resident", + "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", + "hin": "संदर्भ निवास संख्या", + "tam": "குறிப்பு குடியிருப்பு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "[A-Za-z][0-9]{6}[A-Za-z]", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "passportNumber", + "description": "Numéro de passport", + "labelName": { + "fra": "Numéro de Passeport", + "ara": "رقم جواز السفر", + "eng": "Passport number", + "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पासपोर्ट संख्या", + "tam": "கடவுச்சீட்டு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": false + }, + { + "id": "flagidcs", + "description": "Je dispose d'un IDCS", + "labelName": { + "fra": "Je dispose d'un IDCS", + "ara": "أملك المعرف المدني والاجتماعي الرقمي", + "eng": "I have an IDCS", + "kan": "ಧ್ವಜಗಳು", + "hin": "फ्लैगिड्स", + "tam": "கொடிகள்" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "birthCertificateNumber", + "description": "Numéro Acte de Naissance", + "labelName": { + "fra": "Numéro Acte de Naissance", + "ara": "رقم شهادة الميلاد", + "eng": "Birth Certificate Number", + "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", + "hin": "जन्म प्रमाणपत्र संख्या", + "tam": "பிறப்புச் சான்றிதழ் எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true + }, + { + "id": "civilRegistryNumber", + "description": "Numéro Acte de Naissance digitalisé", + "labelName": { + "fra": "Numéro Acte de Naissance digitalisé", + "ara": "رقم شهادة الميلاد الرقمي", + "eng": "Digital Birth Certificate Number", + "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", + "hin": "सिविल रजिस्ट्री नंबर", + "tam": "சிவில் பதிவு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "ara": "هاتف", + "fra": "Téléphone", + "hin": "फ़ोन", + "kan": "ದೂರವಾಣಿ", + "tam": "தொலைபேசி" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[+]*([0-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "ara": "البريد الإلكتروني", + "fra": "Email", + "hin": "ईमेल", + "kan": "ಇಮೇಲ್", + "tam": "மின்னஞ்சல்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "guardianType", + "description": "Type de Tuteur", + "labelName": { + "fra": "Type de Tuteur", + "ara": "نوع الوصي", + "eng": "Tutor type", + "kan": "ರಕ್ಷಕ ವಿಧ", + "hin": "संरक्षक प्रकार", + "tam": "பாதுகாவலர் வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": false + }, + { + "id": "introducerName", + "description": "Prénom du tuteur", + "labelName": { + "eng": "introducer Name", + "ara": "مقدم Name", + "fra": "introducteur Name", + "kan": "ಪರಿಚಯಕಾರ Name", + "hin": "परिचयकर्ता Name", + "tam": "அறிமுகம் Name" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "introducerUIN", + "description": "Identifiant digital civil et social du tuteur", + "labelName": { + "eng": "introducer UIN", + "ara": "مقدم UIN", + "fra": "introducteur UIN", + "kan": "ಪರಿಚಯಕಾರ UIN", + "hin": "परिचयकर्ता UIN", + "tam": "அறிமுகம் UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{10}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceRID", + "description": "Identifiant RNP RID du tuteur", + "labelName": { + "eng": "introducer RID", + "ara": "مقدم RID", + "fra": "introducteur RID", + "kan": "ಪರಿಚಯಕಾರ RID", + "hin": "परिचयकर्ता RID", + "tam": "அறிமுகம் RID" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{29}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceCNIE", + "description": "Numéro d'identité du tuteur", + "labelName": { + "eng": "introducer CNIE", + "ara": "مقدم CNIE", + "fra": "introducteur CNIE", + "kan": "ಪರಿಚಯಕಾರ CNIE", + "hin": "परिचयकर्ता CNIE", + "tam": "அறிமுகம் CNIE" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "relationWithChild", + "description": "Lien de parenté", + "labelName": { + "fra": "Lien de parenté", + "ara": "صلة القرابة", + "eng": "Relationship", + "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", + "hin": "बच्चे के साथ संबंध", + "tam": "குழந்தையுடன் உறவு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "ara": "إثبات العنوان", + "fra": "Preuve d'adresse", + "eng": "Address Proof", + "hin": "निवास प्रमाण पत्र", + "kan": "ವಿಳಾಸ ಪುರಾವೆ", + "tam": "முகவரி சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "eng": "Identity Proof", + "hin": "पहचान प्रमाण", + "kan": "ಗುರುತಿನ ಪುರಾವೆ", + "tam": "அடையாள சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "ara": "إثبات العلاقة", + "fra": "Preuve de relation", + "eng": "Relationship Proof", + "hin": "संबंध प्रमाण", + "kan": "ಸಂಬಂಧ ಪುರಾವೆ", + "tam": "உறவு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": true + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "ara": "دليل DOB", + "fra": "Preuve de date de naissance", + "eng": "DOB Proof", + "hin": "जन्मतिथि प्रमाण", + "kan": "DOB ಪ್ರೂಫ್", + "tam": "DOB ஆதாரம்" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "ara": "إثبات الاستثناء", + "fra": "Preuve d'exception", + "eng": "Exception Proof", + "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", + "tam": "விதிவிலக்கு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} \ No newline at end of file From 258ec9ade473cfdb1d48d302c165c00b500a9bac Mon Sep 17 00:00:00 2001 From: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> Date: Tue, 13 Dec 2022 14:35:34 +0530 Subject: [PATCH 0945/1358] Updated misp license key for this env. --- idp-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/idp-default.properties b/idp-default.properties index be16464cb3e..dc748453ba3 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,7 +26,7 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=nsWvISPTJAzxEOlFX31Z7zorsJeaaDUM2BvKsi8pogLpj3A1Sm +mosip.idp.misp.license.key=hVq9XOvlRokmkG23JL7wAJhEGM5ZzgO7Hnx3omJ1ghMap78nYh mosip.idp.clientmgmt.create-client=SCOPE_add_oidc_client mosip.idp.clientmgmt.update-client=SCOPE_update_oidc_client @@ -249,4 +249,4 @@ mosip.idp.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, 'send.otp.channels' : 'email' } -logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file +logging.level.org.springframework.web.client.RestTemplate=DEBUG From 9414ab5aec2e2550f3068054738aae8cb4e25236 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 13 Dec 2022 16:00:51 +0530 Subject: [PATCH 0946/1358] Update ida-partner.cer --- ida-partner.cer | 32 ++++++++++++++++---------------- 1 file changed, 16 insertions(+), 16 deletions(-) diff --git a/ida-partner.cer b/ida-partner.cer index 92ac02f621e..51ced6ec5b9 100644 --- a/ida-partner.cer +++ b/ida-partner.cer @@ -1,22 +1,22 @@ -----BEGIN CERTIFICATE----- -MIIDrDCCApSgAwIBAgIIE5RHue4Ke5UwDQYJKoZIhvcNAQELBQAwdjELMAkGA1UE +MIIDrDCCApSgAwIBAgIIkcTLqBQn22gwDQYJKoZIhvcNAQELBQAwdjELMAkGA1UE BhMCSU4xCzAJBgNVBAgMAktBMRIwEAYDVQQHDAlCQU5HQUxPUkUxDTALBgNVBAoM BElJVEIxIDAeBgNVBAsMF01PU0lQLVRFQ0gtQ0VOVEVSIChJREEpMRUwEwYDVQQD -DAx3d3cubW9zaXAuaW8wHhcNMjIxMjAyMTM1NDQzWhcNMjQxMjAxMTM1NDQzWjB1 +DAx3d3cubW9zaXAuaW8wHhcNMjIxMjA4MTMzNjM1WhcNMjQxMjA3MTMzNjM1WjB1 MQswCQYDVQQGEwJJTjELMAkGA1UECAwCS0ExEjAQBgNVBAcMCUJBTkdBTE9SRTEN MAsGA1UECgwESUlUQjEgMB4GA1UECwwXTU9TSVAtVEVDSC1DRU5URVIgKElEQSkx FDASBgNVBAMMC0lEQS1QQVJUTkVSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB -CgKCAQEA0IoecLH6IHKZZixLNZO++hC0XtH0wUeMQ5CoFBRC6jBsyZgEHSqvGYUc -t7r3rcLDWuiufz8VsdlzLCwV/Mw30ZB9sAut7g7wU1ak6pZfkUTLmsOgSq3szW4R -W3u2FlMoAtUdtHClSSymJ2lwCMsKyIwfXxrB1+T0YzRISIUToYZ/atMs+ntJyyyD -aIG1SNZi/L5CM5D0L7QhG19bgrMrgFGuk+z4CNcPBx4NHqkcowRePT3/lp98aLtB -2Rt6FQ/naTQMRK/L19sQTvQgaYClfq9Yeuv1w449NFuJ/MixXdj3A/8OvGM6fgV7 -vHzZR8gSHNK9XpPfkyYUgXq+h2CHzQIDAQABoz8wPTAMBgNVHRMBAf8EAjAAMB0G -A1UdDgQWBBSpx0wEBrp2hw1U8OMWzalKwaMn5DAOBgNVHQ8BAf8EBAMCBSAwDQYJ -KoZIhvcNAQELBQADggEBAFzssGHBrBYV6OKY7PbFVge2B+SxvIRrUxFSnJIqxyGs -mwgvEobzprH2pDir7xmQYNzG/npCw9980sJHxXRaojsby4+zxpECvTDa/00CVa3B -4BQCumaF6aqXaY9/Eabijay9lmkKOc7robNyn0W0H39XciO0ECas+byK0EjXyvzw -tUS2WZPnl1DXZBb6Z3yPZ/1e00dhga/IyDvBATR+++m69P0HHAOWOUKqtUDEfHTj -kopRmdOKv70fgoXOGi0ucnCIqpJF6CiinR7PTsNXZ5IVTDQ3jdpmh9lL4Mi4gmPu -F0SRhkXVig2LLe/OiQx7+0mjtPdKz4oEy1qeah+gCnY= ------END CERTIFICATE----- \ No newline at end of file +CgKCAQEAv/SoHX9OB0hR3CGLj/1yaTk5mV48Fi/Wx1nd2gAMe76wre3X7Dz/KyM4 +rCEWryEnIGM1Zj3vGsb1OTxOOQk/zfmVOMwy0uJ3RPM8yKOQu+cJLEUSWho8ILTO +3HU95XMBJVbwFce1H7Ml2GjinF8tV0REVkEqC1FbB8yNdg+qvmrczx3X0svikAz7 +LB8eWIrWeiDiPlfgfCPMxCx5DaUWgM3/6jtUfax0Hye6P0deOVqWOQznxmdNLdT8 +SyInL3pp0fWdok8yltm80/QK8WQAnjozXDUJh/PegllKZ/9Kt85yp0LIMBie+WqO +cbooTFtk3d10xlfQ7tzklr667Xw9HwIDAQABoz8wPTAMBgNVHRMBAf8EAjAAMB0G +A1UdDgQWBBRU99+vXO8/C22alMyvmL78AuavkTAOBgNVHQ8BAf8EBAMCBSAwDQYJ +KoZIhvcNAQELBQADggEBAJAREKQTnU5nplLnLj8/f0vACxHnEwl/0Qw/APwyocz+ +rhkBloDlrw8/gVJ/1uXuBZz05kb2fBtdmlMpCty30EjWVcd5p7Wkew2TLR6xjeXG +TElnS9TOqTcHEaGGw9l96Gyv4PDYUkKlikqeiU4qLcozakM8wbGT7RYXFSN63jJs +fE3/ImGEgXb6d1WX4+W1sVz0Nhj4Pt7f/pSJ2WKSnP7G/5TMKT0kW/dG4RAvaBmO +V6QikZe9LWrSlapedXnjx74AJoEXD972LWcbxlutrVfOFnj94KWJG5cJ3eAV0Fi6 +JE4RZGnecRX7yZa6d0cziAF0eF8M/ibvRKagmybkckM= +-----END CERTIFICATE----- From 12521eb0cb95ce05aa45e1a740a6b7fae1cb0642 Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Tue, 13 Dec 2022 19:38:50 +0530 Subject: [PATCH 0947/1358] Update idp-default.properties --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index dc748453ba3..7ebbecdfd1d 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -122,7 +122,7 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/ida-partner.cer +mosip.idp.authn.ida.cert-url=${spring.config.url}/*/${spring.config.active.profile}/${spring.config.label}/ida-partner.cer mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ From f7a378b2255e05c400c3a6c5b84541a17e868ba9 Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Tue, 13 Dec 2022 19:47:59 +0530 Subject: [PATCH 0948/1358] Update idp-default.properties --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 7ebbecdfd1d..84d78329dc3 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -126,7 +126,7 @@ mosip.idp.authn.ida.cert-url=${spring.config.url}/*/${spring.config.active.profi mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ -mosip.idp.authn.wrapper.ida-domainUri=https://idp.dev2.mosip.net +mosip.idp.authn.wrapper.ida-domainUri=https://${mosip.idp.host} mosip.idp.authn.wrapper.ida-env=Developer mosip.idp.authn.ida.otp-channels=email,mobile From 8a2ef4433abb6b8156888cdd74b14dfc9541d26a Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 14 Dec 2022 10:41:34 +0530 Subject: [PATCH 0949/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 2179290188f..9136c7f4ed7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -53,7 +53,7 @@ mosip.kernel.notification.email.from=do-not-reply@mosip.io spring.mail.host=${email.smtp.host} spring.mail.username=${email.smtp.username} spring.mail.password=${email.smtp.secret} -spring.mail.port=587 +spring.mail.port=${email.smtp.port} spring.mail.properties.mail.transport.protocol=smtp spring.mail.properties.mail.smtp.starttls.required=false spring.mail.properties.mail.smtp.starttls.enable=false From d7af63f0bbe5bc31c7b450eaf93ec217c4dfbb62 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 14 Dec 2022 18:12:02 +0530 Subject: [PATCH 0950/1358] enabled websub traceLogAdvancedConfig --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 3d4a1aab78c..24a6f526b17 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -91,4 +91,4 @@ console = true # Default is false [ballerina.http.traceLogAdvancedConfig] # Enable printing trace logs in console -console = false # Default is false \ No newline at end of file +console = true # Default is false \ No newline at end of file From 988f0d2fe7d404e1e688b3750576e50419ca7ae6 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Wed, 14 Dec 2022 19:40:55 +0530 Subject: [PATCH 0951/1358] Added Resident role to get VIDs. --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index ba9965e36a0..ca8efa6d295 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -413,7 +413,7 @@ mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR,ID_REPO mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.vid.postvid=RESIDENT,REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.vid.getvid=REGISTRATION_PROCESSOR,ID_AUTHENTICATION,RESIDENT,ID_REPOSITORY -mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR,ID_REPOSITORY,RESIDENT mosip.role.idrepo.vid.patchvid=ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY From 24bcfa43718cacdaeaf1cece6983d2ce530c512f Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Wed, 14 Dec 2022 19:56:17 +0530 Subject: [PATCH 0952/1358] Revert "enabled websub traceLogAdvancedConfig" --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 24a6f526b17..3d4a1aab78c 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -91,4 +91,4 @@ console = true # Default is false [ballerina.http.traceLogAdvancedConfig] # Enable printing trace logs in console -console = true # Default is false \ No newline at end of file +console = false # Default is false \ No newline at end of file From 0b51eaeb35fbe6994d3ca885709d8c32f15fdf33 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Fri, 16 Dec 2022 11:49:44 +0530 Subject: [PATCH 0953/1358] Updated otp.request.flooding.max-count=3 --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 391d1a5c207..8f414db2ad0 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -334,7 +334,7 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=100 +otp.request.flooding.max-count=3 ## Notification templates ida.auth.mail.content.template=auth-email-content @@ -620,4 +620,4 @@ mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SU # Secret will be used during kyc token generation. mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ kyc.token.expire.time.adjustment.seconds=300 -kyc.exchange.default.lang=eng \ No newline at end of file +kyc.exchange.default.lang=eng From e0e9e0d14717132f2b4cd609b08b6f9792703a78 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Fri, 16 Dec 2022 12:08:16 +0530 Subject: [PATCH 0954/1358] Updated otp.request.flooding.max-count=100 --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 8f414db2ad0..d5fadb9834a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -334,7 +334,7 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=3 +otp.request.flooding.max-count=100 ## Notification templates ida.auth.mail.content.template=auth-email-content From 6b70812ece7b7c0a31c0bffc0321d6ca85879912 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Mon, 19 Dec 2022 16:42:03 +0530 Subject: [PATCH 0955/1358] [DSD-1841] Added config changes for compliance toolkit service. --- compliance-toolkit-default.properties | 191 ++++++++++++++++++++++++++ 1 file changed, 191 insertions(+) create mode 100644 compliance-toolkit-default.properties diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties new file mode 100644 index 00000000000..a96fa48d903 --- /dev/null +++ b/compliance-toolkit-default.properties @@ -0,0 +1,191 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# mosip.toolkit.client.secret +# keycloak.internal.host +# keycloak.internal.url +# s3.accesskey +# s3.region +# s3.secretkey + +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port + +##DB properties +javax.persistence.jdbc.driver=org.postgresql.Driver +mosip.database.ip=postgres-postgresql.postgres +mosip.database.port=5432 +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_toolkit?useSSL=false +javax.persistence.jdbc.user=toolkituser +javax.persistence.jdbc.password=${db.dbuser.password} + +## Hibernate +hibernate.hbm2ddl.auto=none +hibernate.show_sql=false +hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect +hibernate.jdbc.lob.non_contextual_creation=true + +logging.level.com.zaxxer.hikari=DEBUG + +## Project Version for the API response +version=1.0 + +server.servlet.context-path=/v1/toolkit + +## Security properties +mosip.security.csrf-enable=false +mosip.security.cors-enable=false +mosip.security.origins=localhost:8099 +mosip.security.secure-cookie=false + +#iam +mosip.api.internal.url=https://${mosip.api.internal.host} +#keycloak.external.url=${mosip.api.internal.url}/keycloak +iam.base.url=${keycloak.external.url} + +#iam adapter setup +mosip.service-context=${server.servlet.context-path} +mosip.service.end-points=/**/toolkit/** +mosip.global.end-points=/**/assets/**,/**/icons/**,/**/screenshots/**,/favicon**,/**/favicon**,/**/css/**,/**/js/**,/**/error**,/**/webjars/**,/**/csrf,/*/,/**/authenticate/**,/**/actuator/**,/sendOtp,/validateOtp,/invalidateToken,/config,/login,/logout,/validateOTP,/sendOTP,/**/login,/**/login/**,/**/login-redirect/**,/**/logout/**,/**/h2-console/**,/**/**/license/**,/**/callback/**,/**/authenticate/** +#mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT,DELETE +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.auth.filter_disable=false +mosip.kernel.auth.adapter.ssl-bypass=true +mosip.kernel.auth.appid-realm-map={toolkit:'mosip'} +mosip.kernel.auth.appids.realm.map={toolkit:'mosip'} + +#iam adapter +mosip.iam.adapter.appid=toolkit +mosip.iam.adapter.clientid=mosip-toolkit-client +mosip.iam.adapter.clientsecret=${mosip.toolkit.client.secret} + +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth.server.admin.allowed.audience=mosip-toolkit-client +auth.allowed.urls=https://${mosip.compliance.host}/ +mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs + +auth.server.validate.url=${mosip.api.internal.url}/v1/authmanager/authorize/admin/validateToken + +## below are required for kernel-authcodeflowproxy-api dependency +mosip.iam.module.login_flow.name=authorization_code +mosip.iam.module.login_flow.scope=email +mosip.iam.module.login_flow.response_type=code +mosip.iam.module.clientid=mosip-toolkit-client +mosip.iam.module.clientsecret=${mosip.toolkit.client.secret} +mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/toolkit/login-redirect/ +mosip.iam.module.admin_realm_id=mosip +mosip.iam.base-url=${iam.base.url} +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +mosip.iam.token_endpoint=${iam.base.url}/auth/realms/mosip/protocol/openid-connect/token +auth.server.admin.validate.url=${mosip.api.internal.url}/v1/authmanager/authorize/admin/validateToken + +## below are required for kernel CBEFF util dependency +mosip.kernel.xsdstorage-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ +mosip.kernel.xsdfile=mosip-cbeff.xsd + +## Minio +object.store.s3.use.account.as.bucketname=true + +## To store documents +mosip.kernel.objectstore.account-name=compliance-toolkit + +# Object store +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## For Minio: object.store.s3.url=http://minio.minio:9000 +## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.url=http://minio.minio:9000 +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 + +## Trust Validation of SBI +mosip.service.auth.appid=regproc +mosip.service.auth.clientid=mosip-pms-client +mosip.service.auth.secretkey=${mosip.pms.client.secret} +#mosip.service.validation.url=${mosip.api.internal.url}/v1/partnermanager/deviceprovidermanagement/validate +mosip.service.authmanager.url=${mosip.api.internal.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.service.keymanager.verifyCertificateTrust.url=${mosip.api.internal.url}/v1/keymanager/verifyCertificateTrust + +mosip.toolkit.sbi.ports=4501,4502,4503,4504,4505,4506,4507,4508,4509,4510 +mosip.toolkit.sbi.timeout=10000 +mosip.toolkit.sbi.keyrotation.iterations=2 + +## To decrypt biometrics in SBI Auth +mosip.service.keymanager.decrypt.appid=COMPLIANCE_TOOLKIT +mosip.service.keymanager.decrypt.refid=COMP-FIR +mosip.service.keymanager.decrypt.url=${mosip.api.internal.url}/v1/keymanager/decrypt +mosip.service.keymanager.encryption.key.url=${mosip.api.internal.url}/v1/keymanager/getCertificate?applicationId=COMPLIANCE_TOOLKIT&referenceId=COMP-FIR + +# Threshold value against which the quality check score value will be evaluated for Fingerprint biometric type. +mosip.toolkit.sdk.finger.qualitycheck.threshold.value=60 +# Threshold value against which the quality check score value will be evaluated for Face biometric type. +mosip.toolkit.sdk.face.qualitycheck.threshold.value=30 +# Threshold value against which the quality check score value will be evaluated for Iris biometric type. +mosip.toolkit.sdk.iris.qualitycheck.threshold.value=60 + +# TestRuns more than this limit will be moved to archives +mosip.toolkit.testrun.archive.offset=5 + +mosip.kernel.virus-scanner.host=clamav.clamav +mosip.kernel.virus-scanner.port=3310 + +#Enable or disable the virus scanner(true/false) +mosip.toolkit.document.scan=true + +##the id for API +mosip.toolkit.api.id.projects.get=mosip.toolkit.projects.retrieve +mosip.toolkit.api.id.sbi.project.get=mosip.toolkit.sbi.project.retrieve +mosip.toolkit.api.id.collections.get=mosip.toolkit.collections.retrieve +mosip.toolkit.api.id.collection.get=mosip.toolkit.collection.retrieve +mosip.toolkit.api.id.sdk.project.get=mosip.toolkit.sdk.project.retrieve +mosip.toolkit.api.id.sdk.project.put=mosip.toolkit.sdk.project.update +mosip.toolkit.api.id.sdk.project.post=mosip.toolkit.sdk.project.add +mosip.toolkit.api.id.collection.post=mosip.toolkit.collection.add +mosip.toolkit.api.id.sbi.project.post=mosip.toolkit.sbi.project.add +mosip.toolkit.api.id.testcase.project.get=mosip.toolkit.testcase.project.retrieve +mosip.toolkit.api.id.validations.post=mosip.toolkit.api.id.validations +mosip.toolkit.api.id.generate.sdk.request.post=mosip.toolkit.api.id.generate.sdk.request +mosip.toolkit.api.id.collection.testcases.get=mosip.toolkit.collection.testcases.retrieve +mosip.toolkit.api.id.collection.testcase.post=mosip.toolkit.collection.testcase.add +mosip.toolkit.api.id.testrun.post=mosip.toolkit.testrun.add +mosip.toolkit.api.id.testrun.put=mosip.toolkit.testrun.update +mosip.toolkit.api.id.testrun.details.post=mosip.toolkit.testrun.details.add +mosip.toolkit.api.id.testrun.details.get=mosip.toolkit.testrun.details.retrieve +mosip.toolkit.api.id.testcase.get=mosip.toolkit.testcase.retrieve +mosip.toolkit.api.id.testrun.history.get=mosip.toolkit.testrun.history.retrieve +mosip.toolkit.api.id.testrun.status.get=mosip.toolkit.testrun.status.retrieve +mosip.toolkit.api.id.sdk.generate.request=mosip.toolkit.api.id.sdk.generate.request +mosip.toolkit.api.id.biometric.testdata.get=mosip.toolkit.biometric.testdata.retrieve +mosip.toolkit.api.id.biometric.testdata.post=mosip.toolkit.biometric.testdata.add +mosip.toolkit.api.id.biometric.testdata.filenames.get=mosip.toolkit.biometric.testdata.filenames.retrieve +mosip.toolkit.api.id.resource.file.post=mosip.toolkit.resource.file.add + +#Roles for validation +mosip.toolkit.roles.uploadResource=GLOBAL_ADMIN +mosip.toolkit.roles.saveTestCases=GLOBAL_ADMIN + +## Determines file upload type allowed in UI +mosip.toolkit.documentupload.allowed.file.type = application/zip +# Determines the file name length(with extension) allowed in UI +mosip.toolkit.documentupload.allowed.file.nameLength = 50 +# Determines maximum size of file allowed uploaded 20 MB +mosip.toolkit.documentupload.allowed.file.size = 20000000 + +mosip.toolkit.max.allowed.gallery.files=5 + +#Swagger +openapi.info.title=Compliance-Toolkit +openapi.info.description=Compliance Toolkit Services +openapi.info.version=1.0 +openapi.info.license.name=Mosip +openapi.info.license.url=https://docs.mosip.io/platform/license +mosipbox.public.url=https://${mosip.compliance.host}/ +openapi.service.servers[0].url=${mosipbox.public.url}${server.servlet.context-path} +openapi.service.servers[0].description=Compliance Toolkit Services +openapi.group.name=${openapi.info.title} +openapi.group.paths[0]=/** +springdoc.swagger-ui.disable-swagger-default-url=true +springdoc.swagger-ui.tagsSorter=alpha +springdoc.swagger-ui.operationsSorter=alpha \ No newline at end of file From e25fe1d53dcbb3751ffb778f7c1ae92beff70230 Mon Sep 17 00:00:00 2001 From: pramod444 <pramodbelal8@gmail.com> Date: Mon, 19 Dec 2022 17:15:36 +0530 Subject: [PATCH 0956/1358] [DSD-1836] Updated identity-mapping.jsonand idp-default.properties file from develop-v3 config. --- identity-mapping.json | 23 ++++++++++++++++++++++- idp-default.properties | 37 ++++++++++++++++--------------------- 2 files changed, 38 insertions(+), 22 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 443c34632f7..13cc064003d 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -42,6 +42,9 @@ "uin": { "value": "UIN" }, + "vid": { + "value": "VID" + }, "individualBiometrics": { "value": "individualBiometrics" }, @@ -92,6 +95,18 @@ }, "fullAddress": { "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + }, + "bestTwoFingers": { + "value": "bestTwoFingers" + }, + "birthdate": { + "value": "dateOfBirth" + }, + "picture": { + "value": "face" + }, + "address": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" } }, "metaInfo": { @@ -116,5 +131,11 @@ "poe": { "value": "proofOfException" } + }, + "attributeUpdateCountLimit": { + "fullName": 2, + "gender": 1, + "dob": 1, + "age": 1 } -} +} \ No newline at end of file diff --git a/idp-default.properties b/idp-default.properties index 84d78329dc3..342ae212bcd 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,7 +26,7 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=hVq9XOvlRokmkG23JL7wAJhEGM5ZzgO7Hnx3omJ1ghMap78nYh +mosip.idp.misp.license.key=OLSRA9D5Jb2hhnCnNobNLHHaWAJHiVh5PbVSNavIajJHQB2KfN mosip.idp.clientmgmt.create-client=SCOPE_add_oidc_client mosip.idp.clientmgmt.update-client=SCOPE_update_oidc_client @@ -43,6 +43,7 @@ mosip.idp.auth-ignore-urls=${server.servlet.path}/oidc/**,${server.servlet.path} spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs +mosip.idp.reqtime.leeway-minutes=2 mosip.idp.supported-id-regex=\\S* #Id and access token validity intervals @@ -65,7 +66,7 @@ spring.kafka.consumer.enable-auto-commit=true ## supported scopes mosip.idp.supported.authorize.scopes={'identity.readonly','vid.manage','vid.readonly','auth.readonly','auth.method.manage','identity.update','auth.history.readonly','notifications.readonly','notifications.manage','credential.manage','auth.history.manage','card.manage'} mosip.idp.supported.openid.scopes={'profile','email','phone'} -mosip.idp.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone','locale','individual_id'},'email' : {'email'}, 'phone' : {'phone'}} +mosip.idp.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone','locale'},'email' : {'email'}, 'phone' : {'phone'}} ## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. mosip.idp.supported.response.types={'code'} @@ -122,13 +123,13 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=${spring.config.url}/*/${spring.config.active.profile}/${spring.config.label}/ida-partner.cer -mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/${mosip.idp.misp.license.key}/ -mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/${mosip.idp.misp.license.key}/ -mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/develop-v3/ida-partner.cer +mosip.idp.authn.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ mosip.idp.authn.wrapper.ida-domainUri=https://${mosip.idp.host} mosip.idp.authn.wrapper.ida-env=Developer -mosip.idp.authn.ida.otp-channels=email,mobile +mosip.idp.authn.ida.otp-channels=email,phone #mosip.idp.authn.wrapper.impl=MockAuthenticationService mosip.idp.authn.mock.impl.token-expire-sec=1800 @@ -144,25 +145,18 @@ mosip.idp.discovery.key-values={'issuer': '${mosip.idp.discovery.issuer-id}' ,\ \ 'authorization_endpoint': '${mosip.idp.domain.url}${server.servlet.path}/authorize' , \ \ 'token_endpoint': '${mosip.idp.domain.url}${server.servlet.path}/oauth/token' ,\ \ 'userinfo_endpoint' : '${mosip.idp.domain.url}${server.servlet.path}/oidc/userinfo' , \ - \ 'introspection_endpoint' : '${mosip.idp.domain.url}${server.servlet.path}/oauth/introspect' , \ + \ 'registration_endpoint' : '${mosip.idp.domain.url}${server.servlet.path}/client-mgmt/oidc-client' , \ \ 'jwks_uri' : '${mosip.idp.domain.url}${server.servlet.path}/oauth/jwks.json' , \ \ 'scopes_supported' : ${mosip.idp.supported.openid.scopes}, \ \ 'response_types_supported' : ${mosip.idp.supported.response.types}, \ - \ 'response_modes_supported' : { 'query' }, \ - \ 'token_endpoint_auth_methods_supported' : ${mosip.idp.supported.client.auth.methods}, \ - \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, \ + \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ \ 'userinfo_signing_alg_values_supported' : {'RS256'}, \ \ 'userinfo_encryption_alg_values_supported' : {'RSAXXXXX'},\ \ 'userinfo_encryption_enc_values_supported' : {'A128GCM'}, \ - \ 'id_token_signing_alg_values_supported' : {'RS256'}, \ - \ 'claim_types_supported': {'normal'}, \ - \ 'claims_parameter_supported' : true, \ - \ 'display_values_supported' : ${mosip.idp.supported.ui.displays}, \ - \ 'subject_types_supported' : { 'pairwise' }, \ - \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone','locale','individual_id'}, \ - \ 'acr_values_supported' : {},\ - \ 'request_parameter_supported' : false, \ - \ 'ui_locales_supported' : {} } + \ 'response_modes_supported' : { 'query' }, \ + \ 'token_endpoint_auth_methods_supported' : ${mosip.idp.supported.client.auth.methods}, \ + \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, 'id_token_signing_alg_values_supported' : {'RS256'}, 'claim_types_supported': {'normal'}, \ + \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone','locale','individual_id'}, 'claims_locales_supported' : {'en'}, 'display_values_supported' : ${mosip.idp.supported.ui.displays}, 'ui_locales_supported' : {'en'} } ##----------------------------------------- Database properties ------------------------------------------- @@ -246,7 +240,8 @@ crypto.PrependThumbprint.enable=true mosip.idp.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ - 'send.otp.channels' : 'email' } + 'send.otp.channels' : '${mosip.idp.authn.ida.otp-channels}' } logging.level.org.springframework.web.client.RestTemplate=DEBUG + From 459ceb8d80e93385b369760df9a2b146742792d9 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 19 Dec 2022 17:27:25 +0530 Subject: [PATCH 0957/1358] updated mosip.preregistration.captcha.enable=true --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 947813721e8..d200225b120 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -381,7 +381,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=false +mosip.preregistration.captcha.enable=true mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} From cf4148386581fd4914edf092c11518de42b1e6c8 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 19 Dec 2022 17:58:54 +0530 Subject: [PATCH 0958/1358] Added mosip-toolkitclient in auth.server.admin.allowed.audience. --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 9136c7f4ed7..6a1f2053f5a 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -418,7 +418,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client From d3532f3f69212da36a520457e5273e2ffd74d9eb Mon Sep 17 00:00:00 2001 From: pramod444 <pramodbelal8@gmail.com> Date: Tue, 20 Dec 2022 13:13:13 +0530 Subject: [PATCH 0959/1358] [DSD-1836] Updated idp-default.properties in auth Wrapper section. --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 342ae212bcd..1545c4b2632 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -123,7 +123,7 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/develop-v3/ida-partner.cer +mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/ida-partner.cer mosip.idp.authn.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ From bafef2cc42c0fe99cd50a02ccb5a36c469d58472 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Tue, 20 Dec 2022 15:19:44 +0530 Subject: [PATCH 0960/1358] DSD-1836 --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 1545c4b2632..d9cbce17def 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,7 +26,7 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=OLSRA9D5Jb2hhnCnNobNLHHaWAJHiVh5PbVSNavIajJHQB2KfN +mosip.idp.misp.license.key=hVq9XOvlRokmkG23JL7wAJhEGM5ZzgO7Hnx3omJ1ghMap78nYh mosip.idp.clientmgmt.create-client=SCOPE_add_oidc_client mosip.idp.clientmgmt.update-client=SCOPE_update_oidc_client From c4f9725df51c48af95fd89699172cc10c8e107f8 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 20 Dec 2022 18:52:50 +0530 Subject: [PATCH 0961/1358] Update compliance-toolkit-default.properties --- compliance-toolkit-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index a96fa48d903..30b7c07da57 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -48,7 +48,7 @@ iam.base.url=${keycloak.external.url} #iam adapter setup mosip.service-context=${server.servlet.context-path} mosip.service.end-points=/**/toolkit/** -mosip.global.end-points=/**/assets/**,/**/icons/**,/**/screenshots/**,/favicon**,/**/favicon**,/**/css/**,/**/js/**,/**/error**,/**/webjars/**,/**/csrf,/*/,/**/authenticate/**,/**/actuator/**,/sendOtp,/validateOtp,/invalidateToken,/config,/login,/logout,/validateOTP,/sendOTP,/**/login,/**/login/**,/**/login-redirect/**,/**/logout/**,/**/h2-console/**,/**/**/license/**,/**/callback/**,/**/authenticate/** +mosip.global.end-points=/**/swagger-ui/**,/**/api-docs/**,/**/assets/**,/**/icons/**,/**/screenshots/**,/favicon**,/**/favicon**,/**/css/**,/**/js/**,/**/error**,/**/webjars/**,/**/csrf,/*/,/**/authenticate/**,/**/actuator/**,/sendOtp,/validateOtp,/invalidateToken,/config,/login,/logout,/validateOTP,/sendOTP,/**/login,/**/login/**,/**/login-redirect/**,/**/logout/**,/**/h2-console/**,/**/**/license/**,/**/callback/**,/**/authenticate/** #mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT,DELETE mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.auth.filter_disable=false @@ -181,11 +181,11 @@ openapi.info.description=Compliance Toolkit Services openapi.info.version=1.0 openapi.info.license.name=Mosip openapi.info.license.url=https://docs.mosip.io/platform/license -mosipbox.public.url=https://${mosip.compliance.host}/ +mosipbox.public.url=${mosip.api.internal.url} openapi.service.servers[0].url=${mosipbox.public.url}${server.servlet.context-path} openapi.service.servers[0].description=Compliance Toolkit Services openapi.group.name=${openapi.info.title} openapi.group.paths[0]=/** springdoc.swagger-ui.disable-swagger-default-url=true springdoc.swagger-ui.tagsSorter=alpha -springdoc.swagger-ui.operationsSorter=alpha \ No newline at end of file +springdoc.swagger-ui.operationsSorter=alpha From 920da45a696403a2653b8dcf6baa03a473114a46 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Wed, 21 Dec 2022 18:09:08 +0530 Subject: [PATCH 0962/1358] [DSD-1847] Added config changes for mock-mv --- mock-mv-default.properties | 3 +++ 1 file changed, 3 insertions(+) create mode 100644 mock-mv-default.properties diff --git a/mock-mv-default.properties b/mock-mv-default.properties new file mode 100644 index 00000000000..d102b6e8420 --- /dev/null +++ b/mock-mv-default.properties @@ -0,0 +1,3 @@ +## Mock Manual Verification Properties +# Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] +mock.mv.default.decision=APPROVED \ No newline at end of file From d14e79f8c6aa265d8381b7b89b544f2c3d437358 Mon Sep 17 00:00:00 2001 From: Yashavant1629 <102220960+Yashavant1629@users.noreply.github.com> Date: Thu, 22 Dec 2022 12:11:00 +0530 Subject: [PATCH 0963/1358] otp.request.flooding.max-count=5 --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d5fadb9834a..4ec64826b3c 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -334,7 +334,7 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=100 +otp.request.flooding.max-count=5 ## Notification templates ida.auth.mail.content.template=auth-email-content From 0be45f1446a83855c63866cc2ec815f23d78c76a Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Fri, 23 Dec 2022 18:02:34 +0530 Subject: [PATCH 0964/1358] otp.request.flooding.max-count=100 --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4ec64826b3c..d5fadb9834a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -334,7 +334,7 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=5 +otp.request.flooding.max-count=100 ## Notification templates ida.auth.mail.content.template=auth-email-content From 9855b99332bb686a36d7742bab550556483c8765 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 23 Dec 2022 19:26:33 +0530 Subject: [PATCH 0965/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index efaa89ce00a..bdf540c6983 100644 --- a/application-default.properties +++ b/application-default.properties @@ -288,7 +288,7 @@ mosip.login.mode= email,mobile mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL mosip.kernel.sms.proxy-sms=true -mosip.kernel.auth.proxy-otp=true +mosip.kernel.auth.proxy-otp=false mosip.kernel.auth.proxy-email=true ## Notification lanugage types: either PRIMARY or BOTH mosip.notification.language-type=BOTH From f1595e6fbdbbbf7a2f3703ff99ce12bc3df68813 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 26 Dec 2022 12:28:12 +0530 Subject: [PATCH 0966/1358] mosip.kernel.auth.proxy-otp=true --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index bdf540c6983..efaa89ce00a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -288,7 +288,7 @@ mosip.login.mode= email,mobile mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL mosip.kernel.sms.proxy-sms=true -mosip.kernel.auth.proxy-otp=false +mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true ## Notification lanugage types: either PRIMARY or BOTH mosip.notification.language-type=BOTH From 11b63f75dcf9285b5fbe071ffc8354f538e3198f Mon Sep 17 00:00:00 2001 From: Madhunagesh1 <96459628+Madhunagesh1@users.noreply.github.com> Date: Tue, 27 Dec 2022 10:15:49 +0530 Subject: [PATCH 0967/1358] Update id-authentication-default.properties reduced otp.request.flooding.max-count from 100 to 3 --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d5fadb9834a..8f414db2ad0 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -334,7 +334,7 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=100 +otp.request.flooding.max-count=3 ## Notification templates ida.auth.mail.content.template=auth-email-content From d0d63c37cbdfcd5dee3062970ccb5c872d766400 Mon Sep 17 00:00:00 2001 From: Madhunagesh1 <96459628+Madhunagesh1@users.noreply.github.com> Date: Tue, 27 Dec 2022 10:28:03 +0530 Subject: [PATCH 0968/1358] Update id-authentication-default.properties reverted the changes otp.request.flooding.max-count from 3 to 100 --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 8f414db2ad0..d5fadb9834a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -334,7 +334,7 @@ ida.errormessages.default-lang=en ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=3 +otp.request.flooding.max-count=100 ## Notification templates ida.auth.mail.content.template=auth-email-content From a7e9ef5ffeda3b01005486477f62ae5be7e81601 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Wed, 28 Dec 2022 13:39:47 +0530 Subject: [PATCH 0969/1358] [DSD-1888] Added config changes for idp --- idp-claims-mapping.json | 28 ++++++++++++++++++++ idp-default.properties | 57 ++++++++++++++++++++++++++--------------- 2 files changed, 65 insertions(+), 20 deletions(-) create mode 100644 idp-claims-mapping.json diff --git a/idp-claims-mapping.json b/idp-claims-mapping.json new file mode 100644 index 00000000000..8cc700c8717 --- /dev/null +++ b/idp-claims-mapping.json @@ -0,0 +1,28 @@ +{ + "idp-claims-mapping": { + "name": { + "attributeName": "fullName" + }, + "gender": { + "attributeName": "gender" + }, + "birthdate": { + "attributeName": "dateOfBirth" + }, + "email": { + "attributeName": "email" + }, + "phone_number": { + "attributeName": "phone" + }, + "picture": { + "attributeName": "face" + }, + "individual_id" : { + "attributeName": "UIN,VID" + }, + "address": { + "attributeName": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + } + } +} \ No newline at end of file diff --git a/idp-default.properties b/idp-default.properties index d9cbce17def..f4938f8f22e 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,28 +26,38 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=hVq9XOvlRokmkG23JL7wAJhEGM5ZzgO7Hnx3omJ1ghMap78nYh +mosip.idp.misp.license.key=nsWvISPTJAzxEOlFX31Z7zorsJeaaDUM2BvKsi8pogLpj3A1Sm -mosip.idp.clientmgmt.create-client=SCOPE_add_oidc_client -mosip.idp.clientmgmt.update-client=SCOPE_update_oidc_client -mosip.idp.systeminfo.get-certificate=SCOPE_get_certificate -mosip.idp.systeminfo.upload-certificate=SCOPE_upload_certificate +# Secure endpoints with required authority +mosip.idp.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ + \ '${server.servlet.path}/system-info/**' : { 'SCOPE_upload_certificate'} } +mosip.idp.security.auth.put-urls={'${server.servlet.path}/client-mgmt/**' : { 'SCOPE_update_oidc_client'} } +mosip.idp.security.auth.get-urls={'${server.servlet.path}/system-info/**' : { 'SCOPE_get_certificate'} } + +# CSRF token check disabled endpoints +mosip.idp.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ + ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,\ + ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus,\ + ${server.servlet.path}/system-info/** + + +# Authentication ignored endpoint (permit-all) +mosip.idp.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ + ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ + ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ + ${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop-v3/amr-acr-mapping.json -mosip.idp.auth-ignore-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ - ${server.servlet.path}/authorization/**,${server.servlet.path}/actuator/**,/favicon.ico,\ - /v1/notifier/actuator/prometheus,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/linked-authorization/** #spring.autoconfigure.exclude[0]=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs -mosip.idp.reqtime.leeway-minutes=2 mosip.idp.supported-id-regex=\\S* +mosip.idp.reqtime.leeway-minutes=2 #Id and access token validity intervals -mosip.idp.access-token.expire.seconds=7200 +mosip.idp.access-token-expire-seconds=7200 mosip.idp.id-token-expire-seconds=7200 ## link transaction @@ -61,12 +71,14 @@ spring.kafka.consumer.group-id=idp-consumer spring.kafka.consumer.enable-auto-commit=true #spring.kafka.listener.concurrency=1 +mosip.idp.audit.wrapper.impl=LoggerAuditService + ## ---------------------------------------- IdP (oauth & openid) config ------------------------------------------- ## supported scopes mosip.idp.supported.authorize.scopes={'identity.readonly','vid.manage','vid.readonly','auth.readonly','auth.method.manage','identity.update','auth.history.readonly','notifications.readonly','notifications.manage','credential.manage','auth.history.manage','card.manage'} mosip.idp.supported.openid.scopes={'profile','email','phone'} -mosip.idp.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone','locale'},'email' : {'email'}, 'phone' : {'phone'}} +mosip.idp.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number','locale','individual_id'},'email' : {'email'}, 'phone' : {'phone_number'}} ## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. mosip.idp.supported.response.types={'code'} @@ -104,6 +116,11 @@ mosip.idp.supported.client.assertion.types={'urn:ietf:params:oauth:client-assert mosip.idp.supported.client.auth.methods={'private_key_jwt'} ## ---------------------------------------- Cache configuration ------------------------------------------- +mosip.idp.cache.secure.individual-id=true +mosip.idp.cache.store.individual-id=true +mosip.idp.cache.security.secretkey.reference-id=TRANSACTION_CACHE +mosip.idp.cache.security.algorithm-name=AES/ECB/PKCS5Padding + mosip.idp.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented #spring.cache.type=redis @@ -117,16 +134,16 @@ mosip.idp.cache.key.hash.algorithm=SHA3-256 mosip.idp.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200 } mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'authenticated': 300, 'authcodegenerated': 300, \ - 'userinfo': ${mosip.idp.access-token.expire.seconds}, 'linkcodegenerated' : ${mosip.idp.link-code-expire-in-secs}, \ + 'userinfo': ${mosip.idp.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.idp.link-code-expire-in-secs}, \ 'linked': 300 , 'linkedcode': ${mosip.idp.link-code-expire-in-secs}, 'linkedauth' : 300, 'consented': 300 } ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/ida-partner.cer -mosip.idp.authn.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ -mosip.idp.authn.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ -mosip.idp.authn.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/ida-partner.cer +mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ +mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ mosip.idp.authn.wrapper.ida-domainUri=https://${mosip.idp.host} mosip.idp.authn.wrapper.ida-env=Developer mosip.idp.authn.ida.otp-channels=email,phone @@ -156,7 +173,8 @@ mosip.idp.discovery.key-values={'issuer': '${mosip.idp.discovery.issuer-id}' ,\ \ 'response_modes_supported' : { 'query' }, \ \ 'token_endpoint_auth_methods_supported' : ${mosip.idp.supported.client.auth.methods}, \ \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, 'id_token_signing_alg_values_supported' : {'RS256'}, 'claim_types_supported': {'normal'}, \ - \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone','locale','individual_id'}, 'claims_locales_supported' : {'en'}, 'display_values_supported' : ${mosip.idp.supported.ui.displays}, 'ui_locales_supported' : {'en'} } + \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','locale','individual_id'}, 'claims_locales_supported' : {'en'}, 'display_values_supported' : ${mosip.idp.supported.ui.displays}, 'ui_locales_supported' : {'en'} } + ##----------------------------------------- Database properties ------------------------------------------- @@ -243,5 +261,4 @@ mosip.idp.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, 'send.otp.channels' : '${mosip.idp.authn.ida.otp-channels}' } -logging.level.org.springframework.web.client.RestTemplate=DEBUG - +logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file From 10ce35f555d417d6c019b1eff06aeb6e7720bb32 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Wed, 28 Dec 2022 14:33:37 +0530 Subject: [PATCH 0970/1358] [DSD-1888] Reverted the misp license key value. --- idp-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/idp-default.properties b/idp-default.properties index f4938f8f22e..7e651f588cd 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,7 +26,7 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=nsWvISPTJAzxEOlFX31Z7zorsJeaaDUM2BvKsi8pogLpj3A1Sm +mosip.idp.misp.license.key=hVq9XOvlRokmkG23JL7wAJhEGM5ZzgO7Hnx3omJ1ghMap78nYh # Secure endpoints with required authority mosip.idp.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ @@ -261,4 +261,4 @@ mosip.idp.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, 'send.otp.channels' : '${mosip.idp.authn.ida.otp-channels}' } -logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file +logging.level.org.springframework.web.client.RestTemplate=DEBUG From f14c94751f86bbff520d9933eaac350d833cbe77 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 28 Dec 2022 15:52:26 +0530 Subject: [PATCH 0971/1358] updated the prop --- idp-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/idp-default.properties b/idp-default.properties index 7e651f588cd..51e866776e3 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -47,7 +47,7 @@ mosip.idp.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.serv ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ ${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus -mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop-v3/amr-acr-mapping.json +mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1.2.0.1-B2/amr-acr-mapping.json #spring.autoconfigure.exclude[0]=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip @@ -140,7 +140,7 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/ida-partner.cer +mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/ida-partner.cer mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ From 7595819891bc8d7ebee465aa0fc7c4a6b34d6f58 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 28 Dec 2022 15:53:33 +0530 Subject: [PATCH 0972/1358] Update idp-default.properties --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 51e866776e3..439cc451fe4 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -47,7 +47,7 @@ mosip.idp.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.serv ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ ${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus -mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1.2.0.1-B2/amr-acr-mapping.json +mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/amr-acr-mapping.json #spring.autoconfigure.exclude[0]=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip From 60b7536f8d7f06a311eba48a92acef2a10a00022 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 28 Dec 2022 16:12:52 +0530 Subject: [PATCH 0973/1358] Create amr-acr-mapping.json --- amr-acr-mapping.json | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 amr-acr-mapping.json diff --git a/amr-acr-mapping.json b/amr-acr-mapping.json new file mode 100644 index 00000000000..e6802646629 --- /dev/null +++ b/amr-acr-mapping.json @@ -0,0 +1,14 @@ +{ + "amr" : { + "PIN" : [{ "type": "PIN" }], + "OTP" : [{ "type": "OTP" }], + "Wallet" : [{ "type": "WLA" }], + "L1-bio-device" : [{ "type": "BIO", "count": 1 }] + }, + "acr_amr" : { + "mosip:idp:acr:static-code" : ["PIN"], + "mosip:idp:acr:generated-code" : ["OTP"], + "mosip:idp:acr:linked-wallet" : [ "Wallet" ], + "mosip:idp:acr:biometrics" : [ "L1-bio-device" ] + } +} From 18c482407113864a918a5975566c332e16904806 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Wed, 28 Dec 2022 16:14:31 +0530 Subject: [PATCH 0974/1358] [DSD-1889] Added config changes for pms and ida services. --- data-share-default.properties | 2 +- id-authentication-internal-default.properties | 2 +- partner-management-default.properties | 119 +++++++++++++++--- 3 files changed, 106 insertions(+), 17 deletions(-) diff --git a/data-share-default.properties b/data-share-default.properties index 52537547358..e0679de3ef0 100644 --- a/data-share-default.properties +++ b/data-share-default.properties @@ -39,7 +39,7 @@ mosip.data.share.includePayload=false mosip.data.share.digest.algorithm=SHA256 mosip.data.share.prependThumbprint=true mosip.role.durian.postcreatepolicyidsubscriberid=CREATE_SHARE -auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client,mpartner-default-print,mosip-resident-client,opencrvs-partner +auth.server.admin.allowed.audience=mosip-partner-client,mosip-creser-client,mpartner-default-auth,mosip-regproc-client,mosip-reg-client,mosip-syncdata-client,mpartner-default-print,mosip-resident-client,opencrvs-partner,mpartner-default-digitalcard,mosip-admin-client,mosip-pms-client mosip.auth.filter_disable=false diff --git a/id-authentication-internal-default.properties b/id-authentication-internal-default.properties index 33411b5a630..00b138791e4 100644 --- a/id-authentication-internal-default.properties +++ b/id-authentication-internal-default.properties @@ -27,7 +27,7 @@ ida-topic-pmp-ca-certificate-uploaded=CA_CERTIFICATE_UPLOADED # ********* ADMIN Configurations ************ # Configure N time period threshold for accepting auth/OTP/KYC request for a country authrequest.received-time-allowed.seconds=120 -# Configuration for +/- time period adjustment in minutes for the request time validation, so that +# Configuration for +/- time period adjustment in minutes for the request time validation, so that # The requests originating from a system that is not in time-sync will be accepted for the time period authrequest.received-time-adjustment.seconds=30 #Configuration for time period difference between each biometric segment and digital Id capture diff --git a/partner-management-default.properties b/partner-management-default.properties index bc07324353b..5fc6d150434 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -1,8 +1,7 @@ ## Follow properites have their values assigned via 'overrides' environment variables of config server docker. ## DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server ## helm chart: -## db.dbuser.password -## mosip.partner.client.secret +## db.dbuser.password ## mosip.pms.client.secret ## keycloak.internal.url ## keycloak.admin.password @@ -10,7 +9,7 @@ ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace -## If database is external to production, provide the DNS or ip of the host and port +## If database is external to production, provide the DNS or ip of the host and port mosip.pmp.database.hostname=postgres-postgresql.postgres mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser @@ -58,8 +57,8 @@ mosip.datasource.regdevice.hibernate.dialect=org.hibernate.dialect.PostgreSQL95D hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.hbm2ddl.auto=none -hibernate.show_sql=false -hibernate.format_sql=false +hibernate.show_sql=true +hibernate.format_sql=true hibernate.connection.charSet=utf8 hibernate.cache.use_second_level_cache=false hibernate.cache.use_query_cache=false @@ -74,7 +73,10 @@ auth.allowed.urls=https://${mosip.pmp.host}/ application.id=PARTNER application.name=partner -## To configure the length of the misp license key +## To configure starting value or initial value of mispId. +## ex: if value = 3 ==> mispId starts from 100 +## if value = 4 ==> mispId starts from 1000 +mosip.kernel.mispid.length = 3 mosip.kernel.idgenerator.misp.license-key-length = 50 ## To configure the partner types for which extractors are required. It should be "," separated. pmp.bioextractors.required.partner.types = Credential_Partner,Online_Verification_Partner @@ -87,27 +89,31 @@ pmp.policy.schema.url= https://schemas.mosip.io/v1/auth-policy ## If we add any new policy type, corresponding schema also needs to be added. ## format for adding schema configuration for new policy type is as below ## pmp.policyTypeName.policy.schema(all are in lowercase)= schema url -pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance +pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP pmp.auth.policy.schema = ${mosip.kernel.xsdstorage-uri}auth-policy-schema.json pmp.datashare.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json pmp.credentialissuance.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json +pmp.misp.policy.schema = ${mosip.kernel.xsdstorage-uri}misp-policy-schema.json pmp.misp.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-z]{2,})$ pmp.partner.valid.email.address.regex=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-z]{2,})$ pmp.partner.partnerId.max.length=36 pmp.partner.mobileNumbe.max.length=16 +## Time difference between request creation and request processing +masterdata.registerdevice.timestamp.validate=+5 + ## Keymanager mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign ## Kernel services mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits # ApplicationId for partner -mosip.pmp.auth.appId=partner +mosip.pmp.auth.appId =partner # Kernel auth client ID for partner management services -mosip.pmp.auth.clientId=mosip-partner-client +mosip.pmp.auth.clientId=mosip-pms-client # Kernel auth secret key for partner management services -mosip.pmp.auth.secretKey=${mosip.partner.client.secret} +mosip.pmp.auth.secretKey= ${mosip.pms.client.secret} # Key manager service API's to upload certificates pms.cert.service.token.request.clientId=${mosip.pmp.auth.clientId} pms.cert.service.token.request.issuerUrl=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -147,7 +153,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} ## Auth adapter auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken -auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client,mosip-deployment-client +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-deployment-client auth.jwt.secret=authjwtsecret auth.jwt.base=Mosip-Token @@ -162,7 +168,7 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false #To populate required roles which should be allowed in UI.(Roles are nothing but partner types) -mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,PARTNERMANAGER,POLICYMANAGER,PARTNER_ADMIN +mosip.pms.ui.required.roles=AUTH_PARTNER,DEVICE_PROVIDER,CREDENTIAL_PARTNER,FTM_PROVIDER,MISP_PARTNER,POLICYMANAGER,PARTNER_ADMIN # To configure misp partner type mosip.pms.misp.partner.type=MISP_Partner @@ -189,8 +195,8 @@ policy.auth.allowed.token.types=random,partner,policy # IAM mosip.iam.module.login_flow.name=authorization_code -mosip.iam.module.clientID=mosip-partner-client -mosip.iam.module.clientsecret=${mosip.partner.client.secret} +mosip.iam.module.clientID=mosip-pms-client +mosip.iam.module.clientsecret=${mosip.pms.client.secret} mosip.iam.module.redirecturi=${mosip.api.internal.url}/v1/partnermanager/login-redirect/ mosip.iam.module.login_flow.scope=email mosip.iam.module.login_flow.response_type=code @@ -198,6 +204,7 @@ mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/prot mosip.iam.module.admin_realm_id=mosip mosip.pms.filtervalue.max_columns =100 mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token +mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs ## Unused properties. TODO: delete them once they are removed from code pmp.policy.allowed.authtokens.types=random,partner,policy @@ -227,7 +234,89 @@ pms.notifications-schedule.fixed-rate=24 partner.register.as.user.in.iam.enable=false +## Roles +mosip.role.pms.postpoliciesgroupnew=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.putpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpolicies=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciespolicyidgrouppublish=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.putpoliciespolicyid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.patchpoliciespolicyidgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpolicies=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciespolicyid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesapikey=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciespolicyidpartnerpartnerid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesgrouppolicygroupid=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesgroupall=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciesgroupsearch=PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciessearch=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.getpoliciesconfigkey=PARTNER_ADMIN,POLICYMANAGER +mosip.role.pms.postpoliciesgroupfiltervalues=PARTNER_ADMIN,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER +mosip.role.pms.postpoliciesfiltervalues=PARTNER_ADMIN,PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,POLICYMANAGER,PARTNER +mosip.role.pms.getactivegroupgroupname=AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,ABIS_PARTNER,MANUAL_ADJUDICATION,POLICYMANAGER +mosip.role.pms.postdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.putdevicedetail=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.patchdevicedetail=PARTNER_ADMIN +mosip.role.pms.postdevicedetailsearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetaildevicetypesearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetailfiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetaildevicesubtypefiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.putftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.patchftpchipdetail=PARTNER_ADMIN +mosip.role.pms.postftpchipdetailuploadcertificate=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.getftpchipdetailgetpartnercertificate=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.postftpchipdetailsearch=PARTNER_ADMIN,FTM_PROVIDER +mosip.role.pms.postsecurebiometricinterface=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.putsecurebiometricinterface=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.patchsecurebiometricinterface=PARTNER_ADMIN +mosip.role.pms.postsecurebiometricinterfacesearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.putsecurebiometricinterfacedevicedetailsmap=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.putsecurebiometricinterfacedevicedetailsmapremove=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postsecurebiometricinterfacedevicedetailsmapsearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postsecurebiometricinterfacefiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postpartnersbioextractors=PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,CREDENTIAL_ISSUANCE,CREATE_SHARE,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.getpartnersbioextractors=PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,CREDENTIAL_ISSUANCE,CREATE_SHARE,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerscredentialtypepolicies=PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,CREDENTIAL_ISSUANCE,CREATE_SHARE,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.getpartnerscredentialtypepolicies=PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,CREDENTIAL_ISSUANCE,CREATE_SHARE,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerscontactadd=PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,ABIS_PARTNER,MANUAL_ADJUDICATION,MISP_PARTNER +mosip.role.pms.putpartners=PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,ABIS_PARTNER,MANUAL_ADJUDICATION,MISP_PARTNER +mosip.role.pms.putpartnersnew=PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,ABIS_PARTNER,MANUAL_ADJUDICATION,MISP_PARTNER +mosip.role.pms.getpartnerspartnerid=PARTNER,AUTH_PARTNER,CREDENTIAL_PARTNER,RESIDENT,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,ABIS_PARTNER,SDK_PARTNER,MANUAL_ADJUDICATION,MISP_PARTNER +mosip.role.pms.getpartnersapikeyrequest=PARTNER,AUTH_PARTNER,ABIS_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerscacertificateupload=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.postpartnerscertificateupload=PARTNER,PMS_USER,AUTH_PARTNER,ABIS_PARTNER,SDK_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,ID_AUTHENTICATION,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.getpartnerscertificate=PARTNER,PMS_USER,AUTH_PARTNER,ABIS_PARTNER,SDK_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,CREATE_SHARE,ID_AUTHENTICATION,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerssearch=PARTNER,PMS_USER,AUTH_PARTNER,ABIS_PARTNER,SDK_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,PARTNER_ADMIN,CREDENTIAL_PARTNER,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerspartnertypesearch=PARTNER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,PARTNER_ADMIN,CREDENTIAL_PARTNER,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersfiltervalues=PARTNER,PMS_USER,AUTH_PARTNER,DEVICE_PROVIDER,FTM_PROVIDER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersapikeyrequestfiltervalues=PARTNER,PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersapikeyrequestsearch=PARTNER,PMS_USER,AUTH_PARTNER,ABIS_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnersapikeysearch=PARTNER,PMS_USER,AUTH_PARTNER,ABIS_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.putpartnerspolicygroup=PARTNER,PMS_USER,AUTH_PARTNER,CREDENTIAL_PARTNER,PARTNER_ADMIN,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postpartnerspolicymap=AUTH_PARTNER,ABIS_PARTNER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,ONLINE_VERIFICATION_PARTNER,PARTNER_ADMIN +mosip.role.pms.patchpartnersgenerateapikey=AUTH_PARTNER,ABIS_PARTNER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.putpartnersapikeypolicies=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.patchpartners=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getpartners=PARTNERMANAGER,PARTNER_ADMIN,partnermanager,ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT,CREDENTIAL_ISSUANCE,ID_REPOSITORY +mosip.role.pms.getpartnersnew=PARTNERMANAGER,PARTNER_ADMIN,partnermanager,ID_AUTHENTICATION,REGISTRATION_PROCESSOR,RESIDENT,CREDENTIAL_ISSUANCE,ID_REPOSITORY +mosip.role.pms.getpartnersapikey=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.putpartnerspolicymapping=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.patchpartnerspolicyapikeystatus=PARTNERMANAGER,PARTNER_ADMIN,AUTH_PARTNER,CREDENTIAL_PARTNER,CREDENTIAL_ISSUANCE,ONLINE_VERIFICATION_PARTNER +mosip.role.pms.postmisplicense=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.putmisplicense=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getmisplicense=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.getmisplicensekey=PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.postmispfiltervalues=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN + + # query param usd to refer url to redirect after logout mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri # end session endpoint in OIDC -mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout \ No newline at end of file +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout +# IDP claims mapping file url +mosip.idp.claims-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/idp-claims-mapping.json +# IDP amr-acr mapping file url +mosip.idp.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json +## IDP Service apis for create and update +pmp-idp.oidc.client.create.rest.uri=https://${mosip.api.public.host}/v1/idp/client-mgmt/oidc-client +pmp-idp.oidc.client.update.rest.uri=https://${mosip.api.public.host}/v1/idp/client-mgmt/oidc-client From 022a982534746168966cee92f402c5be56223ab2 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 28 Dec 2022 20:26:31 +0530 Subject: [PATCH 0975/1358] Update identity-mapping.json --- identity-mapping.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 13cc064003d..dfc6909ece6 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -106,7 +106,7 @@ "value": "face" }, "address": { - "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + "value": "city,region,province,postalCode" } }, "metaInfo": { @@ -138,4 +138,4 @@ "dob": 1, "age": 1 } -} \ No newline at end of file +} From 72609101d93a9d54e245d77ea1eeca75ee3ba309 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 28 Dec 2022 20:33:22 +0530 Subject: [PATCH 0976/1358] Update identity-mapping.json --- identity-mapping.json | 3 --- 1 file changed, 3 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index dfc6909ece6..38233c3d94e 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -104,9 +104,6 @@ }, "picture": { "value": "face" - }, - "address": { - "value": "city,region,province,postalCode" } }, "metaInfo": { From d1475adc0d8f0326bd01c1bdd385589eae1ba01d Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 29 Dec 2022 10:28:15 +0530 Subject: [PATCH 0977/1358] Create misp-policy-schema.json --- misp-policy-schema.json | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 misp-policy-schema.json diff --git a/misp-policy-schema.json b/misp-policy-schema.json new file mode 100644 index 00000000000..60d4ce19fc4 --- /dev/null +++ b/misp-policy-schema.json @@ -0,0 +1,20 @@ +{ + "$schema": "http://json-schema.org/draft-04/schema#", + "type": "object", + "properties": { + "allowAuthRequestDelegation": { + "type": "boolean" + }, + "allowKycRequestDelegation": { + "type": "boolean" + }, + "trustBindedAuthVerificationToken": { + "type": "boolean" + } + + }, + "required": [ + "allowAuthRequestDelegation", + "allowKycRequestDelegation" + ] + } From 199327f13e178af3ca4669bd2e6f8acdea81b196 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Fri, 30 Dec 2022 12:05:35 +0530 Subject: [PATCH 0978/1358] Update identity-mapping.json --- identity-mapping.json | 3 +++ 1 file changed, 3 insertions(+) diff --git a/identity-mapping.json b/identity-mapping.json index 38233c3d94e..42cfe2a4bd9 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -104,6 +104,9 @@ }, "picture": { "value": "face" + }, + "phone_number": { + "value": "phone" } }, "metaInfo": { From 97ef335babdb52f037a8c9920b27c689d20d9ffc Mon Sep 17 00:00:00 2001 From: Madhunagesh1 <96459628+Madhunagesh1@users.noreply.github.com> Date: Mon, 2 Jan 2023 18:21:46 +0530 Subject: [PATCH 0979/1358] Update idp-default.properties changing mosip.idp.access-token-expire-seconds 7200 to 600 --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 439cc451fe4..c4af2ced7eb 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -57,7 +57,7 @@ mosip.idp.supported-id-regex=\\S* mosip.idp.reqtime.leeway-minutes=2 #Id and access token validity intervals -mosip.idp.access-token-expire-seconds=7200 +mosip.idp.access-token-expire-seconds=600 mosip.idp.id-token-expire-seconds=7200 ## link transaction From c3664b1027f9e318f7a5b8a2ab55c8c965ce16c2 Mon Sep 17 00:00:00 2001 From: Madhunagesh1 <96459628+Madhunagesh1@users.noreply.github.com> Date: Mon, 2 Jan 2023 18:47:13 +0530 Subject: [PATCH 0980/1358] Update idp-default.properties reverted the changes mosip.idp.access-token-expire-seconds=7200 --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index c4af2ced7eb..439cc451fe4 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -57,7 +57,7 @@ mosip.idp.supported-id-regex=\\S* mosip.idp.reqtime.leeway-minutes=2 #Id and access token validity intervals -mosip.idp.access-token-expire-seconds=600 +mosip.idp.access-token-expire-seconds=7200 mosip.idp.id-token-expire-seconds=7200 ## link transaction From f3ac2615ea1e13a84fc43799055d445276b6e37e Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Tue, 3 Jan 2023 14:37:59 +0530 Subject: [PATCH 0981/1358] MOSIP-25353 Added Resident roles to master data api. --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 6a1f2053f5a..ae7b418c4f0 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -586,14 +586,14 @@ mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_A mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN From 3cec75a7cd484f9a39ca8640bc7b7f7615badd19 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Tue, 3 Jan 2023 14:41:13 +0530 Subject: [PATCH 0982/1358] Update registration-processor-default.properties --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 656073b40a0..2ec7ff5ebc2 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -960,7 +960,7 @@ object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 # Roles -mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN +mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,RESIDENT mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT From c002800cc0c5fdfb741605d3f170acd913508f72 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Tue, 3 Jan 2023 16:37:25 +0530 Subject: [PATCH 0983/1358] MOSIP-25353 Added Resident roles to get rid status api. --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2ec7ff5ebc2..2e22683168f 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -960,7 +960,7 @@ object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 # Roles -mosip.role.registration.getGetsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,RESIDENT +mosip.role.registration.getsearchrid=REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,RESIDENT mosip.role.registration.getPostauth=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR mosip.role.registration.getGetgetcertificate=INDIVIDUAL,REGISTRATION_PROCESSOR,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN mosip.role.registration.getPostpacketexternalstatus=REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT From d65c26710afb2f95dfdd7b7ddbfbe5da8fd44a04 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Wed, 10 Aug 2022 16:03:20 +0530 Subject: [PATCH 0984/1358] Updated abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 6129f3d6c9fe9007a4abc0328749abd780e4421b Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 11 Aug 2022 16:07:26 +0530 Subject: [PATCH 0985/1358] Updated abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 72096163e087c5c8dd1a61540165a8ff06bc4a30 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 16 Aug 2022 16:01:27 +0530 Subject: [PATCH 0986/1358] Update print-default.properties --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index c40bcd4c3a2..f2c1f7fbb0c 100644 --- a/print-default.properties +++ b/print-default.properties @@ -122,4 +122,4 @@ mosip.print.crypto.p12.password=password@123 mosip.print.crypto.p12.alias=partner # verifiable credential -mosip.print.verify.credentials.flag=false +mosip.print.verify.credentials.flag=true From d3aeaaa07ab667eb21bf451555aec93bdd406313 Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 17 Aug 2022 16:21:08 +0530 Subject: [PATCH 0987/1358] logging.level.io.mosip changed above property value from INFO to DEBUG --- print-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/print-default.properties b/print-default.properties index f2c1f7fbb0c..bbe922cf1f6 100644 --- a/print-default.properties +++ b/print-default.properties @@ -74,7 +74,7 @@ mosip.kernel.tokenid.length=36 ## log level logging.level.root=INFO -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## tomcat access logs From dd97095a4ac1c1e72fddcd2a4c390d887a9f31db Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 19 Aug 2022 19:09:48 +0530 Subject: [PATCH 0988/1358] [DSD-1352] updated the languages --- admin-default.properties | 2 +- application-default.properties | 9 ++++----- mimoto-default.properties | 4 ++-- print-default.properties | 4 ++-- resident-app-default.properties | 2 +- 5 files changed, 10 insertions(+), 11 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 4174179c65a..060e1902f95 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -71,7 +71,7 @@ mosip.admin.security.policy.userrole-auth-url=${mosip.kernel.authmanager.url}/v1 ## Masterdata cards -mosip.admin.masterdata.lang-code=eng,ara,fra +mosip.admin.masterdata.lang-code=eng,ara mosip.admin-services.required.roles=GLOBAL_ADMIN #masterdata machine diff --git a/application-default.properties b/application-default.properties index efaa89ce00a..605caf4484a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -92,7 +92,7 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng @@ -277,7 +277,6 @@ mosip.kernel.virus-scanner.port=3310 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara mosip.kernel.transliteration.english-language-code=eng -mosip.kernel.transliteration.french-language-code=fra ## DOB mosip.default.dob.month=01 @@ -412,11 +411,11 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges mosip.optional-languages=ara -mosip.min-languages.count=2 -mosip.max-languages.count=3 +mosip.min-languages.count=1 +mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara,fra +mosip.default.template-languages=eng,ara # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/mimoto-default.properties b/mimoto-default.properties index 77cf8701915..ce8fde91263 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara mosip.mandatory-languages=eng # mosip.primary-language=eng diff --git a/print-default.properties b/print-default.properties index bbe922cf1f6..d993652f9d7 100644 --- a/print-default.properties +++ b/print-default.properties @@ -55,9 +55,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara mosip.mandatory-languages=eng ## CBEFF util diff --git a/resident-app-default.properties b/resident-app-default.properties index 8c45381053b..6052fac3a49 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,7 +96,7 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara mosip.template-language=eng mosip.optional-languages=ara,fra From f851c9588f9ca5e7f436ca36de159658caf394d5 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 19 Aug 2022 19:11:28 +0530 Subject: [PATCH 0989/1358] [DSD-1352] removed fra lang --- resident-app-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index 6052fac3a49..dcf8f091b70 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -99,7 +99,7 @@ registration.processor.signature.isEnabled=true mosip.supported-languages=eng,ara mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara mosip.mandatory-languages=eng # mosip.primary-language=eng From 2e3c107bbeea7f7ae78cbe9edf4e25a02a5d6066 Mon Sep 17 00:00:00 2001 From: Rakshith650 <rakshitham38@gmail.com> Date: Fri, 19 Aug 2022 21:47:37 +0530 Subject: [PATCH 0990/1358] [DSD-1352] removed semi colon from prop file --- websub-consolidator.toml | 3 ++- websub-service.toml | 4 +++- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index cb3258ff7c4..fad8956b0ed 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -22,6 +22,7 @@ POLLING_INTERVAL = 10.0 # The period in which Kafka close method waits to complete GRACEFUL_CLOSE_PERIOD = 5.0 +CURRENT_WORKING_DIR = "user.dir" # The disk space threshold for healthcheck DISK_SPACE_THRESHOLD = 10485760 @@ -30,4 +31,4 @@ DISK_SPACE_THRESHOLD = 10485760 CONSOLIDATOR_PORT = 9192 # consolidator health endpoint -CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" \ No newline at end of file +CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" diff --git a/websub-service.toml b/websub-service.toml index 3d4a1aab78c..913c2a1db48 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -55,6 +55,8 @@ DISK_SPACE_THRESHOLD = 10485760 PARTNER_USER_ID_PREFIX = "service-account-" +CURRENT_WORKING_DIR = "user.dir" + # The period between retry requests INTENT_VERIFICATION_RETRY_INTERVAL = 3.0 @@ -91,4 +93,4 @@ console = true # Default is false [ballerina.http.traceLogAdvancedConfig] # Enable printing trace logs in console -console = false # Default is false \ No newline at end of file +console = false # Default is false From 6ca4871ba583a9a61f86ac0f97d25b6149c158de Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Sun, 21 Aug 2022 23:36:38 +0530 Subject: [PATCH 0991/1358] Update websub-service.toml --- websub-service.toml | 8 -------- 1 file changed, 8 deletions(-) diff --git a/websub-service.toml b/websub-service.toml index 913c2a1db48..7ebf864c3f9 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -86,11 +86,3 @@ CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" - -[ballerina.http.accessLogConfig] -# Enable printing access logs in console -console = true # Default is false - -[ballerina.http.traceLogAdvancedConfig] -# Enable printing trace logs in console -console = false # Default is false From 0b0fd943753aaecb65778098409d8a5eae8a12cb Mon Sep 17 00:00:00 2001 From: urviljoshi <urvvil08@gmail.com> Date: Mon, 22 Aug 2022 00:33:38 +0530 Subject: [PATCH 0992/1358] removed working dir as it has to be same --- websub-consolidator.toml | 1 - websub-service.toml | 9 +++++++++ 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/websub-consolidator.toml b/websub-consolidator.toml index fad8956b0ed..1076b3907f5 100644 --- a/websub-consolidator.toml +++ b/websub-consolidator.toml @@ -22,7 +22,6 @@ POLLING_INTERVAL = 10.0 # The period in which Kafka close method waits to complete GRACEFUL_CLOSE_PERIOD = 5.0 -CURRENT_WORKING_DIR = "user.dir" # The disk space threshold for healthcheck DISK_SPACE_THRESHOLD = 10485760 diff --git a/websub-service.toml b/websub-service.toml index 7ebf864c3f9..b55b5112e2a 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -48,6 +48,15 @@ MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" +[ballerina.http.accessLogConfig] +# Enable printing access logs in console +console = true # Default is false + +[ballerina.http.traceLogAdvancedConfig] +# Enable printing trace logs in console +console = false # Default is false + + # The token validation URL of IDP DISK_SPACE_THRESHOLD = 10485760 From d5cba8be45bba30345d1b75b32c2a9717d20db96 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Mon, 22 Aug 2022 09:12:50 +0530 Subject: [PATCH 0993/1358] Update websub-service.toml --- websub-service.toml | 17 ++++++++--------- 1 file changed, 8 insertions(+), 9 deletions(-) diff --git a/websub-service.toml b/websub-service.toml index b55b5112e2a..913c2a1db48 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -48,15 +48,6 @@ MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" # The token validation URL of IDP MOSIP_AUTH_VALIDATE_TOKEN_URL = "/authorize/admin/validateToken" -[ballerina.http.accessLogConfig] -# Enable printing access logs in console -console = true # Default is false - -[ballerina.http.traceLogAdvancedConfig] -# Enable printing trace logs in console -console = false # Default is false - - # The token validation URL of IDP DISK_SPACE_THRESHOLD = 10485760 @@ -95,3 +86,11 @@ CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" + +[ballerina.http.accessLogConfig] +# Enable printing access logs in console +console = true # Default is false + +[ballerina.http.traceLogAdvancedConfig] +# Enable printing trace logs in console +console = false # Default is false From ba9250af7e3d442bfd201541af796be0faa83bfc Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Wed, 24 Aug 2022 19:07:34 +0530 Subject: [PATCH 0994/1358] cipher password doesnot work | workaround --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index ce8fde91263..76329816669 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -35,7 +35,7 @@ mosip.event.secret=Kslk30SNF2AChs2 mosip.partner.crypto.p12.filename=keystore.p12 -mosip.partner.crypto.p12.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.crypto.p12.password=abc123 mosip.partner.crypto.p12.alias=partner mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 mosip.partner.prependThumbprint=true From 74f95561ba13d9c27d0e8064fef6bb98abad64ae Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 25 Aug 2022 15:44:46 +0530 Subject: [PATCH 0995/1358] Updated abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From dbb7fc5c029e80ffeefadd92043eabcd612d120f Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 29 Aug 2022 12:27:15 +0530 Subject: [PATCH 0996/1358] Reverted abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 8f6df66e683041ae6c6cd29a783f75bd50942308 Mon Sep 17 00:00:00 2001 From: santhoshsunder <102220709+santhoshsunder@users.noreply.github.com> Date: Mon, 29 Aug 2022 19:21:43 +0530 Subject: [PATCH 0997/1358] testing deleted --- mosip-context.json | 4 ---- 1 file changed, 4 deletions(-) diff --git a/mosip-context.json b/mosip-context.json index 4da43560e8f..6d7a162b625 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -22,10 +22,6 @@ "city": { "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} - }, - "gender": { - "@id": "https://${mosip.api.public.host}/mosip#gender", - "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", From 40d8e5675fc106aa4693cdb9edace62d62e42553 Mon Sep 17 00:00:00 2001 From: santhoshsunder <102220709+santhoshsunder@users.noreply.github.com> Date: Mon, 29 Aug 2022 19:49:57 +0530 Subject: [PATCH 0998/1358] reverting back the changes --- mosip-context.json | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/mosip-context.json b/mosip-context.json index 6d7a162b625..4da43560e8f 100644 --- a/mosip-context.json +++ b/mosip-context.json @@ -22,6 +22,10 @@ "city": { "@id": "https://${mosip.api.public.host}/mosip#city", "@context": {"value": "rdf:value", "lang": "@language"} + }, + "gender": { + "@id": "https://${mosip.api.public.host}/mosip#gender", + "@context": {"value": "rdf:value", "lang": "@language"} }, "residenceStatus": { "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", From e14581837471063beeffe2ebe1bd2a967910796d Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 14 Sep 2022 11:42:19 +0530 Subject: [PATCH 0999/1358] mosip.kernel.mail.content.html.enable=true Added above property for getting correct email format --- kernel-default.properties | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index ae7b418c4f0..2632b4a4931 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -55,9 +55,9 @@ spring.mail.username=${email.smtp.username} spring.mail.password=${email.smtp.secret} spring.mail.port=${email.smtp.port} spring.mail.properties.mail.transport.protocol=smtp -spring.mail.properties.mail.smtp.starttls.required=false -spring.mail.properties.mail.smtp.starttls.enable=false -spring.mail.properties.mail.smtp.auth=false +spring.mail.properties.mail.smtp.starttls.required=true +spring.mail.properties.mail.smtp.starttls.enable=true +spring.mail.properties.mail.smtp.auth=true spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB @@ -737,3 +737,4 @@ auth.allowed.urls=http://localhost:5000/ mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF] +management.health.mail.enabled=true From 4065e7a2a3f826b62d891152438b1b86aeb390b1 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Wed, 14 Sep 2022 16:53:10 +0530 Subject: [PATCH 1000/1358] Updated mosip.default.template-languages=eng --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 605caf4484a..eea97ab0815 100644 --- a/application-default.properties +++ b/application-default.properties @@ -415,7 +415,7 @@ mosip.min-languages.count=1 mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara +mosip.default.template-languages=eng # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang From e29a4e866b5c35f53ad911a290a93989e201295a Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Wed, 14 Sep 2022 17:28:24 +0530 Subject: [PATCH 1001/1358] Reverted back the changes to mosip.default.template-languages=eng, ara --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index eea97ab0815..605caf4484a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -415,7 +415,7 @@ mosip.min-languages.count=1 mosip.max-languages.count=2 # These are default languages used for sending notifications -mosip.default.template-languages=eng +mosip.default.template-languages=eng,ara # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang From c8320c3aaa600816a72049bd8eeb6ab00e875507 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 15 Sep 2022 14:41:26 +0530 Subject: [PATCH 1002/1358] Updating abis.return.duplicate to true --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..24d8220a166 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=false +abis.return.duplicate=true secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From d92a77f8367811588609da1980f000cc28c8b9d6 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 16 Sep 2022 11:30:45 +0530 Subject: [PATCH 1003/1358] updated abis.return.duplicate to false --- mock-abis-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index 24d8220a166..c0eb32d2b49 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -7,7 +7,7 @@ spring.application.name=mock-abis-service management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 -abis.return.duplicate=true +abis.return.duplicate=false secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey secret_url.clientnId=mosip-regproc-client secret_url.id=string From 90289c0690c701c1f2448527f3640b98c3e6853c Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Fri, 16 Sep 2022 14:08:53 +0530 Subject: [PATCH 1004/1358] Changing reprocess elapse time and MockMV decision Changing reprocess elapse time to 3600 and mock mv decision to REJECTED --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2e22683168f..1b9e90999b8 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -291,7 +291,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=300 +registration.processor.reprocess.elapse.time=3600 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron @@ -848,7 +848,7 @@ mosip.regproc.packet.classifier.tagging.idobject-data-availability.availability- ## Mock Manual Verification Properties # Based on value of below parameter the packets are passed or rejected. Required values are [APPROVED or REJECTED] -mock.mv.decision=APPROVED +mock.mv.decision=REJECTED # salt generation properties mosip.regproc.db.url=${javax.persistence.jdbc.url} From d22c97cf3fd629cc60371f1a5206966596a829da Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 22 Sep 2022 18:58:28 +0530 Subject: [PATCH 1005/1358] Update reprocess elapse time to 900 --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1b9e90999b8..8d38e836a79 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -291,7 +291,7 @@ registration.processor.reprocess.limit=500 registration.processor.pause.packets.for.backpressure=true # The reprocessor scheduler configurations # The elapse time (in sec) beyond which the rids will be considered for reprocessing -registration.processor.reprocess.elapse.time=3600 +registration.processor.reprocess.elapse.time=900 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. registration.processor.reprocess.attempt.count=300 registration.processor.reprocess.type=cron From 0c5d4088cc77db708c9d066b913a6510b05fa7d6 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Mon, 3 Oct 2022 16:30:05 +0530 Subject: [PATCH 1006/1358] [DSD-1491]decreased otp expiry time --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 605caf4484a..8aa05f0a98e 100644 --- a/application-default.properties +++ b/application-default.properties @@ -252,7 +252,7 @@ mosip.kernel.otp.default-length=6 ## Default crypto function: HmacSHA512, HmacSHA256, HmacSHA1. mosip.kernel.otp.mac-algorithm=HmacSHA512 ## OTP expires after the given time (in seconds). -mosip.kernel.otp.expiry-time=180 +mosip.kernel.otp.expiry-time=60 ## Key is frozen for the given time (in seconds). mosip.kernel.otp.key-freeze-time=1800 ## Number of validation attempts allowed. From f3f5c2c867673ca8a7539280f9a9a57615ee2936 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Mon, 31 Oct 2022 12:47:15 +0530 Subject: [PATCH 1007/1358] Fix for DDL execution in credential request generator on startup Fix for DDL execution in credential request generator on startup --- id-repository-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index ca8efa6d295..c66ecd2c127 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -242,7 +242,8 @@ mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.d mosip.credential.service.jdbc.user=credentialuser mosip.credential.service.jdbc.password=${db.dbuser.password} mosip.credential.service.jdbc.driver=org.postgresql.Driver -hibernate.hbm2ddl.auto=update +hibernate.hbm2ddl.auto=none +spring.jpa.hibernate.ddl-auto=none hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true hibernate.show_sql=false From aade8f2dd2d825a467bbd2cbad69bff4f694bc87 Mon Sep 17 00:00:00 2001 From: M1022006 <sowmya.goudar@mindtree.com> Date: Wed, 2 Nov 2022 17:42:30 +0530 Subject: [PATCH 1008/1358] MOSIP-24284 config changes --- id-repository-default.properties | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index c66ecd2c127..5acc8f9a85c 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -266,17 +266,12 @@ mosip.credential.request.crypto-ref-id=credential_request mosip.credential.request.job.timedelay=15000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 -# This property can be set to auth,print or keep it empty so batch will pick up all records# -credential.request.type=auth credential.request.retry.max.count=10 credential.request.reprocess.statuscodes=FAILED,RETRY -credential.batch.core.pool.size=10 -credential.batch.max.pool.size=10 -credential.batch.queue.capacity=10 credential.batch.page.size=10 -credential.batch.chunk.size=10 credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 +credential.batch.status=NEW ## Rest services CRDENTIALSERVICE=${mosip.idrepo.credential.service.url}/v1/credentialservice/issue From e32b5b1b6e91082a08a17f09e33dc8698c0f9018 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 2 Nov 2022 20:19:36 +0530 Subject: [PATCH 1009/1358] added the missing prop --- id-repository-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/id-repository-default.properties b/id-repository-default.properties index 5acc8f9a85c..9fe682e80a6 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -415,3 +415,5 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY + +credential.request.type=auth From 786ade2a0894786693b24b701833e309cd0e4214 Mon Sep 17 00:00:00 2001 From: M1022006 <sowmya.goudar@mindtree.com> Date: Thu, 3 Nov 2022 09:58:01 +0530 Subject: [PATCH 1010/1358] MOSIP-24284 removed unused property --- id-repository-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 9fe682e80a6..5acc8f9a85c 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -415,5 +415,3 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY - -credential.request.type=auth From db6e57246af2f3872cf22bc41f5a73e94e73a5e7 Mon Sep 17 00:00:00 2001 From: ase-101 <> Date: Thu, 5 Jan 2023 17:05:19 +0530 Subject: [PATCH 1011/1358] Fixed review comments --- id-authentication-default.properties | 4 ++-- idp-default.properties | 8 ++++---- mimoto-default.properties | 2 +- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d5fadb9834a..e3910a38aef 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -560,7 +560,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://idp.qa-1201-b2.mosip.net +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.idp.host} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX @@ -618,6 +618,6 @@ mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SU #logging.level.root=DEBUG # Secret will be used during kyc token generation. -mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ +mosip.ida.kyc.token.secret=${mosip_ida_kyc_token_secret} kyc.token.expire.time.adjustment.seconds=300 kyc.exchange.default.lang=eng diff --git a/idp-default.properties b/idp-default.properties index 439cc451fe4..169c8526d09 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -37,7 +37,7 @@ mosip.idp.security.auth.get-urls={'${server.servlet.path}/system-info/**' : { 'S # CSRF token check disabled endpoints mosip.idp.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,\ - ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus,\ + ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,\ ${server.servlet.path}/system-info/** @@ -45,9 +45,9 @@ mosip.idp.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server.serv mosip.idp.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus + ${server.servlet.path}/v3/api-docs/** -mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/amr-acr-mapping.json +mosip.idp.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json #spring.autoconfigure.exclude[0]=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip @@ -140,7 +140,7 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/ida-partner.cer +mosip.idp.authn.ida.cert-url=https://${mosip.api.host}/mosip-certs/ida-partner.cer mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ diff --git a/mimoto-default.properties b/mimoto-default.properties index 76329816669..472948e4bf1 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -35,7 +35,7 @@ mosip.event.secret=Kslk30SNF2AChs2 mosip.partner.crypto.p12.filename=keystore.p12 -mosip.partner.crypto.p12.password=abc123 +mosip.partner.crypto.p12.password=${mosip_partner_crypto_p12_password} mosip.partner.crypto.p12.alias=partner mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 mosip.partner.prependThumbprint=true From be10c34f4e94d08ad48bb30377add1f0113f685d Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Thu, 5 Jan 2023 17:12:23 +0530 Subject: [PATCH 1012/1358] [DSD-1951] updated the required properties for idp deployment --- id-authentication-default.properties | 4 ++++ idp-claims-mapping.json | 4 ++-- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index d5fadb9834a..9061e2af96b 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -621,3 +621,7 @@ mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SU mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ kyc.token.expire.time.adjustment.seconds=300 kyc.exchange.default.lang=eng + +idp.amr-acr.mapping.json.filename=amr-acr-mapping.json +mosip.idp.amr-acr.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${idp.amr-acr.mapping.json.filename} +idp.amr-acr.ida.mapping.property.source=${mosip.idp.amr-acr.mapping.json-uri} diff --git a/idp-claims-mapping.json b/idp-claims-mapping.json index 8cc700c8717..25ce4aa2ec6 100644 --- a/idp-claims-mapping.json +++ b/idp-claims-mapping.json @@ -16,10 +16,10 @@ "attributeName": "phone" }, "picture": { - "attributeName": "face" + "attributeName": "photo" }, "individual_id" : { - "attributeName": "UIN,VID" + "attributeName": "individual_id" }, "address": { "attributeName": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" From 93646e4f5d84b5d88e11779d409181b815cd5bb9 Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Thu, 5 Jan 2023 19:09:05 +0530 Subject: [PATCH 1013/1358] commend "CURRENT_WORKING_DIR" --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 913c2a1db48..59728e25aa1 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -55,7 +55,7 @@ DISK_SPACE_THRESHOLD = 10485760 PARTNER_USER_ID_PREFIX = "service-account-" -CURRENT_WORKING_DIR = "user.dir" +#CURRENT_WORKING_DIR = "user.dir" # The period between retry requests INTENT_VERIFICATION_RETRY_INTERVAL = 3.0 From eb10747e98d61d1d2a30907038b9ff1477d248dc Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Thu, 5 Jan 2023 19:38:14 +0530 Subject: [PATCH 1014/1358] [ DSD-1944 ] disabled auth for smtp --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index ca0482a30ab..6e84ec6718e 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -55,9 +55,9 @@ spring.mail.username=${email.smtp.username} spring.mail.password=${email.smtp.secret} spring.mail.port=${email.smtp.port} spring.mail.properties.mail.transport.protocol=smtp -spring.mail.properties.mail.smtp.starttls.required=true -spring.mail.properties.mail.smtp.starttls.enable=true -spring.mail.properties.mail.smtp.auth=true +spring.mail.properties.mail.smtp.starttls.required=false +spring.mail.properties.mail.smtp.starttls.enable=false +spring.mail.properties.mail.smtp.auth=false spring.mail.debug=false spring.servlet.multipart.enabled=true spring.servlet.multipart.max-file-size=5MB From bf8384b2b2c125999f18e9c60e38a4aaa487ee78 Mon Sep 17 00:00:00 2001 From: pramod444 <pramodbelal8@gmail.com> Date: Thu, 5 Jan 2023 19:45:26 +0530 Subject: [PATCH 1015/1358] [DSD-1860] updated resident-captcha properties in resident-default.properties. --- resident-default.properties | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 3f131e22d27..9133f209cf6 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -2,6 +2,8 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # keycloak.internal.url +# resident.captcha.site.key +# resident.captcha.secret.key # mosip.resident.client.secret # mosip.regproc.client.secret # keycloak.internal.url. @@ -194,6 +196,15 @@ mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production +## Captcha service +## Configuration for google re-captcha +mosip.resident.captcha.enable=true +mosip.resident.captcha.id.validate=mosip.resident.captcha.id.validate +mosip.resident.captcha.sitekey=${resident.captcha.site.key} +mosip.resident.captcha.secretkey=${resident.captcha.secret.key} +mosip.resident.captcha.resourse.url=http://resident-captcha.resident/resident/v1/captcha/validatecaptcha +mosip.resident.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify + #------------Request IDs--------------------- # The request IDs used in Resident REST APIs @@ -210,7 +221,7 @@ resident.view.history.status.filters=all,success,in-progress,failed #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id,mosip.captcha.sitekey,mosip.captcha.secretkey +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id From bca2388fbe60fd63cf47266d7ee25418b477d4a0 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Thu, 5 Jan 2023 20:09:05 +0530 Subject: [PATCH 1016/1358] [DSD-1955] added the latest props to resident-default.properties --- resident-default.properties | 104 +++++++++++++++++++++++------------- 1 file changed, 68 insertions(+), 36 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 9133f209cf6..f1439d52d27 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -26,6 +26,7 @@ resident.vid.get.id=mosip.resident.vid.get auth.type.status.id=mosip.identity.authtype.status.update resident.authlock.id=mosip.resident.authlock resident.checkstatus.id=mosip.resident.checkstatus +resident.checkstatus.version=v1 resident.euin.id=mosip.resident.euin resident.printuin.id=mosip.resident.printuin resident.uin.id=mosip.resident.uin @@ -34,19 +35,20 @@ resident.updateuin.id=mosip.resident.updateuin resident.authunlock.id=mosip.resident.authunlock resident.authhistory.id=mosip.resident.authhistory resident.authLockStatusUpdateV2.id=mosip.resident.auth.lock.unlock -resident.authLockStatusUpdateV2.version=v1 +resident.authLockStatusUpdateV2.version=1.0 resident.service.history.id=mosip.service.history.get resident.service.history.version=1.0 +resident.document.upload.id=mosip.resident.document.upload resident.document.get.id=mosip.resident.document.get -resident.document.get.version=v1 +resident.document.get.version=1.0 resident.document.list.id=mosip.resident.document.list -resident.document.list.version=v1 +resident.document.list.version=1.0 resident.service.pin.status.id=mosip.resident.pin.status resident.service.pin.status.version=v1 resident.service.unpin.status.id=mosip.resident.unpin.status resident.service.unpin.status.version=v1 resident.document.delete.id=mosip.resident.document.delete -resident.document.delete.version=v1 +resident.document.delete.version=1.0 resident.contact.details.update.id=mosip.resident.contact.details.update.id resident.contact.details.send.otp.id=mosip.resident.contact.details.send.otp.id mosip.resident.service.status.check.id=mosip.registration.external.status @@ -62,12 +64,22 @@ mosip.resident.request.response.version=1.0 vid.revoke.id=mosip.vid.update resident.revokevid.id=mosip.resident.vidstatus mosip.resident.revokevid.id=mosip.resident.vid.revoke +mosip.resident.grievance.ticket.request.id=mosip.resident.grievance.ticket.request +mosip.resident.grievance.ticket.request.version=1.0 PARTNER_REFERENCE_Id=mpartner-default-resident mosip.resident.transliteration.transliterate.id=mosip.resident.transliteration.transliterate APPLICATION_Id=RESIDENT DECRYPT_API_URL=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt mosip-prereg-host=${mosip.prereg.host} mosip-prereg-ui-url=https://${mosip-prereg-host}/pre-registration-ui/ +resident.ui.properties.id=resident.ui.properties +resident.ui.properties.version=1.0 +resident.channel.verification.status.id=mosip.resident.channel.verification.status +resident.channel.verification.status.version=1.0 +resident.event.ack.download.id=mosip.resident.event.ack.download +resident.event.ack.download.version=1.0 +resident.download.card.eventid.id =mosip.resident.download.card.eventid +resident.download.card.eventid.version=1.0 ## Token generation token.request.id=io.mosip.resident @@ -123,6 +135,8 @@ WORKING_DAYS_BY_REGISTRATION_ID=${MASTER}/workingdays/{registrationCenterID}/{la LATEST_ID_SCHEMA_URL =${MASTER}/idschema/latest TEMPLATES_BY_LANGCODE_AND_TEMPLATETYPECODE_URL=${MASTER}/templates/{langcode}/{templatetypecode} GENDER_TYPE_BY_LANGCODE=${MASTER}/gendertypes/{langcode} +DOCUMENT_TYPE_BY_DOCUMENT_CATEGORY_AND_LANG_CODE=${MASTER}/documenttypes/{documentcategorycode}/{langcode} + # DMZ service call SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync @@ -148,7 +162,7 @@ mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanag RETRIEVE_VIDS=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin/ #IdRepo Service calls -IDREPO_IDENTITY_UPDATE_COUNT=${mosip.idrepo.identity.url}/idrepository/v1/identity/update-count +IDREPO_IDENTITY_UPDATE_COUNT=${mosip.idrepo.identity.url}/idrepository/v1/identity/{individualId}/update-counts ## Config data @@ -173,7 +187,7 @@ token.request.secretKey=${mosip.resident.client.secret} objectstore.adapter.name=PosixAdapter #TODO remove reg-client service accunt in production env -auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client,mosip-resident-service-client-idp +auth.server.admin.allowed.audience=mosip-resident-client,mosip-reg-client,${mosip.iam.module.clientID} #Mapping Identity json to map with the applicant id json registration.processor.identityjson=identity-mapping.json @@ -190,7 +204,7 @@ mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} mosip.service-context=/resident/v1 ## The exclusion list of URL patterns that should not be part of authentication and authorization -mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/get-individual-id,/**/req/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registrationcenters/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user +mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/get-individual-id,/**/req/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registrationcenters/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user,/**/status/individualId/** mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT @@ -221,7 +235,7 @@ resident.view.history.status.filters=all,success,in-progress,failed #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,resident.contact.details.update.id,resident.contact.details.send.otp.id @@ -240,7 +254,10 @@ javax.persistence.jdbc.url=jdbc:postgresql://${mosip.resident.database.hostname} javax.persistence.jdbc.user=residentuser javax.persistence.jdbc.password=${db.dbuser.password} -auth.allowed.urls=https://${mosip.resident.host}/,https://${mosip.resident.host}/resident-ui/ + + + +auth.allowed.urls=https://${mosip.resident.host}/,https://${mosip.resident.host}/resident-ui/,https://${mosip.resident.host}/resident-ui/** # IAM @@ -250,33 +267,36 @@ mosip.iam.module.login_flow.name=authorization_code # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. ################## MOSIP IdP config -#mosip.iam.module.clientID=mosip-resident-service-client-idp -#mosip.iam.module.clientsecret= -#mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp -#mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize -#mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token -#mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo -#mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json -#auth.server.admin.issuer.uri=${mosip.iam.base.url} -#auth.server.admin.issuer.domain.validate=true -#auth.server.admin.oidc.userinfo.url=${mosip.iam.userinfo_endpoint} -#mosip.iam.module.token.endpoint.private-key-jwt.auth.enabled=true -#mosip.iam.module.token.endpoint.private-key-jwt.expiry.seconds=7200 -#mosip.resident.oidc.userinfo.jwt.signed=true +mosip.iam.module.clientID=yDHDuozxkePAN340NtmazlDVmrRMkY4z6zH658zYBgI +mosip.iam.module.clientsecret= +mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp +mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize +mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token +mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo +mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json +auth.server.admin.issuer.uri=${mosip.iam.base.url} +auth.server.admin.issuer.domain.validate=true +auth.server.admin.oidc.userinfo.url=${mosip.iam.userinfo_endpoint} +mosip.iam.module.token.endpoint.private-key-jwt.auth.enabled=true +mosip.iam.module.token.endpoint.private-key-jwt.expiry.seconds=7200 +mosip.resident.oidc.userinfo.jwt.signed=true # AuthAdaptor ValdidateTokenHelper: This property will directly apply the certs URL without need for constructing the path from issuer URL. # This is useful to keep a different certs URL for integrating with MOSIP IdP for offline token validation. -#auth.server.admin.oidc.certs.url=${mosip.iam.certs_endpoint} +auth.server.admin.oidc.certs.url=${mosip.iam.certs_endpoint} +mosip.iam.logout.offline=true +auth.server.admin.validate.url= +mosip.resident.oidc.userinfo.jwt.verify.enabled=false ################### MOSIP IdP config ends ################### Mock-keycloak IdP config -mosip.iam.module.clientID=mosip-resident-client -mosip.iam.module.clientsecret=${mosip.resident.client.secret} -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth -mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token -mosip.iam.userinfo_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/userinfo -mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs -mosip.iam.module.token.endpoint.private-key-jwt.auth.enabled=false -mosip.resident.oidc.userinfo.jwt.signed=false +#mosip.iam.module.clientID=mosip-resident-client +#mosip.iam.module.clientsecret=${mosip.resident.client.secret} +#mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth +#mosip.iam.token_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/token +#mosip.iam.userinfo_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/userinfo +#mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs +#mosip.iam.module.token.endpoint.private-key-jwt.auth.enabled=false +#mosip.resident.oidc.userinfo.jwt.signed=false ################### Mock-keycloak IdP config ends ########################################################### mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ @@ -626,7 +646,7 @@ otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate auth.validate.id-token=true mosip.resident.download.uin.card=mosip.resident.download.uin.card -GET_RID_BY_INDIVIDUAL_ID=${mosip.idrepo.identity.url}/idrepository/v1/identity/get-rid/{individualId} +GET_RID_BY_INDIVIDUAL_ID=${mosip.idrepo.identity.url}/idrepository/v1/identity/rid/{individualId} mosip.resident.access_token.auth_mode.claim-name=acr mosip.resident.oidc.id_token.ida_token.claim-name=sub @@ -638,7 +658,8 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claim={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} + resident.identity.schematype.with.photo=personalized-card #Rectangle coordinates for pfd signataured data @@ -660,7 +681,7 @@ mosip.resident.sign.pdf.reference.id=SIGN mosip.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer # request id for download personalized card -mosip.resident.download.personalized.card=mosip.resident.euin +mosip.resident.download.personalized.card=mosip.resident.download.personalized.card #method name to create password resident.create.password.method.name=getPassword #File name for the downloaded personalized card. "eventId" and "timestamp" are configurable. If they are removed from below property then they will be removed from file name also. @@ -676,8 +697,8 @@ mosip.resident.ack.order_physical_card.name.convention=Ack_order_physical_card_{ mosip.resident.ack.name.convention=Ack_{eventId}_{timestamp} mosip.resident.uin.card.name.convention=UIN_{eventId}_{timestamp} mosip.resident.vid.card.name.convention=VID_{eventId}_{timestamp} -mosip.resident.download.nearest.registration.centre.file.name.convention=Registration_centers_{timestamp} mosip.resident.download.service.history.file.name.convention=View_history_{timestamp} +mosip.resident.download.nearest.registration.centre.file.name.convention=Registration_centers_{timestamp} mosip.resident.request.credential.credentialType=euin mosip.resident.request.credential.isEncrypt=true @@ -691,6 +712,8 @@ mosip.credential.issuer=mpartner-default-digitalcard mosip.resident.name.token.claim-name=name mosip.resident.photo.token.claim-photo=picture mosip.resident.individual.id.claim.name=individual_id +mosip.resident.email.token.claim-email=email +mosip.resident.phone.token.claim-phone=phone_number mosip.resident.applicant.name.property=applicantName mosip.resident.photo.attribute.name=photo @@ -702,4 +725,13 @@ mosip.credential.request.service.version=1.0 ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=10 \ No newline at end of file +otp.request.flooding.max-count=10 +mosip.resident.message.code.maximum.length=1024 + +GET_RID_STATUS=${mosipbox.public.url}/registrationprocessor/v1/registrationtransaction/search/{rid} +sequence-order=Request received, Validation stage, Verification stage, Uin generation stage, Card ready to download + +mosip.resident.checkstatus.individualid.id=mosip.resident.checkstatus.individualid +mosip.resident.checkstatus.individualid.version=1.0 + +resident.additional.identity.attribute.to.fetch=UIN,email,phone,dob,name,photo \ No newline at end of file From 48aa7b31c943681795249611e4c7c2c1c632b3e9 Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Thu, 5 Jan 2023 20:15:11 +0530 Subject: [PATCH 1017/1358] [ DSD-1944 ] added missing properties --- id-repository-default.properties | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 5acc8f9a85c..1151d138c6d 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -120,6 +120,12 @@ mosip.idrepo.vid.deactive-status=DEACTIVATED # VID status value which is stored in database for reactivated VIDs. Used in reactivate-all-vids api. mosip.idrepo.vid.reactive-status=ACTIVE +#RID +# Application version expected in the request +mosip.idrepo.rid.get.version=1.0 +# Application ids expected in the requests +mosip.idrepo.rid.get.id=mosip.idrepo.rid.get + # Config server url mosip.idrepo.mosip-config-url=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # VID policy schema against which VID policy is validated @@ -261,17 +267,22 @@ mosip.credential.request.service.version=1.0 # Reference Id which is used for encryption/decryption of credential request using keymanager mosip.credential.request.crypto-ref-id=credential_request -## Batch job + ## Batch job # batch job time intervel in miliseconds mosip.credential.request.job.timedelay=15000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 +# This property can be set to auth,print or keep it empty so batch will pick up all records# +credential.request.type=auth credential.request.retry.max.count=10 credential.request.reprocess.statuscodes=FAILED,RETRY +credential.batch.core.pool.size=10 +credential.batch.max.pool.size=10 +credential.batch.queue.capacity=10 credential.batch.page.size=10 +credential.batch.chunk.size=10 credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 -credential.batch.status=NEW ## Rest services CRDENTIALSERVICE=${mosip.idrepo.credential.service.url}/v1/credentialservice/issue From 6cc37229640575c692518ef795308b3f658cb3ea Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Thu, 5 Jan 2023 20:42:51 +0530 Subject: [PATCH 1018/1358] [ DSD-1944 ] added properties for ida --- id-authentication-default.properties | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index e3910a38aef..a56dfad4ef1 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -95,6 +95,10 @@ mosip.ida.request.mediaType=application/json ida.mapping.json.filename=identity-mapping.json mosip.ida.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${ida.mapping.json.filename} ida.mapping.property.source=url:${mosip.ida.mapping.json-uri} + +idp.amr-acr.mapping.json.filename=amr-acr-mapping.json +mosip.idp.amr-acr.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${idp.amr-acr.mapping.json.filename} +idp.amr-acr.ida.mapping.property.source=${mosip.idp.amr-acr.mapping.json-uri} # The attribute name in the Mapping Json used to fetch Anonymous profile preferred language attribute mosip.preferred.language.attribute.name=preferredLanguage @@ -114,7 +118,7 @@ ida.id.attribute.separator.fullAddress=, ## Biosdk ## Url below assumes the biosdk server is running inside cluster in `biosdk` namespace mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service -## For real biosdk +# The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 # The version of the BIO SDK API implemeted for Finger modality @@ -417,7 +421,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 ## Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false ## Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureExceptionf +kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException ## Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -478,7 +482,7 @@ mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} ## Partner Management Service allowed partner domains -mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM +mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP # IAM Adapter mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} @@ -539,8 +543,8 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth -ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl - +ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl + ## Demo SDK integration mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 mosip.normalizer.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Normalizer_V_1_0 From e1ccb04aa90c165a832dbd8e83856ce993342842 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 6 Jan 2023 11:21:31 +0530 Subject: [PATCH 1019/1358] [DSD-1944] added DIGITAL_CARD to autogen keys list --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 6e84ec6718e..b60f725afdc 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -333,7 +333,7 @@ datastores=ldap_1_DS,db_1_DS,db_2_DS mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM ## List of keys to auto generate. -mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES +mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 From 9214d63c660de3aa30a5b69ab10e9ebbace680cc Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Fri, 6 Jan 2023 12:01:44 +0530 Subject: [PATCH 1020/1358] [DSD-1958] Added BiometricsQualityCheckValidator to compliance-toolkit-default.properties --- compliance-toolkit-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 30b7c07da57..8344d83a3b0 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -189,3 +189,8 @@ openapi.group.paths[0]=/** springdoc.swagger-ui.disable-swagger-default-url=true springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha + +#SBI BiometricsQualityCheckValidator +mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] \ No newline at end of file From e5a928f08dded1c087320247cb8ef5b66ab8c057 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <rakshitham38@gmail.com> Date: Fri, 6 Jan 2023 12:01:44 +0530 Subject: [PATCH 1021/1358] [DSD-1958] Added BiometricsQualityCheckValidator to compliance-toolkit-default.properties --- compliance-toolkit-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index c990e4e691f..de33b3134c5 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -190,3 +190,8 @@ openapi.group.paths[0]=/** springdoc.swagger-ui.disable-swagger-default-url=true springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha + +#SBI BiometricsQualityCheckValidator +mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] \ No newline at end of file From dcd93427258fcfd5f59e255f5d789c7204ad571f Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 6 Jan 2023 13:58:11 +0530 Subject: [PATCH 1022/1358] [ DSD-1944 ] Updated hsm keystore password variable --- idp-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/idp-default.properties b/idp-default.properties index 169c8526d09..fb0888ab611 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -219,7 +219,7 @@ mosip.kernel.certificate.sign.algorithm=SHA256withRSA #mosip.kernel.keymanager.hsm.config-path=local.p12 #mosip.kernel.keymanager.hsm.keystore-type=PKCS12 -#mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} +#mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.security.pin} #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE mosip.kernel.keymanager.hsm.keystore-type=PKCS11 @@ -229,7 +229,7 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.security.pin} mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io From 1b7f3a2e533ed585825ae68ec50268e0ed9d2f4a Mon Sep 17 00:00:00 2001 From: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> Date: Fri, 6 Jan 2023 14:21:56 +0530 Subject: [PATCH 1023/1358] [DSD-1955]Updated mosip.iam.module.clientID for IDP --- resident-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index f1439d52d27..770fa185aee 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -267,7 +267,7 @@ mosip.iam.module.login_flow.name=authorization_code # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. ################## MOSIP IdP config -mosip.iam.module.clientID=yDHDuozxkePAN340NtmazlDVmrRMkY4z6zH658zYBgI +mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c mosip.iam.module.clientsecret= mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize @@ -734,4 +734,4 @@ sequence-order=Request received, Validation stage, Verification stage, Uin gener mosip.resident.checkstatus.individualid.id=mosip.resident.checkstatus.individualid mosip.resident.checkstatus.individualid.version=1.0 -resident.additional.identity.attribute.to.fetch=UIN,email,phone,dob,name,photo \ No newline at end of file +resident.additional.identity.attribute.to.fetch=UIN,email,phone,dob,name,photo From 44b5c3a0fe5cb5d98eaaae89bad5a0ca43a9e797 Mon Sep 17 00:00:00 2001 From: pramod444 <pramodbelal8@gmail.com> Date: Fri, 6 Jan 2023 16:00:41 +0530 Subject: [PATCH 1024/1358] Updated resident-captcha properties in resident-default.properties. --- resident-default.properties | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 3f131e22d27..d49f5233752 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -2,6 +2,8 @@ # DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server # helm chart: # keycloak.internal.url +# resident.captcha.site.key +# resident.captcha.secret.key # mosip.resident.client.secret # mosip.regproc.client.secret # keycloak.internal.url. @@ -194,6 +196,15 @@ mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production +## Captcha service +## Configuration for google re-captcha +mosip.resident.captcha.enable=true +mosip.resident.captcha.id.validate=mosip.resident.captcha.id.validate +mosip.resident.captcha.sitekey=${resident.captcha.site.key} +mosip.resident.captcha.secretkey=${resident.captcha.secret.key} +mosip.resident.captcha.resourse.url=http://resident-captcha.resident/resident/v1/captcha/validatecaptcha +mosip.resident.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify + #------------Request IDs--------------------- # The request IDs used in Resident REST APIs @@ -210,7 +221,7 @@ resident.view.history.status.filters=all,success,in-progress,failed #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id,mosip.captcha.sitekey,mosip.captcha.secretkey +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey From 6a6710a5173eb8810f4855abb91fa0e68ac86d4c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 6 Jan 2023 16:25:04 +0530 Subject: [PATCH 1025/1358] [ DSD-1944 ] corrected api public domain name --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index fb0888ab611..951a5a09830 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -140,7 +140,7 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://${mosip.api.host}/mosip-certs/ida-partner.cer +mosip.idp.authn.ida.cert-url=https://${mosip.api.public.host}/mosip-certs/ida-partner.cer mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ From 11bbe0630851cac52e95998d0b9cd0058a3ea964 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 6 Jan 2023 18:42:18 +0530 Subject: [PATCH 1026/1358] [DSD-1944] updated licence key --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 951a5a09830..7c96dc6083b 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,7 +26,7 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=hVq9XOvlRokmkG23JL7wAJhEGM5ZzgO7Hnx3omJ1ghMap78nYh +mosip.idp.misp.license.key=znBeKylIcyPFqFcu3wVrtzzgMn93q64L02Tkh2bijY9G8nGeAh # Secure endpoints with required authority mosip.idp.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ From 5e83555b804d4234199eaca3678afac2c45cc8bb Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 9 Jan 2023 10:55:34 +0530 Subject: [PATCH 1027/1358] DSD-1963 : cipher passwords not working for private keys --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 77cf8701915..832e4d05603 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -35,7 +35,7 @@ mosip.event.secret=Kslk30SNF2AChs2 mosip.partner.crypto.p12.filename=keystore.p12 -mosip.partner.crypto.p12.password={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.crypto.p12.password=abc123 mosip.partner.crypto.p12.alias=partner mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 mosip.partner.prependThumbprint=true From 2232165467ecc1ddc86c87b018e7fc00c8b9549c Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 9 Jan 2023 11:51:08 +0530 Subject: [PATCH 1028/1358] MOSIP-25450 Changed partner manager end-point. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 770fa185aee..6d47ff9724b 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -672,7 +672,7 @@ mosip.resident.service.uincard.signature.reason="Digitally Signed" PDFSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/pdf/sign # get partner details -PARTNER_DETAILS_NEW_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/new +PARTNER_DETAILS_NEW_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/v2 #pdf signature appid & refId mosip.resident.sign.pdf.application.id=KERNEL From 97882adb846919bd60038e4c604312066a51b873 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Wed, 11 Jan 2023 11:27:25 +0530 Subject: [PATCH 1029/1358] Update admin-default.properties --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 060e1902f95..4174179c65a 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -71,7 +71,7 @@ mosip.admin.security.policy.userrole-auth-url=${mosip.kernel.authmanager.url}/v1 ## Masterdata cards -mosip.admin.masterdata.lang-code=eng,ara +mosip.admin.masterdata.lang-code=eng,ara,fra mosip.admin-services.required.roles=GLOBAL_ADMIN #masterdata machine From 2687ec240c5d1b7a54ebbcdf66bf6bd73d6374c6 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Wed, 11 Jan 2023 11:35:44 +0530 Subject: [PATCH 1030/1358] MOSIP-25057 --- registration-processor-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 656073b40a0..00dc791bdf7 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -18,7 +18,6 @@ packetmanager.base.url=http://packetmanager.packetmanager/commons ## Health check management.endpoint.health.show-details=always -management.endpoints.web.exposure.include=info,health,refresh ## ABIS # Maximum abis records to be fetched at a time From f671512a3227aec0d33e05d4a28496f2628bb538 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Wed, 11 Jan 2023 11:40:46 +0530 Subject: [PATCH 1031/1358] Update application-default.properties --- application-default.properties | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/application-default.properties b/application-default.properties index 8aa05f0a98e..efaa89ce00a 100644 --- a/application-default.properties +++ b/application-default.properties @@ -92,7 +92,7 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng @@ -252,7 +252,7 @@ mosip.kernel.otp.default-length=6 ## Default crypto function: HmacSHA512, HmacSHA256, HmacSHA1. mosip.kernel.otp.mac-algorithm=HmacSHA512 ## OTP expires after the given time (in seconds). -mosip.kernel.otp.expiry-time=60 +mosip.kernel.otp.expiry-time=180 ## Key is frozen for the given time (in seconds). mosip.kernel.otp.key-freeze-time=1800 ## Number of validation attempts allowed. @@ -277,6 +277,7 @@ mosip.kernel.virus-scanner.port=3310 ## Transliteration mosip.kernel.transliteration.arabic-language-code=ara mosip.kernel.transliteration.english-language-code=eng +mosip.kernel.transliteration.french-language-code=fra ## DOB mosip.default.dob.month=01 @@ -411,11 +412,11 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges mosip.optional-languages=ara -mosip.min-languages.count=1 -mosip.max-languages.count=2 +mosip.min-languages.count=2 +mosip.max-languages.count=3 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara +mosip.default.template-languages=eng,ara,fra # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang From 1c881949a4f94c31304778047060304addcf0233 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Wed, 11 Jan 2023 11:46:38 +0530 Subject: [PATCH 1032/1358] Update mimoto-default.properties --- mimoto-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 472948e4bf1..75e47f8afb4 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng From df9331b474577bb24705190cbf25f40022746c88 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Wed, 11 Jan 2023 11:49:27 +0530 Subject: [PATCH 1033/1358] Update print-default.properties --- print-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/print-default.properties b/print-default.properties index d993652f9d7..f2c1f7fbb0c 100644 --- a/print-default.properties +++ b/print-default.properties @@ -55,9 +55,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng ## CBEFF util @@ -74,7 +74,7 @@ mosip.kernel.tokenid.length=36 ## log level logging.level.root=INFO -logging.level.io.mosip=DEBUG +logging.level.io.mosip=INFO logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## tomcat access logs From 3aaaf8581eec3e2505501c6c9d0d410514ae5b70 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Wed, 11 Jan 2023 11:50:21 +0530 Subject: [PATCH 1034/1358] Update resident-app-default.properties --- resident-app-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/resident-app-default.properties b/resident-app-default.properties index dcf8f091b70..8c45381053b 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng From 4b10a9c0f3daf1476d87542c4e7f3e7f1661e0c2 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 16 Jan 2023 11:07:35 +0530 Subject: [PATCH 1035/1358] removing auth type lock finger for internal auth removed io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 9061e2af96b..4da677bacca 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -539,7 +539,7 @@ ida.fetch.failed.websub.messages.chunk.size=10 #Auth Filters for external auth ida.mosip.external.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.PartnerIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceProviderHotlistFilterImpl,io.mosip.authentication.hotlistfilter.impl.DeviceHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl #Auth Filters for kyc auth -ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl,io.mosip.authentication.authtypelockfilter.impl.AuthTypeLockFilterImpl +ida.mosip.internal.auth.filter.classes.in.execution.order=io.mosip.authentication.hotlistfilter.impl.IndividualIdHotlistFilterImpl,io.mosip.authentication.childauthfilter.impl.ChildAuthFilterImpl ## Demo SDK integration mosip.demographic.sdk.api.classname=io.mosip.demosdk.client.impl.spec_1_0.Client_V_1_0 From 97f7df78187bc83eb6d5a03a7c210d41e24778f2 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 16 Jan 2023 11:54:44 +0530 Subject: [PATCH 1036/1358] MOSIP-23978 Added password enable property for pdf. (#3176) --- application-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/application-default.properties b/application-default.properties index efaa89ce00a..3171d25e515 100644 --- a/application-default.properties +++ b/application-default.properties @@ -434,3 +434,7 @@ openapi.service.servers[0].url=${mosip.api.internal.url}${server.servlet.context openapi.service.servers[0].description=For Swagger mosip.auth.filter_disable=false + +# PDF Digital card is protected with password using below property based on define attribute it will encrypt by taking first 4 character. +mosip.digitalcard.uincard.password=fullName|dateOfBirth +mosip.digitalcard.pdf.password.enable.flag=true From 814f046424d7030470d4ccecf4794d2d8392e005 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Tue, 17 Jan 2023 15:58:09 +0530 Subject: [PATCH 1037/1358] disabled captcha mosip.preregistration.captcha.enable=false --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index d200225b120..947813721e8 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -381,7 +381,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=true +mosip.preregistration.captcha.enable=false mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} From 1eafaf7a5fe7be59b0f5170d1139e22bddbc4e51 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Tue, 17 Jan 2023 16:38:00 +0530 Subject: [PATCH 1038/1358] enable captcha mosip.preregistration.captcha.enable=true --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 947813721e8..d200225b120 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -381,7 +381,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=false +mosip.preregistration.captcha.enable=true mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} From d3cd0ebf5c60aef3c4589e55742157194ec2e120 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Tue, 17 Jan 2023 16:44:26 +0530 Subject: [PATCH 1039/1358] pre.reg.login.otp.validation-attempt-threshold=10 added new property pre.reg.login.otp.validation-attempt-threshold=10 --- pre-registration-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index d200225b120..747add3880d 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -276,6 +276,7 @@ otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template +pre.reg.login.otp.validation-attempt-threshold=10 ## Login service mosip.preregistration.login.service.version=1.0 From 463baa2603d9f869b6176ad547f579e48d5ab625 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Tue, 17 Jan 2023 18:28:04 +0530 Subject: [PATCH 1040/1358] qa-1201-b2 env url added for finger quality check --- compliance-toolkit-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 8344d83a3b0..0a80ce167ec 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -191,6 +191,6 @@ springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator -mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] \ No newline at end of file +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] From d01597a39232c69e15e5a19ac62c811c90d6cb95 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 17 Jan 2023 19:21:44 +0530 Subject: [PATCH 1041/1358] [ MOSIP-25730 ] [ DSD-1954 ] updated properties id-authentication-default.properties mimoto-default.properties --- id-authentication-default.properties | 2 +- mimoto-default.properties | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index a56dfad4ef1..dee72a8cbc3 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -622,6 +622,6 @@ mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SU #logging.level.root=DEBUG # Secret will be used during kyc token generation. -mosip.ida.kyc.token.secret=${mosip_ida_kyc_token_secret} +mosip.ida.kyc.token.secret=${mosip.ida.kyc.token.secret} kyc.token.expire.time.adjustment.seconds=300 kyc.exchange.default.lang=eng diff --git a/mimoto-default.properties b/mimoto-default.properties index 75e47f8afb4..b29c75cb8f2 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -35,9 +35,9 @@ mosip.event.secret=Kslk30SNF2AChs2 mosip.partner.crypto.p12.filename=keystore.p12 -mosip.partner.crypto.p12.password=${mosip_partner_crypto_p12_password} +mosip.partner.crypto.p12.password=${mosip.partner.crypto.p12.password} mosip.partner.crypto.p12.alias=partner -mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.encryption.key=${mosip.partner.crypto.p12.password} mosip.partner.prependThumbprint=true From 0defdf04de18d2c38cb2182598ca2d7a1f564d05 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 17 Jan 2023 19:56:40 +0530 Subject: [PATCH 1042/1358] [ MOSIP-25730 ] [ DSD-1954 ] updated properties id-authentication-default.properties mimoto-default.properties removed ida-partner.cer --- id-authentication-default.properties | 4 ++-- ida-partner.cer | 22 ---------------------- mimoto-default.properties | 4 ++-- 3 files changed, 4 insertions(+), 26 deletions(-) delete mode 100644 ida-partner.cer diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4da677bacca..0d585b52bee 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -560,7 +560,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://idp.qa-1201-b2.mosip.net +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.idp.host} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX @@ -618,7 +618,7 @@ mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SU #logging.level.root=DEBUG # Secret will be used during kyc token generation. -mosip.ida.kyc.token.secret=j91eRPq0n4zbOZFQ6uBgWMwV7lnV8_2mpRw_sozLSdQ +mosip.ida.kyc.token.secret=${mosip.ida.kyc.token.secret} kyc.token.expire.time.adjustment.seconds=300 kyc.exchange.default.lang=eng diff --git a/ida-partner.cer b/ida-partner.cer deleted file mode 100644 index 51ced6ec5b9..00000000000 --- a/ida-partner.cer +++ /dev/null @@ -1,22 +0,0 @@ ------BEGIN CERTIFICATE----- -MIIDrDCCApSgAwIBAgIIkcTLqBQn22gwDQYJKoZIhvcNAQELBQAwdjELMAkGA1UE -BhMCSU4xCzAJBgNVBAgMAktBMRIwEAYDVQQHDAlCQU5HQUxPUkUxDTALBgNVBAoM -BElJVEIxIDAeBgNVBAsMF01PU0lQLVRFQ0gtQ0VOVEVSIChJREEpMRUwEwYDVQQD -DAx3d3cubW9zaXAuaW8wHhcNMjIxMjA4MTMzNjM1WhcNMjQxMjA3MTMzNjM1WjB1 -MQswCQYDVQQGEwJJTjELMAkGA1UECAwCS0ExEjAQBgNVBAcMCUJBTkdBTE9SRTEN -MAsGA1UECgwESUlUQjEgMB4GA1UECwwXTU9TSVAtVEVDSC1DRU5URVIgKElEQSkx -FDASBgNVBAMMC0lEQS1QQVJUTkVSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB -CgKCAQEAv/SoHX9OB0hR3CGLj/1yaTk5mV48Fi/Wx1nd2gAMe76wre3X7Dz/KyM4 -rCEWryEnIGM1Zj3vGsb1OTxOOQk/zfmVOMwy0uJ3RPM8yKOQu+cJLEUSWho8ILTO -3HU95XMBJVbwFce1H7Ml2GjinF8tV0REVkEqC1FbB8yNdg+qvmrczx3X0svikAz7 -LB8eWIrWeiDiPlfgfCPMxCx5DaUWgM3/6jtUfax0Hye6P0deOVqWOQznxmdNLdT8 -SyInL3pp0fWdok8yltm80/QK8WQAnjozXDUJh/PegllKZ/9Kt85yp0LIMBie+WqO -cbooTFtk3d10xlfQ7tzklr667Xw9HwIDAQABoz8wPTAMBgNVHRMBAf8EAjAAMB0G -A1UdDgQWBBRU99+vXO8/C22alMyvmL78AuavkTAOBgNVHQ8BAf8EBAMCBSAwDQYJ -KoZIhvcNAQELBQADggEBAJAREKQTnU5nplLnLj8/f0vACxHnEwl/0Qw/APwyocz+ -rhkBloDlrw8/gVJ/1uXuBZz05kb2fBtdmlMpCty30EjWVcd5p7Wkew2TLR6xjeXG -TElnS9TOqTcHEaGGw9l96Gyv4PDYUkKlikqeiU4qLcozakM8wbGT7RYXFSN63jJs -fE3/ImGEgXb6d1WX4+W1sVz0Nhj4Pt7f/pSJ2WKSnP7G/5TMKT0kW/dG4RAvaBmO -V6QikZe9LWrSlapedXnjx74AJoEXD972LWcbxlutrVfOFnj94KWJG5cJ3eAV0Fi6 -JE4RZGnecRX7yZa6d0cziAF0eF8M/ibvRKagmybkckM= ------END CERTIFICATE----- diff --git a/mimoto-default.properties b/mimoto-default.properties index 832e4d05603..b29c75cb8f2 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -35,9 +35,9 @@ mosip.event.secret=Kslk30SNF2AChs2 mosip.partner.crypto.p12.filename=keystore.p12 -mosip.partner.crypto.p12.password=abc123 +mosip.partner.crypto.p12.password=${mosip.partner.crypto.p12.password} mosip.partner.crypto.p12.alias=partner -mosip.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +mosip.partner.encryption.key=${mosip.partner.crypto.p12.password} mosip.partner.prependThumbprint=true From f0602ca1697984258a1fc9613c0e9137d505e1e8 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 17 Jan 2023 20:22:44 +0530 Subject: [PATCH 1043/1358] [ MOSIP-25730 ] [ DSD-1954 ] updated properties id-authentication-default.properties mimoto-default.properties removed ida-partner.cer updated ida-partner.cer url --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 439cc451fe4..71a4f8e2a01 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -140,7 +140,7 @@ mosip.idp.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300, 'aut ## ------------------------------------------ Auth Wrapper ------------------------------------------------ mosip.idp.authn.wrapper.impl=IdentityAuthenticationService -mosip.idp.authn.ida.cert-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/ida-partner.cer +mosip.idp.authn.ida.cert-url=https://${mosip.api.public.host}/mosip-certs/ida-partner.cer mosip.idp.authn.ida.kyc-auth-url=${mosip.api.internal.url}/idauthentication/v1/kyc-auth/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.kyc-exchange-url=${mosip.api.internal.url}/idauthentication/v1/kyc-exchange/delegated/${mosip.idp.misp.license.key}/ mosip.idp.authn.ida.send-otp-url=${mosip.api.internal.url}/idauthentication/v1/otp/${mosip.idp.misp.license.key}/ From f5968f7a8aed65a91cf7be2635714e3eb0299bb7 Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 18 Jan 2023 14:05:46 +0530 Subject: [PATCH 1044/1358] ida.child-auth-filter.child.max.age=5 changed the above value to 3 --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 0d585b52bee..a72735fca08 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -526,7 +526,7 @@ cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.ti # Child Auth Filter configurations ida.child-auth-filter.factors.denied=otp,bio -ida.child-auth-filter.child.max.age=5 +ida.child-auth-filter.child.max.age=3 # The chunk size of failed message items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. ida.fetch.failed.websub.messages.chunk.size=10 From 0d666ef378a2bbf84fcac0ad517e138b16c662d4 Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 18 Jan 2023 15:58:34 +0530 Subject: [PATCH 1045/1358] ida.child-auth-filter.factors.denied=bio Removed otp from above property --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index a72735fca08..c0ef196aaed 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -525,8 +525,8 @@ cred-request-service-retrigger-cred-issuance.rest.headers.mediaType=${mosip.ida. cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.timeout.secs} # Child Auth Filter configurations -ida.child-auth-filter.factors.denied=otp,bio -ida.child-auth-filter.child.max.age=3 +ida.child-auth-filter.factors.denied=bio +ida.child-auth-filter.child.max.age=5 # The chunk size of failed message items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. ida.fetch.failed.websub.messages.chunk.size=10 From 8d65166b4fb90cd6105fac9efefe96e0c797d7ff Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Wed, 18 Jan 2023 16:06:04 +0530 Subject: [PATCH 1046/1358] Reverted back the changes. --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index c0ef196aaed..0d585b52bee 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -525,7 +525,7 @@ cred-request-service-retrigger-cred-issuance.rest.headers.mediaType=${mosip.ida. cred-request-service-retrigger-cred-issuance.rest.timeout=${mosip.ida.request.timeout.secs} # Child Auth Filter configurations -ida.child-auth-filter.factors.denied=bio +ida.child-auth-filter.factors.denied=otp,bio ida.child-auth-filter.child.max.age=5 # The chunk size of failed message items to be processed in spring batch. This value also assigned to the thread count, and hence all the items are processed in parellel asynchronusly. From 9734d9014a71b6c1a5ad954c6336538d59ede5e7 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Wed, 18 Jan 2023 20:43:37 +0530 Subject: [PATCH 1047/1358] [DSD-2012] Added property files for idp-binding-service, inji and mimoto --- idp-binding-default.properties | 128 +++++++++++++++++++++++++++++++++ inji-default.properties | 16 +++++ mimoto-default.properties | 15 +++- 3 files changed, 156 insertions(+), 3 deletions(-) create mode 100644 idp-binding-default.properties create mode 100644 inji-default.properties diff --git a/idp-binding-default.properties b/idp-binding-default.properties new file mode 100644 index 00000000000..4fbe99f2921 --- /dev/null +++ b/idp-binding-default.properties @@ -0,0 +1,128 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at https://mozilla.org/MPL/2.0/. + +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url +# keycloak.admin.password +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret +# softhsm.kernel.pin +# softhsm-security-pin +# email.smtp.host +# email.smtp.username +# email.smtp.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt +# mosip.api.internal.url +# mosip.api.public.url +# mosipbox.public.url + +## -------------------------------------------- IdP Binding ------------------------------------------------------------ +mosip.idp.binding.issuer-id=${mosipbox.public.url}${server.servlet.path} +mosip.idp.binding.public-key-expire-days=10 +mosip.idp.binding.salt-length=16 + +mosip.idp.binding.send-binding-otp=SCOPE_send_binding_otp +mosip.idp.binding.wallet-binding=SCOPE_wallet_binding +mosip.idp.binding.systeminfo.get-certificate=SCOPE_get_certificate + +mosip.idp.binding.auth-ignore-urls=${server.servlet.path}/validate-binding/**,${server.servlet.path}/actuator/**,/favicon.ico,\ + /v1/notifier/actuator/prometheus,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ + ${server.servlet.path}/v3/api-docs/** + +spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip +spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs + +mosip.idp.binding.validate-binding-url=${mosipbox.public.url}${server.servlet.path}/validate-binding +mosip.idp.binding.encrypt-binding-id=false + +mosip.idp.binding.wrapper.impl=MockKeyBindingWrapperService +mosip.idp.authn.wrapper.validate-binding-url=${mosip.idp.binding.validate-binding-url} +mosip.idp.binding.key-expire-days=10 + +management.health.redis.enabled=false + +##----------------------------------------- Database properties -------------------------------------------------------- + +mosip.idp.database.hostname=postgres-postgresql.postgres +mosip.idp.database.port=5432 +spring.datasource.url=jdbc:postgresql://${mosip.idp.database.hostname}:${mosip.idp.database.port}/mosip_idpbinding?currentSchema=idpbinding +spring.datasource.username=idpbindinguser +spring.datasource.password=${db.dbuser.password} + +spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect +spring.jpa.show-sql=false +spring.jpa.hibernate.ddl-auto=none +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + +#------------------------------------ Key-manager specific properties -------------------------------------------------- +#Crypto asymmetric algorithm name +mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING +#Crypto symmetric algorithm name +mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding +#Keygenerator asymmetric algorithm name +mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA +#Keygenerator symmetric algorithm name +mosip.kernel.keygenerator.symmetric-algorithm-name=AES +#Asymmetric algorithm key length +mosip.kernel.keygenerator.asymmetric-key-length=2048 +#Symmetric algorithm key length +mosip.kernel.keygenerator.symmetric-key-length=256 +#Encrypted data and encrypted symmetric key separator +mosip.kernel.data-key-splitter=#KEY_SPLITTER# +#GCM tag length +mosip.kernel.crypto.gcm-tag-length=128 +#Hash algo name +mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 +#Symmtric key length used in hash +mosip.kernel.crypto.hash-symmetric-key-length=256 +#No of iterations in hash +mosip.kernel.crypto.hash-iteration=100000 +#Sign algo name +mosip.kernel.crypto.sign-algorithm-name=RS256 +#Certificate Sign algo name +mosip.kernel.certificate.sign.algorithm=SHA256withRSA + +#mosip.kernel.keymanager.hsm.config-path=local.p12 +#mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +#mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} + +#Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +# For PKCS11 provide Path of config file. +# For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. +# For Offline & JCE property can be left blank, specified value will be ignored. +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +# Passkey of keystore for PKCS11, PKCS12 +# For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} + +mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io +mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER +mosip.kernel.keymanager.certificate.default.organization=IITB +mosip.kernel.keymanager.certificate.default.location=BANGALORE +mosip.kernel.keymanager.certificate.default.state=KA +mosip.kernel.keymanager.certificate.default.country=IN + +mosip.kernel.keymanager.softhsm.certificate.common-name=www.mosip.io +mosip.kernel.keymanager.softhsm.certificate.organizational-unit=MOSIP +mosip.kernel.keymanager.softhsm.certificate.organization=IITB +mosip.kernel.keymanager.softhsm.certificate.country=IN + +# Application Id for PMS master key. +mosip.kernel.partner.sign.masterkey.application.id=PMS +mosip.kernel.partner.allowed.domains=DEVICE + +mosip.kernel.keymanager-service-validate-url=https://${mosip.hostname}/keymanager/validate +mosip.kernel.keymanager.jwtsign.validate.json=false +mosip.keymanager.dao.enabled=false +crypto.PrependThumbprint.enable=true \ No newline at end of file diff --git a/inji-default.properties b/inji-default.properties new file mode 100644 index 00000000000..55da551e13c --- /dev/null +++ b/inji-default.properties @@ -0,0 +1,16 @@ +#################### add prefix as mosip.inji. for all new properties here #################### + +mosip.inji.allowedAuthType=demo,otp,bio-Finger,bio-Iris,bio-Face +mosip.inji.allowedEkycAuthType=demo,otp,bio-Finger,bio-Iris,bio-Face +mosip.inji.allowedInternalAuthType=otp,bio-Finger,bio-Iris,bio-Face +mosip.inji.faceSdkModelUrl=https://drive.google.com/u/0/uc?id=1Z8Puici9alcmH-oU-VoXlHXCagAe1ago&export=download +# maximum number of retry for downloading vc +mosip.inji.vcDownloadMaxRetry=10 +# pool interval in milli seconds +mosip.inji.vcDownloadPoolInterval=6000 +# validate binding audience url to be sent in token +mosip.inji.audience=${mosip.api.internal.url}/v1/idpbinding/validate-binding +# issuer to be sent in token +mosip.inji.issuer=residentapp +# warning screen domain name +mosip.inji.warningDomainName=https://www.mosiphealthservices.com \ No newline at end of file diff --git a/mimoto-default.properties b/mimoto-default.properties index b29c75cb8f2..0b71f812a6c 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -2,7 +2,8 @@ public.url=${mosip.api.internal.url}/residentmobileapp mosip.resident.base.url=${mosip.resident.url}/resident/v1 - +idp.base.url=${mosip.api.public.host}/v1/idp/linked-authorization +idp.binding.base.url=${mosip.api.public.host}/v1/idpbinding RESIDENT_OTP=${mosip.resident.base.url}/req/otp RESIDENT_CREDENTIAL_REQUEST=${mosip.resident.base.url}/req/credential @@ -10,7 +11,14 @@ RESIDENT_CREDENTIAL_REQUEST_STATUS=${RESIDENT_CREDENTIAL_REQUEST}/status RESIDENT_VID=${mosip.resident.base.url}/vid RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock - +RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/req/individualId/otp +RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/get-individual-id +IDP_LINK_TRANSACTION=${idp.base.url}/link-transaction +IDP_AUTHENTICATE=${idp.base.url}/authenticate +IDP_CONSENT=${idp.base.url}/consent +IDP_OTP=${idp.base.url}/send-otp +BINDING_OTP=${idp.binding.base.url}/binding-otp +WALLET_BINDING=${idp.binding.base.url}/wallet-binding # Resident App credential.template=template.json @@ -123,7 +131,7 @@ mosip.kernel.tokenid.length=36 # log level logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG # logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG logging.level.org.springframework.http.client=DEBUG @@ -173,3 +181,4 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} +vercred.type.vid=VID \ No newline at end of file From 824c60432e497685c45d2f785e965433c2251f50 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Wed, 18 Jan 2023 20:46:42 +0530 Subject: [PATCH 1048/1358] [DSD-2012] Updated idp property --- idp-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/idp-default.properties b/idp-default.properties index 71a4f8e2a01..7c13b4f5e71 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -154,6 +154,8 @@ mosip.idp.authn.mock.impl.persona-repo=/home/mosip/mock-auth-data mosip.idp.authn.mock.impl.policy-repo=/home/mosip/mock-auth-data mosip.idp.authn.mock.impl.claims-mapping-file=/home/mosip/mock-auth-data/claims_attributes_mapping.json +mosip.idp.authn.wrapper.validate-binding-url=https://${mosip.api.public.host}/v1/idpbinding/validate-binding + ## ------------------------------------------ Discovery openid-configuration ------------------------------------------------ mosip.idp.domain.url=https://${mosip.api.public.host} mosip.idp.discovery.issuer-id=${mosip.idp.domain.url}${server.servlet.path} From 96316589a2c09bde2d2d3098dd9b11fc5ea92299 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Thu, 19 Jan 2023 16:15:29 +0530 Subject: [PATCH 1049/1358] MOSIP-25739 config changes --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index efaa89ce00a..dcb4475b4bd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,6 +359,8 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter +## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name +object.store.s3.bucket-name-prefix=mgr- # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl From 98349954c125303b9b36e83dc31eeda9fa5b8e93 Mon Sep 17 00:00:00 2001 From: AswinG123 <120560207+AswinG123@users.noreply.github.com> Date: Fri, 20 Jan 2023 11:42:11 +0530 Subject: [PATCH 1050/1358] Disabled the captcha for testing purpose. (#3236) In line number 385, I made captcha value is false. --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 747add3880d..92d1e07ab17 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -382,7 +382,7 @@ mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ ## Captcha service ## Configuration for google re-captcha -mosip.preregistration.captcha.enable=true +mosip.preregistration.captcha.enable=false mosip.preregistration.captcha.id.validate=mosip.pre-registration.captcha.id.validate mosip.preregistration.captcha.sitekey=${prereg.captcha.site.key} mosip.preregistration.captcha.secretkey=${prereg.captcha.secret.key} From 9b10e5f97f39924f2974e314cf7a6fc4d5cbe984 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Fri, 20 Jan 2023 12:28:37 +0530 Subject: [PATCH 1051/1358] MOSIP-25739 config changes (#3221) --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index efaa89ce00a..dcb4475b4bd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,6 +359,8 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter +## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name +object.store.s3.bucket-name-prefix=mgr- # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl From f3f2ea6174e7217eaaf7c53fbaefb0c816c6dc7d Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Fri, 20 Jan 2023 16:09:45 +0530 Subject: [PATCH 1052/1358] [DSD-2042] Updated config changes for mimoto --- mimoto-default.properties | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 0b71f812a6c..3fd41fb990f 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -2,8 +2,8 @@ public.url=${mosip.api.internal.url}/residentmobileapp mosip.resident.base.url=${mosip.resident.url}/resident/v1 -idp.base.url=${mosip.api.public.host}/v1/idp/linked-authorization -idp.binding.base.url=${mosip.api.public.host}/v1/idpbinding +idp.base.url=https://${mosip.api.public.host}/v1/idp/linked-authorization +idp.binding.base.url=${mosip.api.internal.url}/v1/idpbinding RESIDENT_OTP=${mosip.resident.base.url}/req/otp RESIDENT_CREDENTIAL_REQUEST=${mosip.resident.base.url}/req/credential @@ -11,8 +11,8 @@ RESIDENT_CREDENTIAL_REQUEST_STATUS=${RESIDENT_CREDENTIAL_REQUEST}/status RESIDENT_VID=${mosip.resident.base.url}/vid RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock -RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/req/individualId/otp -RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/get-individual-id +RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/individualId/otp +RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/status IDP_LINK_TRANSACTION=${idp.base.url}/link-transaction IDP_AUTHENTICATE=${idp.base.url}/authenticate IDP_CONSENT=${idp.base.url}/consent @@ -107,7 +107,7 @@ registration.processor.signature.isEnabled=true mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=fra,ara mosip.mandatory-languages=eng # mosip.primary-language=eng @@ -181,4 +181,4 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} -vercred.type.vid=VID \ No newline at end of file +vercred.type.vid=VID From b3defde40a52e96671c7f7e4086366f98126e498 Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Fri, 20 Jan 2023 16:38:27 +0530 Subject: [PATCH 1053/1358] [DSD-2042] Updated config changes for mimoto --- idp-default.properties | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/idp-default.properties b/idp-default.properties index 7c13b4f5e71..07119fa49df 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -37,17 +37,18 @@ mosip.idp.security.auth.get-urls={'${server.servlet.path}/system-info/**' : { 'S # CSRF token check disabled endpoints mosip.idp.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,\ - ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus,\ - ${server.servlet.path}/system-info/** + ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,\ + ${server.servlet.path}/system-info/**,${server.servlet.path}/linked-authorization/link-transaction,\ + ${server.servlet.path}/linked-authorization/authenticate,${server.servlet.path}/linked-authorization/consent # Authentication ignored endpoint (permit-all) mosip.idp.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/**,/v1/notifier/actuator/prometheus + ${server.servlet.path}/v3/api-docs/** -mosip.idp.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/qa-1201-B2/amr-acr-mapping.json +mosip.idp.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json #spring.autoconfigure.exclude[0]=org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip @@ -154,7 +155,8 @@ mosip.idp.authn.mock.impl.persona-repo=/home/mosip/mock-auth-data mosip.idp.authn.mock.impl.policy-repo=/home/mosip/mock-auth-data mosip.idp.authn.mock.impl.claims-mapping-file=/home/mosip/mock-auth-data/claims_attributes_mapping.json -mosip.idp.authn.wrapper.validate-binding-url=https://${mosip.api.public.host}/v1/idpbinding/validate-binding +mosip.idp.authn.wrapper.validate-binding-url=${mosip.api.internal.url}/v1/idpbinding/validate-binding + ## ------------------------------------------ Discovery openid-configuration ------------------------------------------------ mosip.idp.domain.url=https://${mosip.api.public.host} From dd3dba89a5a364a25a221819cb3369024d94149c Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Sat, 21 Jan 2023 00:05:05 +0530 Subject: [PATCH 1054/1358] Updated quality check sdk urls for face and iris --- compliance-toolkit-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 0a80ce167ec..351280b3e4c 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -192,5 +192,5 @@ springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] From 3f8b155b3a3434d463028acd83fd15105afa34e4 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Sat, 21 Jan 2023 00:21:42 +0530 Subject: [PATCH 1055/1358] Updated quality check url for face --- compliance-toolkit-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 351280b3e4c..9cecffb41d2 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -192,5 +192,5 @@ springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] +mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] From 3d75fc565f9ac9d67f15082e10d24835fba6ef7a Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 23 Jan 2023 10:50:00 +0530 Subject: [PATCH 1056/1358] DSD-2045 Moved dev2 resident config to qa 1201 b2 --- resident-default.properties | 21 ++++++++++++++++----- 1 file changed, 16 insertions(+), 5 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 6d47ff9724b..59478f49836 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -80,6 +80,7 @@ resident.event.ack.download.id=mosip.resident.event.ack.download resident.event.ack.download.version=1.0 resident.download.card.eventid.id =mosip.resident.download.card.eventid resident.download.card.eventid.version=1.0 +resident.version.new=1.0 ## Token generation token.request.id=io.mosip.resident @@ -204,8 +205,7 @@ mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} mosip.service-context=/resident/v1 ## The exclusion list of URL patterns that should not be part of authentication and authorization -mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/get-individual-id,/**/req/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registrationcenters/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user,/**/status/individualId/** - +mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/status,/**/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registration-centers-list/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user,/**/aid-stage/** mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production @@ -231,11 +231,11 @@ mosip.resident.api.version.otp.request=1.0 mosip.resident.api.version.auth=1.0 resident.view.history.serviceType.filters=ALL,AUTHENTICATION_REQUEST,SERVICE_REQUEST,DATA_UPDATE_REQUEST,ID_MANAGEMENT_REQUEST,DATA_SHARE_REQUEST -resident.view.history.status.filters=all,success,in-progress,failed +resident.view.history.status.filters=all,Success,In Progress,Failed #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,resident.vid.version,resident.revokevid.version,resident.vid.id,resident.revokevid.id,auth.type.status.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,resident.vid.policy.id,resident.vid.get.id,resident.vid.version.new,resident.revokevid.version.new,resident.vid.id.generate,mosip.resident.revokevid.id,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,resident.contact.details.update.id,resident.contact.details.send.otp.id +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters @@ -731,7 +731,18 @@ mosip.resident.message.code.maximum.length=1024 GET_RID_STATUS=${mosipbox.public.url}/registrationprocessor/v1/registrationtransaction/search/{rid} sequence-order=Request received, Validation stage, Verification stage, Uin generation stage, Card ready to download -mosip.resident.checkstatus.individualid.id=mosip.resident.checkstatus.individualid +mosip.resident.checkstatus.individualid.id=mosip.resident.check-stage-status mosip.resident.checkstatus.individualid.version=1.0 resident.additional.identity.attribute.to.fetch=UIN,email,phone,dob,name,photo + +resident.template.ack.authentication.request=acknowledgment-authentication-request +resident.template.ack.get.my.id=acknowledgment-get-my-id +resident.template.ack.vid.card.download=acknowledgment-vid-card-download +resident.template.purpose.success.vid-card-download=vid-card-download-positive-purpose +resident.template.purpose.failure.vid-card-download=vid-card-download-negative-purpose +resident.template.summary.success.vid-card-download=vid-card-download-positive-summary +resident.ui.datetime.pattern=yyyy-MM-dd HH:mm:ss +resident.filename.datetime.pattern=yyyy-MM-dd'T'HH_mm_ss +## The Registration centers will be searched based on the distance value in meters from the Geo location identified +resident.nearby.centers.distance.meters=2000 From f22503206db31b2dc94f84ce7d0fe4cda15a8b11 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 23 Jan 2023 10:52:17 +0530 Subject: [PATCH 1057/1358] Update application-default.properties --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 3171d25e515..aeb506fe362 100644 --- a/application-default.properties +++ b/application-default.properties @@ -55,7 +55,7 @@ mosip.resident.url=http://resident.resident mosip.artifactory.url=http://artifactory.artifactory kafka.profile=kafka.svc.cluster.local kafka.port=9092 - +mosip.digitalcard.service.url=http://digitalcard.digitalcard config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ From 7a808ff0b32cd946dcccbd6315140408d9286a92 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 23 Jan 2023 10:56:38 +0530 Subject: [PATCH 1058/1358] Update resident-default.properties --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 59478f49836..c59c100e17d 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -713,7 +713,7 @@ mosip.resident.name.token.claim-name=name mosip.resident.photo.token.claim-photo=picture mosip.resident.individual.id.claim.name=individual_id mosip.resident.email.token.claim-email=email -mosip.resident.phone.token.claim-phone=phone_number +mosip.resident.phone.token.claim-phone=phone mosip.resident.applicant.name.property=applicantName mosip.resident.photo.attribute.name=photo From c3a5f9ad84f6afb0c030a8a697371870f470460c Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Mon, 23 Jan 2023 10:58:36 +0530 Subject: [PATCH 1059/1358] Updated Bio quality check urls for Iris --- compliance-toolkit-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 9cecffb41d2..dc04f971811 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -193,4 +193,4 @@ springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] -mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] From d96fe97c67d7080b1990232d77415a9760bb40b8 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 23 Jan 2023 14:05:18 +0530 Subject: [PATCH 1060/1358] Added latest schema for personalized card --- resident-ui-personalized-card-schema.json | 1830 +++++++++++---------- 1 file changed, 936 insertions(+), 894 deletions(-) diff --git a/resident-ui-personalized-card-schema.json b/resident-ui-personalized-card-schema.json index 5fba7ed748b..85c7380f804 100644 --- a/resident-ui-personalized-card-schema.json +++ b/resident-ui-personalized-card-schema.json @@ -1,895 +1,937 @@ { - "identity": [ - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "title", - "description": "Title", - "labelName": { - "eng": "Title", - "ara": "عنوان", - "hin": "पशीर्षक", - "kan": "ಶೀರ್ಷಿಕೆ", - "tam": "தலைப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "ara": "الاسم الكامل", - "fra": "Nom complet", - "hin": "पूरा नाम", - "kan": "ಪೂರ್ಣ ಹೆಸರು", - "tam": "முழு பெயர்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "ara": "تاريخ الولادة", - "fra": "Date de naissance", - "hin": "जन्म की तारीख", - "kan": "ಹುಟ್ತಿದ ದಿನ", - "tam": "பிறந்த தேதி" - }, - "controlType": "ageDate", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true - }, - { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "ara": "جنس", - "fra": "Le genre", - "hin": "लिंग", - "kan": "ಲಿಂಗ", - "tam": "பாலினம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "nationality", - "description": "nationality", - "labelName": { - "fra": "Nationalité", - "ara": "الجنسية", - "eng": "Nationality", - "hin": "राष्ट्रीयता", - "kan": "ರಾಷ್ಟ್ರೀಯತೆ", - "tam": "தேசியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "flagb", - "description": "Je suis né(e) au maroc", - "labelName": { - "fra": "Je suis né(e) au maroc", - "ara": "ولدت في المغرب", - "eng": "I was born in Morocco", - "hin": "झंडाब", - "kan": "ಧ್ವಜ", - "tam": "கொடி" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "personal_info", - "preview": true - }, - { - "id": "placeOfBirth", - "description": "Lieu de naissance", - "labelName": { - "fra": "Lieu de naissance", - "ara": "مكان الإزدياد", - "eng": "Place of birth", - "hin": "जन्म स्थान", - "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", - "tam": "பிறந்த இடம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "listCountry", - "description": "Pay de naissance", - "labelName": { - "fra": "Pay de naissance", - "ara": "بلد الإزدياد", - "eng": "Birth Pay", - "hin": "सूचीदेश", - "kan": "ಪಟ್ಟಿ ದೇಶ", - "tam": "பட்டியல் நாடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "ara": "منطقة", - "fra": "Région", - "hin": "ऊपरी क्षेत्र", - "kan": "ಪ್ರದೇಶ", - "tam": "பிராந்தியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 1, - "parentLocCode": "MOR", - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "ara": "المحافظة", - "fra": "Province", - "hin": "प्रांत", - "kan": "ಪ್ರಾಂತ್ಯ", - "tam": "மாகாணம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 2, - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "ara": "مدينة", - "fra": "Ville", - "hin": "शहर", - "kan": "ನಗರ", - "tam": "நகரம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 3, - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "ara": "منطقة", - "fra": "Zone", - "hin": "क्षेत्र", - "kan": "ವಲಯ", - "tam": "மண்டலம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "locationHierarchyLevel": 4, - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "ara": "الكود البريدى", - "fra": "code postal", - "hin": "डाक कोड", - "kan": "ಅಂಚೆ ಕೋಡ್", - "tam": "அஞ்சல் குறியீடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "locationHierarchyLevel": 5, - "required": true - }, - { - "id": "residenceStatus", - "description": "Quartier/Résidence/Douar", - "labelName": { - "fra": "Quartier/Résidence/Douar", - "ara": "الحي / السكن / الدوار", - "eng": "Residence Status", - "hin": "निवास स्थान", - "kan": "ನಿವಾಸ", - "tam": "குடியிருப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "addressType", - "description": "Type d'habitat", - "labelName": { - "fra": "Type d'habitat", - "ara": "نوع السكن", - "eng": "Habitat type", - "kan": "ವಿಳಾಸದ ವಿಧ", - "hin": "पता मुद्रलेख", - "tam": "முகவரி வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true, - "tooltip": false - }, - { - "id": "portNo", - "description": "N Porte", - "labelName": { - "fra": "N° Porte", - "ara": "رقم الباب", - "eng": "Port No", - "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पोर्ट नंबर", - "tam": "துறை எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "apptNo", - "description": "N immeuble", - "labelName": { - "fra": "N° immeuble", - "ara": "رقم المبنى", - "eng": "Appt no", - "kan": "appt ಸಂಖ್ಯೆ", - "hin": "उपयुक्त संख्या", - "tam": "appt எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "address_info", - "preview": true - }, - { - "id": "addressLine1", - "description": "Adresse de résidence", - "labelName": { - "fra": "Adresse de résidence", - "ara": "عنوان السكن", - "eng": "Adresse Line1", - "hin": "पता पंक्ति 1", - "kan": "ವಿಳಾಸ 1", - "tam": "முகவரி வரி 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,100}$).*", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "referenceCNIENumber", - "description": "CNIE", - "labelName": { - "fra": "CNIE", - "ara": "رقم البطاقة الوطنية", - "eng": "CNIE", - "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", - "hin": "संदर्भ सीएनआईई नंबर", - "tam": "குறிப்பு CNIE எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "card_info", - "preview": true - }, - { - "id": "resOuPass", - "description": "Je dispose", - "labelName": { - "fra": "Je dispose", - "ara": "أملك", - "eng": "I have", - "kan": "resOuPass", - "hin": "resOuPass", - "tam": "resOuPass" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": false, - "tooltip": false - }, - { - "id": "referenceResidencyNumber", - "description": "Numéro d'identité du résident étranger", - "labelName": { - "fra": "Numéro d'identité du résident étranger", - "ara": "رقم هوية المقيم الأجنبي", - "eng": "Identity number of the foreign resident", - "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", - "hin": "संदर्भ निवास संख्या", - "tam": "குறிப்பு குடியிருப்பு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "[A-Za-z][0-9]{6}[A-Za-z]", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "passportNumber", - "description": "Numéro de passport", - "labelName": { - "fra": "Numéro de Passeport", - "ara": "رقم جواز السفر", - "eng": "Passport number", - "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पासपोर्ट संख्या", - "tam": "கடவுச்சீட்டு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": false - }, - { - "id": "flagidcs", - "description": "Je dispose d'un IDCS", - "labelName": { - "fra": "Je dispose d'un IDCS", - "ara": "أملك المعرف المدني والاجتماعي الرقمي", - "eng": "I have an IDCS", - "kan": "ಧ್ವಜಗಳು", - "hin": "फ्लैगिड्स", - "tam": "கொடிகள்" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "birthCertificateNumber", - "description": "Numéro Acte de Naissance", - "labelName": { - "fra": "Numéro Acte de Naissance", - "ara": "رقم شهادة الميلاد", - "eng": "Birth Certificate Number", - "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", - "hin": "जन्म प्रमाणपत्र संख्या", - "tam": "பிறப்புச் சான்றிதழ் எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true - }, - { - "id": "civilRegistryNumber", - "description": "Numéro Acte de Naissance digitalisé", - "labelName": { - "fra": "Numéro Acte de Naissance digitalisé", - "ara": "رقم شهادة الميلاد الرقمي", - "eng": "Digital Birth Certificate Number", - "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", - "hin": "सिविल रजिस्ट्री नंबर", - "tam": "சிவில் பதிவு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "ara": "هاتف", - "fra": "Téléphone", - "hin": "फ़ोन", - "kan": "ದೂರವಾಣಿ", - "tam": "தொலைபேசி" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[+]*([0-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "ara": "البريد الإلكتروني", - "fra": "Email", - "hin": "ईमेल", - "kan": "ಇಮೇಲ್", - "tam": "மின்னஞ்சல்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "guardianType", - "description": "Type de Tuteur", - "labelName": { - "fra": "Type de Tuteur", - "ara": "نوع الوصي", - "eng": "Tutor type", - "kan": "ರಕ್ಷಕ ವಿಧ", - "hin": "संरक्षक प्रकार", - "tam": "பாதுகாவலர் வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": false - }, - { - "id": "introducerName", - "description": "Prénom du tuteur", - "labelName": { - "eng": "introducer Name", - "ara": "مقدم Name", - "fra": "introducteur Name", - "kan": "ಪರಿಚಯಕಾರ Name", - "hin": "परिचयकर्ता Name", - "tam": "அறிமுகம் Name" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "introducerUIN", - "description": "Identifiant digital civil et social du tuteur", - "labelName": { - "eng": "introducer UIN", - "ara": "مقدم UIN", - "fra": "introducteur UIN", - "kan": "ಪರಿಚಯಕಾರ UIN", - "hin": "परिचयकर्ता UIN", - "tam": "அறிமுகம் UIN" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{10}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceRID", - "description": "Identifiant RNP RID du tuteur", - "labelName": { - "eng": "introducer RID", - "ara": "مقدم RID", - "fra": "introducteur RID", - "kan": "ಪರಿಚಯಕಾರ RID", - "hin": "परिचयकर्ता RID", - "tam": "அறிமுகம் RID" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{29}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceCNIE", - "description": "Numéro d'identité du tuteur", - "labelName": { - "eng": "introducer CNIE", - "ara": "مقدم CNIE", - "fra": "introducteur CNIE", - "kan": "ಪರಿಚಯಕಾರ CNIE", - "hin": "परिचयकर्ता CNIE", - "tam": "அறிமுகம் CNIE" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "relationWithChild", - "description": "Lien de parenté", - "labelName": { - "fra": "Lien de parenté", - "ara": "صلة القرابة", - "eng": "Relationship", - "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", - "hin": "बच्चे के साथ संबंध", - "tam": "குழந்தையுடன் உறவு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "ara": "إثبات العنوان", - "fra": "Preuve d'adresse", - "eng": "Address Proof", - "hin": "निवास प्रमाण पत्र", - "kan": "ವಿಳಾಸ ಪುರಾವೆ", - "tam": "முகவரி சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false - }, - { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "ara": "إثبات الهوية", - "fra": "Preuve d'identité", - "eng": "Identity Proof", - "hin": "पहचान प्रमाण", - "kan": "ಗುರುತಿನ ಪುರಾವೆ", - "tam": "அடையாள சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true - }, - { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "ara": "إثبات العلاقة", - "fra": "Preuve de relation", - "eng": "Relationship Proof", - "hin": "संबंध प्रमाण", - "kan": "ಸಂಬಂಧ ಪುರಾವೆ", - "tam": "உறவு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": true - }, - { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "ara": "دليل DOB", - "fra": "Preuve de date de naissance", - "eng": "DOB Proof", - "hin": "जन्मतिथि प्रमाण", - "kan": "DOB ಪ್ರೂಫ್", - "tam": "DOB ஆதாரம்" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true - }, - { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "ara": "إثبات الاستثناء", - "fra": "Preuve d'exception", - "eng": "Exception Proof", - "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", - "tam": "விதிவிலக்கு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true - } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" - ] -} \ No newline at end of file + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "title", + "description": "Title", + "labelName": { + "eng": "Title", + "ara": "عنوان", + "hin": "पशीर्षक", + "kan": "ಶೀರ್ಷಿಕೆ", + "tam": "தலைப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "ara": "الاسم الكامل", + "fra": "Nom complet", + "hin": "पूरा नाम", + "kan": "ಪೂರ್ಣ ಹೆಸರು", + "tam": "முழு பெயர்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "ara": "تاريخ الولادة", + "fra": "Date de naissance", + "hin": "जन्म की तारीख", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "tam": "பிறந்த தேதி" + }, + "controlType": "ageDate", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "ara": "جنس", + "fra": "Le genre", + "hin": "लिंग", + "kan": "ಲಿಂಗ", + "tam": "பாலினம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "UIN", + "description": "Enter UIN", + "labelName": { + "eng": "UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "perpetualVID", + "description": "Enter perpetualVID", + "labelName": { + "eng": "perpetualVID" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "nationality", + "description": "nationality", + "labelName": { + "fra": "Nationalité", + "ara": "الجنسية", + "eng": "Nationality", + "hin": "राष्ट्रीयता", + "kan": "ರಾಷ್ಟ್ರೀಯತೆ", + "tam": "தேசியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "flagb", + "description": "Je suis né(e) au maroc", + "labelName": { + "fra": "Je suis né(e) au maroc", + "ara": "ولدت في المغرب", + "eng": "I was born in Morocco", + "hin": "झंडाब", + "kan": "ಧ್ವಜ", + "tam": "கொடி" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "personal_info", + "preview": true + }, + { + "id": "placeOfBirth", + "description": "Lieu de naissance", + "labelName": { + "fra": "Lieu de naissance", + "ara": "مكان الإزدياد", + "eng": "Place of birth", + "hin": "जन्म स्थान", + "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", + "tam": "பிறந்த இடம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "listCountry", + "description": "Pay de naissance", + "labelName": { + "fra": "Pay de naissance", + "ara": "بلد الإزدياد", + "eng": "Birth Pay", + "hin": "सूचीदेश", + "kan": "ಪಟ್ಟಿ ದೇಶ", + "tam": "பட்டியல் நாடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "ऊपरी क्षेत्र", + "kan": "ಪ್ರದೇಶ", + "tam": "பிராந்தியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 1, + "parentLocCode": "MOR", + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "ara": "المحافظة", + "fra": "Province", + "hin": "प्रांत", + "kan": "ಪ್ರಾಂತ್ಯ", + "tam": "மாகாணம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 2, + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "kan": "ನಗರ", + "tam": "நகரம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 3, + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "kan": "ವಲಯ", + "tam": "மண்டலம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "locationHierarchyLevel": 4, + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "ara": "الكود البريدى", + "fra": "code postal", + "hin": "डाक कोड", + "kan": "ಅಂಚೆ ಕೋಡ್", + "tam": "அஞ்சல் குறியீடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "locationHierarchyLevel": 5, + "required": true + }, + { + "id": "residenceStatus", + "description": "Quartier/Résidence/Douar", + "labelName": { + "fra": "Quartier/Résidence/Douar", + "ara": "الحي / السكن / الدوار", + "eng": "Residence Status", + "hin": "निवास स्थान", + "kan": "ನಿವಾಸ", + "tam": "குடியிருப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "addressType", + "description": "Type d'habitat", + "labelName": { + "fra": "Type d'habitat", + "ara": "نوع السكن", + "eng": "Habitat type", + "kan": "ವಿಳಾಸದ ವಿಧ", + "hin": "पता मुद्रलेख", + "tam": "முகவரி வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true, + "tooltip": false + }, + { + "id": "portNo", + "description": "N Porte", + "labelName": { + "fra": "N° Porte", + "ara": "رقم الباب", + "eng": "Port No", + "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पोर्ट नंबर", + "tam": "துறை எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "apptNo", + "description": "N immeuble", + "labelName": { + "fra": "N° immeuble", + "ara": "رقم المبنى", + "eng": "Appt no", + "kan": "appt ಸಂಖ್ಯೆ", + "hin": "उपयुक्त संख्या", + "tam": "appt எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "address_info", + "preview": true + }, + { + "id": "addressLine1", + "description": "Adresse de résidence", + "labelName": { + "fra": "Adresse de résidence", + "ara": "عنوان السكن", + "eng": "Adresse Line1", + "hin": "पता पंक्ति 1", + "kan": "ವಿಳಾಸ 1", + "tam": "முகவரி வரி 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,100}$).*", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "referenceCNIENumber", + "description": "CNIE", + "labelName": { + "fra": "CNIE", + "ara": "رقم البطاقة الوطنية", + "eng": "CNIE", + "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", + "hin": "संदर्भ सीएनआईई नंबर", + "tam": "குறிப்பு CNIE எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "card_info", + "preview": true + }, + { + "id": "resOuPass", + "description": "Je dispose", + "labelName": { + "fra": "Je dispose", + "ara": "أملك", + "eng": "I have", + "kan": "resOuPass", + "hin": "resOuPass", + "tam": "resOuPass" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": false, + "tooltip": false + }, + { + "id": "referenceResidencyNumber", + "description": "Numéro d'identité du résident étranger", + "labelName": { + "fra": "Numéro d'identité du résident étranger", + "ara": "رقم هوية المقيم الأجنبي", + "eng": "Identity number of the foreign resident", + "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", + "hin": "संदर्भ निवास संख्या", + "tam": "குறிப்பு குடியிருப்பு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "[A-Za-z][0-9]{6}[A-Za-z]", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "passportNumber", + "description": "Numéro de passport", + "labelName": { + "fra": "Numéro de Passeport", + "ara": "رقم جواز السفر", + "eng": "Passport number", + "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पासपोर्ट संख्या", + "tam": "கடவுச்சீட்டு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": false + }, + { + "id": "flagidcs", + "description": "Je dispose d'un IDCS", + "labelName": { + "fra": "Je dispose d'un IDCS", + "ara": "أملك المعرف المدني والاجتماعي الرقمي", + "eng": "I have an IDCS", + "kan": "ಧ್ವಜಗಳು", + "hin": "फ्लैगिड्स", + "tam": "கொடிகள்" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "birthCertificateNumber", + "description": "Numéro Acte de Naissance", + "labelName": { + "fra": "Numéro Acte de Naissance", + "ara": "رقم شهادة الميلاد", + "eng": "Birth Certificate Number", + "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", + "hin": "जन्म प्रमाणपत्र संख्या", + "tam": "பிறப்புச் சான்றிதழ் எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true + }, + { + "id": "civilRegistryNumber", + "description": "Numéro Acte de Naissance digitalisé", + "labelName": { + "fra": "Numéro Acte de Naissance digitalisé", + "ara": "رقم شهادة الميلاد الرقمي", + "eng": "Digital Birth Certificate Number", + "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", + "hin": "सिविल रजिस्ट्री नंबर", + "tam": "சிவில் பதிவு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "ara": "هاتف", + "fra": "Téléphone", + "hin": "फ़ोन", + "kan": "ದೂರವಾಣಿ", + "tam": "தொலைபேசி" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[+]*([0-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "ara": "البريد الإلكتروني", + "fra": "Email", + "hin": "ईमेल", + "kan": "ಇಮೇಲ್", + "tam": "மின்னஞ்சல்" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "guardianType", + "description": "Type de Tuteur", + "labelName": { + "fra": "Type de Tuteur", + "ara": "نوع الوصي", + "eng": "Tutor type", + "kan": "ರಕ್ಷಕ ವಿಧ", + "hin": "संरक्षक प्रकार", + "tam": "பாதுகாவலர் வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": false + }, + { + "id": "introducerName", + "description": "Prénom du tuteur", + "labelName": { + "eng": "introducer Name", + "ara": "مقدم Name", + "fra": "introducteur Name", + "kan": "ಪರಿಚಯಕಾರ Name", + "hin": "परिचयकर्ता Name", + "tam": "அறிமுகம் Name" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "introducerUIN", + "description": "Identifiant digital civil et social du tuteur", + "labelName": { + "eng": "introducer UIN", + "ara": "مقدم UIN", + "fra": "introducteur UIN", + "kan": "ಪರಿಚಯಕಾರ UIN", + "hin": "परिचयकर्ता UIN", + "tam": "அறிமுகம் UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{10}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceRID", + "description": "Identifiant RNP RID du tuteur", + "labelName": { + "eng": "introducer RID", + "ara": "مقدم RID", + "fra": "introducteur RID", + "kan": "ಪರಿಚಯಕಾರ RID", + "hin": "परिचयकर्ता RID", + "tam": "அறிமுகம் RID" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{29}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceCNIE", + "description": "Numéro d'identité du tuteur", + "labelName": { + "eng": "introducer CNIE", + "ara": "مقدم CNIE", + "fra": "introducteur CNIE", + "kan": "ಪರಿಚಯಕಾರ CNIE", + "hin": "परिचयकर्ता CNIE", + "tam": "அறிமுகம் CNIE" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "relationWithChild", + "description": "Lien de parenté", + "labelName": { + "fra": "Lien de parenté", + "ara": "صلة القرابة", + "eng": "Relationship", + "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", + "hin": "बच्चे के साथ संबंध", + "tam": "குழந்தையுடன் உறவு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "ara": "إثبات العنوان", + "fra": "Preuve d'adresse", + "eng": "Address Proof", + "hin": "निवास प्रमाण पत्र", + "kan": "ವಿಳಾಸ ಪುರಾವೆ", + "tam": "முகவரி சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "eng": "Identity Proof", + "hin": "पहचान प्रमाण", + "kan": "ಗುರುತಿನ ಪುರಾವೆ", + "tam": "அடையாள சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "ara": "إثبات العلاقة", + "fra": "Preuve de relation", + "eng": "Relationship Proof", + "hin": "संबंध प्रमाण", + "kan": "ಸಂಬಂಧ ಪುರಾವೆ", + "tam": "உறவு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": true + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "ara": "دليل DOB", + "fra": "Preuve de date de naissance", + "eng": "DOB Proof", + "hin": "जन्मतिथि प्रमाण", + "kan": "DOB ಪ್ರೂಫ್", + "tam": "DOB ஆதாரம்" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "ara": "إثبات الاستثناء", + "fra": "Preuve d'exception", + "eng": "Exception Proof", + "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", + "tam": "விதிவிலக்கு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} From 3987f180858f36d296911c9fdee13153332e35b6 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 23 Jan 2023 14:06:37 +0530 Subject: [PATCH 1061/1358] Update resident-ui-share-credential-schema.json --- resident-ui-share-credential-schema.json | 1830 +++++++++++----------- 1 file changed, 936 insertions(+), 894 deletions(-) diff --git a/resident-ui-share-credential-schema.json b/resident-ui-share-credential-schema.json index 5fba7ed748b..85c7380f804 100644 --- a/resident-ui-share-credential-schema.json +++ b/resident-ui-share-credential-schema.json @@ -1,895 +1,937 @@ { - "identity": [ - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "title", - "description": "Title", - "labelName": { - "eng": "Title", - "ara": "عنوان", - "hin": "पशीर्षक", - "kan": "ಶೀರ್ಷಿಕೆ", - "tam": "தலைப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "ara": "الاسم الكامل", - "fra": "Nom complet", - "hin": "पूरा नाम", - "kan": "ಪೂರ್ಣ ಹೆಸರು", - "tam": "முழு பெயர்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "ara": "تاريخ الولادة", - "fra": "Date de naissance", - "hin": "जन्म की तारीख", - "kan": "ಹುಟ್ತಿದ ದಿನ", - "tam": "பிறந்த தேதி" - }, - "controlType": "ageDate", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true - }, - { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "ara": "جنس", - "fra": "Le genre", - "hin": "लिंग", - "kan": "ಲಿಂಗ", - "tam": "பாலினம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "nationality", - "description": "nationality", - "labelName": { - "fra": "Nationalité", - "ara": "الجنسية", - "eng": "Nationality", - "hin": "राष्ट्रीयता", - "kan": "ರಾಷ್ಟ್ರೀಯತೆ", - "tam": "தேசியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "flagb", - "description": "Je suis né(e) au maroc", - "labelName": { - "fra": "Je suis né(e) au maroc", - "ara": "ولدت في المغرب", - "eng": "I was born in Morocco", - "hin": "झंडाब", - "kan": "ಧ್ವಜ", - "tam": "கொடி" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "personal_info", - "preview": true - }, - { - "id": "placeOfBirth", - "description": "Lieu de naissance", - "labelName": { - "fra": "Lieu de naissance", - "ara": "مكان الإزدياد", - "eng": "Place of birth", - "hin": "जन्म स्थान", - "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", - "tam": "பிறந்த இடம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "listCountry", - "description": "Pay de naissance", - "labelName": { - "fra": "Pay de naissance", - "ara": "بلد الإزدياد", - "eng": "Birth Pay", - "hin": "सूचीदेश", - "kan": "ಪಟ್ಟಿ ದೇಶ", - "tam": "பட்டியல் நாடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "ara": "منطقة", - "fra": "Région", - "hin": "ऊपरी क्षेत्र", - "kan": "ಪ್ರದೇಶ", - "tam": "பிராந்தியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 1, - "parentLocCode": "MOR", - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "ara": "المحافظة", - "fra": "Province", - "hin": "प्रांत", - "kan": "ಪ್ರಾಂತ್ಯ", - "tam": "மாகாணம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 2, - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "ara": "مدينة", - "fra": "Ville", - "hin": "शहर", - "kan": "ನಗರ", - "tam": "நகரம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 3, - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "ara": "منطقة", - "fra": "Zone", - "hin": "क्षेत्र", - "kan": "ವಲಯ", - "tam": "மண்டலம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "locationHierarchyLevel": 4, - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "ara": "الكود البريدى", - "fra": "code postal", - "hin": "डाक कोड", - "kan": "ಅಂಚೆ ಕೋಡ್", - "tam": "அஞ்சல் குறியீடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "locationHierarchyLevel": 5, - "required": true - }, - { - "id": "residenceStatus", - "description": "Quartier/Résidence/Douar", - "labelName": { - "fra": "Quartier/Résidence/Douar", - "ara": "الحي / السكن / الدوار", - "eng": "Residence Status", - "hin": "निवास स्थान", - "kan": "ನಿವಾಸ", - "tam": "குடியிருப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "addressType", - "description": "Type d'habitat", - "labelName": { - "fra": "Type d'habitat", - "ara": "نوع السكن", - "eng": "Habitat type", - "kan": "ವಿಳಾಸದ ವಿಧ", - "hin": "पता मुद्रलेख", - "tam": "முகவரி வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true, - "tooltip": false - }, - { - "id": "portNo", - "description": "N Porte", - "labelName": { - "fra": "N° Porte", - "ara": "رقم الباب", - "eng": "Port No", - "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पोर्ट नंबर", - "tam": "துறை எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "apptNo", - "description": "N immeuble", - "labelName": { - "fra": "N° immeuble", - "ara": "رقم المبنى", - "eng": "Appt no", - "kan": "appt ಸಂಖ್ಯೆ", - "hin": "उपयुक्त संख्या", - "tam": "appt எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "address_info", - "preview": true - }, - { - "id": "addressLine1", - "description": "Adresse de résidence", - "labelName": { - "fra": "Adresse de résidence", - "ara": "عنوان السكن", - "eng": "Adresse Line1", - "hin": "पता पंक्ति 1", - "kan": "ವಿಳಾಸ 1", - "tam": "முகவரி வரி 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,100}$).*", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "referenceCNIENumber", - "description": "CNIE", - "labelName": { - "fra": "CNIE", - "ara": "رقم البطاقة الوطنية", - "eng": "CNIE", - "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", - "hin": "संदर्भ सीएनआईई नंबर", - "tam": "குறிப்பு CNIE எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "card_info", - "preview": true - }, - { - "id": "resOuPass", - "description": "Je dispose", - "labelName": { - "fra": "Je dispose", - "ara": "أملك", - "eng": "I have", - "kan": "resOuPass", - "hin": "resOuPass", - "tam": "resOuPass" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": false, - "tooltip": false - }, - { - "id": "referenceResidencyNumber", - "description": "Numéro d'identité du résident étranger", - "labelName": { - "fra": "Numéro d'identité du résident étranger", - "ara": "رقم هوية المقيم الأجنبي", - "eng": "Identity number of the foreign resident", - "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", - "hin": "संदर्भ निवास संख्या", - "tam": "குறிப்பு குடியிருப்பு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "[A-Za-z][0-9]{6}[A-Za-z]", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "passportNumber", - "description": "Numéro de passport", - "labelName": { - "fra": "Numéro de Passeport", - "ara": "رقم جواز السفر", - "eng": "Passport number", - "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पासपोर्ट संख्या", - "tam": "கடவுச்சீட்டு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": false - }, - { - "id": "flagidcs", - "description": "Je dispose d'un IDCS", - "labelName": { - "fra": "Je dispose d'un IDCS", - "ara": "أملك المعرف المدني والاجتماعي الرقمي", - "eng": "I have an IDCS", - "kan": "ಧ್ವಜಗಳು", - "hin": "फ्लैगिड्स", - "tam": "கொடிகள்" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "birthCertificateNumber", - "description": "Numéro Acte de Naissance", - "labelName": { - "fra": "Numéro Acte de Naissance", - "ara": "رقم شهادة الميلاد", - "eng": "Birth Certificate Number", - "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", - "hin": "जन्म प्रमाणपत्र संख्या", - "tam": "பிறப்புச் சான்றிதழ் எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true - }, - { - "id": "civilRegistryNumber", - "description": "Numéro Acte de Naissance digitalisé", - "labelName": { - "fra": "Numéro Acte de Naissance digitalisé", - "ara": "رقم شهادة الميلاد الرقمي", - "eng": "Digital Birth Certificate Number", - "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", - "hin": "सिविल रजिस्ट्री नंबर", - "tam": "சிவில் பதிவு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "ara": "هاتف", - "fra": "Téléphone", - "hin": "फ़ोन", - "kan": "ದೂರವಾಣಿ", - "tam": "தொலைபேசி" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[+]*([0-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "ara": "البريد الإلكتروني", - "fra": "Email", - "hin": "ईमेल", - "kan": "ಇಮೇಲ್", - "tam": "மின்னஞ்சல்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "guardianType", - "description": "Type de Tuteur", - "labelName": { - "fra": "Type de Tuteur", - "ara": "نوع الوصي", - "eng": "Tutor type", - "kan": "ರಕ್ಷಕ ವಿಧ", - "hin": "संरक्षक प्रकार", - "tam": "பாதுகாவலர் வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": false - }, - { - "id": "introducerName", - "description": "Prénom du tuteur", - "labelName": { - "eng": "introducer Name", - "ara": "مقدم Name", - "fra": "introducteur Name", - "kan": "ಪರಿಚಯಕಾರ Name", - "hin": "परिचयकर्ता Name", - "tam": "அறிமுகம் Name" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "introducerUIN", - "description": "Identifiant digital civil et social du tuteur", - "labelName": { - "eng": "introducer UIN", - "ara": "مقدم UIN", - "fra": "introducteur UIN", - "kan": "ಪರಿಚಯಕಾರ UIN", - "hin": "परिचयकर्ता UIN", - "tam": "அறிமுகம் UIN" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{10}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceRID", - "description": "Identifiant RNP RID du tuteur", - "labelName": { - "eng": "introducer RID", - "ara": "مقدم RID", - "fra": "introducteur RID", - "kan": "ಪರಿಚಯಕಾರ RID", - "hin": "परिचयकर्ता RID", - "tam": "அறிமுகம் RID" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{29}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceCNIE", - "description": "Numéro d'identité du tuteur", - "labelName": { - "eng": "introducer CNIE", - "ara": "مقدم CNIE", - "fra": "introducteur CNIE", - "kan": "ಪರಿಚಯಕಾರ CNIE", - "hin": "परिचयकर्ता CNIE", - "tam": "அறிமுகம் CNIE" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "relationWithChild", - "description": "Lien de parenté", - "labelName": { - "fra": "Lien de parenté", - "ara": "صلة القرابة", - "eng": "Relationship", - "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", - "hin": "बच्चे के साथ संबंध", - "tam": "குழந்தையுடன் உறவு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "ara": "إثبات العنوان", - "fra": "Preuve d'adresse", - "eng": "Address Proof", - "hin": "निवास प्रमाण पत्र", - "kan": "ವಿಳಾಸ ಪುರಾವೆ", - "tam": "முகவரி சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false - }, - { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "ara": "إثبات الهوية", - "fra": "Preuve d'identité", - "eng": "Identity Proof", - "hin": "पहचान प्रमाण", - "kan": "ಗುರುತಿನ ಪುರಾವೆ", - "tam": "அடையாள சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true - }, - { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "ara": "إثبات العلاقة", - "fra": "Preuve de relation", - "eng": "Relationship Proof", - "hin": "संबंध प्रमाण", - "kan": "ಸಂಬಂಧ ಪುರಾವೆ", - "tam": "உறவு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": true - }, - { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "ara": "دليل DOB", - "fra": "Preuve de date de naissance", - "eng": "DOB Proof", - "hin": "जन्मतिथि प्रमाण", - "kan": "DOB ಪ್ರೂಫ್", - "tam": "DOB ஆதாரம்" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true - }, - { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "ara": "إثبات الاستثناء", - "fra": "Preuve d'exception", - "eng": "Exception Proof", - "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", - "tam": "விதிவிலக்கு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true - } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" - ] -} \ No newline at end of file + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "title", + "description": "Title", + "labelName": { + "eng": "Title", + "ara": "عنوان", + "hin": "पशीर्षक", + "kan": "ಶೀರ್ಷಿಕೆ", + "tam": "தலைப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "ara": "الاسم الكامل", + "fra": "Nom complet", + "hin": "पूरा नाम", + "kan": "ಪೂರ್ಣ ಹೆಸರು", + "tam": "முழு பெயர்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "ara": "تاريخ الولادة", + "fra": "Date de naissance", + "hin": "जन्म की तारीख", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "tam": "பிறந்த தேதி" + }, + "controlType": "ageDate", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "ara": "جنس", + "fra": "Le genre", + "hin": "लिंग", + "kan": "ಲಿಂಗ", + "tam": "பாலினம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "UIN", + "description": "Enter UIN", + "labelName": { + "eng": "UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "perpetualVID", + "description": "Enter perpetualVID", + "labelName": { + "eng": "perpetualVID" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "nationality", + "description": "nationality", + "labelName": { + "fra": "Nationalité", + "ara": "الجنسية", + "eng": "Nationality", + "hin": "राष्ट्रीयता", + "kan": "ರಾಷ್ಟ್ರೀಯತೆ", + "tam": "தேசியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "flagb", + "description": "Je suis né(e) au maroc", + "labelName": { + "fra": "Je suis né(e) au maroc", + "ara": "ولدت في المغرب", + "eng": "I was born in Morocco", + "hin": "झंडाब", + "kan": "ಧ್ವಜ", + "tam": "கொடி" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "personal_info", + "preview": true + }, + { + "id": "placeOfBirth", + "description": "Lieu de naissance", + "labelName": { + "fra": "Lieu de naissance", + "ara": "مكان الإزدياد", + "eng": "Place of birth", + "hin": "जन्म स्थान", + "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", + "tam": "பிறந்த இடம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "listCountry", + "description": "Pay de naissance", + "labelName": { + "fra": "Pay de naissance", + "ara": "بلد الإزدياد", + "eng": "Birth Pay", + "hin": "सूचीदेश", + "kan": "ಪಟ್ಟಿ ದೇಶ", + "tam": "பட்டியல் நாடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "ऊपरी क्षेत्र", + "kan": "ಪ್ರದೇಶ", + "tam": "பிராந்தியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 1, + "parentLocCode": "MOR", + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "ara": "المحافظة", + "fra": "Province", + "hin": "प्रांत", + "kan": "ಪ್ರಾಂತ್ಯ", + "tam": "மாகாணம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 2, + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "kan": "ನಗರ", + "tam": "நகரம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 3, + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "kan": "ವಲಯ", + "tam": "மண்டலம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "locationHierarchyLevel": 4, + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "ara": "الكود البريدى", + "fra": "code postal", + "hin": "डाक कोड", + "kan": "ಅಂಚೆ ಕೋಡ್", + "tam": "அஞ்சல் குறியீடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "locationHierarchyLevel": 5, + "required": true + }, + { + "id": "residenceStatus", + "description": "Quartier/Résidence/Douar", + "labelName": { + "fra": "Quartier/Résidence/Douar", + "ara": "الحي / السكن / الدوار", + "eng": "Residence Status", + "hin": "निवास स्थान", + "kan": "ನಿವಾಸ", + "tam": "குடியிருப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "addressType", + "description": "Type d'habitat", + "labelName": { + "fra": "Type d'habitat", + "ara": "نوع السكن", + "eng": "Habitat type", + "kan": "ವಿಳಾಸದ ವಿಧ", + "hin": "पता मुद्रलेख", + "tam": "முகவரி வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true, + "tooltip": false + }, + { + "id": "portNo", + "description": "N Porte", + "labelName": { + "fra": "N° Porte", + "ara": "رقم الباب", + "eng": "Port No", + "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पोर्ट नंबर", + "tam": "துறை எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "apptNo", + "description": "N immeuble", + "labelName": { + "fra": "N° immeuble", + "ara": "رقم المبنى", + "eng": "Appt no", + "kan": "appt ಸಂಖ್ಯೆ", + "hin": "उपयुक्त संख्या", + "tam": "appt எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "address_info", + "preview": true + }, + { + "id": "addressLine1", + "description": "Adresse de résidence", + "labelName": { + "fra": "Adresse de résidence", + "ara": "عنوان السكن", + "eng": "Adresse Line1", + "hin": "पता पंक्ति 1", + "kan": "ವಿಳಾಸ 1", + "tam": "முகவரி வரி 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,100}$).*", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "referenceCNIENumber", + "description": "CNIE", + "labelName": { + "fra": "CNIE", + "ara": "رقم البطاقة الوطنية", + "eng": "CNIE", + "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", + "hin": "संदर्भ सीएनआईई नंबर", + "tam": "குறிப்பு CNIE எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "card_info", + "preview": true + }, + { + "id": "resOuPass", + "description": "Je dispose", + "labelName": { + "fra": "Je dispose", + "ara": "أملك", + "eng": "I have", + "kan": "resOuPass", + "hin": "resOuPass", + "tam": "resOuPass" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": false, + "tooltip": false + }, + { + "id": "referenceResidencyNumber", + "description": "Numéro d'identité du résident étranger", + "labelName": { + "fra": "Numéro d'identité du résident étranger", + "ara": "رقم هوية المقيم الأجنبي", + "eng": "Identity number of the foreign resident", + "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", + "hin": "संदर्भ निवास संख्या", + "tam": "குறிப்பு குடியிருப்பு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "[A-Za-z][0-9]{6}[A-Za-z]", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "passportNumber", + "description": "Numéro de passport", + "labelName": { + "fra": "Numéro de Passeport", + "ara": "رقم جواز السفر", + "eng": "Passport number", + "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पासपोर्ट संख्या", + "tam": "கடவுச்சீட்டு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": false + }, + { + "id": "flagidcs", + "description": "Je dispose d'un IDCS", + "labelName": { + "fra": "Je dispose d'un IDCS", + "ara": "أملك المعرف المدني والاجتماعي الرقمي", + "eng": "I have an IDCS", + "kan": "ಧ್ವಜಗಳು", + "hin": "फ्लैगिड्स", + "tam": "கொடிகள்" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "birthCertificateNumber", + "description": "Numéro Acte de Naissance", + "labelName": { + "fra": "Numéro Acte de Naissance", + "ara": "رقم شهادة الميلاد", + "eng": "Birth Certificate Number", + "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", + "hin": "जन्म प्रमाणपत्र संख्या", + "tam": "பிறப்புச் சான்றிதழ் எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true + }, + { + "id": "civilRegistryNumber", + "description": "Numéro Acte de Naissance digitalisé", + "labelName": { + "fra": "Numéro Acte de Naissance digitalisé", + "ara": "رقم شهادة الميلاد الرقمي", + "eng": "Digital Birth Certificate Number", + "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", + "hin": "सिविल रजिस्ट्री नंबर", + "tam": "சிவில் பதிவு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "ara": "هاتف", + "fra": "Téléphone", + "hin": "फ़ोन", + "kan": "ದೂರವಾಣಿ", + "tam": "தொலைபேசி" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[+]*([0-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "ara": "البريد الإلكتروني", + "fra": "Email", + "hin": "ईमेल", + "kan": "ಇಮೇಲ್", + "tam": "மின்னஞ்சல்" + }, + "controlType": "textbox", + "inputRequired": true, + "maskRequired": true, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "guardianType", + "description": "Type de Tuteur", + "labelName": { + "fra": "Type de Tuteur", + "ara": "نوع الوصي", + "eng": "Tutor type", + "kan": "ರಕ್ಷಕ ವಿಧ", + "hin": "संरक्षक प्रकार", + "tam": "பாதுகாவலர் வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": false + }, + { + "id": "introducerName", + "description": "Prénom du tuteur", + "labelName": { + "eng": "introducer Name", + "ara": "مقدم Name", + "fra": "introducteur Name", + "kan": "ಪರಿಚಯಕಾರ Name", + "hin": "परिचयकर्ता Name", + "tam": "அறிமுகம் Name" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "introducerUIN", + "description": "Identifiant digital civil et social du tuteur", + "labelName": { + "eng": "introducer UIN", + "ara": "مقدم UIN", + "fra": "introducteur UIN", + "kan": "ಪರಿಚಯಕಾರ UIN", + "hin": "परिचयकर्ता UIN", + "tam": "அறிமுகம் UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{10}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceRID", + "description": "Identifiant RNP RID du tuteur", + "labelName": { + "eng": "introducer RID", + "ara": "مقدم RID", + "fra": "introducteur RID", + "kan": "ಪರಿಚಯಕಾರ RID", + "hin": "परिचयकर्ता RID", + "tam": "அறிமுகம் RID" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{29}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceCNIE", + "description": "Numéro d'identité du tuteur", + "labelName": { + "eng": "introducer CNIE", + "ara": "مقدم CNIE", + "fra": "introducteur CNIE", + "kan": "ಪರಿಚಯಕಾರ CNIE", + "hin": "परिचयकर्ता CNIE", + "tam": "அறிமுகம் CNIE" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "relationWithChild", + "description": "Lien de parenté", + "labelName": { + "fra": "Lien de parenté", + "ara": "صلة القرابة", + "eng": "Relationship", + "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", + "hin": "बच्चे के साथ संबंध", + "tam": "குழந்தையுடன் உறவு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "ara": "إثبات العنوان", + "fra": "Preuve d'adresse", + "eng": "Address Proof", + "hin": "निवास प्रमाण पत्र", + "kan": "ವಿಳಾಸ ಪುರಾವೆ", + "tam": "முகவரி சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "eng": "Identity Proof", + "hin": "पहचान प्रमाण", + "kan": "ಗುರುತಿನ ಪುರಾವೆ", + "tam": "அடையாள சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "ara": "إثبات العلاقة", + "fra": "Preuve de relation", + "eng": "Relationship Proof", + "hin": "संबंध प्रमाण", + "kan": "ಸಂಬಂಧ ಪುರಾವೆ", + "tam": "உறவு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": true + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "ara": "دليل DOB", + "fra": "Preuve de date de naissance", + "eng": "DOB Proof", + "hin": "जन्मतिथि प्रमाण", + "kan": "DOB ಪ್ರೂಫ್", + "tam": "DOB ஆதாரம்" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "ara": "إثبات الاستثناء", + "fra": "Preuve d'exception", + "eng": "Exception Proof", + "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", + "tam": "விதிவிலக்கு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} From 2f5c47ac211e65be6a75636895c33882d9c32520 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Mon, 23 Jan 2023 14:07:28 +0530 Subject: [PATCH 1062/1358] Update resident-ui-update-demographics-schema.json --- resident-ui-update-demographics-schema.json | 1816 ++++++++++--------- 1 file changed, 922 insertions(+), 894 deletions(-) diff --git a/resident-ui-update-demographics-schema.json b/resident-ui-update-demographics-schema.json index 5fba7ed748b..6976929e3f4 100644 --- a/resident-ui-update-demographics-schema.json +++ b/resident-ui-update-demographics-schema.json @@ -1,895 +1,923 @@ { - "identity": [ - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "title", - "description": "Title", - "labelName": { - "eng": "Title", - "ara": "عنوان", - "hin": "पशीर्षक", - "kan": "ಶೀರ್ಷಿಕೆ", - "tam": "தலைப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "ara": "الاسم الكامل", - "fra": "Nom complet", - "hin": "पूरा नाम", - "kan": "ಪೂರ್ಣ ಹೆಸರು", - "tam": "முழு பெயர்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "ara": "تاريخ الولادة", - "fra": "Date de naissance", - "hin": "जन्म की तारीख", - "kan": "ಹುಟ್ತಿದ ದಿನ", - "tam": "பிறந்த தேதி" - }, - "controlType": "ageDate", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true - }, - { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "ara": "جنس", - "fra": "Le genre", - "hin": "लिंग", - "kan": "ಲಿಂಗ", - "tam": "பாலினம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "nationality", - "description": "nationality", - "labelName": { - "fra": "Nationalité", - "ara": "الجنسية", - "eng": "Nationality", - "hin": "राष्ट्रीयता", - "kan": "ರಾಷ್ಟ್ರೀಯತೆ", - "tam": "தேசியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "flagb", - "description": "Je suis né(e) au maroc", - "labelName": { - "fra": "Je suis né(e) au maroc", - "ara": "ولدت في المغرب", - "eng": "I was born in Morocco", - "hin": "झंडाब", - "kan": "ಧ್ವಜ", - "tam": "கொடி" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "personal_info", - "preview": true - }, - { - "id": "placeOfBirth", - "description": "Lieu de naissance", - "labelName": { - "fra": "Lieu de naissance", - "ara": "مكان الإزدياد", - "eng": "Place of birth", - "hin": "जन्म स्थान", - "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", - "tam": "பிறந்த இடம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "listCountry", - "description": "Pay de naissance", - "labelName": { - "fra": "Pay de naissance", - "ara": "بلد الإزدياد", - "eng": "Birth Pay", - "hin": "सूचीदेश", - "kan": "ಪಟ್ಟಿ ದೇಶ", - "tam": "பட்டியல் நாடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "ara": "منطقة", - "fra": "Région", - "hin": "ऊपरी क्षेत्र", - "kan": "ಪ್ರದೇಶ", - "tam": "பிராந்தியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 1, - "parentLocCode": "MOR", - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "ara": "المحافظة", - "fra": "Province", - "hin": "प्रांत", - "kan": "ಪ್ರಾಂತ್ಯ", - "tam": "மாகாணம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 2, - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "ara": "مدينة", - "fra": "Ville", - "hin": "शहर", - "kan": "ನಗರ", - "tam": "நகரம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 3, - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "ara": "منطقة", - "fra": "Zone", - "hin": "क्षेत्र", - "kan": "ವಲಯ", - "tam": "மண்டலம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "locationHierarchyLevel": 4, - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "ara": "الكود البريدى", - "fra": "code postal", - "hin": "डाक कोड", - "kan": "ಅಂಚೆ ಕೋಡ್", - "tam": "அஞ்சல் குறியீடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "locationHierarchyLevel": 5, - "required": true - }, - { - "id": "residenceStatus", - "description": "Quartier/Résidence/Douar", - "labelName": { - "fra": "Quartier/Résidence/Douar", - "ara": "الحي / السكن / الدوار", - "eng": "Residence Status", - "hin": "निवास स्थान", - "kan": "ನಿವಾಸ", - "tam": "குடியிருப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "addressType", - "description": "Type d'habitat", - "labelName": { - "fra": "Type d'habitat", - "ara": "نوع السكن", - "eng": "Habitat type", - "kan": "ವಿಳಾಸದ ವಿಧ", - "hin": "पता मुद्रलेख", - "tam": "முகவரி வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true, - "tooltip": false - }, - { - "id": "portNo", - "description": "N Porte", - "labelName": { - "fra": "N° Porte", - "ara": "رقم الباب", - "eng": "Port No", - "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पोर्ट नंबर", - "tam": "துறை எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "apptNo", - "description": "N immeuble", - "labelName": { - "fra": "N° immeuble", - "ara": "رقم المبنى", - "eng": "Appt no", - "kan": "appt ಸಂಖ್ಯೆ", - "hin": "उपयुक्त संख्या", - "tam": "appt எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "address_info", - "preview": true - }, - { - "id": "addressLine1", - "description": "Adresse de résidence", - "labelName": { - "fra": "Adresse de résidence", - "ara": "عنوان السكن", - "eng": "Adresse Line1", - "hin": "पता पंक्ति 1", - "kan": "ವಿಳಾಸ 1", - "tam": "முகவரி வரி 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,100}$).*", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "referenceCNIENumber", - "description": "CNIE", - "labelName": { - "fra": "CNIE", - "ara": "رقم البطاقة الوطنية", - "eng": "CNIE", - "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", - "hin": "संदर्भ सीएनआईई नंबर", - "tam": "குறிப்பு CNIE எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "card_info", - "preview": true - }, - { - "id": "resOuPass", - "description": "Je dispose", - "labelName": { - "fra": "Je dispose", - "ara": "أملك", - "eng": "I have", - "kan": "resOuPass", - "hin": "resOuPass", - "tam": "resOuPass" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": false, - "tooltip": false - }, - { - "id": "referenceResidencyNumber", - "description": "Numéro d'identité du résident étranger", - "labelName": { - "fra": "Numéro d'identité du résident étranger", - "ara": "رقم هوية المقيم الأجنبي", - "eng": "Identity number of the foreign resident", - "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", - "hin": "संदर्भ निवास संख्या", - "tam": "குறிப்பு குடியிருப்பு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "[A-Za-z][0-9]{6}[A-Za-z]", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "passportNumber", - "description": "Numéro de passport", - "labelName": { - "fra": "Numéro de Passeport", - "ara": "رقم جواز السفر", - "eng": "Passport number", - "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पासपोर्ट संख्या", - "tam": "கடவுச்சீட்டு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": false - }, - { - "id": "flagidcs", - "description": "Je dispose d'un IDCS", - "labelName": { - "fra": "Je dispose d'un IDCS", - "ara": "أملك المعرف المدني والاجتماعي الرقمي", - "eng": "I have an IDCS", - "kan": "ಧ್ವಜಗಳು", - "hin": "फ्लैगिड्स", - "tam": "கொடிகள்" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "birthCertificateNumber", - "description": "Numéro Acte de Naissance", - "labelName": { - "fra": "Numéro Acte de Naissance", - "ara": "رقم شهادة الميلاد", - "eng": "Birth Certificate Number", - "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", - "hin": "जन्म प्रमाणपत्र संख्या", - "tam": "பிறப்புச் சான்றிதழ் எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true - }, - { - "id": "civilRegistryNumber", - "description": "Numéro Acte de Naissance digitalisé", - "labelName": { - "fra": "Numéro Acte de Naissance digitalisé", - "ara": "رقم شهادة الميلاد الرقمي", - "eng": "Digital Birth Certificate Number", - "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", - "hin": "सिविल रजिस्ट्री नंबर", - "tam": "சிவில் பதிவு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "ara": "هاتف", - "fra": "Téléphone", - "hin": "फ़ोन", - "kan": "ದೂರವಾಣಿ", - "tam": "தொலைபேசி" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[+]*([0-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "ara": "البريد الإلكتروني", - "fra": "Email", - "hin": "ईमेल", - "kan": "ಇಮೇಲ್", - "tam": "மின்னஞ்சல்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "guardianType", - "description": "Type de Tuteur", - "labelName": { - "fra": "Type de Tuteur", - "ara": "نوع الوصي", - "eng": "Tutor type", - "kan": "ರಕ್ಷಕ ವಿಧ", - "hin": "संरक्षक प्रकार", - "tam": "பாதுகாவலர் வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": false - }, - { - "id": "introducerName", - "description": "Prénom du tuteur", - "labelName": { - "eng": "introducer Name", - "ara": "مقدم Name", - "fra": "introducteur Name", - "kan": "ಪರಿಚಯಕಾರ Name", - "hin": "परिचयकर्ता Name", - "tam": "அறிமுகம் Name" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "introducerUIN", - "description": "Identifiant digital civil et social du tuteur", - "labelName": { - "eng": "introducer UIN", - "ara": "مقدم UIN", - "fra": "introducteur UIN", - "kan": "ಪರಿಚಯಕಾರ UIN", - "hin": "परिचयकर्ता UIN", - "tam": "அறிமுகம் UIN" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{10}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceRID", - "description": "Identifiant RNP RID du tuteur", - "labelName": { - "eng": "introducer RID", - "ara": "مقدم RID", - "fra": "introducteur RID", - "kan": "ಪರಿಚಯಕಾರ RID", - "hin": "परिचयकर्ता RID", - "tam": "அறிமுகம் RID" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{29}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceCNIE", - "description": "Numéro d'identité du tuteur", - "labelName": { - "eng": "introducer CNIE", - "ara": "مقدم CNIE", - "fra": "introducteur CNIE", - "kan": "ಪರಿಚಯಕಾರ CNIE", - "hin": "परिचयकर्ता CNIE", - "tam": "அறிமுகம் CNIE" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "relationWithChild", - "description": "Lien de parenté", - "labelName": { - "fra": "Lien de parenté", - "ara": "صلة القرابة", - "eng": "Relationship", - "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", - "hin": "बच्चे के साथ संबंध", - "tam": "குழந்தையுடன் உறவு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "ara": "إثبات العنوان", - "fra": "Preuve d'adresse", - "eng": "Address Proof", - "hin": "निवास प्रमाण पत्र", - "kan": "ವಿಳಾಸ ಪುರಾವೆ", - "tam": "முகவரி சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false - }, - { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "ara": "إثبات الهوية", - "fra": "Preuve d'identité", - "eng": "Identity Proof", - "hin": "पहचान प्रमाण", - "kan": "ಗುರುತಿನ ಪುರಾವೆ", - "tam": "அடையாள சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true - }, - { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "ara": "إثبات العلاقة", - "fra": "Preuve de relation", - "eng": "Relationship Proof", - "hin": "संबंध प्रमाण", - "kan": "ಸಂಬಂಧ ಪುರಾವೆ", - "tam": "உறவு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": true - }, - { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "ara": "دليل DOB", - "fra": "Preuve de date de naissance", - "eng": "DOB Proof", - "hin": "जन्मतिथि प्रमाण", - "kan": "DOB ಪ್ರೂಫ್", - "tam": "DOB ஆதாரம்" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true - }, - { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "ara": "إثبات الاستثناء", - "fra": "Preuve d'exception", - "eng": "Exception Proof", - "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", - "tam": "விதிவிலக்கு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true - } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" - ] -} \ No newline at end of file + "identity": [ + { + "id": "IDSchemaVersion", + "description": "ID Schema Version", + "type": "number", + "controlType": null, + "fieldType": "default", + "inputRequired": false, + "validators": [], + "required": true + }, + { + "id": "title", + "description": "Title", + "labelName": { + "eng": "Title", + "ara": "عنوان", + "hin": "पशीर्षक", + "kan": "ಶೀರ್ಷಿಕೆ", + "tam": "தலைப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "fullName", + "description": "Enter Full Name", + "labelName": { + "eng": "Full Name", + "ara": "الاسم الكامل", + "fra": "Nom complet", + "hin": "पूरा नाम", + "kan": "ಪೂರ್ಣ ಹೆಸರು", + "tam": "முழு பெயர்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", + "arguments": [] + } + ], + "required": true, + "transliteration": true + }, + { + "id": "dateOfBirth", + "description": "Enter DOB", + "labelName": { + "eng": "Date Of Birth", + "ara": "تاريخ الولادة", + "fra": "Date de naissance", + "hin": "जन्म की तारीख", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "tam": "பிறந்த தேதி" + }, + "controlType": "ageDate", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [], + "required": true + }, + { + "id": "gender", + "description": "Enter Gender", + "labelName": { + "eng": "Gender", + "ara": "جنس", + "fra": "Le genre", + "hin": "लिंग", + "kan": "ಲಿಂಗ", + "tam": "பாலினம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true + }, + { + "id": "nationality", + "description": "nationality", + "labelName": { + "fra": "Nationalité", + "ara": "الجنسية", + "eng": "Nationality", + "hin": "राष्ट्रीयता", + "kan": "ರಾಷ್ಟ್ರೀಯತೆ", + "tam": "தேசியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "flagb", + "description": "Je suis né(e) au maroc", + "labelName": { + "fra": "Je suis né(e) au maroc", + "ara": "ولدت في المغرب", + "eng": "I was born in Morocco", + "hin": "झंडाब", + "kan": "ಧ್ವಜ", + "tam": "கொடி" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "personal_info", + "preview": true + }, + { + "id": "placeOfBirth", + "description": "Lieu de naissance", + "labelName": { + "fra": "Lieu de naissance", + "ara": "مكان الإزدياد", + "eng": "Place of birth", + "hin": "जन्म स्थान", + "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", + "tam": "பிறந்த இடம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "listCountry", + "description": "Pay de naissance", + "labelName": { + "fra": "Pay de naissance", + "ara": "بلد الإزدياد", + "eng": "Birth Pay", + "hin": "सूचीदेश", + "kan": "ಪಟ್ಟಿ ದೇಶ", + "tam": "பட்டியல் நாடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "personal_info", + "preview": true + }, + { + "id": "region", + "description": "region", + "labelName": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "ऊपरी क्षेत्र", + "kan": "ಪ್ರದೇಶ", + "tam": "பிராந்தியம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 1, + "parentLocCode": "MOR", + "required": true + }, + { + "id": "province", + "description": "province", + "labelName": { + "eng": "Province", + "ara": "المحافظة", + "fra": "Province", + "hin": "प्रांत", + "kan": "ಪ್ರಾಂತ್ಯ", + "tam": "மாகாணம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 2, + "required": true + }, + { + "id": "city", + "description": "city", + "labelName": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "kan": "ನಗರ", + "tam": "நகரம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{3,50}$).*", + "arguments": [] + } + ], + "locationHierarchyLevel": 3, + "required": true + }, + { + "id": "zone", + "description": "zone", + "labelName": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "kan": "ವಲಯ", + "tam": "மண்டலம்" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [], + "locationHierarchyLevel": 4, + "required": true + }, + { + "id": "postalCode", + "description": "postalCode", + "labelName": { + "eng": "Postal Code", + "ara": "الكود البريدى", + "fra": "code postal", + "hin": "डाक कोड", + "kan": "ಅಂಚೆ ಕೋಡ್", + "tam": "அஞ்சல் குறியீடு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[(?i)A-Z0-9]{5}$|^NA$", + "arguments": [] + } + ], + "locationHierarchyLevel": 5, + "required": true + }, + { + "id": "residenceStatus", + "description": "Quartier/Résidence/Douar", + "labelName": { + "fra": "Quartier/Résidence/Douar", + "ara": "الحي / السكن / الدوار", + "eng": "Residence Status", + "hin": "निवास स्थान", + "kan": "ನಿವಾಸ", + "tam": "குடியிருப்பு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "addressType", + "description": "Type d'habitat", + "labelName": { + "fra": "Type d'habitat", + "ara": "نوع السكن", + "eng": "Habitat type", + "kan": "ವಿಳಾಸದ ವಿಧ", + "hin": "पता मुद्रलेख", + "tam": "முகவரி வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "address_info", + "preview": true, + "tooltip": false + }, + { + "id": "portNo", + "description": "N Porte", + "labelName": { + "fra": "N° Porte", + "ara": "رقم الباب", + "eng": "Port No", + "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पोर्ट नंबर", + "tam": "துறை எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "apptNo", + "description": "N immeuble", + "labelName": { + "fra": "N° immeuble", + "ara": "رقم المبنى", + "eng": "Appt no", + "kan": "appt ಸಂಖ್ಯೆ", + "hin": "उपयुक्त संख्या", + "tam": "appt எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,10}$).*", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "address_info", + "preview": true + }, + { + "id": "addressLine1", + "description": "Adresse de résidence", + "labelName": { + "fra": "Adresse de résidence", + "ara": "عنوان السكن", + "eng": "Adresse Line1", + "hin": "पता पंक्ति 1", + "kan": "ವಿಳಾಸ 1", + "tam": "முகவரி வரி 1" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{0,100}$).*", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "address_info", + "preview": true + }, + { + "id": "referenceCNIENumber", + "description": "CNIE", + "labelName": { + "fra": "CNIE", + "ara": "رقم البطاقة الوطنية", + "eng": "CNIE", + "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", + "hin": "संदर्भ सीएनआईई नंबर", + "tam": "குறிப்பு CNIE எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": true, + "visible": true, + "group": "card_info", + "preview": true + }, + { + "id": "resOuPass", + "description": "Je dispose", + "labelName": { + "fra": "Je dispose", + "ara": "أملك", + "eng": "I have", + "kan": "resOuPass", + "hin": "resOuPass", + "tam": "resOuPass" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": false, + "tooltip": false + }, + { + "id": "referenceResidencyNumber", + "description": "Numéro d'identité du résident étranger", + "labelName": { + "fra": "Numéro d'identité du résident étranger", + "ara": "رقم هوية المقيم الأجنبي", + "eng": "Identity number of the foreign resident", + "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", + "hin": "संदर्भ निवास संख्या", + "tam": "குறிப்பு குடியிருப்பு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "[A-Za-z][0-9]{6}[A-Za-z]", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "passportNumber", + "description": "Numéro de passport", + "labelName": { + "fra": "Numéro de Passeport", + "ara": "رقم جواز السفر", + "eng": "Passport number", + "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", + "hin": "पासपोर्ट संख्या", + "tam": "கடவுச்சீட்டு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": false + }, + { + "id": "flagidcs", + "description": "Je dispose d'un IDCS", + "labelName": { + "fra": "Je dispose d'un IDCS", + "ara": "أملك المعرف المدني والاجتماعي الرقمي", + "eng": "I have an IDCS", + "kan": "ಧ್ವಜಗಳು", + "hin": "फ्लैगिड्स", + "tam": "கொடிகள்" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": true, + "visible": true, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "birthCertificateNumber", + "description": "Numéro Acte de Naissance", + "labelName": { + "fra": "Numéro Acte de Naissance", + "ara": "رقم شهادة الميلاد", + "eng": "Birth Certificate Number", + "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", + "hin": "जन्म प्रमाणपत्र संख्या", + "tam": "பிறப்புச் சான்றிதழ் எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^(?=.{1,20}$).*", + "arguments": [] + } + ], + "required": true, + "visible": false, + "group": "card_info", + "preview": true + }, + { + "id": "civilRegistryNumber", + "description": "Numéro Acte de Naissance digitalisé", + "labelName": { + "fra": "Numéro Acte de Naissance digitalisé", + "ara": "رقم شهادة الميلاد الرقمي", + "eng": "Digital Birth Certificate Number", + "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", + "hin": "सिविल रजिस्ट्री नंबर", + "tam": "சிவில் பதிவு எண்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [], + "required": true, + "visible": false, + "group": "card_info", + "preview": true, + "tooltip": true + }, + { + "id": "phone", + "description": "phone", + "labelName": { + "eng": "Phone", + "ara": "هاتف", + "fra": "Téléphone", + "hin": "फ़ोन", + "kan": "ದೂರವಾಣಿ", + "tam": "தொலைபேசி" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[+]*([0-9]{1})([0-9]{9})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "email", + "description": "email", + "labelName": { + "eng": "Email", + "ara": "البريد الإلكتروني", + "fra": "Email", + "hin": "ईमेल", + "kan": "ಇಮೇಲ್", + "tam": "மின்னஞ்சல்" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", + "arguments": [] + } + ], + "required": true + }, + { + "id": "guardianType", + "description": "Type de Tuteur", + "labelName": { + "fra": "Type de Tuteur", + "ara": "نوع الوصي", + "eng": "Tutor type", + "kan": "ರಕ್ಷಕ ವಿಧ", + "hin": "संरक्षक प्रकार", + "tam": "பாதுகாவலர் வகை" + }, + "controlType": "dropdown", + "subtype": "radio", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": false + }, + { + "id": "introducerName", + "description": "Prénom du tuteur", + "labelName": { + "eng": "introducer Name", + "ara": "مقدم Name", + "fra": "introducteur Name", + "kan": "ಪರಿಚಯಕಾರ Name", + "hin": "परिचयकर्ता Name", + "tam": "அறிமுகம் Name" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "simpleType", + "validators": [ + { + "type": "regex", + "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "introducerUIN", + "description": "Identifiant digital civil et social du tuteur", + "labelName": { + "eng": "introducer UIN", + "ara": "مقدم UIN", + "fra": "introducteur UIN", + "kan": "ಪರಿಚಯಕಾರ UIN", + "hin": "परिचयकर्ता UIN", + "tam": "அறிமுகம் UIN" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "checksum": true, + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{10}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceRID", + "description": "Identifiant RNP RID du tuteur", + "labelName": { + "eng": "introducer RID", + "ara": "مقدم RID", + "fra": "introducteur RID", + "kan": "ಪರಿಚಯಕಾರ RID", + "hin": "परिचयकर्ता RID", + "tam": "அறிமுகம் RID" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "^[0-9]{29}$", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true, + "tooltip": true + }, + { + "id": "introduceCNIE", + "description": "Numéro d'identité du tuteur", + "labelName": { + "eng": "introducer CNIE", + "ara": "مقدم CNIE", + "fra": "introducteur CNIE", + "kan": "ಪರಿಚಯಕಾರ CNIE", + "hin": "परिचयकर्ता CNIE", + "tam": "அறிமுகம் CNIE" + }, + "controlType": "textbox", + "inputRequired": true, + "fieldType": "default", + "type": "string", + "validators": [ + { + "type": "regex", + "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", + "arguments": [] + } + ], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "relationWithChild", + "description": "Lien de parenté", + "labelName": { + "fra": "Lien de parenté", + "ara": "صلة القرابة", + "eng": "Relationship", + "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", + "hin": "बच्चे के साथ संबंध", + "tam": "குழந்தையுடன் உறவு" + }, + "controlType": "dropdown", + "inputRequired": true, + "fieldType": "dynamic", + "type": "simpleType", + "validators": [], + "required": false, + "visible": false, + "group": "guardian_info", + "preview": true + }, + { + "id": "proofOfAddress", + "description": "proofOfAddress", + "labelName": { + "ara": "إثبات العنوان", + "fra": "Preuve d'adresse", + "eng": "Address Proof", + "hin": "निवास प्रमाण पत्र", + "kan": "ವಿಳಾಸ ಪುರಾವೆ", + "tam": "முகவரி சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POA", + "required": false + }, + { + "id": "proofOfIdentity", + "description": "proofOfIdentity", + "labelName": { + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "eng": "Identity Proof", + "hin": "पहचान प्रमाण", + "kan": "ಗುರುತಿನ ಪುರಾವೆ", + "tam": "அடையாள சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POI", + "required": true + }, + { + "id": "proofOfRelationship", + "description": "proofOfRelationship", + "labelName": { + "ara": "إثبات العلاقة", + "fra": "Preuve de relation", + "eng": "Relationship Proof", + "hin": "संबंध प्रमाण", + "kan": "ಸಂಬಂಧ ಪುರಾವೆ", + "tam": "உறவு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POR", + "required": true + }, + { + "id": "proofOfDateOfBirth", + "description": "proofOfDateOfBirth", + "labelName": { + "ara": "دليل DOB", + "fra": "Preuve de date de naissance", + "eng": "DOB Proof", + "hin": "जन्मतिथि प्रमाण", + "kan": "DOB ಪ್ರೂಫ್", + "tam": "DOB ஆதாரம்" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POB", + "required": true + }, + { + "id": "proofOfException", + "description": "proofOfException", + "labelName": { + "ara": "إثبات الاستثناء", + "fra": "Preuve d'exception", + "eng": "Exception Proof", + "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", + "tam": "விதிவிலக்கு சான்று" + }, + "controlType": "fileupload", + "inputRequired": true, + "validators": [], + "subType": "POE", + "required": true + }, + { + "controlType": "dropdown", + "description": "", + "id": "preferredLang", + "labelName": { + "ara": [ + "Current Notification Language_ara", + "New Notification Language_ara" + ], + "eng": [ + "Current Notification Language", + "New Notification Language" + ], + "fra": [ + "Current Notification Language_fra", + "New Notification Language_fra" + ], + "kan": [ + "Current Notification Language_kan", + "New Notification Language_kan" + ], + "tam": [ + "Current Notification Language_tam", + "New Notification Language_tam" + ] + }, + "tabgroup": "notificationLanguage" + } + ], + "locationHierarchy": [ + "region", + "province", + "city", + "zone", + "postalCode" + ] +} From c9ae63aafd56169fda88796e5dc2bba71faeb827 Mon Sep 17 00:00:00 2001 From: RitikJain4108 <99730411+RitikJain4108@users.noreply.github.com> Date: Tue, 24 Jan 2023 19:25:27 +0530 Subject: [PATCH 1063/1358] updated schema (#3257) Co-authored-by: Ritik Jain <M1074108@mindtree.com> --- resident-ui-update-demographics-schema.json | 1243 +++++-------------- 1 file changed, 322 insertions(+), 921 deletions(-) diff --git a/resident-ui-update-demographics-schema.json b/resident-ui-update-demographics-schema.json index 6976929e3f4..4133325b8fd 100644 --- a/resident-ui-update-demographics-schema.json +++ b/resident-ui-update-demographics-schema.json @@ -1,923 +1,324 @@ { - "identity": [ - { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "title", - "description": "Title", - "labelName": { - "eng": "Title", - "ara": "عنوان", - "hin": "पशीर्षक", - "kan": "ಶೀರ್ಷಿಕೆ", - "tam": "தலைப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "ara": "الاسم الكامل", - "fra": "Nom complet", - "hin": "पूरा नाम", - "kan": "ಪೂರ್ಣ ಹೆಸರು", - "tam": "முழு பெயர்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "ara": "تاريخ الولادة", - "fra": "Date de naissance", - "hin": "जन्म की तारीख", - "kan": "ಹುಟ್ತಿದ ದಿನ", - "tam": "பிறந்த தேதி" - }, - "controlType": "ageDate", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true - }, - { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "ara": "جنس", - "fra": "Le genre", - "hin": "लिंग", - "kan": "ಲಿಂಗ", - "tam": "பாலினம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "nationality", - "description": "nationality", - "labelName": { - "fra": "Nationalité", - "ara": "الجنسية", - "eng": "Nationality", - "hin": "राष्ट्रीयता", - "kan": "ರಾಷ್ಟ್ರೀಯತೆ", - "tam": "தேசியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "flagb", - "description": "Je suis né(e) au maroc", - "labelName": { - "fra": "Je suis né(e) au maroc", - "ara": "ولدت في المغرب", - "eng": "I was born in Morocco", - "hin": "झंडाब", - "kan": "ಧ್ವಜ", - "tam": "கொடி" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "personal_info", - "preview": true - }, - { - "id": "placeOfBirth", - "description": "Lieu de naissance", - "labelName": { - "fra": "Lieu de naissance", - "ara": "مكان الإزدياد", - "eng": "Place of birth", - "hin": "जन्म स्थान", - "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", - "tam": "பிறந்த இடம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "listCountry", - "description": "Pay de naissance", - "labelName": { - "fra": "Pay de naissance", - "ara": "بلد الإزدياد", - "eng": "Birth Pay", - "hin": "सूचीदेश", - "kan": "ಪಟ್ಟಿ ದೇಶ", - "tam": "பட்டியல் நாடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "ara": "منطقة", - "fra": "Région", - "hin": "ऊपरी क्षेत्र", - "kan": "ಪ್ರದೇಶ", - "tam": "பிராந்தியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 1, - "parentLocCode": "MOR", - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "ara": "المحافظة", - "fra": "Province", - "hin": "प्रांत", - "kan": "ಪ್ರಾಂತ್ಯ", - "tam": "மாகாணம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 2, - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "ara": "مدينة", - "fra": "Ville", - "hin": "शहर", - "kan": "ನಗರ", - "tam": "நகரம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 3, - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "ara": "منطقة", - "fra": "Zone", - "hin": "क्षेत्र", - "kan": "ವಲಯ", - "tam": "மண்டலம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "locationHierarchyLevel": 4, - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "ara": "الكود البريدى", - "fra": "code postal", - "hin": "डाक कोड", - "kan": "ಅಂಚೆ ಕೋಡ್", - "tam": "அஞ்சல் குறியீடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "locationHierarchyLevel": 5, - "required": true - }, - { - "id": "residenceStatus", - "description": "Quartier/Résidence/Douar", - "labelName": { - "fra": "Quartier/Résidence/Douar", - "ara": "الحي / السكن / الدوار", - "eng": "Residence Status", - "hin": "निवास स्थान", - "kan": "ನಿವಾಸ", - "tam": "குடியிருப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "addressType", - "description": "Type d'habitat", - "labelName": { - "fra": "Type d'habitat", - "ara": "نوع السكن", - "eng": "Habitat type", - "kan": "ವಿಳಾಸದ ವಿಧ", - "hin": "पता मुद्रलेख", - "tam": "முகவரி வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true, - "tooltip": false - }, - { - "id": "portNo", - "description": "N Porte", - "labelName": { - "fra": "N° Porte", - "ara": "رقم الباب", - "eng": "Port No", - "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पोर्ट नंबर", - "tam": "துறை எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "apptNo", - "description": "N immeuble", - "labelName": { - "fra": "N° immeuble", - "ara": "رقم المبنى", - "eng": "Appt no", - "kan": "appt ಸಂಖ್ಯೆ", - "hin": "उपयुक्त संख्या", - "tam": "appt எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "address_info", - "preview": true - }, - { - "id": "addressLine1", - "description": "Adresse de résidence", - "labelName": { - "fra": "Adresse de résidence", - "ara": "عنوان السكن", - "eng": "Adresse Line1", - "hin": "पता पंक्ति 1", - "kan": "ವಿಳಾಸ 1", - "tam": "முகவரி வரி 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,100}$).*", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "referenceCNIENumber", - "description": "CNIE", - "labelName": { - "fra": "CNIE", - "ara": "رقم البطاقة الوطنية", - "eng": "CNIE", - "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", - "hin": "संदर्भ सीएनआईई नंबर", - "tam": "குறிப்பு CNIE எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "card_info", - "preview": true - }, - { - "id": "resOuPass", - "description": "Je dispose", - "labelName": { - "fra": "Je dispose", - "ara": "أملك", - "eng": "I have", - "kan": "resOuPass", - "hin": "resOuPass", - "tam": "resOuPass" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": false, - "tooltip": false - }, - { - "id": "referenceResidencyNumber", - "description": "Numéro d'identité du résident étranger", - "labelName": { - "fra": "Numéro d'identité du résident étranger", - "ara": "رقم هوية المقيم الأجنبي", - "eng": "Identity number of the foreign resident", - "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", - "hin": "संदर्भ निवास संख्या", - "tam": "குறிப்பு குடியிருப்பு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "[A-Za-z][0-9]{6}[A-Za-z]", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "passportNumber", - "description": "Numéro de passport", - "labelName": { - "fra": "Numéro de Passeport", - "ara": "رقم جواز السفر", - "eng": "Passport number", - "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पासपोर्ट संख्या", - "tam": "கடவுச்சீட்டு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": false - }, - { - "id": "flagidcs", - "description": "Je dispose d'un IDCS", - "labelName": { - "fra": "Je dispose d'un IDCS", - "ara": "أملك المعرف المدني والاجتماعي الرقمي", - "eng": "I have an IDCS", - "kan": "ಧ್ವಜಗಳು", - "hin": "फ्लैगिड्स", - "tam": "கொடிகள்" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "birthCertificateNumber", - "description": "Numéro Acte de Naissance", - "labelName": { - "fra": "Numéro Acte de Naissance", - "ara": "رقم شهادة الميلاد", - "eng": "Birth Certificate Number", - "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", - "hin": "जन्म प्रमाणपत्र संख्या", - "tam": "பிறப்புச் சான்றிதழ் எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true - }, - { - "id": "civilRegistryNumber", - "description": "Numéro Acte de Naissance digitalisé", - "labelName": { - "fra": "Numéro Acte de Naissance digitalisé", - "ara": "رقم شهادة الميلاد الرقمي", - "eng": "Digital Birth Certificate Number", - "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", - "hin": "सिविल रजिस्ट्री नंबर", - "tam": "சிவில் பதிவு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "ara": "هاتف", - "fra": "Téléphone", - "hin": "फ़ोन", - "kan": "ದೂರವಾಣಿ", - "tam": "தொலைபேசி" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[+]*([0-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "ara": "البريد الإلكتروني", - "fra": "Email", - "hin": "ईमेल", - "kan": "ಇಮೇಲ್", - "tam": "மின்னஞ்சல்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "guardianType", - "description": "Type de Tuteur", - "labelName": { - "fra": "Type de Tuteur", - "ara": "نوع الوصي", - "eng": "Tutor type", - "kan": "ರಕ್ಷಕ ವಿಧ", - "hin": "संरक्षक प्रकार", - "tam": "பாதுகாவலர் வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": false - }, - { - "id": "introducerName", - "description": "Prénom du tuteur", - "labelName": { - "eng": "introducer Name", - "ara": "مقدم Name", - "fra": "introducteur Name", - "kan": "ಪರಿಚಯಕಾರ Name", - "hin": "परिचयकर्ता Name", - "tam": "அறிமுகம் Name" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "introducerUIN", - "description": "Identifiant digital civil et social du tuteur", - "labelName": { - "eng": "introducer UIN", - "ara": "مقدم UIN", - "fra": "introducteur UIN", - "kan": "ಪರಿಚಯಕಾರ UIN", - "hin": "परिचयकर्ता UIN", - "tam": "அறிமுகம் UIN" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{10}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceRID", - "description": "Identifiant RNP RID du tuteur", - "labelName": { - "eng": "introducer RID", - "ara": "مقدم RID", - "fra": "introducteur RID", - "kan": "ಪರಿಚಯಕಾರ RID", - "hin": "परिचयकर्ता RID", - "tam": "அறிமுகம் RID" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{29}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true - }, - { - "id": "introduceCNIE", - "description": "Numéro d'identité du tuteur", - "labelName": { - "eng": "introducer CNIE", - "ara": "مقدم CNIE", - "fra": "introducteur CNIE", - "kan": "ಪರಿಚಯಕಾರ CNIE", - "hin": "परिचयकर्ता CNIE", - "tam": "அறிமுகம் CNIE" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "relationWithChild", - "description": "Lien de parenté", - "labelName": { - "fra": "Lien de parenté", - "ara": "صلة القرابة", - "eng": "Relationship", - "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", - "hin": "बच्चे के साथ संबंध", - "tam": "குழந்தையுடன் உறவு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "ara": "إثبات العنوان", - "fra": "Preuve d'adresse", - "eng": "Address Proof", - "hin": "निवास प्रमाण पत्र", - "kan": "ವಿಳಾಸ ಪುರಾವೆ", - "tam": "முகவரி சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false - }, - { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "ara": "إثبات الهوية", - "fra": "Preuve d'identité", - "eng": "Identity Proof", - "hin": "पहचान प्रमाण", - "kan": "ಗುರುತಿನ ಪುರಾವೆ", - "tam": "அடையாள சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true - }, - { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "ara": "إثبات العلاقة", - "fra": "Preuve de relation", - "eng": "Relationship Proof", - "hin": "संबंध प्रमाण", - "kan": "ಸಂಬಂಧ ಪುರಾವೆ", - "tam": "உறவு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": true - }, - { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "ara": "دليل DOB", - "fra": "Preuve de date de naissance", - "eng": "DOB Proof", - "hin": "जन्मतिथि प्रमाण", - "kan": "DOB ಪ್ರೂಫ್", - "tam": "DOB ஆதாரம்" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true - }, - { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "ara": "إثبات الاستثناء", - "fra": "Preuve d'exception", - "eng": "Exception Proof", - "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", - "tam": "விதிவிலக்கு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true - }, - { - "controlType": "dropdown", - "description": "", - "id": "preferredLang", - "labelName": { - "ara": [ - "Current Notification Language_ara", - "New Notification Language_ara" - ], - "eng": [ - "Current Notification Language", - "New Notification Language" - ], - "fra": [ - "Current Notification Language_fra", - "New Notification Language_fra" - ], - "kan": [ - "Current Notification Language_kan", - "New Notification Language_kan" - ], - "tam": [ - "Current Notification Language_tam", - "New Notification Language_tam" - ] - }, - "tabgroup": "notificationLanguage" - } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" - ] + "identity": [ + { + "id": "fullName", + "description": "", + "labelName": { + "eng": [ + "Current Name", + "New Name" + ], + "ara": [ + "Current Name_ara", + "New Name_ara" + ], + "fra": [ + "Current Name_fra", + "New Name_fra" + ] + }, + "controlType": "textbox", + "tabgroup": "identity" + }, + { + "id": "dateOfBirth", + "description": "", + "labelName": { + "eng": [ + "Current DOB", + "New DOB" + ], + "ara": [ + "Current DOB_ara", + "New DOB_ara" + ], + "fra": [ + "Current DOB_fra", + "New DOB_fra" + ] + }, + "controlType": "calendar", + "tabgroup": "identity" + }, + { + "id": "gender", + "description": "", + "labelName": { + "eng": [ + "Current Gender", + "New Gender" + ], + "ara": [ + "Current Gender_ara", + "New Gender_ara" + ], + "fra": [ + "Current Gender_fra", + "New Gender_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "identity" + }, + { + "id": "proofOfIdentity", + "description": "", + "labelName": { + "eng": [ + "Identity Proof", + "Document Type", + "Document Reference ID", + "Proof Of Document", + "Allowed file type : pdf,jpeg,png,jpg and allowed file size : 2mb" + ], + "ara": [ + "Identity Proof_ara", + "Document Type_ara", + "Document Reference ID_ara", + "Proof Of Document_ara", + "Allowed file type_ara : pdf,jpeg,png,jpg and allowed file size : 2mb" + ], + "fra": [ + "Identity Proof_fra", + "Document Type_fra", + "Document Reference ID_fra", + "Proof Of Document_fra", + "Allowed file type_fra : pdf,jpeg,png,jpg and allowed file size : 2mb" + ] + }, + "controlType": "fileupload", + "tabgroup": "identity" + }, + { + "id": "addressLine1", + "description": "", + "labelName": { + "eng": [ + "Current Address Line1", + "New Address Line1" + ], + "ara": [ + "Current Address Line1_ara", + "New Address Line1_ara" + ], + "fra": [ + "Current Address Line1_fra", + "New Address Line1_fra" + ] + }, + "controlType": "textbox", + "tabgroup": "address" + }, + { + "id": "region", + "name": "Region", + "description": "", + "labelName": { + "eng": [ + "Current Region", + "New Region" + ], + "ara": [ + "Current Region_ara", + "New Region_ara" + ], + "fra": [ + "Current Region_fra", + "New Region_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "address", + "locationHierarchyLevel": 1 + }, + { + "id": "province", + "name": "Province", + "description": "", + "labelName": { + "eng": [ + "Current Province", + "New Province" + ], + "ara": [ + "Current Province_ara", + "New Province_ara" + ], + "fra": [ + "Current Province_fra", + "New Province_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "address", + "locationHierarchyLevel": 2 + }, + { + "id": "city", + "name": "City", + "description": "", + "labelName": { + "eng": [ + "Current City", + "New City" + ], + "ara": [ + "Current City_ara", + "New City_ara" + ], + "fra": [ + "Current City_fra", + "New City_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "address", + "locationHierarchyLevel": 3 + }, + { + "id": "zone", + "name": "Zone", + "description": "", + "labelName": { + "eng": [ + "Current Zone", + "New Zone" + ], + "ara": [ + "Current Zone_ara", + "New Zone_ara" + ], + "fra": [ + "Current Zone_fra", + "New Zone_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "address", + "locationHierarchyLevel": 4 + }, + { + "id": "postalCode", + "name": "Postal Code", + "description": "", + "labelName": { + "eng": [ + "Current Postal Code", + "New Postal Code" + ], + "ara": [ + "Current Postal Code_ara", + "New Postal Code_ara" + ], + "fra": [ + "Current Postal Code_fra", + "New Postal Code_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "address", + "locationHierarchyLevel": 5 + }, + { + "id": "proofOfAddress", + "description": "", + "labelName": { + "eng": [ + "Address Proof", + "Document Type", + "Document Reference ID", + "Proof Of Document", + "Allowed file type : pdf,jpeg,png,jpg and allowed file size : 2mb" + ], + "ara": [ + "Address Proof_ara", + "Document Type_ara", + "Document Reference ID_ara", + "Proof Of Document_ara", + "Allowed file type_ara : pdf,jpeg,png,jpg and allowed file size : 2mb" + ], + "fra": [ + "Address Proof_fra", + "Document Type_fra", + "Document Reference ID_fra", + "Proof Of Document_fra", + "Allowed file type_fra : pdf,jpeg,png,jpg and allowed file size : 2mb" + ] + }, + "controlType": "fileupload", + "tabgroup": "address" + }, + { + "id": "email", + "description": "", + "labelName": { + "eng": [ + "Current email ID", + "New email ID", + "Confirm New email ID", + "Send OTP" + ], + "ara": [ + "Current email ID_ara", + "New email ID_ara", + "Confirm New email ID_ara", + "Send OTP_ara" + ], + "fra": [ + "Current email ID_fra", + "New email ID_fra", + "Confirm New email ID_fra", + "Send OTP_fra" + ] + }, + "controlType": "textbox", + "tabgroup": "contact" + }, + { + "id": "phone", + "description": "", + "labelName": { + "eng": [ + "Current Phone Number", + "New Phone Number", + "Confirm New Phone Number", + "Send OTP" + ], + "ara": [ + "Current Phone Number_ara", + "New Phone Number_ara", + "Confirm New Phone Number_ara", + "Send OTP_ara" + ], + "fra": [ + "Current Phone Number_fra", + "New Phone Number_fra", + "Confirm New Phone Number_fra", + "Send OTP_fra" + ] + }, + "controlType": "textbox", + "tabgroup": "contact" + }, + { + "id": "preferredLang", + "description": "", + "labelName": { + "eng": [ + "Current Notification Language", + "New Notification Language" + ], + "ara": [ + "Current Notification Language_ara", + "New Notification Language_ara" + ], + "fra": [ + "Current Notification Language_fra", + "New Notification Language_fra" + ] + }, + "controlType": "dropdown", + "tabgroup": "notificationLanguage" + } + ] } From 91331092437df9fb8715cd4c669335745955255b Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Wed, 25 Jan 2023 10:41:28 +0530 Subject: [PATCH 1064/1358] Merging new properties --- resident-default.properties | 45 +++++++++++++++++++++++-------------- 1 file changed, 28 insertions(+), 17 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index c59c100e17d..59109f3c532 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -8,7 +8,7 @@ # mosip.regproc.client.secret # keycloak.internal.url. -#--------------ID and Version -------------- +#--------------APIs ID and Version -------------- auth.internal.id=mosip.identity.auth.internal auth.internal.version=1.0 mosip.registration.processor.print.id=mosip.registration.print @@ -19,6 +19,7 @@ resident.vid.version=v1 resident.vid.version.new=1.0 resident.revokevid.version=v1 resident.revokevid.version.new=1.0 +resident.version.new=1.0 resident.vid.id=mosip.resident.vid resident.vid.id.generate=mosip.resident.vid.generate resident.vid.policy.id=mosip.resident.vid.policy @@ -66,21 +67,32 @@ resident.revokevid.id=mosip.resident.vidstatus mosip.resident.revokevid.id=mosip.resident.vid.revoke mosip.resident.grievance.ticket.request.id=mosip.resident.grievance.ticket.request mosip.resident.grievance.ticket.request.version=1.0 -PARTNER_REFERENCE_Id=mpartner-default-resident -mosip.resident.transliteration.transliterate.id=mosip.resident.transliteration.transliterate -APPLICATION_Id=RESIDENT -DECRYPT_API_URL=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt -mosip-prereg-host=${mosip.prereg.host} -mosip-prereg-ui-url=https://${mosip-prereg-host}/pre-registration-ui/ -resident.ui.properties.id=resident.ui.properties -resident.ui.properties.version=1.0 resident.channel.verification.status.id=mosip.resident.channel.verification.status resident.channel.verification.status.version=1.0 resident.event.ack.download.id=mosip.resident.event.ack.download resident.event.ack.download.version=1.0 resident.download.card.eventid.id =mosip.resident.download.card.eventid resident.download.card.eventid.version=1.0 -resident.version.new=1.0 +mosip.resident.request.vid.card.id=mosip.resident.request.vid.card +mosip.resident.request.vid.card.version=1.0 +mosip.credential.request.service.id=mosip.credential.request.service.id +mosip.credential.request.service.version=1.0 +mosip.resident.checkstatus.individualid.id=mosip.resident.check-stage-status +mosip.resident.checkstatus.individualid.version=1.0 +mosip.resident.download.personalized.card.id=mosip.resident.download.personalized.card +mosip.resident.transliteration.transliterate.id=mosip.resident.transliteration.transliterate +resident.ui.properties.id=resident.ui.properties +resident.ui.properties.version=1.0 +mosip.resident.identity.auth.internal.id=mosip.identity.auth.internal + + +PARTNER_REFERENCE_Id=mpartner-default-resident +APPLICATION_Id=RESIDENT + +DECRYPT_API_URL=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt +mosip-prereg-host=${mosip.prereg.host} +mosip-prereg-ui-url=https://${mosip-prereg-host}/pre-registration-ui/ + ## Token generation token.request.id=io.mosip.resident @@ -94,6 +106,12 @@ token.request.issuerUrl=${mosip.keycloak.issuerUrl} ida.online-verification-partner-id=mpartner-default-auth +#DB properties to skip automatic table creation in startup +hibernate.hbm2ddl.auto=none +hibernate.show_sql=false +hibernate.temp.use_jdbc_metadata_defaults=false +spring.jpa.properties.hibernate.temp.use_jdbc_metadata_defaults=false +hibernate.jdbc.lob.non_contextual_creation = true ## Auth Services KERNELAUTHMANAGER=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -680,8 +698,6 @@ mosip.resident.sign.pdf.reference.id=SIGN mosip.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer -# request id for download personalized card -mosip.resident.download.personalized.card=mosip.resident.download.personalized.card #method name to create password resident.create.password.method.name=getPassword #File name for the downloaded personalized card. "eventId" and "timestamp" are configurable. If they are removed from below property then they will be removed from file name also. @@ -704,8 +720,6 @@ mosip.resident.request.credential.credentialType=euin mosip.resident.request.credential.isEncrypt=true mosip.resident.request.credential.encryption.key=abc123 -mosip.resident.request.vid.card.id=mosip.resident.request.vid.card -mosip.resident.request.vid.card.version=1.0 mosip.credential.issuer=mpartner-default-digitalcard #claim names @@ -719,9 +733,6 @@ mosip.resident.applicant.name.property=applicantName mosip.resident.photo.attribute.name=photo mosip.digital.card.credential.type=PDFCard -mosip.credential.request.service.id=mosip.credential.request.service.id -mosip.credential.request.service.version=1.0 - ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 From 685719e6ea590a407d804c09c4e5be5e5a4a7673 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 30 Jan 2023 12:16:01 +0530 Subject: [PATCH 1065/1358] updated VID policy updated as dev --- mosip-vid-policy.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index 9261a14506f..21f619be932 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -14,7 +14,7 @@ "vidPolicy": { "validForInMinutes": 30, "transactionsAllowed": 1, - "instancesAllowed": 5, + "instancesAllowed": 20, "autoRestoreAllowed": false, "restoreOnAction": "REGENERATE" } @@ -24,8 +24,8 @@ "vidPolicy": { "validForInMinutes": null, "transactionsAllowed": 1, - "instancesAllowed": 1, - "autoRestoreAllowed": true, + "instancesAllowed": 20, + "autoRestoreAllowed": false, "restoreOnAction": "REVOKED" } } From ca305eb89883c0073551de16537a87b7ae74a243 Mon Sep 17 00:00:00 2001 From: Yash <102220960+Yashavant1629@users.noreply.github.com> Date: Mon, 30 Jan 2023 13:38:07 +0530 Subject: [PATCH 1066/1358] request.idtypes.allowed=VID --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 0d585b52bee..11ce6e01ca8 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -398,7 +398,7 @@ ida.api.version.kycexchange=1.0 static.token.enable=true ## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests -request.idtypes.allowed=VID,UIN +request.idtypes.allowed=VID ## The ID types to be supported for Internal Authentication/OTP Requests request.idtypes.allowed.internalauth=UIN,VID From 6bf2737bb47f330681b9a6ac564fac0e2330ef3b Mon Sep 17 00:00:00 2001 From: akilalakshmanan <Akila.L@iiitb.ac.in> Date: Mon, 30 Jan 2023 17:06:09 +0530 Subject: [PATCH 1067/1358] [DSD-2065] Added config changes for including minio pretext value --- application-default.properties | 4 +++- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 3 files changed, 5 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index aeb506fe362..058e89886bf 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,6 +359,8 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter +## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name +object.store.s3.bucket-name-prefix=qa1201- # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -375,7 +377,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=packet-manager +packet.manager.account.name=qa1201-packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest diff --git a/id-repository-default.properties b/id-repository-default.properties index ca8efa6d295..358b9587226 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepo +mosip.idrepo.objectstore.bucket-name=qa1201-idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 92d1e07ab17..18da1be960b 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=prereg +mosip.kernel.objectstore.account-name=qa1201-prereg ## Booking Service booking.service.version=v1 From 8cd6b19fb9a6d01a61dae2024829d45c126829ab Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 31 Jan 2023 16:42:30 +0530 Subject: [PATCH 1068/1358] Revert "[DSD-2065] Added config changes for including minio pretext value" --- application-default.properties | 4 +--- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 3 files changed, 3 insertions(+), 5 deletions(-) diff --git a/application-default.properties b/application-default.properties index 058e89886bf..aeb506fe362 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,8 +359,6 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter -## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name -object.store.s3.bucket-name-prefix=qa1201- # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -377,7 +375,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=qa1201-packet-manager +packet.manager.account.name=packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest diff --git a/id-repository-default.properties b/id-repository-default.properties index 358b9587226..ca8efa6d295 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=qa1201-idrepo +mosip.idrepo.objectstore.bucket-name=idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 18da1be960b..92d1e07ab17 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=qa1201-prereg +mosip.kernel.objectstore.account-name=prereg ## Booking Service booking.service.version=v1 From 663012c2e70d8cb6794e334c9bf7795578df1495 Mon Sep 17 00:00:00 2001 From: dell <gaganaa10@gmail.com> Date: Mon, 6 Feb 2023 18:28:02 +0530 Subject: [PATCH 1069/1358] [DSD-2065] Added config changes for including minio pretext value --- application-default.properties | 4 +++- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 3 files changed, 5 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index efaa89ce00a..0e05a79588d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,6 +359,8 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter +## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name +object.store.s3.bucket-name-prefix=qa1201- # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -375,7 +377,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=packet-manager +packet.manager.account.name=qa1201-packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest diff --git a/id-repository-default.properties b/id-repository-default.properties index ca8efa6d295..358b9587226 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepo +mosip.idrepo.objectstore.bucket-name=qa1201-idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index d200225b120..022dca93c35 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=prereg +mosip.kernel.objectstore.account-name=qa1201-prereg ## Booking Service booking.service.version=v1 From 6fb1563f5143396185620c198bf6414a8cd66daa Mon Sep 17 00:00:00 2001 From: gaganamadival <94885434+gaganamadival@users.noreply.github.com> Date: Tue, 7 Feb 2023 13:44:10 +0530 Subject: [PATCH 1070/1358] [DSD-2065] Added config changes for including minio pretext value (#3317) --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 058e89886bf..e20e657eb00 100644 --- a/application-default.properties +++ b/application-default.properties @@ -360,7 +360,7 @@ provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter ## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name -object.store.s3.bucket-name-prefix=qa1201- +object.store.s3.bucket-name-prefix= # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl From cdea5659f8b5acb3ec31a3294d2a7d1609f72ac9 Mon Sep 17 00:00:00 2001 From: dell <gaganaa10@gmail.com> Date: Tue, 7 Feb 2023 14:10:29 +0530 Subject: [PATCH 1071/1358] [DSD-2065] reverted the changes --- application-default.properties | 4 +--- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 3 files changed, 3 insertions(+), 5 deletions(-) diff --git a/application-default.properties b/application-default.properties index e20e657eb00..aeb506fe362 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,8 +359,6 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter -## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name -object.store.s3.bucket-name-prefix= # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -377,7 +375,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=qa1201-packet-manager +packet.manager.account.name=packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest diff --git a/id-repository-default.properties b/id-repository-default.properties index 358b9587226..ca8efa6d295 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=qa1201-idrepo +mosip.idrepo.objectstore.bucket-name=idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 18da1be960b..92d1e07ab17 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=qa1201-prereg +mosip.kernel.objectstore.account-name=prereg ## Booking Service booking.service.version=v1 From 0c0252975aaea5c532bc708e452d60bba396ac5c Mon Sep 17 00:00:00 2001 From: damodarguru <124761463+damodarguru@users.noreply.github.com> Date: Wed, 8 Feb 2023 11:15:58 +0530 Subject: [PATCH 1072/1358] mosip.iam.module.login_flow.claims Updated property mosip.iam.module.login_flow.claims, email as false for testing. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 59109f3c532..b449ca96337 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -676,7 +676,7 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":false},"phone_number":{"essential":true},"individual_id":{"essential":true}}} resident.identity.schematype.with.photo=personalized-card From fd96af9a9e7cbdd100193e3041e09c48d158669f Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 8 Feb 2023 14:34:08 +0530 Subject: [PATCH 1073/1358] [DSD-2101] added the missing prop --- resident-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/resident-default.properties b/resident-default.properties index 59109f3c532..e1ac589c359 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -757,3 +757,4 @@ resident.ui.datetime.pattern=yyyy-MM-dd HH:mm:ss resident.filename.datetime.pattern=yyyy-MM-dd'T'HH_mm_ss ## The Registration centers will be searched based on the distance value in meters from the Geo location identified resident.nearby.centers.distance.meters=2000 +mosip.max.file.upload.size.in.bytes=2000000 From 534dc147642d5d5a169a7d1fd100ebac83594c4a Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Wed, 8 Feb 2023 15:16:19 +0530 Subject: [PATCH 1074/1358] reverting mosip.iam.module.login_flow.claims back to default --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index b53235ace33..e1ac589c359 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -676,7 +676,7 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":false},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} resident.identity.schematype.with.photo=personalized-card From 96e278d6f9d3d5cc899ae994aac5bcc3e0496a53 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Thu, 9 Feb 2023 11:34:40 +0530 Subject: [PATCH 1075/1358] Merge dev2 to qa resident config --- resident-default.properties | 18 +- resident-ui-personalized-card-schema.json | 1071 ++++--------------- resident-ui-share-credential-schema.json | 1071 ++++--------------- resident-ui-update-demographics-schema.json | 28 +- 4 files changed, 398 insertions(+), 1790 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index e1ac589c359..8b83c46b508 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -84,6 +84,7 @@ mosip.resident.transliteration.transliterate.id=mosip.resident.transliteration.t resident.ui.properties.id=resident.ui.properties resident.ui.properties.version=1.0 mosip.resident.identity.auth.internal.id=mosip.identity.auth.internal +mosip.resident.user.profile.id=mosip.resident.profile PARTNER_REFERENCE_Id=mpartner-default-resident @@ -253,7 +254,7 @@ resident.view.history.status.filters=all,Success,In Progress,Failed #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters,resident.ui.notification.update.interval.seconds,mosip.kernel.otp.expiry-time @@ -678,8 +679,6 @@ mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} -resident.identity.schematype.with.photo=personalized-card - #Rectangle coordinates for pfd signataured data mosip.resident.service.uincard.lowerleftx=73 mosip.resident.service.uincard.lowerlefty=100 @@ -745,7 +744,7 @@ sequence-order=Request received, Validation stage, Verification stage, Uin gener mosip.resident.checkstatus.individualid.id=mosip.resident.check-stage-status mosip.resident.checkstatus.individualid.version=1.0 -resident.additional.identity.attribute.to.fetch=UIN,email,phone,dob,name,photo +resident.additional.identity.attribute.to.fetch=UIN,email,phone,dateOfBirth,fullName,photo resident.template.ack.authentication.request=acknowledgment-authentication-request resident.template.ack.get.my.id=acknowledgment-get-my-id @@ -757,4 +756,15 @@ resident.ui.datetime.pattern=yyyy-MM-dd HH:mm:ss resident.filename.datetime.pattern=yyyy-MM-dd'T'HH_mm_ss ## The Registration centers will be searched based on the distance value in meters from the Geo location identified resident.nearby.centers.distance.meters=2000 + +mosip.idrepo.vid.reactive-status=ACTIVE + +# Asyc Request Types +resident.async.request.types=VID_CARD_DOWNLOAD,ORDER_PHYSICAL_CARD,SHARE_CRED_WITH_PARTNER,UPDATE_MY_UIN +resident.batchjob.process.status.list=NEW,ISSUED,RECEIVED,PRINTING,FAILED,DELIVERED,PAYMENT_CONFIRMED,IN_TRANSIT +resident.ui.notification.update.interval.seconds=30 + +mosip.allowed.extension=pdf,jpeg,png,jpg + +mosip.resident.schema.attribute-name=attributeName mosip.max.file.upload.size.in.bytes=2000000 diff --git a/resident-ui-personalized-card-schema.json b/resident-ui-personalized-card-schema.json index 85c7380f804..375ebabf0d8 100644 --- a/resident-ui-personalized-card-schema.json +++ b/resident-ui-personalized-card-schema.json @@ -1,937 +1,236 @@ { "identity": [ { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "title", - "description": "Title", - "labelName": { - "eng": "Title", - "ara": "عنوان", - "hin": "पशीर्षक", - "kan": "ಶೀರ್ಷಿಕೆ", - "tam": "தலைப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "ara": "الاسم الكامل", - "fra": "Nom complet", - "hin": "पूरा नाम", - "kan": "ಪೂರ್ಣ ಹೆಸರು", - "tam": "முழு பெயர்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "ara": "تاريخ الولادة", - "fra": "Date de naissance", - "hin": "जन्म की तारीख", - "kan": "ಹುಟ್ತಿದ ದಿನ", - "tam": "பிறந்த தேதி" - }, - "controlType": "ageDate", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true + "attributeName": "fullName", + "maskRequired": false, + "formatRequired": true, + "label": { + "eng": "Name" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "formatOptionLabel":{ + "eng": "Name Format" + }, + "formatOption":{ + "eng": [{"label":"First Name", "value":"firstName"}, {"label":"Middle Name", "value":"middleName"}, {"label":"Last Name", "value":"lastName"}, {"label":"Full Name", "value":"fullName"}] + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "ara": "جنس", - "fra": "Le genre", - "hin": "लिंग", - "kan": "ಲಿಂಗ", - "tam": "பாலினம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true + "attributeName": "dateOfBirth", + "maskRequired": false, + "formatRequired": true, + "label": { + "eng": "DOB" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "formatOptionLabel":{ + "eng": "Date Format" + }, + "formatOption":{ + "eng": [{"label":"DD/MM", "value":"DD/MM"}, {"label":"DD/MM/YYYY", "value":"DD/MM/YYYY"}] + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "UIN", - "description": "Enter UIN", - "labelName": { + "attributeName": "UIN", + "maskAttributeName":"masked_UIN", + "maskRequired": true, + "formatRequired": false, + "label": { "eng": "UIN" }, - "controlType": "textbox", - "inputRequired": true, - "maskRequired": true, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":false, + "checked":false }, { - "id": "perpetualVID", - "description": "Enter perpetualVID", - "labelName": { - "eng": "perpetualVID" - }, - "controlType": "textbox", - "inputRequired": true, + "attributeName": "perpetualVID", + "maskAttributeName":"masked_perpetualVID", "maskRequired": true, + "formatRequired": false, + "label": { + "eng": "Perpetual VID" + }, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "nationality", - "description": "nationality", - "labelName": { - "fra": "Nationalité", - "ara": "الجنسية", - "eng": "Nationality", - "hin": "राष्ट्रीयता", - "kan": "ರಾಷ್ಟ್ರೀಯತೆ", - "tam": "தேசியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "flagb", - "description": "Je suis né(e) au maroc", - "labelName": { - "fra": "Je suis né(e) au maroc", - "ara": "ولدت في المغرب", - "eng": "I was born in Morocco", - "hin": "झंडाब", - "kan": "ಧ್ವಜ", - "tam": "கொடி" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "personal_info", - "preview": true - }, - { - "id": "placeOfBirth", - "description": "Lieu de naissance", - "labelName": { - "fra": "Lieu de naissance", - "ara": "مكان الإزدياد", - "eng": "Place of birth", - "hin": "जन्म स्थान", - "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", - "tam": "பிறந்த இடம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "listCountry", - "description": "Pay de naissance", - "labelName": { - "fra": "Pay de naissance", - "ara": "بلد الإزدياد", - "eng": "Birth Pay", - "hin": "सूचीदेश", - "kan": "ಪಟ್ಟಿ ದೇಶ", - "tam": "பட்டியல் நாடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "ara": "منطقة", - "fra": "Région", - "hin": "ऊपरी क्षेत्र", - "kan": "ಪ್ರದೇಶ", - "tam": "பிராந்தியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 1, - "parentLocCode": "MOR", - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "ara": "المحافظة", - "fra": "Province", - "hin": "प्रांत", - "kan": "ಪ್ರಾಂತ್ಯ", - "tam": "மாகாணம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 2, - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "ara": "مدينة", - "fra": "Ville", - "hin": "शहर", - "kan": "ನಗರ", - "tam": "நகரம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 3, - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "ara": "منطقة", - "fra": "Zone", - "hin": "क्षेत्र", - "kan": "ವಲಯ", - "tam": "மண்டலம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "locationHierarchyLevel": 4, - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "ara": "الكود البريدى", - "fra": "code postal", - "hin": "डाक कोड", - "kan": "ಅಂಚೆ ಕೋಡ್", - "tam": "அஞ்சல் குறியீடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "locationHierarchyLevel": 5, - "required": true - }, - { - "id": "residenceStatus", - "description": "Quartier/Résidence/Douar", - "labelName": { - "fra": "Quartier/Résidence/Douar", - "ara": "الحي / السكن / الدوار", - "eng": "Residence Status", - "hin": "निवास स्थान", - "kan": "ನಿವಾಸ", - "tam": "குடியிருப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "addressType", - "description": "Type d'habitat", - "labelName": { - "fra": "Type d'habitat", - "ara": "نوع السكن", - "eng": "Habitat type", - "kan": "ವಿಳಾಸದ ವಿಧ", - "hin": "पता मुद्रलेख", - "tam": "முகவரி வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true, - "tooltip": false - }, - { - "id": "portNo", - "description": "N Porte", - "labelName": { - "fra": "N° Porte", - "ara": "رقم الباب", - "eng": "Port No", - "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पोर्ट नंबर", - "tam": "துறை எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "apptNo", - "description": "N immeuble", - "labelName": { - "fra": "N° immeuble", - "ara": "رقم المبنى", - "eng": "Appt no", - "kan": "appt ಸಂಖ್ಯೆ", - "hin": "उपयुक्त संख्या", - "tam": "appt எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "address_info", - "preview": true - }, - { - "id": "addressLine1", - "description": "Adresse de résidence", - "labelName": { - "fra": "Adresse de résidence", - "ara": "عنوان السكن", - "eng": "Adresse Line1", - "hin": "पता पंक्ति 1", - "kan": "ವಿಳಾಸ 1", - "tam": "முகவரி வரி 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,100}$).*", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "referenceCNIENumber", - "description": "CNIE", - "labelName": { - "fra": "CNIE", - "ara": "رقم البطاقة الوطنية", - "eng": "CNIE", - "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", - "hin": "संदर्भ सीएनआईई नंबर", - "tam": "குறிப்பு CNIE எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "card_info", - "preview": true - }, - { - "id": "resOuPass", - "description": "Je dispose", - "labelName": { - "fra": "Je dispose", - "ara": "أملك", - "eng": "I have", - "kan": "resOuPass", - "hin": "resOuPass", - "tam": "resOuPass" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": false, - "tooltip": false + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":false, + "checked":false }, { - "id": "referenceResidencyNumber", - "description": "Numéro d'identité du résident étranger", - "labelName": { - "fra": "Numéro d'identité du résident étranger", - "ara": "رقم هوية المقيم الأجنبي", - "eng": "Identity number of the foreign resident", - "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", - "hin": "संदर्भ निवास संख्या", - "tam": "குறிப்பு குடியிருப்பு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "[A-Za-z][0-9]{6}[A-Za-z]", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "passportNumber", - "description": "Numéro de passport", - "labelName": { - "fra": "Numéro de Passeport", - "ara": "رقم جواز السفر", - "eng": "Passport number", - "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पासपोर्ट संख्या", - "tam": "கடவுச்சீட்டு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": false - }, - { - "id": "flagidcs", - "description": "Je dispose d'un IDCS", - "labelName": { - "fra": "Je dispose d'un IDCS", - "ara": "أملك المعرف المدني والاجتماعي الرقمي", - "eng": "I have an IDCS", - "kan": "ಧ್ವಜಗಳು", - "hin": "फ्लैगिड्स", - "tam": "கொடிகள்" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "birthCertificateNumber", - "description": "Numéro Acte de Naissance", - "labelName": { - "fra": "Numéro Acte de Naissance", - "ara": "رقم شهادة الميلاد", - "eng": "Birth Certificate Number", - "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", - "hin": "जन्म प्रमाणपत्र संख्या", - "tam": "பிறப்புச் சான்றிதழ் எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true - }, - { - "id": "civilRegistryNumber", - "description": "Numéro Acte de Naissance digitalisé", - "labelName": { - "fra": "Numéro Acte de Naissance digitalisé", - "ara": "رقم شهادة الميلاد الرقمي", - "eng": "Digital Birth Certificate Number", - "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", - "hin": "सिविल रजिस्ट्री नंबर", - "tam": "சிவில் பதிவு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "ara": "هاتف", - "fra": "Téléphone", - "hin": "फ़ोन", - "kan": "ದೂರವಾಣಿ", - "tam": "தொலைபேசி" - }, - "controlType": "textbox", - "inputRequired": true, + "attributeName": "phone", + "maskAttributeName":"masked_phone", "maskRequired": true, + "formatRequired": false, + "label": { + "eng": "Phone Number" + }, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[+]*([0-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "ara": "البريد الإلكتروني", - "fra": "Email", - "hin": "ईमेल", - "kan": "ಇಮೇಲ್", - "tam": "மின்னஞ்சல்" - }, - "controlType": "textbox", - "inputRequired": true, + "attributeName": "email", + "maskAttributeName":"masked_email", "maskRequired": true, + "formatRequired": false, + "label": { + "eng": "Email ID" + }, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "guardianType", - "description": "Type de Tuteur", - "labelName": { - "fra": "Type de Tuteur", - "ara": "نوع الوصي", - "eng": "Tutor type", - "kan": "ರಕ್ಷಕ ವಿಧ", - "hin": "संरक्षक प्रकार", - "tam": "பாதுகாவலர் வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": false + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "introducerName", - "description": "Prénom du tuteur", - "labelName": { - "eng": "introducer Name", - "ara": "مقدم Name", - "fra": "introducteur Name", - "kan": "ಪರಿಚಯಕಾರ Name", - "hin": "परिचयकर्ता Name", - "tam": "அறிமுகம் Name" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "introducerUIN", - "description": "Identifiant digital civil et social du tuteur", - "labelName": { - "eng": "introducer UIN", - "ara": "مقدم UIN", - "fra": "introducteur UIN", - "kan": "ಪರಿಚಯಕಾರ UIN", - "hin": "परिचयकर्ता UIN", - "tam": "அறிமுகம் UIN" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{10}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true + "attributeName": "addressLine1", + "maskRequired": false, + "formatRequired": true, + "label": { + "eng": "Address" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "formatOptionLabel":{ + "eng": "Address Format" + }, + "formatOption":{ + "eng": [{"label":"Region", "value":"region"}, {"label":"Province", "value":"province"}, {"label":"City", "value":"city"}, {"label":"Full Address", "value":"fullAddress"}] + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "introduceRID", - "description": "Identifiant RNP RID du tuteur", - "labelName": { - "eng": "introducer RID", - "ara": "مقدم RID", - "fra": "introducteur RID", - "kan": "ಪರಿಚಯಕಾರ RID", - "hin": "परिचयकर्ता RID", - "tam": "அறிமுகம் RID" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{29}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true + "attributeName": "addressLine2", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Address Line2" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "introduceCNIE", - "description": "Numéro d'identité du tuteur", - "labelName": { - "eng": "introducer CNIE", - "ara": "مقدم CNIE", - "fra": "introducteur CNIE", - "kan": "ಪರಿಚಯಕಾರ CNIE", - "hin": "परिचयकर्ता CNIE", - "tam": "அறிமுகம் CNIE" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true + "attributeName": "addressLine3", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Address Line3" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "relationWithChild", - "description": "Lien de parenté", - "labelName": { - "fra": "Lien de parenté", - "ara": "صلة القرابة", - "eng": "Relationship", - "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", - "hin": "बच्चे के साथ संबंध", - "tam": "குழந்தையுடன் உறவு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true + "attributeName": "city", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "City" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "ara": "إثبات العنوان", - "fra": "Preuve d'adresse", - "eng": "Address Proof", - "hin": "निवास प्रमाण पत्र", - "kan": "ವಿಳಾಸ ಪುರಾವೆ", - "tam": "முகவரி சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false + "attributeName": "region", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Region" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "ara": "إثبات الهوية", - "fra": "Preuve d'identité", - "eng": "Identity Proof", - "hin": "पहचान प्रमाण", - "kan": "ಗುರುತಿನ ಪುರಾವೆ", - "tam": "அடையாள சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true + "attributeName": "province", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Province" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "ara": "إثبات العلاقة", - "fra": "Preuve de relation", - "eng": "Relationship Proof", - "hin": "संबंध प्रमाण", - "kan": "ಸಂಬಂಧ ಪುರಾವೆ", - "tam": "உறவு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": true + "attributeName": "postalCode", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Postal Code" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "ara": "دليل DOB", - "fra": "Preuve de date de naissance", - "eng": "DOB Proof", - "hin": "जन्मतिथि प्रमाण", - "kan": "DOB ಪ್ರೂಫ್", - "tam": "DOB ஆதாரம்" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true + "attributeName": "gender", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Gender" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "ara": "إثبات الاستثناء", - "fra": "Preuve d'exception", - "eng": "Exception Proof", - "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", - "tam": "விதிவிலக்கு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true + "attributeName": "photo", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Image" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" ] } diff --git a/resident-ui-share-credential-schema.json b/resident-ui-share-credential-schema.json index 85c7380f804..375ebabf0d8 100644 --- a/resident-ui-share-credential-schema.json +++ b/resident-ui-share-credential-schema.json @@ -1,937 +1,236 @@ { "identity": [ { - "id": "IDSchemaVersion", - "description": "ID Schema Version", - "type": "number", - "controlType": null, - "fieldType": "default", - "inputRequired": false, - "validators": [], - "required": true - }, - { - "id": "title", - "description": "Title", - "labelName": { - "eng": "Title", - "ara": "عنوان", - "hin": "पशीर्षक", - "kan": "ಶೀರ್ಷಿಕೆ", - "tam": "தலைப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "fullName", - "description": "Enter Full Name", - "labelName": { - "eng": "Full Name", - "ara": "الاسم الكامل", - "fra": "Nom complet", - "hin": "पूरा नाम", - "kan": "ಪೂರ್ಣ ಹೆಸರು", - "tam": "முழு பெயர்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?!.*[ ]{4})(?=.{3,50}$).*", - "arguments": [] - } - ], - "required": true, - "transliteration": true - }, - { - "id": "dateOfBirth", - "description": "Enter DOB", - "labelName": { - "eng": "Date Of Birth", - "ara": "تاريخ الولادة", - "fra": "Date de naissance", - "hin": "जन्म की तारीख", - "kan": "ಹುಟ್ತಿದ ದಿನ", - "tam": "பிறந்த தேதி" - }, - "controlType": "ageDate", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [], - "required": true + "attributeName": "fullName", + "maskRequired": false, + "formatRequired": true, + "label": { + "eng": "Name" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "formatOptionLabel":{ + "eng": "Name Format" + }, + "formatOption":{ + "eng": [{"label":"First Name", "value":"firstName"}, {"label":"Middle Name", "value":"middleName"}, {"label":"Last Name", "value":"lastName"}, {"label":"Full Name", "value":"fullName"}] + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "gender", - "description": "Enter Gender", - "labelName": { - "eng": "Gender", - "ara": "جنس", - "fra": "Le genre", - "hin": "लिंग", - "kan": "ಲಿಂಗ", - "tam": "பாலினம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true + "attributeName": "dateOfBirth", + "maskRequired": false, + "formatRequired": true, + "label": { + "eng": "DOB" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "formatOptionLabel":{ + "eng": "Date Format" + }, + "formatOption":{ + "eng": [{"label":"DD/MM", "value":"DD/MM"}, {"label":"DD/MM/YYYY", "value":"DD/MM/YYYY"}] + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "UIN", - "description": "Enter UIN", - "labelName": { + "attributeName": "UIN", + "maskAttributeName":"masked_UIN", + "maskRequired": true, + "formatRequired": false, + "label": { "eng": "UIN" }, - "controlType": "textbox", - "inputRequired": true, - "maskRequired": true, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":false, + "checked":false }, { - "id": "perpetualVID", - "description": "Enter perpetualVID", - "labelName": { - "eng": "perpetualVID" - }, - "controlType": "textbox", - "inputRequired": true, + "attributeName": "perpetualVID", + "maskAttributeName":"masked_perpetualVID", "maskRequired": true, + "formatRequired": false, + "label": { + "eng": "Perpetual VID" + }, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true - }, - { - "id": "nationality", - "description": "nationality", - "labelName": { - "fra": "Nationalité", - "ara": "الجنسية", - "eng": "Nationality", - "hin": "राष्ट्रीयता", - "kan": "ರಾಷ್ಟ್ರೀಯತೆ", - "tam": "தேசியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "flagb", - "description": "Je suis né(e) au maroc", - "labelName": { - "fra": "Je suis né(e) au maroc", - "ara": "ولدت في المغرب", - "eng": "I was born in Morocco", - "hin": "झंडाब", - "kan": "ಧ್ವಜ", - "tam": "கொடி" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "personal_info", - "preview": true - }, - { - "id": "placeOfBirth", - "description": "Lieu de naissance", - "labelName": { - "fra": "Lieu de naissance", - "ara": "مكان الإزدياد", - "eng": "Place of birth", - "hin": "जन्म स्थान", - "kan": "ಹುಟ್ಟಿದ ಸ್ಥಳ", - "tam": "பிறந்த இடம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "listCountry", - "description": "Pay de naissance", - "labelName": { - "fra": "Pay de naissance", - "ara": "بلد الإزدياد", - "eng": "Birth Pay", - "hin": "सूचीदेश", - "kan": "ಪಟ್ಟಿ ದೇಶ", - "tam": "பட்டியல் நாடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "personal_info", - "preview": true - }, - { - "id": "region", - "description": "region", - "labelName": { - "eng": "Region", - "ara": "منطقة", - "fra": "Région", - "hin": "ऊपरी क्षेत्र", - "kan": "ಪ್ರದೇಶ", - "tam": "பிராந்தியம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 1, - "parentLocCode": "MOR", - "required": true - }, - { - "id": "province", - "description": "province", - "labelName": { - "eng": "Province", - "ara": "المحافظة", - "fra": "Province", - "hin": "प्रांत", - "kan": "ಪ್ರಾಂತ್ಯ", - "tam": "மாகாணம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 2, - "required": true - }, - { - "id": "city", - "description": "city", - "labelName": { - "eng": "City", - "ara": "مدينة", - "fra": "Ville", - "hin": "शहर", - "kan": "ನಗರ", - "tam": "நகரம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{3,50}$).*", - "arguments": [] - } - ], - "locationHierarchyLevel": 3, - "required": true - }, - { - "id": "zone", - "description": "zone", - "labelName": { - "eng": "Zone", - "ara": "منطقة", - "fra": "Zone", - "hin": "क्षेत्र", - "kan": "ವಲಯ", - "tam": "மண்டலம்" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [], - "locationHierarchyLevel": 4, - "required": true - }, - { - "id": "postalCode", - "description": "postalCode", - "labelName": { - "eng": "Postal Code", - "ara": "الكود البريدى", - "fra": "code postal", - "hin": "डाक कोड", - "kan": "ಅಂಚೆ ಕೋಡ್", - "tam": "அஞ்சல் குறியீடு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[(?i)A-Z0-9]{5}$|^NA$", - "arguments": [] - } - ], - "locationHierarchyLevel": 5, - "required": true - }, - { - "id": "residenceStatus", - "description": "Quartier/Résidence/Douar", - "labelName": { - "fra": "Quartier/Résidence/Douar", - "ara": "الحي / السكن / الدوار", - "eng": "Residence Status", - "hin": "निवास स्थान", - "kan": "ನಿವಾಸ", - "tam": "குடியிருப்பு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "addressType", - "description": "Type d'habitat", - "labelName": { - "fra": "Type d'habitat", - "ara": "نوع السكن", - "eng": "Habitat type", - "kan": "ವಿಳಾಸದ ವಿಧ", - "hin": "पता मुद्रलेख", - "tam": "முகவரி வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "address_info", - "preview": true, - "tooltip": false - }, - { - "id": "portNo", - "description": "N Porte", - "labelName": { - "fra": "N° Porte", - "ara": "رقم الباب", - "eng": "Port No", - "kan": "ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पोर्ट नंबर", - "tam": "துறை எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "apptNo", - "description": "N immeuble", - "labelName": { - "fra": "N° immeuble", - "ara": "رقم المبنى", - "eng": "Appt no", - "kan": "appt ಸಂಖ್ಯೆ", - "hin": "उपयुक्त संख्या", - "tam": "appt எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,10}$).*", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "address_info", - "preview": true - }, - { - "id": "addressLine1", - "description": "Adresse de résidence", - "labelName": { - "fra": "Adresse de résidence", - "ara": "عنوان السكن", - "eng": "Adresse Line1", - "hin": "पता पंक्ति 1", - "kan": "ವಿಳಾಸ 1", - "tam": "முகவரி வரி 1" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{0,100}$).*", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "address_info", - "preview": true - }, - { - "id": "referenceCNIENumber", - "description": "CNIE", - "labelName": { - "fra": "CNIE", - "ara": "رقم البطاقة الوطنية", - "eng": "CNIE", - "kan": "ಉಲ್ಲೇಖ CNIE ಸಂಖ್ಯೆ", - "hin": "संदर्भ सीएनआईई नंबर", - "tam": "குறிப்பு CNIE எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)|(^[a-z]{2}[0-9]{1,6}$)|(^[a-z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": true, - "visible": true, - "group": "card_info", - "preview": true - }, - { - "id": "resOuPass", - "description": "Je dispose", - "labelName": { - "fra": "Je dispose", - "ara": "أملك", - "eng": "I have", - "kan": "resOuPass", - "hin": "resOuPass", - "tam": "resOuPass" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": false, - "tooltip": false + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":false, + "checked":false }, { - "id": "referenceResidencyNumber", - "description": "Numéro d'identité du résident étranger", - "labelName": { - "fra": "Numéro d'identité du résident étranger", - "ara": "رقم هوية المقيم الأجنبي", - "eng": "Identity number of the foreign resident", - "kan": "ರೆಸಿಡೆನ್ಸಿ ಸಂಖ್ಯೆ ಉಲ್ಲೇಖ", - "hin": "संदर्भ निवास संख्या", - "tam": "குறிப்பு குடியிருப்பு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "[A-Za-z][0-9]{6}[A-Za-z]", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "passportNumber", - "description": "Numéro de passport", - "labelName": { - "fra": "Numéro de Passeport", - "ara": "رقم جواز السفر", - "eng": "Passport number", - "kan": "ಪಾಸ್ಪೋರ್ಟ್ ಸಂಖ್ಯೆ", - "hin": "पासपोर्ट संख्या", - "tam": "கடவுச்சீட்டு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": false - }, - { - "id": "flagidcs", - "description": "Je dispose d'un IDCS", - "labelName": { - "fra": "Je dispose d'un IDCS", - "ara": "أملك المعرف المدني والاجتماعي الرقمي", - "eng": "I have an IDCS", - "kan": "ಧ್ವಜಗಳು", - "hin": "फ्लैगिड्स", - "tam": "கொடிகள்" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": true, - "visible": true, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "birthCertificateNumber", - "description": "Numéro Acte de Naissance", - "labelName": { - "fra": "Numéro Acte de Naissance", - "ara": "رقم شهادة الميلاد", - "eng": "Birth Certificate Number", - "kan": "ಜನನ ಪ್ರಮಾಣಪತ್ರ ಸಂಖ್ಯೆ", - "hin": "जन्म प्रमाणपत्र संख्या", - "tam": "பிறப்புச் சான்றிதழ் எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^(?=.{1,20}$).*", - "arguments": [] - } - ], - "required": true, - "visible": false, - "group": "card_info", - "preview": true - }, - { - "id": "civilRegistryNumber", - "description": "Numéro Acte de Naissance digitalisé", - "labelName": { - "fra": "Numéro Acte de Naissance digitalisé", - "ara": "رقم شهادة الميلاد الرقمي", - "eng": "Digital Birth Certificate Number", - "kan": "ನಾಗರಿಕ ನೋಂದಣಿ ಸಂಖ್ಯೆ", - "hin": "सिविल रजिस्ट्री नंबर", - "tam": "சிவில் பதிவு எண்" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [], - "required": true, - "visible": false, - "group": "card_info", - "preview": true, - "tooltip": true - }, - { - "id": "phone", - "description": "phone", - "labelName": { - "eng": "Phone", - "ara": "هاتف", - "fra": "Téléphone", - "hin": "फ़ोन", - "kan": "ದೂರವಾಣಿ", - "tam": "தொலைபேசி" - }, - "controlType": "textbox", - "inputRequired": true, + "attributeName": "phone", + "maskAttributeName":"masked_phone", "maskRequired": true, + "formatRequired": false, + "label": { + "eng": "Phone Number" + }, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[+]*([0-9]{1})([0-9]{9})$", - "arguments": [] - } - ], - "required": true + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "email", - "description": "email", - "labelName": { - "eng": "Email", - "ara": "البريد الإلكتروني", - "fra": "Email", - "hin": "ईमेल", - "kan": "ಇಮೇಲ್", - "tam": "மின்னஞ்சல்" - }, - "controlType": "textbox", - "inputRequired": true, + "attributeName": "email", + "maskAttributeName":"masked_email", "maskRequired": true, + "formatRequired": false, + "label": { + "eng": "Email ID" + }, "maskRequiredLabel": { "eng": "Mask It" }, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$", - "arguments": [] - } - ], - "required": true - }, - { - "id": "guardianType", - "description": "Type de Tuteur", - "labelName": { - "fra": "Type de Tuteur", - "ara": "نوع الوصي", - "eng": "Tutor type", - "kan": "ರಕ್ಷಕ ವಿಧ", - "hin": "संरक्षक प्रकार", - "tam": "பாதுகாவலர் வகை" - }, - "controlType": "dropdown", - "subtype": "radio", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": false + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "introducerName", - "description": "Prénom du tuteur", - "labelName": { - "eng": "introducer Name", - "ara": "مقدم Name", - "fra": "introducteur Name", - "kan": "ಪರಿಚಯಕಾರ Name", - "hin": "परिचयकर्ता Name", - "tam": "அறிமுகம் Name" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "simpleType", - "validators": [ - { - "type": "regex", - "validator": "^[a-zA-ZÀ-ÿء-ي٠-٩ ]{2,47}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true - }, - { - "id": "introducerUIN", - "description": "Identifiant digital civil et social du tuteur", - "labelName": { - "eng": "introducer UIN", - "ara": "مقدم UIN", - "fra": "introducteur UIN", - "kan": "ಪರಿಚಯಕಾರ UIN", - "hin": "परिचयकर्ता UIN", - "tam": "அறிமுகம் UIN" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "checksum": true, - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{10}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true + "attributeName": "addressLine1", + "maskRequired": false, + "formatRequired": true, + "label": { + "eng": "Address" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "formatOptionLabel":{ + "eng": "Address Format" + }, + "formatOption":{ + "eng": [{"label":"Region", "value":"region"}, {"label":"Province", "value":"province"}, {"label":"City", "value":"city"}, {"label":"Full Address", "value":"fullAddress"}] + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "introduceRID", - "description": "Identifiant RNP RID du tuteur", - "labelName": { - "eng": "introducer RID", - "ara": "مقدم RID", - "fra": "introducteur RID", - "kan": "ಪರಿಚಯಕಾರ RID", - "hin": "परिचयकर्ता RID", - "tam": "அறிமுகம் RID" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "^[0-9]{29}$", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true, - "tooltip": true + "attributeName": "addressLine2", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Address Line2" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "introduceCNIE", - "description": "Numéro d'identité du tuteur", - "labelName": { - "eng": "introducer CNIE", - "ara": "مقدم CNIE", - "fra": "introducteur CNIE", - "kan": "ಪರಿಚಯಕಾರ CNIE", - "hin": "परिचयकर्ता CNIE", - "tam": "அறிமுகம் CNIE" - }, - "controlType": "textbox", - "inputRequired": true, - "fieldType": "default", - "type": "string", - "validators": [ - { - "type": "regex", - "validator": "(^[A-Z]{2}[0-9]{1,6}$)|(^[A-Z]{1}[0-9]{1,7}$)", - "arguments": [] - } - ], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true + "attributeName": "addressLine3", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Address Line3" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "relationWithChild", - "description": "Lien de parenté", - "labelName": { - "fra": "Lien de parenté", - "ara": "صلة القرابة", - "eng": "Relationship", - "kan": "ಮಗುವಿನೊಂದಿಗೆ ಸಂಬಂಧ", - "hin": "बच्चे के साथ संबंध", - "tam": "குழந்தையுடன் உறவு" - }, - "controlType": "dropdown", - "inputRequired": true, - "fieldType": "dynamic", - "type": "simpleType", - "validators": [], - "required": false, - "visible": false, - "group": "guardian_info", - "preview": true + "attributeName": "city", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "City" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfAddress", - "description": "proofOfAddress", - "labelName": { - "ara": "إثبات العنوان", - "fra": "Preuve d'adresse", - "eng": "Address Proof", - "hin": "निवास प्रमाण पत्र", - "kan": "ವಿಳಾಸ ಪುರಾವೆ", - "tam": "முகவரி சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POA", - "required": false + "attributeName": "region", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Region" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfIdentity", - "description": "proofOfIdentity", - "labelName": { - "ara": "إثبات الهوية", - "fra": "Preuve d'identité", - "eng": "Identity Proof", - "hin": "पहचान प्रमाण", - "kan": "ಗುರುತಿನ ಪುರಾವೆ", - "tam": "அடையாள சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POI", - "required": true + "attributeName": "province", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Province" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfRelationship", - "description": "proofOfRelationship", - "labelName": { - "ara": "إثبات العلاقة", - "fra": "Preuve de relation", - "eng": "Relationship Proof", - "hin": "संबंध प्रमाण", - "kan": "ಸಂಬಂಧ ಪುರಾವೆ", - "tam": "உறவு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POR", - "required": true + "attributeName": "postalCode", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Postal Code" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfDateOfBirth", - "description": "proofOfDateOfBirth", - "labelName": { - "ara": "دليل DOB", - "fra": "Preuve de date de naissance", - "eng": "DOB Proof", - "hin": "जन्मतिथि प्रमाण", - "kan": "DOB ಪ್ರೂಫ್", - "tam": "DOB ஆதாரம்" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POB", - "required": true + "attributeName": "gender", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Gender" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false }, { - "id": "proofOfException", - "description": "proofOfException", - "labelName": { - "ara": "إثبات الاستثناء", - "fra": "Preuve d'exception", - "eng": "Exception Proof", - "kan": "ಎಕ್ಸೆಪ್ಶನ್ ಪ್ರೂಫ್", - "tam": "விதிவிலக்கு சான்று" - }, - "controlType": "fileupload", - "inputRequired": true, - "validators": [], - "subType": "POE", - "required": true + "attributeName": "photo", + "maskRequired": false, + "formatRequired": false, + "label": { + "eng": "Image" + }, + "maskRequiredLabel": { + "eng": "Mask It" + }, + "displaykeyinsharewithpartner":true, + "displaykeyinpersonalisedcard":true, + "checked":false } - ], - "locationHierarchy": [ - "region", - "province", - "city", - "zone", - "postalCode" ] } diff --git a/resident-ui-update-demographics-schema.json b/resident-ui-update-demographics-schema.json index 4133325b8fd..7bb6ee0d40b 100644 --- a/resident-ui-update-demographics-schema.json +++ b/resident-ui-update-demographics-schema.json @@ -1,7 +1,7 @@ { "identity": [ { - "id": "fullName", + "attributeName": "fullName", "description": "", "labelName": { "eng": [ @@ -21,7 +21,7 @@ "tabgroup": "identity" }, { - "id": "dateOfBirth", + "attributeName": "dateOfBirth", "description": "", "labelName": { "eng": [ @@ -41,7 +41,7 @@ "tabgroup": "identity" }, { - "id": "gender", + "attributeName": "gender", "description": "", "labelName": { "eng": [ @@ -61,7 +61,7 @@ "tabgroup": "identity" }, { - "id": "proofOfIdentity", + "attributeName": "proofOfIdentity", "description": "", "labelName": { "eng": [ @@ -90,7 +90,7 @@ "tabgroup": "identity" }, { - "id": "addressLine1", + "attributeName": "addressLine1", "description": "", "labelName": { "eng": [ @@ -110,7 +110,7 @@ "tabgroup": "address" }, { - "id": "region", + "attributeName": "region", "name": "Region", "description": "", "labelName": { @@ -132,7 +132,7 @@ "locationHierarchyLevel": 1 }, { - "id": "province", + "attributeName": "province", "name": "Province", "description": "", "labelName": { @@ -154,7 +154,7 @@ "locationHierarchyLevel": 2 }, { - "id": "city", + "attributeName": "city", "name": "City", "description": "", "labelName": { @@ -176,7 +176,7 @@ "locationHierarchyLevel": 3 }, { - "id": "zone", + "attributeName": "zone", "name": "Zone", "description": "", "labelName": { @@ -198,7 +198,7 @@ "locationHierarchyLevel": 4 }, { - "id": "postalCode", + "attributeName": "postalCode", "name": "Postal Code", "description": "", "labelName": { @@ -220,7 +220,7 @@ "locationHierarchyLevel": 5 }, { - "id": "proofOfAddress", + "attributeName": "proofOfAddress", "description": "", "labelName": { "eng": [ @@ -249,7 +249,7 @@ "tabgroup": "address" }, { - "id": "email", + "attributeName": "email", "description": "", "labelName": { "eng": [ @@ -275,7 +275,7 @@ "tabgroup": "contact" }, { - "id": "phone", + "attributeName": "phone", "description": "", "labelName": { "eng": [ @@ -301,7 +301,7 @@ "tabgroup": "contact" }, { - "id": "preferredLang", + "attributeName": "preferredLang", "description": "", "labelName": { "eng": [ From 4e09d7af06dee8b54811f75467389e499620c9b2 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Thu, 9 Feb 2023 11:38:09 +0530 Subject: [PATCH 1076/1358] Added app prop --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index aeb506fe362..a73288893dc 100644 --- a/application-default.properties +++ b/application-default.properties @@ -438,3 +438,4 @@ mosip.auth.filter_disable=false # PDF Digital card is protected with password using below property based on define attribute it will encrypt by taking first 4 character. mosip.digitalcard.uincard.password=fullName|dateOfBirth mosip.digitalcard.pdf.password.enable.flag=true +mosip.access_token.subject.claim-name=sub From b50f51386d2795a006e55d9c3f9a3484c4e19ccb Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 10 Feb 2023 13:07:54 +0530 Subject: [PATCH 1077/1358] [MOSIP-25959][MOSIP-25960] Added config changes for S3 bucket pretext (#3335) --- application-default.properties | 4 ++-- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/application-default.properties b/application-default.properties index dcb4475b4bd..707a1d296fe 100644 --- a/application-default.properties +++ b/application-default.properties @@ -360,7 +360,7 @@ provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter ## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name -object.store.s3.bucket-name-prefix=mgr- +object.store.s3.bucket-name-prefix=${s3.pretext.value} # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -377,7 +377,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=packet-manager +packet.manager.account.name=${s3.pretext.value}packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest diff --git a/id-repository-default.properties b/id-repository-default.properties index 1151d138c6d..067d71c16d3 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepo +mosip.idrepo.objectstore.bucket-name=${s3.pretext.value}idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index d200225b120..07d4af0b4f9 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=prereg +mosip.kernel.objectstore.account-name=${s3.pretext.value}prereg ## Booking Service booking.service.version=v1 From fa2ec66015073ed663724455237cbc4186484e81 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Fri, 10 Feb 2023 13:46:25 +0530 Subject: [PATCH 1078/1358] enabled debug level for activemq --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 2e22683168f..568d2056ef0 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -974,3 +974,4 @@ mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,L registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 +logging.level.org.apache.activemq.ActiveMQConnectionFactory=DEBUG From 50de99e1f06caffc956ac21ff4948c5f8c16b157 Mon Sep 17 00:00:00 2001 From: damodarguru <124761463+damodarguru@users.noreply.github.com> Date: Mon, 13 Feb 2023 11:23:01 +0530 Subject: [PATCH 1079/1358] Update resident-default.properties (#3353) Updated property mosip.iam.module.login_flow.claims, email as false for testing. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 8b83c46b508..baa3e0e81ac 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -677,7 +677,7 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":false},"phone_number":{"essential":true},"individual_id":{"essential":true}}} #Rectangle coordinates for pfd signataured data mosip.resident.service.uincard.lowerleftx=73 From 751cdcc505168424bc18ff1fcca92a1052efc41b Mon Sep 17 00:00:00 2001 From: damodarguru <124761463+damodarguru@users.noreply.github.com> Date: Mon, 13 Feb 2023 16:10:18 +0530 Subject: [PATCH 1080/1358] Update resident-default.properties (#3354) Updated proprety mosip.iam.module.login_flow.claims, email as true and also update property mosip.iam.module.login_flow.scope, remove vid.manage for testing. --- resident-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index baa3e0e81ac..19c403d1cae 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -321,7 +321,7 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls -mosip.iam.module.login_flow.scope=openid profile identity.readonly identity.update vid.readonly vid.manage auth.readonly auth.method.manage auth.history.readonly auth.history.manage card.manage credential.manage notifications.readonly notifications.manage +mosip.iam.module.login_flow.scope=openid profile identity.readonly identity.update vid.readonly auth.readonly auth.method.manage auth.history.readonly auth.history.manage card.manage credential.manage notifications.readonly notifications.manage mosip.iam.module.login_flow.response_type=code mosip.iam.module.admin_realm_id=mosip @@ -677,7 +677,7 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":false},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} #Rectangle coordinates for pfd signataured data mosip.resident.service.uincard.lowerleftx=73 From 60b895edff30b6273c52f2e03c9da066e7d9c121 Mon Sep 17 00:00:00 2001 From: damodarguru <124761463+damodarguru@users.noreply.github.com> Date: Tue, 14 Feb 2023 13:25:21 +0530 Subject: [PATCH 1081/1358] Update resident-default.properties (#3359) Update the scope--mosip.iam.module.login_flow.scope, add vid.manage for testing. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 19c403d1cae..8b83c46b508 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -321,7 +321,7 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls -mosip.iam.module.login_flow.scope=openid profile identity.readonly identity.update vid.readonly auth.readonly auth.method.manage auth.history.readonly auth.history.manage card.manage credential.manage notifications.readonly notifications.manage +mosip.iam.module.login_flow.scope=openid profile identity.readonly identity.update vid.readonly vid.manage auth.readonly auth.method.manage auth.history.readonly auth.history.manage card.manage credential.manage notifications.readonly notifications.manage mosip.iam.module.login_flow.response_type=code mosip.iam.module.admin_realm_id=mosip From 1818a7712bdbdccb077063aca7a171677dcae9ff Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Thu, 16 Feb 2023 10:05:36 +0530 Subject: [PATCH 1082/1358] [DSD-2145] Added config changes for esignet --- esignet-default.properties | 290 +++++++++++++++++++++++++++ id-authentication-default.properties | 2 +- 2 files changed, 291 insertions(+), 1 deletion(-) create mode 100644 esignet-default.properties diff --git a/esignet-default.properties b/esignet-default.properties new file mode 100644 index 00000000000..805c0898827 --- /dev/null +++ b/esignet-default.properties @@ -0,0 +1,290 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at https://mozilla.org/MPL/2.0/. + +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url +# keycloak.admin.password +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret +# softhsm.kernel.pin +# softhsm-security-pin +# email.smtp.host +# email.smtp.username +# email.smtp.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt +# mosip.api.internal.url +# mosip.api.public.url + + +## ------------------------------------------------- e-Signet ---------------------------------------------------------- +mosip.esignet.misp.license.key=IXp6hUchx0oed84ukwpFAbnn3hiioxidzZMv75hchuIgnB0wuD +mosip.esignet.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/amr-acr-mapping.json + +mosip.esignet.supported-id-regex=\\S* +mosip.esignet.id-token-expire-seconds=3600 +mosip.esignet.access-token-expire-seconds=3600 +mosip.esignet.link-code-expire-in-secs=60 + +mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ + '${server.servlet.path}/authorization/authenticate', \ + '${server.servlet.path}/authorization/auth-code'} + +## ------------------------------------------ e-Signet binding --------------------------------------------------------- + +mosip.esignet.binding.salt-length=16 +mosip.esignet.binding.audience-id=esignet-binding +mosip.esignet.binding.key-expire-days=10 + +## -------------------------------------- Authentication & Authorization ----------------------------------------------- + +mosip.esignet.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ + \ '${server.servlet.path}/system-info/**' : { 'SCOPE_upload_certificate'},\ + \ '${server.servlet.path}/binding/wallet-binding' : { 'SCOPE_wallet_binding'}, \ + \ '${server.servlet.path}/binding/binding-otp' : { 'SCOPE_send_binding_otp'}} +mosip.esignet.security.auth.put-urls={'${server.servlet.path}/client-mgmt/**' : { 'SCOPE_update_oidc_client'} } +mosip.esignet.security.auth.get-urls={'${server.servlet.path}/system-info/**' : { 'SCOPE_get_certificate'} } + +mosip.esignet.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ + ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,\ + ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/** + +mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ + ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ + ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ + ${server.servlet.path}/v3/api-docs/** + +spring.security.oauth2.resourceserver.jwt.issuer-uri=https://iam.qa-1201-b2.mosip.net/auth/realms/mosip +spring.security.oauth2.resourceserver.jwt.jwk-set-uri=https://iam.qa-1201-b2.mosip.net/auth/realms/mosip/protocol/openid-connect/certs + +##------------------------------------------ Kafka configurations ------------------------------------------------------ +spring.kafka.bootstrap-servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} +spring.kafka.consumer.group-id=esignet-consumer +spring.kafka.consumer.enable-auto-commit=true +#spring.kafka.listener.concurrency=1 + +mosip.esignet.kafka.linked-session.topic=esignet-linked +mosip.esignet.kafka.linked-auth-code.topic=esignet-consented + +## ------------------------------------------- Integrations ------------------------------------------------------------ + +mosip.esignet.integration.scan-base-package=io.mosip.idp.authwrapper +mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl +mosip.esignet.integration.authenticator=IdentityAuthenticationService-temp +mosip.esignet.integration.key-binder=MockKeyBindingWrapperService +mosip.esignet.integration.audit-plugin=LoggerAuditService +mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService + +# captcha validator +mosip.esignet.send-otp.captcha-required=true +mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify +mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} +mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} + +# IDA integration props +mosip.esignet.authenticator.ida-auth-id=mosip.identity.kycauth +mosip.esignet.authenticator.ida-exchange-id=mosip.identity.kycexchange +mosip.esignet.authenticator.ida-send-otp-id=mosip.identity.otp +mosip.esignet.authenticator.ida-version=1.0 +mosip.esignet.authenticator.ida-domainUri=https://${mosip.esignet.host} +mosip.esignet.authenticator.ida.cert-url=https://${mosip.api.public.host}/mosip-certs/ida-partner.cer +mosip.esignet.authenticator.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.esignet.misp.license.key}/ +mosip.esignet.binder.ida.key-binding-url=https://api-internal.qa-1201-b2.mosip.net/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida-env=Developer +mosip.esignet.authenticator.ida.otp-channels=email,phone + +# Mock IDA integration props +mosip.esignet.mock.authenticator.persona-repo=/home/mosip/mockida +mosip.esignet.mock.authenticator.policy-repo=/home/mosip/mockida +mosip.esignet.mock.authenticator.claims-mapping-file=/home/mosip/mockida/claims_attributes_mapping.json + +## ------------------------------------------ oauth & openid supported values ------------------------------------------ + +## supported scopes +mosip.esignet.supported.authorize.scopes={'Manage-Identity-Data','Manage-VID','Manage-Authentication','Manage-Service-Requests','Manage-Credentials'} +mosip.esignet.supported.openid.scopes={'profile','email','phone'} +mosip.esignet.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number','locale'},'email' : {'email'}, 'phone' : {'phone_number'}} + +## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. +mosip.esignet.supported.response.types={'code'} + +## Form of Authorization Grant presented to token endpoint +mosip.esignet.supported.grant.types={'authorization_code'} + +## specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User +# page-The Authorization Server SHOULD display the authentication and consent UI consistent with a full User Agent page view. If the display parameter is not specified, this is the default display mode. +# popup-The Authorization Server SHOULD display the authentication and consent UI consistent with a popup User Agent window. The popup User Agent window should be of an appropriate size for a login-focused dialog and should not obscure the entire window that it is popping up over. +# touch-The Authorization Server SHOULD display the authentication and consent UI consistent with a device that leverages a touch interface. +# wap-The Authorization Server SHOULD display the authentication and consent UI consistent with a "feature phone" type display. +mosip.esignet.supported.ui.displays={'page','popup','touch','wap'} + +## specifies whether the Authorization Server prompts the End-User for reauthentication and consent +# none-The Authorization Server MUST NOT display any authentication or consent user interface pages. +# An error is returned if an End-User is not already authenticated or the Client does not have pre-configured consent +# for the requested Claims or does not fulfill other conditions for processing the request. +# The error code will typically be login_required, interaction_required, or another code defined in Section 3.1.2.6. +# This can be used as a method to check for existing authentication and/or consent. +# login-The Authorization Server SHOULD prompt the End-User for reauthentication. If it cannot reauthenticate the End-User, \ +# it MUST return an error, typically login_required. +# consent-The Authorization Server SHOULD prompt the End-User for consent before returning information to the Client. +# If it cannot obtain consent, it MUST return an error, typically consent_required. +# select_account-The Authorization Server SHOULD prompt the End-User to select a user account. This enables an End-User +# who has multiple accounts at the Authorization Server to select amongst the multiple accounts that they might have current +# sessions for. If it cannot obtain an account selection choice made by the End-User, it MUST return an error, +# typically account_selection_required. +mosip.esignet.supported.ui.prompts={'none','login','consent','select_account'} + +## Type of the client assertion +mosip.esignet.supported.client.assertion.types={'urn:ietf:params:oauth:client-assertion-type:jwt-bearer'} + +## Type of the client authentication methods for token endpoint +mosip.esignet.supported.client.auth.methods={'private_key_jwt'} + + +## ---------------------------------------- Cache configuration -------------------------------------------------------- + +mosip.esignet.cache.secure.individual-id=true +mosip.esignet.cache.store.individual-id=true +mosip.esignet.cache.security.secretkey.reference-id=TRANSACTION_CACHE +mosip.esignet.cache.security.algorithm-name=AES/ECB/PKCS5Padding + +mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented + +#spring.cache.type=redis +#spring.cache.cache-names=${mosip.esignet.cache.names} +#spring.redis.host=localhost +#spring.redis.port=6379 +management.health.redis.enabled=false + +spring.cache.type=simple +mosip.esignet.cache.key.hash.algorithm=SHA3-256 +mosip.esignet.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ + 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200 } +mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 180, 'authenticated': 120, 'authcodegenerated': 60, \ + 'userinfo': ${mosip.esignet.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ + 'linked': 60 , 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : 60, 'consented': 120 } + +## ------------------------------------------ Discovery openid-configuration ------------------------------------------- + +mosip.esignet.domain.url=https://${mosip.api.public.host} +mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} + +mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.discovery.issuer-id}' ,\ + \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ + \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' ,\ + \ 'userinfo_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/oidc/userinfo' , \ + \ 'registration_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/client-mgmt/oidc-client' , \ + \ 'jwks_uri' : '${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json' , \ + \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ + \ 'response_types_supported' : ${mosip.esignet.supported.response.types}, \ + \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ + \ 'userinfo_signing_alg_values_supported' : {'RS256'}, \ + \ 'userinfo_encryption_alg_values_supported' : {'RSAXXXXX'},\ + \ 'userinfo_encryption_enc_values_supported' : {'A128GCM'}, \ + \ 'response_modes_supported' : { 'query' }, \ + \ 'token_endpoint_auth_methods_supported' : ${mosip.esignet.supported.client.auth.methods}, \ + \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, \ + \ 'id_token_signing_alg_values_supported' : {'RS256'}, \ + \ 'claim_types_supported': {'normal'}, \ + \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','locale','individual_id'}, \ + \ 'claims_locales_supported' : {'en'}, \ + \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \ + \ 'ui_locales_supported' : {'en'} } + +##----------------------------------------- Database properties -------------------------------------------------------- + +mosip.esignet.database.hostname=postgres-postgresql.postgres +mosip.esignet.database.port=5432 +spring.datasource.url=jdbc:postgresql://${mosip.esignet.database.hostname}:${mosip.esignet.database.port}/mosip_esignet?currentSchema=esignet +spring.datasource.username=esignetuser +spring.datasource.password=${db.dbuser.password} + +spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect +spring.jpa.show-sql=false +spring.jpa.hibernate.ddl-auto=none +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + +#------------------------------------ Key-manager specific properties -------------------------------------------------- +#Crypto asymmetric algorithm name +mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING +#Crypto symmetric algorithm name +mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding +#Keygenerator asymmetric algorithm name +mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA +#Keygenerator symmetric algorithm name +mosip.kernel.keygenerator.symmetric-algorithm-name=AES +#Asymmetric algorithm key length +mosip.kernel.keygenerator.asymmetric-key-length=2048 +#Symmetric algorithm key length +mosip.kernel.keygenerator.symmetric-key-length=256 +#Encrypted data and encrypted symmetric key separator +mosip.kernel.data-key-splitter=#KEY_SPLITTER# +#GCM tag length +mosip.kernel.crypto.gcm-tag-length=128 +#Hash algo name +mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 +#Symmtric key length used in hash +mosip.kernel.crypto.hash-symmetric-key-length=256 +#No of iterations in hash +mosip.kernel.crypto.hash-iteration=100000 +#Sign algo name +mosip.kernel.crypto.sign-algorithm-name=RS256 +#Certificate Sign algo name +mosip.kernel.certificate.sign.algorithm=SHA256withRSA + +#mosip.kernel.keymanager.hsm.config-path=local.p12 +#mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +#mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} + +#Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +# For PKCS11 provide Path of config file. +# For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. +# For Offline & JCE property can be left blank, specified value will be ignored. +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +# Passkey of keystore for PKCS11, PKCS12 +# For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.esignet.security.pin} + + +mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io +mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER +mosip.kernel.keymanager.certificate.default.organization=IITB +mosip.kernel.keymanager.certificate.default.location=BANGALORE +mosip.kernel.keymanager.certificate.default.state=KA +mosip.kernel.keymanager.certificate.default.country=IN + +mosip.kernel.keymanager.softhsm.certificate.common-name=www.mosip.io +mosip.kernel.keymanager.softhsm.certificate.organizational-unit=MOSIP +mosip.kernel.keymanager.softhsm.certificate.organization=IITB +mosip.kernel.keymanager.softhsm.certificate.country=IN + +# Application Id for PMS master key. +mosip.kernel.partner.sign.masterkey.application.id=PMS +mosip.kernel.partner.allowed.domains=DEVICE + +mosip.kernel.keymanager-service-validate-url=https://${mosip.hostname}/keymanager/validate +mosip.kernel.keymanager.jwtsign.validate.json=false +mosip.keymanager.dao.enabled=false +crypto.PrependThumbprint.enable=true + +## -------------------------------------------- IDP-UI config ---------------------------------------------------------- + +mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ + 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ + 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ + 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}' } + + +logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 11ce6e01ca8..80db232cbc6 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -491,7 +491,7 @@ keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip.ida.database.port}/mosip_ida keymanager_database_username=${mosip.ida.database.user} keymanager_database_password=${db.dbuser.password} -mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id} +mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING mosip.kernel.keymanager.autogen.basekeys.list=${application.id}:${internal.reference.id},${application.id}:${partner.reference.id},${application.id}:${partner.biometric.reference.id},${application.id}:${mosip.kernel.zkcrypto.publickey.reference.id},${application.id}:${ida-auth-partner-id} zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida From daefbcc049fbbd2fe41a6958cf26cbb4b0d4e6cf Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Thu, 16 Feb 2023 12:48:54 +0530 Subject: [PATCH 1083/1358] [DSD-2145] Updated ida allowed domain to esignet --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 80db232cbc6..f0e8e250d27 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -560,7 +560,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.idp.host} +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.esignet.host} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX From 0242146b40c4194eda251c0d4c10479e8cd37223 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Thu, 16 Feb 2023 14:43:30 +0530 Subject: [PATCH 1084/1358] Corrected IDP URL to esignet URL --- resident-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 8b83c46b508..f3c58295624 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -285,11 +285,11 @@ mosip.iam.module.login_flow.name=authorization_code ########################################################### # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. -################## MOSIP IdP config +################## MOSIP ESignet config mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c mosip.iam.module.clientsecret= -mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp -mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize +mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet +mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json From 9e21545a624138f890d8ea6cc24313bce5d97006 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 16 Feb 2023 15:01:15 +0530 Subject: [PATCH 1085/1358] Added MISP to allowed partner domains (#3368) ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index ae7b418c4f0..a9912359f08 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -330,7 +330,7 @@ mosip.kernel.partner.sign.masterkey.application.id=PMS datastores=ldap_1_DS,db_1_DS,db_2_DS ## Partner Management Service allowed partner domains -mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM +mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP ## List of keys to auto generate. mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES From 7616fa5846fbff0589ad8f94c269440236d00ff8 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Thu, 16 Feb 2023 16:05:00 +0530 Subject: [PATCH 1086/1358] Updated with new scopes --- resident-default.properties | 46 ++++++++++++++++++------------------- 1 file changed, 23 insertions(+), 23 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index f3c58295624..a33591ddb31 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -321,7 +321,7 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls -mosip.iam.module.login_flow.scope=openid profile identity.readonly identity.update vid.readonly vid.manage auth.readonly auth.method.manage auth.history.readonly auth.history.manage card.manage credential.manage notifications.readonly notifications.manage +mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests Manage-Credentials mosip.iam.module.login_flow.response_type=code mosip.iam.module.admin_realm_id=mosip @@ -331,28 +331,28 @@ mosip.resident.identity.claim.individual-id=individual_id mosip.resident.identity.claim.ida-token=ida_token #Scopes -mosip.scope.resident.getinputattributevalues=identity.readonly -mosip.scope.resident.patchrevokevid=vid.manage -mosip.scope.resident.postgeneratevid=vid.manage -mosip.scope.resident.getvids=vid.readonly -mosip.scope.resident.getAuthTransactions=auth.readonly -mosip.scope.resident.postAuthTypeUnlock=auth.method.manage -mosip.scope.resident.postAuthTypeStatus=auth.method.manage -mosip.scope.resident.getAuthLockStatus=auth.method.manage -mosip.scope.resident.patchUpdateUin=identity.update -mosip.scope.resident.getServiceAuthHistoryRoles=auth.history.readonly -mosip.scope.resident.postSendPhysicalCard=card.manage -mosip.scope.resident.getUnreadServiceList=notifications.readonly -mosip.scope.resident.getNotificationCount=notifications.readonly -mosip.scope.resident.getNotificationClick=notifications.manage -mosip.scope.resident.getupdatedttimes=notifications.manage -mosip.scope.resident.postRequestDownloadPersonalizedCard=card.manage -mosip.scope.resident.postRequestShareCredWithPartner=credential.manage -mosip.scope.resident.postUnPinStatus=auth.history.manage -mosip.scope.resident.postPinStatus=auth.history.manage -mosip.scope.resident.getDownloadCard=card.manage -mosip.scope.resident.postPersonalizedCard=card.manage -mosip.scope.resident.getOrderRedirect=card.manage +mosip.scope.resident.getinputattributevalues=Manage-Identity-Data +mosip.scope.resident.patchrevokevid=Manage-VID +mosip.scope.resident.postgeneratevid=Manage-VID +mosip.scope.resident.getvids=Manage-VID +mosip.scope.resident.getAuthTransactions=Manage-Service-Requests +mosip.scope.resident.postAuthTypeUnlock=Manage-Authentication +mosip.scope.resident.postAuthTypeStatus=Manage-Authentication +mosip.scope.resident.getAuthLockStatus=Manage-Authentication +mosip.scope.resident.patchUpdateUin=Manage-Identity-Data +mosip.scope.resident.getServiceAuthHistoryRoles=Manage-Service-Requests +mosip.scope.resident.postSendPhysicalCard=Manage-Credentials +mosip.scope.resident.getUnreadServiceList=Manage-Service-Requests +mosip.scope.resident.getNotificationCount=Manage-Service-Requests +mosip.scope.resident.getNotificationClick=Manage-Service-Requests +mosip.scope.resident.getupdatedttimes=Manage-Service-Requests +mosip.scope.resident.postRequestDownloadPersonalizedCard=Manage-Credentials +mosip.scope.resident.postRequestShareCredWithPartner=Manage-Credentials +mosip.scope.resident.postUnPinStatus=Manage-Service-Requests +mosip.scope.resident.postPinStatus=Manage-Service-Requests +mosip.scope.resident.getDownloadCard=Manage-Credentials +mosip.scope.resident.postPersonalizedCard=Manage-Credentials +mosip.scope.resident.getOrderRedirect=Manage-Credentials ## Key manager mosip.resident.keymanager.encrypt-uri=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt From e56efa0285bd97e6fbf90e30e4398f9af8b15938 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Fri, 17 Feb 2023 11:24:03 +0530 Subject: [PATCH 1087/1358] Swithing to idp ui instead of esignet --- id-authentication-default.properties | 2 +- resident-default.properties | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f0e8e250d27..728f0f537f3 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -560,7 +560,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.esignet.host} +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.esignet.host},https://${mosip.idp.host} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX diff --git a/resident-default.properties b/resident-default.properties index a33591ddb31..ab9505613f5 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -288,8 +288,8 @@ mosip.iam.module.login_flow.name=authorization_code ################## MOSIP ESignet config mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c mosip.iam.module.clientsecret= -mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet -mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize +mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp +mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json From 7311ea6be0f01568acadf0b04e727df3923a2c1c Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Fri, 17 Feb 2023 12:23:34 +0530 Subject: [PATCH 1088/1358] Revert "Swithing to idp ui instead of esignet" This reverts commit e56efa0285bd97e6fbf90e30e4398f9af8b15938. --- id-authentication-default.properties | 2 +- resident-default.properties | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 728f0f537f3..f0e8e250d27 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -560,7 +560,7 @@ mosip.hotlist.cleanup-schedule.fixed-delay-in-hours=24 mosip.ida.allowed.enviromemnts=Staging,Developer,Pre-Production,Production # Allowed domain Uris. This values should be comma separted. #Ex. https://dev.mosip.net,https://qa2.mosip.net -mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.esignet.host},https://${mosip.idp.host} +mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.esignet.host} biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX diff --git a/resident-default.properties b/resident-default.properties index ab9505613f5..a33591ddb31 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -288,8 +288,8 @@ mosip.iam.module.login_flow.name=authorization_code ################## MOSIP ESignet config mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c mosip.iam.module.clientsecret= -mosip.iam.base.url=https://${mosip.api.public.host}/v1/idp -mosip.iam.authorization_endpoint=https://${mosip.idp.host}/authorize +mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet +mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json From 1be6c854bdad1625f7e3572ac1e26648587ea8aa Mon Sep 17 00:00:00 2001 From: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> Date: Fri, 17 Feb 2023 12:25:26 +0530 Subject: [PATCH 1089/1358] Updated MISP license key --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 805c0898827..a517e9416b5 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -27,7 +27,7 @@ ## ------------------------------------------------- e-Signet ---------------------------------------------------------- -mosip.esignet.misp.license.key=IXp6hUchx0oed84ukwpFAbnn3hiioxidzZMv75hchuIgnB0wuD +mosip.esignet.misp.license.key=elhvf43Uar8ShYra9N2bfTxaM3MaR50Hc9IMol5qazTRtX3FHZ mosip.esignet.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/amr-acr-mapping.json mosip.esignet.supported-id-regex=\\S* @@ -287,4 +287,4 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}' } -logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file +logging.level.org.springframework.web.client.RestTemplate=DEBUG From 63e89f164abcf4746ba5228ef9d9f03d4ee535cb Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 17 Feb 2023 14:11:45 +0530 Subject: [PATCH 1090/1358] [DSD-2160] Updated resident properties in line with develop2-v3 --- resident-default.properties | 29 ++++++++++++++++++++++++++++- 1 file changed, 28 insertions(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index a33591ddb31..0d54a822fe8 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -114,6 +114,7 @@ hibernate.temp.use_jdbc_metadata_defaults=false spring.jpa.properties.hibernate.temp.use_jdbc_metadata_defaults=false hibernate.jdbc.lob.non_contextual_creation = true + ## Auth Services KERNELAUTHMANAGER=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard @@ -122,12 +123,14 @@ INTERNALAUTHTRANSACTIONS=${mosip.ida.internal.url}/idauthentication/v1/internal/ KERNELENCRYPTIONSERVICE=${mosip.ida.internal.url}/idauthentication/v1/internal/getCertificate IDAUTHCREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid IDAUTHREVOKEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid + ## Notification service IDREPOGETIDBYUIN=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid IDREPOGETIDBYRID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid GETUINBYVID=${mosip.idrepo.vid.url}/idrepository/v1/vid resident.notification.emails=mosiptestuser@gmail.com resident.notification.message=Notification has been sent to the provided contact detail(s) + ## templates MASTER=${mosip.kernel.masterdata.url}/v1/masterdata TEMPLATES=${MASTER}/templates @@ -164,6 +167,7 @@ PACKETRECEIVER=http://regproc-group1.regproc/registrationprocessor/v1/packetrece SMSNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/sms/send EMAILNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/email/send AUTHTYPESTATUSUPDATE=${mosip.idrepo.identity.url}/idrepository/v1/identity/authtypes/status + #Regitstration processor reprint service #Registration status service REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search @@ -193,6 +197,21 @@ resident.identityjson=identity-mapping.json mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ +#Validation properties +resident.grievance-redressal.alt-email.chars.limit=128 +resident.grievance-redressal.alt-phone.chars.limit=64 +resident.grievance-redressal.comments.chars.limit=1024 +resident.share-credential.purpose.chars.limit=1024 +mosip.resident.eventid.searchtext.length=16 +mosip.kernel.uin.length=10 +mosip.kernel.vid.length=16 +mosip.kernel.rid.length=29 +mosip.resident.eid.length=16 +mosip.kernel.otp.default-length=6 +resident.message.allowed.special.char.regex=[A-Za-z0-9 .,-]+ +resident.purpose.allowed.special.char.regex=[A-Za-z0-9 .,-]+ +resident.id.allowed.special.char.regex=[A-Za-z0-9 -]+ + ## Security mosip.security.csrf-enable:false mosip.security.secure-cookie:false @@ -225,6 +244,7 @@ mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} mosip.service-context=/resident/v1 ## The exclusion list of URL patterns that should not be part of authentication and authorization mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/status,/**/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registration-centers-list/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user,/**/aid-stage/** + mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production @@ -254,7 +274,7 @@ resident.view.history.status.filters=all,Success,In Progress,Failed #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters,resident.ui.notification.update.interval.seconds,mosip.kernel.otp.expiry-time +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters,resident.ui.notification.update.interval.seconds,mosip.kernel.otp.expiry-time,resident.grievance-redressal.alt-email.chars.limit,resident.grievance-redressal.alt-phone.chars.limit,resident.grievance-redressal.comments.chars.limit,resident.share-credential.purpose.chars.limit,mosip.resident.eventid.searchtext.length,mosip.kernel.uin.length,mosip.kernel.vid.length,mosip.kernel.rid.length,mosip.resident.eid.length,mosip.kernel.otp.default-length,resident.message.allowed.special.char.regex,resident.purpose.allowed.special.char.regex,resident.id.allowed.special.char.regex,resident.version.new,mosip.resident.identity.auth.internal.id @@ -736,6 +756,7 @@ mosip.digital.card.credential.type=PDFCard ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 otp.request.flooding.max-count=10 + mosip.resident.message.code.maximum.length=1024 GET_RID_STATUS=${mosipbox.public.url}/registrationprocessor/v1/registrationtransaction/search/{rid} @@ -749,11 +770,14 @@ resident.additional.identity.attribute.to.fetch=UIN,email,phone,dateOfBirth,full resident.template.ack.authentication.request=acknowledgment-authentication-request resident.template.ack.get.my.id=acknowledgment-get-my-id resident.template.ack.vid.card.download=acknowledgment-vid-card-download + resident.template.purpose.success.vid-card-download=vid-card-download-positive-purpose resident.template.purpose.failure.vid-card-download=vid-card-download-negative-purpose resident.template.summary.success.vid-card-download=vid-card-download-positive-summary + resident.ui.datetime.pattern=yyyy-MM-dd HH:mm:ss resident.filename.datetime.pattern=yyyy-MM-dd'T'HH_mm_ss + ## The Registration centers will be searched based on the distance value in meters from the Geo location identified resident.nearby.centers.distance.meters=2000 @@ -767,4 +791,7 @@ resident.ui.notification.update.interval.seconds=30 mosip.allowed.extension=pdf,jpeg,png,jpg mosip.resident.schema.attribute-name=attributeName + mosip.max.file.upload.size.in.bytes=2000000 + +resident.service-history.download.max.count=100 \ No newline at end of file From 2900f9fd9a9de20df2f1aa5c415104719d1b9705 Mon Sep 17 00:00:00 2001 From: dell <gaganaa10@gmail.com> Date: Fri, 17 Feb 2023 16:47:03 +0530 Subject: [PATCH 1091/1358] [DSD-2065] Added config changes for including minio pretext value --- application-default.properties | 4 +++- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 3 files changed, 5 insertions(+), 3 deletions(-) diff --git a/application-default.properties b/application-default.properties index a73288893dc..8010256df17 100644 --- a/application-default.properties +++ b/application-default.properties @@ -359,6 +359,8 @@ provider.packetwriter.mosip=source:REGISTRATION_CLIENT,process:NEW|UPDATE|LOST|B provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES_UPDATE|LOST|RES_REPRINT,classname:io.mosip.commons.packet.impl.PacketWriterImpl provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter +## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name +object.store.s3.bucket-name-prefix=qa-1201-test # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -375,7 +377,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=packet-manager +packet.manager.account.name=qa-1201-test-packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest diff --git a/id-repository-default.properties b/id-repository-default.properties index ca8efa6d295..b5e0443a99a 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepo +mosip.idrepo.objectstore.bucket-name=qa-1201-test-idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 92d1e07ab17..47dce0f2150 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=prereg +mosip.kernel.objectstore.account-name=qa-1201-test-prereg ## Booking Service booking.service.version=v1 From 9602bab8d2db4386d77b4871442a226232d05d4f Mon Sep 17 00:00:00 2001 From: dell <gaganaa10@gmail.com> Date: Fri, 17 Feb 2023 16:57:10 +0530 Subject: [PATCH 1092/1358] [DSD-2065] Added config changes for including minio pretext value --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 8010256df17..488a2db55da 100644 --- a/application-default.properties +++ b/application-default.properties @@ -360,7 +360,7 @@ provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter ## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name -object.store.s3.bucket-name-prefix=qa-1201-test +object.store.s3.bucket-name-prefix=qa-1201-test- # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl From e871709d2423134614b23eaea3b22e791f3a8f09 Mon Sep 17 00:00:00 2001 From: dell <gaganaa10@gmail.com> Date: Tue, 21 Feb 2023 11:53:22 +0530 Subject: [PATCH 1093/1358] [DSD-2166] Disabled Captcha for otp login through IdP --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index a517e9416b5..2f03b6cd0a0 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -85,7 +85,7 @@ mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService # captcha validator -mosip.esignet.send-otp.captcha-required=true +mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} From 005b10f2834796a0fc8731df1950e35e1855a68e Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Wed, 22 Feb 2023 13:43:10 +0530 Subject: [PATCH 1094/1358] mosip.esignet.send-otp.captcha-required=true Changed mosip.esignet.send-otp.captcha-required=false to mosip.esignet.send-otp.captcha-required=true --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 2f03b6cd0a0..a517e9416b5 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -85,7 +85,7 @@ mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService # captcha validator -mosip.esignet.send-otp.captcha-required=false +mosip.esignet.send-otp.captcha-required=true mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} From 98729d50c663fb21aea4d9581b0ab4bbc8fbc645 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Wed, 22 Feb 2023 14:00:34 +0530 Subject: [PATCH 1095/1358] Added additional attributes. Added address, individual_id, street_address,locality,region,postal_code and country attributes. --- identity-mapping.json | 300 +++++++++++++++++++++++------------------- 1 file changed, 161 insertions(+), 139 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 42cfe2a4bd9..8dcb600d631 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -1,141 +1,163 @@ { - "identity": { - "IDSchemaVersion": { - "value": "IDSchemaVersion" - }, - "name": { - "value": "fullName" - }, - "gender": { - "value": "gender" - }, - "dob": { - "value": "dateOfBirth" - }, - "age": { - "value": "age" - }, - "introducerRID": { - "value": "introducerRID" - }, - "introducerUIN": { - "value": "introducerUIN" - }, - "introducerVID": { - "value": "introducerVID" - }, - "introducerName": { - "value": "introducerName" - }, - "phone": { - "value": "phone" - }, - "phoneNumber": { - "value": "phone" - }, - "email": { - "value": "email" - }, - "emailId": { - "value": "email" - }, - "uin": { - "value": "UIN" - }, - "vid": { - "value": "VID" - }, - "individualBiometrics": { - "value": "individualBiometrics" - }, - "introducerBiometrics": { - "value": "introducerBiometrics" - }, - "individualAuthBiometrics": { - "value": "individualAuthBiometrics" - }, - "officerBiometricFileName": { - "value": "officerBiometricFileName" - }, - "supervisorBiometricFileName": { - "value": "supervisorBiometricFileName" - }, - "residenceStatus": { - "value": "residenceStatus" - }, - "preferredLanguage": { - "value": "preferredLang" - }, - "locationHierarchyForProfiling": { - "value": "zone,postalCode" - }, - "addressLine1": { - "value": "addressLine1" - }, - "addressLine2": { - "value": "addressLine2" - }, - "addressLine3": { - "value": "addressLine3" - }, - "location1": { - "value": "city" - }, - "location2": { - "value": "region" - }, - "location3": { - "value": "province" - }, - "postalCode": { - "value": "postalCode" - }, - "location4": { - "value": "zone" - }, - "fullAddress": { - "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" - }, - "bestTwoFingers": { - "value": "bestTwoFingers" - }, - "birthdate": { - "value": "dateOfBirth" - }, - "picture": { - "value": "face" - }, - "phone_number": { - "value": "phone" - } - }, - "metaInfo": { - "value": "metaInfo" - }, - "audits": { - "value": "audits" - }, - "documents": { - "poa": { - "value": "proofOfAddress" - }, - "poi": { - "value": "proofOfIdentity" - }, - "por": { - "value": "proofOfRelationship" - }, - "pob": { - "value": "proofOfDateOfBirth" - }, - "poe": { - "value": "proofOfException" - } - }, - "attributeUpdateCountLimit": { - "fullName": 2, - "gender": 1, - "dob": 1, - "age": 1 - } + "identity": { + "IDSchemaVersion": { + "value": "IDSchemaVersion" + }, + "name": { + "value": "fullName" + }, + "gender": { + "value": "gender" + }, + "dob": { + "value": "dateOfBirth" + }, + "age": { + "value": "age" + }, + "introducerRID": { + "value": "introducerRID" + }, + "introducerUIN": { + "value": "introducerUIN" + }, + "introducerVID": { + "value": "introducerVID" + }, + "introducerName": { + "value": "introducerName" + }, + "phone": { + "value": "phone" + }, + "phoneNumber": { + "value": "phone" + }, + "email": { + "value": "email" + }, + "emailId": { + "value": "email" + }, + "uin": { + "value": "UIN" + }, + "vid": { + "value": "VID" + }, + "individualBiometrics": { + "value": "individualBiometrics" + }, + "introducerBiometrics": { + "value": "introducerBiometrics" + }, + "individualAuthBiometrics": { + "value": "individualAuthBiometrics" + }, + "officerBiometricFileName": { + "value": "officerBiometricFileName" + }, + "supervisorBiometricFileName": { + "value": "supervisorBiometricFileName" + }, + "residenceStatus": { + "value": "residenceStatus" + }, + "preferredLanguage": { + "value": "preferredLang" + }, + "locationHierarchyForProfiling": { + "value": "zone,postalCode" + }, + "addressLine1": { + "value": "addressLine1" + }, + "addressLine2": { + "value": "addressLine2" + }, + "addressLine3": { + "value": "addressLine3" + }, + "location1": { + "value": "city" + }, + "location2": { + "value": "region" + }, + "location3": { + "value": "province" + }, + "postalCode": { + "value": "postalCode" + }, + "location4": { + "value": "zone" + }, + "fullAddress": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + }, + "bestTwoFingers": { + "value": "bestTwoFingers" + }, + "birthdate": { + "value": "dateOfBirth" + }, + "picture": { + "value": "face" + }, + "phone_number": { + "value": "phone" + } + }, + "metaInfo": { + "value": "metaInfo" + }, + "audits": { + "value": "audits" + }, + "documents": { + "poa": { + "value": "proofOfAddress" + }, + "poi": { + "value": "proofOfIdentity" + }, + "por": { + "value": "proofOfRelationship" + }, + "pob": { + "value": "proofOfDateOfBirth" + }, + "poe": { + "value": "proofOfException" + } + }, + "address": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + }, + + "individual_id": { + "value": "individual_id" + }, + "street_address": { + "value": "addressLine1,addressLine2,addressLine3" + }, + "locality": { + "value": "city" + }, + "region": { + "value": "region" + }, + "postal_code": { + "value": "postalCode" + }, + "country": { + "value": "province" + }, + "attributeUpdateCountLimit": { + "fullName": 2, + "gender": 1, + "dob": 1, + "age": 1 + } } From 79770eb0d9ec23c4c12925d997091094fde585ac Mon Sep 17 00:00:00 2001 From: dell <gaganaa10@gmail.com> Date: Wed, 22 Feb 2023 17:28:08 +0530 Subject: [PATCH 1096/1358] [DSD-2172] Increased 'preauth'seconds to 600 seconds from 180 seconds --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 2f03b6cd0a0..214d5310e27 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -171,7 +171,7 @@ spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 mosip.esignet.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200 } -mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 180, 'authenticated': 120, 'authcodegenerated': 60, \ +mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 600, 'authenticated': 120, 'authcodegenerated': 60, \ 'userinfo': ${mosip.esignet.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ 'linked': 60 , 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : 60, 'consented': 120 } From 7b9c27b179110e1042aac5267d82783258bffcd1 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Fri, 24 Feb 2023 14:13:44 +0530 Subject: [PATCH 1097/1358] Updated captcha validator Updated Captcha validator property from "mosip.esignet.send-otp.captcha-required=true" to "mosip.esignet.send-otp.captcha-required=false" --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index dd03858c5a6..214d5310e27 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -85,7 +85,7 @@ mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService # captcha validator -mosip.esignet.send-otp.captcha-required=true +mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} From 36e9d8bf612a4665066467efbc535570b2f6d503 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Fri, 24 Feb 2023 14:54:21 +0530 Subject: [PATCH 1098/1358] updated config for testing (#3406) updated mosip.iam.module.login_flow.scope and mosip.iam.module.login_flow.claims for testing purpose will revert back once testing is completed. --- resident-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 0d54a822fe8..9f733400dce 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -341,7 +341,7 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls -mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests Manage-Credentials +mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests mosip.iam.module.login_flow.response_type=code mosip.iam.module.admin_realm_id=mosip @@ -697,7 +697,7 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":false},"phone_number":{"essential":true},"individual_id":{"essential":true}}} #Rectangle coordinates for pfd signataured data mosip.resident.service.uincard.lowerleftx=73 @@ -794,4 +794,4 @@ mosip.resident.schema.attribute-name=attributeName mosip.max.file.upload.size.in.bytes=2000000 -resident.service-history.download.max.count=100 \ No newline at end of file +resident.service-history.download.max.count=100 From 59694e9dca2ef1e2777cccaf325caef4bbfdce29 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Fri, 24 Feb 2023 17:18:51 +0530 Subject: [PATCH 1099/1358] Update partner-management-default.properties (#3402) --- partner-management-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/partner-management-default.properties b/partner-management-default.properties index 5fc6d150434..52a06bd9097 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -318,5 +318,5 @@ mosip.idp.claims-mapping-file-url=${spring_config_url_env}/*/${active_profile_en # IDP amr-acr mapping file url mosip.idp.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json ## IDP Service apis for create and update -pmp-idp.oidc.client.create.rest.uri=https://${mosip.api.public.host}/v1/idp/client-mgmt/oidc-client -pmp-idp.oidc.client.update.rest.uri=https://${mosip.api.public.host}/v1/idp/client-mgmt/oidc-client +pmp-idp.oidc.client.create.rest.uri=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client +pmp-idp.oidc.client.update.rest.uri=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client From 2c4d78ffde1aea54e349bab80da77e8aa5b826f5 Mon Sep 17 00:00:00 2001 From: damodarguru <124761463+damodarguru@users.noreply.github.com> Date: Fri, 24 Feb 2023 17:21:18 +0530 Subject: [PATCH 1100/1358] Update resident-default.properties (#3409) updated mosip.iam.module.login_flow.scope and mosip.iam.module.login_flow.claims revert back all data which are changed for testing. --- resident-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 9f733400dce..2b2f72853f3 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -341,7 +341,7 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls -mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests +mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests Manage-Credentials mosip.iam.module.login_flow.response_type=code mosip.iam.module.admin_realm_id=mosip @@ -697,7 +697,7 @@ mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":false},"phone_number":{"essential":true},"individual_id":{"essential":true}}} +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} #Rectangle coordinates for pfd signataured data mosip.resident.service.uincard.lowerleftx=73 From ed6c334e7ba2d8c50eb1f60c40772748553cebac Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 13:46:45 +0530 Subject: [PATCH 1101/1358] Moved some attributes under Identity JSON object Moved address,individual_id,street_address,locality,region,postal_code,country under Identity JSON object(line no 111 to 132) --- identity-mapping.json | 44 +++++++++++++++++++++---------------------- 1 file changed, 22 insertions(+), 22 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 8dcb600d631..b45c25a8d46 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -107,6 +107,28 @@ }, "phone_number": { "value": "phone" + }, + "address": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + }, + + "individual_id": { + "value": "individual_id" + }, + "street_address": { + "value": "addressLine1,addressLine2,addressLine3" + }, + "locality": { + "value": "city" + }, + "region": { + "value": "region" + }, + "postal_code": { + "value": "postalCode" + }, + "country": { + "value": "province" } }, "metaInfo": { @@ -132,28 +154,6 @@ "value": "proofOfException" } }, - "address": { - "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" - }, - - "individual_id": { - "value": "individual_id" - }, - "street_address": { - "value": "addressLine1,addressLine2,addressLine3" - }, - "locality": { - "value": "city" - }, - "region": { - "value": "region" - }, - "postal_code": { - "value": "postalCode" - }, - "country": { - "value": "province" - }, "attributeUpdateCountLimit": { "fullName": 2, "gender": 1, From 5f013097ee54dacc1a139d26b40dd8e377ccda6c Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 14:01:06 +0530 Subject: [PATCH 1102/1358] Added link status deferred timeout in secs Added mosip.esignet.link-status-deferred-response-timeout-secs=25(line no- 37) --- esignet-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/esignet-default.properties b/esignet-default.properties index 214d5310e27..4f643bd22ad 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,6 +34,7 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 +mosip.esignet.link-status-deferred-response-timeout-secs=25 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ From 12de6f87bfbf23d96ba4b7de668c59b548367c78 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 15:37:43 +0530 Subject: [PATCH 1103/1358] Updated link-status-deferred-response-timeout Updated mosip.esignet.link-status-deferred-response-timeout-secs=20 --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 4f643bd22ad..241d7ca135f 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,7 +34,7 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 -mosip.esignet.link-status-deferred-response-timeout-secs=25 +mosip.esignet.link-status-deferred-response-timeout-secs=20 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ From 1995eb7839b3f1e29fa427424772306d74a7e7cb Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 17:44:16 +0530 Subject: [PATCH 1104/1358] Updated link-status-deferred-response-timeout Updated mosip.esignet.link-status-deferred-response-timeout-secs=19 --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 241d7ca135f..01d600bc3c7 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,7 +34,7 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 -mosip.esignet.link-status-deferred-response-timeout-secs=20 +mosip.esignet.link-status-deferred-response-timeout-secs=19 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ From 98b88de6c29ae99a0c84ca699d20de8ac3369809 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 19:29:30 +0530 Subject: [PATCH 1105/1358] Updated link-status-deferred-response-timeout Updated mosip.esignet.link-status-deferred-response-timeout-secs=17 --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 01d600bc3c7..99dd783aa06 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,7 +34,7 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 -mosip.esignet.link-status-deferred-response-timeout-secs=19 +mosip.esignet.link-status-deferred-response-timeout-secs=17 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ From 651521aebbc9763e839566cd3cfe5bbcbedb5b6f Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 19:41:41 +0530 Subject: [PATCH 1106/1358] updated link status deferred timout in IDP-UI conf Updated mosip.idp.link-status-deferred-response-timeout-secs':'17' in idp-ui config --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 99dd783aa06..4a9a8dae87a 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -285,7 +285,7 @@ crypto.PrependThumbprint.enable=true mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ - 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}' } + 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}','mosip.idp.link-status-deferred-response-timeout-secs':'17'} logging.level.org.springframework.web.client.RestTemplate=DEBUG From f54c02f54f04e3333049fa5584a55bb87e4c7c80 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 27 Feb 2023 19:49:14 +0530 Subject: [PATCH 1107/1358] Updated mosip.idp.link-status-deferred-timeout Updated mosip.idp.link-status-deferred-response-timeout-secs':'19' in idp-ui config --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 4a9a8dae87a..0c2413188a6 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,7 +34,7 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 -mosip.esignet.link-status-deferred-response-timeout-secs=17 +mosip.esignet.link-status-deferred-response-timeout-secs=19 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ @@ -285,7 +285,7 @@ crypto.PrependThumbprint.enable=true mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ - 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}','mosip.idp.link-status-deferred-response-timeout-secs':'17'} + 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}','mosip.idp.link-status-deferred-response-timeout-secs':'19'} logging.level.org.springframework.web.client.RestTemplate=DEBUG From 244af90627603623d15026e99aed791245c863a0 Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Tue, 28 Feb 2023 16:41:18 +0530 Subject: [PATCH 1108/1358] [DSD-2182] Removed the hardcoded values --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 0c2413188a6..93e62f886bc 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -64,8 +64,8 @@ mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server. ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ ${server.servlet.path}/v3/api-docs/** -spring.security.oauth2.resourceserver.jwt.issuer-uri=https://iam.qa-1201-b2.mosip.net/auth/realms/mosip -spring.security.oauth2.resourceserver.jwt.jwk-set-uri=https://iam.qa-1201-b2.mosip.net/auth/realms/mosip/protocol/openid-connect/certs +spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip +spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs ##------------------------------------------ Kafka configurations ------------------------------------------------------ spring.kafka.bootstrap-servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} From 86e367f8cd6b38302ed6da366c98ab9beae77aee Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Tue, 28 Feb 2023 16:57:34 +0530 Subject: [PATCH 1109/1358] [DSD-2182] Removed the hardcoded values --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 93e62f886bc..967e530bdad 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -101,7 +101,7 @@ mosip.esignet.authenticator.ida.cert-url=https://${mosip.api.public.host}/mosip- mosip.esignet.authenticator.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.esignet.misp.license.key}/ -mosip.esignet.binder.ida.key-binding-url=https://api-internal.qa-1201-b2.mosip.net/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.binder.ida.key-binding-url=${keycloak.internal.url}/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida-env=Developer mosip.esignet.authenticator.ida.otp-channels=email,phone From d7ac8fdf43f24cd1c0dd3702c1e34d49a1ecf653 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 28 Feb 2023 21:34:55 +0530 Subject: [PATCH 1110/1358] [DSD-2199] merged the config from develop2-v3 to qa-1201-B2 (#3429) * [DSD-2199] updated the config from develop2-v3 to qa-1201-B2 * [DSD-2199] updated the pms prop file with esignet changes --- esignet-default.properties | 2 ++ partner-management-default.properties | 25 +++++++++++++------------ 2 files changed, 15 insertions(+), 12 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 967e530bdad..ff997022dcd 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -63,6 +63,8 @@ mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server. ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ ${server.servlet.path}/v3/api-docs/** + ${server.servlet.path}/linked-authorization/link-transaction,${server.servlet.path}/linked-authorization/authenticate,\ + ${server.servlet.path}/linked-authorization/consent,${server.servlet.path}/binding/** spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs diff --git a/partner-management-default.properties b/partner-management-default.properties index 52a06bd9097..8cb43d5d473 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -308,15 +308,16 @@ mosip.role.pms.getmisplicense=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.getmisplicensekey=PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.postmispfiltervalues=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN - -# query param usd to refer url to redirect after logout -mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri -# end session endpoint in OIDC -mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout -# IDP claims mapping file url -mosip.idp.claims-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/idp-claims-mapping.json -# IDP amr-acr mapping file url -mosip.idp.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json -## IDP Service apis for create and update -pmp-idp.oidc.client.create.rest.uri=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client -pmp-idp.oidc.client.update.rest.uri=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout +# esignet claims mapping file url +mosip.pms.esignet.claims-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/identity-mapping.json +# esignet amr-acr mapping file url +mosip.pms.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json +## esignet Service apis for create and update +mosip.pms.esignet.oidc-client-create-url=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client +mosip.pms.esignet.oidc-client-update-url=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client +## esignet Service api to fetch the OIDC Client configurations +mosip.pms.esignet.config-url=https://${mosip.api.public.host}/v1/esignet/oidc/.well-known/openid-configuration From f0b0b4882ae31460d5161d391ea14147591c28c2 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 28 Feb 2023 23:16:46 +0530 Subject: [PATCH 1111/1358] Update esignet-default.properties (#3430) * Update esignet-default.properties * Update esignet-default.properties --------- Co-authored-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- esignet-default.properties | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index ff997022dcd..578eb79ccbe 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -62,8 +62,7 @@ mosip.esignet.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server. mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/** - ${server.servlet.path}/linked-authorization/link-transaction,${server.servlet.path}/linked-authorization/authenticate,\ + ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/linked-authorization/link-transaction,${server.servlet.path}/linked-authorization/authenticate,\ ${server.servlet.path}/linked-authorization/consent,${server.servlet.path}/binding/** spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip From 7aa3e5a6785a800b3849d46b1caf882ffc740935 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Wed, 1 Mar 2023 10:39:59 +0530 Subject: [PATCH 1112/1358] Update esignet-default.properties --- esignet-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/esignet-default.properties b/esignet-default.properties index 578eb79ccbe..32b2a670f3e 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -45,6 +45,7 @@ mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authoriza mosip.esignet.binding.salt-length=16 mosip.esignet.binding.audience-id=esignet-binding mosip.esignet.binding.key-expire-days=10 +mosip.esignet.binding.encrypt-binding-id=false ## -------------------------------------- Authentication & Authorization ----------------------------------------------- From 7373bde0a5a92e970e4c450d9bc3d9d4069d2aff Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Wed, 1 Mar 2023 10:49:24 +0530 Subject: [PATCH 1113/1358] Corrected the ignore csrf urls --- esignet-default.properties | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 32b2a670f3e..979e06a41cc 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -58,13 +58,14 @@ mosip.esignet.security.auth.get-urls={'${server.servlet.path}/system-info/**' : mosip.esignet.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,\ - ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/** + ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,\ + ${server.servlet.path}/linked-authorization/link-transaction,${server.servlet.path}/linked-authorization/authenticate,\ + ${server.servlet.path}/linked-authorization/consent,${server.servlet.path}/binding/** mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/linked-authorization/link-transaction,${server.servlet.path}/linked-authorization/authenticate,\ - ${server.servlet.path}/linked-authorization/consent,${server.servlet.path}/binding/** + ${server.servlet.path}/v3/api-docs/** spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs From 3f73fea34907cf3253a68f95960fd7ab3232e5e3 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Wed, 1 Mar 2023 11:14:52 +0530 Subject: [PATCH 1114/1358] added new props for esignet (#3433) * Update mimoto-default.properties * Update inji-default.properties --- inji-default.properties | 4 ++-- mimoto-default.properties | 12 ++++-------- 2 files changed, 6 insertions(+), 10 deletions(-) diff --git a/inji-default.properties b/inji-default.properties index 55da551e13c..3772902ec96 100644 --- a/inji-default.properties +++ b/inji-default.properties @@ -9,8 +9,8 @@ mosip.inji.vcDownloadMaxRetry=10 # pool interval in milli seconds mosip.inji.vcDownloadPoolInterval=6000 # validate binding audience url to be sent in token -mosip.inji.audience=${mosip.api.internal.url}/v1/idpbinding/validate-binding +mosip.inji.audience=esignet-binding # issuer to be sent in token mosip.inji.issuer=residentapp # warning screen domain name -mosip.inji.warningDomainName=https://www.mosiphealthservices.com \ No newline at end of file +mosip.inji.warningDomainName=https://${mosip.api.public.host} diff --git a/mimoto-default.properties b/mimoto-default.properties index 3fd41fb990f..018185567e0 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -2,8 +2,7 @@ public.url=${mosip.api.internal.url}/residentmobileapp mosip.resident.base.url=${mosip.resident.url}/resident/v1 -idp.base.url=https://${mosip.api.public.host}/v1/idp/linked-authorization -idp.binding.base.url=${mosip.api.internal.url}/v1/idpbinding +idp.binding.base.url=https://${mosip.api.public.host}/v1/esignet/binding RESIDENT_OTP=${mosip.resident.base.url}/req/otp RESIDENT_CREDENTIAL_REQUEST=${mosip.resident.base.url}/req/credential @@ -11,12 +10,8 @@ RESIDENT_CREDENTIAL_REQUEST_STATUS=${RESIDENT_CREDENTIAL_REQUEST}/status RESIDENT_VID=${mosip.resident.base.url}/vid RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock -RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/individualId/otp -RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/status -IDP_LINK_TRANSACTION=${idp.base.url}/link-transaction -IDP_AUTHENTICATE=${idp.base.url}/authenticate -IDP_CONSENT=${idp.base.url}/consent -IDP_OTP=${idp.base.url}/send-otp +RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/req/individualId/otp +RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/get-individual-id BINDING_OTP=${idp.binding.base.url}/binding-otp WALLET_BINDING=${idp.binding.base.url}/wallet-binding @@ -182,3 +177,4 @@ mosip.auth.filter_disable=false mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} vercred.type.vid=VID +mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 From 686b1792ee2da532e83eb01596342a13e015f01d Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 2 Mar 2023 13:50:43 +0530 Subject: [PATCH 1115/1358] Updated link status deferred time Updated mosip.esignet.link-status-deferred-response-timeout-secs=25 --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 979e06a41cc..d3f156bd420 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,7 +34,7 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 -mosip.esignet.link-status-deferred-response-timeout-secs=19 +mosip.esignet.link-status-deferred-response-timeout-secs=25 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ @@ -288,7 +288,7 @@ crypto.PrependThumbprint.enable=true mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ - 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}','mosip.idp.link-status-deferred-response-timeout-secs':'19'} + 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}','mosip.esignet.link-status-deferred-response-timeout-secs':'25'} logging.level.org.springframework.web.client.RestTemplate=DEBUG From 53401b0f736f347f560c74f105942711b6c7dfac Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 2 Mar 2023 19:33:56 +0530 Subject: [PATCH 1116/1358] Removed locale from supported claims (#3444) --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index d3f156bd420..b4793a0d8db 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -118,7 +118,7 @@ mosip.esignet.mock.authenticator.claims-mapping-file=/home/mosip/mockida/claims_ ## supported scopes mosip.esignet.supported.authorize.scopes={'Manage-Identity-Data','Manage-VID','Manage-Authentication','Manage-Service-Requests','Manage-Credentials'} mosip.esignet.supported.openid.scopes={'profile','email','phone'} -mosip.esignet.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number','locale'},'email' : {'email'}, 'phone' : {'phone_number'}} +mosip.esignet.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number'},'email' : {'email'}, 'phone' : {'phone_number'}} ## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. mosip.esignet.supported.response.types={'code'} @@ -201,7 +201,7 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.discovery.issuer- \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, \ \ 'id_token_signing_alg_values_supported' : {'RS256'}, \ \ 'claim_types_supported': {'normal'}, \ - \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','locale','individual_id'}, \ + \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ \ 'claims_locales_supported' : {'en'}, \ \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \ \ 'ui_locales_supported' : {'en'} } From 51d017cc04db664da7f05099567f8939004f095c Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Mon, 6 Mar 2023 15:37:15 +0530 Subject: [PATCH 1117/1358] added new configs --- credential-service-default.properties | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/credential-service-default.properties b/credential-service-default.properties index 02b710a497a..9c124d85f6d 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -27,3 +27,15 @@ mosip.credential.service.vercred.proof.verificationmethod=https://${mosip.api.pu KEYMANAGER_VERCRED_SIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwsSign credentialType.formatter.VERCRED=VerCredProvider + + +mosip.mask.function.identityAttributes=convertToMaskDataFormat +mosip.mask.function.date=convertToMaskDate +mosip.format.function.address=formatAddress +mosip.format.function.name=formatName +mosip.format.function.dateTimeFormat=convertDateFormat + +credentialType.formatter.PDFCARD=VerCredProvider +GENERATE_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid +RETRIEVE_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin + From cdd05f289d32b1992c2d84fe6cd451e480f99925 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 6 Mar 2023 19:15:05 +0530 Subject: [PATCH 1118/1358] commented qualitycheck for testing purpose mosip.toolkit.sbi.qualitycheck.iris.sdk.urls was removed for testing purposes. --- compliance-toolkit-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index dc04f971811..9aa8e7b5da3 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -193,4 +193,4 @@ springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] -mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +#mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] From 1e56c365344b4ac2c58904536a6591c1a6ebb122 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 6 Mar 2023 19:23:33 +0530 Subject: [PATCH 1119/1358] reverting the quality changes and commenting reverting changes --- compliance-toolkit-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 9aa8e7b5da3..dc04f971811 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -193,4 +193,4 @@ springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] -#mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] From 555539795517e987afef2bdb7e76117a11704288 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 6 Mar 2023 19:25:47 +0530 Subject: [PATCH 1120/1358] commenting for testingpurpose commented base url and internal url (44 and 46) --- compliance-toolkit-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index dc04f971811..7ce7b954019 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -41,9 +41,9 @@ mosip.security.origins=localhost:8099 mosip.security.secure-cookie=false #iam -mosip.api.internal.url=https://${mosip.api.internal.host} +#mosip.api.internal.url=https://${mosip.api.internal.host} #keycloak.external.url=${mosip.api.internal.url}/keycloak -iam.base.url=${keycloak.external.url} +#iam.base.url=${keycloak.external.url} #iam adapter setup mosip.service-context=${server.servlet.context-path} From 80a17998bf8fe10ae69e9a048b8237af15e2060a Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 6 Mar 2023 19:36:15 +0530 Subject: [PATCH 1121/1358] reverting the changes reverting the previous changes --- compliance-toolkit-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index 7ce7b954019..dc04f971811 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -41,9 +41,9 @@ mosip.security.origins=localhost:8099 mosip.security.secure-cookie=false #iam -#mosip.api.internal.url=https://${mosip.api.internal.host} +mosip.api.internal.url=https://${mosip.api.internal.host} #keycloak.external.url=${mosip.api.internal.url}/keycloak -#iam.base.url=${keycloak.external.url} +iam.base.url=${keycloak.external.url} #iam adapter setup mosip.service-context=${server.servlet.context-path} From 933ca4b440250ec4e0413873d643e9eeb3ee9e83 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 6 Mar 2023 19:39:36 +0530 Subject: [PATCH 1122/1358] commenting the DB section properties commenting the DB section properties for testing purpose --- compliance-toolkit-default.properties | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index dc04f971811..d12ee55f90a 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -14,12 +14,12 @@ # If database is external to production, provide the DNS or ip of the host and port ##DB properties -javax.persistence.jdbc.driver=org.postgresql.Driver -mosip.database.ip=postgres-postgresql.postgres -mosip.database.port=5432 -javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_toolkit?useSSL=false -javax.persistence.jdbc.user=toolkituser -javax.persistence.jdbc.password=${db.dbuser.password} +#javax.persistence.jdbc.driver=org.postgresql.Driver +#mosip.database.ip=postgres-postgresql.postgres +#mosip.database.port=5432 +#javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_toolkit?useSSL=false +#javax.persistence.jdbc.user=toolkituser +#javax.persistence.jdbc.password=${db.dbuser.password} ## Hibernate hibernate.hbm2ddl.auto=none From b9f48b6bc3dd378c691925d0fcd6221a66504ba8 Mon Sep 17 00:00:00 2001 From: ckesiraju <94882008+ckesiraju@users.noreply.github.com> Date: Mon, 6 Mar 2023 20:11:55 +0530 Subject: [PATCH 1123/1358] reverting back the DB changes reverting the changes back to default --- compliance-toolkit-default.properties | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index d12ee55f90a..dc04f971811 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -14,12 +14,12 @@ # If database is external to production, provide the DNS or ip of the host and port ##DB properties -#javax.persistence.jdbc.driver=org.postgresql.Driver -#mosip.database.ip=postgres-postgresql.postgres -#mosip.database.port=5432 -#javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_toolkit?useSSL=false -#javax.persistence.jdbc.user=toolkituser -#javax.persistence.jdbc.password=${db.dbuser.password} +javax.persistence.jdbc.driver=org.postgresql.Driver +mosip.database.ip=postgres-postgresql.postgres +mosip.database.port=5432 +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.database.ip}:${mosip.database.port}/mosip_toolkit?useSSL=false +javax.persistence.jdbc.user=toolkituser +javax.persistence.jdbc.password=${db.dbuser.password} ## Hibernate hibernate.hbm2ddl.auto=none From 2ff9359251fb927d9daed016b890552d9630a45d Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 7 Mar 2023 10:28:35 +0530 Subject: [PATCH 1124/1358] [DSD-2238] Added config changes for idrepo service --- credential-service-default.properties | 10 +-------- id-repository-default.properties | 30 +++++++++++++++++---------- 2 files changed, 20 insertions(+), 20 deletions(-) diff --git a/credential-service-default.properties b/credential-service-default.properties index 9c124d85f6d..c1ca318cd03 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -27,15 +27,7 @@ mosip.credential.service.vercred.proof.verificationmethod=https://${mosip.api.pu KEYMANAGER_VERCRED_SIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwsSign credentialType.formatter.VERCRED=VerCredProvider - - -mosip.mask.function.identityAttributes=convertToMaskDataFormat -mosip.mask.function.date=convertToMaskDate -mosip.format.function.address=formatAddress -mosip.format.function.name=formatName -mosip.format.function.dateTimeFormat=convertDateFormat - credentialType.formatter.PDFCARD=VerCredProvider GENERATE_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid RETRIEVE_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin - +credential.service.default.vid.type=PERPETUAL \ No newline at end of file diff --git a/id-repository-default.properties b/id-repository-default.properties index b5e0443a99a..a69c8d488e5 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=qa-1201-test-idrepo +mosip.idrepo.objectstore.bucket-name=idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details @@ -65,7 +65,7 @@ kernel.retry.exponential.backoff.max.interval.millisecs=1000 # Whether to traverse to the root cause exception from the exception thrown and use the same root cause to decide whether to retry or not. Default is true. kernel.retry.traverse.root.cause.enabled=false #Comma separated List of fully qualified Exceptions which are retryable (inclusion list). Their subclasses will also be considered in the evaluation. -kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException,org.springframework.dao.DataIntegrityViolationException,org.hibernate.exception.ConstraintViolationException,org.springframework.orm.ObjectOptimisticLockingFailureException +kernel.retry.retryable.exceptions=io.mosip.idrepository.core.exception.IdRepoRetryException #Comma separated List of fully qualified Exceptions which are not-retryable (exclusion list). Their subclasses will also be considered in the evaluation. kernel.retry.nonretryable.exceptions= @@ -120,6 +120,12 @@ mosip.idrepo.vid.deactive-status=DEACTIVATED # VID status value which is stored in database for reactivated VIDs. Used in reactivate-all-vids api. mosip.idrepo.vid.reactive-status=ACTIVE +#RID +# Application version expected in the request +mosip.idrepo.rid.get.version=1.0 +# Application ids expected in the requests +mosip.idrepo.rid.get.id=mosip.idrepo.rid.get + # Config server url mosip.idrepo.mosip-config-url=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ # VID policy schema against which VID policy is validated @@ -163,7 +169,7 @@ mosip.iam.adapter.renewal-before-expiry-interval=15 mosip.iam.adapter.self-token-renewal-enable=true mosip.auth.filter_disable=false -mosip.idrepo.bio-extractor-service.rest.uri=${mosip.idrepo.biosdk.url}/biosdk-service/{extractionFormat}/extracttemplates +mosip.idrepo.bio-extractor-service.rest.uri=${mosip.mock.biosdk.url}/biosdk-service/{extractionFormat}/extracttemplates mosip.idrepo.bio-extractor-service.rest.httpMethod=POST mosip.idrepo.bio-extractor-service.rest.headers.mediaType=application/json mosip.idrepo.bio-extractor-service.rest.timeout=100 @@ -265,17 +271,13 @@ mosip.credential.request.crypto-ref-id=credential_request mosip.credential.request.job.timedelay=15000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 -# This property can be set to auth,print or keep it empty so batch will pick up all records# credential.request.type=auth credential.request.retry.max.count=10 credential.request.reprocess.statuscodes=FAILED,RETRY -credential.batch.core.pool.size=10 -credential.batch.max.pool.size=10 -credential.batch.queue.capacity=10 credential.batch.page.size=10 -credential.batch.chunk.size=10 credential.request.process.locktimeout=60000 credential.request.reprocess.locktimeout=60000 +credential.batch.status=NEW ## Rest services CRDENTIALSERVICE=${mosip.idrepo.credential.service.url}/v1/credentialservice/issue @@ -316,6 +318,8 @@ credentialType.formatter.QRCODE=QrCodeProvider credentialType.formatter.MOSIP=CredentialProvider credentialType.formatter.EUIN=QrCodeProvider credentialType.formatter.REPRINT=QrCodeProvider +credentialType.formatter.EUIN_WITH_QR=QrCodeProvider +credentialType.formatter.EUIN_WITH_FACEQR=QrCodeProvider mosip.credential.service.format.id=http://mosip.io/credentials/ mosip.credential.service.format.issuer=https://mosip.io/issuers/ mosip.credential.service.application.id=PARTNER @@ -330,7 +334,6 @@ IDREPOGETIDBYID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid mosip.data.share.protocol=http mosip.data.share.internal.domain.name=datashare.datashare CREATEDATASHARE=/v1/datashare/create -KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey KEYMANAGER_JWTSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign KEYMANAGER_ENCRYPT_PIN=${mosip.kernel.keymanager.url}/v1/keymanager/encryptWithPin KEYMANAGER_ENCRYPT_ZK=${mosip.kernel.keymanager.url}/v1/keymanager/zkEncrypt @@ -339,7 +342,7 @@ PARTNER_EXTRACTION_POLICY=${mosip.pms.partnermanager.url}/v1/partnermanager/part credential.service.token.request.issuerUrl=${keycloak.internal.url}/auth/realms/mosip # BioSDK service -mosip.biosdk.default.service.url=${mosip.idrepo.biosdk.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -378,7 +381,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha @@ -411,6 +414,8 @@ mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESS mosip.role.idrepo.identity.draftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.remainingUpdateCountByIndividualId=RESIDENT,ID_REPOSITORY +mosip.role.idrepo.identity.getRidByIndividualId=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvid=RESIDENT,REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.vid.getvid=REGISTRATION_PROCESSOR,ID_AUTHENTICATION,RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.getviduin=REGISTRATION_PROCESSOR,ID_REPOSITORY,RESIDENT @@ -419,3 +424,6 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.mask.function.identityAttributes=convertToMaskDataFormat + +mosip.role.idrepo.credentialrequest.postv2requestgeneratorrid=CREDENTIAL_REQUEST,ID_REPOSITORY \ No newline at end of file From f96c15dac604c5bee955cc4289e3d56db2e3b1d0 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 7 Mar 2023 12:10:49 +0530 Subject: [PATCH 1125/1358] [DSD-2237] Added config changes for digitalcard --- digital-card-default.properties | 122 ++++++++++++++++++++++ digitalcard-template.properties | 3 + registration-processor-default.properties | 8 ++ 3 files changed, 133 insertions(+) create mode 100644 digital-card-default.properties create mode 100644 digitalcard-template.properties diff --git a/digital-card-default.properties b/digital-card-default.properties new file mode 100644 index 00000000000..cb370131dc3 --- /dev/null +++ b/digital-card-default.properties @@ -0,0 +1,122 @@ +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.digitalcard.database.hostname=postgres-postgresql.postgres +mosip.digitalcard.database.port=5432 + +# Websub +## webusb properties that used to subscribe and publish event based on specified topic +mosip.digitalcard.websub.secret=test +mosip.digitalcard.credential.request.partner.id=mpartner-default-digitalcard +mosip.digitalcard.websub.publish.topic=CREDENTIAL_STATUS_UPDATE +mosip.digitalcard.subscription-delay-millisecs=120000 +mosip.digitalcard.resubscription-delay-millisecs=1000000 +mosip.digitalcard.generate.identity.create.websub.topic=IDENTITY_CREATED +mosip.digitalcard.generate.identity.update.websub.topic=IDENTITY_UPDATED +mosip.digitalcard.partner.id=mpartner-default-digitalcard +mosip.digitalcard.generate.credential.websub.topic=${mosip.digitalcard.partner.id}/CREDENTIAL_ISSUED +mosip.digitalcard.generate.identity.create.callbackurl=${mosipbox.public.url}/v1/digitalcard/idCreateEventHandle/callback/notifyStatus +mosip.digitalcard.generate.identity.update.callbackurl=${mosipbox.public.url}/v1/digitalcard/idUpdateEventHandle/callback/notifyStatus +mosip.digitalcard.generate.credential.callbackurl=${mosipbox.public.url}/v1/digitalcard/credential/callback/notifyStatus + +# Based on credentialType we are sending credential request +mosip.digitalcard.credential.type=PDFCard + +#Token generator properties Digital Card Service +digitalcard.token.request.appid=admin +digitalcard.token.request.clientId=mpartner-default-digitalcard +digitalcard.token.request.secretKey=${mpartner.default.digitalcard.secret} +digitalcard.token.request.version=1.0 +digitalcard.token.request.id=io.mosip.digitalcard +digitalcard.token.request.issuerUrl=${mosip.keycloak.issuerUrl} +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.digitalcard.service.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' + +#----------------------- DB-------------------------------------------------- +javax.persistence.jdbc.driver=org.postgresql.Driver +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.digitalcard.database.hostname}:${mosip.digitalcard.database.port}/mosip_digitalcard +javax.persistence.jdbc.user=digitalcarduser +javax.persistence.jdbc.password=${db.dbuser.password} +hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect +hibernate.jdbc.lob.non_contextual_creation=true +hibernate.hbm2ddl.auto=none +hibernate.show_sql=false +hibernate.format_sql=false +hibernate.connection.charSet=utf8 +hibernate.cache.use_second_level_cache=false +hibernate.cache.use_query_cache=false +hibernate.cache.use_structured_entries=false +hibernate.generate_statistics=false + + +#----------------------- CBEFF Util-------------------------------------------------- +# Cbeff XSD file name in config server +mosip.kernel.xsdfile=mosip-cbeff.xsd +mosip.digitalcard.demographic.identity=identity +mosip.digitalcard.identityjson=identity-mapping.json + +#----------------------- Crypto property for encryption and decryption-------------------------------------------------- +mosip.digitalcard.crypto.partner.id=mpartner-default-digitalcard +mosip.digitalcard.crypto.application.id=DIGITAL_CARD +CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt +CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt + + +#----------------------- dataShare property to create dataShareUrl-------------------------------------------------- +mosip.digitalcard.datashare.partner.id=mpartner-default-digitalcard +mosip.digitalcard.datashare.policy.id=mpolicy-default-digitalcard +CREATEDATASHARE=${mosip.datashare.url}/v1/datashare/create + +#header length to be removed from iso image to get actual image +mosip.digitalcard.uin.header.length=75 + +#Rectangle coordinates for pfd signataured data +mosip.digitalcard.service.uincard.lowerleftx=73 +mosip.digitalcard.service.uincard.lowerlefty=100 +mosip.digitalcard.service.uincard.upperrightx=300 +mosip.digitalcard.service.uincard.upperrighty=300 +mosip.digitalcard.service.uincard.signature.reason="signing" + +#Digital card template language and templateType code that used to generate pdf card. +mosip.template-language=eng +mosip.digitalcard.templateTypeCode=RPR_UIN_CARD_TEMPLATE +TEMPLATES=${mosip.kernel.masterdata.url}/v1/masterdata/templates + +# Credential api that used to created credential and get the credential details +CREDENTIAL_REQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator +CREDENTIAL_STATUS_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/get +IDREPOGETIDBYUIN=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid + +# PDFSIGN to signed the pdf card +PDFSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/pdf/sign + + +# PDF Digital card is protected with password using below property based on define attribute it will encrypt by taking first 4 character. +mosip.digitalcard.uincard.password=fullName|dateOfBirth +mosip.digitalcard.pdf.password.enable.flag=true + +#verifiable credential property that used to enable vc check. +mosip.digitalcard.verify.credentials.flag=true + +mosip.digitalcard.credentials.request.initiate.flag=true +logging.level.io.mosip=INFO + +# websub authentication +mosip.iam.adapter.clientid=mpartner-default-digitalcard +mosip.iam.adapter.clientsecret=${mpartner.default.digitalcard.secret} +mosip.iam.adapter.appid=admin +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager +mosip.authmanager.client-token-endpoint=${mosip.authmanager.base-url}/authenticate/clientidsecretkey +# in minutes + +mosip.iam.adapter.validate-expiry-check-rate=1440 + +# in minutes +mosip.iam.adapter.renewal-before-expiry-interval=1440 + +#this should be false if you don?t use this restTemplate true if you do + +mosip.iam.adapter.self-token-renewal-enable=true +mosip.auth.filter_disable=false +auth.server.admin.allowed.audience=mosip-admin-client,mosip-resident-client \ No newline at end of file diff --git a/digitalcard-template.properties b/digitalcard-template.properties new file mode 100644 index 00000000000..1c1d4a37978 --- /dev/null +++ b/digitalcard-template.properties @@ -0,0 +1,3 @@ +RPR_UIN_CARD_TEMPLATE=PCFET0NUWVBFIGh0bWw+IDxodG1sPiA8aGVhZD4gPG1ldGEgY2hhcnNldD0idXRmLTgiPiA8bWV0YSBuYW1lPSJ2aWV3cG9ydCIgY29udGVudD0id2lkdGg9ZGV2aWNlLXdpZHRoLCBpbml0aWFsLXNjYWxlPTEiPiA8dGl0bGU+VUlOIENhcmQ8L3RpdGxlPiA8c3R5bGU+IC5tYWluLXRhYmxlIHsgbWFyZ2luLWxlZnQ6IDYwcHg7OyB3aWR0aDogNjAwcHg7IGhlaWdodDogMzUwcHg7IGJvcmRlcjogMXB4IHNvbGlkIGJsYWNrOyB9IC5jaXIgeyBkaXNwbGF5OiBpbmxpbmUtYmxvY2s7IGJvcmRlci1yYWRpdXM6IDYwcHg7IGJveC1zaGFkb3c6IDBweCAwcHggMnB4ICMwMDAwMDA7IHBhZGRpbmc6IDAuNWVtIDAuNmVtOyB9IC5uYW1lLWhlYWQtY29sb3IgeyBjb2xvcjogYmxhY2s7IH0gLmhlYWQtdGl0bGUgeyBtYXJnaW4tbGVmdDogLTg1cHg7IH0gLmJhci1jb2RlLXBhZGRpbmcgeyBtYXJnaW4tdG9wOiAyMHB4OyBtYXJnaW4tbGVmdDogMjBweDsgfSAudG9wLWJ1ZmZlciB7IG1hcmdpbi1sZWZ0OjEwcHg7IH0gPC9zdHlsZT4gPC9oZWFkPiA8Ym9keT4gPHRhYmxlIGNsYXNzPSJtYWluLXRhYmxlIj4gPHRyPiA8dGQ+Jm5ic3A7IDxkaXYgY2xhc3M9ImNpciI+PGZvbnQgc2l6ZT0iMSI+TG9nbzwvZm9udD48L2Rpdj4gPC90ZD4gPHRkPjxsYWJlbCBjbGFzcz0ibmFtZS1oZWFkLWNvbG9yIj48Zm9udCBzaXplPSI1ImNsYXNzPSIgaGVhZC10aXRsZSI+ICZuYnNwOyZuYnNwOyBLaW5nZG9tIG9mIE15Q291bnRyeSAmbmJzcDsmbmJzcDsmbmJzcDsgPC9mb250PiA8L2xhYmVsPjwvdGQ+IDx0ZCByb3dzcGFuPSI0Ij4gPGRpdj4gPGRpdiBzdHlsZT0iYm9yZGVyOiBzb2xpZCBibGFjayAxcHg7IGhlaWdodDogMTUwcHg7IHdpZHRoOiAxMjBweDsiPiAjaWYoJGlzUGhvdG9TZXQpPGltZyBzcmMgPSAkIUFwcGxpY2FudFBob3RvIHN0eWxlPSJ3aWR0aDogMTIwcHg7IGhlaWdodDogMTUwcHgiPiAjZW5kICA8L2Rpdj4gPC9kaXY+IDwvdGQ+IDwvdHI+IDx0cj4gPHRkIHJvd3NwYW49IjEiPiA8ZGl2IGNsYXNzPSJibG9jayB0b3AtYnVmZmVyIj4gPGxhYmVsIGNsYXNzPSJuYW1lLWhlYWQtY29sb3IiPjxiPlVJTiZuYnNwOzombmJzcDs8L2I+PC9sYWJlbD4gPHNwYW4gY2xhc3M9Im5hbWUtY29sb3IiPiAkIVVJTiA8L3NwYW4+IDwvZGl2PiA8L3RkPiA8L3RyPiA8dHI+IDx0ZCByb3dzcGFuPSIxIj4gPGRpdiBjbGFzcz0iYmxvY2sgdG9wLWJ1ZmZlciI+IDxsYWJlbCBjbGFzcz0ibmFtZS1oZWFkLWNvbG9yIj48Yj5OYW1lJm5ic3A7OiZuYnNwOzwvYj48L2xhYmVsPiA8c3BhbiBjbGFzcz0ibmFtZS1jb2xvciI+ICQhZnVsbE5hbWVfZW5nPC9zcGFuPiA8L2Rpdj4gPC90ZD4gPC90cj4gPHRyPiA8dGQgcm93c3Bhbj0iMSI+IDxkaXYgY2xhc3M9ImJsb2NrIHRvcC1idWZmZXIiPiA8bGFiZWwgY2xhc3M9Im5hbWUtaGVhZC1jb2xvciI+PGI+2KfYs9mFJm5ic3A7OiZuYnNwOzwvYj48L2xhYmVsPiA8c3Bhbj4kIWZ1bGxOYW1lX2FyYTwvc3Bhbj4gPC9kaXY+IDwvdGQ+IDwvdHI+IDx0cj4gPHRkIHJvd3NwYW49IjEiPiA8ZGl2IGNsYXNzPSJibG9jayB0b3AtYnVmZmVyIj4gPGxhYmVsIGNsYXNzPSJuYW1lLWhlYWQtY29sb3IiPjxiPkRPQi/Yqtin2LHZitiuJm5ic3A7OiZuYnNwOzwvYj48L2xhYmVsPiA8c3Bhbj4kIWRhdGVPZkJpcnRoPC9zcGFuPiA8L2Rpdj4gPC90ZD4gPC90cj4gPHRyPiA8dGQgY29sc3Bhbj0iMiI+IDxkaXYgY2xhc3M9ImJsb2NrIHRvcC1idWZmZXIiPiA8bGFiZWwgY2xhc3M9Im5hbWUtaGVhZC1jb2xvciI+PGI+R2VuZGVyJm5ic3A7OiZuYnNwOzwvYj48L2xhYmVsPiA8c3Bhbj4kIWdlbmRlcl9lbmc8L3NwYW4+ICZuYnNwOyZuYnNwOyA8bGFiZWwgY2xhc3M9Im5hbWUtaGVhZC1jb2xvciI+PGI+2KzZhtizJm5ic3A7OiZuYnNwOzwvYj48L2xhYmVsPiA8c3Bhbj4kIWdlbmRlcl9hcmE8L3NwYW4+IDwvZGl2PiA8L3RkPiA8L3RyPiA8dHI+IDx0ZCBjb2xzcGFuPSIzIj4gPGRpdiBjbGFzcz0icm93IiBzdHlsZT0ibWFyZ2luLXJpZ2h0OiAwcHg7IG1hcmdpbi1sZWZ0OiAtMTBweDsiPiA8ZGl2IGNsYXNzPSJjb2wtbWQtMiB0b3AtYnVmZmVyIj4gPGRpdiBjbGFzcz0iYmxvY2sgdG9wLWJ1ZmZlciI+IDx0YWJsZT4gPHRyPiA8dGQ+PGxhYmVsIGNsYXNzPSJuYW1lLWhlYWQtY29sb3IiPjxiPkFkZHJlc3MmbmJzcDs6Jm5ic3A7PC9iPjwvbGFiZWw+IDwvdGQ+IDx0ZD48c3Bhbj4kIWFkZHJlc3NMaW5lMV9lbmcsICQhYWRkcmVzc0xpbmUyX2VuZywgJCFhZGRyZXNzTGluZTNfZW5nLCAkIXJlZ2lvbl9lbmcsICQhcHJvdmluY2VfZW5nLCAkIWNpdHlfZW5nLCAkIXBvc3RhbENvZGUgPC9zcGFuPjwvdGQ+IDwvdHI+IDx0cj4gPHRkPjxsYWJlbCBjbGFzcz0ibmFtZS1oZWFkLWNvbG9yIj48Yj7YudmG2YjYp9mGJm5ic3A7OiZuYnNwOzwvYj48L2xhYmVsPiA8L3RkPiA8dGQ+PHNwYW4+JCFhZGRyZXNzTGluZTFfYXJhLCAkIWFkZHJlc3NMaW5lMl9hcmEsICQhYWRkcmVzc0xpbmUzX2FyYSwgJCFyZWdpb25fYXJhLCAkIXByb3ZpbmNlX2FyYSwgJCFjaXR5X2FyYSwgJCFwb3N0YWxDb2RlIDwvc3Bhbj4gPC90ZD4gPC90cj4gPC90YWJsZT4gPC9kaXY+IDwvZGl2PiA8L2Rpdj4gPC90ZD4gPC90cj4gPC90YWJsZT4gPGRpdj4mbmJzcDs8L2Rpdj4gPHRhYmxlIGNsYXNzPSJtYWluLXRhYmxlIiBzdHlsZT0iaGVpZ2h0OiAzMDBweCI+IDx0cj4gPHRkPiA8ZGl2IHN0eWxlPSJtYXJnaW4tbGVmdDogMTBweDsgbWFyZ2luLXJpZ2h0OiAxMHB4OyBib3JkZXI6IHNvbGlkIGJsYWNrIDFweDsgaGVpZ2h0OiAyNTBweDsgd2lkdGg6IDI1MHB4OyI+IDxkaXYgY2xhc3M9ImNvbC1tZC02Ij4gPGRpdiBjbGFzcz0iYmFyLWNvZGUtcGFkZGluZyI+PC9kaXY+IDxpbWcgc3JjPSQhUXJDb2RlIHN0eWxlPSJ3aWR0aDogMjUwcHg7IGhlaWdodDogMjUwcHg7IG1hcmdpbi10b3A6IC0yMHB4Ij4gPC9kaXY+IDwvZGl2PiA8L3RkPiA8dGQ+IDxkaXYgY2xhc3M9Im5hbWUtaGVhZC1jb2xvciBjb2wtbWQtNiI+IDxicj4gRm9yIGFueSBpc3N1ZXMgcGxlYXNlIGNvbnRhY3QgdXMgYXQ8YnI+IDxicj4gUmVnaXN0cmF0aW9uIFByb2NjZXNzb3IsSGFuZ2luZyBHYXJkZW5zLEdsb2JhbCBWaWxsYWdlIFRlY2ggUGFyaywgTXlzb3JlIFJkLFJWQ0UsQmVuZ2FsdXJ1LCBLYXJuYXRha2EgNTYwMDU5PGJyPiA8YnI+INmE2KPZitipINmF2LTYp9mD2YQg2YrYsdis2Ykg2KfZhNin2KrYtdin2YQg2KjZhtinINi52YTZiSA8YnI+2KfZhNiq2LPYrNmK2YQg2KfZhNmF2LnYp9mE2KzYjCDYp9mE2K3Yr9in2KbZgiDYp9mE2YXYudmE2YLYqSDYjCDYp9mE2YLYsdmK2Kkg2KfZhNi52KfZhNmF2YrYqSBUZWNoIFBhcmssIE15c29yZSBSZCxSVkNFIDU2MDA1OSDYqNmG2LrYp9mE2YjYsdmI2Iwg2YPYp9ix2YbYp9iq2KfZg9inIDxicj4gPGJyPiA8L2Rpdj4gPC90ZD4gPC90cj4gPC90YWJsZT4gPC9ib2R5PiA8L2h0bWw+ + +vid-card-type=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 \ No newline at end of file diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 568d2056ef0..532356f59ff 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -123,6 +123,7 @@ RETRIEVEIDENTITY=${IDENTITY}/idrepository/v1/identity/idvid CREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid GETUINBYVID=${mosip.idrepo.vid.url}/idrepository/v1/idvid CREDENTIALREQUEST=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator +CREDENTIALREQUESTV2=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/v2/requestgenerator GETVIDSBYUIN=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin IDREPOHASDRAFT=${IDENTITY}/idrepository/v1/identity/draft IDREPOGETDRAFT=${IDENTITY}/idrepository/v1/identity/draft @@ -481,6 +482,13 @@ mosip.registration.processor.credentialtype=euin mosip.registration.processor.encrypt=false mosip.registration.processor.issuer=mpartner-default-print mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator +mosip.registration.processor.digitalcard.credentialtype=PDFCard +mosip.registration.processor.print.credentialtype=euin +mosip.registration.processor.digitalcard.template=RPR_UIN_CARD_TEMPLATE +mosip.registration.processor.print.template=RPR_UIN_CARD_TEMPLATE + +# this property is used to define issuers eg partnerid:credentialType:templateTypeCode +mosip.registration.processor.issuer=mpartner-default-print:${mosip.registration.processor.print.credentialtype}:${mosip.registration.processor.print.template};mpartner-default-digitalcard:${mosip.registration.processor.digitalcard.credentialtype}:${mosip.registration.processor.digitalcard.template} ## Stage common #After this time intervel, message should be considered as expired (In seconds), From 0ae36e24e4e6559b2413bb96fc275eb47c4d4f61 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 7 Mar 2023 13:23:22 +0530 Subject: [PATCH 1126/1358] [DSD-2237] Added digitalcard config changes in kernel property file --- kernel-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index a9912359f08..94f047cd47c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -333,7 +333,7 @@ datastores=ldap_1_DS,db_1_DS,db_2_DS mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP ## List of keys to auto generate. -mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES +mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 @@ -418,7 +418,8 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client,mpartner-default-digitalcard + mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client From 270624f7bd2e70f06d5066645fc90cdda83150de Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Tue, 7 Mar 2023 14:04:16 +0530 Subject: [PATCH 1127/1358] [DSD-2237] Updated digitalcard template property file --- digitalcard-template.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/digitalcard-template.properties b/digitalcard-template.properties index 1c1d4a37978..406b2544cb6 100644 --- a/digitalcard-template.properties +++ b/digitalcard-template.properties @@ -1,3 +1,3 @@ RPR_UIN_CARD_TEMPLATE=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 -vid-card-type=PGh0bWw+CjxoZWFkPgo8bWV0YSBodHRwLWVxdWl2PUNvbnRlbnQtVHlwZSBjb250ZW50PXRleHQvaHRtbDsgY2hhcnNldD13aW5kb3dzLTEyNTI+CjxtZXRhIG5hbWU9R2VuZXJhdG9yIGNvbnRlbnQ9TWljcm9zb2Z0IFdvcmQgMTUgKGZpbHRlcmVkKT4KPHN0eWxlPgo8IS0tCiAvKiBGb250IERlZmluaXRpb25zICovCiBAZm9udC1mYWNlCgl7Zm9udC1mYW1pbHk6Q2FtYnJpYSBNYXRoOwoJcGFub3NlLTE6MiA0IDUgMyA1IDQgNiAzIDIgNDt9CkBmb250LWZhY2UKCXtmb250LWZhbWlseTpDYWxpYnJpOwoJcGFub3NlLTE6MiAxNSA1IDIgMiAyIDQgMyAyIDQ7fQogLyogU3R5bGUgRGVmaW5pdGlvbnMgKi8KIHAuTXNvTm9ybWFsLCBsaS5Nc29Ob3JtYWwsIGRpdi5Nc29Ob3JtYWwKCXttYXJnaW4tdG9wOjBpbjsKCW1hcmdpbi1yaWdodDowaW47CgltYXJnaW4tYm90dG9tOjguMHB0OwoJbWFyZ2luLWxlZnQ6MGluOwoJbGluZS1oZWlnaHQ6MTA3JTsKCWZvbnQtc2l6ZToxMS4wcHQ7Cglmb250LWZhbWlseTpDYWxpYnJpLHNhbnMtc2VyaWY7fQouTXNvQ2hwRGVmYXVsdAoJe2ZvbnQtZmFtaWx5OkNhbGlicmksc2Fucy1zZXJpZjt9Ci5Nc29QYXBEZWZhdWx0Cgl7bWFyZ2luLWJvdHRvbTo4LjBwdDsKCWxpbmUtaGVpZ2h0OjEwNyU7fQogLyogUGFnZSBEZWZpbml0aW9ucyAqLwogQHBhZ2UgV29yZFNlY3Rpb24xCgl7c2l6ZTo1OTUuM3B0IDg0MS45cHQ7CgltYXJnaW46MS4waW4gMS4waW4gMS4waW4gMS4waW47fQpkaXYuV29yZFNlY3Rpb24xCgl7cGFnZTpXb3JkU2VjdGlvbjE7fQotLT4KPC9zdHlsZT4KPC9oZWFkPgo8Ym9keSBsYW5nPUVOLVVTIHN0eWxlPSd3b3JkLXdyYXA6YnJlYWstd29yZCc+CjxkaXYgY2xhc3M9V29yZFNlY3Rpb24xPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J2xpbmUtaGVpZ2h0Om5vcm1hbCc+PHNwYW4gc3R5bGU9J3Bvc2l0aW9uOnJlbGF0aXZlOwp6LWluZGV4OjI1MTY1OTI2NCc+PHNwYW4gc3R5bGU9J3Bvc2l0aW9uOmFic29sdXRlO2xlZnQ6LTNweDt0b3A6LTFweDsKd2lkdGg6MzUycHg7aGVpZ2h0OjE4M3B4Jz48aW1nIHdpZHRoPTM1MiBoZWlnaHQ9MTgzCnNyYz1kYXRhOmltYWdlL3BuZztiYXNlNjQsaVZCT1J3MEtHZ29BQUFBTlNVaEVVZ0FBQVdBQUFBQzNDQU1BQUFBYjgzUmRBQUFBQVhOU1IwSUFyczRjNlFBQUFBUm5RVTFCQUFDeGp3djhZUVVBQUFCalVFeFVSUUFBQUVDQW4wQnduMEIxbjBCd24wQnptVUJ3bWtCeW0wQndtMEJ4bkVCd25FQnhuRUJ3blVCeG1rQndtMEJ4bTBKeW0wSnhuVUp5blVKeG5VSnluVUp4bkVKeW5FRnhuRUZ4bkVGeG5FRnhuRUZ4blVGeG5VRnhuRUZ4bkVGeG5FRnhuR0pBMVBnQUFBQWdkRkpPVXdBSUVCZ2dLREE0UUVoUVdHQm9jSGlBaDQrWG42ZXZ0Ny9IejlmZjUrLzN2K0g0d2dBQUFBbHdTRmx6QUFBT3d3QUFEc01CeDIrb1pBQUFCR3hKUkVGVWVGN3Qyc2xpMmpBVVJtRmpBekh6RUNBR0RPYjluN0s2OHMzVVFEQkIvKzU4QzhCcXVqbFZaY2trdTZGWFRwZXJxanBmY0VkVFZhL0xlVmw0dUU3eXliYnh2NDZ1cWxuZjg5MHozZmxmd1lNTzg5d2IvbUo4OEovR0g1em1QZTk0UTduM243elUyK1Z5VkE1OEhEY1ZaYmxZdm41TXkzcmk0OWZrNzR2RGNUWDBJWFRVbjFjZTczQnpMZTRmMjUvWU1tLy9wRmkyVzROejZRUC9lV24zWkc5TTNqOHIxakZoTS9QcmJ5WXgvLzVHZlhUVDM4YkVhNy84WWhML1lIdm5Kb2k3NWpIa3ExOTlLT1A4WGZnVm5qQ0tTKzNjcjF6ZkJwdXhYK0VwZzlvS2ovd3F5dVArZ2I2SnhPbDYvcm9YZTdPK3JBL0psTmF6L3J5ZmplMTY2eGRJSU43cFBwZGhPK2Z0MlQra3RBbEptL2RIbUhFQ2M3eElxckJkbWUrR2V6YUJkKzFucEdLTGhFL2hHUk5Zb0hjS1ZkdjdtajBGMnNSUFNNam1iV00zdHNJbWNOZHZPOUNkSFRmc2FERU43L3QyQ0NuWmt6VmJHZXlRd1JsRHdFNGJwM0JLdHYwRVQ5Z0ZlblpnTHVOanlxTVBJU2s3YkN6aWZ1M0h3MHVrWVB1SVRiWUtyMHNmUVZLamtIWVg1L0hVUjVEVU1LVGR4MlBHdDJmRFNNVk9HSFZtajlvNUoydUV0SmZNZG1rUC9XWWdPck45V2xzWkVyRXRnWFVJTEVaZ01RS0xFVmlNd0dJRUZpT3dHSUhGQ0N4R1lERUNpeEZZak1CaUJCWWpzQmlCeFFnc1JtQXhBb3NSV0l6QVlnUVdJN0FZZ2NVSUxFWmdNUUtMRVZpTXdHSUVGaU93R0lIRkNDeEdZREVDaXhGWWpNQmlCQllqc0JpQnhRZ3NSbUF4QW9zUldJekFZZ1FXSTdBWWdjVUlMRVpnTVFLTEVWaU13R0lFRmlPd0dJSEZDQ3hHWURFQ2l4RllqTUJpQkJZanNCaUJ4UWdzUm1BeEFvc1JXSXpBWWdRV0k3QVlnY1VJTEVaZ01RS0xFVmlNd0dJRUZpT3dHSUhGQ0N4R1lERUNpeEZZak1CaUJCWWpzQmlCeFFnc1JtQXhBb3NSV0l6QVlnUVdJN0FZZ2NVSUxFWmdNUUtMRVZpTXdHSUVGaU93R0lIRkNDeEdZREVDaXhGWWpNQmlCQllqc0JpQnhRZ3NSbUF4QW9zUldJekFZZ1FXSTdEWVIrQ2VEeUN0eGdMWDRhWHZBMGdyQnQ2SGw5SUhrRlFlMHA2eVhYaWQrQWlTR29TMHgyd2RYdWMrZ3FUS2tMYktGdUYxNVNOSWFoclNidUxybTQ4Z3FWV2N1N1pRTkxrUElhVmpTQnR1Yi9ZMjlTRWsxUGVwdXd6dld4OURRdk1RdGdydkx4YWFzMXg2VlFnN3N3OTJsbU9qbHR3d1pHM1B5SGF6T3pHRlU3TVQzRDUrS3V6SXZJZ2ZrY3pZSnZDNC9XeUh1YVpvUHlPUlE0aHF0emlUbjhMRjJpK1F4TVFtOE5BdjRvYmlmVG9qaFlFdHV6dS95TEtlVGVIbW96ZWVsZHZPclBueW1QM0ZndGNzdzRuMGJBdjgvWGdjbDR3RGp5VFMyRmpOLzI1cXRobSsxS3dTQ2VSeC92NTRRbW43NGt2RG5lNXBBMXQvTC9XUDFhRDNadU9YSlVlNjUwek9zZSsxNzVIdHZCRU96VHk2ZkVKcDN5R0hFOGIxdTluTTloTGhYamZ5YXp4b0VOZlpYdzV0Wlp6ZUlmRmk0Q1BvckpoNTNpWStvN3l1YUplSm9GNlBTbjRmcGFPOExCZjI3Q0hhL1Q0NSsvN1A0T3lJaDErZC9iOTlhMy8vbDNpRzdYWUNmM0RzdHMwdHBydjJkb2RIN09jUDNMbDY0MlZWMmZmTjZPQlVWZXZwMVNjNVdmWVB3UjMyZ0cxM3VoRUFBQUFBU1VWT1JLNUNZSUk9Pgo8aW1nIHdpZHRoPTQxIGhlaWdodD00NApzcmM9aHR0cHM6Ly9tb3NpcC5pby9pbWFnZXMvbG9nby5wbmcgYWx0PW1vc2lwIGFsaWduPXJpZ2h0IGhzcGFjZT0xMiBzdHlsZT1tYXJnaW4tdG9wOi0xNzJweDs+PC9zcGFuPjwvc3Bhbj4KPHNwYW4gc3R5bGU9bWFyZ2luLWxlZnQ6IDE2cHg7PjxiPklkIHR5cGU6PC9iPiBWSUQKY2FyZDwvcD48L3NwYW4+CjxwIGNsYXNzPU1zb05vcm1hbCBzdHlsZT0nbWFyZ2luLXRvcDowaW47bWFyZ2luLXJpZ2h0OjBpbjttYXJnaW4tYm90dG9tOjBpbjsKbGluZS1oZWlnaHQ6bm9ybWFsJz48aW1nIHdpZHRoPTg0IGhlaWdodD04NApzcmM9JGltYWdlIGFsdD11c2VyIGltYWdlIGFsaWduPWxlZnQgaHNwYWNlPTEyPjxiPk5hbWU6PC9iPiAkZnVsbE5hbWU8L3A+CjxwIGNsYXNzPU1zb05vcm1hbCBzdHlsZT0nbWFyZ2luLXRvcDowaW47bWFyZ2luLXJpZ2h0OjBpbjttYXJnaW4tYm90dG9tOjBpbjsKbGluZS1oZWlnaHQ6bm9ybWFsJz48Yj5ET0I6PC9iPiAkZGF0ZU9mQmlydGg8L3A+CjxwIGNsYXNzPU1zb05vcm1hbCBzdHlsZT0nbWFyZ2luLXRvcDowaW47bWFyZ2luLXJpZ2h0OjBpbjttYXJnaW4tYm90dG9tOjBpbjsKbGluZS1oZWlnaHQ6bm9ybWFsJz48Yj5WSUQ6PC9iPiAkVklEPC9wPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J21hcmdpbi10b3A6MGluO21hcmdpbi1yaWdodDowaW47bWFyZ2luLWJvdHRvbTowaW47CmxpbmUtaGVpZ2h0Om5vcm1hbCc+PGI+VklEIFR5cGU6PC9iPiAkdmlkVHlwZTwvcD4KPHAgY2xhc3M9TXNvTm9ybWFsIHN0eWxlPSdtYXJnaW4tdG9wOjBpbjttYXJnaW4tcmlnaHQ6MGluO21hcmdpbi1ib3R0b206MGluOwpsaW5lLWhlaWdodDpub3JtYWwnPjxiPkdlbmVyYXRlZCBvbjo8L2I+ICRnZW5yYXRlZE9uVGltZXN0YW1wPC9wPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J21hcmdpbi10b3A6MGluO21hcmdpbi1yaWdodDowaW47bWFyZ2luLWJvdHRvbTowaW47Cm1hcmdpbi1sZWZ0OjEuMTJpbjtsaW5lLWhlaWdodDpub3JtYWwnPjxiPkV4cGlyZXMgb246PC9iPiAkZXhwaXJ5VGltZXN0YW1wPC9wPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J21hcmdpbi10b3A6MGluO21hcmdpbi1yaWdodDowaW47bWFyZ2luLWJvdHRvbTowaW47Cm1hcmdpbi1sZWZ0OjEuMWluO2xpbmUtaGVpZ2h0Om5vcm1hbCc+PGI+VHJhbnNhY3Rpb25zIGxlZnQ6PC9iPiAkdHJhbnNhY3Rpb25zTGVmdENvdW50PC9wPgo8L2Rpdj4KPC9ib2R5Pgo8L2h0bWw+ \ No newline at end of file +vid-card-type=PGh0bWw+CjxoZWFkPgo8bWV0YSBodHRwLWVxdWl2PUNvbnRlbnQtVHlwZSBjb250ZW50PXRleHQvaHRtbDsgY2hhcnNldD13aW5kb3dzLTEyNTI+CjxtZXRhIG5hbWU9R2VuZXJhdG9yIGNvbnRlbnQ9TWljcm9zb2Z0IFdvcmQgMTUgKGZpbHRlcmVkKT4KPHN0eWxlPgp0YWJsZSB7CiAgYm9yZGVyOjVweCBzb2xpZCBsaWdodGJsdWU7CiAgYm9yZGVyLXJhZGl1czo4cHg7CiAgd2lkdGg6IDM1MnB4OwogIGhlaWdodDoxODNweDsKfQo8L3N0eWxlPgo8Ym9keSBsYW5nPUVOLVVTPgo8dGFibGU+CiAgPHRyPgogIAkjaWYoJGlzUGhvdG9TZXQpCiAgICA8dGQ+PGltZyBzcmMgPSAkIUFwcGxpY2FudFBob3RvIHN0eWxlPSJ3aWR0aDogMTYwcHg7IGhlaWdodDogMjEwcHgiPjwvdGQ+CiAgICAjZW5kCiAgICA8dGQ+CiAgICA8dGFibGUgc3R5bGU9ImJvcmRlcjpub25lIj4KICAgICAgPHRyPgogICAgICAgIDx0ZCBjb2xzcGFuPTI+PGltZyB3aWR0aD04MSBoZWlnaHQ9NDQgc3JjPWh0dHBzOi8vbW9zaXAuaW8vaW1hZ2VzL2xvZ28ucG5nIGFsdD1tb3NpcCBhbGlnbj1yaWdodD48L3RkPgogICAgICA8L3RyPgogICAgICA8dHI+CiAgICAgICAgPHRkPjxiPk5hbWU6PC9iPjwvdGQ+CiAgICAgICAgPHRkPiRuYW1lPC90ZD4KICAgICAgPC90cj4KICAgICAgPHRyPgogICAgICAgIDx0ZD48Yj5ET0I6PC9iPjwvdGQ+CiAgICAgICAgPHRkPiRkYXRlT2ZCaXJ0aDwvdGQ+CiAgICAgIDwvdHI+CiAgICAgIDx0cj4KICAgICAgICA8dGQ+PGI+VklEOjwvYj48L3RkPgogICAgICAgIDx0ZD4kdmlkPC90ZD4KICAgICAgPC90cj4KICAgICAgPHRyPgogICAgICAgIDx0ZD48Yj5WSUQgVHlwZTo8L2I+PC90ZD4KICAgICAgICA8dGQ+JHZpZFR5cGU8L3RkPgogICAgICA8L3RyPgogICAgICA8dHI+CiAgICAgICAgPHRkPjxiPkdlbmVyYXRlZCBvbjo8L2I+PC90ZD4KICAgICAgICA8dGQ+JGdlbnJhdGVkT25UaW1lc3RhbXA8L3RkPgogICAgICA8L3RyPgogICAgICA8dHI+CiAgICAgICAgPHRkPjxiPkV4cGlyZXMgb246PC9iPjwvdGQ+CiAgICAgICAgPHRkPiRleHBpcnlUaW1lc3RhbXA8L3RkPgogICAgICA8L3RyPgogICAgICA8dHI+CiAgICAgICAgPHRkPjxiPlRyYW5zYWN0aW9ucyBhbGxvd2VkOjwvYj48L3RkPgogICAgICAgIDx0ZD4kdHJhbnNhY3Rpb25zTGVmdENvdW50PC90ZD4KICAgICAgPC90cj4KICAgIDwvdGFibGU+CiAgICA8L3RkPgogIDwvdHI+CjwvdGFibGU+CjwvYm9keT4KPC9odG1sPg== \ No newline at end of file From 96aefb165acce4fe5ee623cfccbae8d42c6da16f Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 7 Mar 2023 14:09:58 +0530 Subject: [PATCH 1128/1358] Revert "[DSD-2237] Updated digitalcard template property file" --- digitalcard-template.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/digitalcard-template.properties b/digitalcard-template.properties index 406b2544cb6..1c1d4a37978 100644 --- a/digitalcard-template.properties +++ b/digitalcard-template.properties @@ -1,3 +1,3 @@ RPR_UIN_CARD_TEMPLATE=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 -vid-card-type=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 \ No newline at end of file +vid-card-type=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 \ No newline at end of file From 941ff17267d192b94d62168e6881321cf0663b5d Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Tue, 7 Mar 2023 20:01:37 +0530 Subject: [PATCH 1129/1358] updated config --- mimoto-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 018185567e0..af5913fc6c3 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -10,8 +10,8 @@ RESIDENT_CREDENTIAL_REQUEST_STATUS=${RESIDENT_CREDENTIAL_REQUEST}/status RESIDENT_VID=${mosip.resident.base.url}/vid RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock -RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/req/individualId/otp -RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/get-individual-id +RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/individualId/otp +RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/status BINDING_OTP=${idp.binding.base.url}/binding-otp WALLET_BINDING=${idp.binding.base.url}/wallet-binding From e13ee5d69f7dae8f05f96eabab6faa23fe1b5f71 Mon Sep 17 00:00:00 2001 From: Anushree09-N <79500509+Anushree09-N@users.noreply.github.com> Date: Thu, 9 Mar 2023 15:36:39 +0530 Subject: [PATCH 1130/1358] Added new property (#3477) resident.flag.use-vid-only=true to retrieve VID when requested using Application ID --- resident-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/resident-default.properties b/resident-default.properties index 2b2f72853f3..bb1c19daf00 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -795,3 +795,6 @@ mosip.resident.schema.attribute-name=attributeName mosip.max.file.upload.size.in.bytes=2000000 resident.service-history.download.max.count=100 + +# Below property will retrieve VID when requested. +resident.flag.use-vid-only=true From a11e3904e4df0e0e4cae16986402ac6fc544551c Mon Sep 17 00:00:00 2001 From: syed salman <72004356+syedsalman3753@users.noreply.github.com> Date: Thu, 9 Mar 2023 19:23:36 +0530 Subject: [PATCH 1131/1358] [ DSD-2260 ] updated inji properties (#3484) --- inji-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/inji-default.properties b/inji-default.properties index 3772902ec96..fd41a03f3d3 100644 --- a/inji-default.properties +++ b/inji-default.properties @@ -3,7 +3,9 @@ mosip.inji.allowedAuthType=demo,otp,bio-Finger,bio-Iris,bio-Face mosip.inji.allowedEkycAuthType=demo,otp,bio-Finger,bio-Iris,bio-Face mosip.inji.allowedInternalAuthType=otp,bio-Finger,bio-Iris,bio-Face -mosip.inji.faceSdkModelUrl=https://drive.google.com/u/0/uc?id=1Z8Puici9alcmH-oU-VoXlHXCagAe1ago&export=download +mosip.inji.faceSdkModelUrl=https://${mosip.api.public.host}/inji +# model download maximum retry +mosip.inji.modelDownloadMaxRetry=10 # maximum number of retry for downloading vc mosip.inji.vcDownloadMaxRetry=10 # pool interval in milli seconds From aae54914ffb3825a78a12ffcc632776b1c567bbd Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 10 Mar 2023 17:17:47 +0530 Subject: [PATCH 1132/1358] [DSD-2263] Added config changes for esginet and ida services --- esignet-default.properties | 20 +++++++++++++++----- id-authentication-default.properties | 5 +++-- 2 files changed, 18 insertions(+), 7 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index b4793a0d8db..22ee0e004f1 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -81,6 +81,12 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented ## ------------------------------------------- Integrations ------------------------------------------------------------ +mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration +mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl +mosip.esignet.integration.authenticator=IdaAuthenticatorImpl +mosip.esignet.integration.key-binder=MockKeyBindingWrapperService +mosip.esignet.integration.audit-plugin=LoggerAuditService +mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.scan-base-package=io.mosip.idp.authwrapper mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=IdentityAuthenticationService-temp @@ -105,6 +111,11 @@ mosip.esignet.authenticator.ida.kyc-auth-url=https://${mosip.api.internal.host}/ mosip.esignet.authenticator.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.esignet.misp.license.key}/ mosip.esignet.binder.ida.key-binding-url=${keycloak.internal.url}/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida.get-certificates-url=https://${mosip.api.internal.host}/idauthentication/v1/internal/getAllCertificates +mosip.esignet.authenticator.ida.auth-token-url=https://${mosip.api.internal.host}/v1/authmanager/authenticate/clientidsecretkey +mosip.esignet.authenticator.ida.client-id=mosip-ida-client +mosip.esignet.authenticator.ida.secret-key=${mosip.ida.client.secret} +mosip.esignet.authenticator.ida.app-id=ida mosip.esignet.authenticator.ida-env=Developer mosip.esignet.authenticator.ida.otp-channels=email,phone @@ -112,6 +123,9 @@ mosip.esignet.authenticator.ida.otp-channels=email,phone mosip.esignet.mock.authenticator.persona-repo=/home/mosip/mockida mosip.esignet.mock.authenticator.policy-repo=/home/mosip/mockida mosip.esignet.mock.authenticator.claims-mapping-file=/home/mosip/mockida/claims_attributes_mapping.json +mosip.esignet.mock.authenticator.get-identity-url=https://${mosip.api.public.host}/v1/mock-identity-system/identity +mosip.esignet.mock.authenticator.kyc-auth-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-auth +mosip.esignet.mock.authenticator.kyc-exchange-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-exchange ## ------------------------------------------ oauth & openid supported values ------------------------------------------ @@ -285,10 +299,6 @@ crypto.PrependThumbprint.enable=true ## -------------------------------------------- IDP-UI config ---------------------------------------------------------- -mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ - 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ - 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ - 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}','mosip.esignet.link-status-deferred-response-timeout-secs':'25'} - +mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} logging.level.org.springframework.web.client.RestTemplate=DEBUG diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f0e8e250d27..2c79f7980a2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -619,8 +619,9 @@ mosip.role.keymanager.postjwtverify=INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_SU # Secret will be used during kyc token generation. mosip.ida.kyc.token.secret=${mosip.ida.kyc.token.secret} -kyc.token.expire.time.adjustment.seconds=300 -kyc.exchange.default.lang=eng +mosip.ida.kyc.token.expire.time.adjustment.seconds=3000 +mosip.ida.kyc.exchange.default.lang=eng +mosip.ida.idp.consented.address.subset.attributes=street_address,locality,region,postal_code,country idp.amr-acr.mapping.json.filename=amr-acr-mapping.json mosip.idp.amr-acr.mapping.json-uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/${idp.amr-acr.mapping.json.filename} From 754e90aea3a10eca49e90052cc25dd3089578942 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 10 Mar 2023 17:25:44 +0530 Subject: [PATCH 1133/1358] [DSD-2263] Updated esignet properties --- esignet-default.properties | 4 ---- 1 file changed, 4 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 22ee0e004f1..095f7bd693a 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -88,11 +88,7 @@ mosip.esignet.integration.key-binder=MockKeyBindingWrapperService mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.scan-base-package=io.mosip.idp.authwrapper -mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=IdentityAuthenticationService-temp -mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -mosip.esignet.integration.audit-plugin=LoggerAuditService -mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService # captcha validator mosip.esignet.send-otp.captcha-required=false From 6f4f63f8f17b6f9c87347239617c82a0d3cf9e7e Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 10 Mar 2023 22:41:21 +0530 Subject: [PATCH 1134/1358] [DSD-2263] Updated esignet properties --- esignet-default.properties | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 095f7bd693a..527261fc219 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -87,8 +87,7 @@ mosip.esignet.integration.authenticator=IdaAuthenticatorImpl mosip.esignet.integration.key-binder=MockKeyBindingWrapperService mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService -mosip.esignet.integration.scan-base-package=io.mosip.idp.authwrapper -mosip.esignet.integration.authenticator=IdentityAuthenticationService-temp + # captcha validator mosip.esignet.send-otp.captcha-required=false @@ -295,6 +294,10 @@ crypto.PrependThumbprint.enable=true ## -------------------------------------------- IDP-UI config ---------------------------------------------------------- -mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} +mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ +'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ +'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ +'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ +'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} logging.level.org.springframework.web.client.RestTemplate=DEBUG From 7db78864002324a6c724fa70de60d9894e07e354 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 10 Mar 2023 22:45:40 +0530 Subject: [PATCH 1135/1358] [DSD-2263] Updated esignet properties --- esignet-default.properties | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 527261fc219..1510c9345b6 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -294,10 +294,10 @@ crypto.PrependThumbprint.enable=true ## -------------------------------------------- IDP-UI config ---------------------------------------------------------- -mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ -'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ -'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ -'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ -'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} +mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ + 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ + 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ + 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ + 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} logging.level.org.springframework.web.client.RestTemplate=DEBUG From 6fa9c17a8ed94f0cdf10529b606c5d81697d306e Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 10 Mar 2023 22:50:14 +0530 Subject: [PATCH 1136/1358] [DSD-2263] Updated esignet properties --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 1510c9345b6..8da86b4183e 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -29,7 +29,7 @@ ## ------------------------------------------------- e-Signet ---------------------------------------------------------- mosip.esignet.misp.license.key=elhvf43Uar8ShYra9N2bfTxaM3MaR50Hc9IMol5qazTRtX3FHZ mosip.esignet.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/amr-acr-mapping.json - +mosip.esignet.auth-txn-id-length=10 mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 From ddb7d76f2b668dd092d3f68586b458bee9968c69 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Wed, 15 Mar 2023 12:41:01 +0530 Subject: [PATCH 1137/1358] Disabled mosip.kernel.auth.proxy-otp --- kernel-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/kernel-default.properties b/kernel-default.properties index 94f047cd47c..649a4eb5cca 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -290,9 +290,11 @@ auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/au ## Proxy otp +mosip.kernel.auth.proxy-otp=false mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy + ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client From 8c155d5d801ac199a6a25b598be36341df18cfe4 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Wed, 15 Mar 2023 17:16:02 +0530 Subject: [PATCH 1138/1358] Update identity-data-formatter.mvel --- identity-data-formatter.mvel | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/identity-data-formatter.mvel b/identity-data-formatter.mvel index 0c9b0ea7b7d..bdb36811299 100644 --- a/identity-data-formatter.mvel +++ b/identity-data-formatter.mvel @@ -30,7 +30,7 @@ def getPassword(attributeValues) { attribute = getFormattedPasswordAttribute(attribute); pdfPwd = pdfPwd.concat(attribute.substring(0, 4)); } - return pdfPwd; + return pdfPwd.toUpperCase(); }; def getFormattedPasswordAttribute(password){ @@ -41,6 +41,6 @@ def getFormattedPasswordAttribute(password){ }else if(password.length()==1) { return password=password.repeat(4); }else { - return password; + return password.toUpperCase(); } -}; \ No newline at end of file +}; From f59e2b54f9e76450e045c8b5f192c0e9f26f454c Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Wed, 15 Mar 2023 17:17:27 +0530 Subject: [PATCH 1139/1358] Update digitalcard-template.properties --- digitalcard-template.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/digitalcard-template.properties b/digitalcard-template.properties index 1c1d4a37978..7306ffc62ef 100644 --- a/digitalcard-template.properties +++ b/digitalcard-template.properties @@ -1,3 +1,3 @@ RPR_UIN_CARD_TEMPLATE=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 -vid-card-type=PGh0bWw+CjxoZWFkPgo8bWV0YSBodHRwLWVxdWl2PUNvbnRlbnQtVHlwZSBjb250ZW50PXRleHQvaHRtbDsgY2hhcnNldD13aW5kb3dzLTEyNTI+CjxtZXRhIG5hbWU9R2VuZXJhdG9yIGNvbnRlbnQ9TWljcm9zb2Z0IFdvcmQgMTUgKGZpbHRlcmVkKT4KPHN0eWxlPgo8IS0tCiAvKiBGb250IERlZmluaXRpb25zICovCiBAZm9udC1mYWNlCgl7Zm9udC1mYW1pbHk6Q2FtYnJpYSBNYXRoOwoJcGFub3NlLTE6MiA0IDUgMyA1IDQgNiAzIDIgNDt9CkBmb250LWZhY2UKCXtmb250LWZhbWlseTpDYWxpYnJpOwoJcGFub3NlLTE6MiAxNSA1IDIgMiAyIDQgMyAyIDQ7fQogLyogU3R5bGUgRGVmaW5pdGlvbnMgKi8KIHAuTXNvTm9ybWFsLCBsaS5Nc29Ob3JtYWwsIGRpdi5Nc29Ob3JtYWwKCXttYXJnaW4tdG9wOjBpbjsKCW1hcmdpbi1yaWdodDowaW47CgltYXJnaW4tYm90dG9tOjguMHB0OwoJbWFyZ2luLWxlZnQ6MGluOwoJbGluZS1oZWlnaHQ6MTA3JTsKCWZvbnQtc2l6ZToxMS4wcHQ7Cglmb250LWZhbWlseTpDYWxpYnJpLHNhbnMtc2VyaWY7fQouTXNvQ2hwRGVmYXVsdAoJe2ZvbnQtZmFtaWx5OkNhbGlicmksc2Fucy1zZXJpZjt9Ci5Nc29QYXBEZWZhdWx0Cgl7bWFyZ2luLWJvdHRvbTo4LjBwdDsKCWxpbmUtaGVpZ2h0OjEwNyU7fQogLyogUGFnZSBEZWZpbml0aW9ucyAqLwogQHBhZ2UgV29yZFNlY3Rpb24xCgl7c2l6ZTo1OTUuM3B0IDg0MS45cHQ7CgltYXJnaW46MS4waW4gMS4waW4gMS4waW4gMS4waW47fQpkaXYuV29yZFNlY3Rpb24xCgl7cGFnZTpXb3JkU2VjdGlvbjE7fQotLT4KPC9zdHlsZT4KPC9oZWFkPgo8Ym9keSBsYW5nPUVOLVVTIHN0eWxlPSd3b3JkLXdyYXA6YnJlYWstd29yZCc+CjxkaXYgY2xhc3M9V29yZFNlY3Rpb24xPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J2xpbmUtaGVpZ2h0Om5vcm1hbCc+PHNwYW4gc3R5bGU9J3Bvc2l0aW9uOnJlbGF0aXZlOwp6LWluZGV4OjI1MTY1OTI2NCc+PHNwYW4gc3R5bGU9J3Bvc2l0aW9uOmFic29sdXRlO2xlZnQ6LTNweDt0b3A6LTFweDsKd2lkdGg6MzUycHg7aGVpZ2h0OjE4M3B4Jz48aW1nIHdpZHRoPTM1MiBoZWlnaHQ9MTgzCnNyYz1kYXRhOmltYWdlL3BuZztiYXNlNjQsaVZCT1J3MEtHZ29BQUFBTlNVaEVVZ0FBQVdBQUFBQzNDQU1BQUFBYjgzUmRBQUFBQVhOU1IwSUFyczRjNlFBQUFBUm5RVTFCQUFDeGp3djhZUVVBQUFCalVFeFVSUUFBQUVDQW4wQnduMEIxbjBCd24wQnptVUJ3bWtCeW0wQndtMEJ4bkVCd25FQnhuRUJ3blVCeG1rQndtMEJ4bTBKeW0wSnhuVUp5blVKeG5VSnluVUp4bkVKeW5FRnhuRUZ4bkVGeG5FRnhuRUZ4blVGeG5VRnhuRUZ4bkVGeG5FRnhuR0pBMVBnQUFBQWdkRkpPVXdBSUVCZ2dLREE0UUVoUVdHQm9jSGlBaDQrWG42ZXZ0Ny9IejlmZjUrLzN2K0g0d2dBQUFBbHdTRmx6QUFBT3d3QUFEc01CeDIrb1pBQUFCR3hKUkVGVWVGN3Qyc2xpMmpBVVJtRmpBekh6RUNBR0RPYjluN0s2OHMzVVFEQkIvKzU4QzhCcXVqbFZaY2trdTZGWFRwZXJxanBmY0VkVFZhL0xlVmw0dUU3eXliYnh2NDZ1cWxuZjg5MHozZmxmd1lNTzg5d2IvbUo4OEovR0g1em1QZTk0UTduM243elUyK1Z5VkE1OEhEY1ZaYmxZdm41TXkzcmk0OWZrNzR2RGNUWDBJWFRVbjFjZTczQnpMZTRmMjUvWU1tLy9wRmkyVzROejZRUC9lV24zWkc5TTNqOHIxakZoTS9QcmJ5WXgvLzVHZlhUVDM4YkVhNy84WWhML1lIdm5Kb2k3NWpIa3ExOTlLT1A4WGZnVm5qQ0tTKzNjcjF6ZkJwdXhYK0VwZzlvS2ovd3F5dVArZ2I2SnhPbDYvcm9YZTdPK3JBL0psTmF6L3J5ZmplMTY2eGRJSU43cFBwZGhPK2Z0MlQra3RBbEptL2RIbUhFQ2M3eElxckJkbWUrR2V6YUJkKzFucEdLTGhFL2hHUk5Zb0hjS1ZkdjdtajBGMnNSUFNNam1iV00zdHNJbWNOZHZPOUNkSFRmc2FERU43L3QyQ0NuWmt6VmJHZXlRd1JsRHdFNGJwM0JLdHYwRVQ5Z0ZlblpnTHVOanlxTVBJU2s3YkN6aWZ1M0h3MHVrWVB1SVRiWUtyMHNmUVZLamtIWVg1L0hVUjVEVU1LVGR4MlBHdDJmRFNNVk9HSFZtajlvNUoydUV0SmZNZG1rUC9XWWdPck45V2xzWkVyRXRnWFVJTEVaZ01RS0xFVmlNd0dJRUZpT3dHSUhGQ0N4R1lERUNpeEZZak1CaUJCWWpzQmlCeFFnc1JtQXhBb3NSV0l6QVlnUVdJN0FZZ2NVSUxFWmdNUUtMRVZpTXdHSUVGaU93R0lIRkNDeEdZREVDaXhGWWpNQmlCQllqc0JpQnhRZ3NSbUF4QW9zUldJekFZZ1FXSTdBWWdjVUlMRVpnTVFLTEVWaU13R0lFRmlPd0dJSEZDQ3hHWURFQ2l4RllqTUJpQkJZanNCaUJ4UWdzUm1BeEFvc1JXSXpBWWdRV0k3QVlnY1VJTEVaZ01RS0xFVmlNd0dJRUZpT3dHSUhGQ0N4R1lERUNpeEZZak1CaUJCWWpzQmlCeFFnc1JtQXhBb3NSV0l6QVlnUVdJN0FZZ2NVSUxFWmdNUUtMRVZpTXdHSUVGaU93R0lIRkNDeEdZREVDaXhGWWpNQmlCQllqc0JpQnhRZ3NSbUF4QW9zUldJekFZZ1FXSTdEWVIrQ2VEeUN0eGdMWDRhWHZBMGdyQnQ2SGw5SUhrRlFlMHA2eVhYaWQrQWlTR29TMHgyd2RYdWMrZ3FUS2tMYktGdUYxNVNOSWFoclNidUxybTQ4Z3FWV2N1N1pRTkxrUElhVmpTQnR1Yi9ZMjlTRWsxUGVwdXd6dld4OURRdk1RdGdydkx4YWFzMXg2VlFnN3N3OTJsbU9qbHR3d1pHM1B5SGF6T3pHRlU3TVQzRDUrS3V6SXZJZ2ZrY3pZSnZDNC9XeUh1YVpvUHlPUlE0aHF0emlUbjhMRjJpK1F4TVFtOE5BdjRvYmlmVG9qaFlFdHV6dS95TEtlVGVIbW96ZWVsZHZPclBueW1QM0ZndGNzdzRuMGJBdjgvWGdjbDR3RGp5VFMyRmpOLzI1cXRobSsxS3dTQ2VSeC92NTRRbW43NGt2RG5lNXBBMXQvTC9XUDFhRDNadU9YSlVlNjUwek9zZSsxNzVIdHZCRU96VHk2ZkVKcDN5R0hFOGIxdTluTTloTGhYamZ5YXp4b0VOZlpYdzV0Wlp6ZUlmRmk0Q1BvckpoNTNpWStvN3l1YUplSm9GNlBTbjRmcGFPOExCZjI3Q0hhL1Q0NSsvN1A0T3lJaDErZC9iOTlhMy8vbDNpRzdYWUNmM0RzdHMwdHBydjJkb2RIN09jUDNMbDY0MlZWMmZmTjZPQlVWZXZwMVNjNVdmWVB3UjMyZ0cxM3VoRUFBQUFBU1VWT1JLNUNZSUk9Pgo8aW1nIHdpZHRoPTQxIGhlaWdodD00NApzcmM9aHR0cHM6Ly9tb3NpcC5pby9pbWFnZXMvbG9nby5wbmcgYWx0PW1vc2lwIGFsaWduPXJpZ2h0IGhzcGFjZT0xMiBzdHlsZT1tYXJnaW4tdG9wOi0xNzJweDs+PC9zcGFuPjwvc3Bhbj4KPHNwYW4gc3R5bGU9bWFyZ2luLWxlZnQ6IDE2cHg7PjxiPklkIHR5cGU6PC9iPiBWSUQKY2FyZDwvcD48L3NwYW4+CjxwIGNsYXNzPU1zb05vcm1hbCBzdHlsZT0nbWFyZ2luLXRvcDowaW47bWFyZ2luLXJpZ2h0OjBpbjttYXJnaW4tYm90dG9tOjBpbjsKbGluZS1oZWlnaHQ6bm9ybWFsJz48aW1nIHdpZHRoPTg0IGhlaWdodD04NApzcmM9JGltYWdlIGFsdD11c2VyIGltYWdlIGFsaWduPWxlZnQgaHNwYWNlPTEyPjxiPk5hbWU6PC9iPiAkZnVsbE5hbWU8L3A+CjxwIGNsYXNzPU1zb05vcm1hbCBzdHlsZT0nbWFyZ2luLXRvcDowaW47bWFyZ2luLXJpZ2h0OjBpbjttYXJnaW4tYm90dG9tOjBpbjsKbGluZS1oZWlnaHQ6bm9ybWFsJz48Yj5ET0I6PC9iPiAkZGF0ZU9mQmlydGg8L3A+CjxwIGNsYXNzPU1zb05vcm1hbCBzdHlsZT0nbWFyZ2luLXRvcDowaW47bWFyZ2luLXJpZ2h0OjBpbjttYXJnaW4tYm90dG9tOjBpbjsKbGluZS1oZWlnaHQ6bm9ybWFsJz48Yj5WSUQ6PC9iPiAkVklEPC9wPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J21hcmdpbi10b3A6MGluO21hcmdpbi1yaWdodDowaW47bWFyZ2luLWJvdHRvbTowaW47CmxpbmUtaGVpZ2h0Om5vcm1hbCc+PGI+VklEIFR5cGU6PC9iPiAkdmlkVHlwZTwvcD4KPHAgY2xhc3M9TXNvTm9ybWFsIHN0eWxlPSdtYXJnaW4tdG9wOjBpbjttYXJnaW4tcmlnaHQ6MGluO21hcmdpbi1ib3R0b206MGluOwpsaW5lLWhlaWdodDpub3JtYWwnPjxiPkdlbmVyYXRlZCBvbjo8L2I+ICRnZW5yYXRlZE9uVGltZXN0YW1wPC9wPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J21hcmdpbi10b3A6MGluO21hcmdpbi1yaWdodDowaW47bWFyZ2luLWJvdHRvbTowaW47Cm1hcmdpbi1sZWZ0OjEuMTJpbjtsaW5lLWhlaWdodDpub3JtYWwnPjxiPkV4cGlyZXMgb246PC9iPiAkZXhwaXJ5VGltZXN0YW1wPC9wPgo8cCBjbGFzcz1Nc29Ob3JtYWwgc3R5bGU9J21hcmdpbi10b3A6MGluO21hcmdpbi1yaWdodDowaW47bWFyZ2luLWJvdHRvbTowaW47Cm1hcmdpbi1sZWZ0OjEuMWluO2xpbmUtaGVpZ2h0Om5vcm1hbCc+PGI+VHJhbnNhY3Rpb25zIGxlZnQ6PC9iPiAkdHJhbnNhY3Rpb25zTGVmdENvdW50PC9wPgo8L2Rpdj4KPC9ib2R5Pgo8L2h0bWw+ \ No newline at end of file +vid-card-type=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 From 99eb8d4af9445292b5fb709aceb47655d7ede212 Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Wed, 15 Mar 2023 17:20:56 +0530 Subject: [PATCH 1140/1358] Enabled kernel.auth.proxy-otp --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 649a4eb5cca..95c3bd67540 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -290,7 +290,7 @@ auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/au ## Proxy otp -mosip.kernel.auth.proxy-otp=false +mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy From 0c15d9d1fb1d5f6d629a7c0e7f18fadda31fe156 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Thu, 16 Mar 2023 15:07:20 +0530 Subject: [PATCH 1141/1358] Update digitalcard-template.properties --- digitalcard-template.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/digitalcard-template.properties b/digitalcard-template.properties index 7306ffc62ef..fac26f3d6b8 100644 --- a/digitalcard-template.properties +++ b/digitalcard-template.properties @@ -1,3 +1,3 @@ RPR_UIN_CARD_TEMPLATE=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 -vid-card-type=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 +vid-card-type=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 From 32b0cf5c1ab7fb52d9e19324f11cb4e6e275ae23 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Thu, 16 Mar 2023 15:28:05 +0530 Subject: [PATCH 1142/1358] Update digitalcard-template.properties --- digitalcard-template.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/digitalcard-template.properties b/digitalcard-template.properties index fac26f3d6b8..4adc8fbe396 100644 --- a/digitalcard-template.properties +++ b/digitalcard-template.properties @@ -1,3 +1,3 @@ RPR_UIN_CARD_TEMPLATE=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 -vid-card-type=PCFET0NUWVBFIGh0bWw+CjxodG1sPgo8aGVhZD4KPG1ldGEgaHR0cC1lcXVpdj1Db250ZW50LVR5cGUgY29udGVudD10ZXh0L2h0bWw7IGNoYXJzZXQ9d2luZG93cy0xMjUyPgo8bWV0YSBuYW1lPUdlbmVyYXRvciBjb250ZW50PU1pY3Jvc29mdCBXb3JkIDE1IChmaWx0ZXJlZCk+Cjxib2R5IGxhbmc9IkVOLVVTIj4KPGRpdiBzdHlsZT0id2lkdGg6MTAwJTtoZWlnaHQ6MTAwdmg7Ij4KPHRhYmxlIHN0eWxlPSJ3aWR0aDogMzM5cHg7bWFyZ2luOiAwIGF1dG87YmFja2dyb3VuZDogI0ZGRkZGRjtib3JkZXI6MXB4IHNvbGlkICM4NzdlN2U7Ym9yZGVyLXJhZGl1czogMTBweDtvcGFjaXR5OiAxO2JvcmRlci1jb2xsYXBzZTogc2VwYXJhdGUgIWltcG9ydGFudDsiPgo8dHI+CgkjaWYoJGlzUGhvdG9TZXQpCgk8dGQgc3R5bGU9IndpZHRoOjI1JTt2ZXJ0aWNhbC1hbGlnbjogdG9wO3BhZGRpbmc6NXB4OyI+PGltZyBzdHlsZT0idG9wOiA1MXB4O2xlZnQ6IDQ1cHg7d2lkdGg6IDgwcHg7aGVpZ2h0OiA5M3B4O29wYWNpdHk6IDE7Ym9yZGVyOjFweCBzb2xpZCAjRTJFMkUyO2JvcmRlci1yYWRpdXM6NXB4OyIgc3JjID0gJCFBcHBsaWNhbnRQaG90bz48L3RkPgoJI2VuZAoJPHRkIHN0eWxlPSJ3aWR0aDo2NSUiPgoJCTx0YWJsZSBzdHlsZT0iYm9yZGVyOm5vbmU7Ym9yZGVyLWNvbGxhcHNlOiBjb2xsYXBzZTt3aWR0aDogMTAwJTsiPgoJCSAgPHRyPgoJCQk8dGQgY29sc3Bhbj0yIHN0eWxlPSJwYWRkaW5nOjNweDsiPjxsYWJlbCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIG5vcm1hbCAxMXB4LzE0cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzY2NjY2NjtvcGFjaXR5OiAxOyI+RnVsbCBOYW1lPC9sYWJlbD48L3RkPgoJCSAgPC90cj4KCQkgIDx0cj4KCQkJPHRkIGNvbHNwYW49MiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxO3BhZGRpbmc6MHB4IDNweDsiPiRuYW1lPC90ZD4KCQkgIDwvdHI+CgkJICA8dHI+CgkJCTx0ZCBzdHlsZT0icGFkZGluZzozcHg7Ij48bGFiZWwgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCBub3JtYWwgMTFweC8xNHB4IEludGVyO2xldHRlci1zcGFjaW5nOiAwcHg7Y29sb3I6ICM2NjY2NjY7b3BhY2l0eTogMTsiPkRvQjwvbGFiZWw+PC90ZD4KCQkJPHRkIHN0eWxlPSJwYWRkaW5nOjNweDsiPjxsYWJlbCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIG5vcm1hbCAxMXB4LzE0cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzY2NjY2NjtvcGFjaXR5OiAxOyI+SUQgVHlwZTwvbGFiZWw+PC90ZD4KCQkgIDwvdHI+CgkJICA8dHI+CgkJCTx0ZCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxO3BhZGRpbmc6MHB4IDNweDsiPiRkYXRlT2ZCaXJ0aDwvdGQ+CgkJCTx0ZCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxO3BhZGRpbmc6MHB4IDNweDsiPlZJRDwvdGQ+CgkJICA8L3RyPgoJCTwvdGFibGU+Cgk8L3RkPgoJPHRkIHN0eWxlPSJ3aWR0aDoxMCU7dmVydGljYWwtYWxpZ246dG9wOyI+PGltZyBzdHlsZT0idG9wOiA0NnB4O2xlZnQ6IDMyNHB4O3dpZHRoOiAzNXB4O2hlaWdodDogMzdweDtiYWNrZ3JvdW5kOiB0cmFuc3BhcmVudCB1cmwoJ2ltZy9sb2dvICgyKS5wbmcnKSAwJSAwJSBuby1yZXBlYXQgcGFkZGluZy1ib3g7b3BhY2l0eTogMTsiIHNyYz0iaHR0cHM6Ly9tb3NpcC5pby9pbWFnZXMvbG9nby5wbmciIGFsdD0ibW9zaXAiPjwvdGQ+CjwvdHI+Cjx0cj4KCTx0ZCBjb2xzcGFuPSIzIj4KCQk8dGFibGUgc3R5bGU9ImJvcmRlcjpub25lO2JvcmRlci1jb2xsYXBzZTogY29sbGFwc2U7d2lkdGg6IDEwMCU7Ij4KCQkJPHRyPgoJCQkJPHRkIHN0eWxlPSJ3aWR0aDogNTAlO3BhZGRpbmc6M3B4OyI+PGxhYmVsIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgbm9ybWFsIDExcHgvMTRweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjNjY2NjY2O29wYWNpdHk6IDE7Ij5WSUQ8L2xhYmVsPjwvdGQ+CgkJCQk8dGQgc3R5bGU9IndpZHRoOiA1MCU7cGFkZGluZzozcHg7Ij48bGFiZWwgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCBub3JtYWwgMTFweC8xNHB4IEludGVyO2xldHRlci1zcGFjaW5nOiAwcHg7Y29sb3I6ICM2NjY2NjY7b3BhY2l0eTogMTsiPlZJRCBUeXBlPC9sYWJlbD48L3RkPgoJCQk8L3RyPgoJCQk8dHI+CgkJCQk8dGQgc3R5bGU9IndpZHRoOiA1MCU7cGFkZGluZzowcHggM3B4O3RleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCA2MDAgMTJweC8xNXB4IEludGVyO2xldHRlci1zcGFjaW5nOiAwcHg7Y29sb3I6ICMwMDAwMDA7b3BhY2l0eTogMTsiPiR2aWQ8L3RkPgoJCQkJPHRkIHN0eWxlPSJ3aWR0aDogNTAlO3BhZGRpbmc6MHB4IDNweDt0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgNjAwIDEycHgvMTVweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjMDAwMDAwO29wYWNpdHk6IDE7Ij4kdmlkVHlwZTwvdGQ+CgkJCTwvdHI+CgkJCTx0cj4KCQkJCTx0ZCBzdHlsZT0id2lkdGg6IDUwJTtwYWRkaW5nOjNweDsiPjxsYWJlbCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIG5vcm1hbCAxMXB4LzE0cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzY2NjY2NjtvcGFjaXR5OiAxOyI+R2VuZXJhdGVkIG9uPC9sYWJlbD48L3RkPgoJCQkJPHRkIHN0eWxlPSJ3aWR0aDogNTAlO3BhZGRpbmc6M3B4OyI+PGxhYmVsIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgbm9ybWFsIDExcHgvMTRweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjNjY2NjY2O29wYWNpdHk6IDE7Ij5FeHBpcmVzIG9uPC9sYWJlbD48L3RkPgoJCQk8L3RyPgoJCQk8dHI+CgkJCQk8dGQgc3R5bGU9IndpZHRoOiA1MCU7cGFkZGluZzozcHg7dGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxOyI+JGdlbnJhdGVkT25UaW1lc3RhbXA8L3RkPgoJCQkJPHRkIHN0eWxlPSJ3aWR0aDogNTAlO3BhZGRpbmc6M3B4O3RleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCA2MDAgMTJweC8xNXB4IEludGVyO2xldHRlci1zcGFjaW5nOiAwcHg7Y29sb3I6ICMwMDAwMDA7b3BhY2l0eTogMTsiPiRleHBpcnlUaW1lc3RhbXA8L3RkPgoJCQk8L3RyPgoJCTwvdGFibGU+Cgk8L3RkPgo8L3RyPgo8dHI+Cgk8dGQgY29sc3Bhbj0iMyIgIHN0eWxlPSJwYWRkaW5nOjNweDt0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgNjAwIDEycHgvMTVweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjMDAwMDAwO29wYWNpdHk6IDE7aGVpZ2h0OiA0MHB4O3RleHQtYWxpZ246IGNlbnRlcjtib3JkZXItdG9wOjFweCBzb2xpZCAjODc3ZTdlOyIgPlRyYW5zYWN0aW9ucyBhbGxvd2VkIDogJHRyYW5zYWN0aW9uc0xlZnRDb3VudDwvdGQ+CjwvdHI+CjwvdGFibGU+CjwvZGl2Pgo8L2JvZHk+CjwvaHRtbD4= +vid-card-type=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 From 7d8bdd6e8b8729ba4ef5885e8f4b7e79120b81c2 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 17 Mar 2023 12:50:18 +0530 Subject: [PATCH 1143/1358] updated pretext value test changes (#3525) --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index 707a1d296fe..aac33f9a12c 100644 --- a/application-default.properties +++ b/application-default.properties @@ -360,7 +360,7 @@ provider.packetwriter.resident=source:RESIDENT,process:ACTIVATED|DEACTIVATED|RES provider.packetwriter.opencrvs=source:OPENCRVS,process:OPENCRVS_NEW,classname:io.mosip.commons.packet.impl.PacketWriterImpl objectstore.adapter.name=S3Adapter ## When we use AWS as an object store, we see that buckets with the same name across deployments cannot be created.so use the prefix with bucket name -object.store.s3.bucket-name-prefix=${s3.pretext.value} +object.store.s3.bucket-name-prefix=${s3.pretext.value:} # the idschema is double by default. If country wish to change it to string then make this property false mosip.commons.packet.manager.schema.validator.convertIdSchemaToDouble=true ## can be OnlinePacketCryptoServiceImpl OR OfflinePacketCryptoServiceImpl @@ -377,7 +377,7 @@ object.store.swift.username=test object.store.swift.password=test object.store.swift.url=http://localhost:8080 -packet.manager.account.name=${s3.pretext.value}packet-manager +packet.manager.account.name=${s3.pretext.value:}packet-manager CRYPTOMANAGER_DECRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt CRYPTOMANAGER_ENCRYPT=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt IDSCHEMAURL=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest From a83b9c96875dedd311bd40cb38a3b01264e112a4 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 17 Mar 2023 17:22:02 +0530 Subject: [PATCH 1144/1358] [MOSIP-26544] Updated s3 pretext value property with colon --- id-repository-default.properties | 2 +- pre-registration-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 067d71c16d3..7e0f502e9c5 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=${s3.pretext.value}idrepo +mosip.idrepo.objectstore.bucket-name=${s3.pretext.value:}idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 07d4af0b4f9..e5b5264a904 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=${s3.pretext.value}prereg +mosip.kernel.objectstore.account-name=${s3.pretext.value:}prereg ## Booking Service booking.service.version=v1 From 49dcebb349215dc3d83ea970acba9da1fbf9e1aa Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 23 Mar 2023 17:04:02 +0530 Subject: [PATCH 1145/1358] Enable CORS and access to mosip-toolkit-android-client Enable CORS and allow access to mosip-toolkit-android-client --- compliance-toolkit-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index dc04f971811..9ff374e60b6 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -36,8 +36,8 @@ server.servlet.context-path=/v1/toolkit ## Security properties mosip.security.csrf-enable=false -mosip.security.cors-enable=false -mosip.security.origins=localhost:8099 +mosip.security.cors-enable=true +mosip.security.origins=http://localhost mosip.security.secure-cookie=false #iam @@ -62,7 +62,7 @@ mosip.iam.adapter.clientid=mosip-toolkit-client mosip.iam.adapter.clientsecret=${mosip.toolkit.client.secret} auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ -auth.server.admin.allowed.audience=mosip-toolkit-client +auth.server.admin.allowed.audience=mosip-toolkit-client,mosip-toolkit-android-client auth.allowed.urls=https://${mosip.compliance.host}/ mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs From cf1e4e7bd2e9c20a72d5aab62cb56a7906fa333d Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 23 Mar 2023 17:08:27 +0530 Subject: [PATCH 1146/1358] mosip-toolkit-android-client is added auth.server.admin.allowed.audience mosip-toolkit-android-client is added under auth.server.admin.allowed.audience --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 95c3bd67540..55f20d34085 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -420,7 +420,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client,mpartner-default-digitalcard +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client,mosip-toolkit-android-client,mpartner-default-digitalcard mosip.iam.adapter.appid=admin From 07e6febbbeb77c297431aefbd8bf550a115f7301 Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Fri, 24 Mar 2023 12:00:52 +0530 Subject: [PATCH 1147/1358] Move dev2 config to qa config for resident --- resident-default.properties | 55 +++++++++++++++++++++++++++---------- 1 file changed, 41 insertions(+), 14 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index bb1c19daf00..0e24e22259c 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -207,10 +207,17 @@ mosip.kernel.uin.length=10 mosip.kernel.vid.length=16 mosip.kernel.rid.length=29 mosip.resident.eid.length=16 + + mosip.kernel.otp.default-length=6 -resident.message.allowed.special.char.regex=[A-Za-z0-9 .,-]+ -resident.purpose.allowed.special.char.regex=[A-Za-z0-9 .,-]+ -resident.id.allowed.special.char.regex=[A-Za-z0-9 -]+ +resident.message.allowed.special.char.regex=^[A-Za-z0-9 .,-]+$ +resident.purpose.allowed.special.char.regex=^[A-Za-z0-9 .,-]+$ +resident.id.allowed.special.char.regex=^[0-9]+$ +resident.document.validation.transaction-id.regex=^[0-9]{10}$ +resident.document.validation.document-id.regex=^[A-Za-z0-9-]{20,}$ +resident.validation.is-numeric.regex=^[0-9]+$ +resident.otp.validation.transaction-id.regex=^[0-9]{10}$ +resident.validation.event-id.regex=^[0-9]{16}$ ## Security mosip.security.csrf-enable:false @@ -723,13 +730,14 @@ resident.create.password.method.name=getPassword mosip.resident.download.registration.centre.file.name.convention=Registration_centers_{timestamp} mosip.resident.download.supporting.document.file.name.convention=Supporting_documents_{timestamp} mosip.resident.download.personalized.card.naming.convention=Personalised_card_{eventId}_{timestamp} -mosip.resident.ack.manage_my_vid.name.convention=Ack_Manage_my_VID_{eventId}_{timestamp} -mosip.resident.ack.secure_my_id.name.convention=Ack_secure_my_ID_{eventId}_{timestamp} -mosip.resident.ack.personalised_card.name.convention=Ack_personalised_card_{eventId}_{timestamp} -mosip.resident.ack.update_my_data.name.convention=Ack_update_my_data_{eventId}_{timestamp} -mosip.resident.ack.share_credential.name.convention=Ack_share_credential_{eventId}_{timestamp} -mosip.resident.ack.order_physical_card.name.convention=Ack_order_physical_card_{eventId}_{timestamp} -mosip.resident.ack.name.convention=Ack_{eventId}_{timestamp} +mosip.resident.ack.manage_my_vid.name.convention=Ack_{featureName}_{eventId}_{timestamp} +mosip.resident.ack.secure_my_id.name.convention=Ack_{featureName}_{eventId}_{timestamp} +mosip.resident.ack.personalised_card.name.convention=Ack_{featureName}_{eventId}_{timestamp} +mosip.resident.ack.update_my_data.name.convention=Ack_{featureName}_{eventId}_{timestamp} +mosip.resident.ack.share_credential.name.convention=Ack_{featureName}_{eventId}_{timestamp} +mosip.resident.ack.order_physical_card.name.convention=Ack_{featureName}_{eventId}_{timestamp} +mosip.resident.ack.name.convention=Ack_{featureName}_{eventId}_{timestamp} + mosip.resident.uin.card.name.convention=UIN_{eventId}_{timestamp} mosip.resident.vid.card.name.convention=VID_{eventId}_{timestamp} mosip.resident.download.service.history.file.name.convention=View_history_{timestamp} @@ -755,16 +763,13 @@ mosip.digital.card.credential.type=PDFCard ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 -otp.request.flooding.max-count=10 +otp.request.flooding.max-count=100 mosip.resident.message.code.maximum.length=1024 GET_RID_STATUS=${mosipbox.public.url}/registrationprocessor/v1/registrationtransaction/search/{rid} sequence-order=Request received, Validation stage, Verification stage, Uin generation stage, Card ready to download -mosip.resident.checkstatus.individualid.id=mosip.resident.check-stage-status -mosip.resident.checkstatus.individualid.version=1.0 - resident.additional.identity.attribute.to.fetch=UIN,email,phone,dateOfBirth,fullName,photo resident.template.ack.authentication.request=acknowledgment-authentication-request @@ -798,3 +803,25 @@ resident.service-history.download.max.count=100 # Below property will retrieve VID when requested. resident.flag.use-vid-only=true + +mosip.idp.otp.template.property=mosip.idp.otp.template.property +# Below property will retrieve VID when requested. +mosip.idp.biometrics.template.property=mosip.idp.biometrics.template.property +mosip.idp.unknown.authentication.template.property=mosip.idp.unknown.authentication.template.property +mosip.full.name.template.property=mosip.full.name.template.property +mosip.date.of.birth.template.property=mosip.date.of.birth.template.property +mosip.uin.template.property=mosip.uin.template.property +mosip.perpetual.vid.template.property=mosip.perpetual.vid.template.property +mosip.phone.template.property=mosip.phone.template.property +mosip.email.template.property=mosip.email.template.property +mosip.address.template.property=mosip.address.template.property +mosip.gender.template.property=mosip.gender.template.property +mosip.defualt.template.property=mosip.defualt.template.property +mosip.idp.acr.generated.code=mosip:idp:acr:generated-code +mosip.idp.acr.biometrics=mosip:idp:acr:biometrics +mosip.idp.unknown.authentication=unknown +auth.token.header=Authorization +# Class name of the referenceValidator. Commenting or removing this property will disable reference validator. +mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator +mosip.resident.vid.card.template.property=vid-card-type +mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} From ebf57c833f2683b6c50ce938b39bac2d3c091b53 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 24 Mar 2023 12:34:31 +0530 Subject: [PATCH 1148/1358] [DSD-2336] Added config changes for esignet latest fixes --- esignet-default.properties | 31 ++++++++++++++++-------------- misp-policy-schema.json | 39 ++++++++++++++++++++------------------ 2 files changed, 38 insertions(+), 32 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 8da86b4183e..45a7a9eebed 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,7 +34,6 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 -mosip.esignet.link-status-deferred-response-timeout-secs=25 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ @@ -47,12 +46,11 @@ mosip.esignet.binding.audience-id=esignet-binding mosip.esignet.binding.key-expire-days=10 mosip.esignet.binding.encrypt-binding-id=false + ## -------------------------------------- Authentication & Authorization ----------------------------------------------- mosip.esignet.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ - \ '${server.servlet.path}/system-info/**' : { 'SCOPE_upload_certificate'},\ - \ '${server.servlet.path}/binding/wallet-binding' : { 'SCOPE_wallet_binding'}, \ - \ '${server.servlet.path}/binding/binding-otp' : { 'SCOPE_send_binding_otp'}} + \ '${server.servlet.path}/system-info/**' : { 'SCOPE_upload_certificate'}} mosip.esignet.security.auth.put-urls={'${server.servlet.path}/client-mgmt/**' : { 'SCOPE_update_oidc_client'} } mosip.esignet.security.auth.get-urls={'${server.servlet.path}/system-info/**' : { 'SCOPE_get_certificate'} } @@ -65,7 +63,7 @@ mosip.esignet.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server. mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/** + ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/binding/** spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs @@ -84,11 +82,11 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=IdaAuthenticatorImpl -mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -mosip.esignet.integration.audit-plugin=LoggerAuditService +mosip.esignet.integration.key-binder=IdaKeyBinderImpl +#mosip.esignet.integration.key-binder=MockKeyBindingWrapperService +mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService - # captcha validator mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify @@ -105,9 +103,10 @@ mosip.esignet.authenticator.ida.cert-url=https://${mosip.api.public.host}/mosip- mosip.esignet.authenticator.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.esignet.misp.license.key}/ -mosip.esignet.binder.ida.key-binding-url=${keycloak.internal.url}/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.binder.ida.key-binding-url=https://${mosip.api.internal.host}/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ mosip.esignet.authenticator.ida.get-certificates-url=https://${mosip.api.internal.host}/idauthentication/v1/internal/getAllCertificates mosip.esignet.authenticator.ida.auth-token-url=https://${mosip.api.internal.host}/v1/authmanager/authenticate/clientidsecretkey +mosip.esignet.authenticator.ida.audit-manager-url=https://${mosip.api.internal.host}/v1/auditmanager/audits mosip.esignet.authenticator.ida.client-id=mosip-ida-client mosip.esignet.authenticator.ida.secret-key=${mosip.ida.client.secret} mosip.esignet.authenticator.ida.app-id=ida @@ -121,6 +120,8 @@ mosip.esignet.mock.authenticator.claims-mapping-file=/home/mosip/mockida/claims_ mosip.esignet.mock.authenticator.get-identity-url=https://${mosip.api.public.host}/v1/mock-identity-system/identity mosip.esignet.mock.authenticator.kyc-auth-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-auth mosip.esignet.mock.authenticator.kyc-exchange-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-exchange +mosip.esignet.mock.authenticator.ida.otp-channels=${mosip.esignet.authenticator.ida.otp-channels} +mosip.esignet.mock.authenticator.send-otp=https://${mosip.api.public.host}/v1/mock-identity-system/send-otp ## ------------------------------------------ oauth & openid supported values ------------------------------------------ @@ -172,7 +173,7 @@ mosip.esignet.cache.store.individual-id=true mosip.esignet.cache.security.secretkey.reference-id=TRANSACTION_CACHE mosip.esignet.cache.security.algorithm-name=AES/ECB/PKCS5Padding -mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented +mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction #spring.cache.type=redis #spring.cache.cache-names=${mosip.esignet.cache.names} @@ -183,10 +184,10 @@ management.health.redis.enabled=false spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 mosip.esignet.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ - 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200 } + 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200, 'authtokens': 2, 'bindingtransaction': 1500 } mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 600, 'authenticated': 120, 'authcodegenerated': 60, \ 'userinfo': ${mosip.esignet.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ - 'linked': 60 , 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : 60, 'consented': 120 } + 'linked': 60 , 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : 60, 'consented': 120, 'authtokens': 28800, 'bindingtransaction': 300 } ## ------------------------------------------ Discovery openid-configuration ------------------------------------------- @@ -197,7 +198,6 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.discovery.issuer- \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' ,\ \ 'userinfo_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/oidc/userinfo' , \ - \ 'registration_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/client-mgmt/oidc-client' , \ \ 'jwks_uri' : '${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json' , \ \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ \ 'response_types_supported' : ${mosip.esignet.supported.response.types}, \ @@ -296,8 +296,11 @@ crypto.PrependThumbprint.enable=true mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ - 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, 'resend.otp.delay.secs': 30, \ + 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ + 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, \ 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} + logging.level.org.springframework.web.client.RestTemplate=DEBUG +logging.level.io.mosip.esignet=DEBUG diff --git a/misp-policy-schema.json b/misp-policy-schema.json index 60d4ce19fc4..0795acb0de2 100644 --- a/misp-policy-schema.json +++ b/misp-policy-schema.json @@ -1,20 +1,23 @@ { - "$schema": "http://json-schema.org/draft-04/schema#", - "type": "object", - "properties": { - "allowAuthRequestDelegation": { - "type": "boolean" - }, - "allowKycRequestDelegation": { - "type": "boolean" - }, - "trustBindedAuthVerificationToken": { - "type": "boolean" - } - + "$schema": "http://json-schema.org/draft-04/schema#", + "type": "object", + "properties": { + "allowAuthRequestDelegation": { + "type": "boolean" }, - "required": [ - "allowAuthRequestDelegation", - "allowKycRequestDelegation" - ] - } + "allowKycRequestDelegation": { + "type": "boolean" + }, + "trustBindedAuthVerificationToken": { + "type": "boolean" + }, + "allowKeyBindingDelegation": { + "type": "boolean" + } + }, + "required": [ + "allowAuthRequestDelegation", + "allowKycRequestDelegation", + "allowKeyBindingDelegation" + ] +} \ No newline at end of file From 3c859f83799992bdcd265b263a761f2a0843e9dd Mon Sep 17 00:00:00 2001 From: kameshsr <47484458+kameshsr@users.noreply.github.com> Date: Fri, 24 Mar 2023 15:09:45 +0530 Subject: [PATCH 1149/1358] Update digitalcard-template.properties From 23ea649fab8d6fd0a4ac55d25de12b7abd6323d6 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 24 Mar 2023 15:38:00 +0530 Subject: [PATCH 1150/1358] [DSD-2336] Updated misp license key --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 45a7a9eebed..ba0679009e3 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -27,7 +27,7 @@ ## ------------------------------------------------- e-Signet ---------------------------------------------------------- -mosip.esignet.misp.license.key=elhvf43Uar8ShYra9N2bfTxaM3MaR50Hc9IMol5qazTRtX3FHZ +mosip.esignet.misp.license.key=nuKJ6FmTjLdj0jIO90HPy06oIv5jFtosInJhszifrPUi8Qge4b mosip.esignet.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/amr-acr-mapping.json mosip.esignet.auth-txn-id-length=10 mosip.esignet.supported-id-regex=\\S* From 1f7fafbff4b61f1e55a4e7485965ed4bf3e7485e Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Fri, 24 Mar 2023 16:53:13 +0530 Subject: [PATCH 1151/1358] [DSD-2342] updated resident-default.properties --- resident-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/resident-default.properties b/resident-default.properties index 0e24e22259c..0389ef40bba 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -825,3 +825,4 @@ auth.token.header=Authorization mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator mosip.resident.vid.card.template.property=vid-card-type mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} +mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} From 785cccb00f1e52ad81c9ade12c7375e1b3c8a06e Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Fri, 24 Mar 2023 17:02:46 +0530 Subject: [PATCH 1152/1358] [DSD-2342] updated resident-default.properties --- resident-default.properties | 1 - 1 file changed, 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 0389ef40bba..0e24e22259c 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -825,4 +825,3 @@ auth.token.header=Authorization mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator mosip.resident.vid.card.template.property=vid-card-type mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} -mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} From bb07f733239122b7a902895ab17a15448dac5643 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 24 Mar 2023 17:23:36 +0530 Subject: [PATCH 1153/1358] Revert "[DSD-2342] updated resident-default.properties" --- resident-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/resident-default.properties b/resident-default.properties index 0e24e22259c..0389ef40bba 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -825,3 +825,4 @@ auth.token.header=Authorization mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator mosip.resident.vid.card.template.property=vid-card-type mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} +mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} From bd6309f82ccc513f5b27cd973d8b9d88714ff4e1 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 24 Mar 2023 17:25:03 +0530 Subject: [PATCH 1154/1358] [DSD-2342] --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 488a2db55da..2f390393308 100644 --- a/application-default.properties +++ b/application-default.properties @@ -17,6 +17,7 @@ mosip.recommended.centers.locCode=5 ## Common properties used across different modules mosipbox.public.url=${mosip.api.internal.url} mosip.api.internal.url=https://${mosip.api.internal.host} +mosip.api.public.url=https://${mosip.api.public.host} mosip.kernel.authmanager.url=http://authmanager.kernel mosip.kernel.masterdata.url=http://masterdata.kernel mosip.kernel.keymanager.url=http://keymanager.keymanager From 498e6878304b8f8458519f90dc200f6c32ecabe3 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 24 Mar 2023 17:36:23 +0530 Subject: [PATCH 1155/1358] [DSD-2342] --- application-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/application-default.properties b/application-default.properties index 2f390393308..2a0725c73a5 100644 --- a/application-default.properties +++ b/application-default.properties @@ -442,3 +442,6 @@ mosip.auth.filter_disable=false mosip.digitalcard.uincard.password=fullName|dateOfBirth mosip.digitalcard.pdf.password.enable.flag=true mosip.access_token.subject.claim-name=sub + +# It is used as a suffix for creating credential request ID using the RID. +mosip.registration.processor.rid.delimiter=-PDF From 277ae8962396b650556a609dc0000a7ad557b786 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 24 Mar 2023 18:15:00 +0530 Subject: [PATCH 1156/1358] [DSD-2336] Updated clientid --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 0389ef40bba..c96a7ce22f6 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -313,7 +313,7 @@ mosip.iam.module.login_flow.name=authorization_code # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. ################## MOSIP ESignet config -mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c +mosip.iam.module.clientID=pyrfprht1Y7UAZKYX6PwOeB1w2h7Gv0k3omqkGJmSV0 mosip.iam.module.clientsecret= mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize From ffeb288af3521a6d16677babb4cee04351e240c7 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Fri, 24 Mar 2023 18:48:24 +0530 Subject: [PATCH 1157/1358] Revert "[DSD-2336] Updated clientid for esignet" --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index c96a7ce22f6..0389ef40bba 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -313,7 +313,7 @@ mosip.iam.module.login_flow.name=authorization_code # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. ################## MOSIP ESignet config -mosip.iam.module.clientID=pyrfprht1Y7UAZKYX6PwOeB1w2h7Gv0k3omqkGJmSV0 +mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c mosip.iam.module.clientsecret= mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize From 6c59039ca97f67d703b909560a6cd394c220f214 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Fri, 24 Mar 2023 20:25:39 +0530 Subject: [PATCH 1158/1358] Taking missing properties --- resident-default.properties | 20 ++++++++++++++++++-- 1 file changed, 18 insertions(+), 2 deletions(-) diff --git a/resident-default.properties b/resident-default.properties index 0389ef40bba..cd0168b6b98 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -520,6 +520,10 @@ resident.template.email.subject.request-received.gen-or-revoke-vid=gen-or-revoke resident.template.email.subject.success.gen-or-revoke-vid=gen-or-revoke-vid-success-email-subject resident.template.email.subject.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure-email-subject +resident.template.email.subject.request-received.vid-card-download=vid-card-download-request-received-email-subject +resident.template.email.subject.success.vid-card-download=vid-card-download-success-email-subject +resident.template.email.subject.failure.vid-card-download=vid-card-download-failure-email-subject + resident.template.email.subject.request-received.get-my-uin-card=get-my-uin-card-request-received-email-subject resident.template.email.subject.success.get-my-uin-card=get-my-uin-card-success-email-subject resident.template.email.subject.failure.get-my-uin-card=get-my-uin-card-failure-email-subject @@ -553,6 +557,10 @@ resident.template.email.content.request-received.gen-or-revoke-vid=gen-or-revoke resident.template.email.content.success.gen-or-revoke-vid=gen-or-revoke-vid-success-email-content resident.template.email.content.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure-email-content +resident.template.email.content.request-received.vid-card-download=vid-card-download-request-received-email-content +resident.template.email.content.success.vid-card-download=vid-card-download-success-email-content +resident.template.email.content.failure.vid-card-download=vid-card-download-failure-email-content + resident.template.email.content.request-received.get-my-uin-card=get-my-uin-card-request-received-email-content resident.template.email.content.success.get-my-uin-card=get-my-uin-card-success-email-content resident.template.email.content.failure.get-my-uin-card=get-my-uin-card-failure-email-content @@ -586,6 +594,10 @@ resident.template.sms.request-received.gen-or-revoke-vid=gen-or-revoke-vid-reque resident.template.sms.success.gen-or-revoke-vid=gen-or-revoke-vid-success_SMS resident.template.sms.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure_SMS +resident.template.sms.request-received.vid-card-download=vid-card-download-request-received_SMS +resident.template.sms.success.vid-card-download=vid-card-download-success_SMS +resident.template.sms.failure.vid-card-download=vid-card-download-failure_SMS + resident.template.sms.request-received.get-my-uin-card=get-my-uin-card-request-received_SMS resident.template.sms.success.get-my-uin-card=get-my-uin-card-success_SMS resident.template.sms.failure.get-my-uin-card=get-my-uin-card-failure_SMS @@ -770,6 +782,9 @@ mosip.resident.message.code.maximum.length=1024 GET_RID_STATUS=${mosipbox.public.url}/registrationprocessor/v1/registrationtransaction/search/{rid} sequence-order=Request received, Validation stage, Verification stage, Uin generation stage, Card ready to download +mosip.resident.checkstatus.individualid.id=mosip.resident.check-stage-status +mosip.resident.checkstatus.individualid.version=1.0 + resident.additional.identity.attribute.to.fetch=UIN,email,phone,dateOfBirth,fullName,photo resident.template.ack.authentication.request=acknowledgment-authentication-request @@ -790,7 +805,7 @@ mosip.idrepo.vid.reactive-status=ACTIVE # Asyc Request Types resident.async.request.types=VID_CARD_DOWNLOAD,ORDER_PHYSICAL_CARD,SHARE_CRED_WITH_PARTNER,UPDATE_MY_UIN -resident.batchjob.process.status.list=NEW,ISSUED,RECEIVED,PRINTING,FAILED,DELIVERED,PAYMENT_CONFIRMED,IN_TRANSIT +resident.batchjob.process.status.list=NEW,ISSUED,RECEIVED,PRINTING,CARD_DELIVERED,PAYMENT_CONFIRMED,IN_TRANSIT resident.ui.notification.update.interval.seconds=30 mosip.allowed.extension=pdf,jpeg,png,jpg @@ -825,4 +840,5 @@ auth.token.header=Authorization mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator mosip.resident.vid.card.template.property=vid-card-type mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} -mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} +spring.servlet.multipart.max-file-size=10MB + From 4fc5c9d9b7e03e27a1c4fa04abcf69226996e6f5 Mon Sep 17 00:00:00 2001 From: damodarguru <124761463+damodarguru@users.noreply.github.com> Date: Fri, 24 Mar 2023 22:17:20 +0530 Subject: [PATCH 1159/1358] Update resident-default.properties (#3553) Updated resident.service-history.download.max.count=115 for testing purpose will revert back once testing is completed. --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 0389ef40bba..dc97310ac54 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -799,7 +799,7 @@ mosip.resident.schema.attribute-name=attributeName mosip.max.file.upload.size.in.bytes=2000000 -resident.service-history.download.max.count=100 +resident.service-history.download.max.count=115 # Below property will retrieve VID when requested. resident.flag.use-vid-only=true From 4355b3f2f0e8a9a9ee519862cdc058a60e6eee42 Mon Sep 17 00:00:00 2001 From: bhumi46 <111699703+bhumi46@users.noreply.github.com> Date: Mon, 27 Mar 2023 19:26:49 +0530 Subject: [PATCH 1160/1358] language and compliance updated (#3581) --- application-default.properties | 4 ++-- compliance-toolkit-default.properties | 6 +++--- mimoto-default.properties | 4 ++-- print-default.properties | 4 ++-- resident-app-default.properties | 4 ++-- 5 files changed, 11 insertions(+), 11 deletions(-) diff --git a/application-default.properties b/application-default.properties index aac33f9a12c..d91e188bfdd 100644 --- a/application-default.properties +++ b/application-default.properties @@ -92,7 +92,7 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara,kan mosip.right_to_left_orientation=ara mosip.left_to_right_orientation=eng @@ -418,7 +418,7 @@ mosip.min-languages.count=2 mosip.max-languages.count=3 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara,fra +mosip.default.template-languages=eng,ara,kan # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index de33b3134c5..62075072e4f 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -192,6 +192,6 @@ springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator -mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] \ No newline at end of file +mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":true}] \ No newline at end of file diff --git a/mimoto-default.properties b/mimoto-default.properties index b29c75cb8f2..1dc536dea54 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara,kan mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara,kan mosip.mandatory-languages=eng # mosip.primary-language=eng diff --git a/print-default.properties b/print-default.properties index f2c1f7fbb0c..fa713038692 100644 --- a/print-default.properties +++ b/print-default.properties @@ -55,9 +55,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara,kan mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara,kan mosip.mandatory-languages=eng ## CBEFF util diff --git a/resident-app-default.properties b/resident-app-default.properties index 8c45381053b..76e83c91e09 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara,kan mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=ara,kan mosip.mandatory-languages=eng # mosip.primary-language=eng From 93cab2bf50ea4cbac270fcb7201382fe902f768d Mon Sep 17 00:00:00 2001 From: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> Date: Mon, 27 Mar 2023 19:27:38 +0530 Subject: [PATCH 1161/1358] [dsd-2359]Added wallet-binding partner id and apikey (#3582) --- mimoto-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/mimoto-default.properties b/mimoto-default.properties index af5913fc6c3..a36c85b8d3b 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -178,3 +178,5 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 +wallet.binding.partner.id=mpartner-default-mimotobinding +wallet.binding.partner.api.key=801450 From 7d3552f26697437dfe5c0e2cda99a0f4b3430c96 Mon Sep 17 00:00:00 2001 From: gaganamadival <94885434+gaganamadival@users.noreply.github.com> Date: Mon, 27 Mar 2023 20:04:29 +0530 Subject: [PATCH 1162/1358] [DSD-2362] updated mimoto-default.properties (#3583) --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index a36c85b8d3b..d55855f76ec 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -179,4 +179,4 @@ mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclien vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotobinding -wallet.binding.partner.api.key=801450 +wallet.binding.partner.api.key=14378 \ No newline at end of file From 2bcf92bfac62f37817481d808bd8365dda6393a0 Mon Sep 17 00:00:00 2001 From: Mohan E <mohanraj1715@gmail.com> Date: Tue, 28 Mar 2023 10:38:05 +0530 Subject: [PATCH 1163/1358] [DSD-2362] Updated mimoto-default.properties --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index d55855f76ec..a36c85b8d3b 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -179,4 +179,4 @@ mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclien vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotobinding -wallet.binding.partner.api.key=14378 \ No newline at end of file +wallet.binding.partner.api.key=801450 From 828758e6989edec6d0acf7c3e89d7863b1a5b955 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 28 Mar 2023 13:03:43 +0530 Subject: [PATCH 1164/1358] added the missing fields --- identity-mapping.json | 300 +++++++++++++++++++++++------------------- 1 file changed, 161 insertions(+), 139 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 42cfe2a4bd9..b45c25a8d46 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -1,141 +1,163 @@ { - "identity": { - "IDSchemaVersion": { - "value": "IDSchemaVersion" - }, - "name": { - "value": "fullName" - }, - "gender": { - "value": "gender" - }, - "dob": { - "value": "dateOfBirth" - }, - "age": { - "value": "age" - }, - "introducerRID": { - "value": "introducerRID" - }, - "introducerUIN": { - "value": "introducerUIN" - }, - "introducerVID": { - "value": "introducerVID" - }, - "introducerName": { - "value": "introducerName" - }, - "phone": { - "value": "phone" - }, - "phoneNumber": { - "value": "phone" - }, - "email": { - "value": "email" - }, - "emailId": { - "value": "email" - }, - "uin": { - "value": "UIN" - }, - "vid": { - "value": "VID" - }, - "individualBiometrics": { - "value": "individualBiometrics" - }, - "introducerBiometrics": { - "value": "introducerBiometrics" - }, - "individualAuthBiometrics": { - "value": "individualAuthBiometrics" - }, - "officerBiometricFileName": { - "value": "officerBiometricFileName" - }, - "supervisorBiometricFileName": { - "value": "supervisorBiometricFileName" - }, - "residenceStatus": { - "value": "residenceStatus" - }, - "preferredLanguage": { - "value": "preferredLang" - }, - "locationHierarchyForProfiling": { - "value": "zone,postalCode" - }, - "addressLine1": { - "value": "addressLine1" - }, - "addressLine2": { - "value": "addressLine2" - }, - "addressLine3": { - "value": "addressLine3" - }, - "location1": { - "value": "city" - }, - "location2": { - "value": "region" - }, - "location3": { - "value": "province" - }, - "postalCode": { - "value": "postalCode" - }, - "location4": { - "value": "zone" - }, - "fullAddress": { - "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" - }, - "bestTwoFingers": { - "value": "bestTwoFingers" - }, - "birthdate": { - "value": "dateOfBirth" - }, - "picture": { - "value": "face" - }, - "phone_number": { - "value": "phone" - } - }, - "metaInfo": { - "value": "metaInfo" - }, - "audits": { - "value": "audits" - }, - "documents": { - "poa": { - "value": "proofOfAddress" - }, - "poi": { - "value": "proofOfIdentity" - }, - "por": { - "value": "proofOfRelationship" - }, - "pob": { - "value": "proofOfDateOfBirth" - }, - "poe": { - "value": "proofOfException" - } - }, - "attributeUpdateCountLimit": { - "fullName": 2, - "gender": 1, - "dob": 1, - "age": 1 - } + "identity": { + "IDSchemaVersion": { + "value": "IDSchemaVersion" + }, + "name": { + "value": "fullName" + }, + "gender": { + "value": "gender" + }, + "dob": { + "value": "dateOfBirth" + }, + "age": { + "value": "age" + }, + "introducerRID": { + "value": "introducerRID" + }, + "introducerUIN": { + "value": "introducerUIN" + }, + "introducerVID": { + "value": "introducerVID" + }, + "introducerName": { + "value": "introducerName" + }, + "phone": { + "value": "phone" + }, + "phoneNumber": { + "value": "phone" + }, + "email": { + "value": "email" + }, + "emailId": { + "value": "email" + }, + "uin": { + "value": "UIN" + }, + "vid": { + "value": "VID" + }, + "individualBiometrics": { + "value": "individualBiometrics" + }, + "introducerBiometrics": { + "value": "introducerBiometrics" + }, + "individualAuthBiometrics": { + "value": "individualAuthBiometrics" + }, + "officerBiometricFileName": { + "value": "officerBiometricFileName" + }, + "supervisorBiometricFileName": { + "value": "supervisorBiometricFileName" + }, + "residenceStatus": { + "value": "residenceStatus" + }, + "preferredLanguage": { + "value": "preferredLang" + }, + "locationHierarchyForProfiling": { + "value": "zone,postalCode" + }, + "addressLine1": { + "value": "addressLine1" + }, + "addressLine2": { + "value": "addressLine2" + }, + "addressLine3": { + "value": "addressLine3" + }, + "location1": { + "value": "city" + }, + "location2": { + "value": "region" + }, + "location3": { + "value": "province" + }, + "postalCode": { + "value": "postalCode" + }, + "location4": { + "value": "zone" + }, + "fullAddress": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + }, + "bestTwoFingers": { + "value": "bestTwoFingers" + }, + "birthdate": { + "value": "dateOfBirth" + }, + "picture": { + "value": "face" + }, + "phone_number": { + "value": "phone" + }, + "address": { + "value": "addressLine1,addressLine2,addressLine3,city,region,province,postalCode" + }, + + "individual_id": { + "value": "individual_id" + }, + "street_address": { + "value": "addressLine1,addressLine2,addressLine3" + }, + "locality": { + "value": "city" + }, + "region": { + "value": "region" + }, + "postal_code": { + "value": "postalCode" + }, + "country": { + "value": "province" + } + }, + "metaInfo": { + "value": "metaInfo" + }, + "audits": { + "value": "audits" + }, + "documents": { + "poa": { + "value": "proofOfAddress" + }, + "poi": { + "value": "proofOfIdentity" + }, + "por": { + "value": "proofOfRelationship" + }, + "pob": { + "value": "proofOfDateOfBirth" + }, + "poe": { + "value": "proofOfException" + } + }, + "attributeUpdateCountLimit": { + "fullName": 2, + "gender": 1, + "dob": 1, + "age": 1 + } } From ced243947d2c9a13f82a4c06a93996f133d09689 Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Tue, 28 Mar 2023 15:12:28 +0530 Subject: [PATCH 1165/1358] changed audience for ida --- inji-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/inji-default.properties b/inji-default.properties index fd41a03f3d3..f72a31e110a 100644 --- a/inji-default.properties +++ b/inji-default.properties @@ -11,7 +11,7 @@ mosip.inji.vcDownloadMaxRetry=10 # pool interval in milli seconds mosip.inji.vcDownloadPoolInterval=6000 # validate binding audience url to be sent in token -mosip.inji.audience=esignet-binding +mosip.inji.audience=ida-binding # issuer to be sent in token mosip.inji.issuer=residentapp # warning screen domain name From 99ba7233254d11ab8f7f3697fe5479670c31aadf Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Tue, 28 Mar 2023 16:05:48 +0530 Subject: [PATCH 1166/1358] Update pre-registration-default.properties --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index e5b5264a904..d200225b120 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=${s3.pretext.value:}prereg +mosip.kernel.objectstore.account-name=prereg ## Booking Service booking.service.version=v1 From 640bdb6efa9bee825576fe284102c626a55c9cc2 Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Wed, 29 Mar 2023 09:56:38 +0530 Subject: [PATCH 1167/1358] [DSD-2374] Added mock-identity-system-default.properties --- mock-identity-system-default.properties | 39 +++++++++++++++++++++++++ 1 file changed, 39 insertions(+) create mode 100644 mock-identity-system-default.properties diff --git a/mock-identity-system-default.properties b/mock-identity-system-default.properties new file mode 100644 index 00000000000..52ae60d59e3 --- /dev/null +++ b/mock-identity-system-default.properties @@ -0,0 +1,39 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at https://mozilla.org/MPL/2.0/. + +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url +# keycloak.admin.password +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret +# softhsm.kernel.pin +# softhsm-security-pin +# email.smtp.host +# email.smtp.username +# email.smtp.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt +# mosip.api.internal.url +# mosip.api.public.url + +##----------------------------------------- Database properties -------------------------------------------------------- + +mosip.mockidentitysystem.database.hostname=postgres-postgresql.postgres +mosip.mockidentitysystem.database.port=5432 +spring.datasource.url=jdbc:postgresql://${mosip.mockidentitysystem.database.hostname}:${mosip.mockidentitysystem.database.port}/mosip_mockidentitysystem?currentSchema=mockidentitysystem +spring.datasource.username=mockidsystemuser +spring.datasource.password=${db.dbuser.password} + +spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect +spring.jpa.show-sql=false +spring.jpa.hibernate.ddl-auto=none +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true \ No newline at end of file From 90cea9334832294ae4eb8019dd500fd8955dcd5f Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Wed, 29 Mar 2023 13:18:35 +0530 Subject: [PATCH 1168/1358] [DSD-2374] Added mock-identity-system-default.properties --- mock-identity-system-default.properties | 63 +++++++++++++++++++++++++ 1 file changed, 63 insertions(+) diff --git a/mock-identity-system-default.properties b/mock-identity-system-default.properties index 52ae60d59e3..8329cf0abca 100644 --- a/mock-identity-system-default.properties +++ b/mock-identity-system-default.properties @@ -33,6 +33,69 @@ spring.datasource.url=jdbc:postgresql://${mosip.mockidentitysystem.database.host spring.datasource.username=mockidsystemuser spring.datasource.password=${db.dbuser.password} +#------------------------------------ Key-manager specific properties -------------------------------------------------- +#Crypto asymmetric algorithm name +mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING +#Crypto symmetric algorithm name +mosip.kernel.crypto.symmetric-algorithm-name=AES/GCM/PKCS5Padding +#Keygenerator asymmetric algorithm name +mosip.kernel.keygenerator.asymmetric-algorithm-name=RSA +#Keygenerator symmetric algorithm name +mosip.kernel.keygenerator.symmetric-algorithm-name=AES +#Asymmetric algorithm key length +mosip.kernel.keygenerator.asymmetric-key-length=2048 +#Symmetric algorithm key length +mosip.kernel.keygenerator.symmetric-key-length=256 +#Encrypted data and encrypted symmetric key separator +mosip.kernel.data-key-splitter=#KEY_SPLITTER# +#GCM tag length +mosip.kernel.crypto.gcm-tag-length=128 +#Hash algo name +mosip.kernel.crypto.hash-algorithm-name=PBKDF2WithHmacSHA512 +#Symmtric key length used in hash +mosip.kernel.crypto.hash-symmetric-key-length=256 +#No of iterations in hash +mosip.kernel.crypto.hash-iteration=100000 +#Sign algo name +mosip.kernel.crypto.sign-algorithm-name=RS256 +#Certificate Sign algo name +mosip.kernel.certificate.sign.algorithm=SHA256withRSA + +#mosip.kernel.keymanager.hsm.config-path=local.p12 +#mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +#mosip.kernel.keymanager.hsm.keystore-pass=local + +#Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +# For PKCS11 provide Path of config file. +# For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. +# For Offline & JCE property can be left blank, specified value will be ignored. +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +# Passkey of keystore for PKCS11, PKCS12 +# For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.mock.identity.system.security.pin} + +mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io +mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER +mosip.kernel.keymanager.certificate.default.organization=IITB +mosip.kernel.keymanager.certificate.default.location=BANGALORE +mosip.kernel.keymanager.certificate.default.state=KA +mosip.kernel.keymanager.certificate.default.country=IN + +mosip.kernel.keymanager.softhsm.certificate.common-name=www.mosip.io +mosip.kernel.keymanager.softhsm.certificate.organizational-unit=MOSIP +mosip.kernel.keymanager.softhsm.certificate.organization=IITB +mosip.kernel.keymanager.softhsm.certificate.country=IN + +# Application Id for PMS master key. +mosip.kernel.partner.sign.masterkey.application.id=PMS +mosip.kernel.partner.allowed.domains=DEVICE + +mosip.kernel.keymanager-service-validate-url=https://${mosip.hostname}/keymanager/validate +mosip.kernel.keymanager.jwtsign.validate.json=false +mosip.keymanager.dao.enabled=false +crypto.PrependThumbprint.enable=true + spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect spring.jpa.show-sql=false spring.jpa.hibernate.ddl-auto=none From 36e56d68d6136a2839e870df686061976cd27a8f Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Wed, 29 Mar 2023 14:30:39 +0530 Subject: [PATCH 1169/1358] [DSD-2374] updated mock-identity-system-default.properties --- mock-identity-system-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/mock-identity-system-default.properties b/mock-identity-system-default.properties index 8329cf0abca..bd75f144d7d 100644 --- a/mock-identity-system-default.properties +++ b/mock-identity-system-default.properties @@ -99,4 +99,5 @@ crypto.PrependThumbprint.enable=true spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect spring.jpa.show-sql=false spring.jpa.hibernate.ddl-auto=none -spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true \ No newline at end of file +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true +mosip.esignet.mock.authenticator.ida.otp-channels=email,phone \ No newline at end of file From f46e26a9559288a99f65844e2ad7a5ba017c1e22 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Wed, 29 Mar 2023 15:23:18 +0530 Subject: [PATCH 1170/1358] Added missing authorization properties --- partner-management-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/partner-management-default.properties b/partner-management-default.properties index 8cb43d5d473..386a5fce360 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -259,6 +259,7 @@ mosip.role.pms.patchdevicedetail=PARTNER_ADMIN mosip.role.pms.postdevicedetailsearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER mosip.role.pms.postdevicedetaildevicetypesearch=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER mosip.role.pms.postdevicedetailfiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER +mosip.role.pms.postdevicedetaildevicetypefiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER mosip.role.pms.postdevicedetaildevicesubtypefiltervalues=PARTNER_ADMIN,DEVICE_PROVIDER,FTM_PROVIDER mosip.role.pms.postftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER mosip.role.pms.putftpchipdetail=PARTNER_ADMIN,FTM_PROVIDER @@ -307,6 +308,7 @@ mosip.role.pms.putmisplicense=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.getmisplicense=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.getmisplicensekey=PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.postmispfiltervalues=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN +mosip.role.pms.postmispsearch=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN # query param usd to refer url to redirect after logout mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri From 47fb7da3e8ba2ac915ff250e17974cdfcb59113c Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 29 Mar 2023 16:15:52 +0530 Subject: [PATCH 1171/1358] [ DSD-2299 ] updated configuration for kan language --- application-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/application-default.properties b/application-default.properties index d91e188bfdd..54dcea8ea8b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -94,7 +94,7 @@ mosip.country.code=MOR ## Language supported by platform mosip.supported-languages=eng,ara,kan mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng +mosip.left_to_right_orientation=eng,kan ## Application IDs mosip.prereg.app-id=PRE_REGISTRATION @@ -413,7 +413,7 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages=ara +mosip.optional-languages=ara,kan mosip.min-languages.count=2 mosip.max-languages.count=3 From d2eeb575edf57d7671161ea88e2bab7c40d1ce80 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 10:50:39 +0530 Subject: [PATCH 1172/1358] Updated "instancesAllowed": 2 Updated perpetual vid "instancesAllowed": 2 --- mosip-vid-policy.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index 21f619be932..af3eecc2322 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -4,7 +4,7 @@ "vidPolicy": { "validForInMinutes": null, "transactionsAllowed": null, - "instancesAllowed": 1, + "instancesAllowed": 2, "autoRestoreAllowed": true, "restoreOnAction": "REVOKED" } From decdb355dce6f3d1d2eca0868080c6f1fb0f8473 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 12:02:47 +0530 Subject: [PATCH 1173/1358] Updated perpetual policy Updated "autoRestoreAllowed": false, "restoreOnAction": "REGENERATE" --- mosip-vid-policy.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index af3eecc2322..8b1c65aac8e 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -5,8 +5,8 @@ "validForInMinutes": null, "transactionsAllowed": null, "instancesAllowed": 2, - "autoRestoreAllowed": true, - "restoreOnAction": "REVOKED" + "autoRestoreAllowed": false, + "restoreOnAction": "REGENERATE" } }, { From 44d4e61d2f8fdefd25712f03a008a5629c78dd7e Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 12:43:58 +0530 Subject: [PATCH 1174/1358] Updated perpetual vid policy Updated to "autoRestoreAllowed": true, "restoreOnAction": "REVOKED" --- mosip-vid-policy.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index 8b1c65aac8e..af3eecc2322 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -5,8 +5,8 @@ "validForInMinutes": null, "transactionsAllowed": null, "instancesAllowed": 2, - "autoRestoreAllowed": false, - "restoreOnAction": "REGENERATE" + "autoRestoreAllowed": true, + "restoreOnAction": "REVOKED" } }, { From 57a8771770aa3435708c7140464a8cf351975f20 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 19:18:17 +0530 Subject: [PATCH 1175/1358] Added properties in Integration section Added below properties under integration section for integrating Mock Authentication Service of esignet with mock-identity-system: mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=MockAuthenticationService mosip.esignet.integration.key-binder=MockKeyBindingWrapperService mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService and commented below properties: mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=IdaAuthenticatorImpl mosip.esignet.integration.key-binder=IdaKeyBinderImpl #mosip.esignet.integration.key-binder=MockKeyBindingWrapperService mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService --- esignet-default.properties | 16 ++++++++++++---- 1 file changed, 12 insertions(+), 4 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index ba0679009e3..a8224196dd0 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -81,12 +81,20 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl -mosip.esignet.integration.authenticator=IdaAuthenticatorImpl -mosip.esignet.integration.key-binder=IdaKeyBinderImpl -#mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl +mosip.esignet.integration.authenticator=MockAuthenticationService +mosip.esignet.integration.key-binder=MockKeyBindingWrapperService +mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService + +#mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration +#mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl +#mosip.esignet.integration.authenticator=IdaAuthenticatorImpl +#mosip.esignet.integration.key-binder=IdaKeyBinderImpl +#mosip.esignet.integration.key-binder=MockKeyBindingWrapperService +#mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl +#mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService + # captcha validator mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify From 0bfe560c343107986e16f24911937f71d864d034 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 19:32:50 +0530 Subject: [PATCH 1176/1358] Updated allowedId type Updated request.idtypes.allowed=VID,UIN --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 2c79f7980a2..6c6120bc442 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -398,7 +398,7 @@ ida.api.version.kycexchange=1.0 static.token.enable=true ## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests -request.idtypes.allowed=VID +request.idtypes.allowed=VID,UIN ## The ID types to be supported for Internal Authentication/OTP Requests request.idtypes.allowed.internalauth=UIN,VID From 2a51ffc6c11f16ede252ca3eea59bbef40eb71b0 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 19:49:23 +0530 Subject: [PATCH 1177/1358] Added mock ida integration properties Added below properties under integration section for integrating Mock Authentication Service of esignet with mock-identity-system: mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=MockAuthenticationService mosip.esignet.integration.key-binder=MockKeyBindingWrapperService mosip.esignet.integration.audit-plugin=LoggerAuditService mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService and commented below properties: mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=IdaAuthenticatorImpl mosip.esignet.integration.key-binder=IdaKeyBinderImpl #mosip.esignet.integration.key-binder=MockKeyBindingWrapperService mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService --- esignet-default.properties | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index a8224196dd0..86d967f254d 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -122,14 +122,12 @@ mosip.esignet.authenticator.ida-env=Developer mosip.esignet.authenticator.ida.otp-channels=email,phone # Mock IDA integration props -mosip.esignet.mock.authenticator.persona-repo=/home/mosip/mockida -mosip.esignet.mock.authenticator.policy-repo=/home/mosip/mockida -mosip.esignet.mock.authenticator.claims-mapping-file=/home/mosip/mockida/claims_attributes_mapping.json mosip.esignet.mock.authenticator.get-identity-url=https://${mosip.api.public.host}/v1/mock-identity-system/identity mosip.esignet.mock.authenticator.kyc-auth-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-auth mosip.esignet.mock.authenticator.kyc-exchange-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-exchange mosip.esignet.mock.authenticator.ida.otp-channels=${mosip.esignet.authenticator.ida.otp-channels} mosip.esignet.mock.authenticator.send-otp=https://${mosip.api.public.host}/v1/mock-identity-system/send-otp +mosip.esignet.mock.supported.bind-auth-factor-types={'WLA'} ## ------------------------------------------ oauth & openid supported values ------------------------------------------ From 050d1869647d22b22453b30e07b090ba9014f55c Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 30 Mar 2023 21:14:18 +0530 Subject: [PATCH 1178/1358] Reverted the changes made in integration section Reverted the changes made in integration section --- esignet-default.properties | 21 ++++++++++----------- 1 file changed, 10 insertions(+), 11 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 86d967f254d..0825c073e72 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -79,22 +79,21 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented ## ------------------------------------------- Integrations ------------------------------------------------------------ -mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration -mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl -mosip.esignet.integration.authenticator=MockAuthenticationService -mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -mosip.esignet.integration.audit-plugin=LoggerAuditService -mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService - - #mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration #mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl -#mosip.esignet.integration.authenticator=IdaAuthenticatorImpl -#mosip.esignet.integration.key-binder=IdaKeyBinderImpl +#mosip.esignet.integration.authenticator=MockAuthenticationService #mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -#mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl +#mosip.esignet.integration.audit-plugin=LoggerAuditService #mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService + +mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration +mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl +mosip.esignet.integration.authenticator=IdaAuthenticatorImpl +mosip.esignet.integration.key-binder=IdaKeyBinderImpl +mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl +mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService + # captcha validator mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify From b19f63629ec45034e5b1b6e68787ef6942adf511 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 31 Mar 2023 11:37:51 +0530 Subject: [PATCH 1179/1358] updated the misp-licence key --- idp-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/idp-default.properties b/idp-default.properties index 7c96dc6083b..b7630d62a09 100644 --- a/idp-default.properties +++ b/idp-default.properties @@ -26,7 +26,7 @@ # mosip.api.public.url ## IdP MISP License key -mosip.idp.misp.license.key=znBeKylIcyPFqFcu3wVrtzzgMn93q64L02Tkh2bijY9G8nGeAh +mosip.idp.misp.license.key=jj8n2cZww2dzZfszKgxyaOWOzq7hPx2snT52MPMA6k5Z5fZ2X3 # Secure endpoints with required authority mosip.idp.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ From 7bec268986eee4a5a10260ec7107b1e88bafa776 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 31 Mar 2023 16:57:15 +0530 Subject: [PATCH 1180/1358] [ DSD-2389 ] updated compliance-toolkit-default.properties --- compliance-toolkit-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/compliance-toolkit-default.properties b/compliance-toolkit-default.properties index b9bd46baba1..bc8520a2430 100644 --- a/compliance-toolkit-default.properties +++ b/compliance-toolkit-default.properties @@ -192,6 +192,6 @@ springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha #SBI BiometricsQualityCheckValidator -mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK Dev Env","url": "https://api-internal.dev.mosip.net/biosdk-service","healthUrl": "https://api-internal.dev.mosip.net/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] -mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":false}] -mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK qa-1201-b2 Env","url": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service","healthUrl": "https://api-internal.qa-1201-b2.mosip.net/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.finger.sdk.urls=[{"name": "Mock SDK","url": "http://localhost:9099/biosdk-service","healthUrl": "http://localhost:9099/biosdk-service/actuator/health", "includeInResults":false},{"name": "Mock SDK ${mosip.api.internal.host} Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":true},{"name": "Mock SDK ${mosip.api.internal.host} Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":true}] +mosip.toolkit.sbi.qualitycheck.face.sdk.urls=[{"name": "Mock SDK ${mosip.api.internal.host} Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":false}] +mosip.toolkit.sbi.qualitycheck.iris.sdk.urls=[{"name": "Mock SDK ${mosip.api.internal.host} Env","url": "${mosip.api.internal.url}/biosdk-service","healthUrl": "${mosip.api.internal.url}/biosdk-service/actuator/health", "includeInResults":true}] From f1b369e115761b4e8b4bbf5df1befb9799155f7f Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Fri, 31 Mar 2023 17:42:31 +0530 Subject: [PATCH 1181/1358] Updated wallet binding api key for mimoto --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 5c9475d8ea5..a938adbf1d9 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -179,4 +179,4 @@ mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclien vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotobinding -wallet.binding.partner.api.key=801450 +wallet.binding.partner.api.key=925065 From 891000d80056316ad7c43f0de3fd2a12c8c4a8d3 Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Fri, 31 Mar 2023 23:16:45 +0530 Subject: [PATCH 1182/1358] [ DSD-2389 ] added misp license key --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 0825c073e72..d90e917a064 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -27,8 +27,8 @@ ## ------------------------------------------------- e-Signet ---------------------------------------------------------- -mosip.esignet.misp.license.key=nuKJ6FmTjLdj0jIO90HPy06oIv5jFtosInJhszifrPUi8Qge4b -mosip.esignet.amr-acr-mapping-file-url=https://raw.githubusercontent.com/mosip/mosip-config/develop2-v3/amr-acr-mapping.json +mosip.esignet.misp.license.key=RI5ybJrbQo6K7XAB6RBIT9CC8IKaNVbNkpNaYJjbpwU0ywlw46 +mosip.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json mosip.esignet.auth-txn-id-length=10 mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 From 3ce324ab2a53601d994f9cde493136770223e102 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 5 Apr 2023 17:26:55 +0530 Subject: [PATCH 1183/1358] updated clientid --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 0ebb084f8e4..ea4a66533de 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -313,7 +313,7 @@ mosip.iam.module.login_flow.name=authorization_code # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. ################## MOSIP ESignet config -mosip.iam.module.clientID=U0Ip-je0CJWOtaUo9JOlkf7XVq_KRvRPKeVGw8b6N2c +mosip.iam.module.clientID=NmInTk1sLelALVynkNWWpRxQAEIy6PaQw98_Ia9GM_I mosip.iam.module.clientsecret= mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize From f80a901a72ca3474a5b9a716a68b98afdcd8cba7 Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Wed, 5 Apr 2023 18:15:58 +0530 Subject: [PATCH 1184/1358] [MOSIP-26822] updated security_pin --- syncdata-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index e15c4ddd7a0..71cb770c200 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -11,7 +11,7 @@ # mosip.reg.client.secret # mosip.prereg.client.secret # mosip.syncdata.client.secret -# softhsm.kernel.pin +# softhsm.kernel.security.pin ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager @@ -62,7 +62,7 @@ mosip.kernel.keymanager.hsm.keystore-type=OFFLINE mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.pin} +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} ## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log From 1702203ec19d6e9922826bb3e859e65f2e621e3e Mon Sep 17 00:00:00 2001 From: techno-243 <gaganaa10@gmail.com> Date: Wed, 5 Apr 2023 19:28:28 +0530 Subject: [PATCH 1185/1358] [MOSIP-26822] updated security_pin --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 06453355fa8..4bacefd55d1 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -10,7 +10,7 @@ # mosip.kernel.tokenid.uin.salt # mpartner.default.auth.secret # mosip.kernel.tokenid.partnercode.salt -# softhsm.ida.pin +# softhsm.ida.security.pin # ida.websub.masterdata.templates.callback.secret # ida.websub.masterdata.titles.callback.secret @@ -443,7 +443,7 @@ ida.credential.store.retry.backoff.exponential.max.interval.millisecs=120000 mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf mosip.kernel.keymanager.hsm.keystore-type=PKCS11 -mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.ida.pin} +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.ida.security.pin} ## Security - used in Internal Authentication Services by default Kernel Auth Adapter mosip.security.csrf-enable=false From df9ab280a2bf7ab317e3fb8e8f25ddead8e353ab Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Wed, 5 Apr 2023 19:57:38 +0530 Subject: [PATCH 1186/1358] updated the missing properties --- mimoto-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/mimoto-default.properties b/mimoto-default.properties index a938adbf1d9..c2a00e6d5b4 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -180,3 +180,6 @@ vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotobinding wallet.binding.partner.api.key=925065 + +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] From 5a4853d389470abbe6fe876223256bc81a06c9bd Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Wed, 5 Apr 2023 20:13:56 +0530 Subject: [PATCH 1187/1358] [ DSD-2389 ] updated softhsm security changes for ida & kernel --- kernel-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index dced0879224..202e4223bfa 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -11,8 +11,8 @@ # mosip.admin.client.secret # mosip.reg.client.secret # mosip.prereg.client.secret -# softhsm.kernel.pin -# softhsm-security-pin +# softhsm.kernel.security.pin +# softhsm.ida.security.pin # email.smtp.host # email.smtp.username # email.smtp.secret @@ -20,7 +20,7 @@ # mosip.kernel.tokenid.partnercode.salt # mosip.api.internal.url -softhsm.kernel.pin=${softhsm.security.pin} +softhsm.kernel.pin=${softhsm.kernel.security.pin} ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager From 8b58817d8a7545fb1eff329add112968e6831bd8 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Thu, 6 Apr 2023 11:40:06 +0530 Subject: [PATCH 1188/1358] [DSD-2414] --- id-authentication-default.properties | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4bacefd55d1..16696e3cde7 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -286,7 +286,15 @@ mosip.auth.filter_disable=false ida-cache-ttl-in-days=1 ## To disable cache, set value to NONE, otherwise SIMPLE to enable cache. ## Value is based on CacheType enum provided by Spring Boot -spring.cache.type=SIMPLE + +## spring.cache.type=SIMPLE + +## Redis cache related configurations +spring.cache.type=redis +spring.cache.cache-names=uin_hash_salt,masterdata/titles,masterdata/templates +spring.redis.host=redis-master.redis +spring.redis.port=6379 +spring.redis.password=${redis.password} ## Function configs #The modulo value to be calculated for a UIN/VID used to get salt value to be used in UIN/VID hashing From 3021123f15572a3611d7b93e8fb285d022c46772 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Thu, 6 Apr 2023 12:01:39 +0530 Subject: [PATCH 1189/1358] [DSD-2414] --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 16696e3cde7..35e370ce0eb 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -291,7 +291,7 @@ ida-cache-ttl-in-days=1 ## Redis cache related configurations spring.cache.type=redis -spring.cache.cache-names=uin_hash_salt,masterdata/titles,masterdata/templates +## spring.cache.cache-names=uin_hash_salt,masterdata/titles,masterdata/templates spring.redis.host=redis-master.redis spring.redis.port=6379 spring.redis.password=${redis.password} From 94eb4d820ceaf4a8c2fbc183a027cfc95f391ee7 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Thu, 6 Apr 2023 12:17:32 +0530 Subject: [PATCH 1190/1358] [DSD-2414] --- id-authentication-default.properties | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 35e370ce0eb..9d9d3ad551d 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -287,14 +287,14 @@ ida-cache-ttl-in-days=1 ## To disable cache, set value to NONE, otherwise SIMPLE to enable cache. ## Value is based on CacheType enum provided by Spring Boot -## spring.cache.type=SIMPLE - +##spring.cache.type=SIMPLE +spring.cache.type=NONE ## Redis cache related configurations -spring.cache.type=redis +## spring.cache.type=redis ## spring.cache.cache-names=uin_hash_salt,masterdata/titles,masterdata/templates -spring.redis.host=redis-master.redis -spring.redis.port=6379 -spring.redis.password=${redis.password} +## spring.redis.host=redis-master.redis +## spring.redis.port=6379 +## spring.redis.password=${redis.password} ## Function configs #The modulo value to be calculated for a UIN/VID used to get salt value to be used in UIN/VID hashing From 1e7b91dbdcc686969fb8118b22697a074f75b9d1 Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Thu, 6 Apr 2023 13:23:12 +0530 Subject: [PATCH 1191/1358] [DSD-2414] revert all config changes --- id-authentication-default.properties | 9 +-------- 1 file changed, 1 insertion(+), 8 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 9d9d3ad551d..5bb427abc44 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -286,15 +286,8 @@ mosip.auth.filter_disable=false ida-cache-ttl-in-days=1 ## To disable cache, set value to NONE, otherwise SIMPLE to enable cache. ## Value is based on CacheType enum provided by Spring Boot +spring.cache.type=SIMPLE -##spring.cache.type=SIMPLE -spring.cache.type=NONE -## Redis cache related configurations -## spring.cache.type=redis -## spring.cache.cache-names=uin_hash_salt,masterdata/titles,masterdata/templates -## spring.redis.host=redis-master.redis -## spring.redis.port=6379 -## spring.redis.password=${redis.password} ## Function configs #The modulo value to be calculated for a UIN/VID used to get salt value to be used in UIN/VID hashing From b41ab70a92c76426c99a2a55f2f6347ac76ed3ce Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Thu, 6 Apr 2023 13:43:35 +0530 Subject: [PATCH 1192/1358] [DSD-1414] disabling cache for IDA --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 5bb427abc44..8a9d841fda6 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -286,8 +286,8 @@ mosip.auth.filter_disable=false ida-cache-ttl-in-days=1 ## To disable cache, set value to NONE, otherwise SIMPLE to enable cache. ## Value is based on CacheType enum provided by Spring Boot -spring.cache.type=SIMPLE - +## spring.cache.type=SIMPLE +spring.cache.type=NONE ## Function configs #The modulo value to be calculated for a UIN/VID used to get salt value to be used in UIN/VID hashing From 06119c694d7e8929746c67ba7a9ed4ddb1b083ed Mon Sep 17 00:00:00 2001 From: yashmsonkusare <yashmsonkusare@gmail.com> Date: Mon, 10 Apr 2023 11:22:39 +0530 Subject: [PATCH 1193/1358] Update kernel-default.properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 202e4223bfa..7425ab6b9ff 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -737,7 +737,7 @@ auth.allowed.urls=http://localhost:5000/ #For example, Arabic needs to be added along with english #the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag #the final value in this case might look like [^a-z\u0600-\u06FF] -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF] +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF] management.health.mail.enabled=true From 9b76e9f3f56abcde1e2907e018d1e48ceac75def Mon Sep 17 00:00:00 2001 From: Yash S <119652212+yashmsonkusare@users.noreply.github.com> Date: Mon, 10 Apr 2023 11:56:10 +0530 Subject: [PATCH 1194/1358] Updated the properties --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 7425ab6b9ff..5d3c01d437c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -738,7 +738,7 @@ auth.allowed.urls=http://localhost:5000/ #the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag #the final value in this case might look like [^a-z\u0600-\u06FF] mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] -mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF] +mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] management.health.mail.enabled=true From 0d293d9f0567cd2870700f206589126a6c11cf16 Mon Sep 17 00:00:00 2001 From: Mohanraj209 <mohanraj1715@gmail.com> Date: Mon, 10 Apr 2023 16:15:09 +0530 Subject: [PATCH 1195/1358] [DSD-2452]Updated config pre-registration-default.properties --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 907062bd78c..92d1e07ab17 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -92,7 +92,7 @@ preregistration.document.extention=PDF,JPEG,PNG,JPG mosip.preregistration.document.scan=true ## To store documents -mosip.kernel.objectstore.account-name=${s3.pretext.value:}-prereg +mosip.kernel.objectstore.account-name=prereg ## Booking Service booking.service.version=v1 From 661e6f83a5135fd406f74b9434221e38c875279e Mon Sep 17 00:00:00 2001 From: syed-salman-technoforte <syed.salman@technoforte.co.in> Date: Tue, 11 Apr 2023 14:51:03 +0530 Subject: [PATCH 1196/1358] [ DSD-2455 ] updated language from kan to fra --- application-default.properties | 8 ++++---- mimoto-default.properties | 4 ++-- print-default.properties | 4 ++-- resident-app-default.properties | 4 ++-- 4 files changed, 10 insertions(+), 10 deletions(-) diff --git a/application-default.properties b/application-default.properties index 3825d87d823..bb74cf439a8 100644 --- a/application-default.properties +++ b/application-default.properties @@ -93,9 +93,9 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara,kan +mosip.supported-languages=eng,ara,fra mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng,kan +mosip.left_to_right_orientation=eng,fra ## Application IDs mosip.prereg.app-id=PRE_REGISTRATION @@ -414,12 +414,12 @@ websub.publish.url=${mosip.websub.url}/hub/ mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages=ara,kan +mosip.optional-languages=ara,fra mosip.min-languages.count=2 mosip.max-languages.count=3 # These are default languages used for sending notifications -mosip.default.template-languages=eng,ara,kan +mosip.default.template-languages=eng,ara,fra # Config key to pick the preferred language for communicating to the Resident mosip.default.user-preferred-language-attribute=preferredLang diff --git a/mimoto-default.properties b/mimoto-default.properties index c2a00e6d5b4..e7b8c0e347b 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -99,10 +99,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,kan +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara,kan +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng diff --git a/print-default.properties b/print-default.properties index fa713038692..f2c1f7fbb0c 100644 --- a/print-default.properties +++ b/print-default.properties @@ -55,9 +55,9 @@ registration.processor.signature.isEnabled=true ## Country specific mosip.country.code=MOR -mosip.supported-languages=eng,ara,kan +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara,kan +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng ## CBEFF util diff --git a/resident-app-default.properties b/resident-app-default.properties index 76e83c91e09..8c45381053b 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -96,10 +96,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,kan +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=ara,kan +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng From 0dbf2bd445c43844c5cf8a32461176bf08d8530d Mon Sep 17 00:00:00 2001 From: Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Sat, 15 Apr 2023 16:26:35 +0530 Subject: [PATCH 1197/1358] [DSD-2478] updated config from qa1201b3 (#3699) * [DSD-2545] updated client ID for esignet * Update mimoto-default.properties --------- Co-authored-by: syed-salman-technoforte <syed.salman@technoforte.co.in> Co-authored-by: syed salman <72004356+syedsalman3753@users.noreply.github.com> --- esignet-default.properties | 2 +- mimoto-default.properties | 4 ++-- resident-default.properties | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index d90e917a064..248c1205e85 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -27,7 +27,7 @@ ## ------------------------------------------------- e-Signet ---------------------------------------------------------- -mosip.esignet.misp.license.key=RI5ybJrbQo6K7XAB6RBIT9CC8IKaNVbNkpNaYJjbpwU0ywlw46 +mosip.esignet.misp.license.key=bmftkJ8LfUQE98eE1FWud68IwaflbqHXcf3px0SJHPxMcqMRP5 mosip.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json mosip.esignet.auth-txn-id-length=10 mosip.esignet.supported-id-regex=\\S* diff --git a/mimoto-default.properties b/mimoto-default.properties index e7b8c0e347b..af41465715d 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -178,8 +178,8 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 -wallet.binding.partner.id=mpartner-default-mimotobinding -wallet.binding.partner.api.key=925065 +wallet.binding.partner.id=mpartner-default-mimotokeybinding +wallet.binding.partner.api.key=289564 mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] diff --git a/resident-default.properties b/resident-default.properties index ea4a66533de..91faa70cd34 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -313,7 +313,7 @@ mosip.iam.module.login_flow.name=authorization_code # IdP config # Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. ################## MOSIP ESignet config -mosip.iam.module.clientID=NmInTk1sLelALVynkNWWpRxQAEIy6PaQw98_Ia9GM_I +mosip.iam.module.clientID=sK-zOe1Ke6X-f83yRpR4sOHxuPAWNZ5vzEpOjCyKWMk mosip.iam.module.clientsecret= mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize From 229b7495991f09e7743032b6e6ad68ed1c1ae161 Mon Sep 17 00:00:00 2001 From: Monobikash Das <monobikash.das@mindtree.com> Date: Fri, 14 Apr 2023 18:04:38 +0530 Subject: [PATCH 1198/1358] MOSIP-23678 : kafka support for securezone --- ...on-processor-camel-routes-activate-default.xml | 15 +-------------- ...-camel-routes-biometric-correction-default.xml | 15 +-------------- ...-processor-camel-routes-deactivate-default.xml | 15 +-------------- ...ration-processor-camel-routes-lost-default.xml | 15 +-------------- ...rocessor-camel-routes-opencrvs_new-default.xml | 15 +-------------- ...processor-camel-routes-res-reprint-default.xml | 15 +-------------- ...-processor-camel-routes-res-update-default.xml | 15 +-------------- ...tion-processor-camel-routes-update-default.xml | 15 +-------------- 8 files changed, 8 insertions(+), 112 deletions(-) diff --git a/registration-processor-camel-routes-activate-default.xml b/registration-processor-camel-routes-activate-default.xml index 72af7fa8757..e1bff6ebd07 100644 --- a/registration-processor-camel-routes-activate-default.xml +++ b/registration-processor-camel-routes-activate-default.xml @@ -17,20 +17,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-biometric-correction-default.xml b/registration-processor-camel-routes-biometric-correction-default.xml index 62786cd8b7a..fbb873032e0 100644 --- a/registration-processor-camel-routes-biometric-correction-default.xml +++ b/registration-processor-camel-routes-biometric-correction-default.xml @@ -16,20 +16,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-deactivate-default.xml b/registration-processor-camel-routes-deactivate-default.xml index d4d48e2fc4c..b77486c607b 100644 --- a/registration-processor-camel-routes-deactivate-default.xml +++ b/registration-processor-camel-routes-deactivate-default.xml @@ -17,20 +17,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index 686bd0d8437..a4fa59adb38 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -17,20 +17,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml index ec4fbf3b448..8f579740cf4 100644 --- a/registration-processor-camel-routes-opencrvs_new-default.xml +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -16,20 +16,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-reprint-default.xml b/registration-processor-camel-routes-res-reprint-default.xml index f7d633d8d99..3f449f06fed 100644 --- a/registration-processor-camel-routes-res-reprint-default.xml +++ b/registration-processor-camel-routes-res-reprint-default.xml @@ -17,20 +17,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-res-update-default.xml b/registration-processor-camel-routes-res-update-default.xml index 0874a31a1a9..660ebc1e0c2 100644 --- a/registration-processor-camel-routes-res-update-default.xml +++ b/registration-processor-camel-routes-res-update-default.xml @@ -17,20 +17,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 085b9b78f6b..f562625cbbc 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -17,20 +17,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> From 397e62008daa20f767f3bb9f68d3b0f26d4fb44c Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Fri, 14 Apr 2023 17:54:41 +0530 Subject: [PATCH 1199/1358] MOSIP-23678 : kafka support for securezone --- ...tration-processor-camel-routes-new-default.xml | 15 +-------------- 1 file changed, 1 insertion(+), 14 deletions(-) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 16d8c55baea..4f98e21d8e9 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -16,20 +16,7 @@ <to uri="workflow-cmd://complete-as-failed" /> </when> <otherwise> - <process ref="tokenGenerationProcessor" /> - <setHeader headerName="CamelHttpMethod"> - <constant>POST</constant> - </setHeader> - <setHeader headerName="Content-Type"> - <constant>application/json</constant> - </setHeader> - <setHeader headerName="Cookie"> - <simple>${header.Cookie}</simple> - </setHeader> - <setBody> - <simple>${bodyAs(String)}</simple> - </setBody> - <to uri="http://regproc-group2.regproc/registrationprocessor/v1/securezone/notification" /> + <to uri="eventbus://securezone-notification-bus-in" /> </otherwise> </choice> </route> From b01785141ae03bb364ab01182416597809c8b898 Mon Sep 17 00:00:00 2001 From: bhumi46 <111699703+bhumi46@users.noreply.github.com> Date: Wed, 17 May 2023 11:52:01 +0530 Subject: [PATCH 1200/1358] MOSIP-26730 updated mimoto.default property ${wallet.binding.partner.api.key} is updated Signed-off-by: bhumi46 <111699703+bhumi46@users.noreply.github.com> --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index af41465715d..710bae45cca 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -179,7 +179,7 @@ mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclien vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotokeybinding -wallet.binding.partner.api.key=289564 +wallet.binding.partner.api.key=${wallet.binding.partner.api.key} mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] From f794b0c5b9dbd91cb2ff83f316b953e404dc68fa Mon Sep 17 00:00:00 2001 From: bhumi46 <111699703+bhumi46@users.noreply.github.com> Date: Thu, 18 May 2023 12:09:51 +0530 Subject: [PATCH 1201/1358] Update mimoto-default.properties Signed-off-by: bhumi46 <111699703+bhumi46@users.noreply.github.com> --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 710bae45cca..b2e399b4118 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -179,7 +179,7 @@ mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclien vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotokeybinding -wallet.binding.partner.api.key=${wallet.binding.partner.api.key} +mimoto.wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] From 7f13cc7c8a04477a1e9e7ebce571b5284fecdfaf Mon Sep 17 00:00:00 2001 From: bhumi46 <111699703+bhumi46@users.noreply.github.com> Date: Thu, 18 May 2023 12:34:08 +0530 Subject: [PATCH 1202/1358] MOSIP-26730 updated mimoto.default property Signed-off-by: bhumi46 <111699703+bhumi46@users.noreply.github.com> --- mimoto-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index b2e399b4118..300b8de2d6d 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -179,7 +179,7 @@ mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclien vercred.type.vid=VID mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotokeybinding -mimoto.wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} +wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] From 0dcfad132d60f06b7bfc0642cfeff8d1ec16cb02 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Wed, 31 May 2023 14:05:33 +0530 Subject: [PATCH 1203/1358] Added changes from develop --- application-default.properties | 1 - registration-processor-default.properties | 14 ++++++++++---- 2 files changed, 10 insertions(+), 5 deletions(-) diff --git a/application-default.properties b/application-default.properties index bb74cf439a8..85d3e953907 100644 --- a/application-default.properties +++ b/application-default.properties @@ -40,7 +40,6 @@ mosip.idrepo.credrequest.generator.url=http://credentialrequest.idrepo mosip.idrepo.credential.service.url=http://credential.idrepo mosip.datashare.url=http://datashare.datashare mosip.mock.biosdk.url=http://biosdk-service.biosdk -mosip.regproc.biosdk.url=http://biosdk-service.biosdk mosip.idrepo.biosdk.url=http://biosdk-service.biosdk mosip.regproc.workflow.url=http://regproc-workflow.regproc mosip.regproc.status.service.url=http://regproc-status.regproc diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 8e6e7ef9d0b..a9c84ba9cae 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -235,8 +235,6 @@ registration.processor.id.repo.vidVersion=v1 ## Virus scanner registration.processor.packet.ext=.zip -mosip.kernel.virus-scanner.host=clamav.clamav -mosip.kernel.virus-scanner.port=3310 registration.processor.application.id=REGISTRATION registration.processor.rid.machineidsubstring=10 mosip.regproc.virusscanner.provider=io.mosip.kernel.virusscanner.clamav.impl.VirusScannerImpl @@ -450,7 +448,7 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK #mosip.biosdk.default.host=${mosip.regproc.biosdk.url} -mosip.biosdk.default.service.url=${mosip.regproc.biosdk.url}/biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}//biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -479,7 +477,6 @@ mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.mock-1.1 ## Printing mosip.registration.processor.credentialtype=euin mosip.registration.processor.encrypt=false -mosip.registration.processor.issuer=mpartner-default-print mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator mosip.registration.processor.digitalcard.credentialtype=PDFCard mosip.registration.processor.print.credentialtype=euin @@ -924,6 +921,9 @@ regproc.packet.validator.notification.template.code.resident.update.sub=RPR_RUPV regproc.packet.validator.notification.template.code.technical.issue.email=RPR_TEC_ISSUE_EMAIL regproc.packet.validator.notification.template.code.technical.issue.sms=RPR_TEC_ISSUE_SMS regproc.packet.validator.notification.template.code.technical.issue.sub=RPR_TEC_ISSUE_EMAIL_SUB +regproc.packet.validator.notification.template.code.supervisor.reject.email=RPR_SUP_REJECT_EMAIL +regproc.packet.validator.notification.template.code.supervisor.reject.sms=RPR_SUP_REJECT_SMS +regproc.packet.validator.notification.template.code.supervisor.reject.sub=RPR_SUP_REJECT_EMAIL_SUBJECT ## TODO: these are not needed. Check. #openapi.registrationProcessor.servers[0].url=${mosip.api.internal.url}/registrationprocessor/v1/registrationtransaction @@ -978,7 +978,13 @@ mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RE mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO +landing.zone.account.name=landing-zone +landing.zone.type=DMZServer +mosip.regproc.landing.zone.fixed.delay.millisecs=86400000 +mosip.regproc.landing.zone.inital.delay.millisecs=300000 registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 +##Ability to update contact information as part of LOST UIN +uingenerator.lost.packet.allowed.update.fields=phone,email,permanentAddress logging.level.org.apache.activemq.ActiveMQConnectionFactory=DEBUG From 9d55d2f3fa7af8a74319e447933d3cad4e3f596b Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Wed, 31 May 2023 15:01:46 +0530 Subject: [PATCH 1204/1358] code review comments fixed --- registration-processor-default.properties | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index a9c84ba9cae..107228c71c5 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -448,7 +448,7 @@ mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter # BioSDK #mosip.biosdk.default.host=${mosip.regproc.biosdk.url} -mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}//biosdk-service +mosip.biosdk.default.service.url=${mosip.mock.biosdk.url}/biosdk-service # The fully qualified Class Name of the BIO SDK API implemented for Finger modality # This class will be loaded in runtime, the containing jar should be available in classpath mosip.biometric.sdk.providers.finger.mosip-ref-impl-sdk-client.classname=io.mosip.biosdk.client.impl.spec_1_0.Client_V_1_0 @@ -988,3 +988,12 @@ mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 ##Ability to update contact information as part of LOST UIN uingenerator.lost.packet.allowed.update.fields=phone,email,permanentAddress logging.level.org.apache.activemq.ActiveMQConnectionFactory=DEBUG +CREDENTIALREQUESTV2=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/v2/requestgenerator + +mosip.registration.processor.digitalcard.credentialtype=PDFCard +mosip.registration.processor.print.credentialtype=euin +mosip.registration.processor.digitalcard.template=RPR_UIN_CARD_TEMPLATE +mosip.registration.processor.print.template=RPR_UIN_CARD_TEMPLATE + +# this property is used to define issuers eg partnerid:credentialType:templateTypeCode +mosip.registration.processor.issuer=mpartner-default-print:${mosip.registration.processor.print.credentialtype}:${mosip.registration.processor.print.template};mpartner-default-digitalcard:${mosip.registration.processor.digitalcard.credentialtype}:${mosip.registration.processor.digitalcard.template} \ No newline at end of file From ad05261c8c79353706d1f0dea8ccf4427cc911ee Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 8 Jun 2023 19:03:50 +0530 Subject: [PATCH 1205/1358] Create partner-migration-default.properties --- partner-migration-default.properties | 77 ++++++++++++++++++++++++++++ 1 file changed, 77 insertions(+) create mode 100644 partner-migration-default.properties diff --git a/partner-migration-default.properties b/partner-migration-default.properties new file mode 100644 index 00000000000..b5ad0cffa2b --- /dev/null +++ b/partner-migration-default.properties @@ -0,0 +1,77 @@ +## Follow properites have their values assigned via 'overrides' environment variables of config server docker. +## DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +## helm chart: +## db.dbuser.password +## mosip.partner.client.secret +## mosip.pms.client.secret +## keycloak.internal.url +## keycloak.admin.password +## mosip.api.public.url + +spring.main.allow-circular-references=true +service.token.request.clientId=mosip-pms-client +service.token.request.issuerUrl=${mosip.kernel.keymanager.url}/v1/authmanager/authenticate/clientidsecretkey + +mosip.pms.appId=partner +mosip.pms.clientId=mosip-pms-client +mosip.pms.secretKey=mosip.pms.client.secret + +#Auth token generation +mosip.iam.adapter.clientid=${mosip.pms.clientId} +mosip.iam.adapter.clientsecret=${mosip.pms.secretKey} +mosip.iam.adapter.appid=${mosip.pms.appId} + +pmp.certificate.get.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate +pmp.partner.certificate.get.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanager/getPartnerCertificate/{partnerCertId} + +## Database +## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +## If database is external to production, provide the DNS or ip of the host and port +mosip.pmp.database.hostname=postgres-postgresql.postgres +mosip.pmp.database.port=5432 +mosip.pmp.database.user=pmsuser +mosip.pmp.database.password=${db.dbuser.password} + +## Hibernate +javax.persistence.jdbc.driverClassName=org.postgresql.Driver +javax.persistence.jdbc.driver=org.postgresql.Driver +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.pmp.database.hostname}:${mosip.pmp.database.port}/mosip_pms +javax.persistence.jdbc.user=${mosip.pmp.database.user} +javax.persistence.jdbc.username=${mosip.pmp.database.user} +javax.persistence.jdbc.password=${mosip.pmp.database.password} +javax.persistence.jdbc.schema = pms +javax.persistence.jdbc.uinHashTable=uin_hash_salt +javax.persistence.jdbc.uinEncryptTable=uin_encrypt_salt + + +hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect +hibernate.jdbc.lob.non_contextual_creation=true +hibernate.hbm2ddl.auto=none +hibernate.show_sql=false +hibernate.format_sql=false +hibernate.connection.charSet=utf8 +hibernate.cache.use_second_level_cache=false +hibernate.cache.use_query_cache=false +hibernate.cache.use_structured_entries=false +hibernate.generate_statistics=false +spring.datasource.initialization-mode=never + +# websub related properties +websub.publish.url=https://api-internal.dev.mosip.net/hub/ +mosip.auth.filter_disable=false + +# Used for generating the datashare url +pms.certs.datashare.policyId=mpolicy-default-cert +pms.certs.datashare.subscriberId=mpartner-default-cert + +# Used to get data share url to publish to websub +pmp.certificaticate.datashare.rest.uri=${mosip.datashare.url}/v1/datashare/create + +mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip'} + +## Auth adapter +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client,mosip-deployment-client +auth.jwt.secret=authjwtsecret +auth.jwt.base=Mosip-Token From 0bdc9fe144afc158f867611ee7369587091d2b7b Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 8 Jun 2023 19:24:13 +0530 Subject: [PATCH 1206/1358] Update partner-migration-default.properties --- partner-migration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/partner-migration-default.properties b/partner-migration-default.properties index b5ad0cffa2b..5870af8ddc6 100644 --- a/partner-migration-default.properties +++ b/partner-migration-default.properties @@ -57,7 +57,7 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never # websub related properties -websub.publish.url=https://api-internal.dev.mosip.net/hub/ +websub.publish.url=mosip.websub.url mosip.auth.filter_disable=false # Used for generating the datashare url From 334ae6cccced586cad26306247eb6f3486c65c63 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Fri, 9 Jun 2023 10:50:12 +0530 Subject: [PATCH 1207/1358] renamed the partner-migration-utility-default properties --- ...ult.properties => partner-migration-utility-default.properties | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename partner-migration-default.properties => partner-migration-utility-default.properties (100%) diff --git a/partner-migration-default.properties b/partner-migration-utility-default.properties similarity index 100% rename from partner-migration-default.properties rename to partner-migration-utility-default.properties From 53056d8c493b1c5a3e9cd853335c341d89abee28 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Fri, 9 Jun 2023 10:57:23 +0530 Subject: [PATCH 1208/1358] renamed pms-migration-utility-default-properties --- ...default.properties => pms-migration-utility-default.properties | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename partner-migration-utility-default.properties => pms-migration-utility-default.properties (100%) diff --git a/partner-migration-utility-default.properties b/pms-migration-utility-default.properties similarity index 100% rename from partner-migration-utility-default.properties rename to pms-migration-utility-default.properties From afd5e4e83f480092ec4cea41afe7a06069739a28 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Fri, 9 Jun 2023 13:08:13 +0530 Subject: [PATCH 1209/1358] Update pms-migration-utility-default.properties --- pms-migration-utility-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/pms-migration-utility-default.properties b/pms-migration-utility-default.properties index 5870af8ddc6..3ffc7f28ddd 100644 --- a/pms-migration-utility-default.properties +++ b/pms-migration-utility-default.properties @@ -71,6 +71,7 @@ mosip.kernel.auth.appids.realm.map={prereg:'preregistration',ida:'mosip',registr ## Auth adapter auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken auth.server.admin.allowed.audience=mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-regproc-client,mosip-admin-client,mosip-reg-client,mosip-pms-client,mosip-resident-client,mosip-idrepo-client,mosip-partner-client,mosip-deployment-client auth.jwt.secret=authjwtsecret From bfee1dad0c7a8e42579a5ad4068acdd8608dd9b4 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Fri, 9 Jun 2023 13:53:45 +0530 Subject: [PATCH 1210/1358] Update pms-migration-utility-default.properties --- pms-migration-utility-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/pms-migration-utility-default.properties b/pms-migration-utility-default.properties index 3ffc7f28ddd..f2e23be4698 100644 --- a/pms-migration-utility-default.properties +++ b/pms-migration-utility-default.properties @@ -11,6 +11,7 @@ spring.main.allow-circular-references=true service.token.request.clientId=mosip-pms-client service.token.request.issuerUrl=${mosip.kernel.keymanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.pms.utility.run.mode=upgrade mosip.pms.appId=partner mosip.pms.clientId=mosip-pms-client From 9bc7df0b6ab807d66bee0fc0630ca6e79fb927a0 Mon Sep 17 00:00:00 2001 From: Balaji <74903654+balaji-alluru@users.noreply.github.com> Date: Fri, 9 Jun 2023 15:32:15 +0530 Subject: [PATCH 1211/1358] Update pms-migration-utility-default.properties --- pms-migration-utility-default.properties | 12 +++++++++--- 1 file changed, 9 insertions(+), 3 deletions(-) diff --git a/pms-migration-utility-default.properties b/pms-migration-utility-default.properties index f2e23be4698..db766f021ca 100644 --- a/pms-migration-utility-default.properties +++ b/pms-migration-utility-default.properties @@ -1,21 +1,27 @@ ## Follow properites have their values assigned via 'overrides' environment variables of config server docker. ## DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server ## helm chart: +## keycloak.external.url ## db.dbuser.password -## mosip.partner.client.secret ## mosip.pms.client.secret ## keycloak.internal.url ## keycloak.admin.password ## mosip.api.public.url +##mosip.api.internal.host + +mosip.api.internal.url=https://${mosip.api.internal.host} +mosip.kernel.keymanager.url=http://keymanager.keymanager +mosip.datashare.url=http://datashare.datashare +mosip.kernel.authmanager.url=http://authmanager.kernel spring.main.allow-circular-references=true service.token.request.clientId=mosip-pms-client -service.token.request.issuerUrl=${mosip.kernel.keymanager.url}/v1/authmanager/authenticate/clientidsecretkey +service.token.request.issuerUrl=${mosip.api.internal.url}/v1/authmanager/authenticate/clientidsecretkey mosip.pms.utility.run.mode=upgrade mosip.pms.appId=partner mosip.pms.clientId=mosip-pms-client -mosip.pms.secretKey=mosip.pms.client.secret +mosip.pms.secretKey=${mosip.pms.client.secret} #Auth token generation mosip.iam.adapter.clientid=${mosip.pms.clientId} From 51750db3a3c080089f09dc66b93672e7f6971821 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Fri, 23 Jun 2023 16:57:39 +0530 Subject: [PATCH 1212/1358] regproc config changes --- registration-processor-abis.json | 2 +- registration-processor-default.properties | 3 +++ 2 files changed, 4 insertions(+), 1 deletion(-) diff --git a/registration-processor-abis.json b/registration-processor-abis.json index b2404a8656f..2f0c1476faf 100644 --- a/registration-processor-abis.json +++ b/registration-processor-abis.json @@ -3,7 +3,7 @@ "name": "ABIS", "host": "", "port": "", - "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}?reconnectSupported=true&startupMaxReconnectAttempts=100&warnAfterReconnectAttempts=2&maxReconnectDelay=30000&maxReconnectAttempts=1000", + "brokerUrl": "tcp://${activemq.host}:${activemq.core.port}", "inboundQueueName": "mosip-to-abis", "outboundQueueName": "abis-to-mosip", "pingInboundQueueName": "", diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 107228c71c5..39cea9f9f04 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -274,6 +274,7 @@ registration.processor.queue.password=${activemq.password} registration.processor.queue.url=tcp://${activemq.host}:${activemq.core.port} registration.processor.queue.typeOfQueue=ACTIVEMQ registration.processor.queue.connection.retry.count=100 +registration.processor.queue.trusted.packages=io.mosip.* registration.processor.queue.manualverification.request=mosip-to-mv # queue name where mosip will receive response from external mv system @@ -322,6 +323,7 @@ registration.processor.queue.verification.request.messageTTL=5400 mosip.regproc.verification.eventbus.port=5730 mosip.regproc.verification.server.port=8101 mosip.regproc.verification.server.servlet.path=/registrationprocessor/v1/verification +registration.processor.verification.queue.trusted.packages=io.mosip.* # Manual adjudication mosip.regproc.manual.adjudication.eventbus.kafka.commit.type=single @@ -353,6 +355,7 @@ registration.processor.manual.adjudication.queue.username=${registration.process registration.processor.manual.adjudication.queue.password=${registration.processor.queue.password} registration.processor.manual.adjudication.queue.url=${registration.processor.queue.url} registration.processor.manual.adjudication.queue.typeOfQueue=${registration.processor.queue.typeOfQueue} +registration.processor.manual.adjudication.queue.trusted.packages=io.mosip.* #WorkflowAction service websub topic name mosip.regproc.workflow.complete.topic=REGISTRATION_PROCESSOR_WORKFLOW_COMPLETED_EVENT From f3cae21c89df5518cd7f1e5bbafc2ba9880958af Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Fri, 23 Jun 2023 16:57:57 +0530 Subject: [PATCH 1213/1358] regproc config changes --- registration-processor-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 39cea9f9f04..bb0a85734ba 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -999,4 +999,6 @@ mosip.registration.processor.digitalcard.template=RPR_UIN_CARD_TEMPLATE mosip.registration.processor.print.template=RPR_UIN_CARD_TEMPLATE # this property is used to define issuers eg partnerid:credentialType:templateTypeCode -mosip.registration.processor.issuer=mpartner-default-print:${mosip.registration.processor.print.credentialtype}:${mosip.registration.processor.print.template};mpartner-default-digitalcard:${mosip.registration.processor.digitalcard.credentialtype}:${mosip.registration.processor.digitalcard.template} \ No newline at end of file +mosip.registration.processor.issuer=mpartner-default-print:${mosip.registration.processor.print.credentialtype}:${mosip.registration.processor.print.template};mpartner-default-digitalcard:${mosip.registration.processor.digitalcard.credentialtype}:${mosip.registration.processor.digitalcard.template} +##timeout in milliseconds for health check registrer +mosip.regproc.health-check.handler-timeout=2000 \ No newline at end of file From 05f6528af919ba75ccd275f0b90093a73feb3f6a Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Fri, 7 Jul 2023 16:32:46 +0530 Subject: [PATCH 1214/1358] MOSIP-28305 config changes --- registration-processor-default.properties | 17 +++-------------- 1 file changed, 3 insertions(+), 14 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index bb0a85734ba..db15a583210 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -481,13 +481,10 @@ mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.mock-1.1 mosip.registration.processor.credentialtype=euin mosip.registration.processor.encrypt=false mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator -mosip.registration.processor.digitalcard.credentialtype=PDFCard -mosip.registration.processor.print.credentialtype=euin -mosip.registration.processor.digitalcard.template=RPR_UIN_CARD_TEMPLATE -mosip.registration.processor.print.template=RPR_UIN_CARD_TEMPLATE -# this property is used to define issuers eg partnerid:credentialType:templateTypeCode -mosip.registration.processor.issuer=mpartner-default-print:${mosip.registration.processor.print.credentialtype}:${mosip.registration.processor.print.template};mpartner-default-digitalcard:${mosip.registration.processor.digitalcard.credentialtype}:${mosip.registration.processor.digitalcard.template} + +# this property is used to define issuers eg partnerid +mosip.registration.processor.issuer=mpartner-default-print ## Stage common #After this time intervel, message should be considered as expired (In seconds), @@ -991,14 +988,6 @@ mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 ##Ability to update contact information as part of LOST UIN uingenerator.lost.packet.allowed.update.fields=phone,email,permanentAddress logging.level.org.apache.activemq.ActiveMQConnectionFactory=DEBUG -CREDENTIALREQUESTV2=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/v2/requestgenerator - -mosip.registration.processor.digitalcard.credentialtype=PDFCard -mosip.registration.processor.print.credentialtype=euin -mosip.registration.processor.digitalcard.template=RPR_UIN_CARD_TEMPLATE -mosip.registration.processor.print.template=RPR_UIN_CARD_TEMPLATE -# this property is used to define issuers eg partnerid:credentialType:templateTypeCode -mosip.registration.processor.issuer=mpartner-default-print:${mosip.registration.processor.print.credentialtype}:${mosip.registration.processor.print.template};mpartner-default-digitalcard:${mosip.registration.processor.digitalcard.credentialtype}:${mosip.registration.processor.digitalcard.template} ##timeout in milliseconds for health check registrer mosip.regproc.health-check.handler-timeout=2000 \ No newline at end of file From fa250deb3f9345b1188dabea672163ba9b25695a Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Fri, 14 Jul 2023 14:07:27 +0530 Subject: [PATCH 1215/1358] Biometric signature validation backward compatibility version update --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index db15a583210..ce2f1a474fc 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -867,7 +867,7 @@ mosip.kernel.salt-generator.schemaName=regprc mosip.kernel.salt-generator.tableName=crypto_salt # List of old reg client versions with others attribute not present but currently supported for registration, this is required to take care of the backward compatibility checks -mosip.regproc.common.before-cbeff-others-attibute.reg-client-versions=1.1.3,1.1.4,1.1.5 +mosip.regproc.common.before-cbeff-others-attibute.reg-client-versions=1.1.3,1.1.4,1.1.5,1.1.5.5 regproc.notification.template.code.lost.uin.email=RPR_LOST_UIN_EMAIL regproc.notification.template.code.lost.uin.sms=RPR_LOST_UIN_SMS From 3a5fd9841bbe480a29597bdaea52597ef3eaf1f1 Mon Sep 17 00:00:00 2001 From: M1044292 <M1044292@C1ML54597.mindtree.com> Date: Fri, 14 Jul 2023 17:26:02 +0530 Subject: [PATCH 1216/1358] MOSIP-28008: Added property to support 114 regclient --- syncdata-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/syncdata-default.properties b/syncdata-default.properties index 71cb770c200..5cfbbe67e6a 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -419,6 +419,9 @@ mosip.kernel.keymanager-service-publickey-url=${mosip.kernel.keymanager.url}/v1/ mosip.kernel.keymanager.unique.identifier.autoupdate=false +## for 1.1.4 reg-client testing +mosip.syncdata.regclient.support114=false + ## Roles mosip.role.admin.syncdata.getclientsettings=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default mosip.role.admin.syncdata.getpublickeyapplicationid=REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_ADMIN,default From af42a073091a1c0af6d9c64c0ebdcb01f816e92e Mon Sep 17 00:00:00 2001 From: M1044292 <M1044292@C1ML54597.mindtree.com> Date: Fri, 14 Jul 2023 18:05:51 +0530 Subject: [PATCH 1217/1358] MOSIP-28008: Modified comments --- syncdata-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/syncdata-default.properties b/syncdata-default.properties index 5cfbbe67e6a..1d569abfd22 100644 --- a/syncdata-default.properties +++ b/syncdata-default.properties @@ -419,7 +419,9 @@ mosip.kernel.keymanager-service-publickey-url=${mosip.kernel.keymanager.url}/v1/ mosip.kernel.keymanager.unique.identifier.autoupdate=false -## for 1.1.4 reg-client testing +# This property needs to be set to true if 1.1.4 version of regclient is running. +# If set to true, in clientsettings sync, the values for tables Gender and IndividualType will be fetched from their individual tables. +# If false, they will be fetched from dynamic_field table, which is not supported by 1.1.4 version of regclient. mosip.syncdata.regclient.support114=false ## Roles From cb3e6f3ac0252b2183662a449546165783eda7f5 Mon Sep 17 00:00:00 2001 From: M1044292 <M1044292@C1ML54597.mindtree.com> Date: Tue, 18 Jul 2023 11:16:34 +0530 Subject: [PATCH 1218/1358] MOSIP-28165: Added missing property for transliteration --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index 85d3e953907..18cf3459e70 100644 --- a/application-default.properties +++ b/application-default.properties @@ -278,6 +278,8 @@ mosip.kernel.virus-scanner.port=3310 mosip.kernel.transliteration.arabic-language-code=ara mosip.kernel.transliteration.english-language-code=eng mosip.kernel.transliteration.french-language-code=fra +# Added this property for backward compatibility as it is misspelled in <1.2.0 versions of kernel-transliteration library +mosip.kernel.transliteration.franch-language-code=fra ## DOB mosip.default.dob.month=01 From a005fd4c4451a34838c2517d51a6ceca0315a2cc Mon Sep 17 00:00:00 2001 From: VSIVAKALYAN <103260988+VSIVAKALYAN@users.noreply.github.com> Date: Tue, 18 Jul 2023 13:31:28 +0530 Subject: [PATCH 1219/1358] [DSD-3069] Update inji-default.properties Signed-off-by: VSIVAKALYAN <103260988+VSIVAKALYAN@users.noreply.github.com> --- inji-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/inji-default.properties b/inji-default.properties index f72a31e110a..953cd3b81a2 100644 --- a/inji-default.properties +++ b/inji-default.properties @@ -16,3 +16,5 @@ mosip.inji.audience=ida-binding mosip.inji.issuer=residentapp # warning screen domain name mosip.inji.warningDomainName=https://${mosip.api.public.host} +# minimum storage space required for downloading / receiving vc in MB +mosip.inji.minStorageRequired=5 From 88b2fc537e6cb4afa146adb0d34b38caa8d8a450 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Thu, 20 Jul 2023 12:26:00 +0530 Subject: [PATCH 1220/1358] [MOSIP-28491]Update kernel-default.properties (#4138) Signed-off-by: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> --- kernel-default.properties | 28 +++++++++++++++++++--------- 1 file changed, 19 insertions(+), 9 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 5d3c01d437c..3b60ce9f1f6 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -42,18 +42,28 @@ mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- -mosip.kernel.sms.api=smsapi -mosip.kernel.sms.authkey=authkey -mosip.kernel.sms.route=route -mosip.kernel.sms.sender=sender -mosip.kernel.sms.unicode=unicode +#mosip.kernel.sms.api=smsapi +#mosip.kernel.sms.authkey=authkey +#mosip.kernel.sms.route=route +#mosip.kernel.sms.sender=sender +#mosip.kernel.sms.unicode=unicode + +## --msg91 gateway-- +mosip.kernel.sms.enabled:true +mosip.kernel.sms.country.code: +91 +mosip.kernel.sms.number.length: 10 +mosip.kernel.sms.api:http://${sms-host}:${sms-port}/sendsms +mosip.kernel.sms.sender:AD-MOSIP +mosip.kernel.sms.password:dummy +mosip.kernel.sms.route:mock +mosip.kernel.sms.authkey:dummy ## Email notification mosip.kernel.notification.email.from=do-not-reply@mosip.io -spring.mail.host=${email.smtp.host} -spring.mail.username=${email.smtp.username} -spring.mail.password=${email.smtp.secret} -spring.mail.port=${email.smtp.port} +spring.mail.host=${smtp.host} +spring.mail.username=${smtp.username} +spring.mail.password=${smtp.secret} +spring.mail.port=${smtp.port} spring.mail.properties.mail.transport.protocol=smtp spring.mail.properties.mail.smtp.starttls.required=false spring.mail.properties.mail.smtp.starttls.enable=false From 9f4899acb90ffebf9bff5a26b5f98b7323e8440d Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Thu, 20 Jul 2023 12:29:07 +0530 Subject: [PATCH 1221/1358] Update pre-registration-default.properties (#4137) Signed-off-by: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 92d1e07ab17..15aacbb3697 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -273,7 +273,7 @@ datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSSXXX mail-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/email/send sms-notification.rest.uri=${mosip.kernel.notification.url}/v1/notifier/sms/send otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate -pre.reg.login.otp.sms.template=pre-reg-login-otp-sms-template +pre.reg.login.otp.sms.template=otp-sms-template pre.reg.login.otp.mail.subject.template=OTP-email-subject-template pre.reg.login.otp.mail.content.template=OTP-email-content-template pre.reg.login.otp.validation-attempt-threshold=10 From c17ecf7c8cd8c72240b9bbc9bf5294f7d0ba17f0 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> Date: Thu, 20 Jul 2023 15:47:55 +0530 Subject: [PATCH 1222/1358] MOSIP-28206 config fix Signed-off-by: Sowmya Ujjappa Banakar <43202851+sowmya695@users.noreply.github.com> --- id-authentication-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 8a9d841fda6..dc2cdc7e5dc 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -627,3 +627,4 @@ mosip.ida.kyc.token.secret=${mosip.ida.kyc.token.secret} mosip.ida.kyc.token.expire.time.adjustment.seconds=3000 mosip.ida.kyc.exchange.default.lang=eng mosip.ida.idp.consented.address.subset.attributes=street_address,locality,region,postal_code,country +mosip.kernel.keymgr.hsm.health.key.app-id=IDA From bc4103f3aa2fe6771a9d236f387992c4056877c7 Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Fri, 21 Jul 2023 12:30:38 +0530 Subject: [PATCH 1223/1358] [MOSIP-28491]Update kernel-default.properties (#4144) * [MOSIP-28491]Update kernel-default.properties Signed-off-by: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> * [MOSIP-28491]replaced : with = for sms props Signed-off-by: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> --------- Signed-off-by: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> --- kernel-default.properties | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 3b60ce9f1f6..4151ae11a41 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -49,14 +49,14 @@ mosip.kernel.sms.gateway=${sms.gateway.provider} #mosip.kernel.sms.unicode=unicode ## --msg91 gateway-- -mosip.kernel.sms.enabled:true -mosip.kernel.sms.country.code: +91 -mosip.kernel.sms.number.length: 10 -mosip.kernel.sms.api:http://${sms-host}:${sms-port}/sendsms -mosip.kernel.sms.sender:AD-MOSIP -mosip.kernel.sms.password:dummy -mosip.kernel.sms.route:mock -mosip.kernel.sms.authkey:dummy +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+91 +mosip.kernel.sms.number.length=10 +mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms +mosip.kernel.sms.sender=AD-MOSIP +mosip.kernel.sms.password=dummy +mosip.kernel.sms.route=mock +mosip.kernel.sms.authkey=dummy ## Email notification mosip.kernel.notification.email.from=do-not-reply@mosip.io From ec7565fafc76863b5a20a897f13e5c5e4910dbdc Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Mon, 24 Jul 2023 11:35:17 +0530 Subject: [PATCH 1224/1358] MOSIP-28555 config changes --- admin-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/admin-default.properties b/admin-default.properties index 4174179c65a..2ac545f5a79 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -208,7 +208,7 @@ mosip.iam.module.login_flow.response_type=code mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/auth mosip.iam.module.admin_realm_id=mosip mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token - +mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client regproc.token.request.secretKey=${mosip.regproc.client.secret} From f0f348205bde3f40c13534b603f43a9057fb706b Mon Sep 17 00:00:00 2001 From: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> Date: Mon, 24 Jul 2023 20:32:09 +0530 Subject: [PATCH 1225/1358] [MOSIP-28491]Updated sms props Signed-off-by: Rakshitha650 <76676196+Rakshitha650@users.noreply.github.com> --- application-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 18cf3459e70..a027fbb98c5 100644 --- a/application-default.properties +++ b/application-default.properties @@ -289,7 +289,7 @@ mosip.login.mode= email,mobile ## Notification mosip.registration.processor.notification.types=EMAIL mosip.notificationtype=SMS|EMAIL -mosip.kernel.sms.proxy-sms=true +mosip.kernel.sms.proxy-sms=false mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-email=true ## Notification lanugage types: either PRIMARY or BOTH From cd50f5f8ac619d23d593bc237213e4b92776db3d Mon Sep 17 00:00:00 2001 From: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> Date: Thu, 27 Jul 2023 12:56:19 +0530 Subject: [PATCH 1226/1358] Updated backward compatibility fields Signed-off-by: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> --- registration-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 7be2b150fda..583b6d8ef32 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -475,8 +475,8 @@ mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} ## backward compatibility fields mosip.registration.uin.update.configured.fields=test -mosip.primary-language=${mosip.primary-language} -mosip.secondary-language=${mosip.secondary-language} +mosip.primary-language=eng +mosip.secondary-language=ara mosip.registration.ideal_time=900 mosip.kernel.applicant.type.age.limit=0 mosip.registration.max_age=200 From 39a78b69e0fb8162be4696375db050c2bb40f279 Mon Sep 17 00:00:00 2001 From: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> Date: Mon, 31 Jul 2023 11:01:27 +0530 Subject: [PATCH 1227/1358] MOSIP-27529: Added version-mappings property Signed-off-by: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> --- registration-default.properties | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/registration-default.properties b/registration-default.properties index 583b6d8ef32..7c9b4fe0d27 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -471,6 +471,11 @@ mosip.kernel.rid.sequence-length=${mosip.kernel.rid.sequence-length} mosip.kernel.virus-scanner.host=${mosip.kernel.virus-scanner.host} mosip.kernel.virus-scanner.port=${mosip.kernel.virus-scanner.port} mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} + +#Property to support version upgrade. Version upgrade includes software upgrade and DB upgrade. During the DB upgrade, the DB scripts execution will be done based on the order of versions mentioned here. +#In versions < 1.2.0, the name of the backup folder which is created during software upgrade will be used as the previously installed version. +mosip.registration.verion.upgrade.version-mappings={ "1.1.4":{ "dbVersion":"1.1.4", "releaseOrder":1}, "1.1.5":{ "dbVersion":"1.1.5", "releaseOrder":2}, "1.1.5.5":{ "dbVersion":"1.1.5.5", "releaseOrder":3}, "1.2.0.1-SNAPSHOT":{ "dbVersion":"1.2.0.1", "releaseOrder":4} } + ## end of global properties ## backward compatibility fields From 6e98db17f51aa91606cdd467577698fe5e861902 Mon Sep 17 00:00:00 2001 From: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> Date: Tue, 1 Aug 2023 17:05:12 +0530 Subject: [PATCH 1228/1358] MOSIP-28705: Removed version-mappings property Signed-off-by: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> --- registration-default.properties | 5 ----- 1 file changed, 5 deletions(-) diff --git a/registration-default.properties b/registration-default.properties index 7c9b4fe0d27..583b6d8ef32 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -471,11 +471,6 @@ mosip.kernel.rid.sequence-length=${mosip.kernel.rid.sequence-length} mosip.kernel.virus-scanner.host=${mosip.kernel.virus-scanner.host} mosip.kernel.virus-scanner.port=${mosip.kernel.virus-scanner.port} mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} - -#Property to support version upgrade. Version upgrade includes software upgrade and DB upgrade. During the DB upgrade, the DB scripts execution will be done based on the order of versions mentioned here. -#In versions < 1.2.0, the name of the backup folder which is created during software upgrade will be used as the previously installed version. -mosip.registration.verion.upgrade.version-mappings={ "1.1.4":{ "dbVersion":"1.1.4", "releaseOrder":1}, "1.1.5":{ "dbVersion":"1.1.5", "releaseOrder":2}, "1.1.5.5":{ "dbVersion":"1.1.5.5", "releaseOrder":3}, "1.2.0.1-SNAPSHOT":{ "dbVersion":"1.2.0.1", "releaseOrder":4} } - ## end of global properties ## backward compatibility fields From 0fbe64fddd7fb8b7eb4e466c34a7f396e6fdf2fb Mon Sep 17 00:00:00 2001 From: Aiham Hasan <89243555+aihamh@users.noreply.github.com> Date: Wed, 2 Aug 2023 19:37:11 +0530 Subject: [PATCH 1229/1358] Updated pre-registration-default.properties Signed-off-by: Aiham Hasan <89243555+aihamh@users.noreply.github.com> --- pre-registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index 15aacbb3697..a19823852ef 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -256,7 +256,7 @@ kernel.prid.contextpath=pridgenerator mosip.io.prid.url=${kernel.prid.env}/${masterdata.service.version}/${kernel.prid.contextpath}/prid ## Syncdata service -latestidschema.service.contextpath=latestidschemafetch the latest ID Schema for the ID object validator +latestidschema.service.contextpath=latestidschema mosip.preregistration.id-schema=${mosip.kernel.syncdata.url}/v1/syncdata/latestidschema syncdata.resource.url=${mosip.kernel.syncdata.url}/v1/syncdata From 3ea8a38c62bbbf9c85f76a8942b39fa651ce1c9c Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Tue, 8 Aug 2023 10:11:39 +0530 Subject: [PATCH 1230/1358] Update pms-migration-utility-default.properties --- pms-migration-utility-default.properties | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/pms-migration-utility-default.properties b/pms-migration-utility-default.properties index db766f021ca..920cf24a190 100644 --- a/pms-migration-utility-default.properties +++ b/pms-migration-utility-default.properties @@ -16,9 +16,13 @@ mosip.kernel.authmanager.url=http://authmanager.kernel spring.main.allow-circular-references=true service.token.request.clientId=mosip-pms-client -service.token.request.issuerUrl=${mosip.api.internal.url}/v1/authmanager/authenticate/clientidsecretkey +service.token.request.issuerUrl=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey + +## allowed values for mosip.pms.utility.run.mode are 'upgrade' for migration and 'cronjob' for running it as cronjob. mosip.pms.utility.run.mode=upgrade +mosip.pms.allowed.partner.types=Online_Verification_Partner,Auth_Partner,Device_Provider,MISP_Partner,FTM_Partner + mosip.pms.appId=partner mosip.pms.clientId=mosip-pms-client mosip.pms.secretKey=${mosip.pms.client.secret} @@ -34,7 +38,7 @@ pmp.partner.certificate.get.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanage ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace ## If database is external to production, provide the DNS or ip of the host and port -mosip.pmp.database.hostname=postgres-postgresql.postgres +mosip.pmp.database.hostname=10.3.148.106 mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} @@ -64,7 +68,7 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never # websub related properties -websub.publish.url=mosip.websub.url +websub.publish.url=${mosip.api.internal.url}/hub/ mosip.auth.filter_disable=false # Used for generating the datashare url From 6417ba8ce38f7d93911e92165008d6a1f6edf5a6 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Tue, 8 Aug 2023 10:14:31 +0530 Subject: [PATCH 1231/1358] Update pms-migration-utility-default.properties --- pms-migration-utility-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pms-migration-utility-default.properties b/pms-migration-utility-default.properties index 920cf24a190..c8f1cb28cf0 100644 --- a/pms-migration-utility-default.properties +++ b/pms-migration-utility-default.properties @@ -38,7 +38,7 @@ pmp.partner.certificate.get.rest.uri=${mosip.kernel.keymanager.url}/v1/keymanage ## Database ## Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace ## If database is external to production, provide the DNS or ip of the host and port -mosip.pmp.database.hostname=10.3.148.106 +mosip.pmp.database.hostname=postgres-postgresql.postgres mosip.pmp.database.port=5432 mosip.pmp.database.user=pmsuser mosip.pmp.database.password=${db.dbuser.password} From 9fa6b0a521ea70211de68d924851b8943bf98a5c Mon Sep 17 00:00:00 2001 From: M1044292 <M1044292@C1ML54597.mindtree.com> Date: Thu, 17 Aug 2023 18:55:43 +0530 Subject: [PATCH 1232/1358] MOSIP-28887: Added placeholder to point to the value specified in application-default.properties --- registration-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-default.properties b/registration-default.properties index 583b6d8ef32..1eb975382f9 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -478,7 +478,7 @@ mosip.registration.uin.update.configured.fields=test mosip.primary-language=eng mosip.secondary-language=ara mosip.registration.ideal_time=900 -mosip.kernel.applicant.type.age.limit=0 +mosip.kernel.applicant.type.age.limit=${mosip.kernel.applicant.type.age.limit} mosip.registration.max_age=200 # Parameters required for Backward Compatibility From e9273e6f57b4d2eb29d87b140948320c073e0b05 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Wed, 23 Aug 2023 18:09:58 +0530 Subject: [PATCH 1233/1358] Update pms-migration-utility-default.properties --- pms-migration-utility-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/pms-migration-utility-default.properties b/pms-migration-utility-default.properties index c8f1cb28cf0..5b4c199932f 100644 --- a/pms-migration-utility-default.properties +++ b/pms-migration-utility-default.properties @@ -68,7 +68,8 @@ hibernate.generate_statistics=false spring.datasource.initialization-mode=never # websub related properties -websub.publish.url=${mosip.api.internal.url}/hub/ +mosip.websub.url=http://websub.websub +websub.publish.url=${mosip.websub.url}/hub/ mosip.auth.filter_disable=false # Used for generating the datashare url From 3f84a19dbac7a12c2e213913f88bf79ffdcc82e2 Mon Sep 17 00:00:00 2001 From: Akila Lakshmanan <77330852+akilalakshmanan@users.noreply.github.com> Date: Mon, 4 Sep 2023 12:37:50 +0530 Subject: [PATCH 1234/1358] [MOSIP-24626] Added missing biosdk property urls (#4395) --- application-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/application-default.properties b/application-default.properties index a027fbb98c5..f76c018be24 100644 --- a/application-default.properties +++ b/application-default.properties @@ -46,6 +46,8 @@ mosip.regproc.status.service.url=http://regproc-status.regproc mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub +mosip.regproc.biosdk.url=http://biosdk-service.biosdk +mosip.idrepo.biosdk.url=http://biosdk-service.biosdk mosip.consolidator.url=http://websub-consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida From 52822b11a2964dc020d6d042897df0e43d5775d3 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Wed, 13 Sep 2023 12:01:25 +0530 Subject: [PATCH 1235/1358] MOSIP-28646 config changes --- registration-processor-default.properties | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index ce2f1a474fc..3bcbed4710e 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -643,9 +643,7 @@ mosip.regproc.abis.handler.message.expiry-time-limit=${mosip.regproc.common.stag mosip.regproc.abis.handler.server.port=9071 mosip.regproc.abis.handler.eventbus.port=5726 mosip.regproc.abis.handler.server.servlet.path=/registrationprocessor/v1/abishandler -mosip.regproc.abis.handler.biometric-modalities-segments-mapping.INFANT={'Face':{'Face'}} -mosip.regproc.abis.handler.biometric-modalities-segments-mapping.MINOR={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'}} -mosip.regproc.abis.handler.biometric-modalities-segments-mapping.ADULT={'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris':{'Left','Right'}} +mosip.regproc.abis.handler.biometric-modalities-segments-mapping-for-age-group={'MINOR' : {'Finger' : {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris' : {'Left', 'Right'}}, 'INFANT' : {'Face': {'Face'}}, 'ADULT': {'Finger': {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris' : {'Left', 'Right'}}, 'DEFAULT' : {'Finger' : {'Left Thumb','Left LittleFinger','Left IndexFinger','Left MiddleFinger','Left RingFinger','Right Thumb','Right LittleFinger','Right IndexFinger','Right MiddleFinger','Right RingFinger'},'Iris' : {'Left', 'Right'}}} mosip.regproc.abis.handler.biometric-segments-exceptions-mapping={'Left Thumb' : 'leftThumb','Right Thumb' : 'rightThumb','Left MiddleFinger' : 'leftMiddle','Left RingFinger' : 'leftRing','Left LittleFinger' : 'leftLittle','Left IndexFinger' : 'leftIndex','Right MiddleFinger' : 'rightMiddle','Right RingFinger' : 'rightRing','Right LittleFinger' : 'rightLittle','Right IndexFinger' : 'rightIndex','Left' : 'leftEye','Right' : 'rightEye'} #bio-dedupe-stage From aa35039b4270e3e0a732377ceb66c3d30568ddaf Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <m1022006@mindtree.com> Date: Fri, 15 Sep 2023 11:14:42 +0530 Subject: [PATCH 1236/1358] MOSIP-29420 config fix --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index ce2f1a474fc..86ad7fe4994 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -292,7 +292,7 @@ registration.processor.pause.packets.for.backpressure=true # The elapse time (in sec) beyond which the rids will be considered for reprocessing registration.processor.reprocess.elapse.time=900 # The maximum reprocess count. Beyond this the rid will not be considered for reprocessing. -registration.processor.reprocess.attempt.count=300 +registration.processor.reprocess.attempt.count=20 registration.processor.reprocess.type=cron registration.processor.reprocess.seconds=0 # TODO: time reduced for testing. Revert for production. From fde2b95b254475df56bd1311c1fba531baa05e0b Mon Sep 17 00:00:00 2001 From: anshulv1401 <31562315+anshulv1401@users.noreply.github.com> Date: Thu, 5 Oct 2023 17:07:31 +0530 Subject: [PATCH 1237/1358] esignet config updated for esignet-1.1.0 release (#4618) --- esignet-default.properties | 29 ++++++++++++++++------------- 1 file changed, 16 insertions(+), 13 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 248c1205e85..0538499a7a2 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -27,7 +27,7 @@ ## ------------------------------------------------- e-Signet ---------------------------------------------------------- -mosip.esignet.misp.license.key=bmftkJ8LfUQE98eE1FWud68IwaflbqHXcf3px0SJHPxMcqMRP5 +mosip.esignet.misp.license.key=${mosip.esignet.misp.key} mosip.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json mosip.esignet.auth-txn-id-length=10 mosip.esignet.supported-id-regex=\\S* @@ -35,6 +35,9 @@ mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 mosip.esignet.link-code-expire-in-secs=60 +mosip.esignet.generate-link-code.limit-per-transaction=10 +mosip.esignet.authentication-expire-in-secs=50 + mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ '${server.servlet.path}/authorization/auth-code'} @@ -50,7 +53,9 @@ mosip.esignet.binding.encrypt-binding-id=false ## -------------------------------------- Authentication & Authorization ----------------------------------------------- mosip.esignet.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ - \ '${server.servlet.path}/system-info/**' : { 'SCOPE_upload_certificate'}} + \ '${server.servlet.path}/system-info/**' : { 'SCOPE_upload_certificate'},\ + \ '${server.servlet.path}/binding/wallet-binding' : { 'SCOPE_wallet_binding'}, \ + \ '${server.servlet.path}/binding/binding-otp' : { 'SCOPE_send_binding_otp'}} mosip.esignet.security.auth.put-urls={'${server.servlet.path}/client-mgmt/**' : { 'SCOPE_update_oidc_client'} } mosip.esignet.security.auth.get-urls={'${server.servlet.path}/system-info/**' : { 'SCOPE_get_certificate'} } @@ -79,14 +84,6 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented ## ------------------------------------------- Integrations ------------------------------------------------------------ -#mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration -#mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl -#mosip.esignet.integration.authenticator=MockAuthenticationService -#mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -#mosip.esignet.integration.audit-plugin=LoggerAuditService -#mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService - - mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl mosip.esignet.integration.authenticator=IdaAuthenticatorImpl @@ -196,7 +193,7 @@ mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 600, ## ------------------------------------------ Discovery openid-configuration ------------------------------------------- -mosip.esignet.domain.url=https://${mosip.api.public.host} +mosip.esignet.domain.url=https://${mosip.esignet.host} mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.discovery.issuer-id}' ,\ @@ -297,14 +294,20 @@ mosip.kernel.keymanager.jwtsign.validate.json=false mosip.keymanager.dao.enabled=false crypto.PrependThumbprint.enable=true +mosip.kernel.keymgr.hsm.health.check.enabled=true +mosip.kernel.keymgr.hsm.health.key.app-id=OIDC_SERVICE +mosip.kernel.keymgr.hsm.healthkey.ref-id=TRANSACTION_CACHE +mosip.kernel.keymgr.hsm.health.check.encrypt=true + ## -------------------------------------------- IDP-UI config ---------------------------------------------------------- mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, \ - 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', \ - 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} + 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'wallet.logo-url': 'inji_logo.png', \ + 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, 'consent.screen.timeout-buffer-in-secs': 10, \ + 'mosip.esignet.link-auth-code-expire-in-secs': 120, 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} logging.level.org.springframework.web.client.RestTemplate=DEBUG From 46720aed3e29fcfbc38666a2a3f6884d9d9cfbbc Mon Sep 17 00:00:00 2001 From: Khuddus shariff <Khuddusshariff0022@gmail.com> Date: Fri, 6 Oct 2023 15:32:30 +0530 Subject: [PATCH 1238/1358] quality checker level tags more specific MOSIP-29419 --- registration-processor-camel-routes-lost-default.xml | 4 ++-- registration-processor-camel-routes-new-default.xml | 4 ++-- registration-processor-camel-routes-update-default.xml | 4 ++-- registration-processor-default.properties | 7 +++++-- 4 files changed, 11 insertions(+), 8 deletions(-) diff --git a/registration-processor-camel-routes-lost-default.xml b/registration-processor-camel-routes-lost-default.xml index a4fa59adb38..6c0a7b79b61 100644 --- a/registration-processor-camel-routes-lost-default.xml +++ b/registration-processor-camel-routes-lost-default.xml @@ -247,11 +247,11 @@ <to uri="workflow-cmd://pause-and-request-additional-info" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://bio-dedupe-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['level-1','level-2','level-3'] || @['tags']['Biometric_Quality-Finger'] in ['level-1','level-2','level-3'] || @['tags']['Biometric_Quality-Face'] in ['level-1','level-2','level-3'])]</jsonpath> <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> <!-- PAUSE_FOR is in seconds --> <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index 4f98e21d8e9..ef3fe0ba7ee 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -250,11 +250,11 @@ <to uri="workflow-cmd://pause-and-request-additional-info" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://demo-dedupe-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['level-1','level-2','level-3'] || @['tags']['Biometric_Quality-Finger'] in ['level-1','level-2','level-3'] || @['tags']['Biometric_Quality-Face'] in ['level-1','level-2','level-3'])]</jsonpath> <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> <!-- PAUSE_FOR is in seconds --> <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index f562625cbbc..73544fdc53c 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -250,11 +250,11 @@ <to uri="workflow-cmd://pause-and-request-additional-info" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Average', 'Good','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['Average', 'Good', '--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['Average', 'Good', '--Biometrics-Not-Available--'])]</jsonpath> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Finger'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'] && @['tags']['Biometric_Quality-Face'] in ['level-4','level-5','level-6','level-7','level-8','level-9','level-10','--Biometrics-Not-Available--'])]</jsonpath> <to uri="eventbus://biometric-authentication-bus-in" /> </when> <when> - <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['Poor'] || @['tags']['Biometric_Quality-Finger'] in ['Poor'] || @['tags']['Biometric_Quality-Face'] in ['Poor'])]</jsonpath> + <jsonpath suppressExceptions="true">$.[?(@['tags']['Biometric_Quality-Iris'] in ['level-1','level-2','level-3'] || @['tags']['Biometric_Quality-Finger'] in ['level-1','level-2','level-3'] || @['tags']['Biometric_Quality-Face'] in ['level-1','level-2','level-3'])]</jsonpath> <setProperty propertyName="ADDITIONAL_INFO_PROCESS"><constant>BIOMETRIC_CORRECTION</constant></setProperty> <!-- PAUSE_FOR is in seconds --> <setProperty propertyName="PAUSE_FOR"><constant>1296000</constant></setProperty> diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 468c894bd6f..f77940dd4ce 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -605,8 +605,11 @@ mosip.regproc.quality.classifier.server.port=9072 mosip.regproc.quality.classifier.eventbus.port=5727 mosip.regproc.quality.classifier.server.servlet.path=/registrationprocessor/v1/qualityclassifier # Below quality ranges map should contain proper quality group name and quality range, any overlap of the quality -# range will result in a random behaviour of tagging. In range, upper and lower values are inclusive. -mosip.regproc.quality.classifier.tagging.quality.ranges={'Poor':'0-29','Average':'30-69','Good':'70-100'} +# range will result in a random behaviour of tagging. In range, Lower value is inclusive and Upper value is Exclusive. +# Example : When the Biometric score is 39.9. this will be included in level-4 which ranges between 30-40. +# Example : when the Biometric score is 40. this will be included in level-5 which ranges between 40-50. +mosip.regproc.quality.classifier.tagging.quality.ranges={'level-1':'0-10','level-2':'10-20','level-3':'20-30','level-4':'30-40','level-5':'40-50','level-6':'50-60','level-7':'60-70','level-8':'70-80','level-9':'80-90','level-10':'90-101'} + # Quality Tag Prefix mosip.regproc.quality.classifier.tagging.quality.prefix=Biometric_Quality- # The tag value that will be used by default when the packet does not have biometrics From 554c93b1b96061d116c8372b8c20e566cfa4ae14 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Fri, 13 Oct 2023 14:22:55 +0530 Subject: [PATCH 1239/1358] MOSIP-29287 added biosdk logger Signed-off-by: Loganathan Sekar <m1047627@mindtree.com> --- biosdk-service-default.properties | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 biosdk-service-default.properties diff --git a/biosdk-service-default.properties b/biosdk-service-default.properties new file mode 100644 index 00000000000..bf202460333 --- /dev/null +++ b/biosdk-service-default.properties @@ -0,0 +1,16 @@ +#iam mock-sdk config +sdk_check_iso_timestamp_format=true +mosip.role.biosdk.getservicestatus=REGISTRATION_PROCESSOR +biosdk_bioapi_impl=io.mosip.mock.sdk.impl.SampleSDKV2 + + +logging.level.root=INFO + +mosip.biosdk.log-request-response-enabled=false +# Uncomment below when mosip.biosdk.log-request-response-enabled is set to true. +#logging.level.io.mosip.biosdk.services.impl.spec_1_0.BioSdkServiceProviderImpl_V_1_0=DEBUG + +#iam image-compressor config +mosip.bio.image.compressor.resize.factor.fx=0.25 +mosip.bio.image.compressor.resize.factor.fy=0.25 +mosip.bio.image.compressor.compression.ratio=50 From a32d82217d90df0113f743175b01885f6702abc2 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Thu, 12 Oct 2023 20:13:43 +0530 Subject: [PATCH 1240/1358] MOSIP-29287 Added biosdk-service cloud config Signed-off-by: Loganathan Sekar <m1047627@mindtree.com> --- sandbox/biosdk-service-mz.properties | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 sandbox/biosdk-service-mz.properties diff --git a/sandbox/biosdk-service-mz.properties b/sandbox/biosdk-service-mz.properties new file mode 100644 index 00000000000..e04d508e269 --- /dev/null +++ b/sandbox/biosdk-service-mz.properties @@ -0,0 +1,14 @@ +#iam mock-sdk config +sdk_check_iso_timestamp_format=true +mosip.role.biosdk.getservicestatus=REGISTRATION_PROCESSOR +biosdk_bioapi_impl=io.mosip.mock.sdk.impl.SampleSDKV2 + +mosip.biosdk.log-request-response-enabled=true + +logging.level.root=INFO +logging.level.io.mosip.biosdk.services.impl.spec_1_0.BioSdkServiceProviderImpl_V_1_0=DEBUG + +#iam image-compressor config +mosip.bio.image.compressor.resize.factor.fx=0.25 +mosip.bio.image.compressor.resize.factor.fy=0.25 +mosip.bio.image.compressor.compression.ratio=50 From 293b73d4c8e43cfa108c6e60b59d009758e927be Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <m1047627@mindtree.com> Date: Fri, 13 Oct 2023 17:50:57 +0530 Subject: [PATCH 1241/1358] Resolved conflict issue Signed-off-by: Loganathan Sekar <m1047627@mindtree.com> --- sandbox/biosdk-service-mz.properties | 14 -------------- 1 file changed, 14 deletions(-) delete mode 100644 sandbox/biosdk-service-mz.properties diff --git a/sandbox/biosdk-service-mz.properties b/sandbox/biosdk-service-mz.properties deleted file mode 100644 index e04d508e269..00000000000 --- a/sandbox/biosdk-service-mz.properties +++ /dev/null @@ -1,14 +0,0 @@ -#iam mock-sdk config -sdk_check_iso_timestamp_format=true -mosip.role.biosdk.getservicestatus=REGISTRATION_PROCESSOR -biosdk_bioapi_impl=io.mosip.mock.sdk.impl.SampleSDKV2 - -mosip.biosdk.log-request-response-enabled=true - -logging.level.root=INFO -logging.level.io.mosip.biosdk.services.impl.spec_1_0.BioSdkServiceProviderImpl_V_1_0=DEBUG - -#iam image-compressor config -mosip.bio.image.compressor.resize.factor.fx=0.25 -mosip.bio.image.compressor.resize.factor.fy=0.25 -mosip.bio.image.compressor.compression.ratio=50 From 86ea111c82481238f0433c17d63ebd7926088061 Mon Sep 17 00:00:00 2001 From: bhumi46 <111699703+bhumi46@users.noreply.github.com> Date: Wed, 18 Oct 2023 08:16:17 +0530 Subject: [PATCH 1242/1358] [DSD-3548]Update id-authentication-default.properties (#4712) Signed-off-by: bhumi46 <111699703+bhumi46@users.noreply.github.com> --- id-authentication-default.properties | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index dc2cdc7e5dc..33a59b28377 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -496,7 +496,7 @@ keymanager.persistence.jdbc.driver=org.postgresql.Driver keymanager_database_url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip.ida.database.port}/mosip_ida keymanager_database_username=${mosip.ida.database.user} keymanager_database_password=${db.dbuser.password} -mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING +mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING,IDA_VCI_EXCHANGE mosip.kernel.keymanager.autogen.basekeys.list=${application.id}:${internal.reference.id},${application.id}:${partner.reference.id},${application.id}:${partner.biometric.reference.id},${application.id}:${mosip.kernel.zkcrypto.publickey.reference.id},${application.id}:${ida-auth-partner-id} zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida @@ -628,3 +628,13 @@ mosip.ida.kyc.token.expire.time.adjustment.seconds=3000 mosip.ida.kyc.exchange.default.lang=eng mosip.ida.idp.consented.address.subset.attributes=street_address,locality,region,postal_code,country mosip.kernel.keymgr.hsm.health.key.app-id=IDA + +mosip.ida.config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ +mosip.ida.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "https://${mosip.api.public.host}/.well-known/mosip-ida-context.json" : "mosip-ida-context.json"} +mosip.ida.vercred.context.uri=vccontext-ida.jsonld +mosip.ida.vercred.id.url=https://ida.mosip.net/credentials/ +mosip.ida.vercred.issuer.url=https://${mosip.api.public.host}/.well-known/ida-controller.json +mosip.ida.vercred.proof.purpose=assertionMethod +mosip.ida.vercred.proof.type=RsaSignature2018 +mosip.ida.vercred.proof.verificationmethod=https://${mosip.api.public.host}/.well-known/ida-public-key.json +mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredential From f9e00206c3aeaf9560cb2305547d32e630c28725 Mon Sep 17 00:00:00 2001 From: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> Date: Thu, 26 Oct 2023 11:31:21 +0530 Subject: [PATCH 1243/1358] [MOSIP-29942]Update misp-policy-schema.json Signed-off-by: Mahesh-Binayak <76687012+Mahesh-Binayak@users.noreply.github.com> --- misp-policy-schema.json | 46 ++++++++++++++++++++++------------------- 1 file changed, 25 insertions(+), 21 deletions(-) diff --git a/misp-policy-schema.json b/misp-policy-schema.json index 0795acb0de2..bae8f033c51 100644 --- a/misp-policy-schema.json +++ b/misp-policy-schema.json @@ -1,23 +1,27 @@ { - "$schema": "http://json-schema.org/draft-04/schema#", - "type": "object", - "properties": { - "allowAuthRequestDelegation": { - "type": "boolean" + "$schema": "http://json-schema.org/draft-04/schema#", + "type": "object", + "properties": { + "allowAuthRequestDelegation": { + "type": "boolean" + }, + "allowKycRequestDelegation": { + "type": "boolean" + }, + "trustBindedAuthVerificationToken": { + "type": "boolean" + }, + "allowKeyBindingDelegation": { + "type": "boolean" + }, + "allowVciRequestDelegation": { + "type": "boolean" + } }, - "allowKycRequestDelegation": { - "type": "boolean" - }, - "trustBindedAuthVerificationToken": { - "type": "boolean" - }, - "allowKeyBindingDelegation": { - "type": "boolean" - } - }, - "required": [ - "allowAuthRequestDelegation", - "allowKycRequestDelegation", - "allowKeyBindingDelegation" - ] -} \ No newline at end of file + "required": [ + "allowAuthRequestDelegation", + "allowKycRequestDelegation", + "allowKeyBindingDelegation" + ], + "additionalProperties": false + } From b49841702c71acadd29feedf40e2061ba32ec9c8 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Thu, 9 Nov 2023 08:37:34 +0530 Subject: [PATCH 1244/1358] ES-4 ES-19 (#4787) * ES-4 ES-19 Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> * Update esignet-default.properties Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --------- Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- esignet-default.properties | 154 ++++++++++++++++++++++++++++++------- 1 file changed, 126 insertions(+), 28 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 0538499a7a2..b0504aad51d 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -31,15 +31,19 @@ mosip.esignet.misp.license.key=${mosip.esignet.misp.key} mosip.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json mosip.esignet.auth-txn-id-length=10 mosip.esignet.supported-id-regex=\\S* +# Generated ID and access tokens 'exp' depends on the below properties, default value is 1-hour mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 -mosip.esignet.link-code-expire-in-secs=60 - +# By default, only 2 link codes can be active, and the time period it can be active is defined here, default value is 5 minutes +mosip.esignet.link-code-expire-in-secs=300 +# Number of link code allowed to be generated in a transaction, the default value is 10 mosip.esignet.generate-link-code.limit-per-transaction=10 -mosip.esignet.authentication-expire-in-secs=50 +# Time to complete consent after successful authentication, the default value is 120 +mosip.esignet.authentication-expire-in-secs=120 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ + '${server.servlet.path}/authorization/v2/authenticate', \ '${server.servlet.path}/authorization/auth-code'} ## ------------------------------------------ e-Signet binding --------------------------------------------------------- @@ -49,7 +53,6 @@ mosip.esignet.binding.audience-id=esignet-binding mosip.esignet.binding.key-expire-days=10 mosip.esignet.binding.encrypt-binding-id=false - ## -------------------------------------- Authentication & Authorization ----------------------------------------------- mosip.esignet.security.auth.post-urls={'${server.servlet.path}/client-mgmt/**' : {'SCOPE_add_oidc_client'} , \ @@ -63,12 +66,14 @@ mosip.esignet.security.ignore-csrf-urls=${server.servlet.path}/oidc/**,${server. ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,\ ${server.servlet.path}/swagger-ui/**,${server.servlet.path}/v3/api-docs/**,\ ${server.servlet.path}/linked-authorization/link-transaction,${server.servlet.path}/linked-authorization/authenticate,\ - ${server.servlet.path}/linked-authorization/consent,${server.servlet.path}/binding/** + ${server.servlet.path}/linked-authorization/consent,${server.servlet.path}/binding/**,${server.servlet.path}/client-mgmt/**,\ + ${server.servlet.path}/vci/**,${server.servlet.path}/system-info/**,${server.servlet.path}/linked-authorization/v2/link-transaction,\ + ${server.servlet.path}/linked-authorization/v2/authenticate,${server.servlet.path}/linked-authorization/v2/consent mosip.esignet.security.ignore-auth-urls=${server.servlet.path}/csrf/**,${server.servlet.path}/authorization/**,\ ${server.servlet.path}/linked-authorization/**,${server.servlet.path}/oidc/**,${server.servlet.path}/oauth/**,\ ${server.servlet.path}/actuator/**,/favicon.ico,${server.servlet.path}/error,${server.servlet.path}/swagger-ui/**,\ - ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/binding/** + ${server.servlet.path}/v3/api-docs/**,${server.servlet.path}/binding/**,${server.servlet.path}/vci/** spring.security.oauth2.resourceserver.jwt.issuer-uri=${keycloak.external.url}/auth/realms/mosip spring.security.oauth2.resourceserver.jwt.jwk-set-uri=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs @@ -90,6 +95,7 @@ mosip.esignet.integration.authenticator=IdaAuthenticatorImpl mosip.esignet.integration.key-binder=IdaKeyBinderImpl mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService +mosip.esignet.integration.vci-plugin=IdaVCIssuancePluginImpl # captcha validator mosip.esignet.send-otp.captcha-required=false @@ -117,6 +123,11 @@ mosip.esignet.authenticator.ida.app-id=ida mosip.esignet.authenticator.ida-env=Developer mosip.esignet.authenticator.ida.otp-channels=email,phone +mosip.esignet.ida.vci-user-info-cache=userinfo +mosip.esignet.ida.vci-exchange-id=mosip.identity.vciexchange +mosip.esignet.ida.vci-exchange-version=1.0 +mosip.esignet.ida.vci-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/vci-exchange/delegated/${mosip.esignet.misp.license.key}/ + # Mock IDA integration props mosip.esignet.mock.authenticator.get-identity-url=https://${mosip.api.public.host}/v1/mock-identity-system/identity mosip.esignet.mock.authenticator.kyc-auth-url=https://${mosip.api.public.host}/v1/mock-identity-system/kyc-auth @@ -124,6 +135,7 @@ mosip.esignet.mock.authenticator.kyc-exchange-url=https://${mosip.api.public.hos mosip.esignet.mock.authenticator.ida.otp-channels=${mosip.esignet.authenticator.ida.otp-channels} mosip.esignet.mock.authenticator.send-otp=https://${mosip.api.public.host}/v1/mock-identity-system/send-otp mosip.esignet.mock.supported.bind-auth-factor-types={'WLA'} +mosip.esignet.mock.vciplugin.verification-method=${mosip.esignet.vci.authn.jwk-set-uri} ## ------------------------------------------ oauth & openid supported values ------------------------------------------ @@ -131,6 +143,8 @@ mosip.esignet.mock.supported.bind-auth-factor-types={'WLA'} mosip.esignet.supported.authorize.scopes={'Manage-Identity-Data','Manage-VID','Manage-Authentication','Manage-Service-Requests','Manage-Credentials'} mosip.esignet.supported.openid.scopes={'profile','email','phone'} mosip.esignet.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number'},'email' : {'email'}, 'phone' : {'phone_number'}} +mosip.esignet.supported.credential.scopes={'mock_identity_vc_ldp', 'mosip_identity_vc_ldp'} +mosip.esignet.credential.scope-resource-mapping={'mock_identity_vc_ldp' : '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'mosip_identity_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential'} ## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. mosip.esignet.supported.response.types={'code'} @@ -167,6 +181,8 @@ mosip.esignet.supported.client.assertion.types={'urn:ietf:params:oauth:client-as ## Type of the client authentication methods for token endpoint mosip.esignet.supported.client.auth.methods={'private_key_jwt'} +## Only S256 method supported +mosip.esignet.supported-pkce-methods={'S256'} ## ---------------------------------------- Cache configuration -------------------------------------------------------- @@ -175,7 +191,7 @@ mosip.esignet.cache.store.individual-id=true mosip.esignet.cache.security.secretkey.reference-id=TRANSACTION_CACHE mosip.esignet.cache.security.algorithm-name=AES/ECB/PKCS5Padding -mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction +mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction,vcissuance #spring.cache.type=redis #spring.cache.cache-names=${mosip.esignet.cache.names} @@ -186,36 +202,48 @@ management.health.redis.enabled=false spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 mosip.esignet.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ - 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200, 'authtokens': 2, 'bindingtransaction': 1500 } -mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 600, 'authenticated': 120, 'authcodegenerated': 60, \ + 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200, 'authtokens': 2, 'bindingtransaction': 200, 'vcissuance' : 200 } +mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300,'authenticated': ${mosip.esignet.authentication-expire-in-secs}, 'authcodegenerated': 300, \ 'userinfo': ${mosip.esignet.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ - 'linked': 60 , 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : 60, 'consented': 120, 'authtokens': 28800, 'bindingtransaction': 300 } + 'linked': 600, 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, 'consented': 300, \ + 'authtokens': 86400, 'bindingtransaction': 600, 'vcissuance': ${mosip.esignet.access-token-expire-seconds} } ## ------------------------------------------ Discovery openid-configuration ------------------------------------------- mosip.esignet.domain.url=https://${mosip.esignet.host} mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} -mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.discovery.issuer-id}' ,\ +mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ + \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ + \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' , \ + \ 'jwks_uri' : '${mosip.esignet.domain.url}${server.servlet.path}/oauth/jwks.json' , \ + \ 'token_endpoint_auth_methods_supported' : ${mosip.esignet.supported.client.auth.methods}, \ + \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'},\ + \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ + \ 'response_modes_supported' : { 'query' }, \ + \ 'grant_types_supported' : ${mosip.esignet.supported.grant.types},\ + \ 'response_types_supported' : ${mosip.esignet.supported.response.types}} + +mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' ,\ - \ 'userinfo_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/oidc/userinfo' , \ - \ 'jwks_uri' : '${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json' , \ + \ 'userinfo_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/oidc/userinfo' ,\ \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ \ 'response_types_supported' : ${mosip.esignet.supported.response.types}, \ - \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ - \ 'userinfo_signing_alg_values_supported' : {'RS256'}, \ - \ 'userinfo_encryption_alg_values_supported' : {'RSAXXXXX'},\ - \ 'userinfo_encryption_enc_values_supported' : {'A128GCM'}, \ \ 'response_modes_supported' : { 'query' }, \ \ 'token_endpoint_auth_methods_supported' : ${mosip.esignet.supported.client.auth.methods}, \ \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'}, \ + \ 'userinfo_signing_alg_values_supported' : {'RS256'}, \ + \ 'userinfo_encryption_alg_values_supported' : {'RSAXXXXX'},\ + \ 'userinfo_encryption_enc_values_supported' : {'A128GCM'}, \ \ 'id_token_signing_alg_values_supported' : {'RS256'}, \ \ 'claim_types_supported': {'normal'}, \ - \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ - \ 'claims_locales_supported' : {'en'}, \ + \ 'claims_parameter_supported' : true, \ \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \ - \ 'ui_locales_supported' : {'en'} } + \ 'subject_types_supported' : { 'pairwise' }, \ + \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ + \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ + \ 'request_parameter_supported' : false } ##----------------------------------------- Database properties -------------------------------------------------------- @@ -300,15 +328,85 @@ mosip.kernel.keymgr.hsm.healthkey.ref-id=TRANSACTION_CACHE mosip.kernel.keymgr.hsm.health.check.encrypt=true ## -------------------------------------------- IDP-UI config ---------------------------------------------------------- +# NOTE: +# 1. linked-transaction-expire-in-secs value should be a sum of mosip.esignet.authentication-expire-in-secs and linked cache expire in seconds under mosip.esignet.cache.expire-in-seconds property +# 2. A new Qrcode will be autogenerated before the expiry of current qr-code, and the time difference in seconds for the same is defined in wallet.qr-code-buffer-in-secs property + +mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ + 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' },{'wallet.name': 'Inji Mobile App1', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ + 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }} mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ - 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, \ - 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'wallet.logo-url': 'inji_logo.png', \ - 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, 'consent.screen.timeout-buffer-in-secs': 10, \ - 'mosip.esignet.link-auth-code-expire-in-secs': 120, 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}'} - - -logging.level.org.springframework.web.client.RestTemplate=DEBUG -logging.level.io.mosip.esignet=DEBUG + 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ + 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : '', \ + 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ + 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 420, 'sbi.port.range': 4501-4600, \ + 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \ + 'password.regex': '\\S*', 'wallet.config': ${mosip.esignet.ui.wallet.config} } + +## ---------------------------------------------- VCI ------------------------------------------------------------------ +mosip.esignet.vci.identifier=${mosip.esignet.domain.url}${server.servlet.path} +mosip.esignet.vci.authn.filter-urls={ '${server.servlet.path}/vci/credential' } +mosip.esignet.vci.authn.issuer-uri=${mosip.esignet.domain.url}${server.servlet.path} +mosip.esignet.vci.authn.jwk-set-uri=${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json +mosip.esignet.vci.authn.allowed-audiences={ '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential' } + +mosip.esignet.cnonce-expire-seconds=40 +mosip.esignet.vci.supported.jwt-proof-alg={'RS256'} +mosip.esignet.vci.key-values={ 'credential_issuer': '${mosip.esignet.domain.url}', \ + 'credential_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', \ + 'credentials_supported': {{\ + 'format': 'ldp_vc',\ + 'id': 'MockVerifiableCredential', \ + 'scope' : 'mock_identity_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'RsaSignature2018'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential'},\ + 'credentialSubject': {\ + 'name': { 'display': {{'name': 'Given Name', 'locale': 'en' }}}, \ + 'age': { 'display': {{ 'name': 'Age', 'locale': 'en'}}}\ + }},\ + 'display': {{'name': 'Mock Verifiable Credential by e-Signet', \ + 'locale': 'en', \ + 'logo': {'url': '${mosip.esignet.domain.url}/logo.png',\ + 'alt_text': 'a square logo of a MOSIP'},\ + 'background_color': '#12107c',\ + 'text_color': '#FFFFFF'}}\ + \ },{\ + 'format': 'ldp_vc',\ + 'id': 'MOSIPVerifiableCredential', \ + 'scope' : 'mosip_identity_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'RsaSignature2018'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential'},\ + 'credentialSubject': {\ + 'fullName': { 'display': {{'name': 'Full Name', 'locale': 'en' }}},\ + 'phone': { 'display': {{'name': 'Phone Number', 'locale': 'en' }}},\ + 'dateOfBirth': { 'display': {{'name': 'DOB', 'locale': 'en' }}},\ + 'gender': { 'display': {{'name': 'Gender', 'locale': 'en' }}},\ + 'residenceStatus': { 'display': {{'name': 'Residence Status', 'locale': 'en' }}},\ + 'email': { 'display': {{'name': 'Email Id', 'locale': 'en' }}},\ + 'region': { 'display': {{'name': 'Region', 'locale': 'en' }}},\ + 'province': { 'display': {{'name': 'Province', 'locale': 'en' }}},\ + 'city': { 'display': {{'name': 'City', 'locale': 'en' }}},\ + 'postalCode': { 'display': {{'name': 'Postal Code', 'locale': 'en' }}}\ + }},\ + 'display': {{'name': 'MOSIP Identity Verifiable Credential', \ + 'locale': 'en', \ + 'logo': {'url': '${mosip.esignet.domain.url}/logo.png',\ + 'alt_text': 'a square logo of a MOSIP'},\ + 'background_color': '#12107c',\ + 'text_color': '#FFFFFF'}}\ + \ }},\ + 'display': {{'name': 'MOSIP', 'locale': 'en'}}\ + } +## -------------------------------------------- Others ---------------------------------------------------------- + +#logging.level.org.springframework.web.client.RestTemplate=DEBUG +#logging.level.io.mosip.esignet=DEBUG From b7be6e3d93d9e6185032ce08492d6c8e0fd16276 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Tue, 14 Nov 2023 12:43:13 +0530 Subject: [PATCH 1245/1358] Update esignet-default.properties Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- esignet-default.properties | 19 ++++++++++++------- 1 file changed, 12 insertions(+), 7 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index b0504aad51d..f95a6b80aaa 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -34,8 +34,8 @@ mosip.esignet.supported-id-regex=\\S* # Generated ID and access tokens 'exp' depends on the below properties, default value is 1-hour mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 -# By default, only 2 link codes can be active, and the time period it can be active is defined here, default value is 5 minutes -mosip.esignet.link-code-expire-in-secs=300 +# By default, only 2 link codes can be active, and the time period it can be active is defined here, default value is 1 minute +mosip.esignet.link-code-expire-in-secs=60 # Number of link code allowed to be generated in a transaction, the default value is 10 mosip.esignet.generate-link-code.limit-per-transaction=10 # Time to complete consent after successful authentication, the default value is 120 @@ -199,13 +199,17 @@ mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated, #spring.redis.port=6379 management.health.redis.enabled=false +# 'simple' cache type is only applicable only for Non-Production setup spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 +# Cache size setup is applicable only for 'simple' cache type. mosip.esignet.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200, 'authtokens': 2, 'bindingtransaction': 200, 'vcissuance' : 200 } -mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300,'authenticated': ${mosip.esignet.authentication-expire-in-secs}, 'authcodegenerated': 300, \ + +# Cache expire in seconds is applicable for both 'simple' and 'Redis' cache type +mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300,'authenticated': ${mosip.esignet.authentication-expire-in-secs}, 'authcodegenerated': 60, \ 'userinfo': ${mosip.esignet.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ - 'linked': 600, 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, 'consented': 300, \ + 'linked': 120, 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, 'consented': 60, \ 'authtokens': 86400, 'bindingtransaction': 600, 'vcissuance': ${mosip.esignet.access-token-expire-seconds} } ## ------------------------------------------ Discovery openid-configuration ------------------------------------------- @@ -329,8 +333,9 @@ mosip.kernel.keymgr.hsm.health.check.encrypt=true ## -------------------------------------------- IDP-UI config ---------------------------------------------------------- # NOTE: -# 1. linked-transaction-expire-in-secs value should be a sum of mosip.esignet.authentication-expire-in-secs and linked cache expire in seconds under mosip.esignet.cache.expire-in-seconds property +# 1. linked-transaction-expire-in-secs value should be a sum of 'mosip.esignet.authentication-expire-in-secs' and 'linked' cache expire in seconds under mosip.esignet.cache.expire-in-seconds property # 2. A new Qrcode will be autogenerated before the expiry of current qr-code, and the time difference in seconds for the same is defined in wallet.qr-code-buffer-in-secs property +# 3. If esignet is deployed with MOSIP IDA, then 'resend.otp.delay.secs' must be the same as 'mosip.kernel.otp.expiry-time' mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' },{'wallet.name': 'Inji Mobile App1', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ @@ -339,10 +344,10 @@ mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo- mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ - 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ + 'resend.otp.delay.secs': 180, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : '', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ - 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 420, 'sbi.port.range': 4501-4600, \ + 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': 4501-4600, \ 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \ 'password.regex': '\\S*', 'wallet.config': ${mosip.esignet.ui.wallet.config} } From 353c031896789619c45277730ccaf576ec950252 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Tue, 14 Nov 2023 17:24:39 +0530 Subject: [PATCH 1246/1358] Create ida-controller.json Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- ida-controller.json | 7 +++++++ 1 file changed, 7 insertions(+) create mode 100644 ida-controller.json diff --git a/ida-controller.json b/ida-controller.json new file mode 100644 index 00000000000..0ede3d98626 --- /dev/null +++ b/ida-controller.json @@ -0,0 +1,7 @@ +{ + "@context": "https://w3id.org/security/v2", + "id": "https://${mosip.api.public.host}/.well-known/ida-controller.json", + "assertionMethod": [ + "https://${mosip.api.public.host}/.well-known/ida-public-key.json" + ] +} From adaeea677d09b3649f8748714bae2689ee1f3046 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Tue, 14 Nov 2023 17:32:29 +0530 Subject: [PATCH 1247/1358] Create mosip-ida-context.json Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- mosip-ida-context.json | 54 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 54 insertions(+) create mode 100644 mosip-ida-context.json diff --git a/mosip-ida-context.json b/mosip-ida-context.json new file mode 100644 index 00000000000..66a61871c43 --- /dev/null +++ b/mosip-ida-context.json @@ -0,0 +1,54 @@ +{ + "@context": [{ + "@version": 1.1 + },"https://www.w3.org/ns/odrl.jsonld", { + "mosip": "https://${mosip.api.public.host}/mosip#", + "schema": "http://schema.org/", + "rdf": "http://www.w3.org/1999/02/22-rdf-syntax-ns#", + "vcVer": "mosip:vcVer", + "UIN": "mosip:UIN", + "VID": "mosip:VID", + "addressLine1": { + "@id": "https://${mosip.api.public.host}/mosip#addressLine1", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "addressLine2": { + "@id": "https://${mosip.api.public.host}/mosip#addressLine2", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "addressLine3": { + "@id": "https://${mosip.api.public.host}/mosip#addressLine3", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "city": { + "@id": "https://${mosip.api.public.host}/mosip#city", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "gender": { + "@id": "https://${mosip.api.public.host}/mosip#gender", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "residenceStatus": { + "@id": "https://${mosip.api.public.host}/mosip#residenceStatus", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + + "dateOfBirth": "mosip:dateOfBirth", + "email": "mosip:email", + "fullName": { + "@id": "https://${mosip.api.public.host}/mosip#fullName", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "phone": "mosip:phone", + "postalCode": "mosip:postalCode", + "province": { + "@id": "https://${mosip.api.public.host}/mosip#province", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "region": { + "@id": "https://${mosip.api.public.host}/mosip#region", + "@context": {"value": "rdf:value", "lang": "@language"} + }, + "face": "mosip:face" + }] +} From bcff60a334c82a3c5bc3a066eb8e3458fb4e73cd Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Tue, 14 Nov 2023 17:34:39 +0530 Subject: [PATCH 1248/1358] Create vccontext-ida.jsonld Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- vccontext-ida.jsonld | 9 +++++++++ 1 file changed, 9 insertions(+) create mode 100644 vccontext-ida.jsonld diff --git a/vccontext-ida.jsonld b/vccontext-ida.jsonld new file mode 100644 index 00000000000..f9169381912 --- /dev/null +++ b/vccontext-ida.jsonld @@ -0,0 +1,9 @@ +{ + "context" : [ + "https://www.w3.org/2018/credentials/v1", + "https://${mosip.api.public.host}/.well-known/mosip-ida-context.json", + { + "sec": "https://w3id.org/security#" + } +] +} From c11beef3e1841f218fd1d36a8e5b4329bdfeb0d5 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Tue, 14 Nov 2023 19:58:04 +0530 Subject: [PATCH 1249/1358] Update esignet-default.properties Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- esignet-default.properties | 51 ++++++++++++++++++++++++++++++-------- 1 file changed, 40 insertions(+), 11 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index f95a6b80aaa..1987148ee1b 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -202,25 +202,48 @@ management.health.redis.enabled=false # 'simple' cache type is only applicable only for Non-Production setup spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 -# Cache size setup is applicable only for 'simple' cache type. -mosip.esignet.cache.size={'clientdetails' : 200, 'preauth': 200, 'authenticated': 200, 'authcodegenerated': 200, 'userinfo': 200, \ - 'linkcodegenerated' : 500, 'linked': 200 , 'linkedcode': 200, 'linkedauth' : 200 , 'consented' :200, 'authtokens': 2, 'bindingtransaction': 200, 'vcissuance' : 200 } + +# Cache size setup is applicable only for 'simple' cache type. +# Cache size configuration will not be considered with 'Redis' cache type +mosip.esignet.cache.size={'clientdetails' : 200, \ +'preauth': 200, \ +'authenticated': 200, \ +'authcodegenerated': 200, \ +'userinfo': 200, \ +'linkcodegenerated' : 500, \ +'linked': 200 , \ +'linkedcode': 200, \ +'linkedauth' : 200 , \ +'consented' :200, \ +'authtokens': 2, \ +'bindingtransaction': 200, \ +'vcissuance' : 200 } # Cache expire in seconds is applicable for both 'simple' and 'Redis' cache type -mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, 'preauth': 300,'authenticated': ${mosip.esignet.authentication-expire-in-secs}, 'authcodegenerated': 60, \ - 'userinfo': ${mosip.esignet.access-token-expire-seconds}, 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ - 'linked': 120, 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, 'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, 'consented': 60, \ - 'authtokens': 86400, 'bindingtransaction': 600, 'vcissuance': ${mosip.esignet.access-token-expire-seconds} } +mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ +'preauth': 300,\ +'authenticated': ${mosip.esignet.authentication-expire-in-secs}, \ +'authcodegenerated': 60, \ +'userinfo': ${mosip.esignet.access-token-expire-seconds}, \ +'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ +'linked': 120, \ +'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, \ +'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, \ +'consented': 60, \ +'authtokens': 86400, \ +'bindingtransaction': 600, \ +'vcissuance': ${mosip.esignet.access-token-expire-seconds} } ## ------------------------------------------ Discovery openid-configuration ------------------------------------------- mosip.esignet.domain.url=https://${mosip.esignet.host} mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} +mosip.esignet.jwks-uri=${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' , \ - \ 'jwks_uri' : '${mosip.esignet.domain.url}${server.servlet.path}/oauth/jwks.json' , \ + \ 'jwks_uri' : '${mosip.esignet.jwks-uri}' , \ \ 'token_endpoint_auth_methods_supported' : ${mosip.esignet.supported.client.auth.methods}, \ \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'},\ \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ @@ -232,6 +255,7 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' ,\ \ 'userinfo_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/oidc/userinfo' ,\ + \ 'jwks_uri' : '${mosip.esignet.jwks-uri}' , \ \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ \ 'response_types_supported' : ${mosip.esignet.supported.response.types}, \ \ 'response_modes_supported' : { 'query' }, \ @@ -247,7 +271,9 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'subject_types_supported' : { 'pairwise' }, \ \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ - \ 'request_parameter_supported' : false } + \ 'request_parameter_supported' : false, \ + \ 'claims_locales_supported' : {'en'}, \ + \ 'ui_locales_supported' : {'en'} } ##----------------------------------------- Database properties -------------------------------------------------------- @@ -352,10 +378,13 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'password.regex': '\\S*', 'wallet.config': ${mosip.esignet.ui.wallet.config} } ## ---------------------------------------------- VCI ------------------------------------------------------------------ +# Used to verify audience in the PoP JWT mosip.esignet.vci.identifier=${mosip.esignet.domain.url}${server.servlet.path} mosip.esignet.vci.authn.filter-urls={ '${server.servlet.path}/vci/credential' } -mosip.esignet.vci.authn.issuer-uri=${mosip.esignet.domain.url}${server.servlet.path} -mosip.esignet.vci.authn.jwk-set-uri=${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json +# Change this if the VCI is used with different OAUTH2.0 server +mosip.esignet.vci.authn.issuer-uri=${mosip.esignet.discovery.issuer-id} +mosip.esignet.vci.authn.jwk-set-uri=${mosip.esignet.jwks-uri} + mosip.esignet.vci.authn.allowed-audiences={ '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential' } mosip.esignet.cnonce-expire-seconds=40 From 08532fc625e88f2d069b7baf66cbfcc6fa9a79c4 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Tue, 14 Nov 2023 22:25:09 +0530 Subject: [PATCH 1250/1358] Update esignet-default.properties Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- esignet-default.properties | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 1987148ee1b..bd51e030b6e 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -238,7 +238,10 @@ mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ mosip.esignet.domain.url=https://${mosip.esignet.host} mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} -mosip.esignet.jwks-uri=${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json + +# This property holds ./wellknown/jwks.json URL, +# for local deployments without esignet-ui nginx change the value to ${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json +mosip.esignet.jwks-uri=${mosip.esignet.domain.url}/.well-known/jwks.json mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ From 225baf069b752463ee884f7a335606a4276da1a8 Mon Sep 17 00:00:00 2001 From: Anusha Sunkada <sunkadaeanusha@gmail.com> Date: Wed, 15 Nov 2023 08:49:58 +0530 Subject: [PATCH 1251/1358] Update id-authentication-default.properties Signed-off-by: Anusha Sunkada <sunkadaeanusha@gmail.com> --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 33a59b28377..f1009e30dce 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -632,7 +632,7 @@ mosip.kernel.keymgr.hsm.health.key.app-id=IDA mosip.ida.config.server.file.storage.uri=${spring.cloud.config.uri}/${spring.application.name}/${spring.profiles.active}/${spring.cloud.config.label}/ mosip.ida.vercred.context.url.map={"https://www.w3.org/ns/odrl.jsonld" : "odrl.jsonld", "https://www.w3.org/2018/credentials/v1" : "cred-v1.jsonld", "https://${mosip.api.public.host}/.well-known/mosip-ida-context.json" : "mosip-ida-context.json"} mosip.ida.vercred.context.uri=vccontext-ida.jsonld -mosip.ida.vercred.id.url=https://ida.mosip.net/credentials/ +mosip.ida.vercred.id.url=https://${mosip.api.public.host}/credentials/ mosip.ida.vercred.issuer.url=https://${mosip.api.public.host}/.well-known/ida-controller.json mosip.ida.vercred.proof.purpose=assertionMethod mosip.ida.vercred.proof.type=RsaSignature2018 From 795886f96b11bd99b64b4994fdcd8d53b34794ae Mon Sep 17 00:00:00 2001 From: bhumi46 <111699703+bhumi46@users.noreply.github.com> Date: Wed, 29 Nov 2023 14:55:27 +0530 Subject: [PATCH 1252/1358] [DSD-3906]Updated mock-identity-system-default.properties Signed-off-by: bhumi46 <111699703+bhumi46@users.noreply.github.com> --- mock-identity-system-default.properties | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/mock-identity-system-default.properties b/mock-identity-system-default.properties index bd75f144d7d..c0c57a255b7 100644 --- a/mock-identity-system-default.properties +++ b/mock-identity-system-default.properties @@ -100,4 +100,8 @@ spring.jpa.database-platform=org.hibernate.dialect.PostgreSQL95Dialect spring.jpa.show-sql=false spring.jpa.hibernate.ddl-auto=none spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true -mosip.esignet.mock.authenticator.ida.otp-channels=email,phone \ No newline at end of file +mosip.esignet.mock.authenticator.ida.otp-channels=email,phone + +mosip.kernel.keymgr.hsm.health.check.enabled=false +mosip.kernel.keymgr.hsm.health.key.app-id=MOCK_AUTHENTICATION_SERVICE +mosip.kernel.keymgr.hsm.healthkey.ref-id=HEALTH_KEY From 914e342c3bad40fc64d8badf0db2ebff0c1a6c2a Mon Sep 17 00:00:00 2001 From: Swati Goel <meet2swati@gmail.com> Date: Fri, 15 Dec 2023 11:41:26 +0530 Subject: [PATCH 1253/1358] [DSD-3960]: Update mimoto and inji configuration Signed-off-by: Swati Goel <meet2swati@gmail.com> --- inji-default.properties | 6 ++++++ mimoto-default.properties | 25 ++++++++++++++++++++--- mimoto-issuers-config.json | 41 ++++++++++++++++++++++++++++++++++++++ 3 files changed, 69 insertions(+), 3 deletions(-) create mode 100644 mimoto-issuers-config.json diff --git a/inji-default.properties b/inji-default.properties index 953cd3b81a2..b55cb175bf2 100644 --- a/inji-default.properties +++ b/inji-default.properties @@ -16,5 +16,11 @@ mosip.inji.audience=ida-binding mosip.inji.issuer=residentapp # warning screen domain name mosip.inji.warningDomainName=https://${mosip.api.public.host} +# inji documentation url +mosip.inji.aboutInjiUrl=https://docs.mosip.io/inji +# minimum storage space required for making audit entry in MB +mosip.inji.minStorageRequiredForAuditEntry=2 # minimum storage space required for downloading / receiving vc in MB mosip.inji.minStorageRequired=5 +#timeout for vc download api via openid4vci flow in milliseconds +mosip.inji.openId4VCIDownloadVCTimeout=30000 \ No newline at end of file diff --git a/mimoto-default.properties b/mimoto-default.properties index 300b8de2d6d..564acfb0096 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -2,6 +2,7 @@ public.url=${mosip.api.internal.url}/residentmobileapp mosip.resident.base.url=${mosip.resident.url}/resident/v1 +mosip.esignet.base.url=${mosip.esignet.host}/v1/esignet idp.binding.base.url=https://${mosip.api.public.host}/v1/esignet/binding RESIDENT_OTP=${mosip.resident.base.url}/req/otp @@ -12,6 +13,7 @@ RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/individualId/otp RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/status + BINDING_OTP=${idp.binding.base.url}/binding-otp WALLET_BINDING=${idp.binding.base.url}/wallet-binding @@ -99,10 +101,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara,kan,hin,tam,fra mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=kan,ara,fra,tam,hin mosip.mandatory-languages=eng # mosip.primary-language=eng @@ -126,7 +128,7 @@ mosip.kernel.tokenid.length=36 # log level logging.level.root=WARN -logging.level.io.mosip=DEBUG +logging.level.io.mosip=INFO # logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG logging.level.org.springframework.http.client=DEBUG @@ -183,3 +185,20 @@ wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] + +#mosip notification otp channel config +mosip.notificationtype=SMS|EMAIL|PHONE + +# OpenID +# Configurations related to openid4vc +mosip.openid.issuers=mimoto-issuers-config.json +GET_TOKEN=${public.internet.url}/v1/esignet/login/oauth/token +mosip.oidc.esignet.token.endpoint=https://${mosip.esignet.base.url}/oauth/v2/token +mosip.oidc.esignet.aud=https://${mosip.esignet.base.url}/oauth/v2/token +mosip.oidc.client.id=${mimoto.oidc.partner.clientid} +mosip.oidc.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer +mosip.oidc.p12.filename=oidckeystore.p12 +mosip.oidc.p12.password=${mimoto.oidc.keystore.password} +mosip.oidc.p12.alias=mpartner-default-mimotooidc +#Property to test the mounted p12 file extraction of openid4vci flow. +mosip.oidc.p12.path=certs/ \ No newline at end of file diff --git a/mimoto-issuers-config.json b/mimoto-issuers-config.json new file mode 100644 index 00000000000..ef317989e4d --- /dev/null +++ b/mimoto-issuers-config.json @@ -0,0 +1,41 @@ +{ + "issuers": [ + { + "credential_issuer": "Mosip", + "display": [ + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "digits-icon" + }, + "language": "en" + } + ], + "protocol": "OTP" + }, + { + "credential_issuer": "ESignet", + "display": [ + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "esignet-logo" + }, + "language": "en" + } + ], + "protocol": "OpenId4VCI", + "client_id": "${mimoto.oidc.partner.clientid}", + "scopes_supported": ["mosip_identity_vc_ldp"], + "additional_headers": { "Accept": "application/json" }, + ".well-known": null, + "redirect_uri": "io.mosip.residentapp.inji://oauthredirect", + "authorization_endpoint": "https://${mosip.esignet.host}/authorize", + "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token", + "credential_endpoint": "https://${mosip.esignet.host}/v1/esignet/vci/credential", + "credential_audience": "https://${mosip.esignet.host}/v1/esignet" + } + ] +} \ No newline at end of file From 8daf0b59cc4570f79aa1d499eb08e448491ba0bf Mon Sep 17 00:00:00 2001 From: Swati Goel <meet2swati@gmail.com> Date: Fri, 15 Dec 2023 16:13:51 +0530 Subject: [PATCH 1254/1358] [DSD-3960]: Update mimoto and inji configuration (#4957) Signed-off-by: Swati Goel <meet2swati@gmail.com> --- inji-default.properties | 6 ++++++ mimoto-default.properties | 25 ++++++++++++++++++++--- mimoto-issuers-config.json | 41 ++++++++++++++++++++++++++++++++++++++ 3 files changed, 69 insertions(+), 3 deletions(-) create mode 100644 mimoto-issuers-config.json diff --git a/inji-default.properties b/inji-default.properties index 953cd3b81a2..b55cb175bf2 100644 --- a/inji-default.properties +++ b/inji-default.properties @@ -16,5 +16,11 @@ mosip.inji.audience=ida-binding mosip.inji.issuer=residentapp # warning screen domain name mosip.inji.warningDomainName=https://${mosip.api.public.host} +# inji documentation url +mosip.inji.aboutInjiUrl=https://docs.mosip.io/inji +# minimum storage space required for making audit entry in MB +mosip.inji.minStorageRequiredForAuditEntry=2 # minimum storage space required for downloading / receiving vc in MB mosip.inji.minStorageRequired=5 +#timeout for vc download api via openid4vci flow in milliseconds +mosip.inji.openId4VCIDownloadVCTimeout=30000 \ No newline at end of file diff --git a/mimoto-default.properties b/mimoto-default.properties index 300b8de2d6d..564acfb0096 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -2,6 +2,7 @@ public.url=${mosip.api.internal.url}/residentmobileapp mosip.resident.base.url=${mosip.resident.url}/resident/v1 +mosip.esignet.base.url=${mosip.esignet.host}/v1/esignet idp.binding.base.url=https://${mosip.api.public.host}/v1/esignet/binding RESIDENT_OTP=${mosip.resident.base.url}/req/otp @@ -12,6 +13,7 @@ RESIDENT_AUTH_LOCK=${mosip.resident.base.url}/req/auth-lock RESIDENT_AUTH_UNLOCK=${mosip.resident.base.url}/req/auth-unlock RESIDENT_INDIVIDUALID_OTP=${mosip.resident.base.url}/individualId/otp RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/status + BINDING_OTP=${idp.binding.base.url}/binding-otp WALLET_BINDING=${idp.binding.base.url}/wallet-binding @@ -99,10 +101,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,fra +mosip.supported-languages=eng,ara,kan,hin,tam,fra mosip.template-language=eng -mosip.optional-languages=ara,fra +mosip.optional-languages=kan,ara,fra,tam,hin mosip.mandatory-languages=eng # mosip.primary-language=eng @@ -126,7 +128,7 @@ mosip.kernel.tokenid.length=36 # log level logging.level.root=WARN -logging.level.io.mosip=DEBUG +logging.level.io.mosip=INFO # logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG logging.level.org.springframework.http.client=DEBUG @@ -183,3 +185,20 @@ wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] + +#mosip notification otp channel config +mosip.notificationtype=SMS|EMAIL|PHONE + +# OpenID +# Configurations related to openid4vc +mosip.openid.issuers=mimoto-issuers-config.json +GET_TOKEN=${public.internet.url}/v1/esignet/login/oauth/token +mosip.oidc.esignet.token.endpoint=https://${mosip.esignet.base.url}/oauth/v2/token +mosip.oidc.esignet.aud=https://${mosip.esignet.base.url}/oauth/v2/token +mosip.oidc.client.id=${mimoto.oidc.partner.clientid} +mosip.oidc.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer +mosip.oidc.p12.filename=oidckeystore.p12 +mosip.oidc.p12.password=${mimoto.oidc.keystore.password} +mosip.oidc.p12.alias=mpartner-default-mimotooidc +#Property to test the mounted p12 file extraction of openid4vci flow. +mosip.oidc.p12.path=certs/ \ No newline at end of file diff --git a/mimoto-issuers-config.json b/mimoto-issuers-config.json new file mode 100644 index 00000000000..ef317989e4d --- /dev/null +++ b/mimoto-issuers-config.json @@ -0,0 +1,41 @@ +{ + "issuers": [ + { + "credential_issuer": "Mosip", + "display": [ + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "digits-icon" + }, + "language": "en" + } + ], + "protocol": "OTP" + }, + { + "credential_issuer": "ESignet", + "display": [ + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "esignet-logo" + }, + "language": "en" + } + ], + "protocol": "OpenId4VCI", + "client_id": "${mimoto.oidc.partner.clientid}", + "scopes_supported": ["mosip_identity_vc_ldp"], + "additional_headers": { "Accept": "application/json" }, + ".well-known": null, + "redirect_uri": "io.mosip.residentapp.inji://oauthredirect", + "authorization_endpoint": "https://${mosip.esignet.host}/authorize", + "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token", + "credential_endpoint": "https://${mosip.esignet.host}/v1/esignet/vci/credential", + "credential_audience": "https://${mosip.esignet.host}/v1/esignet" + } + ] +} \ No newline at end of file From 18b44841fc73a435094b3417c33a0bcba0d755bb Mon Sep 17 00:00:00 2001 From: Aiham Hasan <89243555+aihamh@users.noreply.github.com> Date: Wed, 3 Jan 2024 20:11:13 +0530 Subject: [PATCH 1255/1358] [MOSIP-29805] Update pre-registration-default.properties Signed-off-by: Aiham Hasan <89243555+aihamh@users.noreply.github.com> --- pre-registration-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/pre-registration-default.properties b/pre-registration-default.properties index a19823852ef..347f92e848a 100644 --- a/pre-registration-default.properties +++ b/pre-registration-default.properties @@ -373,6 +373,8 @@ preregistration.ui.version=1.2.0 preregistration.contact.email=contact@dev.mosip.net preregistration.contact.phone=9999999999 +mosip.preregistration.anonymous-profile-username=admin + # Determines to maintain iternal cycle & make sure value is not null (any value greater than zero) mosip.preregistration.auto.logout.ping=30 From 7fbf12d77ad73026b7c7fd34e859df37f74558dc Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> Date: Mon, 8 Jan 2024 16:58:59 +0530 Subject: [PATCH 1256/1358] MOSIP-29935 and MOSIP-27210 config changes Signed-off-by: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> --- registration-processor-camel-routes-new-default.xml | 4 ++++ registration-processor-camel-routes-opencrvs_new-default.xml | 4 ++++ registration-processor-camel-routes-update-default.xml | 4 ++++ registration-processor-default.properties | 5 +++++ 4 files changed, 17 insertions(+) diff --git a/registration-processor-camel-routes-new-default.xml b/registration-processor-camel-routes-new-default.xml index ef3fe0ba7ee..ac92bf762e8 100644 --- a/registration-processor-camel-routes-new-default.xml +++ b/registration-processor-camel-routes-new-default.xml @@ -292,6 +292,10 @@ <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> </when> <otherwise> <to uri="eventbus://bio-dedupe-bus-in" /> diff --git a/registration-processor-camel-routes-opencrvs_new-default.xml b/registration-processor-camel-routes-opencrvs_new-default.xml index 8f579740cf4..7eecb7fdad0 100644 --- a/registration-processor-camel-routes-opencrvs_new-default.xml +++ b/registration-processor-camel-routes-opencrvs_new-default.xml @@ -152,6 +152,10 @@ <jsonpath>$.[?(@['isValid'] == false && @['internalError'] == false)]</jsonpath> <to uri="workflow-cmd://complete-as-rejected" /> <to uri="workflow-cmd://anonymous-profile" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 73544fdc53c..733b5f8c969 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -314,6 +314,10 @@ <when> <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> <to uri="eventbus://manual-adjudication-bus-in" /> + </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['tags']['AGE_GROUP'] == 'INFANT')]</jsonpath> + <to uri="eventbus://verification-bus-in" /> </when> <otherwise> <to uri="eventbus://bio-dedupe-bus-in" /> diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f77940dd4ce..dbcf46e0170 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -395,6 +395,11 @@ mosip.regproc.workflow-manager.action.job.days_of_month=* mosip.regproc.workflow-manager.action.job.months=* #schedular weeks configuration mosip.regproc.workflow-manager.action.job.days_of_week=* +# The packets which are satisfied below filter will restart from restart-from-stage +# For example BioDedupeStage:SUCCESS is given in filter and stage is SecurezoneNotificationStage then packet which latest transaction status code is SUCCESS and its in in BioDedupeStage then it will restart processing from SecurezoneNotificationStage. +registration.processor.reprocess.restart-from-stage=SecurezoneNotificationStage +# * means it will consider SUCCESS,REPROCESS,IN_PROGRESS latest transaction status codes, any stage having both * and another status, it will be considered to have all the statuses for that stage +registration.processor.reprocess.restart-trigger-filter=DemodedupStage:SUCCESS,BioDedupeStage:*,UinGeneratorStage:REPROCESS mosip.regproc.workflow.manager.eventbus.kafka.commit.type=single From cf6648b471e5700d03ca5a10d81b321a5072a51f Mon Sep 17 00:00:00 2001 From: Monobikash Das <43202165+MonobikashDas@users.noreply.github.com> Date: Thu, 23 Nov 2023 19:32:04 +0530 Subject: [PATCH 1257/1358] Merge pull request #4811 from MonobikashDas/develop1-v3 (#4820) (#4843) MOSIP-28121 : rename print stage Co-authored-by: Vishwa <visu.vs1@gmail.com> Signed-off-by: Monobikash Das <monobikash.das@mindtree.com> --- ...tration-processor-credential-partners.json | 30 +++++++++++++++++++ registration-processor-default.properties | 29 +++++++++--------- 2 files changed, 45 insertions(+), 14 deletions(-) create mode 100644 registration-processor-credential-partners.json diff --git a/registration-processor-credential-partners.json b/registration-processor-credential-partners.json new file mode 100644 index 00000000000..1c74ee4d6c2 --- /dev/null +++ b/registration-processor-credential-partners.json @@ -0,0 +1,30 @@ +{ + "partners": [ + { + "id": "digitalcardPartner", + "partnerId": "mpartner-default-digitalcard", + "credentialType": "PDFCard", + "template": "RPR_UIN_CARD_TEMPLATE", + "appIdBasedCredentialIdSuffix": ".pdf", + "process": null, + "metaInfoFields": null + }, + { + "id": "printPartner", + "partnerId": "mpartner-default-print", + "credentialType": "euin", + "template": "RPR_UIN_CARD_TEMPLATE", + "appIdBasedCredentialIdSuffix": null, + "process": null, + "metaInfoFields": null + }, + { + "id": "opencrvsPartner", + "partnerId": "opencrvs-partner", + "type": "opencrvs", + "template": "RPR_UIN_CARD_TEMPLATE", + "process": ["OPENCRVS_NEW"], + "metaInfoFields": ["opencrvsBRN"] + } + ] +} diff --git a/registration-processor-default.properties b/registration-processor-default.properties index f77940dd4ce..1fde777caf1 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -477,14 +477,15 @@ mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.classname=io.mosip. mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.version=0.9 mosip.biometric.sdk.providers.face.mosip-ref-impl-sdk-client.format.url.mock-1.1=${mosip.biosdk.default.service.url} -## Printing +## Credential requestor mosip.registration.processor.credentialtype=euin mosip.registration.processor.encrypt=false mosip.registration.processor.credential.request.service.id=mosip.credential.request.generator - -# this property is used to define issuers eg partnerid -mosip.registration.processor.issuer=mpartner-default-print +mosip.registration.processor.credential.partner-profiles=registration-processor-credential-partners.json +mosip.registration.processor.credential.default.partner-ids=digitalcardPartner,opencrvsPartner +mosip.registration.processor.credential.conditional.partner-id-map={'printPartner':'{"14023"} contains postalCode'} +mosip.registration.processor.credential.conditional.no-match-partner-ids=printPartner ## Stage common #After this time intervel, message should be considered as expired (In seconds), @@ -607,7 +608,7 @@ mosip.regproc.quality.classifier.server.servlet.path=/registrationprocessor/v1/q # Below quality ranges map should contain proper quality group name and quality range, any overlap of the quality # range will result in a random behaviour of tagging. In range, Lower value is inclusive and Upper value is Exclusive. # Example : When the Biometric score is 39.9. this will be included in level-4 which ranges between 30-40. -# Example : when the Biometric score is 40. this will be included in level-5 which ranges between 40-50. +# Example : when the Biometric score is 40. this will be included in level-5 which ranges between 40-50. mosip.regproc.quality.classifier.tagging.quality.ranges={'level-1':'0-10','level-2':'10-20','level-3':'20-30','level-4':'30-40','level-5':'40-50','level-6':'50-60','level-7':'60-70','level-8':'70-80','level-9':'80-90','level-10':'90-101'} # Quality Tag Prefix @@ -739,15 +740,15 @@ mosip.regproc.message.sender.server.port=8088 mosip.regproc.message.sender.eventbus.port=5721 mosip.regproc.message.sender.server.servlet.path=/registrationprocessor/v1/sender-stage -#printing-stage -mosip.regproc.printing.eventbus.kafka.commit.type=single -mosip.regproc.printing.eventbus.kafka.max.poll.records=5 -mosip.regproc.printing.eventbus.kafka.poll.frequency=100 -mosip.regproc.printing.eventbus.kafka.group.id=printing-stage -mosip.regproc.printing.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} -mosip.regproc.printing.server.port=8097 -mosip.regproc.printing.server.servlet.path=/registrationprocessor/v1/print-stage -mosip.regproc.printing.eventbus.port=5722 +#credential-requestor-stage +mosip.regproc.credentialrequestor.eventbus.kafka.commit.type=single +mosip.regproc.credentialrequestor.eventbus.kafka.max.poll.records=100 +mosip.regproc.credentialrequestor.eventbus.kafka.poll.frequency=100 +mosip.regproc.credentialrequestor.eventbus.kafka.group.id=credential-requestor-stage +mosip.regproc.credentialrequestor.message.expiry-time-limit=${mosip.regproc.common.stage.message.expiry-time-limit} +mosip.regproc.credentialrequestor.server.port=8097 +mosip.regproc.credentialrequestor.server.servlet.path=/registrationprocessor/v1/credentialrequestor-stage +mosip.regproc.credentialrequestor.eventbus.port=5722 #opencrvs-stage mosip.regproc.opencrvs.eventbus.kafka.commit.type=single From 4a27ab5f8eaf013e4768438d521f39af13034cd7 Mon Sep 17 00:00:00 2001 From: "Ritik Jain (IN74108)" <ritik.61074108@ltimindtree.com> Date: Wed, 17 Jan 2024 11:37:22 +0530 Subject: [PATCH 1258/1358] updated config Signed-off-by: Ritik Jain (IN74108) <ritik.61074108@ltimindtree.com> --- id-repository-default.properties | 13 ++++++++++--- identity-mapping.json | 3 +++ 2 files changed, 13 insertions(+), 3 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 91f7b0ef5d9..f27ae584b64 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -382,7 +382,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard,mpartner-default-mobile #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha @@ -398,6 +398,7 @@ object.store.s3.readlimit=10000000 # Roles mosip.role.idrepo.credentialrequest.postrequestgenerator=CREDENTIAL_REQUEST,ID_REPOSITORY +mosip.role.idrepo.credentialrequest.postv2requestgeneratorrid=CREDENTIAL_REQUEST,ID_REPOSITORY mosip.role.idrepo.credentialrequest.getcancelrequestid=CREDENTIAL_REQUEST,ID_REPOSITORY mosip.role.idrepo.credentialrequest.getgetrequestid=CREDENTIAL_REQUEST mosip.role.idrepo.credentialrequest.getgetrequestids=CREDENTIAL_REQUEST @@ -426,5 +427,11 @@ mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.mask.function.identityAttributes=convertToMaskDataFormat - -mosip.role.idrepo.credentialrequest.postv2requestgeneratorrid=CREDENTIAL_REQUEST,ID_REPOSITORY \ No newline at end of file +mosip.credential.service.fetch-identity.type=bio + +mosip.idrepo.credential.request.enable-convention-based-id=false +mosip.idrepo.credential-request-v2.rest.uri=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/v2/requestgenerator/{rid} +mosip.idrepo.credential-request-v2.rest.httpMethod=POST +mosip.idrepo.credential-request-v2.rest.headers.mediaType=application/json +mosip.idrepo.credential-request-v2.rest.timeout=100 +mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} \ No newline at end of file diff --git a/identity-mapping.json b/identity-mapping.json index b45c25a8d46..cac73092025 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -3,6 +3,9 @@ "IDSchemaVersion": { "value": "IDSchemaVersion" }, + "selectedHandles" : { + "value" : "selectedHandles" + }, "name": { "value": "fullName" }, From 3f80ae8e3acce980eddba4bc8912e29d22133e62 Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Thu, 18 Jan 2024 13:43:57 +0530 Subject: [PATCH 1259/1358] added config changes from camdgc-v3 Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- amr-acr-mapping.json | 2 + application-default.properties | 2 +- esignet-default.properties | 22 ++++- id-authentication-default.properties | 1 + id-repository-default.properties | 11 ++- identity-mapping.json | 6 +- signup-default.properties.properties | 132 +++++++++++++++++++++++++++ 7 files changed, 170 insertions(+), 6 deletions(-) create mode 100644 signup-default.properties.properties diff --git a/amr-acr-mapping.json b/amr-acr-mapping.json index e6802646629..367cea85b3c 100644 --- a/amr-acr-mapping.json +++ b/amr-acr-mapping.json @@ -1,11 +1,13 @@ { "amr" : { + "PWD" : [{"type" : "PWD" }], "PIN" : [{ "type": "PIN" }], "OTP" : [{ "type": "OTP" }], "Wallet" : [{ "type": "WLA" }], "L1-bio-device" : [{ "type": "BIO", "count": 1 }] }, "acr_amr" : { + "mosip:idp:acr:password" : ["PWD"], "mosip:idp:acr:static-code" : ["PIN"], "mosip:idp:acr:generated-code" : ["OTP"], "mosip:idp:acr:linked-wallet" : [ "Wallet" ], diff --git a/application-default.properties b/application-default.properties index f76c018be24..4a12b37b443 100644 --- a/application-default.properties +++ b/application-default.properties @@ -47,7 +47,6 @@ mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub mosip.regproc.biosdk.url=http://biosdk-service.biosdk -mosip.idrepo.biosdk.url=http://biosdk-service.biosdk mosip.consolidator.url=http://websub-consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida @@ -55,6 +54,7 @@ mosip.ida.auth.url=http://ida-auth.ida mosip.ida.otp.url=http://ida-otp.ida mosip.resident.url=http://resident.resident mosip.artifactory.url=http://artifactory.artifactory +mosip.esignet.service.url=http://esignet.esignet kafka.profile=kafka.svc.cluster.local kafka.port=9092 mosip.digitalcard.service.url=http://digitalcard.digitalcard diff --git a/esignet-default.properties b/esignet-default.properties index bd51e030b6e..75350c53a98 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -44,8 +44,11 @@ mosip.esignet.authentication-expire-in-secs=120 mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ '${server.servlet.path}/authorization/v2/authenticate', \ + '${server.servlet.path}/authorization/v3/authenticate', \ '${server.servlet.path}/authorization/auth-code'} +mosip.esignet.captcha.required.auth-factors={'PWD'} + ## ------------------------------------------ e-Signet binding --------------------------------------------------------- mosip.esignet.binding.salt-length=16 @@ -243,6 +246,8 @@ mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.pa # for local deployments without esignet-ui nginx change the value to ${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json mosip.esignet.jwks-uri=${mosip.esignet.domain.url}/.well-known/jwks.json +mosip.esignet.token.endpoint=${mosip.esignet.domain.url}${server.servlet.path}/oauth/v2/token + mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' , \ @@ -370,15 +375,26 @@ mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo- 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' },{'wallet.name': 'Inji Mobile App1', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }} +mosip.esignet.ui.signup.config={'signup.banner': true, 'signup.url': 'https://${mosip.signup.host}/signup'} + +mosip.esignet.ui.forgot-password.config={'forgot-password': true, 'forgot-password.url': 'https://${mosip.signup.host}/reset-password'} + mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ 'resend.otp.delay.secs': 180, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ - 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : '', \ + 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'otp,pwd', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': 4501-4600, \ - 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \ - 'password.regex': '\\S*', 'wallet.config': ${mosip.esignet.ui.wallet.config} } + 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ + 'password.max-length': 20, \ + 'username.regex': '^[1-9][0-9]{7,8}$',\ + 'username.prefix': '+855', \ + 'username.postfix': '@phone', \ + 'username.max-length': 9, \ + 'username.input-type': 'number', 'wallet.config': ${mosip.esignet.ui.wallet.config}, \'signup.config': ${mosip.esignet.ui.signup.config}, \ + 'forgot-password.config': ${mosip.esignet.ui.forgot-password.config}, \ + 'error.banner.close-timer': 10 \ } ## ---------------------------------------------- VCI ------------------------------------------------------------------ # Used to verify audience in the PoP JWT diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f1009e30dce..0f558f3627b 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -638,3 +638,4 @@ mosip.ida.vercred.proof.purpose=assertionMethod mosip.ida.vercred.proof.type=RsaSignature2018 mosip.ida.vercred.proof.verificationmethod=https://${mosip.api.public.host}/.well-known/ida-public-key.json mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredential +mosip.ida.handle-types.regex={ '@phone' : '^\\+855[1-9][0-9]{7,9}@phone$' } diff --git a/id-repository-default.properties b/id-repository-default.properties index 91f7b0ef5d9..77e8fe21c31 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -427,4 +427,13 @@ mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.mask.function.identityAttributes=convertToMaskDataFormat -mosip.role.idrepo.credentialrequest.postv2requestgeneratorrid=CREDENTIAL_REQUEST,ID_REPOSITORY \ No newline at end of file +mosip.role.idrepo.credentialrequest.postv2requestgeneratorrid=CREDENTIAL_REQUEST,ID_REPOSITORY + +mosip.idrepo.credential.request.enable-convention-based-id=true +mosip.idrepo.credential-request-v2.rest.uri=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/v2/requestgenerator/{rid} +mosip.idrepo.credential-request-v2.rest.httpMethod=POST +mosip.idrepo.credential-request-v2.rest.headers.mediaType=application/json +mosip.idrepo.credential-request-v2.rest.timeout=100 + +mosip.idrepo.identity.disable-uin-based-credential-request=false +mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} \ No newline at end of file diff --git a/identity-mapping.json b/identity-mapping.json index b45c25a8d46..47e3e9e7e6f 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -3,6 +3,9 @@ "IDSchemaVersion": { "value": "IDSchemaVersion" }, + "selectedHandles" : { + "value" : "selectedHandles" + }, "name": { "value": "fullName" }, @@ -129,7 +132,8 @@ }, "country": { "value": "province" - } + }, + "password" : { "value" : "password" } }, "metaInfo": { "value": "metaInfo" diff --git a/signup-default.properties.properties b/signup-default.properties.properties new file mode 100644 index 00000000000..99d63d080f2 --- /dev/null +++ b/signup-default.properties.properties @@ -0,0 +1,132 @@ +#---------------------------------------------------------------------------------------------------------------------------- + +mosip.signup.id-schema.version=0.2 +mosip.signup.identifier.regex=^\\+855[1-9]\\d{7,8}$ +mosip.signup.identifier.prefix=+855 +mosip.signup.supported-languages={'khm','eng'} +mosip.signup.password.pattern=^(?=.*[0-9])(?=.*[a-z])(?=.*[A-Z])(?=.*[\\x5F\\W])(?=.{8,20})[a-zA-Z0-9\\x5F\\W]{8,20}$ +mosip.signup.password.max-length=20 +mosip.signup.password.min-length=8 +mosip.signup.fullname.pattern=^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u0020]{1,30}$ + +## Time given to generate and verify the challenge in seconds. +## Default resend delay is 60 seconds, with 3 attempts, so 60*3=180 seconds. +## Adding 10 seconds buffer to default 180 seconds = 190 seconds. +## so 190 seconds is the Generate and verify cookie max age. +mosip.signup.unauthenticated.txn.timeout=7200 +mosip.signup.challenge.resend-attempt=3 +mosip.signup.challenge.resend-delay=60 + +## Time given to complete registration and get back the status of the registration in seconds. +## Considering 5 minutes(300 seconds) to complete registration form and submit. +## Default status request limit is 10 with 20 seconds request delay, 10*20=200 seconds +## so 300+200=500 seconds is the authentication cookie max age. +mosip.signup.register.txn.timeout=7200 +mosip.signup.status-check.txn.timeout=200 +mosip.signup.status.request.delay=20 +mosip.signup.status.request.limit=10 + +## ------------------------------------- challenge configuration ------------------------------------------------------- +mosip.signup.supported.generate-challenge-type=OTP +mosip.signup.supported.challenge-format-types={'alpha-numeric', 'base64url-encoded-json'} +mosip.signup.supported.challenge-types={'OTP', 'KBA'} +mosip.signup.supported.challenge.otp.length=6 + +## ------------------------------------- Cache configuration ----------------------------------------------------------- + +spring.cache.type=simple + +#spring.cache.type=redis +#spring.cache.cache-names=${mosip.esignet.cache.names} +#spring.redis.host=localhost +#spring.redis.port=6379 +management.health.redis.enabled=false + +mosip.esignet.cache.names=challenge-generated,challenge-verified,status-check,blocked_identifier +mosip.esignet.cache.size={'challenge-generated': 2000,'challenge-verified': 2000,'status-check': 2000,'blocked_identifier':2000} +mosip.esignet.cache.expire-in-seconds={'challenge-generated': ${mosip.signup.unauthenticated.txn.timeout},\ + 'challenge-verified': ${mosip.signup.register.txn.timeout},\ + 'status-check': ${mosip.signup.status-check.txn.timeout},\ + 'blocked_identifier': 300 } + +## ------------------------------------- Auth adapter ------------------------------------------------------------------ + +auth.server.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +auth-token-generator.rest.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.kernel.auth.adapter.ssl-bypass=true +mosip.kernel.auth.appid-realm-map={admin:'mosip',crereq:'mosip',creser:'mosip',idrepo:'mosip', signup:'mosip'} +mosip.kernel.auth.appids.realm.map={admin:'mosip',crereq:'mosip',creser:'mosip',idrepo:'mosip','regproc':'mosip', signup:'mosip'} + +mosip.iam.adapter.clientid=mosip-signup-client +#mosip.iam.adapter.clientsecret=${mosip.signup.client.secret} +mosip.iam.adapter.clientsecret=LBIZwf0IGrFlkuXi +mosip.iam.adapter.appid=signup +mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip +mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.iam.adapter.validate-expiry-check-rate=15 +mosip.iam.adapter.renewal-before-expiry-interval=15 +mosip.iam.adapter.self-token-renewal-enable=true + +mosip.service-context=${server.servlet.context-path} +mosip.service.end-points=/**/* +mosip.service.exclude.auth.allowed.method=GET,POST + +mosip.security.csrf-enable=true +mosip.security.cors-enable=true + +## -------------------------- External endpoints ----------------------------------------------------------------------- +mosip.signup.generate-challenge.endpoint=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate +mosip.signup.add-identity.endpoint=${mosip.idrepo.identity.url}/idrepository/v1/identity/ +mosip.signup.generate-hash.endpoint=${mosip.kernel.keymanager.url}/v1/keymanager/generateArgon2Hash +mosip.signup.get-uin.endpoint=${mosip.kernel.idgenerator.url}/v1/idgenerator/uin +mosip.signup.send-notification.endpoint=https://api-internal.camdgc-dev.mosip.net/v1/notifier/sms/send +mosip.signup.add-identity.request.id=mosip.id.create +mosip.signup.add-identity.request.version=v1 + +## --------------------------------- captcha validator------------------------------------------------------------------ +mosip.signup.send-challenge.captcha-required=false +mosip.signup.integration.captcha-validator=GoogleRecaptchaValidatorService +mosip.signup.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify +mosip.signup.captcha-validator.site-key=${signup.captcha.site.key} +mosip.signup.captcha-validator.secret=${signup.captcha.secret.key} + +## ----------------------------- UI-Config ----------------------------------------------------------------------------- +mosip.signup.ui.config.key-values={\ +'identifier.pattern': '${mosip.signup.identifier.regex}', \ +'identifier.prefix': '${mosip.signup.identifier.prefix}', \ +'captcha.site.key': '${mosip.signup.captcha-validator.site-key}', \ +'otp.length': ${mosip.signup.supported.challenge.otp.length}, \ +'otp.secret': true, \ +'password.pattern': '${mosip.signup.password.pattern}', \ +'password.length.max': ${mosip.signup.password.max-length}, \ +'password.length.min': ${mosip.signup.password.min-length}, \ +'challenge.timeout': ${mosip.signup.challenge.resend-delay}, \ +'resend.attempts': ${mosip.signup.challenge.resend-attempt}, \ +'resend.delay': ${mosip.signup.challenge.resend-delay}, \ +'fullname.pattern': '${mosip.signup.fullname.pattern}', \ +'status.request.delay': ${mosip.signup.status.request.delay}, \ +'status.request.limit': ${mosip.signup.status.request.limit}, \ +'popup.timeout': 10, \ +'signin.redirect-url': 'https://esignet.camdgc-dev.mosip.net/authorize', \ +'identifier.allowed.characters': '^[0-9]+', \ +'identifier.length.min': 8, \ +'identifier.length.max': 9, \ +'fullname.allowed.characters': '^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u0020]', \ +'fullname.length.min': 1, \ +'fullname.length.max': 30 \ +} +## ----------------------------- SMS-message ----------------------------------------------------------------------------- + +mosip.signup.sms-notification-template.send-otp.khm=???? {challenge} ????????????????????? KhID ????????? +mosip.signup.sms-notification-template.send-otp.eng=Use {challenge} to verify your KhID account. +mosip.signup.sms-notification-template.success-registration.khm=??????????????????? KhID ?????????? +mosip.signup.sms-notification-template.success-registration.eng=You successfully registered to KhID account. +mosip.signup.sms-notification-template.forgot-passsword.khm=\u17a2\u17d2\u1793\u1780\u1794\u17b6\u1793\u1795\u17d2\u179b\u17b6\u179f\u17cb\u1794\u17d2\u178a\u17bc\u179a\u1796\u17b6\u1780\u17d2\u1799\u179f\u1798\u17d2\u1784\u17b6\u178f\u17cb KhID \u178a\u17c4\u1799\u1787\u17c4\u1782\u1787\u17d0\u1799\u17d4 +mosip.signup.sms-notification-template.forgot-passsword.eng=You successfully changed KhID password. + +#------------------------------------------ Others --------------------------------------------------------------------- +logging.level.io.mosip.signup=DEBUG +logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file From 262522f4a90e13969991c546736e644aa27d6809 Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Thu, 18 Jan 2024 16:15:08 +0530 Subject: [PATCH 1260/1358] added config changes from camdgc-v3 Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- application-default.properties | 16 ++++++++-------- esignet-default.properties | 16 ++++++++-------- id-authentication-default.properties | 6 +++--- id-repository-default.properties | 6 +++--- kernel-default.properties | 15 ++++++++------- 5 files changed, 30 insertions(+), 29 deletions(-) diff --git a/application-default.properties b/application-default.properties index 4a12b37b443..9ccc9ecae5d 100644 --- a/application-default.properties +++ b/application-default.properties @@ -94,9 +94,9 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,ara,fra -mosip.right_to_left_orientation=ara -mosip.left_to_right_orientation=eng,fra +mosip.supported-languages=eng,khm +mosip.right_to_left_orientation= +mosip.left_to_right_orientation=eng,khm ## Application IDs mosip.prereg.app-id=PRE_REGISTRATION @@ -216,8 +216,8 @@ mosip.keycloak.issuerUrl=${keycloak.internal.url}/auth/realms/mosip ## iam adapter mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.adapter.ssl-bypass=true -mosip.kernel.auth.appid-realm-map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} -mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip'} +mosip.kernel.auth.appid-realm-map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip',digitalcard:'mosip',signup:'mosip'} +mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip',hotlist:'mosip',digitalcard:'mosip',signup:'mosip'} ## Crypto mosip.kernel.crypto.asymmetric-algorithm-name=RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING @@ -415,11 +415,11 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.hub.url=${mosip.websub.url}/hub/ websub.publish.url=${mosip.websub.url}/hub/ -mosip.mandatory-languages=eng +mosip.mandatory-languages=eng,khm ## Leave blank if no optional langauges -mosip.optional-languages=ara,fra +mosip.optional-languages= mosip.min-languages.count=2 -mosip.max-languages.count=3 +mosip.max-languages.count=2 # These are default languages used for sending notifications mosip.default.template-languages=eng,ara,fra diff --git a/esignet-default.properties b/esignet-default.properties index 75350c53a98..ccc1e10ea38 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -209,7 +209,7 @@ mosip.esignet.cache.key.hash.algorithm=SHA3-256 # Cache size setup is applicable only for 'simple' cache type. # Cache size configuration will not be considered with 'Redis' cache type mosip.esignet.cache.size={'clientdetails' : 200, \ -'preauth': 200, \ +'preauth': 7200, \ 'authenticated': 200, \ 'authcodegenerated': 200, \ 'userinfo': 200, \ @@ -246,11 +246,11 @@ mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.pa # for local deployments without esignet-ui nginx change the value to ${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json mosip.esignet.jwks-uri=${mosip.esignet.domain.url}/.well-known/jwks.json -mosip.esignet.token.endpoint=${mosip.esignet.domain.url}${server.servlet.path}/oauth/v2/token +mosip.esignet.token.endpoint=${mosip.esignet.token.endpoint} mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ - \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ - \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' , \ + \ 'authorization_endpoint': '${mosip.esignet.domain.url}/authorize' , \ + \ 'token_endpoint': '${mosip.esignet.token.endpoint}' , \ \ 'jwks_uri' : '${mosip.esignet.jwks-uri}' , \ \ 'token_endpoint_auth_methods_supported' : ${mosip.esignet.supported.client.auth.methods}, \ \ 'token_endpoint_auth_signing_alg_values_supported' : {'RS256'},\ @@ -260,8 +260,8 @@ mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'response_types_supported' : ${mosip.esignet.supported.response.types}} mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ - \ 'authorization_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/authorize' , \ - \ 'token_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/oauth/token' ,\ + \ 'authorization_endpoint': '${mosip.esignet.domain.url}/authorize' , \ + \ 'token_endpoint': '${mosip.esignet.token.endpoint}' ,\ \ 'userinfo_endpoint' : '${mosip.esignet.domain.url}${server.servlet.path}/oidc/userinfo' ,\ \ 'jwks_uri' : '${mosip.esignet.jwks-uri}' , \ \ 'scopes_supported' : ${mosip.esignet.supported.openid.scopes}, \ @@ -382,7 +382,7 @@ mosip.esignet.ui.forgot-password.config={'forgot-password': true, 'forgot-passwo mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ - 'resend.otp.delay.secs': 180, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ + 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'otp,pwd', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': 4501-4600, \ @@ -462,4 +462,4 @@ mosip.esignet.vci.key-values={ 'credential_issuer': '${mosip.esignet.domain.url} ## -------------------------------------------- Others ---------------------------------------------------------- #logging.level.org.springframework.web.client.RestTemplate=DEBUG -#logging.level.io.mosip.esignet=DEBUG +#logging.level.io.mosip.esignet=INFO diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 0f558f3627b..eac8af7d822 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -287,7 +287,7 @@ ida-cache-ttl-in-days=1 ## To disable cache, set value to NONE, otherwise SIMPLE to enable cache. ## Value is based on CacheType enum provided by Spring Boot ## spring.cache.type=SIMPLE -spring.cache.type=NONE +spring.cache.type=SIMPLE ## Function configs #The modulo value to be calculated for a UIN/VID used to get salt value to be used in UIN/VID hashing @@ -403,9 +403,9 @@ ida.api.version.kycexchange=1.0 static.token.enable=true ## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests -request.idtypes.allowed=VID,UIN +request.idtypes.allowed=UIN,HANDLE ## The ID types to be supported for Internal Authentication/OTP Requests -request.idtypes.allowed.internalauth=UIN,VID +request.idtypes.allowed.internalauth=UIN ## Cryptograpic/Signature verificate related configurations mosip.ida.internal.thumbprint-validation-required=false diff --git a/id-repository-default.properties b/id-repository-default.properties index 77e8fe21c31..f14b0d51e00 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=${s3.pretext.value:}idrepo +mosip.idrepo.objectstore.bucket-name=idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details @@ -248,7 +248,7 @@ mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.d mosip.credential.service.jdbc.user=credentialuser mosip.credential.service.jdbc.password=${db.dbuser.password} mosip.credential.service.jdbc.driver=org.postgresql.Driver -hibernate.hbm2ddl.auto=none +hibernate.hbm2ddl.auto=update spring.jpa.hibernate.ddl-auto=none hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true @@ -269,7 +269,7 @@ mosip.credential.request.crypto-ref-id=credential_request ## Batch job # batch job time intervel in miliseconds -mosip.credential.request.job.timedelay=15000 +mosip.credential.request.job.timedelay=1 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 credential.request.type=auth diff --git a/kernel-default.properties b/kernel-default.properties index 4151ae11a41..4482e510ef7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -21,6 +21,7 @@ # mosip.api.internal.url softhsm.kernel.pin=${softhsm.kernel.security.pin} +softhsm.kernel.security.pin=${softhsm.security.pin} ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager @@ -36,9 +37,9 @@ mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/s mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification -mosip.kernel.sms.enabled=false -mosip.kernel.sms.country.code=91 -mosip.kernel.sms.number.length=10 +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+855 +mosip.kernel.sms.number.length=9 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- @@ -50,8 +51,8 @@ mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+91 -mosip.kernel.sms.number.length=10 +mosip.kernel.sms.country.code=+855 +mosip.kernel.sms.number.length=9 mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy @@ -82,7 +83,7 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.pin} +mosip.kernel.keymanager.hsm.keystore-pass==${softhsm.kernel.security.pin} # Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets mosip.kernel.client.crypto.use-resident-service-module-key=true @@ -430,7 +431,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mosip-toolkit-client,mosip-toolkit-android-client,mpartner-default-digitalcard +auth.server.admin.allowed.audience=mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mpartner-default-digitalcard,mosip-signup-client mosip.iam.adapter.appid=admin From 1e80afdc0d0876b53592afde5653fddfbe0dd923 Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Thu, 18 Jan 2024 22:12:26 +0530 Subject: [PATCH 1261/1358] reviewed changes Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- application-default.properties | 12 ++++++------ esignet-default.properties | 2 +- id-authentication-default.properties | 4 ++-- id-repository-default.properties | 11 +++++++---- kernel-default.properties | 11 ++++------- ...roperties.properties => signup-default.properties | 0 6 files changed, 20 insertions(+), 20 deletions(-) rename signup-default.properties.properties => signup-default.properties (100%) diff --git a/application-default.properties b/application-default.properties index 9ccc9ecae5d..92d55b06a60 100644 --- a/application-default.properties +++ b/application-default.properties @@ -94,9 +94,9 @@ mosip.idrepo.identity.bioAttributes=individualBiometrics,parentOrGuardianBiometr mosip.country.code=MOR ## Language supported by platform -mosip.supported-languages=eng,khm -mosip.right_to_left_orientation= -mosip.left_to_right_orientation=eng,khm +mosip.supported-languages=eng,ara,fra +mosip.right_to_left_orientation=ara +mosip.left_to_right_orientation=eng,fra ## Application IDs mosip.prereg.app-id=PRE_REGISTRATION @@ -415,11 +415,11 @@ server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve websub.hub.url=${mosip.websub.url}/hub/ websub.publish.url=${mosip.websub.url}/hub/ -mosip.mandatory-languages=eng,khm +mosip.mandatory-languages=eng ## Leave blank if no optional langauges -mosip.optional-languages= +mosip.optional-languages=ara,fra mosip.min-languages.count=2 -mosip.max-languages.count=2 +mosip.max-languages.count=3 # These are default languages used for sending notifications mosip.default.template-languages=eng,ara,fra diff --git a/esignet-default.properties b/esignet-default.properties index ccc1e10ea38..5cfda92be18 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -209,7 +209,7 @@ mosip.esignet.cache.key.hash.algorithm=SHA3-256 # Cache size setup is applicable only for 'simple' cache type. # Cache size configuration will not be considered with 'Redis' cache type mosip.esignet.cache.size={'clientdetails' : 200, \ -'preauth': 7200, \ +'preauth': 200, \ 'authenticated': 200, \ 'authcodegenerated': 200, \ 'userinfo': 200, \ diff --git a/id-authentication-default.properties b/id-authentication-default.properties index eac8af7d822..719afe2e6b1 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -403,9 +403,9 @@ ida.api.version.kycexchange=1.0 static.token.enable=true ## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests -request.idtypes.allowed=UIN,HANDLE +request.idtypes.allowed=VID,HANDLE ## The ID types to be supported for Internal Authentication/OTP Requests -request.idtypes.allowed.internalauth=UIN +request.idtypes.allowed.internalauth=VID ## Cryptograpic/Signature verificate related configurations mosip.ida.internal.thumbprint-validation-required=false diff --git a/id-repository-default.properties b/id-repository-default.properties index f14b0d51e00..402291e2ca0 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -26,7 +26,7 @@ mosip.idrepo.db.vid.db-name=mosip_idmap mosip.idrepo.db.vid.username=idmapuser mosip.idrepo.db.vid.password=${db.dbuser.password} mosip.idrepo.objectstore.account-name=idrepo -mosip.idrepo.objectstore.bucket-name=idrepo +mosip.idrepo.objectstore.bucket-name=${s3.pretext.value:}idrepo mosip.idrepo.objectstore.adapter-name=s3Adapter #IDRepo identity/vid service authentication details @@ -248,7 +248,7 @@ mosip.credential.service.jdbc.url=jdbc:postgresql://${mosip.credential.service.d mosip.credential.service.jdbc.user=credentialuser mosip.credential.service.jdbc.password=${db.dbuser.password} mosip.credential.service.jdbc.driver=org.postgresql.Driver -hibernate.hbm2ddl.auto=update +hibernate.hbm2ddl.auto=none spring.jpa.hibernate.ddl-auto=none hibernate.dialect=org.hibernate.dialect.PostgreSQLDialect hibernate.jdbc.lob.non_contextual_creation=true @@ -269,7 +269,7 @@ mosip.credential.request.crypto-ref-id=credential_request ## Batch job # batch job time intervel in miliseconds -mosip.credential.request.job.timedelay=1 +mosip.credential.request.job.timedelay=15000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 credential.request.type=auth @@ -434,6 +434,9 @@ mosip.idrepo.credential-request-v2.rest.uri=${mosip.idrepo.credrequest.generator mosip.idrepo.credential-request-v2.rest.httpMethod=POST mosip.idrepo.credential-request-v2.rest.headers.mediaType=application/json mosip.idrepo.credential-request-v2.rest.timeout=100 - +# It is recommended to not support UIN based authentication (both external & internal) +# To stop issuing UIN+credential to IDA set flag to true otherwise set the flag to false to issue UIN+credential to IDA. mosip.idrepo.identity.disable-uin-based-credential-request=false +# Field Id as in the identity schema will be the key and value is the actual postfix to append. Empty values are also supported. +# This configuration is considered only when mentioned fieldId is marked to be a handle in the identity schema and it is one of the selectedHandle in the ID-object. mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} \ No newline at end of file diff --git a/kernel-default.properties b/kernel-default.properties index 4482e510ef7..92be6bfbb76 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -37,9 +37,9 @@ mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/s mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification -mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+855 -mosip.kernel.sms.number.length=9 +mosip.kernel.sms.enabled=false +mosip.kernel.sms.country.code=91 +mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- @@ -50,9 +50,6 @@ mosip.kernel.sms.gateway=${sms.gateway.provider} #mosip.kernel.sms.unicode=unicode ## --msg91 gateway-- -mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+855 -mosip.kernel.sms.number.length=9 mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy @@ -431,7 +428,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mpartner-default-digitalcard,mosip-signup-client +auth.server.admin.allowed.audience=mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mpartner-default-digitalcard,mosip-signup-client,mosip-toolkit-android-client mosip.iam.adapter.appid=admin diff --git a/signup-default.properties.properties b/signup-default.properties similarity index 100% rename from signup-default.properties.properties rename to signup-default.properties From 1fa72c0e1d13631f681201951f6e1b52e4c868fd Mon Sep 17 00:00:00 2001 From: pvsaidurga <132046494+pvsaidurga@users.noreply.github.com> Date: Thu, 18 Jan 2024 23:27:54 +0530 Subject: [PATCH 1262/1358] Update signup-default.properties Signed-off-by: pvsaidurga <132046494+pvsaidurga@users.noreply.github.com> --- signup-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/signup-default.properties b/signup-default.properties index 99d63d080f2..36b36c73429 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -120,13 +120,13 @@ mosip.signup.ui.config.key-values={\ } ## ----------------------------- SMS-message ----------------------------------------------------------------------------- -mosip.signup.sms-notification-template.send-otp.khm=???? {challenge} ????????????????????? KhID ????????? +mosip.signup.sms-notification-template.send-otp.khm=ប្រើ {challenge} ដើម្បីផ្ទៀងផ្ទាត់គណនី KhID របស់អ្នក។ mosip.signup.sms-notification-template.send-otp.eng=Use {challenge} to verify your KhID account. -mosip.signup.sms-notification-template.success-registration.khm=??????????????????? KhID ?????????? +mosip.signup.sms-notification-template.success-registration.khm=អ្នកបានចុះឈ្មោះគណនី KhID ដោយជោគជ័យ។ mosip.signup.sms-notification-template.success-registration.eng=You successfully registered to KhID account. mosip.signup.sms-notification-template.forgot-passsword.khm=\u17a2\u17d2\u1793\u1780\u1794\u17b6\u1793\u1795\u17d2\u179b\u17b6\u179f\u17cb\u1794\u17d2\u178a\u17bc\u179a\u1796\u17b6\u1780\u17d2\u1799\u179f\u1798\u17d2\u1784\u17b6\u178f\u17cb KhID \u178a\u17c4\u1799\u1787\u17c4\u1782\u1787\u17d0\u1799\u17d4 mosip.signup.sms-notification-template.forgot-passsword.eng=You successfully changed KhID password. #------------------------------------------ Others --------------------------------------------------------------------- logging.level.io.mosip.signup=DEBUG -logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file +logging.level.org.springframework.web.client.RestTemplate=DEBUG From 7aad76cc080a0c4f616512c0b9796daa32af9a8b Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Fri, 19 Jan 2024 11:25:02 +0530 Subject: [PATCH 1263/1358] reviewed changes Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- kernel-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/kernel-default.properties b/kernel-default.properties index 92be6bfbb76..5fdb08aa272 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -50,6 +50,7 @@ mosip.kernel.sms.gateway=${sms.gateway.provider} #mosip.kernel.sms.unicode=unicode ## --msg91 gateway-- +# Removing duplicate properties mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy From 5b1a71db5e615d5a4b1f5d3d3902b7ca420857fd Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Fri, 19 Jan 2024 11:28:59 +0530 Subject: [PATCH 1264/1358] reviewed changes Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- application-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/application-default.properties b/application-default.properties index 92d55b06a60..8ad849b95da 100644 --- a/application-default.properties +++ b/application-default.properties @@ -47,6 +47,7 @@ mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub mosip.regproc.biosdk.url=http://biosdk-service.biosdk +# Removing duplicate property mosip.consolidator.url=http://websub-consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida From 0eb622b61c06fe41efd915df7072ebc8197d7996 Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Fri, 19 Jan 2024 17:14:49 +0530 Subject: [PATCH 1265/1358] reviewed changes Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- application-default.properties | 1 - esignet-default.properties | 2 +- kernel-default.properties | 3 +-- signup-default.properties | 6 +++--- 4 files changed, 5 insertions(+), 7 deletions(-) diff --git a/application-default.properties b/application-default.properties index 8ad849b95da..92d55b06a60 100644 --- a/application-default.properties +++ b/application-default.properties @@ -47,7 +47,6 @@ mosip.regproc.transaction.service.url=http://regproc-trans.regproc mosip.packet.receiver.url=http://regproc-group1.regproc mosip.websub.url=http://websub.websub mosip.regproc.biosdk.url=http://biosdk-service.biosdk -# Removing duplicate property mosip.consolidator.url=http://websub-consolidator.websub mosip.file.server.url=http://mosip-file-server.mosip-file-server mosip.ida.internal.url=http://ida-internal.ida diff --git a/esignet-default.properties b/esignet-default.properties index 5cfda92be18..bbe162abeae 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -246,7 +246,7 @@ mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.pa # for local deployments without esignet-ui nginx change the value to ${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json mosip.esignet.jwks-uri=${mosip.esignet.domain.url}/.well-known/jwks.json -mosip.esignet.token.endpoint=${mosip.esignet.token.endpoint} +mosip.esignet.token.endpoint=${mosip.esignet.domain.url}${server.servlet.path}/oauth/v2/token mosip.esignet.oauth.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'authorization_endpoint': '${mosip.esignet.domain.url}/authorize' , \ diff --git a/kernel-default.properties b/kernel-default.properties index 5fdb08aa272..2694c8278f1 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -38,7 +38,7 @@ mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/mas ## SMS notification mosip.kernel.sms.enabled=false -mosip.kernel.sms.country.code=91 +mosip.kernel.sms.country.code=+91 mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} @@ -50,7 +50,6 @@ mosip.kernel.sms.gateway=${sms.gateway.provider} #mosip.kernel.sms.unicode=unicode ## --msg91 gateway-- -# Removing duplicate properties mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy diff --git a/signup-default.properties b/signup-default.properties index 36b36c73429..90da95efc44 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -82,7 +82,7 @@ mosip.signup.generate-challenge.endpoint=${mosip.kernel.otpmanager.url}/v1/otpma mosip.signup.add-identity.endpoint=${mosip.idrepo.identity.url}/idrepository/v1/identity/ mosip.signup.generate-hash.endpoint=${mosip.kernel.keymanager.url}/v1/keymanager/generateArgon2Hash mosip.signup.get-uin.endpoint=${mosip.kernel.idgenerator.url}/v1/idgenerator/uin -mosip.signup.send-notification.endpoint=https://api-internal.camdgc-dev.mosip.net/v1/notifier/sms/send +mosip.signup.send-notification.endpoint=https://${mosip.api.internal.host}/v1/notifier/sms/send mosip.signup.add-identity.request.id=mosip.id.create mosip.signup.add-identity.request.version=v1 @@ -110,7 +110,7 @@ mosip.signup.ui.config.key-values={\ 'status.request.delay': ${mosip.signup.status.request.delay}, \ 'status.request.limit': ${mosip.signup.status.request.limit}, \ 'popup.timeout': 10, \ -'signin.redirect-url': 'https://esignet.camdgc-dev.mosip.net/authorize', \ +'signin.redirect-url': 'https://${mosip.esignet.host}/authorize', \ 'identifier.allowed.characters': '^[0-9]+', \ 'identifier.length.min': 8, \ 'identifier.length.max': 9, \ @@ -129,4 +129,4 @@ mosip.signup.sms-notification-template.forgot-passsword.eng=You successfully cha #------------------------------------------ Others --------------------------------------------------------------------- logging.level.io.mosip.signup=DEBUG -logging.level.org.springframework.web.client.RestTemplate=DEBUG +logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file From 37c498993fb0191a86b246cf45e4a7b0c7852af7 Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Fri, 19 Jan 2024 17:22:53 +0530 Subject: [PATCH 1266/1358] reviewed changes Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- id-repository-default.properties | 4 ---- 1 file changed, 4 deletions(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 07edd0e699b..52954195333 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -428,10 +428,6 @@ mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.mask.function.identityAttributes=convertToMaskDataFormat - -mosip.role.idrepo.credentialrequest.postv2requestgeneratorrid=CREDENTIAL_REQUEST,ID_REPOSITORY - -mosip.idrepo.credential.request.enable-convention-based-id=true mosip.credential.service.fetch-identity.type=bio mosip.idrepo.credential.request.enable-convention-based-id=false From e5e704bc35f68d0e15bb15a906715ea9b70bcc6b Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Mon, 22 Jan 2024 13:27:47 +0530 Subject: [PATCH 1267/1358] reviewed changes Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 52954195333..f47f0e99ab4 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -269,7 +269,7 @@ mosip.credential.request.crypto-ref-id=credential_request ## Batch job # batch job time intervel in miliseconds -mosip.credential.request.job.timedelay=15000 +mosip.credential.request.job.timedelay=3000 #Reprocessing job timeintervel in miliseconds mosip.credential.request.reprocess.job.timedelay=1200000 credential.request.type=auth From c964085fd4e9a0bc137d1639b63ac67c97ee340d Mon Sep 17 00:00:00 2001 From: "Ritik Jain (IN74108)" <ritik.61074108@ltimindtree.com> Date: Mon, 22 Jan 2024 18:24:37 +0530 Subject: [PATCH 1268/1358] added time deviation property Signed-off-by: Ritik Jain (IN74108) <ritik.61074108@ltimindtree.com> --- id-repository-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index f27ae584b64..fce662fe002 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -434,4 +434,5 @@ mosip.idrepo.credential-request-v2.rest.uri=${mosip.idrepo.credrequest.generator mosip.idrepo.credential-request-v2.rest.httpMethod=POST mosip.idrepo.credential-request-v2.rest.headers.mediaType=application/json mosip.idrepo.credential-request-v2.rest.timeout=100 -mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} \ No newline at end of file +mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} +mosip.idrepo.identity.max-request-time-deviation-seconds=60 \ No newline at end of file From 834b1b01ba1442b8036c3d0abe163aa811cb8214 Mon Sep 17 00:00:00 2001 From: "Ritik Jain (IN74108)" <ritik.61074108@ltimindtree.com> Date: Mon, 22 Jan 2024 18:27:38 +0530 Subject: [PATCH 1269/1358] last space Signed-off-by: Ritik Jain (IN74108) <ritik.61074108@ltimindtree.com> --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index fce662fe002..29419a59bb5 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -435,4 +435,4 @@ mosip.idrepo.credential-request-v2.rest.httpMethod=POST mosip.idrepo.credential-request-v2.rest.headers.mediaType=application/json mosip.idrepo.credential-request-v2.rest.timeout=100 mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} -mosip.idrepo.identity.max-request-time-deviation-seconds=60 \ No newline at end of file +mosip.idrepo.identity.max-request-time-deviation-seconds=60 From b25de9f3bca9ee07cc1fc1756004f3b7bf3a5145 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Tue, 23 Jan 2024 11:23:20 +0530 Subject: [PATCH 1270/1358] ES-379 Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- id-authentication-default.properties | 7 ++- id-repository-default.properties | 2 +- signup-default.properties | 72 ++++++++++++++++++---------- 3 files changed, 52 insertions(+), 29 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 719afe2e6b1..cc35fbe10b2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -403,9 +403,9 @@ ida.api.version.kycexchange=1.0 static.token.enable=true ## Allowed ID Types (allowed values : UIN/VID/USERID) to be supported for Authentication/KYC/OTP Requests -request.idtypes.allowed=VID,HANDLE +request.idtypes.allowed=UIN,VID,HANDLE ## The ID types to be supported for Internal Authentication/OTP Requests -request.idtypes.allowed.internalauth=VID +request.idtypes.allowed.internalauth=UIN,VID ## Cryptograpic/Signature verificate related configurations mosip.ida.internal.thumbprint-validation-required=false @@ -638,4 +638,7 @@ mosip.ida.vercred.proof.purpose=assertionMethod mosip.ida.vercred.proof.type=RsaSignature2018 mosip.ida.vercred.proof.verificationmethod=https://${mosip.api.public.host}/.well-known/ida-public-key.json mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredential + +# Regex to validate handles with provided key as the postfix +# if the input handle is +855345353453@phone then the provided regex is used to validate the input. mosip.ida.handle-types.regex={ '@phone' : '^\\+855[1-9][0-9]{7,9}@phone$' } diff --git a/id-repository-default.properties b/id-repository-default.properties index f47f0e99ab4..cab8581e880 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -382,7 +382,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard,mpartner-default-mobile +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard,mosip-signup-client #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha diff --git a/signup-default.properties b/signup-default.properties index 90da95efc44..e673da7756b 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -1,11 +1,14 @@ #---------------------------------------------------------------------------------------------------------------------------- - +# challenge.timeout, resend-delay are count as seconds mosip.signup.id-schema.version=0.2 mosip.signup.identifier.regex=^\\+855[1-9]\\d{7,8}$ mosip.signup.identifier.prefix=+855 mosip.signup.supported-languages={'khm','eng'} mosip.signup.password.pattern=^(?=.*[0-9])(?=.*[a-z])(?=.*[A-Z])(?=.*[\\x5F\\W])(?=.{8,20})[a-zA-Z0-9\\x5F\\W]{8,20}$ mosip.signup.password.max-length=20 +mosip.signup.generate-challenge.blocked.timeout=300 +mosip.signup.challenge.timeout=60 +mosip.signup.audit.description.max-length=2048 mosip.signup.password.min-length=8 mosip.signup.fullname.pattern=^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u0020]{1,30}$ @@ -13,7 +16,7 @@ mosip.signup.fullname.pattern=^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u ## Default resend delay is 60 seconds, with 3 attempts, so 60*3=180 seconds. ## Adding 10 seconds buffer to default 180 seconds = 190 seconds. ## so 190 seconds is the Generate and verify cookie max age. -mosip.signup.unauthenticated.txn.timeout=7200 +mosip.signup.unauthenticated.txn.timeout=190 mosip.signup.challenge.resend-attempt=3 mosip.signup.challenge.resend-delay=60 @@ -21,12 +24,13 @@ mosip.signup.challenge.resend-delay=60 ## Considering 5 minutes(300 seconds) to complete registration form and submit. ## Default status request limit is 10 with 20 seconds request delay, 10*20=200 seconds ## so 300+200=500 seconds is the authentication cookie max age. -mosip.signup.register.txn.timeout=7200 +mosip.signup.verified.txn.timeout=300 mosip.signup.status-check.txn.timeout=200 mosip.signup.status.request.delay=20 mosip.signup.status.request.limit=10 ## ------------------------------------- challenge configuration ------------------------------------------------------- + mosip.signup.supported.generate-challenge-type=OTP mosip.signup.supported.challenge-format-types={'alpha-numeric', 'base64url-encoded-json'} mosip.signup.supported.challenge-types={'OTP', 'KBA'} @@ -42,12 +46,19 @@ spring.cache.type=simple #spring.redis.port=6379 management.health.redis.enabled=false -mosip.esignet.cache.names=challenge-generated,challenge-verified,status-check,blocked_identifier -mosip.esignet.cache.size={'challenge-generated': 2000,'challenge-verified': 2000,'status-check': 2000,'blocked_identifier':2000} -mosip.esignet.cache.expire-in-seconds={'challenge-generated': ${mosip.signup.unauthenticated.txn.timeout},\ - 'challenge-verified': ${mosip.signup.register.txn.timeout},\ - 'status-check': ${mosip.signup.status-check.txn.timeout},\ - 'blocked_identifier': 300 } +mosip.esignet.cache.names=challenge_generated,challenge_verified,status_check,blocked_identifier,keystore,key_alias +mosip.esignet.cache.size={'challenge_generated': 200, \ + 'challenge_verified': 200,\ + 'status_check': 200,\ + 'blocked_identifier':2000,\ + 'keystore' : 5, \ + 'key_alias' : 200 } +mosip.esignet.cache.expire-in-seconds={'challenge_generated': ${mosip.signup.unauthenticated.txn.timeout},\ + 'challenge_verified': ${mosip.signup.verified.txn.timeout},\ + 'status_check': ${mosip.signup.status-check.txn.timeout}, \ + 'blocked_identifier': ${mosip.signup.generate-challenge.blocked.timeout},\ + 'keystore' : 10, \ + 'key_alias' : ${mosip.signup.verified.txn.timeout} } ## ------------------------------------- Auth adapter ------------------------------------------------------------------ @@ -61,8 +72,7 @@ mosip.kernel.auth.appid-realm-map={admin:'mosip',crereq:'mosip',creser:'mosip',i mosip.kernel.auth.appids.realm.map={admin:'mosip',crereq:'mosip',creser:'mosip',idrepo:'mosip','regproc':'mosip', signup:'mosip'} mosip.iam.adapter.clientid=mosip-signup-client -#mosip.iam.adapter.clientsecret=${mosip.signup.client.secret} -mosip.iam.adapter.clientsecret=LBIZwf0IGrFlkuXi +mosip.iam.adapter.clientsecret=${mosip.signup.client.secret} mosip.iam.adapter.appid=signup mosip.iam.adapter.issuerURL=${keycloak.external.url}/auth/realms/mosip mosip.authmanager.client-token-endpoint=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey @@ -78,13 +88,18 @@ mosip.security.csrf-enable=true mosip.security.cors-enable=true ## -------------------------- External endpoints ----------------------------------------------------------------------- -mosip.signup.generate-challenge.endpoint=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate -mosip.signup.add-identity.endpoint=${mosip.idrepo.identity.url}/idrepository/v1/identity/ -mosip.signup.generate-hash.endpoint=${mosip.kernel.keymanager.url}/v1/keymanager/generateArgon2Hash -mosip.signup.get-uin.endpoint=${mosip.kernel.idgenerator.url}/v1/idgenerator/uin -mosip.signup.send-notification.endpoint=https://${mosip.api.internal.host}/v1/notifier/sms/send + +mosip.signup.generate-challenge.endpoint=${mosip.api.internal.url}/v1/otpmanager/otp/generate +mosip.signup.get-identity.endpoint=${mosip.api.internal.url}/idrepository/v1/identity/idvid/%s@phone?type=demo&idType=HANDLE +mosip.signup.identity.endpoint=${mosip.api.internal.url}/idrepository/v1/identity/ +mosip.signup.generate-hash.endpoint=${mosip.api.internal.url}/v1/keymanager/generateArgon2Hash +mosip.signup.get-uin.endpoint=${mosip.api.internal.url}/v1/idgenerator/uin +mosip.signup.send-notification.endpoint=${mosip.api.internal.url}/v1/notifier/sms/send +mosip.signup.get-registration-status.endpoint=${mosip.api.internal.url}/v1/credentialrequest/get/{applicationId} +mosip.signup.audit-endpoint=${mosip.api.internal.url}/v1/auditmanager/audits mosip.signup.add-identity.request.id=mosip.id.create -mosip.signup.add-identity.request.version=v1 +mosip.signup.update-identity.request.id=mosip.id.update +mosip.signup.identity.request.version=v1 ## --------------------------------- captcha validator------------------------------------------------------------------ mosip.signup.send-challenge.captcha-required=false @@ -94,12 +109,14 @@ mosip.signup.captcha-validator.site-key=${signup.captcha.site.key} mosip.signup.captcha-validator.secret=${signup.captcha.secret.key} ## ----------------------------- UI-Config ----------------------------------------------------------------------------- + +# Only after current challenge timeout we should enable resend in the UI. +# In this case timeout and resend-delay should be same always. mosip.signup.ui.config.key-values={\ 'identifier.pattern': '${mosip.signup.identifier.regex}', \ 'identifier.prefix': '${mosip.signup.identifier.prefix}', \ 'captcha.site.key': '${mosip.signup.captcha-validator.site-key}', \ 'otp.length': ${mosip.signup.supported.challenge.otp.length}, \ -'otp.secret': true, \ 'password.pattern': '${mosip.signup.password.pattern}', \ 'password.length.max': ${mosip.signup.password.max-length}, \ 'password.length.min': ${mosip.signup.password.min-length}, \ @@ -116,17 +133,20 @@ mosip.signup.ui.config.key-values={\ 'identifier.length.max': 9, \ 'fullname.allowed.characters': '^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u0020]', \ 'fullname.length.min': 1, \ -'fullname.length.max': 30 \ +'fullname.length.max': 30, \ +'otp.blocked' : ${mosip.signup.generate-challenge.blocked.timeout} \ } + ## ----------------------------- SMS-message ----------------------------------------------------------------------------- -mosip.signup.sms-notification-template.send-otp.khm=ប្រើ {challenge} ដើម្បីផ្ទៀងផ្ទាត់គណនី KhID របស់អ្នក។ +# Default charset encoding ISO-8859-1 does not support khmer language characters, so templates in khm language are base64 encoded. +mosip.signup.sms-notification-template.send-otp.khm=4Z6U4Z+S4Z6a4Z6+IHtjaGFsbGVuZ2V9IOGeiuGevuGemOGfkuGelOGeuOGeleGfkuGekeGfgOGehOGeleGfkuGekeGetuGej+Gfi+GeguGejuGek+GeuCBLaElEIOGemuGelOGen+Gfi+GeouGfkuGek+GegOGflA== mosip.signup.sms-notification-template.send-otp.eng=Use {challenge} to verify your KhID account. -mosip.signup.sms-notification-template.success-registration.khm=អ្នកបានចុះឈ្មោះគណនី KhID ដោយជោគជ័យ។ -mosip.signup.sms-notification-template.success-registration.eng=You successfully registered to KhID account. -mosip.signup.sms-notification-template.forgot-passsword.khm=\u17a2\u17d2\u1793\u1780\u1794\u17b6\u1793\u1795\u17d2\u179b\u17b6\u179f\u17cb\u1794\u17d2\u178a\u17bc\u179a\u1796\u17b6\u1780\u17d2\u1799\u179f\u1798\u17d2\u1784\u17b6\u178f\u17cb KhID \u178a\u17c4\u1799\u1787\u17c4\u1782\u1787\u17d0\u1799\u17d4 -mosip.signup.sms-notification-template.forgot-passsword.eng=You successfully changed KhID password. +mosip.signup.sms-notification-template.registration.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4Z624Z6T4Z6F4Z674Z+H4Z6I4Z+S4Z6Y4Z+E4Z+H4Z6C4Z6O4Z6T4Z64IEtoSUQg4Z6K4Z+E4Z6Z4Z6H4Z+E4Z6C4Z6H4Z+Q4Z6Z4Z+U +mosip.signup.sms-notification-template.registration.eng=You successfully registered to KhID account. +mosip.signup.sms-notification-template.forgot-passsword.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4Z624Z6T4Z6V4Z+S4Z6b4Z624Z6f4Z+L4Z6U4Z+S4Z6K4Z684Z6a4Z6W4Z624Z6A4Z+S4Z6Z4Z6f4Z6Y4Z+S4Z6E4Z624Z6P4Z+LIEtoSUQg4Z6K4Z+E4Z6Z4Z6H4Z+E4Z6C4Z6H4Z+Q4Z6Z4Z+U +mosip.signup.sms-notification-template.forgot-passsword.eng=You successfully changed KhID password. #------------------------------------------ Others --------------------------------------------------------------------- -logging.level.io.mosip.signup=DEBUG -logging.level.org.springframework.web.client.RestTemplate=DEBUG \ No newline at end of file +logging.level.io.mosip.signup=INFO +logging.level.org.springframework.web.client.RestTemplate=INFO \ No newline at end of file From f5da80c0dcc4528da57d2c7af7f49efbf540632c Mon Sep 17 00:00:00 2001 From: panharith-0118 <148301211+panharith-0118@users.noreply.github.com> Date: Wed, 24 Jan 2024 17:12:24 +0700 Subject: [PATCH 1271/1358] ES-710 (#5149) Signed-off-by: pr <panharith-an@mptc.gov.kh> --- signup-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/signup-default.properties b/signup-default.properties index e673da7756b..08afcf053ca 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -144,8 +144,8 @@ mosip.signup.sms-notification-template.send-otp.khm=4Z6U4Z+S4Z6a4Z6+IHtjaGFsbGVu mosip.signup.sms-notification-template.send-otp.eng=Use {challenge} to verify your KhID account. mosip.signup.sms-notification-template.registration.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4Z624Z6T4Z6F4Z674Z+H4Z6I4Z+S4Z6Y4Z+E4Z+H4Z6C4Z6O4Z6T4Z64IEtoSUQg4Z6K4Z+E4Z6Z4Z6H4Z+E4Z6C4Z6H4Z+Q4Z6Z4Z+U mosip.signup.sms-notification-template.registration.eng=You successfully registered to KhID account. -mosip.signup.sms-notification-template.forgot-passsword.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4Z624Z6T4Z6V4Z+S4Z6b4Z624Z6f4Z+L4Z6U4Z+S4Z6K4Z684Z6a4Z6W4Z624Z6A4Z+S4Z6Z4Z6f4Z6Y4Z+S4Z6E4Z624Z6P4Z+LIEtoSUQg4Z6K4Z+E4Z6Z4Z6H4Z+E4Z6C4Z6H4Z+Q4Z6Z4Z+U -mosip.signup.sms-notification-template.forgot-passsword.eng=You successfully changed KhID password. +mosip.signup.sms-notification-template.forgot-password.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4Z624Z6T4Z6V4Z+S4Z6b4Z624Z6f4Z+L4Z6U4Z+S4Z6K4Z684Z6a4Z6W4Z624Z6A4Z+S4Z6Z4Z6f4Z6Y4Z+S4Z6E4Z624Z6P4Z+LIEtoSUQg4Z6K4Z+E4Z6Z4Z6H4Z+E4Z6C4Z6H4Z+Q4Z6Z4Z+U +mosip.signup.sms-notification-template.forgot-password.eng=You successfully changed KhID password. #------------------------------------------ Others --------------------------------------------------------------------- logging.level.io.mosip.signup=INFO From 2390c543534cb1d55081fc162c67fb4135e6a932 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 24 Jan 2024 18:02:08 +0530 Subject: [PATCH 1272/1358] Update signup-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- signup-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/signup-default.properties b/signup-default.properties index 08afcf053ca..1aee665709d 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -18,7 +18,7 @@ mosip.signup.fullname.pattern=^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u ## so 190 seconds is the Generate and verify cookie max age. mosip.signup.unauthenticated.txn.timeout=190 mosip.signup.challenge.resend-attempt=3 -mosip.signup.challenge.resend-delay=60 +mosip.signup.challenge.resend-delay=${mosip.signup.challenge.timeout} ## Time given to complete registration and get back the status of the registration in seconds. ## Considering 5 minutes(300 seconds) to complete registration form and submit. From 9981152f04dd33c99b69a1f28be487aff3d1161c Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Thu, 25 Jan 2024 00:49:44 +0530 Subject: [PATCH 1273/1358] Update signup-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- signup-default.properties | 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) diff --git a/signup-default.properties b/signup-default.properties index 1aee665709d..3e91891fbcf 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -37,7 +37,7 @@ mosip.signup.supported.challenge-types={'OTP', 'KBA'} mosip.signup.supported.challenge.otp.length=6 ## ------------------------------------- Cache configuration ----------------------------------------------------------- - +mosip.signup.cache.symmetric-algorithm-name=AES/CFB/PKCS5Padding spring.cache.type=simple #spring.cache.type=redis @@ -51,14 +51,17 @@ mosip.esignet.cache.size={'challenge_generated': 200, \ 'challenge_verified': 200,\ 'status_check': 200,\ 'blocked_identifier':2000,\ - 'keystore' : 5, \ - 'key_alias' : 200 } + 'keystore' : 10, \ + 'key_alias' : 2 } + +## Note: keystore TTL should be more than the key_alias cache TTL. +## So that key rotation happens before the actual key is removed from the keystore cache. mosip.esignet.cache.expire-in-seconds={'challenge_generated': ${mosip.signup.unauthenticated.txn.timeout},\ 'challenge_verified': ${mosip.signup.verified.txn.timeout},\ 'status_check': ${mosip.signup.status-check.txn.timeout}, \ 'blocked_identifier': ${mosip.signup.generate-challenge.blocked.timeout},\ - 'keystore' : 10, \ - 'key_alias' : ${mosip.signup.verified.txn.timeout} } + 'keystore' : 600, \ + 'key_alias' : 300 } ## ------------------------------------- Auth adapter ------------------------------------------------------------------ From 6b187dda3961f8f05cdcf99c7d7d0aadb3995014 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 31 Jan 2024 21:07:09 +0530 Subject: [PATCH 1274/1358] Update esignet-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- esignet-default.properties | 161 +++++++++++++++++++++++++------------ 1 file changed, 109 insertions(+), 52 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index bbe162abeae..cbb4d895d43 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -398,7 +398,7 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': ## ---------------------------------------------- VCI ------------------------------------------------------------------ # Used to verify audience in the PoP JWT -mosip.esignet.vci.identifier=${mosip.esignet.domain.url}${server.servlet.path} +mosip.esignet.vci.identifier=${mosip.esignet.domain.url} mosip.esignet.vci.authn.filter-urls={ '${server.servlet.path}/vci/credential' } # Change this if the VCI is used with different OAUTH2.0 server mosip.esignet.vci.authn.issuer-uri=${mosip.esignet.discovery.issuer-id} @@ -407,57 +407,114 @@ mosip.esignet.vci.authn.jwk-set-uri=${mosip.esignet.jwks-uri} mosip.esignet.vci.authn.allowed-audiences={ '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential' } mosip.esignet.cnonce-expire-seconds=40 -mosip.esignet.vci.supported.jwt-proof-alg={'RS256'} -mosip.esignet.vci.key-values={ 'credential_issuer': '${mosip.esignet.domain.url}', \ - 'credential_endpoint': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', \ - 'credentials_supported': {{\ - 'format': 'ldp_vc',\ - 'id': 'MockVerifiableCredential', \ - 'scope' : 'mock_identity_vc_ldp',\ - 'cryptographic_binding_methods_supported': {'did:jwk'},\ - 'cryptographic_suites_supported': {'RsaSignature2018'},\ - 'proof_types_supported': {'jwt'},\ - 'credential_definition': {\ - 'type': {'VerifiableCredential'},\ - 'credentialSubject': {\ - 'name': { 'display': {{'name': 'Given Name', 'locale': 'en' }}}, \ - 'age': { 'display': {{ 'name': 'Age', 'locale': 'en'}}}\ - }},\ - 'display': {{'name': 'Mock Verifiable Credential by e-Signet', \ - 'locale': 'en', \ - 'logo': {'url': '${mosip.esignet.domain.url}/logo.png',\ - 'alt_text': 'a square logo of a MOSIP'},\ - 'background_color': '#12107c',\ - 'text_color': '#FFFFFF'}}\ - \ },{\ - 'format': 'ldp_vc',\ - 'id': 'MOSIPVerifiableCredential', \ - 'scope' : 'mosip_identity_vc_ldp',\ - 'cryptographic_binding_methods_supported': {'did:jwk'},\ - 'cryptographic_suites_supported': {'RsaSignature2018'},\ - 'proof_types_supported': {'jwt'},\ - 'credential_definition': {\ - 'type': {'VerifiableCredential'},\ - 'credentialSubject': {\ - 'fullName': { 'display': {{'name': 'Full Name', 'locale': 'en' }}},\ - 'phone': { 'display': {{'name': 'Phone Number', 'locale': 'en' }}},\ - 'dateOfBirth': { 'display': {{'name': 'DOB', 'locale': 'en' }}},\ - 'gender': { 'display': {{'name': 'Gender', 'locale': 'en' }}},\ - 'residenceStatus': { 'display': {{'name': 'Residence Status', 'locale': 'en' }}},\ - 'email': { 'display': {{'name': 'Email Id', 'locale': 'en' }}},\ - 'region': { 'display': {{'name': 'Region', 'locale': 'en' }}},\ - 'province': { 'display': {{'name': 'Province', 'locale': 'en' }}},\ - 'city': { 'display': {{'name': 'City', 'locale': 'en' }}},\ - 'postalCode': { 'display': {{'name': 'Postal Code', 'locale': 'en' }}}\ - }},\ - 'display': {{'name': 'MOSIP Identity Verifiable Credential', \ - 'locale': 'en', \ - 'logo': {'url': '${mosip.esignet.domain.url}/logo.png',\ - 'alt_text': 'a square logo of a MOSIP'},\ - 'background_color': '#12107c',\ - 'text_color': '#FFFFFF'}}\ - \ }},\ - 'display': {{'name': 'MOSIP', 'locale': 'en'}}\ +mosip.esignet.vci.supported.jwt-proof-alg={'RS256','PS256'} +mosip.esignet.vci.key-values={\ + 'v11' : { \ + 'credential_issuer': '${mosip.esignet.vci.identifier}', \ + 'credential_endpoint': '${mosipbox.public.url}${server.servlet.path}/vci/credential', \ + 'credentials_supported': {\ + {\ + 'format': 'ldp_vc',\ + 'id': 'MockVerifiableCredential_ldp', \ + 'scope' : 'mock_identity_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'RsaSignature2018'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential','MockVerifiableCredential'},\ + 'credentialSubject': {\ + 'name': { 'display': {{'name': 'Given Name', 'locale': 'en' }}}, \ + 'age': { 'display': {{ 'name': 'Age', 'locale': 'en'}}}\ + }\ + },\ + 'display': {{'name': 'Mock Verifiable Credential by e-Signet', \ + 'locale': 'en', \ + 'logo': {'url': '${mosipbox.public.url}/logo.png', 'alt_text': 'a square logo of a MOSIP'},\ + 'background_color': '#12107c',\ + 'text_color': '#FFFFFF'}}\ + },\ + {\ + 'format': 'ldp_vc',\ + 'id': 'MOSIPVerifiableCredential', \ + 'scope' : 'mosip_identity_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'RsaSignature2018'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential','MOSIPVerifiableCredential'},\ + 'credentialSubject': {\ + 'fullName': { 'display': {{'name': 'Full Name', 'locale': 'en' }}},\ + 'phone': { 'display': {{'name': 'Phone Number', 'locale': 'en' }}},\ + 'dateOfBirth': { 'display': {{'name': 'DOB', 'locale': 'en' }}},\ + 'gender': { 'display': {{'name': 'Gender', 'locale': 'en' }}},\ + 'residenceStatus': { 'display': {{'name': 'Residence Status', 'locale': 'en' }}},\ + 'email': { 'display': {{'name': 'Email Id', 'locale': 'en' }}},\ + 'region': { 'display': {{'name': 'Region', 'locale': 'en' }}},\ + 'province': { 'display': {{'name': 'Province', 'locale': 'en' }}},\ + 'city': { 'display': {{'name': 'City', 'locale': 'en' }}},\ + 'postalCode': { 'display': {{'name': 'Postal Code', 'locale': 'en' }}}\ + }\ + },\ + 'display': {{'name': 'MOSIP Verifiable Credential by e-Signet', \ + 'locale': 'en', \ + 'logo': {'url': '${mosipbox.public.url}/logo.png','alt_text': 'a square logo of a MOSIP'},\ + 'background_color': '#12107c',\ + 'text_color': '#FFFFFF'}}\ + }\ + }\ + },\ + 'latest' : {\ + 'credential_issuer': '${mosip.esignet.vci.identifier}', \ + 'credential_endpoint': '${mosipbox.public.url}${server.servlet.path}/vci/credential', \ + 'display': {{'name': 'e-Signet', 'locale': 'en'}},\ + 'credentials_supported' : { \ + "MockVerifiableCredential_ldp" : {\ + 'format': 'ldp_vc',\ + 'scope' : 'mock_identity_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'RsaSignature2018'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential','MockVerifiableCredential'},\ + 'credentialSubject': {\ + 'name': { 'display': {{'name': 'Given Name', 'locale': 'en' }}}, \ + 'age': { 'display': {{ 'name': 'Age', 'locale': 'en'}}}\ + }},\ + 'display': {{'name': 'Mock Verifiable Credential by e-Signet', \ + 'locale': 'en', \ + 'logo': {'url': '${mosipbox.public.url}/logo.png',\ + 'alt_text': 'a square logo of a MOSIP'},\ + 'background_color': '#12107c',\ + 'text_color': '#FFFFFF'}}\ + }, \ + 'MOSIPVerifiableCredential_ldp' : {\ + 'format': 'ldp_vc',\ + 'scope' : 'mosip_identity_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'RsaSignature2018'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential','MOSIPVerifiableCredential'},\ + 'credentialSubject': {\ + 'fullName': { 'display': {{'name': 'Full Name', 'locale': 'en' }}},\ + 'phone': { 'display': {{'name': 'Phone Number', 'locale': 'en' }}},\ + 'dateOfBirth': { 'display': {{'name': 'DOB', 'locale': 'en' }}},\ + 'gender': { 'display': {{'name': 'Gender', 'locale': 'en' }}},\ + 'residenceStatus': { 'display': {{'name': 'Residence Status', 'locale': 'en' }}},\ + 'email': { 'display': {{'name': 'Email Id', 'locale': 'en' }}},\ + 'region': { 'display': {{'name': 'Region', 'locale': 'en' }}},\ + 'province': { 'display': {{'name': 'Province', 'locale': 'en' }}},\ + 'city': { 'display': {{'name': 'City', 'locale': 'en' }}},\ + 'postalCode': { 'display': {{'name': 'Postal Code', 'locale': 'en' }}}\ + }},\ + 'display': {{'name': 'MOSIP Verifiable Credential by e-Signet', \ + 'locale': 'en', \ + 'logo': {'url': '${mosipbox.public.url}/logo.png','alt_text': 'a square logo of a MOSIP'},\ + 'background_color': '#12107c',\ + 'text_color': '#FFFFFF'}}\ + }\ + }\ + }\ } ## -------------------------------------------- Others ---------------------------------------------------------- From 35a8c3dc42a46fcb026aa26f350491f68dcbadb9 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 31 Jan 2024 21:15:46 +0530 Subject: [PATCH 1275/1358] Update signup-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- signup-default.properties | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/signup-default.properties b/signup-default.properties index 3e91891fbcf..f70dfafe6d0 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -14,9 +14,10 @@ mosip.signup.fullname.pattern=^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u ## Time given to generate and verify the challenge in seconds. ## Default resend delay is 60 seconds, with 3 attempts, so 60*3=180 seconds. -## Adding 10 seconds buffer to default 180 seconds = 190 seconds. -## so 190 seconds is the Generate and verify cookie max age. -mosip.signup.unauthenticated.txn.timeout=190 +## Adding 60 seconds for the default generate challenge 180+60=240 +## Adding 10 seconds buffer to default 240 seconds = 250 seconds. +## so 250 seconds is the Generate and verify cookie max age. +mosip.signup.unauthenticated.txn.timeout=250 mosip.signup.challenge.resend-attempt=3 mosip.signup.challenge.resend-delay=${mosip.signup.challenge.timeout} @@ -105,7 +106,7 @@ mosip.signup.update-identity.request.id=mosip.id.update mosip.signup.identity.request.version=v1 ## --------------------------------- captcha validator------------------------------------------------------------------ -mosip.signup.send-challenge.captcha-required=false +mosip.signup.send-challenge.captcha-required=true mosip.signup.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.signup.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.signup.captcha-validator.site-key=${signup.captcha.site.key} @@ -152,4 +153,4 @@ mosip.signup.sms-notification-template.forgot-password.eng=You successfully chan #------------------------------------------ Others --------------------------------------------------------------------- logging.level.io.mosip.signup=INFO -logging.level.org.springframework.web.client.RestTemplate=INFO \ No newline at end of file +logging.level.org.springframework.web.client.RestTemplate=INFO From 392a692221f80bb0ebdf312c42368b74909239ba Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 31 Jan 2024 21:18:17 +0530 Subject: [PATCH 1276/1358] Update esignet-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index cbb4d895d43..01aaeadb7d3 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -101,7 +101,7 @@ mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.vci-plugin=IdaVCIssuancePluginImpl # captcha validator -mosip.esignet.send-otp.captcha-required=false +mosip.esignet.send-otp.captcha-required=true mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} From f9f8e26af077e1b480160b46cfc9c34ca68d6cfc Mon Sep 17 00:00:00 2001 From: Chandra Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 2 Feb 2024 11:40:21 +0530 Subject: [PATCH 1277/1358] [MOSIP-29994] Update packet-manager-default.properties Signed-off-by: Chandra Keshav Mishra <chandrakeshavmishra@gmail.com> --- packet-manager-default.properties | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index ff436cc381e..2f768edaa36 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -32,6 +32,12 @@ object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 + +##------------------------------------------------------Redis cache properties---------------------------------------------------- +redis.cache.hostname=10.20.20.90 +redis.cache.port=6379 +# Time to live for 2hrs +spring.cache.redis.time-to-live=7200000 # IAM adapter mosip.iam.adapter.appid=regproc mosip.iam.adapter.clientid=mosip-regproc-client From 1ac9020e7261a212a32b7a33d80c8d2dadf34fda Mon Sep 17 00:00:00 2001 From: Chandra Keshav Mishra <chandrakeshavmishra@gmail.com> Date: Fri, 2 Feb 2024 11:59:24 +0530 Subject: [PATCH 1278/1358] [MOSIP-31323] Update packet-manager-default.properties Signed-off-by: Chandra Keshav Mishra <chandrakeshavmishra@gmail.com> --- packet-manager-default.properties | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/packet-manager-default.properties b/packet-manager-default.properties index 2f768edaa36..7458c536072 100644 --- a/packet-manager-default.properties +++ b/packet-manager-default.properties @@ -32,14 +32,15 @@ object.store.s3.url=http://minio.minio:9000 object.store.s3.region=${s3.region} object.store.s3.readlimit=10000000 +# IAM adapter +mosip.iam.adapter.appid=regproc +mosip.iam.adapter.clientid=mosip-regproc-client +mosip.iam.adapter.clientsecret=${mosip.regproc.client.secret} +mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip ##------------------------------------------------------Redis cache properties---------------------------------------------------- +## The following properties will be used only when the redis cache provider jar is available in the loader path of packetmanager service. redis.cache.hostname=10.20.20.90 redis.cache.port=6379 # Time to live for 2hrs spring.cache.redis.time-to-live=7200000 -# IAM adapter -mosip.iam.adapter.appid=regproc -mosip.iam.adapter.clientid=mosip-regproc-client -mosip.iam.adapter.clientsecret=${mosip.regproc.client.secret} -mosip.iam.adapter.issuerURL=${keycloak.internal.url}/auth/realms/mosip From 7230f2925e200969ba103ec5c205b9738d30bcb1 Mon Sep 17 00:00:00 2001 From: "Ritik Jain (IN74108)" <ritik.61074108@ltimindtree.com> Date: Fri, 2 Feb 2024 12:50:36 +0530 Subject: [PATCH 1279/1358] added otp to the list Signed-off-by: Ritik Jain (IN74108) <ritik.61074108@ltimindtree.com> --- application-default.properties | 3 +++ resident-default.properties | 1 - 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 92d55b06a60..0c2b60dbd4b 100644 --- a/application-default.properties +++ b/application-default.properties @@ -446,5 +446,8 @@ mosip.digitalcard.uincard.password=fullName|dateOfBirth mosip.digitalcard.pdf.password.enable.flag=true mosip.access_token.subject.claim-name=sub +# Comma separated values of allowed auth types +auth.types.allowed=otp-email,otp-phone,demo,bio-FINGER,bio-IRIS,bio-FACE,otp + # It is used as a suffix for creating credential request ID using the RID. mosip.registration.processor.rid.delimiter=-PDF diff --git a/resident-default.properties b/resident-default.properties index 91faa70cd34..5dbd3ef4e01 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -191,7 +191,6 @@ IDREPO_IDENTITY_UPDATE_COUNT=${mosip.idrepo.identity.url}/idrepository/v1/identi ## Config data resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -auth.types.allowed=otp-email,otp-phone,demo,bio-FINGER,bio-IRIS,bio-FACE resident.identityjson=identity-mapping.json mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ From 374d31c10b47620418d23febd1783d6fa0b155c8 Mon Sep 17 00:00:00 2001 From: "Ritik Jain (IN74108)" <ritik.61074108@ltimindtree.com> Date: Fri, 2 Feb 2024 13:47:35 +0530 Subject: [PATCH 1280/1358] added otp to the list Signed-off-by: Ritik Jain (IN74108) <ritik.61074108@ltimindtree.com> --- application-default.properties | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/application-default.properties b/application-default.properties index 0c2b60dbd4b..0aa14a4d1d1 100644 --- a/application-default.properties +++ b/application-default.properties @@ -444,10 +444,11 @@ mosip.auth.filter_disable=false # PDF Digital card is protected with password using below property based on define attribute it will encrypt by taking first 4 character. mosip.digitalcard.uincard.password=fullName|dateOfBirth mosip.digitalcard.pdf.password.enable.flag=true -mosip.access_token.subject.claim-name=sub # Comma separated values of allowed auth types auth.types.allowed=otp-email,otp-phone,demo,bio-FINGER,bio-IRIS,bio-FACE,otp +mosip.access_token.subject.claim-name=sub + # It is used as a suffix for creating credential request ID using the RID. mosip.registration.processor.rid.delimiter=-PDF From 6539b1b325471ac55dd1321d46ee29e21fe70f12 Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Tue, 6 Feb 2024 12:16:37 +0530 Subject: [PATCH 1281/1358] [Mosip-30417] [Mosip_30241] adding properties Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 1e63d2b6bb1..7848164e592 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -642,6 +642,7 @@ mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage mosip.regproc.demo.dedupe.server.port=8091 mosip.regproc.demo.dedupe.eventbus.port=5717 mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedupe +mosip.regproc.demo.dedupe.trim-whitespaces.simpleType-value:false #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single @@ -989,6 +990,8 @@ landing.zone.account.name=landing-zone landing.zone.type=DMZServer mosip.regproc.landing.zone.fixed.delay.millisecs=86400000 mosip.regproc.landing.zone.inital.delay.millisecs=300000 +mosip.regproc.landing.zone.account.name=landing-zone +mosip.regproc.landing.zone.type=DMZServer registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 From d11076b5a036e609fb23a0e2345ece6909217d5f Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Tue, 6 Feb 2024 13:16:57 +0530 Subject: [PATCH 1282/1358] [Mosip-30417] [Mosip_30241] adding properties Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 7848164e592..9c0b1fb2659 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -986,13 +986,14 @@ mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RE mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO -landing.zone.account.name=landing-zone -landing.zone.type=DMZServer +mosip.regproc.landing.zone.account.name=landing-zone +mosip.regproc.landing.zone.type=DMZServer mosip.regproc.landing.zone.fixed.delay.millisecs=86400000 mosip.regproc.landing.zone.inital.delay.millisecs=300000 mosip.regproc.landing.zone.account.name=landing-zone mosip.regproc.landing.zone.type=DMZServer + registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 ##Ability to update contact information as part of LOST UIN From 2e98cf18243545e032d251a67d1a1b95f0ae6677 Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Tue, 6 Feb 2024 13:23:11 +0530 Subject: [PATCH 1283/1358] [Mosip-30417] [Mosip_30241] adding properties Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-default.properties | 2 -- 1 file changed, 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 9c0b1fb2659..b195e026882 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -990,8 +990,6 @@ mosip.regproc.landing.zone.account.name=landing-zone mosip.regproc.landing.zone.type=DMZServer mosip.regproc.landing.zone.fixed.delay.millisecs=86400000 mosip.regproc.landing.zone.inital.delay.millisecs=300000 -mosip.regproc.landing.zone.account.name=landing-zone -mosip.regproc.landing.zone.type=DMZServer registration.processor.lostrid.max.registrationid=5 From e34046350477ec74c6bf4c379e1411ddad9c2f63 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> Date: Tue, 6 Feb 2024 14:29:04 +0530 Subject: [PATCH 1284/1358] MOSIP-28427 config fix Signed-off-by: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> --- mock-abis-default.properties | 16 +++++++++++----- 1 file changed, 11 insertions(+), 5 deletions(-) diff --git a/mock-abis-default.properties b/mock-abis-default.properties index c0eb32d2b49..d261ac1bbe9 100644 --- a/mock-abis-default.properties +++ b/mock-abis-default.properties @@ -8,8 +8,14 @@ management.endpoint.health.show-details=always management.endpoits.web.exposure.include=info,health,refresh server.port=8081 abis.return.duplicate=false -secret_url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey -secret_url.clientnId=mosip-regproc-client -secret_url.id=string -secret_url.secretKey=${mosip.regproc.client.secret} -secret_url.appId=regproc +#iam adapter +auth.server.admin.issuer.uri=${keycloak.external.url}/auth/realms/ +mosip.iam.adapter.appid=regproc +mosip.iam.adapter.clientid=mosip-regproc-client +mosip.iam.adapter.clientsecret=${mosip.regproc.client.secret} +mosip.kernel.auth.adapter.ssl-bypass=true +mosip.kernel.auth.appid-realm-map={regproc:'mosip'} +mosip.kernel.auth.appids.realm.map={regproc:'mosip'} +#iam adapter disable local end points +mosip.service.end-points=/**/* +mosip.service.exclude.auth.allowed.method=GET,POST,DELETE From 56e29a5a334f2a1b6450fb8563a4c714b809afca Mon Sep 17 00:00:00 2001 From: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> Date: Tue, 6 Feb 2024 19:26:56 +0530 Subject: [PATCH 1285/1358] MOSIP-24522: Added secret key configs Signed-off-by: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> --- websub-service.toml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/websub-service.toml b/websub-service.toml index 59728e25aa1..6e6d105ed72 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -87,6 +87,13 @@ CONSOLIDATOR_BASE_URL = "${mosip.consolidator.url}" # consolidator health endpoint CONSOLIDATOR_HEALTH_ENDPOINT = "/consolidator/actuator/health" +#Encryption key that will be used to encrypt / decrypt the hub secret +HUB_SECRET_ENCRYPTION_KEY = "${hub.secret.encryption.key}" + +# Below config will allow base64-encoded-bytes / alpha-numeric. +# Recommended to use base64-encoded-bytes since alpha-numeric is considered less secure. This is just given to ensure the backward compatiblity +HUB_SECRET_ENCRYPTION_KEY_FORMAT = "alpha-numeric" + [ballerina.http.accessLogConfig] # Enable printing access logs in console console = true # Default is false From f672c0e48904d72a63b3202c4ee0f1ebcaf5137f Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Wed, 7 Feb 2024 00:36:09 +0530 Subject: [PATCH 1286/1358] [Mosip-30417] [Mosip_30241] adding properties Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-default.properties | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index b195e026882..c322f321ecd 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -642,7 +642,7 @@ mosip.regproc.demo.dedupe.message.expiry-time-limit=${mosip.regproc.common.stage mosip.regproc.demo.dedupe.server.port=8091 mosip.regproc.demo.dedupe.eventbus.port=5717 mosip.regproc.demo.dedupe.server.servlet.path=/registrationprocessor/v1/demodedupe -mosip.regproc.demo.dedupe.trim-whitespaces.simpleType-value:false +mosip.regproc.demo.dedupe.trim-whitespaces.simpleType-value=false #abis-handler-stage mosip.regproc.abis.handler.eventbus.kafka.commit.type=single @@ -986,12 +986,13 @@ mosip.role.registration.getPostsync=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RE mosip.role.registration.getPostsyncv2=REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,RESIDENT auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip-resident-client,mosip-reg-client mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO +#updated properties name with the prefix (mosip.regproc) mosip.regproc.landing.zone.account.name=landing-zone mosip.regproc.landing.zone.type=DMZServer + mosip.regproc.landing.zone.fixed.delay.millisecs=86400000 mosip.regproc.landing.zone.inital.delay.millisecs=300000 - registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 ##Ability to update contact information as part of LOST UIN From 5fc9437c1a488b94a8da3e3f12b849e2a7f76d64 Mon Sep 17 00:00:00 2001 From: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> Date: Wed, 7 Feb 2024 13:17:32 +0530 Subject: [PATCH 1287/1358] MOSIP-31499: Changed KAFKA_CONSUMER_MAX_POLL_RECORDS value Signed-off-by: Himaja Dhanyamraju <43470317+HimajaDhanyamraju2@users.noreply.github.com> --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 6e6d105ed72..9d3466fa5f8 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -70,7 +70,7 @@ INTENT_VERIFICATION_BACKOFF_FACTOR = 2.0 INTENT_VERIFICATION_MAX_INTERVAL = 20.0 # The maximum retry count -KAFKA_CONSUMER_MAX_POLL_RECORDS = 50 +KAFKA_CONSUMER_MAX_POLL_RECORDS = 3 # The maximum retry count KAFKA_CONSUMER_FETCH_MAX_BYTES = 3145728 From 7cdf2bf2aa6afb3becb526be69fe673b1f295205 Mon Sep 17 00:00:00 2001 From: HimajaDhanyamraju2 <dhanyamraju.himaja2@mindtree.com> Date: Wed, 7 Feb 2024 18:53:53 +0530 Subject: [PATCH 1288/1358] MOSIP-25179: Added placeholder for sms-authkey Signed-off-by: HimajaDhanyamraju2 <dhanyamraju.himaja2@mindtree.com> --- kernel-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel-default.properties b/kernel-default.properties index 2694c8278f1..bbd1f32f697 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -54,7 +54,7 @@ mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy mosip.kernel.sms.route=mock -mosip.kernel.sms.authkey=dummy +mosip.kernel.sms.authkey=${sms.authkey} ## Email notification mosip.kernel.notification.email.from=do-not-reply@mosip.io From 4be5a2eb04620e410ba91f5f1523219f09147464 Mon Sep 17 00:00:00 2001 From: HimajaDhanyamraju2 <dhanyamraju.himaja2@mindtree.com> Date: Wed, 7 Feb 2024 18:54:17 +0530 Subject: [PATCH 1289/1358] MOSIP-27529: Added version-mappings config Signed-off-by: HimajaDhanyamraju2 <dhanyamraju.himaja2@mindtree.com> --- registration-default.properties | 3 +++ 1 file changed, 3 insertions(+) diff --git a/registration-default.properties b/registration-default.properties index 1eb975382f9..78e6990af1a 100644 --- a/registration-default.properties +++ b/registration-default.properties @@ -473,6 +473,9 @@ mosip.kernel.virus-scanner.port=${mosip.kernel.virus-scanner.port} mosip.kernel.otp.expiry-time=${mosip.kernel.otp.expiry-time} ## end of global properties +# Support Reg.Client upgrade +mosip.registration.verion.upgrade.version-mappings={ "1.1.4":{ "dbVersion":"1.1.4", "releaseOrder":1}, "1.1.5":{ "dbVersion":"1.1.5", "releaseOrder":2}, "1.1.5.5":{ "dbVersion":"1.1.5.5", "releaseOrder":3}, "1.2.0.1-SNAPSHOT":{ "dbVersion":"1.2.0.1", "releaseOrder":4} } + ## backward compatibility fields mosip.registration.uin.update.configured.fields=test mosip.primary-language=eng From de11e5b3a39e9a414ad2b6894ea9ec9a0fce0f6a Mon Sep 17 00:00:00 2001 From: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> Date: Wed, 7 Feb 2024 19:10:53 +0530 Subject: [PATCH 1290/1358] Added required config changes for partner-management, data-share, kernel & identity mapping Signed-off-by: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> --- data-share-policy-schema.json | 3 + identity-mapping.json | 14 +- kernel-default.properties | 308 ++++++++++++++------------ partner-management-default.properties | 36 +-- 4 files changed, 195 insertions(+), 166 deletions(-) diff --git a/data-share-policy-schema.json b/data-share-policy-schema.json index c566502991b..c5a0e362c56 100644 --- a/data-share-policy-schema.json +++ b/data-share-policy-schema.json @@ -24,6 +24,9 @@ }, "source": { "type": "string" + }, + "protocol": { + "type": "string" } }, "required": [ diff --git a/identity-mapping.json b/identity-mapping.json index 47e3e9e7e6f..322a1b0110e 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -118,6 +118,9 @@ "individual_id": { "value": "individual_id" }, + "attributes": { + "value": "fln,ad1,ad2,ad3,cit,reg,pro,poc,cph,em,ph,gen,dob" + }, "street_address": { "value": "addressLine1,addressLine2,addressLine3" }, @@ -133,7 +136,9 @@ "country": { "value": "province" }, - "password" : { "value" : "password" } + "password": { + "value": "password" + } }, "metaInfo": { "value": "metaInfo" @@ -159,9 +164,8 @@ } }, "attributeUpdateCountLimit": { - "fullName": 2, - "gender": 1, - "dob": 1, - "age": 1 + "fullName": 3, + "gender": 2, + "dateOfBirth": 2 } } diff --git a/kernel-default.properties b/kernel-default.properties index 2694c8278f1..6e3802ec306 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -12,17 +12,17 @@ # mosip.reg.client.secret # mosip.prereg.client.secret # softhsm.kernel.security.pin -# softhsm.ida.security.pin +# softhsm-security-pin # email.smtp.host +# email.smtp.port # email.smtp.username # email.smtp.secret # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # mosip.api.internal.url -softhsm.kernel.pin=${softhsm.kernel.security.pin} softhsm.kernel.security.pin=${softhsm.security.pin} - +mosip.kernel.partner.issuer.certificate.allowed.grace.duration=60 ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles @@ -37,26 +37,30 @@ mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/s mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification -mosip.kernel.sms.enabled=false -mosip.kernel.sms.country.code=+91 +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+855 +mosip.kernel.sms.number.min.length=8 +mosip.kernel.sms.number.max.length=10 mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- -#mosip.kernel.sms.api=smsapi -#mosip.kernel.sms.authkey=authkey -#mosip.kernel.sms.route=route -#mosip.kernel.sms.sender=sender -#mosip.kernel.sms.unicode=unicode +mosip.kernel.sms.api=smsapi +mosip.kernel.sms.authkey=authkey +mosip.kernel.sms.route=route +mosip.kernel.sms.sender=sender +mosip.kernel.sms.unicode=unicode -## --msg91 gateway-- +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+91 +mosip.kernel.sms.number.length=10 mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy mosip.kernel.sms.route=mock -mosip.kernel.sms.authkey=dummy ## Email notification + mosip.kernel.notification.email.from=do-not-reply@mosip.io spring.mail.host=${smtp.host} spring.mail.username=${smtp.username} @@ -80,9 +84,12 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass==${softhsm.kernel.security.pin} +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} # Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets mosip.kernel.client.crypto.use-resident-service-module-key=true +# this keys are used to signed the cbor data +mosip.kernel.keymanager.service.cose.privatekey={cipher}62c0e1cad1ce621008707b2ae154087a059796bd401ee2daf209dd1ed82abad9e44d966b65f3087f7070d748a96d475d2f2c916257289af34cd99097fed1e8d792f18b762a2f48121a1567fb31eb89ca448b809e76d7359754f0e55b92daec56 +mosip.kernel.keymanager.service.cose.publickey={cipher}cb27e063eef5400c446bd61f1585a8cb29ca286b659c1d1b6ef04bea407f344b1c1ed4cbe064f4f335a33393b737f47109c66c2f3b5337ddd09375aaf39ea347474a6924a249eea9adcad86758389aa6 ## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log @@ -213,6 +220,11 @@ syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosi syncdata_database_username=masteruser syncdata_database_password=${db.dbuser.password} +licensekeymanager.persistence.jdbc.driver=org.postgresql.Driver +licensekeymanager_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master +licensekeymanager_database_username=masteruser +licensekeymanager_database_password=${db.dbuser.password} + ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc ridgenerator_database_password=${db.dbuser.password} @@ -241,7 +253,6 @@ keycloak.verify-token-audience=true mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token -mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -268,6 +279,7 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager master.search.maximum.rows=50 mosip.level=2 @@ -287,8 +299,8 @@ mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 -kernel.uin.transfer-scheduler-minutes=0 -kernel.uin.transfer-scheduler-hours=* +kernel.uin.transfer-scheduler-minutes=48 +kernel.uin.transfer-scheduler-hours=17 kernel.uin.transfer-scheduler-days_of_month=* kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* @@ -298,11 +310,10 @@ auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/au ## Proxy otp -mosip.kernel.auth.proxy-otp=true +#mosip.kernel.auth.proxy-otp=false mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy - ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client @@ -340,16 +351,16 @@ mosip.kernel.partner.sign.masterkey.application.id=PMS datastores=ldap_1_DS,db_1_DS,db_2_DS ## Partner Management Service allowed partner domains -mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP +mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP,BINDING ## List of keys to auto generate. -mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD +mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD,COMPLIANCE_TOOLKIT ## Random keys required for ZK encrypt. zkcrypto.random.key.generate.count=10000 -mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident +mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident,COMPLIANCE_TOOLKIT:COMP-FIR # Keymanager service keystore cache properties mosip.kernel.keymanager.keystore.keyreference.enable.cache=false @@ -411,7 +422,12 @@ syncdata.websub.resubscription.delay.millis=48000000 ## Admin UI ## this pattern like --> display column : configKey. ## We can provide multiple values with ";" separated -mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns};filterValueMaxCount:{"default":${mosip.kernel.filtervalue.max_columns},"registrationcenters":50,"locations":100} +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns};filterValueMaxCount:{"default":${mosip.kernel.filtervalue.max_columns},"registrationcenters":500,"locations":300} + +# Flag to identify the support of no thumbprint in 1.1.3 version. +# Added this for backward compatability. default is false, means support is not required. +# Make it to true if support is required. +mosip.kernel.keymanager.113nothumbprint.support=false ## Used to get IAM user details. mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager @@ -428,9 +444,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-partner-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-mobile,mpartner-default-digitalcard,mosip-signup-client,mosip-toolkit-android-client - - +auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} @@ -441,8 +455,8 @@ mosip.service.end-points={cipher}dd5737cb38b0d354e925a031d1662cae45feb891135577d spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true -mosip.kernel.masterdata.template_idauthentication_event=MASTERDATA_IDAUTHENTICATION_TEMPLATES -mosip.kernel.masterdata.title_event=MASTERDATA_TITLES +##validity time of mosip-signed certificates + ## Roles mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN @@ -457,69 +471,69 @@ mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER mosip.role.admin.masterdata.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER -mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN @@ -528,17 +542,17 @@ mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,CENTRAL_ADMIN mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION -mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN @@ -551,8 +565,8 @@ mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN,REGISTRATION_ADMIN mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR @@ -561,26 +575,26 @@ mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_AD mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT -mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT -mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN @@ -606,8 +620,8 @@ mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL, mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN @@ -615,33 +629,33 @@ mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT -mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,ID_REPOSITORY -mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRINT_PARTNER -mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRINT_PARTNER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN @@ -671,11 +685,11 @@ mosip.role.admin.masterdata.getuserssearch=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,Z mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN @@ -711,20 +725,20 @@ mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_ mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadotherdomaincertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadotherdomaincertificate=PARTNER_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postmigratebasekey=KEY_MIGRATION_ADMIN mosip.role.keymanager.getzktempcertificate=KEY_MIGRATION_ADMIN mosip.role.keymanager.postlicensegenerate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postmigratezkkeys=KEY_MIGRATION_ADMIN -mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN -mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER -mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PMS_ADMIN,PMS_USER +mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_REQUEST @@ -735,21 +749,23 @@ mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHE mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postcwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postcwtdecode=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postcwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postgenerateargon2hash=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT mosip.kernel.keymanager.jwtsign.validate.json=false auth.allowed.urls=http://localhost:5000/ - -##This property is used for validation in kernel-masterdata-service +##These properties are used for validation in kernel-masterdata-service #For example, Arabic needs to be added along with english #the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag #the final value in this case might look like [^a-z\u0600-\u06FF] -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9\u0600-\u06FF\u0C80-\u0CFF] -mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] - -management.health.mail.enabled=true - - -# html content for email notification -mosip.kernel.mail.content.html.enable=true +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] +mosip.kernel.masterdata.name.validate.regex=[^a-z] +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout +mosip.kernel.keymgr.hsm.health.check.enabled=false diff --git a/partner-management-default.properties b/partner-management-default.properties index 386a5fce360..4884186787f 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -89,7 +89,8 @@ pmp.policy.schema.url= https://schemas.mosip.io/v1/auth-policy ## If we add any new policy type, corresponding schema also needs to be added. ## format for adding schema configuration for new policy type is as below ## pmp.policyTypeName.policy.schema(all are in lowercase)= schema url -pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP +pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP,Binding +pmp.binding.policy.schema = ${mosip.kernel.xsdstorage-uri}binding-policy-schema.json pmp.auth.policy.schema = ${mosip.kernel.xsdstorage-uri}auth-policy-schema.json pmp.datashare.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json pmp.credentialissuance.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json @@ -186,7 +187,7 @@ partner.search.maximum.rows=10 pmp.allowed.credential.types=auth,qrcode,euin,reprint,vercred,opencrvs ## Allowed partner types who can map policies to credential types -policy.credential.type.mapping.allowed.partner.types=Credential_Partner,Online_Verification_Partner +policy.credential.type.mapping.allowed.partner.types=Credential_Partner,Online_Verification_Partner,Auth_Partner ## Allowed kyc attributes. Used to display in UI policy.allowed.kyc.attributes = {"fullName": "Full Name","middleName": "Middle Name","lastName": "Last Name","dateOfBirth": "DateOfBirth","gender": "Gender","phone": "phone"} @@ -310,16 +311,21 @@ mosip.role.pms.getmisplicensekey=PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.postmispfiltervalues=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN mosip.role.pms.postmispsearch=MISP_PARTNER,MISP,PARTNERMANAGER,PARTNER_ADMIN -# query param usd to refer url to redirect after logout -mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri -# end session endpoint in OIDC -mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout -# esignet claims mapping file url -mosip.pms.esignet.claims-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/identity-mapping.json -# esignet amr-acr mapping file url -mosip.pms.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json -## esignet Service apis for create and update -mosip.pms.esignet.oidc-client-create-url=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client -mosip.pms.esignet.oidc-client-update-url=https://${mosip.api.public.host}/v1/esignet/client-mgmt/oidc-client -## esignet Service api to fetch the OIDC Client configurations -mosip.pms.esignet.config-url=https://${mosip.api.public.host}/v1/esignet/oidc/.well-known/openid-configuration +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout +# Esignet claims mapping file url +mosip.pms.esignet.claims-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/identity-mapping.json +# Esignet amr-acr mapping file url +mosip.pms.esignet.amr-acr-mapping-file-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/amr-acr-mapping.json +## Esignet Service apis for create and update +mosip.pms.esignet.oidc-client-create-url=${mosip.esignet.service.url}/v1/esignet/client-mgmt/oidc-client +mosip.pms.esignet.oidc-client-update-url=${mosip.esignet.service.url}/v1/esignet/client-mgmt/oidc-client + +#Esignet OAuth Client apis for create and update +mosip.pms.esignet.oauth-client-create-url=${mosip.esignet.service.url}/v1/esignet/client-mgmt/oauth-client +mosip.pms.esignet.oauth-client-update-url=${mosip.esignet.service.url}/v1/esignet/client-mgmt/oauth-client + +## IDP Service api to fetch OIDC Client configuration +mosip.pms.esignet.config-url=${mosip.esignet.service.url}/v1/esignet/oidc/.well-known/openid-configuration From 64b5caa17c12ec67861f81e323e288467cbf68f2 Mon Sep 17 00:00:00 2001 From: Aiham Hasan <89243555+aihamh@users.noreply.github.com> Date: Wed, 7 Feb 2024 19:54:04 +0530 Subject: [PATCH 1291/1358] [MOSIP-24358] Update applicanttype.mvel Signed-off-by: Aiham Hasan <89243555+aihamh@users.noreply.github.com> --- applicanttype.mvel | 31 ++++++++++++------------------- 1 file changed, 12 insertions(+), 19 deletions(-) diff --git a/applicanttype.mvel b/applicanttype.mvel index 69da629d5dc..6dc4daff750 100644 --- a/applicanttype.mvel +++ b/applicanttype.mvel @@ -105,26 +105,38 @@ def getApplicantType() { return "001"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { return "002"; + } else if (itc == NonResident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { + return "002"; } else if (itc == Resident && genderType == MALE && ageCode == CHILD && !isBioExPresent) { return "003"; } else if (itc == Resident && genderType == MALE && ageCode == ADULT && !isBioExPresent) { return "004"; + } else if (itc == Resident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { + return "004"; } else if (itc == NonResident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { return "005"; } else if (itc == NonResident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { return "006"; + } else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { + return "006"; } else if (itc == Resident && genderType == FEMALE && ageCode == CHILD && !isBioExPresent) { return "007"; } else if (itc == Resident && genderType == FEMALE && ageCode == ADULT && !isBioExPresent) { return "008"; + } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { + return "008"; } else if (itc == NonResident && genderType == Others && ageCode == CHILD && !isBioExPresent) { return "005"; } else if (itc == NonResident && genderType == Others && ageCode == ADULT && !isBioExPresent) { return "006"; + } else if (itc == NonResident && genderType == Others && ageCode == MINOR && !isBioExPresent) { + return "006"; } else if (itc == Resident && genderType == Others && ageCode == CHILD && !isBioExPresent) { return "007"; } else if (itc == Resident && genderType == Others && ageCode == ADULT && !isBioExPresent) { return "008"; + } else if (itc == Resident && genderType == Others && ageCode == MINOR && !isBioExPresent) { + return "008"; } else if (itc == NonResident && genderType == MALE && ageCode == CHILD && isBioExPresent) { return "009"; } else if (itc == NonResident && genderType == MALE && ageCode == ADULT && isBioExPresent) { @@ -169,24 +181,5 @@ def getApplicantType() { return "015"; } - else if (itc == NonResident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { - return "014"; - } else if (itc == Resident && genderType == MALE && ageCode == MINOR && !isBioExPresent) { - return "015"; - } - - else if (itc == NonResident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { - return "014"; - } else if (itc == Resident && genderType == FEMALE && ageCode == MINOR && !isBioExPresent) { - return "015"; - } - - else if (itc == NonResident && genderType == Others && ageCode == MINOR && !isBioExPresent) { - return "014"; - } else if (itc == Resident && genderType == Others && ageCode == MINOR && !isBioExPresent) { - return "015"; - } - - return "000"; } From e5d022dd1e666803e0067a615b2c5cc32a2d9485 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <Loganathan.Sekar@mindtree.com> Date: Wed, 7 Feb 2024 20:25:05 +0530 Subject: [PATCH 1292/1358] Moved missing ida config changes Signed-off-by: Loganathan Sekar <Loganathan.Sekar@mindtree.com> --- id-authentication-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index cc35fbe10b2..b1c2a0c1e37 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -570,14 +570,14 @@ mosip.ida.allowed.domain.uris=${mosip.api.internal.url},https://${mosip.esignet. biometrics.datetime.pattern=yyyy-MM-dd'T'HH:mm:ssXXX #The list of attributes in identity that are to be decrypted by default -ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email +ida-default-identity-filter-attributes=phone,fullName,dateOfBirth,email,preferredLang #------ Un-encrypted Credential Attributes list ----------- #The list of attributes in identity that not are Zero Knowledge encrpted while creating the credential in credential service as per the datashare policy. The same credential format is dumped in IDA DB (identity_cache table). #These attributes will not be decrypted when fetching the records from IDA DB for Authentication/EKYC/OTP requests. #By default all attributes are assumed to be Zero Knowledge encrypted. #Specify the attributes here only if they are not encrypted as per the datashare policy. -ida-zero-knowledge-unencrypted-credential-attributes= +ida-zero-knowledge-unencrypted-credential-attributes=preferredLang #openapi properties to sort tags and operations in Id Authentication springdoc.swagger-ui.tagsSorter=alpha From 9e6f499ac3b111f2767098307dfa9b4a972c0e67 Mon Sep 17 00:00:00 2001 From: dhanendra06 <dhanendra.tech@gmail.com> Date: Thu, 8 Feb 2024 07:23:28 +0530 Subject: [PATCH 1293/1358] resolved the delta config Signed-off-by: dhanendra06 <dhanendra.tech@gmail.com> --- digital-card-default.properties | 5 ----- registration-processor-credential-partners.json | 2 +- 2 files changed, 1 insertion(+), 6 deletions(-) diff --git a/digital-card-default.properties b/digital-card-default.properties index cb370131dc3..909445230d5 100644 --- a/digital-card-default.properties +++ b/digital-card-default.properties @@ -90,11 +90,6 @@ IDREPOGETIDBYUIN=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid # PDFSIGN to signed the pdf card PDFSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/pdf/sign - -# PDF Digital card is protected with password using below property based on define attribute it will encrypt by taking first 4 character. -mosip.digitalcard.uincard.password=fullName|dateOfBirth -mosip.digitalcard.pdf.password.enable.flag=true - #verifiable credential property that used to enable vc check. mosip.digitalcard.verify.credentials.flag=true diff --git a/registration-processor-credential-partners.json b/registration-processor-credential-partners.json index 1c74ee4d6c2..0540d3d3025 100644 --- a/registration-processor-credential-partners.json +++ b/registration-processor-credential-partners.json @@ -5,7 +5,7 @@ "partnerId": "mpartner-default-digitalcard", "credentialType": "PDFCard", "template": "RPR_UIN_CARD_TEMPLATE", - "appIdBasedCredentialIdSuffix": ".pdf", + "appIdBasedCredentialIdSuffix": "-PDF", "process": null, "metaInfoFields": null }, From 556b9e9554d52c037d3e185fd5a9322922cfdff2 Mon Sep 17 00:00:00 2001 From: Neha2365 <110969715+Neha2365@users.noreply.github.com> Date: Thu, 8 Feb 2024 09:30:07 +0530 Subject: [PATCH 1294/1358] Update id-repository-default properties Signed-off-by: Neha2365 <110969715+Neha2365@users.noreply.github.com> --- id-repository-default.properties | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index 22fa406b923..ad889fa11aa 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -382,7 +382,7 @@ mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} # Enabling below property will start logging performance logs in identity and vid service mosip.idrepo.aspect-logging.enabled=false -auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard,mosip-signup-client +auth.server.admin.allowed.audience=mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,opencrvs-partner,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client #openapi properties to sort tag and operations of id-repository services springdoc.swagger-ui.tagsSorter=alpha springdoc.swagger-ui.operationsSorter=alpha @@ -443,3 +443,7 @@ mosip.idrepo.identity.disable-uin-based-credential-request=false # This configuration is considered only when mentioned fieldId is marked to be a handle in the identity schema and it is one of the selectedHandle in the ID-object. mosip.identity.fieldid.handle-postfix.mapping={'phone':'@phone'} mosip.idrepo.identity.max-request-time-deviation-seconds=60 +#Enable this property only when to check cache log +#logging.level.org.springframework.cache=TRACE +# By default, it is false. To enable force merge of data, change it to true. +mosip.idrepo.create-identity.enable-force-merge=false From 221af925d45ea3f8516b865d88ecbf7fbc92b139 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 8 Feb 2024 09:50:44 +0530 Subject: [PATCH 1295/1358] Update admin-default.properties Signed-off-by: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> --- admin-default.properties | 35 +++++++++++++++++++++++++++-------- 1 file changed, 27 insertions(+), 8 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index 2ac545f5a79..d22abe4216f 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -209,6 +209,7 @@ mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/mosip/prot mosip.iam.module.admin_realm_id=mosip mosip.iam.token_endpoint=${keycloak.internal.url}/auth/realms/mosip/protocol/openid-connect/token mosip.iam.certs_endpoint=${keycloak.external.url}/auth/realms/mosip/protocol/openid-connect/certs + regproc.token.request.appid=regproc regproc.token.request.clientId=mosip-regproc-client regproc.token.request.secretKey=${mosip.regproc.client.secret} @@ -236,17 +237,23 @@ LOST_RID_API=${mosip.regproc.status.service.url}/registrationprocessor/v1/regist logging.level.org.springframework.web.client.RestTemplate=DEBUG # Roles -mosip.role.admin.getpacketstatusupdate=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.postbulkupload=GLOBAL_ADMIN -mosip.role.admin.getbulkuploadtranscationtranscationid=GLOBAL_ADMIN -mosip.role.admin.getbulkuploadgetalltransactions=GLOBAL_ADMIN +mosip.role.admin.getpacketstatusupdate=REGISTRATION_ADMIN +mosip.role.admin.postbulkupload=GLOBAL_ADMIN,REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.getbulkuploadtranscationtranscationid=GLOBAL_ADMIN,REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.getbulkuploadgetalltransactions=GLOBAL_ADMIN,REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN mosip.role.admin.postauditmanagerlog=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.getgeneratecsrcertificateapplicationidreferenceid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.postuploadcertificate=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.postgeneratecsr=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.postuploadotherdomaincertificate=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.getgeneratecsrcertificateapplicationidreferenceid=KEY_MAKER +mosip.role.admin.postuploadcertificate=KEY_MAKER +mosip.role.admin.postgeneratecsr=KEY_MAKER +mosip.role.admin.postuploadotherdomaincertificate=KEY_MAKER + +mosip.role.admin.getlostRiddetailsrid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.postlostRid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.getapplicantDetailsrid=DIGITALCARD_ADMIN +mosip.role.admin.getapplicantDetailsgetLoginDetails=DIGITALCARD_ADMIN +mosip.role.admin.getriddigitalcardrid=DIGITALCARD_ADMIN # packet-manager mosip.commons.packetnames=id,evidence,optional @@ -290,6 +297,8 @@ mosip.kernel.keymanager.uploadcertificate=${mosip.kernel.keymanager.url}/v1/keym mosip.kernel.keymanager.uploadotherdomaincertificate=${mosip.kernel.keymanager.url}/v1/keymanager/uploadOtherDomainCertificate # this property are used in AdminProxyService to get base url and version +mosip.admin.masterdata.service.url=http://masterdata.kernel/v1 +mosip.admin.keymanager.service.url=http://keymanager.keymanager/v1 mosip.admin.masterdata.service.version=masterdata.kernel/v1 mosip.admin.keymanager.service.version=keymanager.keymanager/v1 mosip.admin.base.url=http:/ @@ -300,3 +309,13 @@ auth.allowed.urls=https://${mosip.admin.host}/ mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri # end session endpoint in OIDC mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout + +#--------------------Applicant Details Api----------------------------- +mosip.admin.identityMappingJson=identity-mapping.json +mosip.admin.applicant-details.exposed-identity-fields=dob,applicantPhoto +RETRIEVE_IDENTITY_API=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid +## this property is used to configure max limit of search for the login user to get applicantDetails +mosip.admin.applicant-details.max.login.count=30 + +#-------------------Digital Card Api----------------------------------- +DIGITAL_CARD_STATUS_URL=${mosip.digitalcard.service.url}/v1/digitalcard From deda883ac8e1ac1768503e69cec66f0900924fa7 Mon Sep 17 00:00:00 2001 From: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> Date: Thu, 8 Feb 2024 10:12:27 +0530 Subject: [PATCH 1296/1358] updated properties files Signed-off-by: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> --- kernel-default.properties | 49 +++++++++++---------------- partner-management-default.properties | 3 +- 2 files changed, 20 insertions(+), 32 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 6e3802ec306..b683a6000b7 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -12,17 +12,17 @@ # mosip.reg.client.secret # mosip.prereg.client.secret # softhsm.kernel.security.pin -# softhsm-security-pin +# softhsm.ida.security.pin # email.smtp.host -# email.smtp.port # email.smtp.username # email.smtp.secret # mosip.kernel.tokenid.uin.salt # mosip.kernel.tokenid.partnercode.salt # mosip.api.internal.url +softhsm.kernel.pin=${softhsm.kernel.security.pin} softhsm.kernel.security.pin=${softhsm.security.pin} -mosip.kernel.partner.issuer.certificate.allowed.grace.duration=60 + ## Sync data mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager mosip.kernel.syncdata.auth-manager-roles=/roles @@ -37,30 +37,26 @@ mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/s mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification -mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+855 -mosip.kernel.sms.number.min.length=8 -mosip.kernel.sms.number.max.length=10 +mosip.kernel.sms.enabled=false +mosip.kernel.sms.country.code=+91 mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- -mosip.kernel.sms.api=smsapi -mosip.kernel.sms.authkey=authkey -mosip.kernel.sms.route=route -mosip.kernel.sms.sender=sender -mosip.kernel.sms.unicode=unicode +#mosip.kernel.sms.api=smsapi +#mosip.kernel.sms.authkey=authkey +#mosip.kernel.sms.route=route +#mosip.kernel.sms.sender=sender +#mosip.kernel.sms.unicode=unicode -mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+91 -mosip.kernel.sms.number.length=10 +## --msg91 gateway-- mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy mosip.kernel.sms.route=mock +mosip.kernel.sms.authkey=${sms.authkey} ## Email notification - mosip.kernel.notification.email.from=do-not-reply@mosip.io spring.mail.host=${smtp.host} spring.mail.username=${smtp.username} @@ -84,12 +80,9 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} +mosip.kernel.keymanager.hsm.keystore-pass==${softhsm.kernel.security.pin} # Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets mosip.kernel.client.crypto.use-resident-service-module-key=true -# this keys are used to signed the cbor data -mosip.kernel.keymanager.service.cose.privatekey={cipher}62c0e1cad1ce621008707b2ae154087a059796bd401ee2daf209dd1ed82abad9e44d966b65f3087f7070d748a96d475d2f2c916257289af34cd99097fed1e8d792f18b762a2f48121a1567fb31eb89ca448b809e76d7359754f0e55b92daec56 -mosip.kernel.keymanager.service.cose.publickey={cipher}cb27e063eef5400c446bd61f1585a8cb29ca286b659c1d1b6ef04bea407f344b1c1ed4cbe064f4f335a33393b737f47109c66c2f3b5337ddd09375aaf39ea347474a6924a249eea9adcad86758389aa6 ## Auditmanager mosip.kernel.auditmanager-service-logs-location=logs/audit.log @@ -220,11 +213,6 @@ syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosi syncdata_database_username=masteruser syncdata_database_password=${db.dbuser.password} -licensekeymanager.persistence.jdbc.driver=org.postgresql.Driver -licensekeymanager_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -licensekeymanager_database_username=masteruser -licensekeymanager_database_password=${db.dbuser.password} - ridgenerator_database_username =regprcuser ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc ridgenerator_database_password=${db.dbuser.password} @@ -253,6 +241,7 @@ keycloak.verify-token-audience=true mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager mosip.admin.login_flow.name=authorization_code mosip.admin.login_flow.response_type=code mosip.admin.login_flow.scope=cls @@ -279,7 +268,6 @@ mosip.keycloak.admin.secret.key=${keycloak.admin.password} mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter -mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager master.search.maximum.rows=50 mosip.level=2 @@ -299,8 +287,8 @@ mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} ## UIN scheduler kernel.uin.transfer-scheduler-type=cron kernel.uin.transfer-scheduler-seconds=0 -kernel.uin.transfer-scheduler-minutes=48 -kernel.uin.transfer-scheduler-hours=17 +kernel.uin.transfer-scheduler-minutes=0 +kernel.uin.transfer-scheduler-hours=* kernel.uin.transfer-scheduler-days_of_month=* kernel.uin.transfer-scheduler-months=* kernel.uin.transfer-scheduler-days_of_week=* @@ -310,10 +298,11 @@ auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/au ## Proxy otp -#mosip.kernel.auth.proxy-otp=false +mosip.kernel.auth.proxy-otp=true mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy + ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client @@ -351,7 +340,7 @@ mosip.kernel.partner.sign.masterkey.application.id=PMS datastores=ldap_1_DS,db_1_DS,db_2_DS ## Partner Management Service allowed partner domains -mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP,BINDING +mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP ## List of keys to auto generate. mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD,COMPLIANCE_TOOLKIT diff --git a/partner-management-default.properties b/partner-management-default.properties index 4884186787f..859ac099286 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -89,8 +89,7 @@ pmp.policy.schema.url= https://schemas.mosip.io/v1/auth-policy ## If we add any new policy type, corresponding schema also needs to be added. ## format for adding schema configuration for new policy type is as below ## pmp.policyTypeName.policy.schema(all are in lowercase)= schema url -pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP,Binding -pmp.binding.policy.schema = ${mosip.kernel.xsdstorage-uri}binding-policy-schema.json +pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP pmp.auth.policy.schema = ${mosip.kernel.xsdstorage-uri}auth-policy-schema.json pmp.datashare.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json pmp.credentialissuance.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json From d938597bd548b129e36055cd4c9149ab85b0d7cb Mon Sep 17 00:00:00 2001 From: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> Date: Thu, 8 Feb 2024 10:15:08 +0530 Subject: [PATCH 1297/1358] updated properties files Signed-off-by: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> --- kernel-default.properties | 2 +- partner-management-default.properties | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index b683a6000b7..0a1efa8dfc9 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -54,7 +54,7 @@ mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy mosip.kernel.sms.route=mock -mosip.kernel.sms.authkey=${sms.authkey} +mosip.kernel.sms.authkey=dummy ## Email notification mosip.kernel.notification.email.from=do-not-reply@mosip.io diff --git a/partner-management-default.properties b/partner-management-default.properties index 859ac099286..9e4f8cb403d 100644 --- a/partner-management-default.properties +++ b/partner-management-default.properties @@ -89,7 +89,7 @@ pmp.policy.schema.url= https://schemas.mosip.io/v1/auth-policy ## If we add any new policy type, corresponding schema also needs to be added. ## format for adding schema configuration for new policy type is as below ## pmp.policyTypeName.policy.schema(all are in lowercase)= schema url -pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP +pmp.allowed.policy.types=Auth,DataShare,CredentialIssuance,MISP pmp.auth.policy.schema = ${mosip.kernel.xsdstorage-uri}auth-policy-schema.json pmp.datashare.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json pmp.credentialissuance.policy.schema=${mosip.kernel.xsdstorage-uri}data-share-policy-schema.json From 90fe06a657e89e59ae2f511a077299be0d0bcf32 Mon Sep 17 00:00:00 2001 From: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> Date: Thu, 8 Feb 2024 10:20:15 +0530 Subject: [PATCH 1298/1358] Update identity-mapping.json Signed-off-by: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> --- identity-mapping.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/identity-mapping.json b/identity-mapping.json index 322a1b0110e..dab04032fc6 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,7 +164,7 @@ } }, "attributeUpdateCountLimit": { - "fullName": 3, + "fullName": 2, "gender": 2, "dateOfBirth": 2 } From 6c9735bccd1ef2f6520e8e000af3d41ca01c775f Mon Sep 17 00:00:00 2001 From: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> Date: Thu, 8 Feb 2024 10:22:20 +0530 Subject: [PATCH 1299/1358] Update kernel-default.properties Signed-off-by: GOKULRAJ136 <110164849+GOKULRAJ136@users.noreply.github.com> --- kernel-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index 0a1efa8dfc9..ffc45c8168d 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -393,8 +393,8 @@ subscriptions-delay-on-startup=120000 # Pause & resume api proeprties -PACKET_RESUME_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflowaction -PACKET_PAUSE_API=${mosip.regproc.workflow.url}/registrationprocessor/v1/workflowmanager/workflow/search +PACKET_RESUME_API=${mosip.api.internal.url}/registrationprocessor/v1/workflowmanager/workflowaction +PACKET_PAUSE_API=${mosip.api.internal.url}/registrationprocessor/v1/workflowmanager/workflow/search KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey ## resubscription and subscription initial delay for masterdata service From a1efdcb729446455732545eaf232eea97d967df4 Mon Sep 17 00:00:00 2001 From: HimajaDhanyamraju2 <dhanyamraju.himaja2@mindtree.com> Date: Thu, 8 Feb 2024 12:02:20 +0530 Subject: [PATCH 1300/1358] Updated MESSAGE_DELIVERY_TIMEOUT Signed-off-by: HimajaDhanyamraju2 <dhanyamraju.himaja2@mindtree.com> --- websub-service.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/websub-service.toml b/websub-service.toml index 9d3466fa5f8..177d6cfb6e0 100644 --- a/websub-service.toml +++ b/websub-service.toml @@ -39,7 +39,7 @@ MESSAGE_DELIVERY_RETRY_INTERVAL = 3.0 MESSAGE_DELIVERY_COUNT = 3 # The message delivery timeout -MESSAGE_DELIVERY_TIMEOUT = 60.0 +MESSAGE_DELIVERY_TIMEOUT = 30.0 # The base URL of IDP MOSIP_AUTH_BASE_URL = "${mosip.kernel.authmanager.url}/v1/authmanager" From 25a01bd704decdd55133157c687cc6ee3169c5ab Mon Sep 17 00:00:00 2001 From: Swati Goel <meet2swati@gmail.com> Date: Thu, 8 Feb 2024 13:19:10 +0530 Subject: [PATCH 1301/1358] [INJIMOB-838] update mimoto and issuer configuration Signed-off-by: Swati Goel <meet2swati@gmail.com> --- mimoto-default.properties | 9 ++-- mimoto-issuers-config.json | 106 ++++++++++++++++++++++++++++++++++++- 2 files changed, 110 insertions(+), 5 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index 564acfb0096..f9ea19278bf 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -3,7 +3,7 @@ public.url=${mosip.api.internal.url}/residentmobileapp mosip.resident.base.url=${mosip.resident.url}/resident/v1 mosip.esignet.base.url=${mosip.esignet.host}/v1/esignet -idp.binding.base.url=https://${mosip.api.public.host}/v1/esignet/binding +idp.binding.base.url=https://${mosip.esignet.base.url}/binding RESIDENT_OTP=${mosip.resident.base.url}/req/otp RESIDENT_CREDENTIAL_REQUEST=${mosip.resident.base.url}/req/credential @@ -17,6 +17,7 @@ RESIDENT_AID_GET_INDIVIDUALID=${mosip.resident.base.url}/aid/status BINDING_OTP=${idp.binding.base.url}/binding-otp WALLET_BINDING=${idp.binding.base.url}/wallet-binding + # Resident App credential.template=template.json credential.sample=sample_credential.json @@ -141,7 +142,7 @@ server.tomcat.accesslog.prefix=stdout server.tomcat.accesslog.buffered=false server.tomcat.accesslog.suffix= server.tomcat.accesslog.file-date-format= -server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}"} +server.tomcat.accesslog.pattern={"@timestamp":"%{yyyy-MM-dd'T'HH:mm:ss.SSS'Z'}t","level":"ACCESS","level_value":70000,"traceId":"%{X-B3-TraceId}i","appId":"%{X-AppId}i","statusCode":%s,"req.requestURI":"%U","bytesSent":%b,"timeTaken":%T,"appName":"${spring.application.name}"} server.tomcat.accesslog.className=io.mosip.kernel.core.logger.config.SleuthValve registration.processor.unMaskedUin.length=5 @@ -179,6 +180,7 @@ mosip.auth.filter_disable=false mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} vercred.type.vid=VID + mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotokeybinding wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} @@ -189,8 +191,7 @@ mosip.kernel.masterdata.name.validate.regex=[^a-z\u0600-\u06FF\u0C80-\u0CFF] #mosip notification otp channel config mosip.notificationtype=SMS|EMAIL|PHONE -# OpenID -# Configurations related to openid4vc +# Configurations related to openid4vci mosip.openid.issuers=mimoto-issuers-config.json GET_TOKEN=${public.internet.url}/v1/esignet/login/oauth/token mosip.oidc.esignet.token.endpoint=https://${mosip.esignet.base.url}/oauth/v2/token diff --git a/mimoto-issuers-config.json b/mimoto-issuers-config.json index ef317989e4d..eaf5f112b9c 100644 --- a/mimoto-issuers-config.json +++ b/mimoto-issuers-config.json @@ -9,7 +9,59 @@ "url": "https://${mosip.api.public.host}/inji/digit-icon.png", "alt_text": "digits-icon" }, + "title": "Download via UIN, VID, AID", + "description":"Enter your national ID to download your card.", "language": "en" + }, + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "رمز الأرقام" + }, + "title": "التنزيل عبر UIN, VID, AID", + "description": "أدخل رقم الهوية الوطنية الخاص بك لتنزيل بطاقتك.", + "language": "en" + }, + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "अंक-आइकन" + }, + "title": "UIN, VID, AID के माध्यम से डाउनलोड करे", + "description":"अपना कार्ड डाउनलोड करने के लिए अपनी राष्ट्रीय आईडी दर्ज करें।", + "language": "hi" + }, + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "ಅಂಕಿ-ಐಕಾನ್" + }, + "title": "UIN, VID, AID ಮೂಲಕ ಡೌನ್ಲೋಡ್ ಮಾಡಿ", + "description": "ನಿಮ್ಮ ಕಾರ್ಡ್ ಅನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಲು ನಿಮ್ಮ ರಾಷ್ಟ್ರೀಯ ID ಅನ್ನು ನಮೂದಿಸಿ.", + "language": "kn" + }, + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "இலக்கங்கள்-ஐகான்" + }, + "title": "UIN, VID, AID மூலம் பதிவிறக்கவும்", + "description":"உங்கள் கார்டைப் பதிவிறக்க உங்கள் தேசிய ஐடியை உள்ளிடவும்.", + "language": "ta" + }, + { + "name": "UIN, VID, AID", + "logo": { + "url": "https://${mosip.api.public.host}/inji/digit-icon.png", + "alt_text": "digits-icon" + }, + "title": "I-download sa pamamagitan ng UIN, VID, AID", + "description":"Ilagay ang iyong national ID para i-download ang iyong card.", + "language": "fil" } ], "protocol": "OTP" @@ -23,7 +75,59 @@ "url": "https://${mosip.esignet.host}/logo.png", "alt_text": "esignet-logo" }, + "title": "Download via e-Signet", + "description": "Enter your national ID to download your card.", "language": "en" + }, + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "esignet-logo" + }, + "title": "e-Signet التنزيل عبر", + "description": "أدخل رقم الهوية الوطنية الخاص بك لتنزيل بطاقتك." , + "language": "ar" + }, + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "esignet-लोगो" + }, + "title": "ई-हस्ताक्षर के माध्यम से डाउनलोड करें", + "description":"अपना कार्ड डाउनलोड करने के लिए अपनी राष्ट्रीय आईडी दर्ज करें।", + "language": "hi" + }, + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "esignet-ಲೋಗೋ" + }, + "title": "ಇ-ಸಿಗ್ನೆಟ್ ಮೂಲಕ ಡೌನ್ಲೋಡ್ ಮಾಡಿ", + "description": "ನಿಮ್ಮ ಕಾರ್ಡ್ ಅನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಲು ನಿಮ್ಮ ರಾಷ್ಟ್ರೀಯ ID ಅನ್ನು ನಮೂದಿಸಿ.", + "language": "kn" + }, + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "esignet-லோகோ" + }, + "title": "இ-சிக்னெட் மூலம் பதிவிறக்கம் செய்யவும்", + "description":"உங்கள் கார்டைப் பதிவிறக்க உங்கள் தேசிய ஐடியை உள்ளிடவும்.", + "language": "ta" + }, + { + "name": "e-Signet", + "logo": { + "url": "https://${mosip.esignet.host}/logo.png", + "alt_text": "logo-signet" + }, + "title": "I-download sa pamamagitan ng e-Signet", + "description":"Ilagay ang iyong national ID para i-download ang iyong card.", + "language": "fil" } ], "protocol": "OpenId4VCI", @@ -35,7 +139,7 @@ "authorization_endpoint": "https://${mosip.esignet.host}/authorize", "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token", "credential_endpoint": "https://${mosip.esignet.host}/v1/esignet/vci/credential", - "credential_audience": "https://${mosip.esignet.host}/v1/esignet" + "credential_audience": "https://${mosip.esignet.host}" } ] } \ No newline at end of file From f57cab43403b22b7692d3280c8a95da2e7204c63 Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Thu, 8 Feb 2024 15:40:05 +0530 Subject: [PATCH 1302/1358] [MOSIP-31511]Update kernel-default.properties Signed-off-by: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> --- kernel-default.properties | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/kernel-default.properties b/kernel-default.properties index ffa240b1e0d..6e3dfa765a4 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -12,7 +12,7 @@ # mosip.reg.client.secret # mosip.prereg.client.secret # softhsm.kernel.security.pin -# softhsm.ida.security.pin +# softhsm-security-pin # email.smtp.host # email.smtp.username # email.smtp.secret @@ -20,7 +20,6 @@ # mosip.kernel.tokenid.partnercode.salt # mosip.api.internal.url -softhsm.kernel.pin=${softhsm.kernel.security.pin} softhsm.kernel.security.pin=${softhsm.security.pin} ## Sync data @@ -37,24 +36,25 @@ mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/s mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest ## SMS notification -mosip.kernel.sms.enabled=false +mosip.kernel.sms.enabled=true mosip.kernel.sms.country.code=+91 mosip.kernel.sms.number.length=10 #mosip.kernel.sms.gateway : "infobip" or "msg91" mosip.kernel.sms.gateway=${sms.gateway.provider} ## --msg91 gateway-- -#mosip.kernel.sms.api=smsapi -#mosip.kernel.sms.authkey=authkey -#mosip.kernel.sms.route=route -#mosip.kernel.sms.sender=sender -#mosip.kernel.sms.unicode=unicode +mosip.kernel.sms.api=smsapi +mosip.kernel.sms.authkey=${sms.authkey} +mosip.kernel.sms.route=route +mosip.kernel.sms.sender=sender +mosip.kernel.sms.unicode=unicode -## --msg91 gateway-- +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+91 +mosip.kernel.sms.number.length=10 mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms mosip.kernel.sms.sender=AD-MOSIP mosip.kernel.sms.password=dummy mosip.kernel.sms.route=mock -mosip.kernel.sms.authkey=${sms.authkey} ## Email notification mosip.kernel.notification.email.from=do-not-reply@mosip.io @@ -80,7 +80,7 @@ mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass==${softhsm.kernel.security.pin} +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} # Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets mosip.kernel.client.crypto.use-resident-service-module-key=true @@ -298,11 +298,10 @@ auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/au ## Proxy otp -mosip.kernel.auth.proxy-otp=true +#mosip.kernel.auth.proxy-otp=false mosip.kernel.auth.proxy-otp-value=111111 mosip.security.provider.name=SunPKCS11-pkcs11-proxy - ## identity schema backward compatability ######## mosip.ui.spec.default.domain=registration-client @@ -349,6 +348,7 @@ mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,RE zkcrypto.random.key.generate.count=10000 + mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident,COMPLIANCE_TOOLKIT:COMP-FIR # Keymanager service keystore cache properties From c67344e0fade4054bb3841b7aa59f84f0ca1ba5f Mon Sep 17 00:00:00 2001 From: Neha2365 <110969715+Neha2365@users.noreply.github.com> Date: Fri, 9 Feb 2024 11:30:06 +0530 Subject: [PATCH 1303/1358] MOSIP-31517-clone-1-2-0-1-on-demand-template-extraction config changes Signed-off-by: Neha2365 <110969715+Neha2365@users.noreply.github.com> --- id-authentication-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index b1c2a0c1e37..21fdfbd6c3e 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -271,6 +271,7 @@ ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE ida-topic-pmp-oidc-client-created=OIDC_CLIENT_CREATED ida-topic-pmp-oidc-client-updated=OIDC_CLIENT_UPDATED +ida-topic-on-demand-template-extraction=AUTHENTICATION_ERRORS # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -642,3 +643,6 @@ mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredentia # Regex to validate handles with provided key as the postfix # if the input handle is +855345353453@phone then the provided regex is used to validate the input. mosip.ida.handle-types.regex={ '@phone' : '^\\+855[1-9][0-9]{7,9}@phone$' } + +# Partner Id for encryption used in ondemand template extraction +mosip.ida.ondemand.template.extraction.partner.id=mpartner-default-tempextraction From 8943fec8f080aa2020d0d6c1ca7135f94c2247c4 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Sun, 11 Feb 2024 20:59:39 +0530 Subject: [PATCH 1304/1358] ES-391 Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- id-authentication-default.properties | 6 +++--- kernel-default.properties | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 21fdfbd6c3e..4572dd5cfa2 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -360,7 +360,7 @@ notification.time.format=HH:mm:ss ## Allowed authentication types for Authentciation/E-KYC/Internal Authentication requests ## Accepted values otp-request, otp, demo, bio-Finger, bio-Iris, bio-Face ## Configure authentications permissable for a country -auth.types.allowed=demo,otp,bio-Finger,bio-Iris,bio-Face +auth.types.allowed=demo,otp,bio-Finger,bio-Iris,bio-Face,pwd,kbt ## Configure authentications permissable for e-KYC for a country ekyc.auth.types.allowed=demo,otp,bio-Finger,bio-Iris,bio-Face ## Configure authentication types permissable for internal authentication @@ -484,7 +484,7 @@ mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} ## Partner Management Service allowed partner domains -mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM +mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP # IAM Adapter mosip.iam.adapter.clientid=${mosip.ida.auth.clientId} @@ -642,7 +642,7 @@ mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredentia # Regex to validate handles with provided key as the postfix # if the input handle is +855345353453@phone then the provided regex is used to validate the input. -mosip.ida.handle-types.regex={ '@phone' : '^\\+855[1-9][0-9]{7,9}@phone$' } +mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } # Partner Id for encryption used in ondemand template extraction mosip.ida.ondemand.template.extraction.partner.id=mpartner-default-tempextraction diff --git a/kernel-default.properties b/kernel-default.properties index 6e3dfa765a4..61227265940 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -433,7 +433,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile +auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} From fcc946f0e524d33377a80ed051a417d5f30687b2 Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Mon, 12 Feb 2024 19:58:46 +0530 Subject: [PATCH 1305/1358] MOSIP-31314-Added otp freezing properties Signed-off-by: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> --- id-authentication-default.properties | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 4572dd5cfa2..f95bcab961a 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -341,6 +341,10 @@ ida.errormessages.default-lang=en ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 otp.request.flooding.max-count=100 +## OTP Freezing. When user attempts multiple times with invalid OTP consecutively, it will be allowed only for certain number of attempts as per the theshold. After that it will go to frozen state for the user for the given duration. During the frozen time the OTP Request and validation both will be throwing error. After that it will be unfrozen and both actions will be allowed. Default is 5 if unspecified. +mosip.ida.otp.validation.attempt.count.threshold=5 +# The duration in minutes for which the OTP will be frozen for a user, after that it it will be unfrozen. Default is 30 mins if unspecified. +mosip.ida.otp.frozen.duration.minutes=30 ## Notification templates ida.auth.mail.content.template=auth-email-content From b1cf869a75ee5aea361cdc64b6830d38dc6d16df Mon Sep 17 00:00:00 2001 From: shubham_G <88794020+shubham17998@users.noreply.github.com> Date: Fri, 16 Feb 2024 10:57:14 +0530 Subject: [PATCH 1306/1358] [DSD-4615] Update id-authentication-default.properties Signed-off-by: shubham_G <88794020+shubham17998@users.noreply.github.com> --- id-authentication-default.properties | 2 ++ 1 file changed, 2 insertions(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index f95bcab961a..0b881e2031f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -650,3 +650,5 @@ mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } # Partner Id for encryption used in ondemand template extraction mosip.ida.ondemand.template.extraction.partner.id=mpartner-default-tempextraction + +ida-topic-on-demand-template-extraction=AUTHENTICATION_ERRORS From f9b73e600fb49ac66b5ead0878826440c993819d Mon Sep 17 00:00:00 2001 From: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> Date: Fri, 16 Feb 2024 13:52:54 +0530 Subject: [PATCH 1307/1358] MOSIP-31634-Exposing resident portal to public for demo Signed-off-by: Loganathan Sekar <42532387+LoganathanSekar7627@users.noreply.github.com> --- resident-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resident-default.properties b/resident-default.properties index 5dbd3ef4e01..24143eacaab 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -344,7 +344,7 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false #mosip.resident.oidc.userinfo.jwt.signed=false ################### Mock-keycloak IdP config ends ########################################################### -mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ +mosip.iam.module.redirecturi=${mosip.api.public.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests Manage-Credentials From c43f66b6cccc084e0c16eee77b1a1ca78f30ab54 Mon Sep 17 00:00:00 2001 From: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> Date: Fri, 16 Feb 2024 14:27:06 +0530 Subject: [PATCH 1308/1358] changed signup-default.properties Signed-off-by: Venkata Saidurga Polamraju <saidurgacsea@gmail.com> --- signup-default.properties | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/signup-default.properties b/signup-default.properties index f70dfafe6d0..73604837bd0 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -93,14 +93,14 @@ mosip.security.cors-enable=true ## -------------------------- External endpoints ----------------------------------------------------------------------- -mosip.signup.generate-challenge.endpoint=${mosip.api.internal.url}/v1/otpmanager/otp/generate -mosip.signup.get-identity.endpoint=${mosip.api.internal.url}/idrepository/v1/identity/idvid/%s@phone?type=demo&idType=HANDLE -mosip.signup.identity.endpoint=${mosip.api.internal.url}/idrepository/v1/identity/ -mosip.signup.generate-hash.endpoint=${mosip.api.internal.url}/v1/keymanager/generateArgon2Hash -mosip.signup.get-uin.endpoint=${mosip.api.internal.url}/v1/idgenerator/uin -mosip.signup.send-notification.endpoint=${mosip.api.internal.url}/v1/notifier/sms/send -mosip.signup.get-registration-status.endpoint=${mosip.api.internal.url}/v1/credentialrequest/get/{applicationId} -mosip.signup.audit-endpoint=${mosip.api.internal.url}/v1/auditmanager/audits +mosip.signup.generate-challenge.endpoint=http://otpmanager.kernel/v1/otpmanager/otp/generate +mosip.signup.get-identity.endpoint=http://identity.idrepo/idrepository/v1/identity/idvid/%s@phone?type=demo&idType=HANDLE +mosip.signup.identity.endpoint=http://identity.idrepo/idrepository/v1/identity/ +mosip.signup.generate-hash.endpoint=http://keymanager.keymanager/v1/keymanager/generateArgon2Hash +mosip.signup.get-uin.endpoint=http://idgenerator.kernel/v1/idgenerator/uin +mosip.signup.send-notification.endpoint=http://notifier.kernel/v1/notifier/sms/send +mosip.signup.get-registration-status.endpoint=http://credentialrequest.idrepo/v1/credentialrequest/get/{applicationId} +mosip.signup.audit-endpoint=http://auditmanager.kernel/v1/auditmanager/audits mosip.signup.add-identity.request.id=mosip.id.create mosip.signup.update-identity.request.id=mosip.id.update mosip.signup.identity.request.version=v1 From 9f785867b3b06eddd4812e6e1b933fe59197c6a5 Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> Date: Mon, 19 Feb 2024 12:19:46 +0530 Subject: [PATCH 1309/1358] MOSIP-31662 config changes Signed-off-by: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> --- registration-processor-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c322f321ecd..4ce5da2b5f3 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -399,7 +399,7 @@ mosip.regproc.workflow-manager.action.job.days_of_week=* # For example BioDedupeStage:SUCCESS is given in filter and stage is SecurezoneNotificationStage then packet which latest transaction status code is SUCCESS and its in in BioDedupeStage then it will restart processing from SecurezoneNotificationStage. registration.processor.reprocess.restart-from-stage=SecurezoneNotificationStage # * means it will consider SUCCESS,REPROCESS,IN_PROGRESS latest transaction status codes, any stage having both * and another status, it will be considered to have all the statuses for that stage -registration.processor.reprocess.restart-trigger-filter=DemodedupStage:SUCCESS,BioDedupeStage:*,UinGeneratorStage:REPROCESS +registration.processor.reprocess.restart-trigger-filter=DemoDedupeStage:SUCCESS,BioDedupeStage:*,UinGeneratorStage:REPROCESS mosip.regproc.workflow.manager.eventbus.kafka.commit.type=single From 086981ac397e46a7877f66a3b959a285be7c4da8 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Fri, 23 Feb 2024 00:41:35 +0530 Subject: [PATCH 1310/1358] Update esignet-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- esignet-default.properties | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 01aaeadb7d3..08d37b876ef 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -112,14 +112,14 @@ mosip.esignet.authenticator.ida-exchange-id=mosip.identity.kycexchange mosip.esignet.authenticator.ida-send-otp-id=mosip.identity.otp mosip.esignet.authenticator.ida-version=1.0 mosip.esignet.authenticator.ida-domainUri=https://${mosip.esignet.host} -mosip.esignet.authenticator.ida.cert-url=https://${mosip.api.public.host}/mosip-certs/ida-partner.cer -mosip.esignet.authenticator.ida.kyc-auth-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-auth/delegated/${mosip.esignet.misp.license.key}/ -mosip.esignet.authenticator.ida.kyc-exchange-url=https://${mosip.api.internal.host}/idauthentication/v1/kyc-exchange/delegated/${mosip.esignet.misp.license.key}/ -mosip.esignet.authenticator.ida.send-otp-url=https://${mosip.api.internal.host}/idauthentication/v1/otp/${mosip.esignet.misp.license.key}/ -mosip.esignet.binder.ida.key-binding-url=https://${mosip.api.internal.host}/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ -mosip.esignet.authenticator.ida.get-certificates-url=https://${mosip.api.internal.host}/idauthentication/v1/internal/getAllCertificates -mosip.esignet.authenticator.ida.auth-token-url=https://${mosip.api.internal.host}/v1/authmanager/authenticate/clientidsecretkey -mosip.esignet.authenticator.ida.audit-manager-url=https://${mosip.api.internal.host}/v1/auditmanager/audits +mosip.esignet.authenticator.ida.cert-url=${mosip.file.server.url}/mosip-certs/ida-partner.cer +mosip.esignet.authenticator.ida.kyc-auth-url=${mosip.ida.auth.url}/idauthentication/v1/kyc-auth/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida.kyc-exchange-url=${mosip.ida.auth.url}/idauthentication/v1/kyc-exchange/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida.send-otp-url=${mosip.ida.otp.url}/idauthentication/v1/otp/${mosip.esignet.misp.license.key}/ +mosip.esignet.binder.ida.key-binding-url=${mosip.ida.auth.url}/idauthentication/v1/identity-key-binding/delegated/${mosip.esignet.misp.license.key}/ +mosip.esignet.authenticator.ida.get-certificates-url=${mosip.ida.internal.url}/idauthentication/v1/internal/getAllCertificates +mosip.esignet.authenticator.ida.auth-token-url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.esignet.authenticator.ida.audit-manager-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits mosip.esignet.authenticator.ida.client-id=mosip-ida-client mosip.esignet.authenticator.ida.secret-key=${mosip.ida.client.secret} mosip.esignet.authenticator.ida.app-id=ida From a4f12bdb35015caf567470fa100363f4026a2fb0 Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Fri, 23 Feb 2024 17:55:33 +0530 Subject: [PATCH 1311/1358] adding trim-whitespaces.simpleType-value to the config Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index c322f321ecd..b234dcb69cb 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -675,6 +675,7 @@ mosip.regproc.uin.generator.message.expiry-time-limit=${mosip.regproc.common.sta mosip.regproc.uin.generator.server.port=8099 mosip.regproc.uin.generator.eventbus.port=5719 mosip.regproc.uin.generator.server.servlet.path=/registrationprocessor/v1/uin-generator +mosip.regproc.uin.generator.trim-whitespaces.simpleType-value=false # abis-middle-ware-stage mosip.regproc.abis.middleware.eventbus.kafka.commit.type=single From d4c4f7edf4ef0dc9218a5e036ebe3e20ae99d04f Mon Sep 17 00:00:00 2001 From: Yash S <119652212+yashmsonkusare@users.noreply.github.com> Date: Thu, 29 Feb 2024 18:38:56 +0530 Subject: [PATCH 1312/1358] MOSIP-31661:debug mode is turned of in mosip-config for REST APIS for release-1.2.0.1 (#5534) Signed-off-by: Yash S <119652212+yashmsonkusare@users.noreply.github.com> --- admin-default.properties | 2 +- application-default.properties | 2 +- registration-processor-default.properties | 1 - resident-app-default.properties | 3 ++- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/admin-default.properties b/admin-default.properties index d22abe4216f..a20d69c5933 100644 --- a/admin-default.properties +++ b/admin-default.properties @@ -234,7 +234,7 @@ mosip.iam.adapter.self-token-renewal-enable=true mosip.registration.processor.lostrid.id=mosip.registration.lostrid mosip.registration.processor.lostrid.version=1.0 LOST_RID_API=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/lostridsearch -logging.level.org.springframework.web.client.RestTemplate=DEBUG +logging.level.org.springframework.web.client.RestTemplate=INFO # Roles mosip.role.admin.getpacketstatusupdate=REGISTRATION_ADMIN diff --git a/application-default.properties b/application-default.properties index 0aa14a4d1d1..9266853eab5 100644 --- a/application-default.properties +++ b/application-default.properties @@ -398,7 +398,7 @@ mosip.stage.environment=Developer logging.level.root=INFO logging.level.io.mosip=INFO logging.level.io.vertx=INFO -logging.level.io.mosip.registration.processor.status=DEBUG +logging.level.io.mosip.registration.processor.status=INFO logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO ## Tomcat access logs diff --git a/registration-processor-default.properties b/registration-processor-default.properties index ee63f279eff..5160e6ca4a8 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -998,7 +998,6 @@ registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 ##Ability to update contact information as part of LOST UIN uingenerator.lost.packet.allowed.update.fields=phone,email,permanentAddress -logging.level.org.apache.activemq.ActiveMQConnectionFactory=DEBUG ##timeout in milliseconds for health check registrer mosip.regproc.health-check.handler-timeout=2000 \ No newline at end of file diff --git a/resident-app-default.properties b/resident-app-default.properties index 8c45381053b..418989d0943 100644 --- a/resident-app-default.properties +++ b/resident-app-default.properties @@ -125,7 +125,8 @@ mosip.kernel.tokenid.length=36 logging.level.root=WARN logging.level.io.mosip=INFO # logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO -logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG +logging.level.io.mosip.kernel.auth.defaultadapter=INFO +logging.level.org.springframework.http.client=INFO logging.level.org.springframework.http.client=DEBUG logging.level.io.mosip.residentapp=INFO logging.level.reactor.netty.http.client=INFO From b4c978d5490639565e728c4392dfa0ba06e5870c Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 28 Mar 2024 11:39:28 +0530 Subject: [PATCH 1313/1358] Update biosdk-service-default.properties Signed-off-by: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> --- biosdk-service-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/biosdk-service-default.properties b/biosdk-service-default.properties index bf202460333..d2b65bacfb0 100644 --- a/biosdk-service-default.properties +++ b/biosdk-service-default.properties @@ -1,5 +1,5 @@ #iam mock-sdk config -sdk_check_iso_timestamp_format=true +sdk_check_iso_timestamp_format=false mosip.role.biosdk.getservicestatus=REGISTRATION_PROCESSOR biosdk_bioapi_impl=io.mosip.mock.sdk.impl.SampleSDKV2 From 3876c07339089e09e626c760edad435a915bd66a Mon Sep 17 00:00:00 2001 From: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> Date: Thu, 28 Mar 2024 18:23:21 +0530 Subject: [PATCH 1314/1358] Update biosdk-service-default.properties Signed-off-by: n-chandrasekhar <92979786+n-chandrasekhar@users.noreply.github.com> --- biosdk-service-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/biosdk-service-default.properties b/biosdk-service-default.properties index d2b65bacfb0..bf202460333 100644 --- a/biosdk-service-default.properties +++ b/biosdk-service-default.properties @@ -1,5 +1,5 @@ #iam mock-sdk config -sdk_check_iso_timestamp_format=false +sdk_check_iso_timestamp_format=true mosip.role.biosdk.getservicestatus=REGISTRATION_PROCESSOR biosdk_bioapi_impl=io.mosip.mock.sdk.impl.SampleSDKV2 From 91880e7dbcd0906bb764bc1b0bf862ad35aad9ef Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Wed, 3 Apr 2024 15:46:39 +0530 Subject: [PATCH 1315/1358] Update id-repository-default.properties updated mosip.idrepo.create-identity.enable-force-merge=true Signed-off-by: likhitharl <91238496+likhitharl@users.noreply.github.com> --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index ad889fa11aa..ecd8f90b441 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -446,4 +446,4 @@ mosip.idrepo.identity.max-request-time-deviation-seconds=60 #Enable this property only when to check cache log #logging.level.org.springframework.cache=TRACE # By default, it is false. To enable force merge of data, change it to true. -mosip.idrepo.create-identity.enable-force-merge=false +mosip.idrepo.create-identity.enable-force-merge=true From 18882524ec53039414b8613cf48e04bce7835d3a Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Wed, 3 Apr 2024 17:10:04 +0530 Subject: [PATCH 1316/1358] Update id-repository-default.properties Signed-off-by: likhitharl <91238496+likhitharl@users.noreply.github.com> --- id-repository-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-repository-default.properties b/id-repository-default.properties index ecd8f90b441..ad889fa11aa 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -446,4 +446,4 @@ mosip.idrepo.identity.max-request-time-deviation-seconds=60 #Enable this property only when to check cache log #logging.level.org.springframework.cache=TRACE # By default, it is false. To enable force merge of data, change it to true. -mosip.idrepo.create-identity.enable-force-merge=true +mosip.idrepo.create-identity.enable-force-merge=false From a802623c737e2124c1460cd7cc7684d2721ba110 Mon Sep 17 00:00:00 2001 From: Neha2365 <110969715+Neha2365@users.noreply.github.com> Date: Thu, 4 Apr 2024 11:51:16 +0530 Subject: [PATCH 1317/1358] Update id-authentication-default properties Signed-off-by: Neha2365 <110969715+Neha2365@users.noreply.github.com> --- id-authentication-default.properties | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 0b881e2031f..39b5d22a7b6 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -271,7 +271,6 @@ ida-topic-fraud-analysis=IDA_FRAUD_ANALYTICS ida-topic-auth-anonymous-profile=ANONYMOUS_PROFILE ida-topic-pmp-oidc-client-created=OIDC_CLIENT_CREATED ida-topic-pmp-oidc-client-updated=OIDC_CLIENT_UPDATED -ida-topic-on-demand-template-extraction=AUTHENTICATION_ERRORS # in minutes mosip.iam.adapter.validate-expiry-check-rate=15 @@ -649,6 +648,10 @@ mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredentia mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } # Partner Id for encryption used in ondemand template extraction -mosip.ida.ondemand.template.extraction.partner.id=mpartner-default-tempextraction +mosip.ida.authentication.error.eventing.encrypt.partner.id=mpartner-default-tempextraction -ida-topic-on-demand-template-extraction=AUTHENTICATION_ERRORS +#kafka topic +ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS +#kafka Configuration +mosip.ida.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} +spring.kafka.admin.properties.allow.auto.create.topics=true From e2e21677b212248155ec45829a926229990bc28d Mon Sep 17 00:00:00 2001 From: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> Date: Tue, 16 Apr 2024 13:13:47 +0530 Subject: [PATCH 1318/1358] MOSIP-32283 config chagnes Signed-off-by: Sowmya Ujjappa Banakar <sowmya.61022006@ltimindtree.com> --- registration-processor-default.properties | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 5160e6ca4a8..09c83318208 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -989,10 +989,10 @@ auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO #updated properties name with the prefix (mosip.regproc) mosip.regproc.landing.zone.account.name=landing-zone -mosip.regproc.landing.zone.type=DMZServer +mosip.regproc.landing.zone.type=ObjectStore -mosip.regproc.landing.zone.fixed.delay.millisecs=86400000 -mosip.regproc.landing.zone.inital.delay.millisecs=300000 +mosip.regproc.landing.zone.fixed.delay.millisecs=120000 +mosip.regproc.landing.zone.inital.delay.millisecs=120000 registration.processor.lostrid.max.registrationid=5 mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 From 73723e93e23e3396e54fe738c388d1fd99534e25 Mon Sep 17 00:00:00 2001 From: Neha2365 <110969715+Neha2365@users.noreply.github.com> Date: Thu, 18 Apr 2024 16:00:21 +0530 Subject: [PATCH 1319/1358] Update id-authentication-default.properties (#5882) Signed-off-by: Neha2365 <110969715+Neha2365@users.noreply.github.com> --- id-authentication-default.properties | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 39b5d22a7b6..690970bea5f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -647,11 +647,15 @@ mosip.ida.vci.supported.cred.types=VerifiableCredential,MOSIPVerifiableCredentia # if the input handle is +855345353453@phone then the provided regex is used to validate the input. mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } +#-------------------------------- Authentication error eventing------------------------------- +#It enable and disable the bean init of kafka and Authentication error eventing +mosip.ida.authentication.error.eventing.enabled=true +#If we enable authentication error eventing as true we need all the below property +ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS # Partner Id for encryption used in ondemand template extraction mosip.ida.authentication.error.eventing.encrypt.partner.id=mpartner-default-tempextraction - -#kafka topic -ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS #kafka Configuration mosip.ida.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} spring.kafka.admin.properties.allow.auto.create.topics=true +logging.level.org.apache.kafka=DEBUG +#----------------------------------------------------end------------------------------------------ From d79e2d5a25052ebee97376b82d56def018b88543 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 29 Apr 2024 13:38:52 +0530 Subject: [PATCH 1320/1358] Update id-authentication-default.properties Updated mosip.ida.authentication.error.eventing.enabled=false Signed-off-by: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 690970bea5f..de014b7fe0c 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -649,7 +649,7 @@ mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } #-------------------------------- Authentication error eventing------------------------------- #It enable and disable the bean init of kafka and Authentication error eventing -mosip.ida.authentication.error.eventing.enabled=true +mosip.ida.authentication.error.eventing.enabled=false #If we enable authentication error eventing as true we need all the below property ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS # Partner Id for encryption used in ondemand template extraction From 303b594826a4ed353b3b561c5945705135f1f3fc Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Mon, 29 Apr 2024 17:57:55 +0530 Subject: [PATCH 1321/1358] Update id-authentication-default.properties Updated mosip.ida.authentication.error.eventing.enabled=true Signed-off-by: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index de014b7fe0c..690970bea5f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -649,7 +649,7 @@ mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } #-------------------------------- Authentication error eventing------------------------------- #It enable and disable the bean init of kafka and Authentication error eventing -mosip.ida.authentication.error.eventing.enabled=false +mosip.ida.authentication.error.eventing.enabled=true #If we enable authentication error eventing as true we need all the below property ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS # Partner Id for encryption used in ondemand template extraction From 5f441b2449a89d4a7c1f4096d27796b1d416f22c Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Tue, 30 Apr 2024 14:22:34 +0530 Subject: [PATCH 1322/1358] Update esignet-default.properties Updated mosip.esignet.send-otp.captcha-required=false updated 'captcha.enable' : 'pwd' Signed-off-by: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 08d37b876ef..af298e6a242 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -101,7 +101,7 @@ mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.vci-plugin=IdaVCIssuancePluginImpl # captcha validator -mosip.esignet.send-otp.captcha-required=true +mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} @@ -383,7 +383,7 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ - 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'otp,pwd', \ + 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'pwd', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': 4501-4600, \ 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ From d2350f9f4d4c443300e43701919c8b040551da3d Mon Sep 17 00:00:00 2001 From: kameshsr <kameshsr1338@gmail.com> Date: Thu, 2 May 2024 13:37:11 +0530 Subject: [PATCH 1323/1358] MOSIP-32772 Move resident related config to pla1201 Signed-off-by: kameshsr <kameshsr1338@gmail.com> --- application-default.properties | 6 + digitalcard-template.properties | 5 +- id-repository-default.properties | 9 +- resident-default.properties | 1231 ++++++++++++------- resident-ui-personalized-card-schema.json | 308 +++-- resident-ui-share-credential-schema.json | 310 +++-- resident-ui-update-demographics-schema.json | 844 +++++++++++-- 7 files changed, 1908 insertions(+), 805 deletions(-) diff --git a/application-default.properties b/application-default.properties index 9266853eab5..836e20b25cf 100644 --- a/application-default.properties +++ b/application-default.properties @@ -452,3 +452,9 @@ mosip.access_token.subject.claim-name=sub # It is used as a suffix for creating credential request ID using the RID. mosip.registration.processor.rid.delimiter=-PDF + +# Web UI Idle timeout related properties +mosip.webui.auto.logout.idle=180 +mosip.webui.auto.logout.ping=30 +mosip.webui.auto.logout.timeout=60 + diff --git a/digitalcard-template.properties b/digitalcard-template.properties index 4adc8fbe396..1d8a52898e5 100644 --- a/digitalcard-template.properties +++ b/digitalcard-template.properties @@ -1,3 +1,2 @@ -RPR_UIN_CARD_TEMPLATE=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 - -vid-card-type=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 +RPR_UIN_CARD_TEMPLATE=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 +vid-card-type=PGh0bWw+PGhlYWQ+CjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0idGV4dC9odG1sOyIgY2hhcnNldD0id2luZG93cy0xMjUyIj4KPG1ldGEgbmFtZT0iR2VuZXJhdG9yIiBjb250ZW50PSJNaWNyb3NvZnQiIHdvcmQ9IiIgMTU9IiIgKGZpbHRlcmVkKT0iIj4KPC9oZWFkPjxib2R5IGxhbmc9IkVOLVVTIj4KCjxkaXYgc3R5bGU9IndpZHRoOjEwMCU7aGVpZ2h0OjEwMHZoOyI+Cgk8dGFibGUgc3R5bGU9IndpZHRoOiAzMzlweDttYXJnaW46IDAgYXV0bztiYWNrZ3JvdW5kOiAjRkZGRkZGO2JvcmRlci1yYWRpdXM6IDEwcHg7b3BhY2l0eTogMTtib3JkZXI6MXB4IHNvbGlkICNFMkUyRTI7Ij4KPHRib2R5Pjx0cj4KI2lmKCRpc1Bob3RvU2V0KQo8dGQgc3R5bGU9IndpZHRoOjI1JTt2ZXJ0aWNhbC1hbGlnbjogdG9wO3BhZGRpbmc6NXB4OyI+PGltZyBzdHlsZT0idG9wOiA1MXB4O2xlZnQ6IDQ1cHg7d2lkdGg6IDgwcHg7aGVpZ2h0OiA5M3B4O29wYWNpdHk6IDE7Ym9yZGVyOjFweCBzb2xpZCAjRTJFMkUyO2JvcmRlci1yYWRpdXM6NXB4OyIgc3JjPSQhQXBwbGljYW50UGhvdG8+PC90ZD4KI2VuZAo8dGQgc3R5bGU9IndpZHRoOjY1JSI+CgkJPHRhYmxlIHN0eWxlPSJib3JkZXI6bm9uZTtib3JkZXItY29sbGFwc2U6IGNvbGxhcHNlO3dpZHRoOiAxMDAlOyI+CgkJICA8dGJvZHk+CiAgICAgICAgICAgIDx0cj4KCQkJPHRkIGNvbHNwYW49IjIiIHN0eWxlPSJwYWRkaW5nOjNweDsiPjxsYWJlbCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIG5vcm1hbCAxMXB4LzE0cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzY2NjY2NjtvcGFjaXR5OiAxO3BhZGRpbmc6IDNweDsiPkZ1bGwgTmFtZSA8L2xhYmVsPgogICAgICAgICAgICA8ZGl2IGNvbHNwYW49IjIiIHN0eWxlPSIvKiBmb250LXdlaWdodDogYm9sZDsgKi90ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgNjAwIDEycHgvMTVweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjMDAwMDAwO29wYWNpdHk6IDE7cGFkZGluZzowcHggM3B4OyB3aWR0aDoyMDBweDtvdmVyZmxvdy13cmFwOiBicmVhay13b3JkOyI+PHA+JGZ1bGxOYW1lX2VuZzwvcD48L2Rpdj48L3RkPgoJCSAgPC90cj4KCQkgIAoJCSAgPHRyPgoJCQk8dGQgc3R5bGU9InBhZGRpbmc6M3B4OyI+PGxhYmVsIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgbm9ybWFsIDExcHgvMTRweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjNjY2NjY2O29wYWNpdHk6IDE7cGFkZGluZzogM3B4OyI+RG9CPC9sYWJlbD4KICAgICAgICAgICAgPGRpdiBjb2xzcGFuPSIyIiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxO3BhZGRpbmc6MHB4IDNweDsiPiRkb2I8L2Rpdj48L3RkPgoJCQk8dGQgc3R5bGU9InBhZGRpbmc6M3B4OyI+PGxhYmVsIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgbm9ybWFsIDExcHgvMTRweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjNjY2NjY2O29wYWNpdHk6IDE7Ij5JRCBUeXBlPC9sYWJlbD48ZGl2IGNvbHNwYW49IjIiIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgNjAwIDEycHgvMTVweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjMDAwMDAwO29wYWNpdHk6IDE7LyogcGFkZGluZzogMHB4IDBweDsgKi8iPlZJRDwvZGl2PjwvdGQ+CgkJICA8L3RyPgoJCQoJCTwvdGJvZHk+PC90YWJsZT4KCTwvdGQ+Cgk8dGQgc3R5bGU9IndpZHRoOiAxNSU7dmVydGljYWwtYWxpZ246dG9wOy8qIG1hcmdpbi10b3A6IDEwJTsgKi8iPjxpbWcgc3R5bGU9Ii8qIHRvcDogNDZweDsgKi8vKiBsZWZ0OiAzMjRweDsgKi93aWR0aDogMzVweDtoZWlnaHQ6IDI1cHg7YmFja2dyb3VuZDogdHJhbnNwYXJlbnQgdXJsKCdpbWcvbG9nbyAoMikucG5nJykgMCUgMCUgbm8tcmVwZWF0IHBhZGRpbmctYm94O29wYWNpdHk6IDE7IiBzcmM9Imh0dHBzOi8vbW9zaXAuaW8vaW1hZ2VzL21vc2lwbi1sb2dvLnBuZyIgYWx0PSJtb3NpcCI+PC90ZD4KPC90cj4KPHRyPgoJPHRkIGNvbHNwYW49IjYiPgoJCTx0YWJsZSBzdHlsZT0iYm9yZGVyOm5vbmU7Ym9yZGVyLWNvbGxhcHNlOiBjb2xsYXBzZTt3aWR0aDogMTAwJTsiPgoJCQk8dGJvZHk+PHRyPgoJCQkKCgkJCQk8dGQgc3R5bGU9IndpZHRoOiA1MCU7cGFkZGluZzogNXB4OyI+CgkJCQk8ZGl2IGNvbHNwYW49IjEyIj4KCQkJCQkJPGRpdiBjb2xzcGFuPSI2IiA+CgkJCQk8bGFiZWwgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCBub3JtYWwgMTFweC8xNHB4IEludGVyO2xldHRlci1zcGFjaW5nOiAwcHg7Y29sb3I6ICM2NjY2NjY7b3BhY2l0eTogMTsiPlZJRDwvbGFiZWw+PGRpdiBjb2xzcGFuPSIyIiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxOyI+JHZpZDwvZGl2PjwvZGl2PjwvdGQ+CgkJCQkKCQkJCTx0ZCBzdHlsZT0id2lkdGg6IDUwJTtwYWRkaW5nOiA1cHg7Ij48ZGl2IGNvbHNwYW49IjYiIHN0eWxlPSJwYWRkaW5nLWxlZnQ6IDMycHg7IiA+PGxhYmVsIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgbm9ybWFsIDExcHgvMTRweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjNjY2NjY2O29wYWNpdHk6IDE7Ij5WSUQgVHlwZTwvbGFiZWw+PGRpdiBjb2xzcGFuPSIyIiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxOyI+JHZpZFR5cGU8L2Rpdj48L2Rpdj48L3RkPgoJCQkJPC9kaXY+CgkJCQkKCQkJPC90cj4KCQkKCQkJPHRyPgoJCQkJPHRkIHN0eWxlPSJ3aWR0aDogNTAlOyI+CgkJCQk8ZGl2IGNvbHNwYW49IjEyIj4KCQkJCTxkaXYgY29sc3Bhbj0iNiIgPgoJCQkJPGxhYmVsIHN0eWxlPSJ0ZXh0LWFsaWduOiBsZWZ0O2ZvbnQ6IG5vcm1hbCBub3JtYWwgbm9ybWFsIDExcHgvMTRweCBJbnRlcjtsZXR0ZXItc3BhY2luZzogMHB4O2NvbG9yOiAjNjY2NjY2O29wYWNpdHk6IDE7Ij5HZW5lcmF0ZWQgb248L2xhYmVsPjxkaXYgY29sc3Bhbj0iMiIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCA2MDAgMTJweC8xNXB4IEludGVyO2xldHRlci1zcGFjaW5nOiAwcHg7Y29sb3I6ICMwMDAwMDA7b3BhY2l0eTogMTtwYWRkaW5nOiAycHggMXB4OyI+JGdlbnJhdGVkT25UaW1lc3RhbXA8L2Rpdj48L2Rpdj48L3RkPgoJCQkJPHRkIHN0eWxlPSJ3aWR0aDogNTAlOyI+PGRpdiBjb2xzcGFuPSI2IiBzdHlsZT0icGFkZGluZy1sZWZ0OiAzMnB4OyIgPjxsYWJlbCBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIG5vcm1hbCAxMXB4LzE0cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzY2NjY2NjtvcGFjaXR5OiAxOyI+RXhwaXJlcyBvbjwvbGFiZWw+PGRpdiBjb2xzcGFuPSIyIiBzdHlsZT0idGV4dC1hbGlnbjogbGVmdDtmb250OiBub3JtYWwgbm9ybWFsIDYwMCAxMnB4LzE1cHggSW50ZXI7bGV0dGVyLXNwYWNpbmc6IDBweDtjb2xvcjogIzAwMDAwMDtvcGFjaXR5OiAxO3BhZGRpbmc6IDJweCAycHg7Ij4kZXhwaXJ5VGltZXN0YW1wPC9kaXY+PC9kaXY+PC90ZD4KCQkJCTwvZGl2PgoJCQk8L3RyPgoKCQk8L3Rib2R5PjwvdGFibGU+Cgk8L3RkPgo8L3RyPgo8dHI+Cgk8dGQgY29sc3Bhbj0iMyIgc3R5bGU9InRleHQtYWxpZ246IGxlZnQ7Zm9udDogbm9ybWFsIG5vcm1hbCA2MDAgMTJweC8xNXB4IEludGVyO2NvbG9yOiAjMDAwMDAwO29wYWNpdHk6IDE7aGVpZ2h0OiA0MHB4O3RleHQtYWxpZ246IGNlbnRlcjtib3JkZXItdG9wOjFweCBzb2xpZCAjRTJFMkUyOyI+PGltZyBzdHlsZT0idG9wOiA1MXB4O2xlZnQ6IDQ1cHg7IG1hcmdpbi1ib3R0b206IC00cHg7IiBzcmM9ImRhdGE6aW1hZ2UvcG5nO2Jhc2U2NCwgaVZCT1J3MEtHZ29BQUFBTlNVaEVVZ0FBQUE0QUFBQU9DQVlBQUFBZlNDM1JBQUFBQm1KTFIwUUEvd0QvQVArZ3ZhZVRBQUFBZ0VsRVFWUW9rYzNSd1EyQ1lBeUc0WWRFamdSaEEyUGlnVEdjUTVkaEFIYUJBVHc3Z1FkUEx1QU1ldUEzS2xGVGIzeEpEMDN6dGw5YjVxb2NMY3Avd1FMSEZHL3dEcmRnREpBbHNNYnF4OFFNSFRiWTRoUzF1c1FCemFkaWs0cFZwTk5pQXAyeE51N3lUUmRjSDBrdmZwejlhNWZTODl4RnhPb1VibzNQbnFIdW5na2pOR0NyVlVjQUFBQUFTVVZPUks1Q1lJST0iPjxzcGFuIHN0eWxlPSJtYXJnaW4tbGVmdDogNXB4OyI+IDwvc3Bhbj5UcmFuc2FjdGlvbnMgYWxsb3dlZCA6ICR0cmFuc2FjdGlvbnNMZWZ0Q291bnQ8L3RkPgo8L3RyPgo8L3Rib2R5PjwvdGFibGU+CjwvZGl2Pgo8L2JvZHk+PC9odG1sPg== \ No newline at end of file diff --git a/id-repository-default.properties b/id-repository-default.properties index ad889fa11aa..bae6711cfe3 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -76,6 +76,9 @@ mosip.idrepo.identity.application.version=v1 mosip.idrepo.identity.id.create=mosip.id.create mosip.idrepo.identity.id.read=mosip.id.read mosip.idrepo.identity.id.update=mosip.id.update +mosip.identity.get.drafts.id=mosip.identity.get.drafts +mosip.identity.get.drafts.version=1.0 + #database mappings for identity service mosip.idrepo.identity.db.url=jdbc:postgresql://${mosip.idrepo.db.url}:${mosip.idrepo.db.port}/${mosip.idrepo.db.identity.db-name} mosip.idrepo.identity.db.username=${mosip.idrepo.db.identity.username} @@ -412,7 +415,7 @@ mosip.role.idrepo.identity.postauthtypesstatus=RESIDENT,ID_REPOSITORY mosip.role.idrepo.identity.postdraftcreateregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.patchdraftupdateregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.getdraftpublishregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY -mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.deletedraftdiscardregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY,RESIDENT mosip.role.idrepo.identity.draftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.getdraftregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.putdraftextractbiometricsregistrationId=REGISTRATION_PROCESSOR,ID_REPOSITORY @@ -426,6 +429,8 @@ mosip.role.idrepo.vid.postvidregenerate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postviddeactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY +mosip.role.idrepo.identity.getdraftUIN=RESIDENT,ID_REPOSITORY + mosip.mask.function.identityAttributes=convertToMaskDataFormat mosip.credential.service.fetch-identity.type=bio @@ -447,3 +452,5 @@ mosip.idrepo.identity.max-request-time-deviation-seconds=60 #logging.level.org.springframework.cache=TRACE # By default, it is false. To enable force merge of data, change it to true. mosip.idrepo.create-identity.enable-force-merge=false + +mosip.identity.get.excluded.attribute.list=UIN,verifiedAttributes,IDSchemaVersion \ No newline at end of file diff --git a/resident-default.properties b/resident-default.properties index 24143eacaab..953d6eb8a8d 100644 --- a/resident-default.properties +++ b/resident-default.properties @@ -8,18 +8,35 @@ # mosip.regproc.client.secret # keycloak.internal.url. +logging.level.root=INFO +logging.level.io.mosip.resident.batch=INFO +# Whether to enable LoggingFilter - this will print the request details such as URL, headers and body for debugging purpose. Default is false. +logging.level.io.mosip.resident.config.LoggingInterceptor=INFO +resident.rest.template.logging.interceptor.filter.enabled=false + +resident.logging.filter.enabled=false +logging.level.io.mosip.resident.filter=INFO + +# Whether to enable logging - this will print the repository method calls for debugging purpose. Default is true. +resident.db.logging.aspect.enabled=false +logging.level.io.mosip.resident.aspect.DatabaseLoggingAspect=INFO + +#URL pattern for logging filter. For example, "/callback/*" .Defaults to "/*". +resident.logging.filter.url.pattern=/* +# Whether to enable WebsubCallbackRequestDecoratorFilter. Default is true. +resident.websub.request.decorator.filter.enabled=true +# Websub topic subscription topics +subscriptions-delay-on-startup_millisecs=120000 +re-subscription-interval-in-seconds=43200 + #--------------APIs ID and Version -------------- +#------------Request IDs--------------------- +# The request IDs used in Resident REST APIs +mosip.resident.api.id.otp.request=mosip.identity.otp.internal +mosip.resident.api.id.auth=mosip.identity.auth.internal auth.internal.id=mosip.identity.auth.internal -auth.internal.version=1.0 mosip.registration.processor.print.id=mosip.registration.print -mosip.registration.processor.application.version=1.0 vid.create.id=mosip.vid.create -mosip.resident.create.vid.version=v1 -resident.vid.version=v1 -resident.vid.version.new=1.0 -resident.revokevid.version=v1 -resident.revokevid.version.new=1.0 -resident.version.new=1.0 resident.vid.id=mosip.resident.vid resident.vid.id.generate=mosip.resident.vid.generate resident.vid.policy.id=mosip.resident.vid.policy @@ -27,7 +44,6 @@ resident.vid.get.id=mosip.resident.vid.get auth.type.status.id=mosip.identity.authtype.status.update resident.authlock.id=mosip.resident.authlock resident.checkstatus.id=mosip.resident.checkstatus -resident.checkstatus.version=v1 resident.euin.id=mosip.resident.euin resident.printuin.id=mosip.resident.printuin resident.uin.id=mosip.resident.uin @@ -36,120 +52,184 @@ resident.updateuin.id=mosip.resident.updateuin resident.authunlock.id=mosip.resident.authunlock resident.authhistory.id=mosip.resident.authhistory resident.authLockStatusUpdateV2.id=mosip.resident.auth.lock.unlock -resident.authLockStatusUpdateV2.version=1.0 resident.service.history.id=mosip.service.history.get -resident.service.history.version=1.0 resident.document.upload.id=mosip.resident.document.upload -resident.document.get.id=mosip.resident.document.get -resident.document.get.version=1.0 -resident.document.list.id=mosip.resident.document.list -resident.document.list.version=1.0 -resident.service.pin.status.id=mosip.resident.pin.status -resident.service.pin.status.version=v1 -resident.service.unpin.status.id=mosip.resident.unpin.status -resident.service.unpin.status.version=v1 -resident.document.delete.id=mosip.resident.document.delete -resident.document.delete.version=1.0 +resident.document.get.id=mosip.resident.document.get +resident.document.list.id=mosip.resident.document.list +resident.service.pin.status.id=mosip.resident.pin.status +resident.service.unpin.status.id=mosip.resident.unpin.status +resident.document.delete.id=mosip.resident.document.delete resident.contact.details.update.id=mosip.resident.contact.details.update.id resident.contact.details.send.otp.id=mosip.resident.contact.details.send.otp.id mosip.resident.service.status.check.id=mosip.registration.external.status -mosip.resident.service.status.check.version=1.0 resident.service.unreadnotificationlist.id=mosip.resident.service.history.unread resident.service.event.id=mosip.resident.event.status -resident.service.event.version=1.0 resident.identity.info.id=mosip.resident.identity.info -resident.identity.info.version=1.0 resident.share.credential.id=mosip.resident.share.credential -resident.share.credential.version=1.0 -mosip.resident.request.response.version=1.0 vid.revoke.id=mosip.vid.update resident.revokevid.id=mosip.resident.vidstatus mosip.resident.revokevid.id=mosip.resident.vid.revoke mosip.resident.grievance.ticket.request.id=mosip.resident.grievance.ticket.request -mosip.resident.grievance.ticket.request.version=1.0 resident.channel.verification.status.id=mosip.resident.channel.verification.status -resident.channel.verification.status.version=1.0 resident.event.ack.download.id=mosip.resident.event.ack.download -resident.event.ack.download.version=1.0 resident.download.card.eventid.id =mosip.resident.download.card.eventid -resident.download.card.eventid.version=1.0 mosip.resident.request.vid.card.id=mosip.resident.request.vid.card -mosip.resident.request.vid.card.version=1.0 mosip.credential.request.service.id=mosip.credential.request.service.id -mosip.credential.request.service.version=1.0 mosip.resident.checkstatus.individualid.id=mosip.resident.check-stage-status -mosip.resident.checkstatus.individualid.version=1.0 mosip.resident.download.personalized.card.id=mosip.resident.download.personalized.card mosip.resident.transliteration.transliterate.id=mosip.resident.transliteration.transliterate resident.ui.properties.id=resident.ui.properties -resident.ui.properties.version=1.0 mosip.resident.identity.auth.internal.id=mosip.identity.auth.internal mosip.resident.user.profile.id=mosip.resident.profile +resident.download.reg.centers.list.id=mosip.resident.download.reg.centers.list +resident.download.nearest.reg.centers.id=mosip.resident.download.nearest.reg.centers +resident.download.supporting.documents.id=mosip.resident.download.supporting.documents +resident.send.card.id=mosip.resident.send.card +resident.pinned.eventid.id=mosip.resident.pinned.eventid +resident.unpinned.eventid.id=mosip.resident.unpinned.eventid +resident.auth.proxy.partners.id=mosip.resident.auth.proxy.partners +resident.events.eventid.id=mosip.resident.events.eventid +resident.notification.id=mosip.resident.notification.get +resident.profile.id=mosip.resident.profile.get +resident.notification.click.id=mosip.resident.notification.click +mosip.credential.store.id=mosip.credential.store +resident.vids.id=mosip.resident.vids.get +mosip.resident.download.uin.card=mosip.resident.download.uin.card +mosip.registration.processor.registration.sync.id=mosip.registration.sync +id.repo.update=mosip.id.update +mosip.resident.get.pending.drafts=mosip.resident.get.pending.drafts +mosip.resident.discard.pending.drafts=mosip.resident.discard.pending.drafts + +#------------Request Versions--------------------- +# The request versions used in Resident REST APIs +mosip.resident.api.version.otp.request=1.0 +mosip.resident.api.version.auth=1.0 +auth.internal.version=1.0 +mosip.registration.processor.application.version=1.0 +mosip.resident.create.vid.version=v1 +resident.vid.version=v1 +resident.vid.version.new=1.0 +resident.revokevid.version=v1 +resident.revokevid.version.new=1.0 +resident.version.new=1.0 +resident.checkstatus.version=v1 +resident.authLockStatusUpdateV2.version=1.0 +resident.service.history.version=1.0 +resident.document.get.version=1.0 +resident.document.list.version=1.0 +resident.service.pin.status.version=v1 +resident.service.unpin.status.version=v1 +resident.document.delete.version=1.0 +mosip.resident.service.status.check.version=1.0 +resident.service.event.version=1.0 +resident.identity.info.version=1.0 +resident.share.credential.version=1.0 +mosip.resident.request.response.version=1.0 +mosip.resident.grievance.ticket.request.version=1.0 +resident.channel.verification.status.version=1.0 +resident.event.ack.download.version=1.0 +resident.download.card.eventid.version=1.0 +mosip.resident.request.vid.card.version=1.0 +mosip.credential.request.service.version=1.0 +mosip.resident.checkstatus.individualid.version=1.0 +resident.ui.properties.version=1.0 +mosip.resident.get.pending.drafts.version=1.0 +mosip.resident.discard.pending.drafts.version=1.0 +#Database config +mosip.resident.database.hostname=postgres-postgresql.postgres +mosip.resident.database.port=5432 -PARTNER_REFERENCE_Id=mpartner-default-resident -APPLICATION_Id=RESIDENT +javax.persistence.jdbc.driver=org.postgresql.Driver +javax.persistence.jdbc.url=jdbc:postgresql://${mosip.resident.database.hostname}:${mosip.resident.database.port}/mosip_resident +javax.persistence.jdbc.user=residentuser +javax.persistence.jdbc.password=${db.dbuser.password} -DECRYPT_API_URL=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt mosip-prereg-host=${mosip.prereg.host} mosip-prereg-ui-url=https://${mosip-prereg-host}/pre-registration-ui/ - ## Token generation token.request.id=io.mosip.resident -resident.appid=resident token.request.version=1.0 +resident.appid=resident resident.clientId=mosip-resident-client resident.secretKey=${mosip.resident.client.secret} # Below is defined in application properties token.request.issuerUrl=${mosip.keycloak.issuerUrl} - +## Partner related details +mosip.ida.partner.type=Online_Verification_Partner ida.online-verification-partner-id=mpartner-default-auth +idrepo-dummy-online-verification-partner-id=MOVP +resident.share-credential.partner.type=Auth_Partner +resident.authentication-request.partner.type=Auth_Partner +resident.order-physical-card.partner.type=Print_Partner #DB properties to skip automatic table creation in startup +hibernate.show_sql=true hibernate.hbm2ddl.auto=none -hibernate.show_sql=false hibernate.temp.use_jdbc_metadata_defaults=false -spring.jpa.properties.hibernate.temp.use_jdbc_metadata_defaults=false hibernate.jdbc.lob.non_contextual_creation = true +spring.jpa.properties.hibernate.temp.use_jdbc_metadata_defaults=false ## Auth Services +IDA_INTERNAL=${mosip.ida.internal.url}/idauthentication/v1/internal +INTERNALAUTH=${IDA_INTERNAL}/auth +INTERNALAUTHTRANSACTIONS=${IDA_INTERNAL}/authTransactions +KERNELENCRYPTIONSERVICE=${IDA_INTERNAL}/getCertificate +OTP_GEN_URL=${IDA_INTERNAL}/otp KERNELAUTHMANAGER=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey -REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard -INTERNALAUTH=${mosip.ida.internal.url}/idauthentication/v1/internal/auth -INTERNALAUTHTRANSACTIONS=${mosip.ida.internal.url}/idauthentication/v1/internal/authTransactions -KERNELENCRYPTIONSERVICE=${mosip.ida.internal.url}/idauthentication/v1/internal/getCertificate -IDAUTHCREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid -IDAUTHREVOKEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid -## Notification service -IDREPOGETIDBYUIN=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid -IDREPOGETIDBYRID=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid -GETUINBYVID=${mosip.idrepo.vid.url}/idrepository/v1/vid -resident.notification.emails=mosiptestuser@gmail.com -resident.notification.message=Notification has been sent to the provided contact detail(s) +## Credential Req & service calls +CREDENTIAL_STATUS_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/get/ +CREDENTIAL_REQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator +CREDENTIAL_CANCELREQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/cancel/ +CREDENTIAL_TYPES_URL=${mosip.idrepo.credential.service.url}/v1/credentialservice/types + +## IdRepo identity Service calls +IDREPO_IDENTITY=${mosip.idrepo.identity.url}/idrepository/v1/identity +IDREPOSITORY=${IDREPO_IDENTITY}/ +IDREPOGETIDBYUIN=${IDREPO_IDENTITY}/idvid +IDREPOGETIDBYRID=${IDREPO_IDENTITY}/idvid +IDREPO_IDENTITY_URL=${IDREPO_IDENTITY}/idvid/{id} +GET_RID_BY_INDIVIDUAL_ID=${IDREPO_IDENTITY}/rid/{individualId} +IDREPO_IDENTITY_UPDATE_COUNT=${IDREPO_IDENTITY}/{individualId}/update-counts +AUTHTYPESTATUSUPDATE=${IDREPO_IDENTITY}/authtypes/status +IDREPO_IDENTITY_GET_DRAFT_UIN=${IDREPO_IDENTITY}/draft/uin/{UIN} +IDREPO_IDENTITY_DISCARD_DRAFT=${IDREPO_IDENTITY}/draft/discard/ + +## IdRepo vid Service calls +IDREPO_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid +CREATEVID=${IDREPO_VID} +GETUINBYVID=${IDREPO_VID} +IDAUTHCREATEVID=${IDREPO_VID} +IDAUTHREVOKEVID=${IDREPO_VID} +RETRIEVE_VIDS=${IDREPO_VID}/uin/ -## templates +## Key manager +KEYMANAGER=${mosip.kernel.keymanager.url}/v1/keymanager +ENCRYPTURL=${KEYMANAGER}/encrypt +DECRYPT_API_URL=${KEYMANAGER}/decrypt +mosip.resident.keymanager.encrypt-uri=${KEYMANAGER}/encrypt +mosip.resident.keymanager.decrypt-uri=${KEYMANAGER}/decrypt +PACKETSIGNPUBLICKEY=${KEYMANAGER}/tpmsigning/publickey +mosip.keymanager.jwt.sign.end.point=${KEYMANAGER}/jwtSign +PDFSIGN=${KEYMANAGER}/pdf/sign + +## Master Data api calls MASTER=${mosip.kernel.masterdata.url}/v1/masterdata TEMPLATES=${MASTER}/templates MACHINEDETAILS=${MASTER}/machines MACHINESEARCH=${MASTER}/machines/search MACHINECREATE=${MASTER}/machines CENTERDETAILS=${MASTER}/registrationcenters -RIDGENERATION=${mosip.kernel.ridgenerator.url}/v1/ridgenerator/generate/rid -CREATEVID=${mosip.idrepo.vid.url}/idrepository/v1/vid -IDREPOSITORY=${mosip.idrepo.identity.url}/idrepository/v1/identity/ -ENCRYPTURL=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt -PACKETSIGNPUBLICKEY=${mosip.kernel.keymanager.url}/v1/keymanager/tpmsigning/publickey -MIDSCHEMAURL=${mosip.kernel.syncdata.url}/v1/syncdata/latestidschema - -#Master Data api calls VALID_DOCUMENT_BY_LANGCODE_URL=${MASTER}/validdocuments/{langCode} LOCATION_HIERARCHY_LEVEL_BY_LANGCODE_URL=${MASTER}/locationHierarchyLevels/{langcode} +LOCATION_HIERARCHY=${MASTER}/locationHierarchyLevels IMMEDIATE_CHILDREN_BY_LOCATIONCODE_AND_LANGCODE_URL=${MASTER}/locations/immediatechildren/{locationcode}/{langcode} LOCATION_INFO_BY_LOCCODE_AND_LANGCODE_URL=${MASTER}/locations/info/{locationcode}/{langcode} +IMMEDIATE_CHILDREN_BY_LOCATION_CODE=${MASTER}/locations/immediatechildren REGISTRATION_CENTER_FOR_LOCATION_CODE_URL=${MASTER}/registrationcenters/{langcode}/{hierarchylevel}/names REGISTRATION_CENTER_BY_LOCATION_TYPE_AND_SEARCH_TEXT_PAGINATED_URL=${MASTER}/registrationcenters/page/{langcode}/{hierarchylevel}/{name} COORDINATE_SPECIFIC_REGISTRATION_CENTERS_URL=${MASTER}/getcoordinatespecificregistrationcenters/{langcode}/{longitude}/{latitude}/{proximitydistance} @@ -157,74 +237,91 @@ APPLICANT_VALID_DOCUMENT_URL=${MASTER}/applicanttype/{applicantId}/languages WORKING_DAYS_BY_REGISTRATION_ID=${MASTER}/workingdays/{registrationCenterID}/{langCode} LATEST_ID_SCHEMA_URL =${MASTER}/idschema/latest TEMPLATES_BY_LANGCODE_AND_TEMPLATETYPECODE_URL=${MASTER}/templates/{langcode}/{templatetypecode} -GENDER_TYPE_BY_LANGCODE=${MASTER}/gendertypes/{langcode} +DYNAMIC_FIELD_BASED_ON_LANG_CODE_AND_FIELD_NAME=${MASTER}/dynamicfields/{fieldName}/{langcode} +DYNAMIC_FIELD_BASED_ON_FIELD_NAME=${MASTER}/dynamicfields/{fieldName} DOCUMENT_TYPE_BY_DOCUMENT_CATEGORY_AND_LANG_CODE=${MASTER}/documenttypes/{documentcategorycode}/{langcode} - -# DMZ service call -SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync -PACKETRECEIVER=http://regproc-group1.regproc/registrationprocessor/v1/packetreceiver/registrationpackets +## Notification service SMSNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/sms/send EMAILNOTIFIER=${mosip.kernel.notification.url}/v1/notifier/email/send -AUTHTYPESTATUSUPDATE=${mosip.idrepo.identity.url}/idrepository/v1/identity/authtypes/status +resident.notification.emails=mosiptestuser@gmail.com +resident.notification.message=Notification has been sent to the provided contact detail(s) -#Regitstration processor reprint service -#Registration status service -REGISTRATIONSTATUSSEARCH=http://regproc-status.regproc/registrationprocessor/v1/registrationstatus/externalstatus/search -resident.center.id=10001 -resident.machine.id=10080 +## Partner manager service URLs +PMS_PARTNER_MANAGER=${mosip.pms.partnermanager.url}/v1/partnermanager +POLICY_REQ_URL=${PMS_PARTNER_MANAGER}/partners/{partnerId}/credentialtype/{credentialType}/policies +PARTNER_API_URL=${PMS_PARTNER_MANAGER}/partners +PARTNER_DETAILS_NEW_URL=${PMS_PARTNER_MANAGER}/partners/v2 +mosip.pms.pmp.partner.rest.uri=${PMS_PARTNER_MANAGER}/partners?partnerType=${mosip.ida.partner.type} -#Credential Req service -POLICY_REQ_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/{partnerId}/credentialtype/{credentialType}/policies -OTP_GEN_URL=${mosip.ida.internal.url}/idauthentication/v1/internal/otp -CREDENTIAL_STATUS_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/get/ -CREDENTIAL_REQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/requestgenerator -CREDENTIAL_CANCELREQ_URL=${mosip.idrepo.credrequest.generator.url}/v1/credentialrequest/cancel/ -CREDENTIAL_TYPES_URL=${mosip.idrepo.credential.service.url}/v1/credentialservice/types -PARTNER_API_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners -mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits -RETRIEVE_VIDS=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin/ - -#IdRepo Service calls -IDREPO_IDENTITY_UPDATE_COUNT=${mosip.idrepo.identity.url}/idrepository/v1/identity/{individualId}/update-counts +## Reg-proc service calls +REGPROCPRINT=http://regproc-group7.regproc/registrationprocessor/v1/print/uincard +SYNCSERVICE=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/sync +PACKETRECEIVER=${mosip.packet.receiver.url}/registrationprocessor/v1/packetreceiver/registrationpackets +GET_RID_STATUS=${mosip.regproc.transaction.service.url}/registrationprocessor/v1/registrationtransaction/search/{rid} +REGISTRATIONSTATUSSEARCH=${mosip.regproc.status.service.url}/registrationprocessor/v1/registrationstatus/externalstatus/search + +## Resident API calls +mosip.service-context=${server.servlet.context-path} +RESIDENT_SERVICE=${mosip.resident.url}${mosip.service-context} +RESIDENT_REQ_CREDENTIAL_URL=${RESIDENT_SERVICE}/req/credential/status/ +GET_ORDER_STATUS_URL=${RESIDENT_SERVICE}/mock/print-partner/check-order-status +mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} +mosip.resident.grievance.url=${mosip.api.public.url}${mosip.service-context}/mock/external/grievance/redressel?name={name}&emailId={email}&phoneNo={phone}&eventId={eventId} +## other service calls +MIDSCHEMAURL=${mosip.kernel.syncdata.url}/v1/syncdata/latestidschema +DIGITAL_CARD_STATUS_URL=${mosip.digitalcard.service.url}/v1/digitalcard/ +RIDGENERATION=${mosip.kernel.ridgenerator.url}/v1/ridgenerator/generate/rid +otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate +mosip.resident.service.mock.pdf.url=https://uidai.gov.in/images/New_eAadhaar1.pdf +mosip.kernel.masterdata.audit-url=${mosip.kernel.auditmanager.url}/v1/auditmanager/audits ## Config data resident.datetime.pattern=yyyy-MM-dd'T'HH:mm:ss.SSS'Z' -resident.identityjson=identity-mapping.json -mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ -mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ +# Comma separated values of allowed auth types +auth.types.allowed=otp-email,otp-phone,demo,bio-FINGER,bio-IRIS,bio-FACE + +# auth-type unlock duration +resident.auth-type.default.unlock.duration.seconds=100 + +# Template type codes for allowed Auth-type list (auth.types.allowed)- +resident.otp-email.template.property.attribute.list=mosip.otp-email.template.property +resident.otp-phone.template.property.attribute.list=mosip.otp-phone.template.property +resident.demo.template.property.attribute.list=mosip.demo.template.property +resident.bio-FINGER.template.property.attribute.list=mosip.bio-finger.template.property +resident.bio-IRIS.template.property.attribute.list=mosip.bio-iris.template.property +resident.bio-FACE.template.property.attribute.list=mosip.bio-face.template.property + +# Template type codes for Auth-type status- +resident.UNLOCKED.template.property.attribute.list=mosip.unlocked.template.property +resident.LOCKED.template.property.attribute.list=mosip.locked.template.property #Validation properties +mosip.id.validation.identity.phone=^([6-9]{1})([0-9]{9})$ +mosip.id.validation.identity.email=^[\\w-\\+]+(\\.[\\w]+)*@[\\w-]+(\\.[\\w]+)*(\\.[a-zA-Z]{2,})$ resident.grievance-redressal.alt-email.chars.limit=128 resident.grievance-redressal.alt-phone.chars.limit=64 resident.grievance-redressal.comments.chars.limit=1024 resident.share-credential.purpose.chars.limit=1024 -mosip.resident.eventid.searchtext.length=16 -mosip.kernel.uin.length=10 -mosip.kernel.vid.length=16 -mosip.kernel.rid.length=29 mosip.resident.eid.length=16 - - -mosip.kernel.otp.default-length=6 -resident.message.allowed.special.char.regex=^[A-Za-z0-9 .,-]+$ -resident.purpose.allowed.special.char.regex=^[A-Za-z0-9 .,-]+$ +mosip.resident.eventid.searchtext.length=${mosip.resident.eid.length} +resident.message.allowed.special.char.regex=^[\\r\\nA-Za-z0-9 .,'-]+$ +resident.purpose.allowed.special.char.regex=^[\\r\\nA-Za-z0-9 .,'-]+$ resident.id.allowed.special.char.regex=^[0-9]+$ resident.document.validation.transaction-id.regex=^[0-9]{10}$ resident.document.validation.document-id.regex=^[A-Za-z0-9-]{20,}$ resident.validation.is-numeric.regex=^[0-9]+$ resident.otp.validation.transaction-id.regex=^[0-9]{10}$ -resident.validation.event-id.regex=^[0-9]{16}$ +resident.validation.event-id.regex=^[0-9]{${mosip.resident.eid.length}}$ ## Security mosip.security.csrf-enable:false mosip.security.secure-cookie:false IDSchema.Version=0.1 -id.repo.update=mosip.id.update -mosip.registration.processor.registration.sync.id=mosip.registration.sync + id.repo.vidType=Perpetual token.request.appid=resident token.request.clientId=mosip-resident-client @@ -241,23 +338,26 @@ registration.processor.identityjson=identity-mapping.json resident.update-uin.machine-name-prefix = resident_machine_ resident.update-uin.machine-spec-id = RESIDENT-1 resident.update-uin.machine-zone-code = MOR +resident.center.id=10001 +resident.machine.id=10080 #Auth Adapter rest template authentication configs mosip.iam.adapter.appid=resident mosip.iam.adapter.clientid=mosip-resident-client mosip.iam.adapter.clientsecret=${mosip.resident.client.secret} -mosip.service-context=/resident/v1 + ## The exclusion list of URL patterns that should not be part of authentication and authorization mosip.service.end-points=/**/req/otp,/**/proxy/**/*,/**/validate-otp,/**/channel/verification-status,/**/req/credential/**,/**/req/card/*,/**/req/auth-history,/**/rid/check-status,/**/req/auth-lock,/**/req/auth-unlock,/**/req/update-uin,/**/req/print-uin,/**/req/euin,/**/credential/types,/**/req/policy/**,/**/aid/status,/**/individualId/otp,/**/mock/**,/**/callback/**,/**/download-card,/**/download/registration-centers-list/**,/**/download/supporting-documents/**,/**/vid/policy,/**/vid,/vid/**,/**/download/nearestRegistrationcenters/**,/**/authorize/admin/validateToken,/**/logout/user,/**/aid-stage/** mosip.service.exclude.auth.allowed.method=POST,GET,PATCH,PUT mosip.ida.env=Production +mosip.ida.domain-url=${mosipbox.public.url} ## Captcha service ## Configuration for google re-captcha -mosip.resident.captcha.enable=true +mosip.resident.captcha.enable=false mosip.resident.captcha.id.validate=mosip.resident.captcha.id.validate mosip.resident.captcha.sitekey=${resident.captcha.site.key} mosip.resident.captcha.secretkey=${resident.captcha.secret.key} @@ -265,58 +365,23 @@ mosip.resident.captcha.resourse.url=http://resident-captcha.resident/resident/v1 mosip.resident.captcha.recaptcha.verify.url=https://www.google.com/recaptcha/api/siteverify -#------------Request IDs--------------------- -# The request IDs used in Resident REST APIs -mosip.resident.api.id.otp.request=mosip.identity.otp.internal -mosip.resident.api.id.auth=mosip.identity.auth.internal - -#------------Request Versions--------------------- -# The request versions used in Resident REST APIs -mosip.resident.api.version.otp.request=1.0 -mosip.resident.api.version.auth=1.0 - -resident.view.history.serviceType.filters=ALL,AUTHENTICATION_REQUEST,SERVICE_REQUEST,DATA_UPDATE_REQUEST,ID_MANAGEMENT_REQUEST,DATA_SHARE_REQUEST -resident.view.history.status.filters=all,Success,In Progress,Failed - #Comma separated values of property keys to be exposed to /proxy/config/ui-properties API -resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.template.tnc.order-a-physical-card,resident.template.tnc.share-cred-with-partner,resident.template.tnc.update-demo,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters,resident.ui.notification.update.interval.seconds,mosip.kernel.otp.expiry-time,resident.grievance-redressal.alt-email.chars.limit,resident.grievance-redressal.alt-phone.chars.limit,resident.grievance-redressal.comments.chars.limit,resident.share-credential.purpose.chars.limit,mosip.resident.eventid.searchtext.length,mosip.kernel.uin.length,mosip.kernel.vid.length,mosip.kernel.rid.length,mosip.resident.eid.length,mosip.kernel.otp.default-length,resident.message.allowed.special.char.regex,resident.purpose.allowed.special.char.regex,resident.id.allowed.special.char.regex,resident.version.new,mosip.resident.identity.auth.internal.id - - - -#IdRepo Identity call -IDREPO_IDENTITY_URL=${mosip.idrepo.identity.url}/idrepository/v1/identity/idvid/{id} - -#Pre-reg application service call -#PREREG_TRANSLITERATION_URL=${mosip.prereg.application.url}/preregistration/v1/transliteration/transliterate - -#Database config -mosip.resident.database.hostname=postgres-postgresql.postgres -mosip.resident.database.port=5432 - -javax.persistence.jdbc.driver=org.postgresql.Driver -javax.persistence.jdbc.url=jdbc:postgresql://${mosip.resident.database.hostname}:${mosip.resident.database.port}/mosip_resident -javax.persistence.jdbc.user=residentuser -javax.persistence.jdbc.password=${db.dbuser.password} - - +resident.ui.propertyKeys=mosip.mandatory-languages,mosip.optional-languages,mosip.utc-datetime-pattern,mosip.iam.adapter.clientid,resident.datetime.pattern,mosip.resident.api.id.otp.request,mosip.resident.api.id.auth,mosip.resident.api.version.otp.request,mosip.resident.api.version.auth,mosip-prereg-host,mosip-prereg-ui-url,auth.types.allowed,resident.view.history.serviceType.filters,resident.view.history.status.filters,resident.auth-type.default.unlock.duration.seconds,mosip.resident.grievance.url,mosip.api.public.host,mosip.resident.captcha.sitekey,mosip.resident.captcha.secretkey,mosip.webui.auto.logout.idle,mosip.webui.auto.logout.ping,mosip.webui.auto.logout.timeout,mosip.resident.download.registration.centre.file.name.convention,mosip.resident.download.supporting.document.file.name.convention,mosip.resident.download.personalized.card.naming.convention,mosip.resident.ack.manage_my_vid.name.convention,mosip.resident.ack.secure_my_id.name.convention,mosip.resident.ack.personalised_card.name.convention,mosip.resident.ack.update_my_data.name.convention,mosip.resident.ack.share_credential.name.convention,mosip.resident.ack.order_physical_card.name.convention,mosip.resident.ack.name.convention,mosip.resident.uin.card.name.convention,mosip.resident.vid.card.name.convention,mosip.resident.download.service.history.file.name.convention,mosip.resident.download.nearest.registration.centre.file.name.convention,auth.internal.id,auth.internal.version,mosip.registration.processor.print.id,mosip.registration.processor.application.version,vid.create.id,mosip.resident.create.vid.version,resident.vid.version,resident.vid.version.new,resident.revokevid.version,resident.revokevid.version.new,resident.vid.id,resident.vid.id.generate,resident.vid.policy.id,resident.vid.get.id,auth.type.status.id,resident.authlock.id,resident.checkstatus.id,resident.checkstatus.version,resident.euin.id,resident.printuin.id,resident.uin.id,resident.rid.id,resident.updateuin.id,resident.authunlock.id,resident.authhistory.id,resident.authLockStatusUpdateV2.id,resident.authLockStatusUpdateV2.version,resident.service.history.id,resident.service.history.version,resident.document.upload.id,resident.document.get.id,resident.document.get.version,resident.document.list.id,resident.document.list.version,resident.service.pin.status.id,resident.service.pin.status.version,resident.service.unpin.status.id,resident.service.unpin.status.version,resident.document.delete.id,resident.document.delete.version,resident.contact.details.update.id,resident.contact.details.send.otp.id,mosip.resident.service.status.check.id,mosip.resident.service.status.check.version,resident.service.unreadnotificationlist.id,resident.service.event.id,resident.service.event.version,resident.identity.info.id,resident.identity.info.version,resident.share.credential.id,resident.share.credential.version,mosip.resident.request.response.version,vid.revoke.id,resident.revokevid.id,mosip.resident.revokevid.id,mosip.resident.grievance.ticket.request.id,mosip.resident.grievance.ticket.request.version,resident.channel.verification.status.id,resident.channel.verification.status.version,resident.event.ack.download.id,resident.event.ack.download.version,resident.download.card.eventid.id ,resident.download.card.eventid.version,mosip.resident.request.vid.card.id,mosip.resident.request.vid.card.version,mosip.credential.request.service.id,mosip.credential.request.service.version,mosip.resident.checkstatus.individualid.id,mosip.resident.checkstatus.individualid.version,mosip.resident.download.personalized.card.id,mosip.resident.transliteration.transliterate.id,resident.ui.properties.id,resident.ui.properties.version,resident.nearby.centers.distance.meters,resident.ui.notification.update.interval.seconds,mosip.kernel.otp.expiry-time,resident.grievance-redressal.alt-email.chars.limit,resident.grievance-redressal.alt-phone.chars.limit,resident.grievance-redressal.comments.chars.limit,resident.share-credential.purpose.chars.limit,mosip.resident.eventid.searchtext.length,mosip.kernel.uin.length,mosip.kernel.vid.length,mosip.kernel.rid.length,mosip.resident.eid.length,mosip.kernel.otp.default-length,resident.message.allowed.special.char.regex,resident.purpose.allowed.special.char.regex,resident.id.allowed.special.char.regex,resident.version.new,mosip.resident.identity.auth.internal.id,resident.validation.event-id.regex,resident.document.validation.transaction-id.regex,resident.document.validation.document-id.regex,resident.validation.is-numeric.regex,resident.otp.validation.transaction-id.regex,,mosip.resident.captcha.enable,resident.download.reg.centers.list.id,resident.download.nearest.reg.centers.id,resident.download.supporting.documents.id,resident.send.card.id,resident.pinned.eventid.id,resident.unpinned.eventid.id,resident.auth.proxy.partners.id,resident.events.eventid.id,resident.notification.id,resident.profile.id,resident.notification.click.id,mosip.credential.store.id,resident.vids.id,mosip.resident.zoom,mosip.resident.maxZoom,mosip.resident.minZoom auth.allowed.urls=https://${mosip.resident.host}/,https://${mosip.resident.host}/resident-ui/,https://${mosip.resident.host}/resident-ui/** -# IAM -mosip.iam.module.login_flow.name=authorization_code - ########################################################### # IdP config -# Note: When enabling MOSIP-IdP comment Mock Keycloak config, vise versa. -################## MOSIP ESignet config -mosip.iam.module.clientID=sK-zOe1Ke6X-f83yRpR4sOHxuPAWNZ5vzEpOjCyKWMk +# Note: When enabling MOSIP E-Signet comment Mock Keycloak config, vise versa. +################## MOSIP E-Signet config +mosip.iam.module.clientID=${resident.oidc.clientid} mosip.iam.module.clientsecret= -mosip.iam.base.url=https://${mosip.api.public.host}/v1/esignet +mosip.iam.base.url=https://${mosip.esignet.host}/v1/esignet mosip.iam.authorization_endpoint=https://${mosip.esignet.host}/authorize -mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/token +mosip.iam.token_endpoint=${mosip.iam.base.url}/oauth/v2/token mosip.iam.userinfo_endpoint=${mosip.iam.base.url}/oidc/userinfo mosip.iam.certs_endpoint=${mosip.iam.base.url}/oauth/.well-known/jwks.json auth.server.admin.issuer.uri=${mosip.iam.base.url} @@ -331,7 +396,7 @@ auth.server.admin.oidc.certs.url=${mosip.iam.certs_endpoint} mosip.iam.logout.offline=true auth.server.admin.validate.url= mosip.resident.oidc.userinfo.jwt.verify.enabled=false -################### MOSIP IdP config ends +################### MOSIP E-Signet config ends ################### Mock-keycloak IdP config #mosip.iam.module.clientID=mosip-resident-client @@ -344,19 +409,23 @@ mosip.resident.oidc.userinfo.jwt.verify.enabled=false #mosip.resident.oidc.userinfo.jwt.signed=false ################### Mock-keycloak IdP config ends ########################################################### -mosip.iam.module.redirecturi=${mosip.api.public.url}/resident/v1/login-redirect/ + + +## IAM +mosip.iam.module.redirecturi=${mosip.api.internal.url}/resident/v1/login-redirect/ #mosip.iam.module.redirecturi=${tempuri}/v1/admin/login-redirect/ +mosip.iam.module.login_flow.name=authorization_code #mosip.iam.module.login_flow.scope=cls mosip.iam.module.login_flow.scope=openid profile Manage-Identity-Data Manage-VID Manage-Authentication Manage-Service-Requests Manage-Credentials +mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} mosip.iam.module.login_flow.response_type=code - mosip.iam.module.admin_realm_id=mosip -#User-info claim attributes in open-id-connect based login with UIN/VID in MOSIP-IDP +## User-info claim attributes in open-id-connect based login with UIN/VID in MOSIP-IDP mosip.resident.identity.claim.individual-id=individual_id mosip.resident.identity.claim.ida-token=ida_token -#Scopes +## Scopes mosip.scope.resident.getinputattributevalues=Manage-Identity-Data mosip.scope.resident.patchrevokevid=Manage-VID mosip.scope.resident.postgeneratevid=Manage-VID @@ -369,7 +438,7 @@ mosip.scope.resident.patchUpdateUin=Manage-Identity-Data mosip.scope.resident.getServiceAuthHistoryRoles=Manage-Service-Requests mosip.scope.resident.postSendPhysicalCard=Manage-Credentials mosip.scope.resident.getUnreadServiceList=Manage-Service-Requests -mosip.scope.resident.getNotificationCount=Manage-Service-Requests +mosip.scope.resident.getNotificationCount= mosip.scope.resident.getNotificationClick=Manage-Service-Requests mosip.scope.resident.getupdatedttimes=Manage-Service-Requests mosip.scope.resident.postRequestDownloadPersonalizedCard=Manage-Credentials @@ -380,21 +449,31 @@ mosip.scope.resident.getDownloadCard=Manage-Credentials mosip.scope.resident.postPersonalizedCard=Manage-Credentials mosip.scope.resident.getOrderRedirect=Manage-Credentials -## Key manager -mosip.resident.keymanager.encrypt-uri=${mosip.kernel.keymanager.url}/v1/keymanager/encrypt -mosip.resident.keymanager.decrypt-uri=${mosip.kernel.keymanager.url}/v1/keymanager/decrypt - -# Object Store configuration -mosip.resident.object.store.account-name=resident -mosip.resident.object.store.bucket-name=resident -mosip.resident.object.store.adapter-name=s3Adapter -object.store.s3.use.account.as.bucketname=true -# Key manager encryption/decryption configuration +## Key manager encryption/decryption configuration +APPLICATION_Id=RESIDENT +PARTNER_REFERENCE_Id=mpartner-default-resident mosip.resident.keymanager.application-name=RESIDENT mosip.resident.keymanager.reference-id=resident_document mosip.datashare.application.id=PARTNER mosip.datashare.reference.id=mparter-default-euin +mosip.resident.oidc.keymanager.reference.id=IDP_USER_INFO +mosip.resident.sign.pdf.application.id=KERNEL +mosip.resident.sign.pdf.reference.id=SIGN + +## Object Store configuration +mosip.resident.object.store.account-name=resident +mosip.resident.object.store.bucket-name=resident +mosip.resident.object.store.adapter-name=s3Adapter +object.store.s3.use.account.as.bucketname=true +object.store.s3.accesskey=${s3.accesskey} +object.store.s3.secretkey=${s3.secretkey} +## For Minio: +object.store.s3.url=http://minio.minio:9000 +## For AWS: +#object.store.s3.url=s3.${s3.region}.amazonaws.com +object.store.s3.region=${s3.region} +object.store.s3.readlimit=10000000 # Virus Scanner configuration mosip.resident.virus-scanner.enabled=true @@ -402,8 +481,6 @@ mosip.resident.virus-scanner.enabled=true # VID Policy url mosip.resident.vid-policy-url=${config.server.file.storage.uri}mosip-vid-policy.json - - # Resident UI Schema JSON file name resident-ui-schema-file-name-prefix=resident-ui # IDA Mapping JSON file URI @@ -419,15 +496,15 @@ identity-mapping-file-url=${config.server.file.storage.uri}${identity-mapping-fi # Identity Mapping JSON file property source identity-mapping-file-source=url:${identity-mapping-file-url} - +# amr-acr JSON file name +amr-acr.json.filename=amr-acr-mapping.json # Identity Data format MVEL file name -resident-data-format-mvel-file-name=identity-data-formatter.mvel +resident-data-format-mvel-file-name=credentialdata.mvel resident-data-format-mvel-file-url=${config.server.file.storage.uri}${resident-data-format-mvel-file-name} resident-data-format-mvel-file-source=url:${resident-data-format-mvel-file-url} - # WebSub Topic and callback propertis for auth type status event resident.websub.authtype-status.secret=${resident.websub.authtype.status.secret} resident.websub.authtype-status.topic=AUTH_TYPE_STATUS_UPDATE_ACK @@ -440,6 +517,17 @@ resident.websub.authTransaction-status.topic=AUTHENTICATION_TRANSACTION_STATUS resident.websub.callback.authTransaction-status.relative.url=${server.servlet.context-path}/callback/authTransaction resident.websub.callback.authTransaction-status.url=${mosip.api.internal.url}${resident.websub.callback.authTransaction-status.relative.url} +# WebSub Topic and callback propertis for credential status event +resident.websub.credential-status.secret=${resident.websub.credential.status.update.secret} +resident.websub.credential-status.topic=CREDENTIAL_STATUS_UPDATE +resident.websub.callback.credential-status.relative.url=${server.servlet.context-path}/callback/credentialStatusUpdate +resident.websub.callback.credential-status.url=${mosip.api.internal.url}${resident.websub.callback.credential-status.relative.url} + +# WebSub Topic and callback propertis for regproc complete workflow event +resident.websub.regproc.workflow.complete.secret=${resident.websub.regproc.workflow.complete.secret} +mosip.regproc.workflow.complete.topic=REGISTRATION_PROCESSOR_WORKFLOW_COMPLETED_EVENT +resident.websub.callback.regproc.workflow.complete.relative.url=${server.servlet.context-path}/callback/regprocworkflow +resident.websub.callback.regproc.workflow.complete.url=${mosip.api.internal.url}${resident.websub.callback.regproc.workflow.complete.relative.url} #--------------------------------TokenId generator---------------------------------------------------# @@ -447,228 +535,206 @@ mosip.kernel.tokenid.uin.salt=${mosip.kernel.uin.salt} mosip.kernel.tokenid.partnercode.salt=${mosip.kernel.partnercode.salt} #------------------------------------ -# Object store -object.store.s3.accesskey=${s3.accesskey} -object.store.s3.secretkey=${s3.secretkey} -## For Minio: object.store.s3.url=http://minio.minio:9000 -## For AWS: object.store.s3.url=s3.${s3.region}.amazonaws.com -object.store.s3.url=http://minio.minio:9000 -object.store.s3.region=${s3.region} -object.store.s3.readlimit=10000000 - -# Partner Service URL -mosip.pms.pmp.partner.rest.uri=${mosip.pms.partnermanager.url}/v1/partnermanager/partners?partnerType=Online_Verification_Partner #Mask functions resident.email.mask.function=maskEmail resident.phone.mask.function=maskPhone -resident.data.mask.function=convertToMaskDataFormat - -#property for dateOfBirth -resident.dateofbirth.pattern=yyyy/MM/dd - -resident.documents.category=individualBiometrics - -#order card payment -mosip.resident.order.card.payment.enabled=true - -#Check Order Status URL -GET_ORDER_STATUS_URL=${mosip.resident.url}/resident/v1/mock/print-partner/check-order-status - -RESIDENT_REQ_CREDENTIAL_URL=${mosip.resident.url}/resident/v1/req/credential/status/ - -DIGITAL_CARD_STATUS_URL=${mosip.digitalcard.service.url}/v1/digitalcard/ -mosip.resident.service.mock.pdf.url=https://uidai.gov.in/images/New_eAadhaar1.pdf - - -#templates for resident -resident.template.tnc.order-a-physical-card=tnc-order-a-physical-card -resident.template.tnc.share-cred-with-partner=tnc-share-cred-with-partner -resident.template.tnc.update-demo=tnc-update-demo +resident.data.mask.function=convertToMaskData # Batch job configuration for credential status update -mosip.resident.update.service.status.job.enabled=true +mosip.resident.update.service.status.job.enabled=false mosip.resident.update.service.status.job.initial-delay=60000 -mosip.resident.update.service.status.job.interval.millisecs=60000 - -# auth-type unlock duration -resident.auth-type.default.unlock.duration.seconds=100 - -#templates for email subject -resident.template.email.subject.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received-email-subject -resident.template.email.subject.success.cust-and-down-my-card=cust-and-down-my-card-success-email-subject -resident.template.email.subject.failure.cust-and-down-my-card=cust-and-down-my-card-failure-email-subject +#Interval for checking the credential status for async requests. Note, this is done as a fallback though credential status update is hanlded in resident service via websub notification. +mosip.resident.update.service.status.job.interval.millisecs=600000 -resident.template.email.subject.request-received.order-a-physical-card=order-a-physical-card-request-received-email-subject -resident.template.email.subject.success.order-a-physical-card=order-a-physical-card-success-email-subject -resident.template.email.subject.failure.order-a-physical-card=order-a-physical-card-failure-email-subject -resident.template.email.subject.request-received.share-cred-with-partner=share-cred-with-partner-request-received-email-subject -resident.template.email.subject.success.share-cred-with-partner=share-cred-with-partner-success-email-subject -resident.template.email.subject.failure.share-cred-with-partner=share-cred-with-partner-failure-email-subject +# Template type codes for email subject +resident.template.email.subject.request-received.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-request-received-email-subject +resident.template.email.subject.success.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-success-email-subject +resident.template.email.subject.failure.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-failure-email-subject + +resident.template.email.subject.request-received.ORDER_PHYSICAL_CARD=order-a-physical-card-request-received-email-subject +resident.template.email.subject.success.ORDER_PHYSICAL_CARD=order-a-physical-card-success-email-subject +resident.template.email.subject.failure.ORDER_PHYSICAL_CARD=order-a-physical-card-failure-email-subject -resident.template.email.subject.request-received.lock-unlock-auth=lock-unlock-auth-request-received-email-subject -resident.template.email.subject.success.lock-unlock-auth=lock-unlock-auth-success-email-subject -resident.template.email.subject.failure.lock-unlock-auth=lock-unlock-auth-failure-email-subject - -resident.template.email.subject.request-received.update-demo-data=update-demo-data-request-received-email-subject -resident.template.email.subject.success.update-demo-data=update-demo-data-success-email-subject -resident.template.email.subject.failure.update-demo-data=update-demo-data-failure-email-subject - -resident.template.email.subject.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received-email-subject -resident.template.email.subject.success.gen-or-revoke-vid=gen-or-revoke-vid-success-email-subject -resident.template.email.subject.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure-email-subject - -resident.template.email.subject.request-received.vid-card-download=vid-card-download-request-received-email-subject -resident.template.email.subject.success.vid-card-download=vid-card-download-success-email-subject -resident.template.email.subject.failure.vid-card-download=vid-card-download-failure-email-subject - -resident.template.email.subject.request-received.get-my-uin-card=get-my-uin-card-request-received-email-subject -resident.template.email.subject.success.get-my-uin-card=get-my-uin-card-success-email-subject -resident.template.email.subject.failure.get-my-uin-card=get-my-uin-card-failure-email-subject - -resident.template.email.subject.request-received.verify-my-phone-email=verify-my-phone-email-request-received-email-subject -resident.template.email.subject.success.verify-my-phone-email=verify-my-phone-email-success-email-subject -resident.template.email.subject.failure.verify-my-phone-email=verify-my-phone-email-failure-email-subject - -#templates for email content -resident.template.email.content.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received-email-content -resident.template.email.content.success.cust-and-down-my-card=cust-and-down-my-card-success-email-content -resident.template.email.content.failure.cust-and-down-my-card=cust-and-down-my-card-failure-email-content - -resident.template.email.content.request-received.order-a-physical-card=order-a-physical-card-request-received-email-content -resident.template.email.content.success.order-a-physical-card=order-a-physical-card-success-email-content -resident.template.email.content.failure.order-a-physical-card=order-a-physical-card-failure-email-content - -resident.template.email.content.request-received.share-cred-with-partner=share-cred-with-partner-request-received-email-content -resident.template.email.content.success.share-cred-with-partner=share-cred-with-partner-success-email-content -resident.template.email.content.failure.share-cred-with-partner=share-cred-with-partner-failure-email-content - -resident.template.email.content.request-received.lock-unlock-auth=lock-unlock-auth-request-received-email-content -resident.template.email.content.success.lock-unlock-auth=lock-unlock-auth-success-email-content -resident.template.email.content.failure.lock-unlock-auth=lock-unlock-auth-failure-email-content - -resident.template.email.content.request-received.update-demo-data=update-demo-data-request-received-email-content -resident.template.email.content.success.update-demo-data=update-demo-data-success-email-content -resident.template.email.content.failure.update-demo-data=update-demo-data-failure-email-content - -resident.template.email.content.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received-email-content -resident.template.email.content.success.gen-or-revoke-vid=gen-or-revoke-vid-success-email-content -resident.template.email.content.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure-email-content - -resident.template.email.content.request-received.vid-card-download=vid-card-download-request-received-email-content -resident.template.email.content.success.vid-card-download=vid-card-download-success-email-content -resident.template.email.content.failure.vid-card-download=vid-card-download-failure-email-content - -resident.template.email.content.request-received.get-my-uin-card=get-my-uin-card-request-received-email-content -resident.template.email.content.success.get-my-uin-card=get-my-uin-card-success-email-content -resident.template.email.content.failure.get-my-uin-card=get-my-uin-card-failure-email-content - -resident.template.email.content.request-received.verify-my-phone-email=verify-my-phone-email-request-received-email-content -resident.template.email.content.success.verify-my-phone-email=verify-my-phone-email-success-email-content -resident.template.email.content.failure.verify-my-phone-email=verify-my-phone-email-failure-email-content - -#templates for sms content -resident.template.sms.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received_SMS -resident.template.sms.success.cust-and-down-my-card=cust-and-down-my-card-success_SMS -resident.template.sms.failure.cust-and-down-my-card=cust-and-down-my-card-failure_SMS - -resident.template.sms.request-received.order-a-physical-card=order-a-physical-card-request-received_SMS -resident.template.sms.success.order-a-physical-card=order-a-physical-card-success_SMS -resident.template.sms.failure.order-a-physical-card=order-a-physical-card-failure_SMS - -resident.template.sms.request-received.share-cred-with-partner=share-cred-with-partner-request-received_SMS -resident.template.sms.success.share-cred-with-partner=share-cred-with-partner-success_SMS -resident.template.sms.failure.share-cred-with-partner=share-cred-with-partner-failure_SMS - -resident.template.sms.request-received.lock-unlock-auth=lock-unlock-auth-request-received_SMS -resident.template.sms.success.lock-unlock-auth=lock-unlock-auth-success_SMS -resident.template.sms.failure.lock-unlock-auth=lock-unlock-auth-failure_SMS - -resident.template.sms.request-received.update-demo-data=update-demo-data-request-received_SMS -resident.template.sms.success.update-demo-data=update-demo-data-success_SMS -resident.template.sms.failure.update-demo-data=update-demo-data-failure_SMS - -resident.template.sms.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received_SMS -resident.template.sms.success.gen-or-revoke-vid=gen-or-revoke-vid-success_SMS -resident.template.sms.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure_SMS - -resident.template.sms.request-received.vid-card-download=vid-card-download-request-received_SMS -resident.template.sms.success.vid-card-download=vid-card-download-success_SMS -resident.template.sms.failure.vid-card-download=vid-card-download-failure_SMS - -resident.template.sms.request-received.get-my-uin-card=get-my-uin-card-request-received_SMS -resident.template.sms.success.get-my-uin-card=get-my-uin-card-success_SMS -resident.template.sms.failure.get-my-uin-card=get-my-uin-card-failure_SMS - -resident.template.sms.request-received.verify-my-phone-email=verify-my-phone-email-request-received_SMS -resident.template.sms.success.verify-my-phone-email=verify-my-phone-email-success_SMS -resident.template.sms.failure.verify-my-phone-email=verify-my-phone-email-failure_SMS - -#templates for bell-icon notification -resident.template.bell-icon.request-received.cust-and-down-my-card=cust-and-down-my-card-request-received_BELL -resident.template.bell-icon.success.cust-and-down-my-card=cust-and-down-my-card-success_BELL -resident.template.bell-icon.failure.cust-and-down-my-card=cust-and-down-my-card-failure_BELL - -resident.template.bell-icon.request-received.order-a-physical-card=order-a-physical-card-request-received_BELL -resident.template.bell-icon.success.order-a-physical-card=order-a-physical-card-success_BELL -resident.template.bell-icon.failure.order-a-physical-card=order-a-physical-card-failure_BELL - -resident.template.bell-icon.request-received.share-cred-with-partner=share-cred-with-partner-request-received_BELL -resident.template.bell-icon.success.share-cred-with-partner=share-cred-with-partner-success_BELL -resident.template.bell-icon.failure.share-cred-with-partner=share-cred-with-partner-failure_BELL - -resident.template.bell-icon.request-received.lock-unlock-auth=lock-unlock-auth-request-received_BELL -resident.template.bell-icon.success.lock-unlock-auth=lock-unlock-auth-success_BELL -resident.template.bell-icon.failure.lock-unlock-auth=lock-unlock-auth-failure_BELL - -resident.template.bell-icon.request-received.update-demo-data=update-demo-data-request-received_BELL -resident.template.bell-icon.success.update-demo-data=update-demo-data-success_BELL -resident.template.bell-icon.failure.update-demo-data=update-demo-data-failure_BELL - -resident.template.bell-icon.request-received.gen-or-revoke-vid=gen-or-revoke-vid-request-received_BELL -resident.template.bell-icon.success.gen-or-revoke-vid=gen-or-revoke-vid-success_BELL -resident.template.bell-icon.failure.gen-or-revoke-vid=gen-or-revoke-vid-failure_BELL - -resident.template.bell-icon.request-received.get-my-uin-card=get-my-uin-card-request-received_BELL -resident.template.bell-icon.success.get-my-uin-card=get-my-uin-card-success_BELL -resident.template.bell-icon.failure.get-my-uin-card=get-my-uin-card-failure_BELL - -resident.template.bell-icon.request-received.verify-my-phone-email=verify-my-phone-email-request-received_BELL -resident.template.bell-icon.success.verify-my-phone-email=verify-my-phone-email-success_BELL -resident.template.bell-icon.failure.verify-my-phone-email=verify-my-phone-email-failure_BELL - -#templates for purpose (success) content -resident.template.purpose.success.cust-and-down-my-card=cust-and-down-my-card-positive-purpose -resident.template.purpose.success.order-a-physical-card=order-a-physical-card-positive purpose -resident.template.purpose.success.share-cred-with-partner=share-cred-with-partner-positive-purpose -resident.template.purpose.success.lock-unlock-auth=lock-unlock-auth-positive-purpose -resident.template.purpose.success.update-demo-data=update-demo-data-positive-purpose -resident.template.purpose.success.gen-or-revoke-vid=gen-or-revoke-vid-positive-purpose -resident.template.purpose.success.get-my-uin-card=get-my-uin-card-positive-purpose -resident.template.purpose.success.verify-my-phone-email=verify-my-phone-email-positive-purpose - -#templates for purpose (in-progress/failure) content -resident.template.purpose.failure.cust-and-down-my-card=cust-and-down-my-card-negative-purpose -resident.template.purpose.failure.order-a-physical-card=order-a-physical-card-negative purpose -resident.template.purpose.failure.share-cred-with-partner=share-cred-with-partner-negative-purpose -resident.template.purpose.failure.lock-unlock-auth=lock-unlock-auth-negative-purpose -resident.template.purpose.failure.update-demo-data=update-demo-data-negative-purpose -resident.template.purpose.failure.gen-or-revoke-vid=gen-or-revoke-vid-negative-purpose -resident.template.purpose.failure.get-my-uin-card=get-my-uin-card-negative-purpose -resident.template.purpose.failure.verify-my-phone-email=verify-my-phone-email-negative-purpose - -#templates for summary (success) content -resident.template.summary.success.cust-and-down-my-card=cust-and-down-my-card-success-summary -resident.template.summary.success.order-a-physical-card=order-a-physical-card-success-summary -resident.template.summary.success.share-cred-with-partner=share-cred-with-partner-success-summary -resident.template.summary.success.lock-unlock-auth=lock-unlock-auth-success-summary -resident.template.summary.success.update-demo-data=update-demo-data-success-summary -resident.template.summary.success.gen-or-revoke-vid=gen-or-revoke-vid-success-summary -resident.template.summary.success.get-my-uin-card=get-my-uin-card-success-summary -resident.template.summary.success.verify-my-phone-email=verify-my-phone-email-success-summary - -#templates for acknowledgement +resident.template.email.subject.request-received.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-request-received-email-subject +resident.template.email.subject.success.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-success-email-subject +resident.template.email.subject.failure.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-failure-email-subject + +resident.template.email.subject.request-received.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-request-received-email-subject +resident.template.email.subject.success.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-success-email-subject +resident.template.email.subject.failure.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-failure-email-subject + +resident.template.email.subject.request-received.UPDATE_MY_UIN=update-demo-data-request-received-email-subject +resident.template.email.subject.success.UPDATE_MY_UIN=update-demo-data-success-email-subject +resident.template.email.subject.failure.UPDATE_MY_UIN=update-demo-data-failure-email-subject +resident.template.email.subject.regproc-success.UPDATE_MY_UIN=update-demo-data-regproc-success-email-subject +resident.template.email.subject.regproc-failure.UPDATE_MY_UIN=update-demo-data-regproc-failure-email-subject +resident.template.email.subject.cancelled.UPDATE_MY_UIN=update-demo-data-discarded-email-subject + +resident.template.email.subject.request-received.GENERATE_VID=gen-or-revoke-vid-request-received-email-subject +resident.template.email.subject.success.GENERATE_VID=gen-or-revoke-vid-success-email-subject +resident.template.email.subject.failure.GENERATE_VID=gen-or-revoke-vid-failure-email-subject + +resident.template.email.subject.request-received.REVOKE_VID=gen-or-revoke-vid-request-received-email-subject +resident.template.email.subject.success.REVOKE_VID=gen-or-revoke-vid-success-email-subject +resident.template.email.subject.failure.REVOKE_VID=gen-or-revoke-vid-failure-email-subject + +resident.template.email.subject.request-received.VID_CARD_DOWNLOAD=vid-card-download-request-received-email-subject +resident.template.email.subject.success.VID_CARD_DOWNLOAD=vid-card-download-success-email-subject +resident.template.email.subject.failure.VID_CARD_DOWNLOAD=vid-card-download-failure-email-subject + +resident.template.email.subject.request-received.GET_MY_ID=get-my-uin-card-request-received-email-subject +resident.template.email.subject.success.GET_MY_ID=get-my-uin-card-success-email-subject +resident.template.email.subject.failure.GET_MY_ID=get-my-uin-card-failure-email-subject + +resident.template.email.subject.request-received.VALIDATE_OTP=verify-my-phone-email-request-received-email-subject +resident.template.email.subject.success.VALIDATE_OTP=verify-my-phone-email-success-email-subject +resident.template.email.subject.failure.VALIDATE_OTP=verify-my-phone-email-failure-email-subject + +resident.template.email.subject.success.SEND_OTP=receive-otp-mail-subject + +# Template type codes for email content +resident.template.email.content.request-received.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-request-received-email-content +resident.template.email.content.success.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-success-email-content +resident.template.email.content.failure.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-failure-email-content + +resident.template.email.content.request-received.ORDER_PHYSICAL_CARD=order-a-physical-card-request-received-email-content +resident.template.email.content.success.ORDER_PHYSICAL_CARD=order-a-physical-card-success-email-content +resident.template.email.content.failure.ORDER_PHYSICAL_CARD=order-a-physical-card-failure-email-content + +resident.template.email.content.request-received.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-request-received-email-content +resident.template.email.content.success.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-success-email-content +resident.template.email.content.failure.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-failure-email-content + +resident.template.email.content.request-received.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-request-received-email-content +resident.template.email.content.success.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-success-email-content +resident.template.email.content.failure.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-failure-email-content + +resident.template.email.content.request-received.UPDATE_MY_UIN=update-demo-data-request-received-email-content +resident.template.email.content.success.UPDATE_MY_UIN=update-demo-data-success-email-content +resident.template.email.content.failure.UPDATE_MY_UIN=update-demo-data-failure-email-content +resident.template.email.content.regproc-success.UPDATE_MY_UIN=update-demo-data-regproc-success-email-content +resident.template.email.content.regproc-failure.UPDATE_MY_UIN=update-demo-data-regproc-failure-email-content +resident.template.email.content.cancelled.UPDATE_MY_UIN=update-demo-data-discarded-email-content + +resident.template.email.content.request-received.GENERATE_VID=gen-or-revoke-vid-request-received-email-content +resident.template.email.content.success.GENERATE_VID=gen-or-revoke-vid-success-email-content +resident.template.email.content.failure.GENERATE_VID=gen-or-revoke-vid-failure-email-content + +resident.template.email.content.request-received.REVOKE_VID=gen-or-revoke-vid-request-received-email-content +resident.template.email.content.success.REVOKE_VID=gen-or-revoke-vid-success-email-content +resident.template.email.content.failure.REVOKE_VID=gen-or-revoke-vid-failure-email-content + +resident.template.email.content.request-received.VID_CARD_DOWNLOAD=vid-card-download-request-received-email-content +resident.template.email.content.success.VID_CARD_DOWNLOAD=vid-card-download-success-email-content +resident.template.email.content.failure.VID_CARD_DOWNLOAD=vid-card-download-failure-email-content + +resident.template.email.content.request-received.GET_MY_ID=get-my-uin-card-request-received-email-content +resident.template.email.content.success.GET_MY_ID=get-my-uin-card-success-email-content +resident.template.email.content.failure.GET_MY_ID=get-my-uin-card-failure-email-content + +resident.template.email.content.request-received.VALIDATE_OTP=verify-my-phone-email-request-received-email-content +resident.template.email.content.success.VALIDATE_OTP=verify-my-phone-email-success-email-content +resident.template.email.content.failure.VALIDATE_OTP=verify-my-phone-email-failure-email-content + +resident.template.email.content.success.SEND_OTP=receive-otp-mail-content + +# Template type codes for sms content +resident.template.sms.request-received.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-request-received_SMS +resident.template.sms.success.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-success_SMS +resident.template.sms.failure.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-failure_SMS + +resident.template.sms.request-received.ORDER_PHYSICAL_CARD=order-a-physical-card-request-received_SMS +resident.template.sms.success.ORDER_PHYSICAL_CARD=order-a-physical-card-success_SMS +resident.template.sms.failure.ORDER_PHYSICAL_CARD=order-a-physical-card-failure_SMS + +resident.template.sms.request-received.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-request-received_SMS +resident.template.sms.success.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-success_SMS +resident.template.sms.failure.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-failure_SMS + +resident.template.sms.request-received.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-request-received_SMS +resident.template.sms.success.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-success_SMS +resident.template.sms.failure.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-failure_SMS + +resident.template.sms.request-received.UPDATE_MY_UIN=update-demo-data-request-received_SMS +resident.template.sms.success.UPDATE_MY_UIN=update-demo-data-success_SMS +resident.template.sms.failure.UPDATE_MY_UIN=update-demo-data-failure_SMS +resident.template.sms.regproc-success.UPDATE_MY_UIN=update-demo-data-regproc-success_SMS +resident.template.sms.regproc-failure.UPDATE_MY_UIN=update-demo-data-regproc-failure_SMS +resident.template.sms.cancelled.UPDATE_MY_UIN=update-demo-data-discarded-SMS + +resident.template.sms.request-received.GENERATE_VID=gen-or-revoke-vid-request-received_SMS +resident.template.sms.success.GENERATE_VID=gen-or-revoke-vid-success_SMS +resident.template.sms.failure.GENERATE_VID=gen-or-revoke-vid-failure_SMS + +resident.template.sms.request-received.REVOKE_VID=gen-or-revoke-vid-request-received_SMS +resident.template.sms.success.REVOKE_VID=gen-or-revoke-vid-success_SMS +resident.template.sms.failure.REVOKE_VID=gen-or-revoke-vid-failure_SMS + +resident.template.sms.request-received.VID_CARD_DOWNLOAD=vid-card-download-request-received_SMS +resident.template.sms.success.VID_CARD_DOWNLOAD=vid-card-download-success_SMS +resident.template.sms.failure.VID_CARD_DOWNLOAD=vid-card-download-failure_SMS + +resident.template.sms.request-received.GET_MY_ID=get-my-uin-card-request-received_SMS +resident.template.sms.success.GET_MY_ID=get-my-uin-card-success_SMS +resident.template.sms.failure.GET_MY_ID=get-my-uin-card-failure_SMS + +resident.template.sms.request-received.VALIDATE_OTP=verify-my-phone-email-request-received_SMS +resident.template.sms.success.VALIDATE_OTP=verify-my-phone-email-success_SMS +resident.template.sms.failure.VALIDATE_OTP=verify-my-phone-email-failure_SMS + +resident.template.sms.success.SEND_OTP=receive-otp + +# Template type codes for purpose (success) content +resident.template.purpose.success.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-positive-purpose +resident.template.purpose.success.ORDER_PHYSICAL_CARD=order-a-physical-card-positive purpose +resident.template.purpose.success.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-positive-purpose +resident.template.purpose.success.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-positive-purpose +resident.template.purpose.success.UPDATE_MY_UIN=update-demo-data-positive-purpose +resident.template.purpose.success.GENERATE_VID=gen-or-revoke-vid-positive-purpose +resident.template.purpose.success.REVOKE_VID=gen-or-revoke-vid-positive-purpose +resident.template.purpose.success.GET_MY_ID=get-my-uin-card-positive-purpose +resident.template.purpose.success.VALIDATE_OTP=verify-my-phone-email-positive-purpose +resident.template.purpose.success.VID_CARD_DOWNLOAD=vid-card-download-positive-purpose + +# Template type codes for purpose (in-progress/failure) content +resident.template.purpose.failure.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-negative-purpose +resident.template.purpose.failure.ORDER_PHYSICAL_CARD=order-a-physical-card-negative purpose +resident.template.purpose.failure.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-negative-purpose +resident.template.purpose.failure.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-negative-purpose +resident.template.purpose.failure.UPDATE_MY_UIN=update-demo-data-negative-purpose +resident.template.purpose.failure.GENERATE_VID=gen-or-revoke-vid-negative-purpose +resident.template.purpose.failure.REVOKE_VID=gen-or-revoke-vid-negative-purpose +resident.template.purpose.failure.GET_MY_ID=get-my-uin-card-negative-purpose +resident.template.purpose.failure.VALIDATE_OTP=verify-my-phone-email-negative-purpose +resident.template.purpose.failure.VID_CARD_DOWNLOAD=vid-card-download-negative-purpose + +# Template type codes for purpose (cancelled) content +resident.template.purpose.cancelled.UPDATE_MY_UIN=update-demo-data-cancelled-purpose + +# Template type codes for purpose(Identity updated) content +resident.template.purpose.regproc-success.UPDATE_MY_UIN=update-demo-data-regproc-success-purpose + +# Template type codes for summary (success) content +resident.template.summary.success.DOWNLOAD_PERSONALIZED_CARD=cust-and-down-my-card-success-summary +resident.template.summary.success.ORDER_PHYSICAL_CARD=order-a-physical-card-success-summary +resident.template.summary.success.SHARE_CRED_WITH_PARTNER=share-cred-with-partner-success-summary +resident.template.summary.success.AUTH_TYPE_LOCK_UNLOCK=lock-unlock-auth-success-summary +resident.template.summary.success.UPDATE_MY_UIN=update-demo-data-success-summary +resident.template.summary.success.GENERATE_VID=gen-or-revoke-vid-success-summary +resident.template.summary.success.REVOKE_VID=gen-or-revoke-vid-success-summary +resident.template.summary.success.GET_MY_ID=get-my-uin-card-success-summary +resident.template.summary.success.VALIDATE_OTP=verify-my-phone-email-success-summary +resident.template.summary.success.VID_CARD_DOWNLOAD=vid-card-download-positive-summary + +# Template type code for summary (cancelled) content +resident.template.summary.cancelled.UPDATE_MY_UIN=update-demo-data-cancelled-summary + +# Template type code for summary (regproc-success) content +resident.template.summary.regproc-success.UPDATE_MY_UIN=update-demo-data-regproc-success-summary + +# Template type codes for acknowledgement PDFs resident.template.ack.share-cred-with-partner=acknowledgement-share-cred-with-partner resident.template.ack.manage-my-vid=acknowledgement-manage-my-vid resident.template.ack.order-a-physical-card=acknowledgement-order-a-physical-card @@ -676,68 +742,68 @@ resident.template.ack.download-a-personalized-card=acknowledgement-download-a-pe resident.template.ack.update-demographic-data=acknowledgement-update-demographic-data resident.template.ack.verify-email-id-or-phone-number=acknowledgement-verify-email-id-or-phone-number resident.template.ack.secure-my-id=acknowledgement-secure-my-id -resident.template.email.subject.success.send-otp=receive-otp-mail-subject -resident.template.email.content.success.send-otp=receive-otp-mail-content -resident.template.email.subject.success.validate-otp=validate-otp-mail-subject -resident.template.email.content.success.validate-otp=validate-otp-mail-content -resident.template.sms.success.send-otp=receive-otp -resident.template.sms.success.validate-otp=validate-otp - -#template for list of supporting documents -resident.template.support-docs-list=supporting-docs-list +resident.template.ack.authentication.request=acknowledgment-authentication-request +resident.template.ack.get.my.id=acknowledgment-get-my-id +resident.template.ack.vid.card.download=acknowledgment-vid-card-download +# Template type codes for list of supporting documents, service history, registration centers and vid card +resident.template.support-docs-list=supporting-docs-list mosip.resident.service.history.template.type.code=service-history-type resident.template.registration.centers.list=registration-centers-list -mosip.resident.grievance.url=https://${mosip.api.public.host}/resident/v1/mock/external/grievance/redressel?name={name}&emailId={email}&phoneNo={phone}&eventId={eventId} +mosip.resident.vid.card.template.property=vid-card-type -#template required properties +# Template required properties resident.template.date.pattern=dd-MM-yyyy resident.template.time.pattern=HH:mm:ss resident.ui.track-service-request-url=https://${mosip.resident.host}/#/uinservices/trackservicerequest?eid= -otpChannel.mobile=phone -otpChannel.email=email -otp-generate.rest.uri=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate +# View history filters +resident.view.history.serviceType.filters=ALL,AUTHENTICATION_REQUEST,SERVICE_REQUEST,DATA_UPDATE_REQUEST,ID_MANAGEMENT_REQUEST,DATA_SHARE_REQUEST +resident.view.history.status.filters=ALL,SUCCESS,IN_PROGRESS,FAILED,CANCELED -#to get id_token in cookie and validate it -auth.validate.id-token=true +# Maximum data to download in a PDF +resident.service-history.download.max.count=100 +resident.registration-centers.download.max.count=100 -mosip.resident.download.uin.card=mosip.resident.download.uin.card -GET_RID_BY_INDIVIDUAL_ID=${mosip.idrepo.identity.url}/idrepository/v1/identity/rid/{individualId} +## The Registration centers will be searched based on the distance value in meters from the Geo location identified +resident.nearby.centers.distance.meters=2000 + +# Page size in Bell Icon Notification list and View history +resident.notifications.default.page.size=100 +resident.view-history.default.page.size=10 +#to get id_token in cookie and validate it +auth.validate.id-token=true +idToken=id_token +auth.token.header=Authorization mosip.resident.access_token.auth_mode.claim-name=acr mosip.resident.oidc.id_token.ida_token.claim-name=sub -idToken=id_token +mosip.resident.oidc.auth_token.expiry.claim-name=exp mosip.resident.oidc.userinfo.encryption.enabled=false -mosip.resident.oidc.keymanager.reference.id=IDP_USER_INFO + mosip.client.assertion.reference.id= mosip.include.payload=true mosip.include.certificate=true mosip.include.cert.hash=false -mosip.keymanager.jwt.sign.end.point=${mosip.kernel.keymanager.url}/v1/keymanager/jwtSign -mosip.iam.module.login_flow.claims={"userinfo":{"name":{"essential":true},"picture":{"essential":true},"email":{"essential":true},"phone_number":{"essential":true},"individual_id":{"essential":true}}} -#Rectangle coordinates for pfd signataured data + +# Rectangle coordinates for PDF signatured data mosip.resident.service.uincard.lowerleftx=73 mosip.resident.service.uincard.lowerlefty=100 mosip.resident.service.uincard.upperrightx=300 mosip.resident.service.uincard.upperrighty=300 mosip.resident.service.uincard.signature.reason="Digitally Signed" -PDFSIGN=${mosip.kernel.keymanager.url}/v1/keymanager/pdf/sign - -# get partner details -PARTNER_DETAILS_NEW_URL=${mosip.pms.partnermanager.url}/v1/partnermanager/partners/v2 - -#pdf signature appid & refId -mosip.resident.sign.pdf.application.id=KERNEL -mosip.resident.sign.pdf.reference.id=SIGN - mosip.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer #method name to create password resident.create.password.method.name=getPassword -#File name for the downloaded personalized card. "eventId" and "timestamp" are configurable. If they are removed from below property then they will be removed from file name also. + +resident.ui.notification.update.interval.seconds=30 +resident.ui.datetime.pattern.default=yyyy-MM-dd HH:mm:ss +resident.filename.datetime.pattern.default=yyyy-MM-dd'T'HH_mm_ss + +#File name for the downloaded PDFs. "eventId" and "timestamp" are configurable. If they are removed from below property then they will be removed from file name also. mosip.resident.download.registration.centre.file.name.convention=Registration_centers_{timestamp} mosip.resident.download.supporting.document.file.name.convention=Supporting_documents_{timestamp} mosip.resident.download.personalized.card.naming.convention=Personalised_card_{eventId}_{timestamp} @@ -748,93 +814,332 @@ mosip.resident.ack.update_my_data.name.convention=Ack_{featureName}_{eventId}_{t mosip.resident.ack.share_credential.name.convention=Ack_{featureName}_{eventId}_{timestamp} mosip.resident.ack.order_physical_card.name.convention=Ack_{featureName}_{eventId}_{timestamp} mosip.resident.ack.name.convention=Ack_{featureName}_{eventId}_{timestamp} - mosip.resident.uin.card.name.convention=UIN_{eventId}_{timestamp} mosip.resident.vid.card.name.convention=VID_{eventId}_{timestamp} mosip.resident.download.service.history.file.name.convention=View_history_{timestamp} mosip.resident.download.nearest.registration.centre.file.name.convention=Registration_centers_{timestamp} +mosip.resident.download.card.naming.convention=Get_my_UIN_{timestamp} + +# Credential request config for sharing credential to partner +mosip.resident.request.credential.credentialType=vercred +#mosip.resident.request.credential.credentialType=euin -mosip.resident.request.credential.credentialType=euin +#Temporarily uncommented below 2 properties for testing release 1201 branch in env. mosip.resident.request.credential.isEncrypt=true -mosip.resident.request.credential.encryption.key=abc123 +mosip.resident.request.credential.encryption.key=${mosip.resident.request.credential.encryption.key} +mosip.digital.card.credential.type=PDFCard mosip.credential.issuer=mpartner-default-digitalcard -#claim names +# Claim names mosip.resident.name.token.claim-name=name mosip.resident.photo.token.claim-photo=picture mosip.resident.individual.id.claim.name=individual_id mosip.resident.email.token.claim-email=email -mosip.resident.phone.token.claim-phone=phone +mosip.resident.phone.token.claim-phone=phone_number -mosip.resident.applicant.name.property=applicantName +# Value based properties +otpChannel.email=email +otpChannel.mobile=phone +mosip.idrepo.vid.reactive-status=ACTIVE +resident.dateofbirth.pattern=yyyy/MM/dd mosip.resident.photo.attribute.name=photo -mosip.digital.card.credential.type=PDFCard +mosip.resident.order.card.payment.enabled=true +resident.update.preferred.language.by.name=true +resident.documents.category=individualBiometrics +mosip.resident.schema.attribute-name=attributeName +mosip.resident.applicant.name.property=applicantName +mosip.resident.authentication.mode.property=authenticationMode +resident.attribute.names.without.documents.required=preferredLanguage,email,phone +resident.additional.identity.attribute.to.fetch=UIN,email,phone,dateOfBirth,fullName,photo + ## OTP flooding ## Configure Time limit for OTP Flooding scenario (in minutes) otp.request.flooding.duration=1 otp.request.flooding.max-count=100 -mosip.resident.message.code.maximum.length=1024 -GET_RID_STATUS=${mosipbox.public.url}/registrationprocessor/v1/registrationtransaction/search/{rid} +# Maximum file size and allowed file types for uploading document +mosip.max.file.upload.size.in.bytes=2306867 +mosip.allowed.extension=pdf,jpeg,png,jpg + + +# Reg-proc packet status codes +resident.success.packet-status-code.list=PROCESSED,SUCCESS,UIN_GENERATED +resident.in-progress.packet-status-code.list=PROCESSING,REREGISTER,RESEND,RECEIVED,UPLOAD_PENDING,AWAITING_INFORMATION,REPROCESS +resident.failure.packet-status-code.list=REJECTED,FAILED,REPROCESS_FAILED + +# Reg-proc packet transaction type codes +resident.REQUEST_RECEIVED.packet-transaction-type-code.list=PACKET_RECEIVER,VIRUS_SCAN,SECUREZONE_NOTIFICATION,UPLOAD_PACKET,VALIDATE_PACKET,PACKET_CLASSIFICATION +resident.VALIDATION_STAGE.packet-transaction-type-code.list=CMD_VALIDATION,OPERATOR_VALIDATION,QUALITY_CLASSIFIER,SUPERVISOR_VALIDATION,INTRODUCER_VALIDATION,BIOMETRIC_AUTHENTICATION,EXTERNAL_INTEGRATION +resident.VERIFICATION_STAGE.packet-transaction-type-code.list=DEMOGRAPHIC_VERIFICATION,MANUAL_ADJUDICATION,VERIFICATION,BIOGRAPHIC_VERIFICATION +resident.UIN_GENERATION_STAGE.packet-transaction-type-code.list=UIN_GENERATOR,BIOMETRIC_EXTRACTION,NOTIFICATION,FINALIZATION,PACKET_REPROCESS +resident.CARD_READY_TO_DOWNLOAD.packet-transaction-type-code.list=PRINT_SERVICE,PRINT_POSTAL_SERVICE,PRINT + sequence-order=Request received, Validation stage, Verification stage, Uin generation stage, Card ready to download -resident.additional.identity.attribute.to.fetch=UIN,email,phone,dateOfBirth,fullName,photo -resident.template.ack.authentication.request=acknowledgment-authentication-request -resident.template.ack.get.my.id=acknowledgment-get-my-id -resident.template.ack.vid.card.download=acknowledgment-vid-card-download +##Synchronous events -resident.template.purpose.success.vid-card-download=vid-card-download-positive-purpose -resident.template.purpose.failure.vid-card-download=vid-card-download-negative-purpose -resident.template.summary.success.vid-card-download=vid-card-download-positive-summary +resident.request.success.status.list.AUTHENTICATION_REQUEST=AUTHENTICATION_SUCCESSFUL,Y +resident.request.failed.status.list.AUTHENTICATION_REQUEST=AUTHENTICATION_FAILED,N +resident.request.cancelled.status.list.AUTHENTICATION_REQUEST= -resident.ui.datetime.pattern=yyyy-MM-dd HH:mm:ss -resident.filename.datetime.pattern=yyyy-MM-dd'T'HH_mm_ss +resident.request.new.status.list.DOWNLOAD_PERSONALIZED_CARD=NEW +resident.batchjob.process.success.status.list.DOWNLOAD_PERSONALIZED_CARD=CARD_DOWNLOADED +resident.request.failed.status.list.DOWNLOAD_PERSONALIZED_CARD=FAILED +resident.request.cancelled.status.list.DOWNLOAD_PERSONALIZED_CARD= -## The Registration centers will be searched based on the distance value in meters from the Geo location identified -resident.nearby.centers.distance.meters=2000 +resident.request.new.status.list.GET_MY_ID=NEW +resident.request.in-progress.status.list.GET_MY_ID=OTP_REQUESTED +resident.request.success.status.list.GET_MY_ID=CARD_DOWNLOADED,OTP_VERIFIED +resident.request.failed.status.list.GET_MY_ID=FAILED +resident.request.cancelled.status.list.GET_MY_ID= + +resident.request.new.status.list.BOOK_AN_APPOINTMENT= +resident.request.success.status.list.BOOK_AN_APPOINTMENT= +resident.request.failed.status.list.BOOK_AN_APPOINTMENT= +resident.request.cancelled.status.list.BOOK_AN_APPOINTMENT= + +resident.request.new.status.list.GENERATE_VID=NEW +resident.request.success.status.list.GENERATE_VID=VID_GENERATED +resident.request.failed.status.list.GENERATE_VID=FAILED +resident.request.cancelled.status.list.GENERATE_VID= + +resident.request.new.status.list.REVOKE_VID=NEW +resident.request.success.status.list.REVOKE_VID=VID_REVOKED +resident.request.failed.status.list.REVOKE_VID=FAILED +resident.request.cancelled.status.list.REVOKE_VID= + +resident.request.new.status.list.SEND_OTP= +resident.request.success.status.list.SEND_OTP= +resident.request.failed.status.list.SEND_OTP= +resident.request.cancelled.status.list.SEND_OTP= + +resident.request.new.status.list.VALIDATE_OTP=OTP_REQUESTED +resident.request.success.status.list.VALIDATE_OTP=OTP_VERIFIED +resident.request.failed.status.list.VALIDATE_OTP=OTP_VERIFICATION_FAILED +resident.request.cancelled.status.list.VALIDATE_OTP= + +resident.request.new.status.list.DEFAULT= +resident.request.success.status.list.DEFAULT= +resident.request.failed.status.list.DEFAULT= +resident.request.cancelled.status.list.DEFAULT= -mosip.idrepo.vid.reactive-status=ACTIVE # Asyc Request Types resident.async.request.types=VID_CARD_DOWNLOAD,ORDER_PHYSICAL_CARD,SHARE_CRED_WITH_PARTNER,UPDATE_MY_UIN -resident.batchjob.process.status.list=NEW,ISSUED,RECEIVED,PRINTING,CARD_DELIVERED,PAYMENT_CONFIRMED,IN_TRANSIT -resident.ui.notification.update.interval.seconds=30 -mosip.allowed.extension=pdf,jpeg,png,jpg - -mosip.resident.schema.attribute-name=attributeName +##Asynchronous events + +resident.request.new.status.list.SHARE_CRED_WITH_PARTNER=NEW +resident.request.in-progress.status.list.SHARE_CRED_WITH_PARTNER=ISSUED +resident.request.success.status.list.SHARE_CRED_WITH_PARTNER=RECEIVED,DATA_SHARED_SUCCESSFULLY,STORED +resident.request.failed.status.list.SHARE_CRED_WITH_PARTNER=FAILED +resident.request.cancelled.status.list.SHARE_CRED_WITH_PARTNER= +resident.request.notification.status.list.SHARE_CRED_WITH_PARTNER=FAILED,RECEIVED,DATA_SHARED_SUCCESSFULLY,STORED + +resident.request.new.status.list.ORDER_PHYSICAL_CARD=NEW +resident.request.in-progress.status.list.ORDER_PHYSICAL_CARD=PAYMENT_CONFIRMED,ISSUED,PRINTING,IN_TRANSIT +resident.request.success.status.list.ORDER_PHYSICAL_CARD=CARD_DELIVERED +resident.request.failed.status.list.ORDER_PHYSICAL_CARD=FAILED,PAYMENT_FAILED +resident.request.cancelled.status.list.ORDER_PHYSICAL_CARD= +resident.request.notification.status.list.ORDER_PHYSICAL_CARD=PAYMENT_CONFIRMED,ISSUED,PRINTING,IN_TRANSIT,CARD_DELIVERED,FAILED,PAYMENT_FAILED,CARD_DELIVERED + +resident.request.new.status.list.UPDATE_MY_UIN=NEW +resident.request.in-progress.status.list.UPDATE_MY_UIN=PROCESSING,PAUSED,RESUMABLE,REPROCESS,PAUSED_FOR_ADDITIONAL_INFO,IDENTITY_UPDATED +resident.request.success.status.list.UPDATE_MY_UIN=PROCESSED,DATA_UPDATED,STORED,CARD_READY_TO_DOWNLOAD,CARD_DOWNLOADED +resident.request.failed.status.list.UPDATE_MY_UIN=FAILED,REJECTED,REPROCESS_FAILED +resident.request.cancelled.status.list.UPDATE_MY_UIN=CANCELED +resident.request.notification.status.list.UPDATE_MY_UIN=PROCESSED,DATA_UPDATED,STORED,CARD_READY_TO_DOWNLOAD,CARD_DOWNLOADED,FAILED,REJECTED,REPROCESS_FAILED,IDENTITY_UPDATED + +resident.request.new.status.list.AUTH_TYPE_LOCK_UNLOCK=NEW +resident.request.in-progress.status.list.AUTH_TYPE_LOCK_UNLOCK= +resident.request.success.status.list.AUTH_TYPE_LOCK_UNLOCK=COMPLETED +resident.request.failed.status.list.AUTH_TYPE_LOCK_UNLOCK=FAILED +resident.request.cancelled.status.list.AUTH_TYPE_LOCK_UNLOCK= +resident.request.notification.status.list.AUTH_TYPE_LOCK_UNLOCK=COMPLETED,FAILED + +resident.request.new.status.list.VID_CARD_DOWNLOAD=NEW +resident.request.in-progress.status.list.VID_CARD_DOWNLOAD=ISSUED +resident.request.success.status.list.VID_CARD_DOWNLOAD=STORED,CARD_READY_TO_DOWNLOAD,CARD_DOWNLOADED +resident.request.failed.status.list.VID_CARD_DOWNLOAD=FAILED +resident.request.cancelled.status.list.VID_CARD_DOWNLOAD= +resident.request.notification.status.list.VID_CARD_DOWNLOAD=STORED,CARD_READY_TO_DOWNLOAD,CARD_DOWNLOADED,FAILED + + +# define property name in below format- +#resident.<attribute name>.template.property.attribute.list +resident.PHONE.template.property.attribute.list=mosip.phone.template.property +resident.EMAIL.template.property.attribute.list=mosip.email.template.property +resident.GENERATE_VID.template.property.attribute.list=mosip.generated.template.property +resident.REVOKE_VID.template.property.attribute.list=mosip.revoked.template.property + +# template type codes for event status code +resident.event.status.SUCCESS.template.property=mosip.event.status.success.template +resident.event.status.FAILED.template.property=mosip.event.status.failed.template +resident.event.status.IN_PROGRESS.template.property=mosip.event.status.inprogress.template +resident.event.status.CANCELED.template.property=mosip.event.status.cancelled.template + +# template type codes for event types +# define property name in below format- +# resident.event.type.<eventType>.template.property +resident.event.type.AUTHENTICATION_REQUEST.template.property=mosip.event.type.AUTHENTICATION_REQUEST +resident.event.type.SHARE_CRED_WITH_PARTNER.template.property=mosip.event.type.SHARE_CRED_WITH_PARTNER +resident.event.type.DOWNLOAD_PERSONALIZED_CARD.template.property=mosip.event.type.DOWNLOAD_PERSONALIZED_CARD +resident.event.type.ORDER_PHYSICAL_CARD.template.property=mosip.event.type.ORDER_PHYSICAL_CARD +resident.event.type.GET_MY_ID.template.property=mosip.event.type.GET_MY_ID +resident.event.type.UPDATE_MY_UIN.template.property=mosip.event.type.UPDATE_MY_UIN +resident.event.type.GENERATE_VID.template.property=mosip.event.type.GENERATE_VID +resident.event.type.REVOKE_VID.template.property=mosip.event.type.REVOKE_VID +resident.event.type.AUTH_TYPE_LOCK_UNLOCK.template.property=mosip.event.type.AUTH_TYPE_LOCK_UNLOCK +resident.event.type.VID_CARD_DOWNLOAD.template.property=mosip.event.type.VID_CARD_DOWNLOAD +resident.event.type.SEND_OTP.template.property=mosip.event.type.SEND_OTP +resident.event.type.VALIDATE_OTP.template.property=mosip.event.type.VALIDATE_OTP +resident.event.type.DEFAULT.template.property=mosip.event.type.DEFAULT + +# template type codes for service types +# define property name in below format- +# resident.service-type.<serviceType>.template.property +resident.service-type.AUTHENTICATION_REQUEST.template.property=mosip.service.type.AUTHENTICATION_REQUEST +resident.service-type.SERVICE_REQUEST.template.property=mosip.service.type.SERVICE_REQUEST +resident.service-type.DATA_UPDATE_REQUEST.template.property=mosip.service.type.DATA_UPDATE_REQUEST +resident.service-type.ID_MANAGEMENT_REQUEST.template.property=mosip.service.type.ID_MANAGEMENT_REQUEST +resident.service-type.DATA_SHARE_REQUEST.template.property=mosip.service.type.DATA_SHARE_REQUEST +resident.service-type.ASYNC.template.property=mosip.service.type.ASYNC + +resident.ALL.template.property=mosip.template.ALL +resident.UNKNOWN.template.property=mosip.template.UNKNOWN + +# template type codes for id-authentication request types description +# define property name in below format- +# resident.id-auth.request-type.<authTypeCode>.<statusCode>.descr +resident.id-auth.request-type.OTP-REQUEST.SUCCESS.descr=mosip.ida.auth-request.OTP-REQUEST.Y.descr +resident.id-auth.request-type.OTP-AUTH.SUCCESS.descr=mosip.ida.auth-request.OTP-AUTH.Y.descr +resident.id-auth.request-type.DEMO-AUTH.SUCCESS.descr=mosip.ida.auth-request.DEMO-AUTH.Y.descr +resident.id-auth.request-type.FINGERPRINT-AUTH.SUCCESS.descr=mosip.ida.auth-request.FINGERPRINT-AUTH.Y.descr +resident.id-auth.request-type.IRIS-AUTH.SUCCESS.descr=mosip.ida.auth-request.IRIS-AUTH.Y.descr +resident.id-auth.request-type.FACE-AUTH.SUCCESS.descr=mosip.ida.auth-request.FACE-AUTH.Y.descr +resident.id-auth.request-type.STATIC-PIN-AUTH.SUCCESS.descr=mosip.ida.auth-request.STATIC-PIN-AUTH.Y.descr +resident.id-auth.request-type.STATIC-PIN-STORAGE.SUCCESS.descr=mosip.ida.auth-request.STATIC-PIN-STORAGE.Y.descr +resident.id-auth.request-type.EKYC-AUTH.SUCCESS.descr=mosip.ida.auth-request.EKYC-AUTH.Y.descr +resident.id-auth.request-type.KYC-AUTH.SUCCESS.descr=mosip.ida.auth-request.KYC-AUTH.Y.descr +resident.id-auth.request-type.KYC-EXCHANGE.SUCCESS.descr=mosip.ida.auth-request.KYC-EXCHANGE.Y.descr +resident.id-auth.request-type.IDENTITY-KEY-BINDING.SUCCESS.descr=mosip.ida.auth-request.IDENTITY-KEY-BINDING.Y.descr +resident.id-auth.request-type.TOKEN-REQUEST.SUCCESS.descr=mosip.ida.auth-request.TOKEN-REQUEST.Y.descr +resident.id-auth.request-type.TOKEN-AUTH.SUCCESS.descr=mosip.ida.auth-request.TOKEN-AUTH.Y.descr +resident.id-auth.request-type.UNKNOWN.SUCCESS.descr=mosip.ida.auth-request.UNKNOWN.Y.descr +resident.id-auth.request-type.OTP-REQUEST.FAILED.descr=mosip.ida.auth-request.OTP-REQUEST.N.descr +resident.id-auth.request-type.OTP-AUTH.FAILED.descr=mosip.ida.auth-request.OTP-AUTH.N.descr +resident.id-auth.request-type.DEMO-AUTH.FAILED.descr=mosip.ida.auth-request.DEMO-AUTH.N.descr +resident.id-auth.request-type.FINGERPRINT-AUTH.FAILED.descr=mosip.ida.auth-request.FINGERPRINT-AUTH.N.descr +resident.id-auth.request-type.IRIS-AUTH.FAILED.descr=mosip.ida.auth-request.IRIS-AUTH.N.descr +resident.id-auth.request-type.FACE-AUTH.FAILED.descr=mosip.ida.auth-request.FACE-AUTH.N.descr +resident.id-auth.request-type.STATIC-PIN-AUTH.FAILED.descr=mosip.ida.auth-request.STATIC-PIN-AUTH.N.descr +resident.id-auth.request-type.STATIC-PIN-STORAGE.FAILED.descr=mosip.ida.auth-request.STATIC-PIN-STORAGE.N.descr +resident.id-auth.request-type.EKYC-AUTH.FAILED.descr=mosip.ida.auth-request.EKYC-AUTH.N.descr +resident.id-auth.request-type.KYC-AUTH.FAILED.descr=mosip.ida.auth-request.KYC-AUTH.N.descr +resident.id-auth.request-type.KYC-EXCHANGE.FAILED.descr=mosip.ida.auth-request.KYC-EXCHANGE.N.descr +resident.id-auth.request-type.IDENTITY-KEY-BINDING.FAILED.descr=mosip.ida.auth-request.IDENTITY-KEY-BINDING.N.descr +resident.id-auth.request-type.TOKEN-REQUEST.FAILED.descr=mosip.ida.auth-request.TOKEN-REQUEST.N.descr +resident.id-auth.request-type.TOKEN-AUTH.FAILED.descr=mosip.ida.auth-request.TOKEN-AUTH.N.descr +resident.id-auth.request-type.UNKNOWN.FAILED.descr=mosip.ida.auth-request.UNKNOWN.N.descr + +# template type codes for authentication modes (authTypeCode) +# define property name in below format- +# resident.auth-type-code.<authTypeCode>.code +resident.auth-type-code.OTP-REQUEST.code=mosip.auth-type-code.OTP-REQUEST +resident.auth-type-code.OTP-AUTH.code=mosip.auth-type-code.OTP-AUTH +resident.auth-type-code.DEMO-AUTH.code=mosip.auth-type-code.DEMO-AUTH +resident.auth-type-code.FINGERPRINT-AUTH.code=mosip.auth-type-code.FINGERPRINT-AUTH +resident.auth-type-code.IRIS-AUTH.code=mosip.auth-type-code.IRIS-AUTH +resident.auth-type-code.FACE-AUTH.code=mosip.auth-type-code.FACE-AUTH +resident.auth-type-code.STATIC-PIN-AUTH.code=mosip.auth-type-code.STATIC-PIN-AUTH +resident.auth-type-code.STATIC-PIN-STORAGE.code=mosip.auth-type-code.STATIC-PIN-STORAGE +resident.auth-type-code.EKYC-AUTH.code=mosip.auth-type-code.EKYC-AUTH +resident.auth-type-code.KYC-AUTH.code=mosip.auth-type-code.KYC-AUTH +resident.auth-type-code.KYC-EXCHANGE.code=mosip.auth-type-code.KYC-EXCHANGE +resident.auth-type-code.IDENTITY-KEY-BINDING.code=mosip.auth-type-code.IDENTITY-KEY-BINDING +resident.auth-type-code.TOKEN-REQUEST.code=mosip.auth-type-code.TOKEN-REQUEST +resident.auth-type-code.TOKEN-AUTH.code=mosip.auth-type-code.TOKEN-AUTH +resident.auth-type-code.PWD.code=mosip.auth-type-code.PWD +resident.auth-type-code.PIN.code=mosip.auth-type-code.PIN +resident.auth-type-code.OTP.code=mosip.auth-type-code.OTP +resident.auth-type-code.Wallet.code=mosip.auth-type-code.Wallet +resident.auth-type-code.L1-bio-device.code=mosip.auth-type-code.L1-bio-device + +# Below property will retrieve VID when requested. Default is false so, UIN will be retrieved. +# Endpoints using below property- /individualId/otp, /aid/status +#resident.flag.use-vid-only=true -mosip.max.file.upload.size.in.bytes=2000000 - -resident.service-history.download.max.count=115 - -# Below property will retrieve VID when requested. -resident.flag.use-vid-only=true - -mosip.idp.otp.template.property=mosip.idp.otp.template.property -# Below property will retrieve VID when requested. -mosip.idp.biometrics.template.property=mosip.idp.biometrics.template.property -mosip.idp.unknown.authentication.template.property=mosip.idp.unknown.authentication.template.property -mosip.full.name.template.property=mosip.full.name.template.property -mosip.date.of.birth.template.property=mosip.date.of.birth.template.property -mosip.uin.template.property=mosip.uin.template.property -mosip.perpetual.vid.template.property=mosip.perpetual.vid.template.property -mosip.phone.template.property=mosip.phone.template.property -mosip.email.template.property=mosip.email.template.property -mosip.address.template.property=mosip.address.template.property -mosip.gender.template.property=mosip.gender.template.property -mosip.defualt.template.property=mosip.defualt.template.property -mosip.idp.acr.generated.code=mosip:idp:acr:generated-code -mosip.idp.acr.biometrics=mosip:idp:acr:biometrics -mosip.idp.unknown.authentication=unknown -auth.token.header=Authorization # Class name of the referenceValidator. Commenting or removing this property will disable reference validator. mosip.kernel.idobjectvalidator.referenceValidator=io.mosip.kernel.idobjectvalidator.impl.IdObjectReferenceValidator -mosip.resident.vid.card.template.property=vid-card-type -mosip.resident.download-card.url=${mosip.api.public.url}${mosip.service-context}/download-card/event/{eventId} + + spring.servlet.multipart.max-file-size=10MB + +# for validating request time as per before & after time limit (in seconds) in contact-details/update API. +resident.future.time.limit=60 +resident.past.time.limit=60 + +# The java.time.format.FormatStyle enum to use for date time formatting based on locale. Allowed values with examples are: +# * FULL ('Tuesday, April 12, 1952 AD' or '3:30:42pm PST'), +# * LONG('January 12, 1952'), +# * MEDIUM ('Jan 12, 1952'), +# * SHORT ('12.13.52' or '3:30pm'). +# Default value is MEDIUM. For more details refer to the enum. +resident.date.time.formmatting.style=MEDIUM +resident.date.time.replace.special.chars={" ": "_", "," : "", ":" : "."} + +#cache expiration times are in milliseconds. +resident.cache.expiry.time.millisec.templateCache=86400000 +resident.cache.expiry.time.millisec.partnerCache=86400000 +resident.cache.expiry.time.millisec.getValidDocumentByLangCode=86400000 +resident.cache.expiry.time.millisec.getLocationHierarchyLevelByLangCode=86400000 +resident.cache.expiry.time.millisec.getImmediateChildrenByLocCodeAndLangCode=86400000 +resident.cache.expiry.time.millisec.getLocationDetailsByLocCodeAndLangCode=86400000 +resident.cache.expiry.time.millisec.getCoordinateSpecificRegistrationCenters=86400000 +resident.cache.expiry.time.millisec.getApplicantValidDocument=86400000 +resident.cache.expiry.time.millisec.getRegistrationCentersByHierarchyLevel=86400000 +resident.cache.expiry.time.millisec.getRegistrationCenterByHierarchyLevelAndTextPaginated=86400000 +resident.cache.expiry.time.millisec.getRegistrationCenterWorkingDays=86400000 +resident.cache.expiry.time.millisec.getLatestIdSchema=86400000 +resident.cache.expiry.time.millisec.getGenderCodeByGenderTypeAndLangCode=86400000 +resident.cache.expiry.time.millisec.getDocumentTypesByDocumentCategoryAndLangCode=86400000 +resident.cache.expiry.time.millisec.getDynamicFieldBasedOnLangCodeAndFieldName=86400000 +resident.cache.expiry.time.millisec.getCenterDetails=86400000 +resident.cache.expiry.time.millisec.getImmediateChildrenByLocCode=86400000 +resident.cache.expiry.time.millisec.getLocationHierarchyLevels=86400000 +resident.cache.expiry.time.millisec.getAllDynamicFieldByName=86400000 + + +#added multi languages for testing +mosip.optional-languages=fra,ara,hin,tam,kan,spa + +# Separators +# Usage: resident.attribute.separator.<attribute>=<separator string> +resident.attribute.separator.fullAddress=, + +# Limit the number of async threads created in Resident services. This count is divided into 4 thread groups configured in 'io.mosip.resident.config.Config' class +mosip.resident.async-core-pool-size=100 +mosip.resident.async-max-pool-size=100 + +# Logo property +# This property is used in all downloaded PDF files. +mosip.pdf.header.logo.url=https://mosip.io/images/mosipn-logo.png + +# These properties is used in reg-center feature for map zoom in & out. +mosip.resident.zoom=14 +mosip.resident.maxZoom=18 +mosip.resident.minZoom=5 + +# Transliteration work around property since eng to fra directly is not supported in icu4j.This can be added for any other unsupported language also. +# For example resident-transliteration-workaround-for-<fromLanguageCode>-<toLanguageCode> = fromLanguageCode-intermediateLanguageCode-toLanguageCode +# For Intermediate language code transliteration should work in both ways. +resident-transliteration-workaround-for-eng-fra=eng-hin,hin-fra +resident-transliteration-workaround-for-eng-spa=eng-hin,hin-spa + +# Reg-processer-credential-partner-policy-url +mosip.resident.reg-processer-credential-partner-policy-url=${config.server.file.storage.uri}registration-processor-credential-partners.json \ No newline at end of file diff --git a/resident-ui-personalized-card-schema.json b/resident-ui-personalized-card-schema.json index 375ebabf0d8..c72dbb7d91f 100644 --- a/resident-ui-personalized-card-schema.json +++ b/resident-ui-personalized-card-schema.json @@ -2,19 +2,35 @@ "identity": [ { "attributeName": "fullName", - "maskRequired": false, + "maskRequired": false, "formatRequired": true, + "defaultFormat":"fullName", "label": { - "eng": "Name" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Name", + "ara": "اسم", + "fra":"Nom", + "hin":"नाम", + "tam":"பெயர்", + "kan":"ಹೆಸರು", + "spa":"Nombre" }, "formatOptionLabel":{ - "eng": "Name Format" + "eng": "Name Format", + "ara": "تنسيق الاسم", + "fra":"Format du nom", + "hin":"नाम प्रारूप", + "tam":"பெயர் வடிவம்", + "kan":"ಹೆಸರು ಸ್ವರೂಪ", + "spa":"Formato de nombre" }, "formatOption":{ - "eng": [{"label":"First Name", "value":"firstName"}, {"label":"Middle Name", "value":"middleName"}, {"label":"Last Name", "value":"lastName"}, {"label":"Full Name", "value":"fullName"}] + "eng": [{"label":"Full Name", "value":"fullName","checked":true}], + "ara": [{"label":"الاسم الكامل", "value":"fullName","checked":true}], + "fra": [{"label":"nom et prénom", "value":"fullName","checked":true}], + "hin": [{"label":"पूरा नाम", "value":"fullName","checked":true}], + "tam": [{"label":"முழு பெயர்", "value":"fullName","checked":true}], + "kan": [{"label":"ಪೂರ್ಣ ಹೆಸರು", "value":"fullName","checked":true}], + "spa": [{"label":"Nombre completo", "value":"fullName","checked":true}] }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -24,17 +40,33 @@ "attributeName": "dateOfBirth", "maskRequired": false, "formatRequired": true, + "defaultFormat":"DD/MMM/YYYY", "label": { - "eng": "DOB" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Date of birth", + "ara": "تاريخ الميلاد", + "fra": "date de naissance", + "hin": "जन्म की तारीख", + "tam": "பிறந்த தேதி", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "spa": "fecha de nacimiento" }, "formatOptionLabel":{ - "eng": "Date Format" + "eng": "Date Format", + "ara": "صيغة التاريخ", + "fra":"Format de date", + "hin":"तारिख का प्रारूप", + "tam":"தேதி வடிவம்", + "kan":"ದಿನಾಂಕ ಸ್ವರೂಪ", + "spa":"Formato de fecha" }, "formatOption":{ - "eng": [{"label":"DD/MM", "value":"DD/MM"}, {"label":"DD/MM/YYYY", "value":"DD/MM/YYYY"}] + "eng": [{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "ara": [{"label":"اليوم / الشهر ", "value":"DD/MMM","checked":false}, {"label":"اليوم / الشهر / السنة", "value":"DD/MMM/YYYY","checked":true}], + "fra":[{"label":"JJ/MMM", "value":"DD/MMM","checked":false}, {"label":"JJ/MMM/AAAA", "value":"DD/MMM/YYYY","checked":true}], + "hin":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "tam":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "kan":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "spa":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}] }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -46,10 +78,22 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "UIN" + "eng": "UIN", + "ara": "UIN", + "fra":"UIN", + "hin":"UIN", + "tam":"UIN", + "kan":"UIN", + "spa":"UIN" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask UIN", + "ara": "قناع UIN", + "fra":"Masque UIN", + "hin":"मास्क UIN", + "tam":"UIN-ஐ மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ UIN", + "spa":"Máscara UIN" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":false, @@ -61,10 +105,22 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "Perpetual VID" + "eng": "Perpetual VID", + "ara": "دائم VID", + "fra":"VID perpétuel", + "hin":"सतत VID", + "tam":"நிரந்தர VID", + "kan":"ಶಾಶ್ವತ VID", + "spa":"VID perpetuo" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask Perpetual VID", + "ara": "قناع VID الدائم", + "fra":"Masque perpétuel VID", + "hin":"मास्क सदा VID", + "tam":"நிரந்தர VID-ஐ மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ ಶಾಶ್ವತ VID", + "spa":"Máscara Perpetuo VID" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":false, @@ -76,10 +132,22 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "Phone Number" + "eng": "Phone Number", + "ara": "رقم التليفون", + "fra":"Numéro de téléphone", + "hin":"फ़ोन नंबर", + "tam":"தொலைபேசி எண்", + "kan":"ದೂರವಾಣಿ ಸಂಖ್ಯೆ", + "spa":"Número de teléfono" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask Phone Number", + "ara": "رقم هاتف القناع", + "fra":"Masquer le numéro de téléphone", + "hin":"मास्क फ़ोन नंबर", + "tam":"தொலைபேசி எண்ணை மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ ಫೋನ್ ಸಂಖ್ಯೆ", + "spa":"Máscara Número de teléfono" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -91,114 +159,106 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "Email ID" + "eng": "Email ID", + "ara": "عنوان الايميل", + "fra":"Identifiant de messagerie", + "hin":"ईमेल ID", + "tam":"மின்னஞ்சல் ID", + "kan":"ಇಮೇಲ್ ID", + "spa":"Identificación de correo" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask Email ID", + "ara": "قناع البريد الإلكتروني ID", + "fra":"Masquer ID de messagerie", + "hin":"मास्क ईमेल", + "tam":"மின்னஞ்சல் ID-ஐ மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ ಇಮೇಲ್ ID", + "spa":"Enmascarar ID de correo electrónico" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, "checked":false }, { - "attributeName": "addressLine1", + "attributeName": "fullAddress", "maskRequired": false, "formatRequired": true, + "defaultFormat":"addressLine1,addressLine2,addressLine3,region,province,city,zone,postalCode", "label": { - "eng": "Address" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Address", + "ara": "عنوان", + "fra":"Adresse", + "hin":"पता", + "tam":"முகவரி", + "kan":"ವಿಳಾಸ", + "spa":"DIRECCIÓN" }, "formatOptionLabel":{ - "eng": "Address Format" + "eng": "Address Format", + "ara": "تنسيق العنوان", + "fra":"Format d'adresse", + "hin":"पता प्रारूप", + "tam":"முகவரி வடிவம்", + "kan":"ವಿಳಾಸ ಸ್ವರೂಪ", + "spa":"Formato de dirección" }, "formatOption":{ - "eng": [{"label":"Region", "value":"region"}, {"label":"Province", "value":"province"}, {"label":"City", "value":"city"}, {"label":"Full Address", "value":"fullAddress"}] - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "addressLine2", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Address Line2" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "addressLine3", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Address Line3" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "city", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "City" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "region", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Region" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "province", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Province" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "postalCode", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Postal Code" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": [{"label":"Address line1", "value":"addressLine1","checked":true}, + {"label":"Address line2", "value":"addressLine2","checked":true}, + {"label":"Address line3", "value":"addressLine3","checked":true}, + {"label":"Region", "value":"region","checked":true}, + {"label":"Province", "value":"province","checked":true}, + {"label":"City", "value":"city","checked":true}, + {"label":"Zone", "value":"zone","checked":true}, + {"label":"Postal code", "value":"postalCode","checked":true}, + {"label":"Full Address", "value":"fullAddress","checked":true}], + "ara": [{"label":"العنوان سطر 1", "value":"addressLine1","checked":true},{"label":"سطر العنوان 2", "value":"addressLine2","checked":true},{"label":"سطر العنوان 3", "value":"addressLine3","checked":true}, {"label":"منطقة", "value":"region","checked":true}, {"label":"مقاطعة", "value":"province","checked":true}, {"label":"مدينة", "value":"city","checked":true}, {"label":"منطقة", "value":"zone","checked":true},{"label":"رمز بريدي", "value":"postalCode","checked":true}, {"label":"العنوان الكامل", "value":"fullAddress","checked":true}], + "fra":[{"label":"Adresse 1", "value":"addressLine1","checked":true}, + {"label":"Adresse Ligne 2", "value":"addressLine2","checked":true}, + {"label":"Ligne d'adresse3", "value":"addressLine3","checked":true}, + {"label":"Région", "value":"region","checked":true}, + {"label":"Province", "value":"province","checked":true}, + {"label":"Ville", "value":"city","checked":true}, + {"label":"Zone", "value":"zone","checked":true}, + {"label":"Code Postal", "value":"postalCode","checked":true}, + {"label":"Adresse complète", "value":"fullAddress","checked":true}], + "hin":[{"label":"पता पंक्ति 1", "value":"addressLine1","checked":true}, + {"label":"पता पंक्ति नं। 2", "value":"addressLine2","checked":true}, + {"label":"पता पंक्ति3", "value":"addressLine3","checked":true}, + {"label":"क्षेत्र", "value":"region","checked":true}, + {"label":"प्रांत", "value":"province","checked":true}, + {"label":"शहर", "value":"city","checked":true}, + {"label":"क्षेत्र", "value":"zone","checked":true}, + {"label":"डाक कोड", "value":"postalCode","checked":true}, + {"label":"पूरा पता", "value":"fullAddress","checked":true}], + "tam":[{"label":"முகவரி வரி 1", "value":"addressLine1","checked":true}, + {"label":"முகவரி வரி 2", "value":"addressLine2","checked":true}, + {"label":"முகவரி வரி 3", "value":"addressLine3","checked":true}, + {"label":"பிராந்தியம்", "value":"region","checked":true}, + {"label":"மாகாணம்", "value":"province","checked":true}, + {"label":"நகரம்", "value":"city","checked":true}, + {"label":"மண்டலம்", "value":"zone","checked":true}, + {"label":"அஞ்சல் குறியீடு", "value":"postalCode","checked":true}, + {"label":"முழு முகவரி", "value":"fullAddress","checked":true}], + "kan":[{"label":"ವಿಳಾಸ ಸಾಲು 1", "value":"addressLine1","checked":true}, + {"label":"ವಿಳಾಸ ಸಾಲು 2", "value":"addressLine2","checked":true}, + {"label":"ವಿಳಾಸ ಸಾಲು 3", "value":"addressLine3","checked":true}, + {"label":"ಪ್ರದೇಶ", "value":"region","checked":true}, + {"label":"ಪ್ರಾಂತ್ಯ", "value":"province","checked":true}, + {"label":"ನಗರ", "value":"city","checked":true}, + {"label":"ವಲಯ", "value":"zone","checked":true}, + {"label":"ಅಂಚೆ ಕೋಡ್", "value":"postalCode","checked":true}, + {"label":"ಪೂರ್ತಿ ವಿಳಾಸ", "value":"fullAddress","checked":true}], + "spa":[{"label":"Dirección Línea 1", "value":"addressLine1","checked":true}, + {"label":"Línea de dirección2", "value":"addressLine2","checked":true}, + {"label":"Línea de dirección3", "value":"addressLine3","checked":true}, + {"label":"Región", "value":"region","checked":true}, + {"label":"Provincia", "value":"province","checked":true}, + {"label":"Ciudad", "value":"city","checked":true}, + {"label":"Zona", "value":"zone","checked":true}, + {"label":"Código Postal", "value":"postalCode","checked":true}, + {"label":"Dirección completa", "value":"fullAddress","checked":true}] }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -209,10 +269,13 @@ "maskRequired": false, "formatRequired": false, "label": { - "eng": "Gender" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Gender", + "ara": "جنس", + "fra":"Genre", + "hin":"लिंग", + "tam":"பாலினம்", + "kan":"ಲಿಂಗ", + "spa":"Género" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -223,14 +286,17 @@ "maskRequired": false, "formatRequired": false, "label": { - "eng": "Image" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Image", + "ara": "صورة", + "fra":"Image", + "hin":"छवि", + "tam":"படம்", + "kan":"ಚಿತ್ರ", + "spa":"Imagen" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, "checked":false } ] -} +} \ No newline at end of file diff --git a/resident-ui-share-credential-schema.json b/resident-ui-share-credential-schema.json index 375ebabf0d8..268d47ee673 100644 --- a/resident-ui-share-credential-schema.json +++ b/resident-ui-share-credential-schema.json @@ -1,20 +1,36 @@ { "identity": [ { - "attributeName": "fullName", - "maskRequired": false, + "attributeName": "name", + "maskRequired": false, "formatRequired": true, + "defaultFormat":"fullName", "label": { - "eng": "Name" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Name", + "ara": "اسم", + "fra":"Nom", + "hin":"नाम", + "tam":"பெயர்", + "kan":"ಹೆಸರು", + "spa":"Nombre" }, "formatOptionLabel":{ - "eng": "Name Format" + "eng": "Name Format", + "ara": "تنسيق الاسم", + "fra":"Format du nom", + "hin":"नाम प्रारूप", + "tam":"பெயர் வடிவம்", + "kan":"ಹೆಸರು ಸ್ವರೂಪ", + "spa":"Formato de nombre" }, "formatOption":{ - "eng": [{"label":"First Name", "value":"firstName"}, {"label":"Middle Name", "value":"middleName"}, {"label":"Last Name", "value":"lastName"}, {"label":"Full Name", "value":"fullName"}] + "eng": [{"label":"Full Name", "value":"fullName","checked":true}], + "ara": [{"label":"الاسم الكامل", "value":"fullName","checked":true}], + "fra": [{"label":"nom et prénom", "value":"fullName","checked":true}], + "hin": [{"label":"पूरा नाम", "value":"fullName","checked":true}], + "tam": [{"label":"முழு பெயர்", "value":"fullName","checked":true}], + "kan": [{"label":"ಪೂರ್ಣ ಹೆಸರು", "value":"fullName","checked":true}], + "spa": [{"label":"Nombre completo", "value":"fullName","checked":true}] }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -24,17 +40,33 @@ "attributeName": "dateOfBirth", "maskRequired": false, "formatRequired": true, + "defaultFormat":"DD/MMM/YYYY", "label": { - "eng": "DOB" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Date of birth", + "ara": "تاريخ الميلاد", + "fra": "date de naissance", + "hin": "जन्म की तारीख", + "tam": "பிறந்த தேதி", + "kan": "ಹುಟ್ತಿದ ದಿನ", + "spa": "fecha de nacimiento" }, "formatOptionLabel":{ - "eng": "Date Format" + "eng": "Date Format", + "ara": "صيغة التاريخ", + "fra":"Format de date", + "hin":"तारिख का प्रारूप", + "tam":"தேதி வடிவம்", + "kan":"ದಿನಾಂಕ ಸ್ವರೂಪ", + "spa":"Formato de fecha" }, "formatOption":{ - "eng": [{"label":"DD/MM", "value":"DD/MM"}, {"label":"DD/MM/YYYY", "value":"DD/MM/YYYY"}] + "eng": [{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "ara": [{"label":"اليوم / الشهر ", "value":"DD/MMM","checked":false}, {"label":"اليوم / الشهر / السنة", "value":"DD/MMM/YYYY","checked":true}], + "fra":[{"label":"JJ/MMM", "value":"DD/MMM","checked":false}, {"label":"JJ/MMM/AAAA", "value":"DD/MMM/YYYY","checked":true}], + "hin":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "tam":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "kan":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}], + "spa":[{"label":"DD/MMM", "value":"DD/MMM","checked":false}, {"label":"DD/MMM/YYYY", "value":"DD/MMM/YYYY","checked":true}] }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -46,10 +78,22 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "UIN" + "eng": "UIN", + "ara": "UIN", + "fra":"UIN", + "hin":"UIN", + "tam":"UIN", + "kan":"UIN", + "spa":"UIN" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask UIN", + "ara": "قناع UIN", + "fra":"Masque UIN", + "hin":"मास्क UIN", + "tam":"UIN-ஐ மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ UIN", + "spa":"Máscara UIN" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":false, @@ -61,10 +105,22 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "Perpetual VID" + "eng": "Perpetual VID", + "ara": "دائم VID", + "fra":"VID perpétuel", + "hin":"सतत VID", + "tam":"நிரந்தர VID", + "kan":"ಶಾಶ್ವತ VID", + "spa":"VID perpetuo" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask Perpetual VID", + "ara": "قناع VID الدائم", + "fra":"Masque perpétuel VID", + "hin":"मास्क सदा VID", + "tam":"நிரந்தர VID-ஐ மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ ಶಾಶ್ವತ VID", + "spa":"Máscara Perpetuo VID" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":false, @@ -76,10 +132,22 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "Phone Number" + "eng": "Phone Number", + "ara": "رقم التليفون", + "fra":"Numéro de téléphone", + "hin":"फ़ोन नंबर", + "tam":"தொலைபேசி எண்", + "kan":"ದೂರವಾಣಿ ಸಂಖ್ಯೆ", + "spa":"Número de teléfono" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask Phone Number", + "ara": "رقم هاتف القناع", + "fra":"Masquer le numéro de téléphone", + "hin":"मास्क फ़ोन नंबर", + "tam":"தொலைபேசி எண்ணை மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ ಫೋನ್ ಸಂಖ್ಯೆ", + "spa":"Máscara Número de teléfono" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -91,114 +159,106 @@ "maskRequired": true, "formatRequired": false, "label": { - "eng": "Email ID" + "eng": "Email ID", + "ara": "عنوان الايميل", + "fra":"Identifiant de messagerie", + "hin":"ईमेल ID", + "tam":"மின்னஞ்சல் ID", + "kan":"ಇಮೇಲ್ ID", + "spa":"Identificación de correo" }, "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Mask Email ID", + "ara": "قناع البريد الإلكتروني ID", + "fra":"Masquer ID de messagerie", + "hin":"मास्क ईमेल", + "tam":"மின்னஞ்சல் ID-ஐ மறைக்கவும்", + "kan":"ಮಾಸ್ಕ್ ಇಮೇಲ್ ID", + "spa":"Enmascarar ID de correo electrónico" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, "checked":false }, { - "attributeName": "addressLine1", + "attributeName": "fullAddress", "maskRequired": false, "formatRequired": true, + "defaultFormat":"addressLine1,addressLine2,addressLine3,region,province,city,zone,postalCode", "label": { - "eng": "Address" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Address", + "ara": "عنوان", + "fra":"Adresse", + "hin":"पता", + "tam":"முகவரி", + "kan":"ವಿಳಾಸ", + "spa":"DIRECCIÓN" }, "formatOptionLabel":{ - "eng": "Address Format" + "eng": "Address Format", + "ara": "تنسيق العنوان", + "fra":"Format d'adresse", + "hin":"पता प्रारूप", + "tam":"முகவரி வடிவம்", + "kan":"ವಿಳಾಸ ಸ್ವರೂಪ", + "spa":"Formato de dirección" }, "formatOption":{ - "eng": [{"label":"Region", "value":"region"}, {"label":"Province", "value":"province"}, {"label":"City", "value":"city"}, {"label":"Full Address", "value":"fullAddress"}] - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "addressLine2", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Address Line2" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "addressLine3", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Address Line3" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "city", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "City" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "region", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Region" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "province", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Province" - }, - "maskRequiredLabel": { - "eng": "Mask It" - }, - "displaykeyinsharewithpartner":true, - "displaykeyinpersonalisedcard":true, - "checked":false - }, - { - "attributeName": "postalCode", - "maskRequired": false, - "formatRequired": false, - "label": { - "eng": "Postal Code" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": [{"label":"Address line1", "value":"addressLine1","checked":true}, + {"label":"Address line2", "value":"addressLine2","checked":true}, + {"label":"Address line3", "value":"addressLine3","checked":true}, + {"label":"Region", "value":"region","checked":true}, + {"label":"Province", "value":"province","checked":true}, + {"label":"City", "value":"city","checked":true}, + {"label":"Zone", "value":"zone","checked":true}, + {"label":"Postal code", "value":"postalCode","checked":true}, + {"label":"Full Address", "value":"fullAddress","checked":true}], + "ara": [{"label":"العنوان سطر 1", "value":"addressLine1","checked":true},{"label":"سطر العنوان 2", "value":"addressLine2","checked":true},{"label":"سطر العنوان 3", "value":"addressLine3","checked":true}, {"label":"منطقة", "value":"region","checked":true}, {"label":"مقاطعة", "value":"province","checked":true}, {"label":"مدينة", "value":"city","checked":true}, {"label":"منطقة", "value":"zone","checked":true},{"label":"رمز بريدي", "value":"postalCode","checked":true}, {"label":"العنوان الكامل", "value":"fullAddress","checked":true}], + "fra":[{"label":"Adresse 1", "value":"addressLine1","checked":true}, + {"label":"Adresse Ligne 2", "value":"addressLine2","checked":true}, + {"label":"Ligne d'adresse3", "value":"addressLine3","checked":true}, + {"label":"Région", "value":"region","checked":true}, + {"label":"Province", "value":"province","checked":true}, + {"label":"Ville", "value":"city","checked":true}, + {"label":"Zone", "value":"zone","checked":true}, + {"label":"Code Postal", "value":"postalCode","checked":true}, + {"label":"Adresse complète", "value":"fullAddress","checked":true}], + "hin":[{"label":"पता पंक्ति 1", "value":"addressLine1","checked":true}, + {"label":"पता पंक्ति नं। 2", "value":"addressLine2","checked":true}, + {"label":"पता पंक्ति3", "value":"addressLine3","checked":true}, + {"label":"क्षेत्र", "value":"region","checked":true}, + {"label":"प्रांत", "value":"province","checked":true}, + {"label":"शहर", "value":"city","checked":true}, + {"label":"क्षेत्र", "value":"zone","checked":true}, + {"label":"डाक कोड", "value":"postalCode","checked":true}, + {"label":"पूरा पता", "value":"fullAddress","checked":true}], + "tam":[{"label":"முகவரி வரி 1", "value":"addressLine1","checked":true}, + {"label":"முகவரி வரி 2", "value":"addressLine2","checked":true}, + {"label":"முகவரி வரி 3", "value":"addressLine3","checked":true}, + {"label":"பிராந்தியம்", "value":"region","checked":true}, + {"label":"மாகாணம்", "value":"province","checked":true}, + {"label":"நகரம்", "value":"city","checked":true}, + {"label":"மண்டலம்", "value":"zone","checked":true}, + {"label":"அஞ்சல் குறியீடு", "value":"postalCode","checked":true}, + {"label":"முழு முகவரி", "value":"fullAddress","checked":true}], + "kan":[{"label":"ವಿಳಾಸ ಸಾಲು 1", "value":"addressLine1","checked":true}, + {"label":"ವಿಳಾಸ ಸಾಲು 2", "value":"addressLine2","checked":true}, + {"label":"ವಿಳಾಸ ಸಾಲು 3", "value":"addressLine3","checked":true}, + {"label":"ಪ್ರದೇಶ", "value":"region","checked":true}, + {"label":"ಪ್ರಾಂತ್ಯ", "value":"province","checked":true}, + {"label":"ನಗರ", "value":"city","checked":true}, + {"label":"ವಲಯ", "value":"zone","checked":true}, + {"label":"ಅಂಚೆ ಕೋಡ್", "value":"postalCode","checked":true}, + {"label":"ಪೂರ್ತಿ ವಿಳಾಸ", "value":"fullAddress","checked":true}], + "spa":[{"label":"Dirección Línea 1", "value":"addressLine1","checked":true}, + {"label":"Línea de dirección2", "value":"addressLine2","checked":true}, + {"label":"Línea de dirección3", "value":"addressLine3","checked":true}, + {"label":"Región", "value":"region","checked":true}, + {"label":"Provincia", "value":"province","checked":true}, + {"label":"Ciudad", "value":"city","checked":true}, + {"label":"Zona", "value":"zone","checked":true}, + {"label":"Código Postal", "value":"postalCode","checked":true}, + {"label":"Dirección completa", "value":"fullAddress","checked":true}] }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -209,10 +269,13 @@ "maskRequired": false, "formatRequired": false, "label": { - "eng": "Gender" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Gender", + "ara": "جنس", + "fra":"Genre", + "hin":"लिंग", + "tam":"பாலினம்", + "kan":"ಲಿಂಗ", + "spa":"Género" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, @@ -223,14 +286,17 @@ "maskRequired": false, "formatRequired": false, "label": { - "eng": "Image" - }, - "maskRequiredLabel": { - "eng": "Mask It" + "eng": "Image", + "ara": "صورة", + "fra":"Image", + "hin":"छवि", + "tam":"படம்", + "kan":"ಚಿತ್ರ", + "spa":"Imagen" }, "displaykeyinsharewithpartner":true, "displaykeyinpersonalisedcard":true, "checked":false } ] -} +} \ No newline at end of file diff --git a/resident-ui-update-demographics-schema.json b/resident-ui-update-demographics-schema.json index 7bb6ee0d40b..9550dbced10 100644 --- a/resident-ui-update-demographics-schema.json +++ b/resident-ui-update-demographics-schema.json @@ -2,6 +2,24 @@ "identity": [ { "attributeName": "fullName", + "label": { + "eng": "Name", + "ara": "اسم", + "fra": "Nom", + "hin": "नाम", + "tam": "பெயர்", + "kan": "ಹೆಸರು", + "spa": "Nombre" + }, + "placeHolder": { + "eng": "Enter new name", + "ara": "أدخل الاسم الجديد", + "fra": "Entrez un nouveau nom", + "hin": "नया नाम दर्ज करें", + "tam": "புதிய பெயரை உள்ளிடவும்", + "kan": "ಹೊಸ ಹೆಸರನ್ನು ನಮೂದಿಸಿ", + "spa": "Introduce un nuevo nombre" + }, "description": "", "labelName": { "eng": [ @@ -9,39 +27,109 @@ "New Name" ], "ara": [ - "Current Name_ara", - "New Name_ara" + "الاسم الحالي", + "اسم جديد" ], "fra": [ - "Current Name_fra", - "New Name_fra" + "Nom actuel", + "Nouveau nom" + ], + "hin": [ + "वर्तमान नाम", + "नया नाम" + ], + "tam": [ + "தற்போதைய பெயர்", + "புதிய பெயர்" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಹೆಸರು", + "ಹೊಸ ಹೆಸರು" + ], + "spa": [ + "Nombre actual", + "Nuevo nombre" ] }, "controlType": "textbox", - "tabgroup": "identity" + "tabgroup": "identity", + "dataType": "notString" }, { "attributeName": "dateOfBirth", + "label": { + "eng": "DOB", + "ara": "DOB", + "fra": "DOB", + "hin": "DOB", + "tam": "DOB", + "kan": "DOB", + "spa": "DOB" + }, + "placeHolder": { + "eng": "DOB", + "ara": "DOB", + "fra": "DOB", + "hin": "DOB", + "tam": "DOB", + "kan": "DOB", + "spa": "DOB" + }, "description": "", "labelName": { "eng": [ - "Current DOB", - "New DOB" + "Current Date of birth", + "New Date of birth" ], "ara": [ - "Current DOB_ara", - "New DOB_ara" + "تاريخ الميلاد الحالي", + "تاريخ الميلاد الجديد" ], "fra": [ - "Current DOB_fra", - "New DOB_fra" + "Date de naissance actuelle", + "Nouvelle date de naissance" + ], + "hin": [ + "वर्तमान जन्मतिथि", + "नई जन्मतिथि" + ], + "tam": [ + "தற்போதைய பிறந்த தேதி", + "புதிய பிறந்த தேதி" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಜನ್ಮ ದಿನಾಂಕ", + "ಹೊಸ ಜನ್ಮ ದಿನಾಂಕ" + ], + "spa": [ + "Fecha de nacimiento actual", + "nuevo nacimiento" ] }, "controlType": "calendar", - "tabgroup": "identity" + "tabgroup": "identity", + "dataType": "string" }, { "attributeName": "gender", + "label": { + "eng": "Gender", + "ara": "جنس", + "fra": "Genre", + "hin": "लिंग", + "tam": "பாலினம்", + "kan": "ಲಿಂಗ", + "spa": "Género" + }, + "placeHolder": { + "eng": "Enter gender", + "ara": "أدخل الجنس", + "fra": "Entrez le sexe", + "hin": "लिंग दर्ज करें", + "tam": "பாலினத்தை உள்ளிடவும்", + "kan": "ಲಿಂಗವನ್ನು ನಮೂದಿಸಿ", + "spa": "Introduce el género" + }, "description": "", "labelName": { "eng": [ @@ -49,19 +137,54 @@ "New Gender" ], "ara": [ - "Current Gender_ara", - "New Gender_ara" + "الجنس الحالي", + "جنس جديد" ], "fra": [ - "Current Gender_fra", - "New Gender_fra" + "Sexe actuel", + "Nouveau genre" + ], + "hin": [ + "वर्तमान लिंग", + "नया लिंग" + ], + "tam": [ + "தற்போதைய பாலினம்", + "புதிய பாலினம்" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಲಿಂಗ", + "ಹೊಸ ಲಿಂಗ" + ], + "spa": [ + "Género actual", + "Nuevo género" ] }, "controlType": "dropdown", - "tabgroup": "identity" + "tabgroup": "identity", + "dataType": "notString" }, { "attributeName": "proofOfIdentity", + "label": { + "eng": "Proof Of Identity", + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "hin": "सबूत की पहचान", + "tam": "அடையாள சான்று", + "kan": "ಗುರುತಿನ ಆಧಾರ", + "spa": "Prueba de identidad" + }, + "placeHolder": { + "eng": "Proof Of Identity", + "ara": "إثبات الهوية", + "fra": "Preuve d'identité", + "hin": "सबूत की पहचान", + "tam": "அடையாள சான்று", + "kan": "ಗುರುತಿನ ಆಧಾರ", + "spa": "Prueba de identidad" + }, "description": "", "labelName": { "eng": [ @@ -69,28 +192,82 @@ "Document Type", "Document Reference ID", "Proof Of Document", - "Allowed file type : pdf,jpeg,png,jpg and allowed file size : 2mb" + "Allowed File types: pdf, jpeg, png, jpg", + "Allowed File size: 2 MB" ], "ara": [ - "Identity Proof_ara", - "Document Type_ara", - "Document Reference ID_ara", - "Proof Of Document_ara", - "Allowed file type_ara : pdf,jpeg,png,jpg and allowed file size : 2mb" + "إثبات الهوية", + "نوع الوثيقة", + "معرّف مرجع المستند", + "إثبات المستند", + "أنواع الملفات المسموح بها: pdf، jpeg، png، jpg", + "حجم الملف المسموح به: MB 2" ], "fra": [ - "Identity Proof_fra", - "Document Type_fra", - "Document Reference ID_fra", - "Proof Of Document_fra", - "Allowed file type_fra : pdf,jpeg,png,jpg and allowed file size : 2mb" + "Preuve d'identité", + "Type de document", + "Identifiant de référence du document", + "Preuve de document", + "Types de fichiers autorisés : pdf, jpeg, png, jpg", + "Taille de fichier autorisée : 2 MB" + ], + "hin": [ + "पहचान प्रमाण पत्र", + "दस्तावेज़ का प्रकार", + "दस्तावेज़ संदर्भ ID", + "दस्तावेज़ का प्रमाण", + "अनुमत फ़ाइल प्रकार: pdf, jpeg, png, jpg", + "अनुमत फ़ाइल आकार: 2 MB" + ], + "tam": [ + "அடையாளச் சான்று", + "ஆவண வகை", + "ஆவண குறிப்பு ID", + "ஆவண ஆதாரம்", + "அனுமதிக்கப்பட்ட கோப்பு வகைகள்: pdf, jpeg, png, jpg", + "அனுமதிக்கப்பட்ட கோப்பு அளவு: 2 MB" + ], + "kan": [ + "ಗುರುತಿನ ಪುರಾವೆ", + "ಡಾಕ್ಯುಮೆಂಟ್ ಪ್ರಕಾರ", + "ಡಾಕ್ಯುಮೆಂಟ್ ರೆಫರೆನ್ಸ್ ID", + "ಡಾಕ್ಯುಮೆಂಟ್ ಪುರಾವೆ", + "ಅನುಮತಿಸಲಾದ ಫೈಲ್ ಪ್ರಕಾರಗಳು: pdf, jpeg, png, jpg", + "ಅನುಮತಿಸಲಾದ ಫೈಲ್ ಗಾತ್ರ: 2 MB" + ], + "spa": [ + "Prueba de identidad", + "Tipo de Documento", + "ID de referencia del documento", + "Prueba de Documento", + "Tipos de archivos permitidos: pdf, jpeg, png, jpg", + "Tamaño de archivo permitido: 2 MB" ] }, "controlType": "fileupload", - "tabgroup": "identity" + "tabgroup": "identity", + "dataType": "notString" }, { "attributeName": "addressLine1", + "label": { + "eng": "Address line1", + "ara": "العنوان سطر 1", + "fra": "Adresse 1", + "hin": "पता पंक्ति 1", + "tam": "முகவரி வரி 1", + "kan": "ವಿಳಾಸ ಸಾಲು 1", + "spa": "Dirección Línea 1" + }, + "placeHolder": { + "eng": "Enter Address line1", + "ara": "أدخل سطر العنوان1", + "fra": "Entrez l'adresse ligne1", + "hin": "पता पंक्ति 1 दर्ज करें", + "tam": "முகவரி வரி 1 ஐ உள்ளிடவும்", + "kan": "ವಿಳಾಸ ಸಾಲು 1 ಅನ್ನು ನಮೂದಿಸಿ", + "spa": "Introducir dirección línea 1" + }, "description": "", "labelName": { "eng": [ @@ -98,19 +275,164 @@ "New Address Line1" ], "ara": [ - "Current Address Line1_ara", - "New Address Line1_ara" + "سطر العنوان الحالي 1", + "سطر العنوان الجديد 1" + ], + "fra": [ + "Ligne d'adresse actuelle1", + "Nouvelle ligne d'adresse1" + ], + "hin": [ + "वर्तमान पता पंक्ति1", + "नया पता पंक्ति1" + ], + "tam": [ + "தற்போதைய முகவரி வரி 1", + "புதிய முகவரி வரி 1" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ವಿಳಾಸ ಸಾಲು 1", + "ಹೊಸ ವಿಳಾಸ ಸಾಲು 1" + ], + "spa": [ + "Línea 1 de dirección actual", + "Nueva línea de dirección 1" + ] + }, + "controlType": "textbox", + "tabgroup": "address", + "dataType": "notString" + }, + { + "attributeName": "addressLine2", + "label": { + "eng": "Address line2", + "ara": "سطر العنوان 2", + "fra": "Adresse 2", + "hin": "पता पंक्ति 2", + "tam": "முகவரி வரி 2", + "kan": "ವಿಳಾಸ ಸಾಲು 2", + "spa": "Dirección Línea 2" + }, + "placeHolder": { + "eng": "Enter Address line2", + "ara": "أدخل سطر العنوان2", + "fra": "Entrez l'adresse ligne2", + "hin": "पता पंक्ति 2 दर्ज करें", + "tam": "முகவரி வரி 2 ஐ உள்ளிடவும்", + "kan": "ವಿಳಾಸ ಸಾಲು 2 ಅನ್ನು ನಮೂದಿಸಿ", + "spa": "Introducir dirección línea 2" + }, + "description": "", + "labelName": { + "eng": [ + "Current Address Line2", + "New Address Line2" + ], + "ara": [ + "سطر العنوان الحالي2", + "سطر العنوان الجديد2" + ], + "fra": [ + "Ligne d'adresse actuelle2", + "Nouvelle ligne d'adresse2" + ], + "hin": [ + "वर्तमान पता पंक्ति2", + "नया पता पंक्ति2" + ], + "tam": [ + "தற்போதைய முகவரி வரி 2", + "புதிய முகவரி வரி 2" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ವಿಳಾಸ ಸಾಲು 2", + "ಹೊಸ ವಿಳಾಸ ಸಾಲು 2" + ], + "spa": [ + "Línea 2 de dirección actual", + "Nueva línea de dirección 2" + ] + }, + "controlType": "textbox", + "tabgroup": "address", + "dataType": "notString" + }, + { + "attributeName": "addressLine3", + "label": { + "eng": "Address line3", + "ara": "سطر العنوان3", + "fra": "Adresse 3", + "hin": "पता पंक्ति 3", + "tam": "முகவரி வரி 3", + "kan": "ವಿಳಾಸ ಸಾಲು 3", + "spa": "Dirección Línea 3" + }, + "placeHolder": { + "eng": "Enter Address line3", + "ara": "أدخل سطر العنوان3", + "fra": "Entrez l'adresse ligne3", + "hin": "पता पंक्ति 3 दर्ज करें", + "tam": "முகவரி வரி 3 ஐ உள்ளிடவும்", + "kan": "ವಿಳಾಸ ಸಾಲು 3 ಅನ್ನು ನಮೂದಿಸಿ", + "spa": "Introducir dirección línea 3" + }, + "description": "", + "labelName": { + "eng": [ + "Current Address Line3", + "New Address Line3" + ], + "ara": [ + "سطر العنوان الحالي3", + "سطر العنوان الجديد3" ], "fra": [ - "Current Address Line1_fra", - "New Address Line1_fra" + "Ligne d'adresse actuelle3", + "Nouvelle ligne d'adresse3" + ], + "hin": [ + "वर्तमान पता पंक्ति3", + "नया पता पंक्ति3" + ], + "tam": [ + "தற்போதைய முகவரி வரி 3", + "புதிய முகவரி வரி 3" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ವಿಳಾಸ ಸಾಲು 3", + "ಹೊಸ ವಿಳಾಸ ಸಾಲು 3" + ], + "spa": [ + "Línea 3 de dirección actual", + "Nueva línea de dirección 3" ] }, "controlType": "textbox", - "tabgroup": "address" + "tabgroup": "address", + "dataType": "notString" }, { "attributeName": "region", + "label": { + "eng": "Region", + "ara": "منطقة", + "fra": "Région", + "hin": "क्षेत्र", + "tam": "பிராந்தியம்", + "kan": "ಪ್ರದೇಶ", + "spa": "Región" + }, + "placeHolder": { + "eng": "Select Region", + "ara": "اختر المنطقة", + "fra": "Choisissez une région", + "hin": "प्रदेश का चयन करें", + "tam": "பகுதியை உள்ளிடவும்", + "kan": "ಪ್ರದೇಶವನ್ನು ಆಯ್ಕೆಮಾಡಿ", + "spa": "Seleccione la región" + }, "name": "Region", "description": "", "labelName": { @@ -119,20 +441,55 @@ "New Region" ], "ara": [ - "Current Region_ara", - "New Region_ara" + "المنطقة الحالية", + "منطقة جديدة" ], "fra": [ - "Current Region_fra", - "New Region_fra" + "Région actuelle", + "Nouvelle région" + ], + "hin": [ + "वर्तमान प्रदेश", + "नया प्रदेश" + ], + "tam": [ + "தற்போதைய பிராந்தியம்", + "புதிய பிராந்தியம்" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಪ್ರದೇಶ", + "ಹೊಸ ಪ್ರದೇಶ" + ], + "spa": [ + "Región Actual", + "Nueva Región" ] }, "controlType": "dropdown", "tabgroup": "address", - "locationHierarchyLevel": 1 + "locationHierarchyLevel": 1, + "dataType": "notString" }, { "attributeName": "province", + "label": { + "eng": "Province", + "ara": "مقاطعة", + "fra": "Province", + "hin": "प्रांत", + "tam": "மாகாணம்", + "kan": "ಪ್ರಾಂತ್ಯ", + "spa": "Provincia" + }, + "placeHolder": { + "eng": "Select Province", + "ara": "اختر المقاطعة", + "fra": "Sélectionnez une province", + "hin": "प्रांत चुनें", + "tam": "ஒரு மாகாணத்தைத் தேர்ந்தெடுக்கவும்", + "kan": "ಒಂದು ಪ್ರಾಂತ್ಯವನ್ನು ಆಯ್ಕೆಮಾಡಿ", + "spa": "Seleccione una provincia" + }, "name": "Province", "description": "", "labelName": { @@ -141,20 +498,55 @@ "New Province" ], "ara": [ - "Current Province_ara", - "New Province_ara" + "المقاطعة الحالية", + "مقاطعة جديدة" ], "fra": [ - "Current Province_fra", - "New Province_fra" + "Province actuelle", + "Nouvelle Province" + ], + "hin": [ + "वर्तमान प्रांत", + "नया प्रांत" + ], + "tam": [ + "தற்போதைய மாகாணம்", + "புதிய மாகாணம்" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಪ್ರಾಂತ್ಯ", + "ಹೊಸ ಪ್ರಾಂತ್ಯ" + ], + "spa": [ + "Provincia Actual", + "Nueva Provincia" ] }, "controlType": "dropdown", "tabgroup": "address", - "locationHierarchyLevel": 2 + "locationHierarchyLevel": 2, + "dataType": "notString" }, { "attributeName": "city", + "label": { + "eng": "City", + "ara": "مدينة", + "fra": "Ville", + "hin": "शहर", + "tam": "நகரம்", + "kan": "ನಗರ", + "spa": "Ciudad" + }, + "placeHolder": { + "eng": "Select City", + "ara": "اختر مدينة", + "fra": "Sélectionnez une ville", + "hin": "शहर चुनें", + "tam": "நகரத்தைத் தேர்ந்தெடுக்கவும்", + "kan": "ನಗರವನ್ನು ಆಯ್ಕೆಮಾಡಿ", + "spa": "Ciudad selecta" + }, "name": "City", "description": "", "labelName": { @@ -163,20 +555,55 @@ "New City" ], "ara": [ - "Current City_ara", - "New City_ara" + "المدينة الحالية", + "مدينة جديدة" ], "fra": [ - "Current City_fra", - "New City_fra" + "Ville actuelle", + "Nouvelle ville" + ], + "hin": [ + "वर्तमान शहर", + "नया शहर" + ], + "tam": [ + "தற்போதைய நகரம்", + "புதிய நகரம்" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ನಗರ", + "ಹೊಸ ನಗರ" + ], + "spa": [ + "Ciudad Actual", + "Ciudad Nueva" ] }, "controlType": "dropdown", "tabgroup": "address", - "locationHierarchyLevel": 3 + "locationHierarchyLevel": 3, + "dataType": "notString" }, { "attributeName": "zone", + "label": { + "eng": "Zone", + "ara": "منطقة", + "fra": "Zone", + "hin": "क्षेत्र", + "tam": "மண்டலம்", + "kan": "ವಲಯ", + "spa": "Zona" + }, + "placeHolder": { + "eng": "Select Zone", + "ara": "حدد المنطقة", + "fra": "Sélectionnez une zone", + "hin": "जोन चुनें", + "tam": "மண்டலத்தைத் தேர்ந்தெடுக்கவும்", + "kan": "ವಲಯವನ್ನು ನಮೂದಿಸಿ", + "spa": "Seleccione una zona" + }, "name": "Zone", "description": "", "labelName": { @@ -185,20 +612,55 @@ "New Zone" ], "ara": [ - "Current Zone_ara", - "New Zone_ara" + "المنطقة الحالية", + "منطقة جديدة" ], "fra": [ - "Current Zone_fra", - "New Zone_fra" + "Zone actuelle", + "Nouvelle zone" + ], + "hin": [ + "वर्तमान क्षेत्र", + "नया क्षेत्र" + ], + "tam": [ + "தற்போதைய மண்டலம்", + "புதிய மண்டலம்" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ವಲಯ", + "ಹೊಸ ವಲಯ" + ], + "spa": [ + "Zona Actual", + "Nueva Zona" ] }, "controlType": "dropdown", "tabgroup": "address", - "locationHierarchyLevel": 4 + "locationHierarchyLevel": 4, + "dataType": "string" }, { "attributeName": "postalCode", + "label": { + "eng": "Postal Code", + "ara": "رمز بريدي", + "fra": "Code Postal", + "hin": "डाक कोड", + "tam": "குறியீடு", + "kan": "ಕೋಡ್", + "spa": "Código Postal" + }, + "placeHolder": { + "eng": "Select Postal Code", + "ara": "حدد الرمز البريدي", + "fra": "Sélectionnez le code postal", + "hin": "पोस्टल कोड चुनें", + "tam": "அஞ்சல் குறியீட்டைத் தேர்ந்தெடுக்கவும்", + "kan": "ಪೋಸ್ಟಲ್ ಕೋಡ್ ಆಯ್ಕೆಮಾಡಿ", + "spa": "Seleccione Código Postal" + }, "name": "Postal Code", "description": "", "labelName": { @@ -207,20 +669,55 @@ "New Postal Code" ], "ara": [ - "Current Postal Code_ara", - "New Postal Code_ara" + "الرمز البريدي الحالي", + "رمز بريدي جديد" ], "fra": [ - "Current Postal Code_fra", - "New Postal Code_fra" + "Code postal actuel", + "Nouveau code postal" + ], + "hin": [ + "वर्तमान पोस्टल कोड", + "नया पोस्टल कोड" + ], + "tam": [ + "தற்போதைய அஞ்சல் குறியீடு", + "புதிய அஞ்சல் குறியீடு" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಪೋಸ್ಟಲ್ ಕೋಡ್", + "ಹೊಸ ಪೋಸ್ಟಲ್ ಕೋಡ್" + ], + "spa": [ + "Código Postal Actual", + "Nuevo código postal" ] }, "controlType": "dropdown", "tabgroup": "address", - "locationHierarchyLevel": 5 + "locationHierarchyLevel": 5, + "dataType": "notString" }, { "attributeName": "proofOfAddress", + "label": { + "eng": "Proof Of Address", + "ara": "إثبات العنوان", + "fra": "Un justificatif de domicile", + "hin": "पते का प्रमाण", + "tam": "முகவரி சான்று", + "kan": "ವಿಳಾಸದ ಪುರಾವೆ", + "spa": "Comprobante de domicilio" + }, + "placeHolder": { + "eng": "Proof Of Address", + "ara": "إثبات العنوان", + "fra": "Un justificatif de domicile", + "hin": "पते का प्रमाण", + "tam": "முகவரி சான்று", + "kan": "ವಿಳಾಸದ ಪುರಾವೆ", + "spa": "Comprobante de domicilio" + }, "description": "", "labelName": { "eng": [ @@ -228,28 +725,82 @@ "Document Type", "Document Reference ID", "Proof Of Document", - "Allowed file type : pdf,jpeg,png,jpg and allowed file size : 2mb" + "Allowed File types: pdf, jpeg, png, jpg", + "Allowed File size: 2 MB" ], "ara": [ - "Address Proof_ara", - "Document Type_ara", - "Document Reference ID_ara", - "Proof Of Document_ara", - "Allowed file type_ara : pdf,jpeg,png,jpg and allowed file size : 2mb" + "إثبات العنوان", + "نوع المستند", + "معرف مرجع المستند", + "إثبات المستند", + "أنواع الملفات المسموح بها: pdf، jpeg، png، jpg", + "حجم الملف المسموح به: MB 2" ], "fra": [ - "Address Proof_fra", - "Document Type_fra", - "Document Reference ID_fra", - "Proof Of Document_fra", - "Allowed file type_fra : pdf,jpeg,png,jpg and allowed file size : 2mb" + "Épreuve d'adresse", + "Type de document", + "ID de référence du document", + "Preuve de document", + "Types de fichiers autorisés : pdf, jpeg, png, jpg", + "Taille de fichier autorisée : 2 MB" + ], + "hin": [ + "पता प्रमाण पत्र", + "दस्तावेज़ प्रकार", + "दस्तावेज़ संदर्भ ID", + "दस्तावेज़ का प्रमाण", + "अनुमत फ़ाइल प्रकार: pdf, jpeg, png, jpg", + "अनुमत फ़ाइल आकार: 2 MB" + ], + "tam": [ + "முகவரிச் சான்று", + "ஆவண வகை", + "ஆவணக் குறிப்பு ID", + "ஆவண ஆதாரம்", + "அனுமதிக்கப்பட்ட கோப்பு வகைகள்: pdf, jpeg, png, jpg", + "அனுமதிக்கப்பட்ட கோப்பு அளவு: 2 MB" + ], + "kan": [ + "ವಿಳಾಸ ಪುರಾವೆ", + "ಡಾಕ್ಯುಮೆಂಟ್ ಪ್ರಕಾರ", + "ಡಾಕ್ಯುಮೆಂಟ್ ರೆಫರೆನ್ಸ್ ID", + "ಡಾಕ್ಯುಮೆಂಟ್ ಪುರಾವೆ", + "ಅನುಮತಿಸಲಾದ ಫೈಲ್ ಪ್ರಕಾರಗಳು: pdf, jpeg, png, jpg", + "ಅನುಮತಿಸಲಾದ ಫೈಲ್ ಗಾತ್ರ: 2 MB" + ], + "spa": [ + "Prueba de dirección", + "Tipo de documento", + "ID de referencia del documento", + "Prueba de Documento", + "Tipos de archivos permitidos: pdf, jpeg, png, jpg", + "Tamaño de archivo permitido: 2 MB" ] }, "controlType": "fileupload", - "tabgroup": "address" + "tabgroup": "address", + "dataType": "notString" }, { "attributeName": "email", + "label": { + "eng": "Email ID", + "ara": "عنوان الايميل", + "fra": "Identifiant de messagerie", + "hin": "ईमेल ID", + "tam": "மின்னஞ்சல் முகவரி", + "kan": "ಇಮೇಲ್ ID", + "spa": "Identificación de correo" + }, + "placeHolder": { + "eng": "Enter email ID", + "ara": "أدخل معرف البريد الإلكتروني", + "fra": "Entrez l'identifiant de messagerie", + "hin": "ईमेल ID दर्ज करें", + "tam": "மின்னஞ்சல் ID-ஐ உள்ளிடவும்", + "kan": "ಇಮೇಲ್ ID ನಮೂದಿಸಿ", + "spa": "Ingrese su ID de correo electrónico" + }, "description": "", "labelName": { "eng": [ @@ -259,23 +810,66 @@ "Send OTP" ], "ara": [ - "Current email ID_ara", - "New email ID_ara", - "Confirm New email ID_ara", - "Send OTP_ara" + "معرف البريد الإلكتروني الحالي", + "معرف البريد الإلكتروني الجديد", + "تأكيد معرف البريد الإلكتروني الجديد", + "إرسال OTP" ], "fra": [ - "Current email ID_fra", - "New email ID_fra", - "Confirm New email ID_fra", - "Send OTP_fra" + "Identifiant de messagerie actuel", + "Nouvel identifiant de messagerie", + "Confirmer le nouvel identifiant de messagerie", + "Envoyer OTP" + ], + "hin": [ + "वर्तमान ईमेल ID", + "नई ईमेल ID", + "नई ईमेल ID की पुष्टि करें", + "OTP भेजें" + ], + "tam": [ + "தற்போதைய மின்னஞ்சல் ID", + "புதிய மின்னஞ்சல் ID", + "புதிய மின்னஞ்சல் ID-ஐ உறுதிப்படுத்தவும்", + "OTP ஐ அனுப்பு" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಇಮೇಲ್ ID", + "ಹೊಸ ಇಮೇಲ್ ID", + "ಹೊಸ ಇಮೇಲ್ ID ದೃಢೀಕರಿಸಿ", + "OTP ಕಳುಹಿಸಿ" + ], + "spa": [ + "ID de correo electrónico actual", + "Nueva identificación de correo electrónico", + "Confirmar nuevo ID de correo electrónico", + "Enviar OTP" ] }, "controlType": "textbox", - "tabgroup": "contact" + "tabgroup": "contact", + "dataType": "string" }, { "attributeName": "phone", + "label": { + "eng": "Phone Number", + "ara": "رقم التليفون", + "fra": "Numéro de téléphone", + "hin": "फ़ोन नंबर", + "tam": "தொலைபேசி எண்", + "kan": "ದೂರವಾಣಿ ಸಂಖ್ಯೆ", + "spa": "Número de teléfono" + }, + "placeHolder": { + "eng": "Enter Phone Number", + "ara": "أدخل رقم الهاتف", + "fra": "Entrez le numéro de téléphone", + "hin": "फोन नंबर दर्ज", + "tam": "தொலைபேசி எண்ணை உள்ளிடவும்", + "kan": "ಫೋನ್ ಸಂಖ್ಯೆಯನ್ನು ನಮೂದಿಸಿ", + "spa": "Ingresa número telefónico" + }, "description": "", "labelName": { "eng": [ @@ -285,23 +879,66 @@ "Send OTP" ], "ara": [ - "Current Phone Number_ara", - "New Phone Number_ara", - "Confirm New Phone Number_ara", - "Send OTP_ara" + "رقم الهاتف الحالي", + "رقم الهاتف الجديد", + "تأكيد رقم الهاتف الجديد", + "إرسال OTP" ], "fra": [ - "Current Phone Number_fra", - "New Phone Number_fra", - "Confirm New Phone Number_fra", - "Send OTP_fra" + "Numéro de téléphone actuel", + "Nouveau numéro de téléphone", + "Confirmer le nouveau numéro de téléphone", + "Envoyer OTP" + ], + "hin": [ + "वर्तमान फ़ोन नंबर", + "नया फ़ोन नंबर", + "नए फ़ोन नंबर की पुष्टि करें", + "OTP भेजें" + ], + "tam": [ + "தற்போதைய தொலைபேசி எண்", + "புதிய தொலைபேசி எண்", + "புதிய தொலைபேசி எண்ணை உறுதிப்படுத்தவும்", + "OTP ஐ அனுப்பு" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಫೋನ್ ಸಂಖ್ಯೆ", + "ಹೊಸ ಫೋನ್ ಸಂಖ್ಯೆ", + "ಹೊಸ ಫೋನ್ ಸಂಖ್ಯೆಯನ್ನು ದೃಢೀಕರಿಸಿ", + "OTP ಕಳುಹಿಸಿ" + ], + "spa": [ + "Número de teléfono actual", + "Nuevo número de teléfono", + "Confirmar nuevo número de teléfono", + "Enviar OTP" ] }, "controlType": "textbox", - "tabgroup": "contact" + "tabgroup": "contact", + "dataType": "string" }, { "attributeName": "preferredLang", + "label": { + "eng": "Preferred Language", + "ara": "اللغة المفضلة", + "fra": "langue préférée", + "hin": "पसंदीदा भाषा", + "tam": "விருப்ப மொழி", + "kan": "ಆದ್ಯತೆಯ ಭಾಷೆ", + "spa": "Idioma preferido" + }, + "placeHolder": { + "eng": "Select Preferred Language", + "ara": "اختر اللغة المفضلة", + "fra": "Sélectionner la langue préférée", + "hin": "पसंदीदा भाषा चुनें", + "tam": "விருப்ப மொழியைத் தேர்ந்தெடுக்கவும்.", + "kan": "ಆಯ್ಕೆಯಾದ ಭಾಷೆಯನ್ನು ಆಯ್ಕೆಮಾಡಿ.", + "spa": "Seleccionar Idioma Preferido" + }, "description": "", "labelName": { "eng": [ @@ -309,16 +946,33 @@ "New Notification Language" ], "ara": [ - "Current Notification Language_ara", - "New Notification Language_ara" + "لغة الإخطار الحالية", + "لغة الإعلام الجديدة" ], "fra": [ - "Current Notification Language_fra", - "New Notification Language_fra" + "Langue de notification actuelle", + "Nouvelle langue de notification" + ], + "hin": [ + "वर्तमान अधिसूचना भाषा", + "नई अधिसूचना भाषा" + ], + "tam": [ + "தற்போதைய அறிவிப்பு மொழி", + "புதிய அறிவிப்பு மொழி" + ], + "kan": [ + "ಪ್ರಸ್ತುತ ಅಧಿಸೂಚನೆ ಭಾಷೆ", + "ಹೊಸ ಅಧಿಸೂಚನೆ ಭಾಷೆ" + ], + "spa": [ + "Idioma de notificación actual", + "Nuevo idioma de notificación" ] }, "controlType": "dropdown", - "tabgroup": "notificationLanguage" + "tabgroup": "notificationLanguage", + "dataType": "string" } ] -} +} \ No newline at end of file From 9cf01d537907c9a3a55e2253c50e5b0fab00475e Mon Sep 17 00:00:00 2001 From: kameshsr <kameshsr1338@gmail.com> Date: Thu, 2 May 2024 18:20:31 +0530 Subject: [PATCH 1324/1358] MOSIP-32772 Added correct credential data config Signed-off-by: kameshsr <kameshsr1338@gmail.com> --- credentialdata.mvel | 66 ++++++++++++++++++++++++++++---- id-repository-default.properties | 2 +- identity-data-formatter.mvel | 2 +- 3 files changed, 61 insertions(+), 9 deletions(-) diff --git a/credentialdata.mvel b/credentialdata.mvel index 06fc121edf7..17f98203899 100644 --- a/credentialdata.mvel +++ b/credentialdata.mvel @@ -5,17 +5,69 @@ def convertDateFormat(value, inputformat, outputformat) { String formattedDate= DateUtils.formatDate(date, outputformat); return formattedDate; }; -def convertToMaskData(value) { -StringBuilder sbMaskString = new StringBuilder(""); +def convertToMaskData(maskData) { + int maskDataLength = 0; + char ch = 'X'; + if (maskData.indexOf("@") > 0){ + maskDataLength = maskData.indexOf("@"); + } else { + maskDataLength = maskData.length(); + } + maskDataLength -= 2; + for (int i = 1; i < maskDataLength; ++i) { + maskData = maskData.substring(0, i) + ch + maskData.substring(i + 1); + } + return maskData; +}; + +def formatName(names) { + StringBuilder name = new StringBuilder(""); + for (int i = 0; i < names.size(); i++) { + name.append(names[i]); + if(i < names.size() - 1) { + name.append(" "); + } + } + return name.toString() +}; - for (int i = 0; i < 2; i++) { - sbMaskString.append("*"); +def formatAddress(addressLines) { + StringBuilder address = new StringBuilder(""); + for (int i = 0; i < addressLines.size(); i++) { + address.append(addressLines[i]); + if(i < addressLines.size() - 1) { + address.append(", "); } - return sbMaskString.toString() + value.substring(0 + 2); + } + return address.toString() +}; + +def maskPhone(inputPhoneNum) { + return inputPhoneNum.replaceAll(".(?=.{4})", "*"); +}; + +def maskEmail(inputEmailAddr) { + return inputEmailAddr.replaceAll("(^[^@]{3}|(?!^)\\G)[^@]", "$1*"); }; -def formatName(firstName,middleName,lastName) { -return firstName+" "+middleName+" "+lastName; +def getPassword(attributeValues) { + String pdfPwd = ""; + for(String attribute:attributeValues) { + attribute = getFormattedPasswordAttribute(attribute); + pdfPwd = pdfPwd.concat(attribute.substring(0, 4)); + } + return pdfPwd.toUpperCase(); }; +def getFormattedPasswordAttribute(password){ + if(password.length()==3){ + return password=password.concat(password.substring(0,1)); + }else if(password.length()==2){ + return password=password.repeat(2); + }else if(password.length()==1) { + return password=password.repeat(4); + }else { + return password.toUpperCase(); + } +}; \ No newline at end of file diff --git a/id-repository-default.properties b/id-repository-default.properties index bae6711cfe3..7f21f014640 100644 --- a/id-repository-default.properties +++ b/id-repository-default.properties @@ -431,7 +431,7 @@ mosip.role.idrepo.vid.postvidreactivate=RESIDENT,ID_REPOSITORY mosip.role.idrepo.vid.postdraftvid=REGISTRATION_PROCESSOR,ID_REPOSITORY mosip.role.idrepo.identity.getdraftUIN=RESIDENT,ID_REPOSITORY -mosip.mask.function.identityAttributes=convertToMaskDataFormat +mosip.mask.function.identityAttributes=convertToMaskData mosip.credential.service.fetch-identity.type=bio diff --git a/identity-data-formatter.mvel b/identity-data-formatter.mvel index bdb36811299..59b10640c43 100644 --- a/identity-data-formatter.mvel +++ b/identity-data-formatter.mvel @@ -9,7 +9,7 @@ def maskEmail(inputEmailAddr) { return inputEmailAddr.replaceAll("(^[^@]{3}|(?!^)\\G)[^@]", "$1*"); }; -def convertToMaskDataFormat(maskData) { +def convertToMaskData(maskData) { int maskDataLength = 0; char ch = '*'; if (maskData.indexOf("@") > 0){ From 6de3116caee9d5cc3dc6fda5173723e310974da7 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 2 May 2024 19:04:57 +0530 Subject: [PATCH 1325/1358] Update id-authentication-default.properties Updated mosip.ida.authentication.error.eventing.enabled=false and removed below properties: mosip.ida.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} spring.kafka.admin.properties.allow.auto.create.topics=true Signed-off-by: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> --- id-authentication-default.properties | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 690970bea5f..44fa0825fc6 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -649,13 +649,11 @@ mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } #-------------------------------- Authentication error eventing------------------------------- #It enable and disable the bean init of kafka and Authentication error eventing -mosip.ida.authentication.error.eventing.enabled=true +mosip.ida.authentication.error.eventing.enabled=false #If we enable authentication error eventing as true we need all the below property ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS # Partner Id for encryption used in ondemand template extraction mosip.ida.authentication.error.eventing.encrypt.partner.id=mpartner-default-tempextraction #kafka Configuration -mosip.ida.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} -spring.kafka.admin.properties.allow.auto.create.topics=true logging.level.org.apache.kafka=DEBUG #----------------------------------------------------end------------------------------------------ From 91060fae641dfefad10ec6e55b79077e6c43618a Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 2 May 2024 19:19:56 +0530 Subject: [PATCH 1326/1358] Update id-authentication-default.properties Commented #mosip.ida.authentication.error.eventing.enabled=true Signed-off-by: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> --- id-authentication-default.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 44fa0825fc6..8a17a700fe8 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -649,11 +649,13 @@ mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } #-------------------------------- Authentication error eventing------------------------------- #It enable and disable the bean init of kafka and Authentication error eventing -mosip.ida.authentication.error.eventing.enabled=false +#mosip.ida.authentication.error.eventing.enabled=true #If we enable authentication error eventing as true we need all the below property ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS # Partner Id for encryption used in ondemand template extraction mosip.ida.authentication.error.eventing.encrypt.partner.id=mpartner-default-tempextraction #kafka Configuration +mosip.ida.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafka.port},kafka-1.kafka-headless.${kafka.profile}:${kafka.port},kafka-2.kafka-headless.${kafka.profile}:${kafka.port} +spring.kafka.admin.properties.allow.auto.create.topics=true logging.level.org.apache.kafka=DEBUG #----------------------------------------------------end------------------------------------------ From 60d5aec447a1328a8fcf570f4bdf2ea6be764084 Mon Sep 17 00:00:00 2001 From: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> Date: Thu, 2 May 2024 19:28:55 +0530 Subject: [PATCH 1327/1358] Update id-authentication-default.properties Updated mosip.ida.authentication.error.eventing.enabled=true Signed-off-by: Anuranjan14 <120705365+Anuranjan14@users.noreply.github.com> --- id-authentication-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 8a17a700fe8..690970bea5f 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -649,7 +649,7 @@ mosip.ida.handle-types.regex={ '@phone' : '^\\+91[1-9][0-9]{7,9}@phone$' } #-------------------------------- Authentication error eventing------------------------------- #It enable and disable the bean init of kafka and Authentication error eventing -#mosip.ida.authentication.error.eventing.enabled=true +mosip.ida.authentication.error.eventing.enabled=true #If we enable authentication error eventing as true we need all the below property ida-topic-authentication-error-eventing=AUTHENTICATION_ERRORS # Partner Id for encryption used in ondemand template extraction From bc6e73afe6bf6c4dfc19db149f29b41d234a477d Mon Sep 17 00:00:00 2001 From: kameshsr <kameshsr1338@gmail.com> Date: Fri, 3 May 2024 11:00:42 +0530 Subject: [PATCH 1328/1358] MOSIP-32772 Added missing config Signed-off-by: kameshsr <kameshsr1338@gmail.com> --- credential-service-default.properties | 15 ++++++++++++++- 1 file changed, 14 insertions(+), 1 deletion(-) diff --git a/credential-service-default.properties b/credential-service-default.properties index c1ca318cd03..947703614bf 100644 --- a/credential-service-default.properties +++ b/credential-service-default.properties @@ -30,4 +30,17 @@ credentialType.formatter.VERCRED=VerCredProvider credentialType.formatter.PDFCARD=VerCredProvider GENERATE_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid RETRIEVE_VID=${mosip.idrepo.vid.url}/idrepository/v1/vid/uin -credential.service.default.vid.type=PERPETUAL \ No newline at end of file +credential.service.default.vid.type=PERPETUAL + +mosip.mask.function.identityAttributes=convertToMaskData +mosip.mask.function.date=convertToMaskDate +mosip.format.function.address=formatAddress +mosip.format.function.name=formatName +mosip.format.function.dateTimeFormat=convertDateFormat + +mosip.mask.function.identityAttributes.default=convertToMaskData +mosip.mask.function.identityAttributes.phone=maskPhone +mosip.mask.function.identityAttributes.email=maskEmail +mosip.credential.photo.attribute.names=photo,face +mosip.credential.name.attribute.names=fullName,name +mosip.credential.address.attribute.names=fullAddress,address \ No newline at end of file From a75f358ec61f313fe50be515eebc0df98bed1cb9 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Tue, 7 May 2024 13:07:56 +0530 Subject: [PATCH 1329/1358] Update identity-mapping.json Removed dob from attribute count Signed-off-by: likhitharl <91238496+likhitharl@users.noreply.github.com> --- identity-mapping.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/identity-mapping.json b/identity-mapping.json index dab04032fc6..475c23801ff 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -166,6 +166,6 @@ "attributeUpdateCountLimit": { "fullName": 2, "gender": 2, - "dateOfBirth": 2 + } } From 983d6bb50052a65fb0437b141855bb0a53f6145d Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Tue, 7 May 2024 13:21:41 +0530 Subject: [PATCH 1330/1358] Update identity-mapping.json Signed-off-by: likhitharl <91238496+likhitharl@users.noreply.github.com> --- identity-mapping.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/identity-mapping.json b/identity-mapping.json index 475c23801ff..075de37de7c 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -165,7 +165,7 @@ }, "attributeUpdateCountLimit": { "fullName": 2, - "gender": 2, + "gender": 2 } } From 5c3eec544e0db74bf29b6e87e320d69a91535103 Mon Sep 17 00:00:00 2001 From: likhitharl <91238496+likhitharl@users.noreply.github.com> Date: Tue, 7 May 2024 13:35:52 +0530 Subject: [PATCH 1331/1358] Update identity-mapping.json Updated "dateOfBirth": 3 Signed-off-by: likhitharl <91238496+likhitharl@users.noreply.github.com> --- identity-mapping.json | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 075de37de7c..c27a4a51ffb 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,8 +164,9 @@ } }, "attributeUpdateCountLimit": { - "fullName": 2, - "gender": 2 + "fullName": 5, + "gender": 4, + "dateOfBirth": 3 } } From bb38a806c5943fc9f138ba3f8e47b5a9b38e5b50 Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Wed, 8 May 2024 12:23:28 +0530 Subject: [PATCH 1332/1358] Update identity-mapping.json Updated count limit for testing purpose Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- identity-mapping.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index c27a4a51ffb..f1211f409ad 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,9 +164,9 @@ } }, "attributeUpdateCountLimit": { - "fullName": 5, - "gender": 4, - "dateOfBirth": 3 + "fullName": 6, + "gender": 6, + "dateOfBirth": 6 } } From 78dac6edd8f13480c7c6fa269f302f1af901f22b Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Wed, 8 May 2024 14:07:00 +0530 Subject: [PATCH 1333/1358] Update identity-mapping.json Updated count limit to zero for testing Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- identity-mapping.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index f1211f409ad..f71454b3020 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,9 +164,9 @@ } }, "attributeUpdateCountLimit": { - "fullName": 6, - "gender": 6, - "dateOfBirth": 6 + "fullName": 0, + "gender": 0, + "dateOfBirth": 0 } } From 7f458db32c2ae8557d019146e561b69faff52de1 Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Wed, 8 May 2024 17:39:07 +0530 Subject: [PATCH 1334/1358] Update identity-mapping.json Removed DOB and Gender attribute for testing Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- identity-mapping.json | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index f71454b3020..875fcd52b6c 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,9 +164,8 @@ } }, "attributeUpdateCountLimit": { - "fullName": 0, - "gender": 0, - "dateOfBirth": 0 + "fullName": 3 + } } From 4f27e8a71ef7427772e0b708246fc0cae21b31c5 Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Thu, 9 May 2024 13:23:02 +0530 Subject: [PATCH 1335/1358] Update identity-mapping.json Reverting back the changes Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- identity-mapping.json | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/identity-mapping.json b/identity-mapping.json index 875fcd52b6c..9f8109612c9 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,7 +164,10 @@ } }, "attributeUpdateCountLimit": { - "fullName": 3 + "fullName": 2, + "gender": 4, + "dateOfBirth": 3 + } From 9d528005b0fcfe083d706804035d89547ccef017 Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Thu, 9 May 2024 17:16:17 +0530 Subject: [PATCH 1336/1358] Update mosip-vid-policy.json Updated line 15,16 and 18 for testing purpose Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- mosip-vid-policy.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index af3eecc2322..5e8ebb77603 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -12,10 +12,10 @@ { "vidType": "Temporary", "vidPolicy": { - "validForInMinutes": 30, - "transactionsAllowed": 1, + "validForInMinutes": 10, + "transactionsAllowed": 2, "instancesAllowed": 20, - "autoRestoreAllowed": false, + "autoRestoreAllowed": true, "restoreOnAction": "REGENERATE" } }, From fe50de11388e2d5d62583e14c54f8f0c262de86d Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Thu, 9 May 2024 19:35:59 +0530 Subject: [PATCH 1337/1358] Update mosip-vid-policy.json Reverted the changes Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- mosip-vid-policy.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/mosip-vid-policy.json b/mosip-vid-policy.json index 5e8ebb77603..af3eecc2322 100644 --- a/mosip-vid-policy.json +++ b/mosip-vid-policy.json @@ -12,10 +12,10 @@ { "vidType": "Temporary", "vidPolicy": { - "validForInMinutes": 10, - "transactionsAllowed": 2, + "validForInMinutes": 30, + "transactionsAllowed": 1, "instancesAllowed": 20, - "autoRestoreAllowed": true, + "autoRestoreAllowed": false, "restoreOnAction": "REGENERATE" } }, From 89464cfa0168c7b8c51228ac562d6a7a6d467f6c Mon Sep 17 00:00:00 2001 From: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> Date: Fri, 10 May 2024 20:49:03 +0530 Subject: [PATCH 1338/1358] [DSD-5240] Update mimoto-default.properties (#6081) Signed-off-by: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> --- mimoto-default.properties | 19 ++++++++----------- 1 file changed, 8 insertions(+), 11 deletions(-) diff --git a/mimoto-default.properties b/mimoto-default.properties index f9ea19278bf..dbf33f52c4f 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -102,10 +102,10 @@ mosip.country.code=MOR registration.processor.signature.isEnabled=true # Language Supported By Platform - ISO -mosip.supported-languages=eng,ara,kan,hin,tam,fra +mosip.supported-languages=eng,ara,fra mosip.template-language=eng -mosip.optional-languages=kan,ara,fra,tam,hin +mosip.optional-languages=ara,fra mosip.mandatory-languages=eng # mosip.primary-language=eng @@ -129,7 +129,7 @@ mosip.kernel.tokenid.length=36 # log level logging.level.root=WARN -logging.level.io.mosip=INFO +logging.level.io.mosip=DEBUG # logging.level.io.mosip.kernel.auth.defaultadapter.filter=INFO logging.level.io.mosip.kernel.auth.defaultadapter=DEBUG logging.level.org.springframework.http.client=DEBUG @@ -180,7 +180,7 @@ mosip.auth.filter_disable=false mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter mosip.kernel.auth.appids.realm.map={prereg:'mosip',ida:'mosip',registrationclient:'mosip',regproc:'mosip',partner:'mosip',resident:'mosip',admin:'mosip',crereq:'mosip',creser:'mosip',datsha:'mosip',idrepo:'mosip'} vercred.type.vid=VID - +mosip.idp.partner.id=mpartner-default-mobile mosip.idp.partner.encryption.key={cipher}b77f8738b7fb8c48f84d587b045fa50099a569c381d1857eddbcd04afd83cd08 wallet.binding.partner.id=mpartner-default-mimotokeybinding wallet.binding.partner.api.key=${mimoto.wallet.binding.partner.api.key} @@ -193,13 +193,10 @@ mosip.notificationtype=SMS|EMAIL|PHONE # Configurations related to openid4vci mosip.openid.issuers=mimoto-issuers-config.json -GET_TOKEN=${public.internet.url}/v1/esignet/login/oauth/token -mosip.oidc.esignet.token.endpoint=https://${mosip.esignet.base.url}/oauth/v2/token -mosip.oidc.esignet.aud=https://${mosip.esignet.base.url}/oauth/v2/token -mosip.oidc.client.id=${mimoto.oidc.partner.clientid} -mosip.oidc.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer +mosip.openid.issuer.credentialSupported=sunbird-insurance-wellKnown.json +mosip.openid.htmlTemplate=credential-template.html mosip.oidc.p12.filename=oidckeystore.p12 mosip.oidc.p12.password=${mimoto.oidc.keystore.password} -mosip.oidc.p12.alias=mpartner-default-mimotooidc #Property to test the mounted p12 file extraction of openid4vci flow. -mosip.oidc.p12.path=certs/ \ No newline at end of file +mosip.oidc.p12.path=certs/ +logging.level.org.springframework.web.client.RestTemplate=INFO From a6635d448c8a842a76c6a2096e45ea26b139ef48 Mon Sep 17 00:00:00 2001 From: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> Date: Fri, 10 May 2024 21:05:56 +0530 Subject: [PATCH 1339/1358] [DSD-5240] Updated mimoto-default.properties Signed-off-by: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> --- mimoto-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/mimoto-default.properties b/mimoto-default.properties index dbf33f52c4f..a1d5afb1d7c 100644 --- a/mimoto-default.properties +++ b/mimoto-default.properties @@ -195,6 +195,7 @@ mosip.notificationtype=SMS|EMAIL|PHONE mosip.openid.issuers=mimoto-issuers-config.json mosip.openid.issuer.credentialSupported=sunbird-insurance-wellKnown.json mosip.openid.htmlTemplate=credential-template.html +mosip.oidc.client.assertion.type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer mosip.oidc.p12.filename=oidckeystore.p12 mosip.oidc.p12.password=${mimoto.oidc.keystore.password} #Property to test the mounted p12 file extraction of openid4vci flow. From e761f0f2d3640c5e101ab13dd603715d1f0d7f47 Mon Sep 17 00:00:00 2001 From: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> Date: Fri, 10 May 2024 21:16:32 +0530 Subject: [PATCH 1340/1358] [DSD-5240] Update mimoto-default.properties (#6082) * [DSD-5240] Update mimoto-default.properties Signed-off-by: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> * Update mimoto-issuers-config.json Signed-off-by: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> --------- Signed-off-by: Praful Rakhade <99539100+Prafulrakhade@users.noreply.github.com> --- mimoto-issuers-config.json | 276 +++++++++++++++++++++++++++++-------- 1 file changed, 221 insertions(+), 55 deletions(-) diff --git a/mimoto-issuers-config.json b/mimoto-issuers-config.json index eaf5f112b9c..1b84da834c2 100644 --- a/mimoto-issuers-config.json +++ b/mimoto-issuers-config.json @@ -6,65 +6,66 @@ { "name": "UIN, VID, AID", "logo": { - "url": "https://${mosip.api.public.host}/inji/digit-icon.png", - "alt_text": "digits-icon" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "mosip logo" }, - "title": "Download via UIN, VID, AID", - "description":"Enter your national ID to download your card.", + "title": "Download MOSIP Credentials via OTP", + "description":"Download credentials by providing UIN, VID or AID", "language": "en" }, { "name": "UIN, VID, AID", "logo": { - "url": "https://${mosip.api.public.host}/inji/digit-icon.png", - "alt_text": "رمز الأرقام" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "شعار موسيب" }, - "title": "التنزيل عبر UIN, VID, AID", - "description": "أدخل رقم الهوية الوطنية الخاص بك لتنزيل بطاقتك.", - "language": "en" + "title": "قم بتنزيل بيانات اعتماد MOSIP عبر OTP", + "description": "قم بتنزيل بيانات الاعتماد من خلال توفير UIN أو VID أو AID", + "language": "ar" }, { "name": "UIN, VID, AID", "logo": { - "url": "https://${mosip.api.public.host}/inji/digit-icon.png", - "alt_text": "अंक-आइकन" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "मोसिप लोगो" }, - "title": "UIN, VID, AID के माध्यम से डाउनलोड करे", - "description":"अपना कार्ड डाउनलोड करने के लिए अपनी राष्ट्रीय आईडी दर्ज करें।", + "title": "OTP के माध्यम से MOSIP क्रेडेंशियल डाउनलोड करें", + "description":"यूआईएन, वीआईडी या एआईडी प्रदान करके क्रेडेंशियल डाउनलोड करें", "language": "hi" }, { "name": "UIN, VID, AID", "logo": { - "url": "https://${mosip.api.public.host}/inji/digit-icon.png", - "alt_text": "ಅಂಕಿ-ಐಕಾನ್" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "mosip ಲೋಗೋ" }, - "title": "UIN, VID, AID ಮೂಲಕ ಡೌನ್ಲೋಡ್ ಮಾಡಿ", - "description": "ನಿಮ್ಮ ಕಾರ್ಡ್ ಅನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಲು ನಿಮ್ಮ ರಾಷ್ಟ್ರೀಯ ID ಅನ್ನು ನಮೂದಿಸಿ.", + "title": "OTP ಮೂಲಕ MOSIP ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ", + "description": "UIN, VID ಅಥವಾ AID ಒದಗಿಸುವ ಮೂಲಕ ರುಜುವಾತುಗಳನ್ನು ಡೌನ್\u200Cಲೋಡ್ ಮಾಡಿ", "language": "kn" }, { "name": "UIN, VID, AID", "logo": { - "url": "https://${mosip.api.public.host}/inji/digit-icon.png", - "alt_text": "இலக்கங்கள்-ஐகான்" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "mosip சின்னம்" }, - "title": "UIN, VID, AID மூலம் பதிவிறக்கவும்", - "description":"உங்கள் கார்டைப் பதிவிறக்க உங்கள் தேசிய ஐடியை உள்ளிடவும்.", + "title": "OTP வழியாக MOSIP சான்றுகளைப் பதிவிறக்கவும்", + "description":"UIN, VID அல்லது AID ஐ வழங்குவதன் மூலம் நற்சான்றிதழ்களைப் பதிவிறக்கவும்", "language": "ta" }, { "name": "UIN, VID, AID", "logo": { - "url": "https://${mosip.api.public.host}/inji/digit-icon.png", - "alt_text": "digits-icon" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "logo ng mosip" }, - "title": "I-download sa pamamagitan ng UIN, VID, AID", - "description":"Ilagay ang iyong national ID para i-download ang iyong card.", + "title": "I-download ang Mga Kredensyal ng MOSIP sa pamamagitan ng OTP", + "description":"Mag-download ng mga kredensyal sa pamamagitan ng pagbibigay ng UIN, VID o AID", "language": "fil" } ], - "protocol": "OTP" + "protocol": "OTP", + "enabled": "true" }, { "credential_issuer": "ESignet", @@ -72,74 +73,239 @@ { "name": "e-Signet", "logo": { - "url": "https://${mosip.esignet.host}/logo.png", - "alt_text": "esignet-logo" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "mosip-logo" }, - "title": "Download via e-Signet", - "description": "Enter your national ID to download your card.", + "title": "Download MOSIP Credentials", + "description": "Download credentials by providing UIN or VID", "language": "en" }, { "name": "e-Signet", "logo": { - "url": "https://${mosip.esignet.host}/logo.png", - "alt_text": "esignet-logo" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "شعار موسيب" }, - "title": "e-Signet التنزيل عبر", - "description": "أدخل رقم الهوية الوطنية الخاص بك لتنزيل بطاقتك." , + "title": "قم بتنزيل بيانات اعتماد MOSIP", + "description": "توفير UIN أو VIDقم بتنزيل بيانات الاعتماد عن طريق" , "language": "ar" }, { "name": "e-Signet", "logo": { - "url": "https://${mosip.esignet.host}/logo.png", - "alt_text": "esignet-लोगो" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "मोसिप लोगो" }, - "title": "ई-हस्ताक्षर के माध्यम से डाउनलोड करें", - "description":"अपना कार्ड डाउनलोड करने के लिए अपनी राष्ट्रीय आईडी दर्ज करें।", + "title": "MOSIP क्रेडेंशियल डाउनलोड करेंं", + "description":"यूआईएन या वीआईडी प्रदान करके क्रेडेंशियल डाउनलोड करें", "language": "hi" }, { "name": "e-Signet", "logo": { - "url": "https://${mosip.esignet.host}/logo.png", - "alt_text": "esignet-ಲೋಗೋ" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "mosip ಲೋಗೋ" }, - "title": "ಇ-ಸಿಗ್ನೆಟ್ ಮೂಲಕ ಡೌನ್ಲೋಡ್ ಮಾಡಿ", - "description": "ನಿಮ್ಮ ಕಾರ್ಡ್ ಅನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಲು ನಿಮ್ಮ ರಾಷ್ಟ್ರೀಯ ID ಅನ್ನು ನಮೂದಿಸಿ.", + "title": "MOSIP ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ", + "description": "UIN ಅಥವಾ VID ಒದಗಿಸುವ ಮೂಲಕ ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ", "language": "kn" }, { "name": "e-Signet", "logo": { - "url": "https://${mosip.esignet.host}/logo.png", - "alt_text": "esignet-லோகோ" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "mosip லோகோ" }, - "title": "இ-சிக்னெட் மூலம் பதிவிறக்கம் செய்யவும்", - "description":"உங்கள் கார்டைப் பதிவிறக்க உங்கள் தேசிய ஐடியை உள்ளிடவும்.", + "title": "MOSIP சான்றுகளைப் பதிவிறக்கவும்", + "description":"UIN அல்லது VIDஐ வழங்குவதன் மூலம் நற்சான்றிதழ்களைப் பதிவிறக்கவும்", "language": "ta" }, { "name": "e-Signet", "logo": { - "url": "https://${mosip.esignet.host}/logo.png", - "alt_text": "logo-signet" + "url": "https://${mosip.api.public.host}/inji/mosip-logo.png", + "alt_text": "logo ng mosip" }, - "title": "I-download sa pamamagitan ng e-Signet", - "description":"Ilagay ang iyong national ID para i-download ang iyong card.", + "title": "I-download ang Mga Kredensyal ng MOSIP", + "description":"Mag-download ng mga kredensyal sa pamamagitan ng pagbibigay ng UIN o VID", "language": "fil" } ], "protocol": "OpenId4VCI", "client_id": "${mimoto.oidc.partner.clientid}", + "client_alias": "mpartner-default-mimotooidc", "scopes_supported": ["mosip_identity_vc_ldp"], "additional_headers": { "Accept": "application/json" }, - ".well-known": null, + ".well-known": "https://${mosip.esignet.host}/.well-known/openid-credential-issuer?version=v11", "redirect_uri": "io.mosip.residentapp.inji://oauthredirect", "authorization_endpoint": "https://${mosip.esignet.host}/authorize", - "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token", + "authorization_audience": "https://${mosip.esignet.host}/v1/esignet/oauth/v2/token", + "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token/ESignet", + "proxy_token_endpoint": "https://${mosip.esignet.host}/v1/esignet/oauth/v2/token", "credential_endpoint": "https://${mosip.esignet.host}/v1/esignet/vci/credential", - "credential_audience": "https://${mosip.esignet.host}" - } + "credential_type": ["VerifiableCredential", "MOSIPVerifiableCredential"], + "credential_audience": "https://${mosip.esignet.host}", + "enabled": "true" + }, + { + "credential_issuer": "Sunbird", + "display": [ + { + "name": "Sunbird RC Insurance Verifiable Credential", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "a square logo of a Sunbird" + }, + "language": "en", + "title": "Download Sunbird Credentials", + "description": "Download credentials with your Policy Number" + }, + { + "name": "بيانات الاعتماد التي يمكن التحقق منها للتأمين Sunbird RC", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "شعار مربع لطائر الشمس" + }, + "language": "ar", + "title": "قم بتنزيل بيانات اعتماد Sunbird", + "description": "قم بتنزيل بيانات الاعتماد باستخدام رقم السياسة الخاص بك" + }, + { + "name": "सनबर्ड आरसी बीमा सत्यापन योग्य क्रेडेंशियल", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "सनबर्ड का एक चौकोर लोगो" + }, + "language": "hi", + "title": "सनबर्ड क्रेडेंशियल्स डाउनलोड करेंं", + "description": "अपने पॉलिसी नंबर के साथ क्रेडेंशियल डाउनलोड करें" + }, + { + "name": "ಸನ್ಬರ್ಡ್ ಆರ್ಸಿ ವಿಮೆ ಪರಿಶೀಲಿಸಬಹುದಾದ ರುಜುವಾತು", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "ಸನ್ ಬರ್ಡ್ ನ ಚೌಕಾಕಾರದ ಲೋಗೋ" + }, + "language": "kn", + "title": "ಸನ್ಬರ್ಡ್ ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ", + "description": "ನಿಮ್ಮ ಪಾಲಿಸಿ ಸಂಖ್ಯೆಯೊಂದಿಗೆ ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ" + }, + { + "name": "Sunbird RC இன்சூரன்ஸ் சரிபார்க்கக்கூடிய நற்சான்றிதழ்", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "சூரிய பறவையின் சதுர சின்னம்" + }, + "language": "ta", + "title": "Sunbird சான்றுகளைப் பதிவிறக்கவும்", + "description": "உங்கள் பாலிசி எண்ணுடன் நற்சான்றிதழ்களைப் பதிவிறக்கவும்" + }, + { + "name": "Kredensyal na Nabe-verify ng Sunbird RC Insurance", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "isang parisukat na logo ng isang Sunbird" + }, + "language": "fil", + "title": "I-download ang Mga Kredensyal ng Sunbird", + "description": "Mag-download ng mga kredensyal gamit ang iyong Numero ng Patakaran" + } + ], + "protocol": "OpenId4VCI", + "client_id": "${mimoto.oidc.sunbird.partner.clientid}", + "client_alias": "esignet-sunbird-partner", + "scopes_supported": ["sunbird_rc_insurance_vc_ldp"], + "additional_headers": { "Accept": "application/json" }, + ".well-known": "https://${mosip.esignet.insurance.host}/.well-known/openid-credential-issuer?version=v11", + "redirect_uri": "io.mosip.residentapp.inji://oauthredirect", + "authorization_endpoint": "https://${mosip.esignet.insurance.host}/authorize", + "authorization_audience": "https://${mosip.esignet.insurance.host}/v1/esignet/oauth/v2/token", + "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token/Sunbird", + "proxy_token_endpoint": "https://${mosip.esignet.insurance.host}/v1/esignet/oauth/v2/token", + "credential_endpoint": "https://${mosip.esignet.insurance.host}/v1/esignet/vci/credential", + "credential_type": ["VerifiableCredential", "InsuranceCredential"], + "credential_audience": "https://${mosip.esignet.insurance.host}", + "enabled": "true" + }, +{ + "credential_issuer": "Sunbird140", + "display": [ + { + "name": "Sunbird 140 RC Insurance Verifiable Credential", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "a square logo of a Sunbird" + }, + "language": "en", + "title": "Download Sunbird 140 Credentials", + "description": "Download credentials with your Policy Number" + }, + { + "name": "بيانات الاعتماد التي يمكن التحقق منها للتأمين Sunbird RC", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "شعار مربع لطائر الشمس" + }, + "language": "ar", + "title": "قم بتنزيل بيانات اعتماد Sunbird", + "description": "قم بتنزيل بيانات الاعتماد باستخدام رقم السياسة الخاص بك" + }, + { + "name": "सनबर्ड आरसी बीमा सत्यापन योग्य क्रेडेंशियल", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "सनबर्ड का एक चौकोर लोगो" + }, + "language": "hi", + "title": "सनबर्ड क्रेडेंशियल्स डाउनलोड करेंं", + "description": "अपने पॉलिसी नंबर के साथ क्रेडेंशियल डाउनलोड करें" + }, + { + "name": "ಸನ್ಬರ್ಡ್ ಆರ್ಸಿ ವಿಮೆ ಪರಿಶೀಲಿಸಬಹುದಾದ ರುಜುವಾತು", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "ಸನ್ ಬರ್ಡ್ ನ ಚೌಕಾಕಾರದ ಲೋಗೋ" + }, + "language": "kn", + "title": "ಸನ್ಬರ್ಡ್ ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ", + "description": "ನಿಮ್ಮ ಪಾಲಿಸಿ ಸಂಖ್ಯೆಯೊಂದಿಗೆ ರುಜುವಾತುಗಳನ್ನು ಡೌನ್ಲೋಡ್ ಮಾಡಿ" + }, + { + "name": "Sunbird RC இன்சூரன்ஸ் சரிபார்க்கக்கூடிய நற்சான்றிதழ்", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "சூரிய பறவையின் சதுர சின்னம்" + }, + "language": "ta", + "title": "Sunbird சான்றுகளைப் பதிவிறக்கவும்", + "description": "உங்கள் பாலிசி எண்ணுடன் நற்சான்றிதழ்களைப் பதிவிறக்கவும்" + }, + { + "name": "Kredensyal na Nabe-verify ng Sunbird RC Insurance", + "logo": { + "url": "https://sunbird.org/images/sunbird-logo-new.png", + "alt_text": "isang parisukat na logo ng isang Sunbird" + }, + "language": "fil", + "title": "I-download ang Mga Kredensyal ng Sunbird", + "description": "Mag-download ng mga kredensyal gamit ang iyong Numero ng Patakaran" + } + ], + "protocol": "OpenId4VCI", + "client_id": "esignet-sunbird-140-partner", + "client_alias": "esignet-sunbird-140-partner", + "scopes_supported": ["sunbird_rc_insurance_vc_ldp"], + "additional_headers": { "Accept": "application/json" }, + ".well-known": "https://esignet-140.qa-inji.mosip.net/.well-known/openid-credential-issuer?version=v11", + "redirect_uri": "io.mosip.residentapp.inji://oauthredirect", + "authorization_endpoint": "https://esignet-140.qa-inji.mosip.net/authorize", + "authorization_audience": "https://esignet-140.qa-inji.mosip.net/v1/esignet/oauth/v2/token", + "token_endpoint": "https://${mosip.api.public.host}/residentmobileapp/get-token/Sunbird140", + "proxy_token_endpoint": "https://esignet-140.qa-inji.mosip.net/v1/esignet/oauth/v2/token", + "credential_endpoint": "https://esignet-140.qa-inji.mosip.net/v1/esignet/vci/credential", + "credential_type": ["VerifiableCredential", "InsuranceCredential"], + "credential_audience": "https://esignet-140.qa-inji.mosip.net", + "enabled": "false" + } ] -} \ No newline at end of file +} From 9e7e0cde69b4e87a0e6a3c3aa410393780374757 Mon Sep 17 00:00:00 2001 From: abhishek8shankar <127825992+abhishek8shankar@users.noreply.github.com> Date: Tue, 14 May 2024 10:31:26 +0530 Subject: [PATCH 1341/1358] [DSD-5255] Update esignet-default.properties Signed-off-by: abhishek8shankar <127825992+abhishek8shankar@users.noreply.github.com> --- esignet-default.properties | 175 ++++++++++++++++++++++++++++++++----- 1 file changed, 152 insertions(+), 23 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index af298e6a242..48b8a2a3214 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -35,19 +35,50 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 # By default, only 2 link codes can be active, and the time period it can be active is defined here, default value is 1 minute -mosip.esignet.link-code-expire-in-secs=60 +mosip.esignet.link-code-expire-in-secs=600 # Number of link code allowed to be generated in a transaction, the default value is 10 mosip.esignet.generate-link-code.limit-per-transaction=10 # Time to complete consent after successful authentication, the default value is 120 -mosip.esignet.authentication-expire-in-secs=120 +mosip.esignet.authentication-expire-in-secs=600 +# Auth challenge type & format mapping. Auth challenge length validations for each auth factor type. +mosip.esignet.auth-challenge.OTP.format=alpha-numeric +mosip.esignet.auth-challenge.OTP.min-length=6 +mosip.esignet.auth-challenge.OTP.max-length=6 + +mosip.esignet.auth-challenge.PWD.format=alpha-numeric +mosip.esignet.auth-challenge.PWD.min-length=8 +mosip.esignet.auth-challenge.PWD.max-length=30 + +mosip.esignet.auth-challenge.BIO.format=encoded-json +mosip.esignet.auth-challenge.BIO.min-length=5000 +mosip.esignet.auth-challenge.BIO.max-length=300000 + +mosip.esignet.auth-challenge.WLA.format=jwt +mosip.esignet.auth-challenge.WLA.min-length=100 +mosip.esignet.auth-challenge.WLA.max-length=800 + +mosip.esignet.auth-challenge.KBA.format=base64url-encoded-json +mosip.esignet.auth-challenge.KBA.min-length=50 +mosip.esignet.auth-challenge.KBA.max-length=500 + +mosip.esignet.auth-challenge.PIN.format=number +mosip.esignet.auth-challenge.PIN.min-length=4 +mosip.esignet.auth-challenge.PIN.max-length=4 + + +# Endpoints required to have oauth-details-hash and oauth-details-key HTTP header mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authorization/send-otp', \ '${server.servlet.path}/authorization/authenticate', \ '${server.servlet.path}/authorization/v2/authenticate', \ '${server.servlet.path}/authorization/v3/authenticate', \ '${server.servlet.path}/authorization/auth-code'} -mosip.esignet.captcha.required.auth-factors={'PWD'} +#This property is used for captcha validation and allowed values are send-otp and pwd. +#captcha validation is enabled for send-otp and pwd. +mosip.esignet.captcha.required=pwd,send-otp + + ## ------------------------------------------ e-Signet binding --------------------------------------------------------- @@ -92,16 +123,24 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented ## ------------------------------------------- Integrations ------------------------------------------------------------ -mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration +mosip.esignet.integration.scan-base-package=io.mosip.esignet.mock.integration,io.mosip.authentication.esignet.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl +mosip.esignet.integration.authenticator=MockAuthenticationService mosip.esignet.integration.authenticator=IdaAuthenticatorImpl mosip.esignet.integration.key-binder=IdaKeyBinderImpl mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.vci-plugin=IdaVCIssuancePluginImpl +#mosip.esignet.integration.scan-base-package=io.mosip.esignet.sunbirdrc.integration.service,io.mosip.esignet.mock.integration +#mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl +#mosip.esignet.integration.authenticator=SunbirdRCAuthenticationService +#mosip.esignet.integration.key-binder=MockKeyBindingWrapperService +#mosip.esignet.integration.audit-plugin=LoggerAuditService +#mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService +#mosip.esignet.integration.vci-plugin=SunbirdRCVCIssuancePlugin + # captcha validator -mosip.esignet.send-otp.captcha-required=false mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} @@ -146,8 +185,8 @@ mosip.esignet.mock.vciplugin.verification-method=${mosip.esignet.vci.authn.jwk-s mosip.esignet.supported.authorize.scopes={'Manage-Identity-Data','Manage-VID','Manage-Authentication','Manage-Service-Requests','Manage-Credentials'} mosip.esignet.supported.openid.scopes={'profile','email','phone'} mosip.esignet.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number'},'email' : {'email'}, 'phone' : {'phone_number'}} -mosip.esignet.supported.credential.scopes={'mock_identity_vc_ldp', 'mosip_identity_vc_ldp'} -mosip.esignet.credential.scope-resource-mapping={'mock_identity_vc_ldp' : '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'mosip_identity_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential'} +mosip.esignet.supported.credential.scopes={'mock_identity_vc_ldp', 'mosip_identity_vc_ldp','sunbird_rc_insurance_vc_ldp'} +mosip.esignet.credential.scope-resource-mapping={'mock_identity_vc_ldp' : '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'mosip_identity_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'sunbird_rc_insurance_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential'} ## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. mosip.esignet.supported.response.types={'code'} @@ -196,14 +235,15 @@ mosip.esignet.cache.security.algorithm-name=AES/ECB/PKCS5Padding mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction,vcissuance -#spring.cache.type=redis -#spring.cache.cache-names=${mosip.esignet.cache.names} -#spring.redis.host=localhost -#spring.redis.port=6379 +spring.cache.type=redis +spring.cache.cache-names=${mosip.esignet.cache.names} +spring.redis.host=redis-master-0.redis-headless.redis.svc.cluster.local +spring.redis.port=6379 +spring.redis.password=${redis.password} management.health.redis.enabled=false # 'simple' cache type is only applicable only for Non-Production setup -spring.cache.type=simple +#spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 # Cache size setup is applicable only for 'simple' cache type. @@ -224,15 +264,15 @@ mosip.esignet.cache.size={'clientdetails' : 200, \ # Cache expire in seconds is applicable for both 'simple' and 'Redis' cache type mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ -'preauth': 300,\ +'preauth': 600,\ 'authenticated': ${mosip.esignet.authentication-expire-in-secs}, \ -'authcodegenerated': 60, \ +'authcodegenerated': 600, \ 'userinfo': ${mosip.esignet.access-token-expire-seconds}, \ 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ -'linked': 120, \ +'linked': 600, \ 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, \ 'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, \ -'consented': 60, \ +'consented': 600, \ 'authtokens': 86400, \ 'bindingtransaction': 600, \ 'vcissuance': ${mosip.esignet.access-token-expire-seconds} } @@ -278,7 +318,7 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \ \ 'subject_types_supported' : { 'pairwise' }, \ \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ - \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ + \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics', 'mosip:idp:acr:knowledge'},\ \ 'request_parameter_supported' : false, \ \ 'claims_locales_supported' : {'en'}, \ \ 'ui_locales_supported' : {'en'} } @@ -371,21 +411,29 @@ mosip.kernel.keymgr.hsm.health.check.encrypt=true # 2. A new Qrcode will be autogenerated before the expiry of current qr-code, and the time difference in seconds for the same is defined in wallet.qr-code-buffer-in-secs property # 3. If esignet is deployed with MOSIP IDA, then 'resend.otp.delay.secs' must be the same as 'mosip.kernel.otp.expiry-time' -mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ - 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' },{'wallet.name': 'Inji Mobile App1', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ +mosip.esignet.ui.wallet.config={{'wallet.name': 'walletName', 'wallet.logo-url': '/images/qr_code.png', 'wallet.download-uri': '#', \ 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }} mosip.esignet.ui.signup.config={'signup.banner': true, 'signup.url': 'https://${mosip.signup.host}/signup'} mosip.esignet.ui.forgot-password.config={'forgot-password': true, 'forgot-password.url': 'https://${mosip.signup.host}/reset-password'} +## Configuration required to display KBI form. +# individual-id-field is set with field id which should be considered as an individual ID in the authenticate request. +# form-details holds the list of field details like below: +# id -> unique field Id, type -> holds datatype, format -> only supported for date fields, regex -> pattern to validate the input value, maxLength -> number of allowed characters +# Example: mosip.esignet.authenticator.default.auth-factor.kba.field-details={{'id': '${mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field}', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^\\s*[+-]?(\\d+|\\d*\\.\\d+|\\d+\\.\\d*)([Ee][+-]?\\d*)?\\s*$'},{'id':'fullName', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^[A-Za-z\\s]{1,}[\\.]{0,1}[A-Za-z\\s]{0,}$'},{'id':'dob', 'type':'date', 'format':'dd/mm/yyyy'}} +mosip.esignet.authenticator.default.auth-factor.kba.field-details={{'id':'policyNumber', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^\\s*[+-]?(\\d+|\\d*\\.\\d+|\\d+\\.\\d*)([Ee][+-]?\\d*)?\\s*$'},{'id':'fullName', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '\\S*'},{"id":"dob", "type":"date", "format":"dd/mm/yyyy"}} +mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field=policyNumber + +## Configuration Map input to UI at the start of every transaction. mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ - 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'pwd', \ + 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : '${mosip.esignet.captcha.required}', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ - 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': 4501-4600, \ + 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': '4501-4600', \ 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ 'password.max-length': 20, \ 'username.regex': '^[1-9][0-9]{7,8}$',\ @@ -394,7 +442,9 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'username.max-length': 9, \ 'username.input-type': 'number', 'wallet.config': ${mosip.esignet.ui.wallet.config}, \'signup.config': ${mosip.esignet.ui.signup.config}, \ 'forgot-password.config': ${mosip.esignet.ui.forgot-password.config}, \ - 'error.banner.close-timer': 10 \ } + 'error.banner.close-timer': 10,\ + 'auth.factor.kba.individual-id-field' : '${mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field}',\ + 'auth.factor.kba.field-details': ${mosip.esignet.authenticator.default.auth-factor.kba.field-details} } ## ---------------------------------------------- VCI ------------------------------------------------------------------ # Used to verify audience in the PoP JWT @@ -413,7 +463,7 @@ mosip.esignet.vci.key-values={\ 'credential_issuer': '${mosip.esignet.vci.identifier}', \ 'credential_endpoint': '${mosipbox.public.url}${server.servlet.path}/vci/credential', \ 'credentials_supported': {\ - {\ + {\ 'format': 'ldp_vc',\ 'id': 'MockVerifiableCredential_ldp', \ 'scope' : 'mock_identity_vc_ldp',\ @@ -432,6 +482,34 @@ mosip.esignet.vci.key-values={\ 'logo': {'url': '${mosipbox.public.url}/logo.png', 'alt_text': 'a square logo of a MOSIP'},\ 'background_color': '#12107c',\ 'text_color': '#FFFFFF'}}\ + },\ + {\ + 'format': 'ldp_vc',\ + 'id': 'InsuranceCredential', \ + 'scope' : 'sunbird_rc_insurance_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'Ed25519Signature2020'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential','InsuranceCredential'},\ + 'credentialSubject': {\ + 'fullName': {'display': {{'name': 'Name','locale': 'en'}}}, \ + 'mobile': {'display': {{'name': 'Phone Number','locale': 'en'}}},\ + 'dob': {'display': {{'name': 'Date of Birth','locale': 'en'}}},\ + 'gender': {'display': {{'name': 'Gender','locale': 'en'}}},\ + 'benefits': {'display': {{'name': 'Benefits','locale': 'en'}}},\ + 'email': {'display': {{'name': 'Email Id','locale': 'en'}}},\ + 'policyIssuedOn': {'display': {{'name': 'Policy Issued On','locale': 'en'}}},\ + 'policyExpiresOn': {'display': {{'name': 'Policy Expires On','locale': 'en'}}},\ + 'policyName': {'display': {{'name': 'Policy Name','locale': 'en'}}},\ + 'policyNumber': {'display': {{'name': 'Policy Number','locale': 'en'}}}\ + }},\ + 'display': {{'name': 'Sunbird RC Insurance Verifiable Credential', \ + 'locale': 'en', \ + 'logo': {'url': 'https://sunbird.org/images/sunbird-logo-new.png', 'alt_text': 'a square logo of a Sunbird'},\ + 'background_color': '#FDFAF9',\ + 'text_color': '#7C4616'}},\ + 'order' : {'fullName','policyName','policyExpiresOn','policyIssuedOn','policyNumber','mobile','dob','gender','benefits','email'}\ },\ {\ 'format': 'ldp_vc',\ @@ -487,6 +565,33 @@ mosip.esignet.vci.key-values={\ 'background_color': '#12107c',\ 'text_color': '#FFFFFF'}}\ }, \ + 'InsuranceCredential' : {\ + 'format': 'ldp_vc',\ + 'scope' : 'sunbird_rc_insurance_vc_ldp',\ + 'cryptographic_binding_methods_supported': {'did:jwk'},\ + 'cryptographic_suites_supported': {'Ed25519Signature2020'},\ + 'proof_types_supported': {'jwt'},\ + 'credential_definition': {\ + 'type': {'VerifiableCredential','InsuranceCredential'},\ + 'credentialSubject': {\ + 'fullName': {'display': {{'name': 'Name','locale': 'en'}}}, \ + 'mobile': {'display': {{'name': 'Phone Number','locale': 'en'}}},\ + 'dob': {'display': {{'name': 'Date of Birth','locale': 'en'}}},\ + 'gender': {'display': {{'name': 'Gender','locale': 'en'}}},\ + 'benefits': {'display': {{'name': 'Benefits','locale': 'en'}}},\ + 'email': {'display': {{'name': 'Email Id','locale': 'en'}}},\ + 'policyIssuedOn': {'display': {{'name': 'Policy Issued On','locale': 'en'}}},\ + 'policyExpiresOn': {'display': {{'name': 'Policy Expires On','locale': 'en'}}},\ + 'policyName': {'display': {{'name': 'Policy Name','locale': 'en'}}},\ + 'policyNumber': {'display': {{'name': 'Policy Number','locale': 'en'}}}\ + }},\ + 'display': {{'name': 'Sunbird RC Insurance Verifiable Credential', \ + 'locale': 'en', \ + 'logo': {'url': 'https://sunbird.org/images/sunbird-logo-new.png','alt_text': 'a square logo of a Sunbird'},\ + 'background_color': '#FDFAF9',\ + 'text_color': '#7C4616'}},\ + 'order' : {'fullName','policyName','policyExpiresOn','policyIssuedOn','policyNumber','mobile','dob','gender','benefits','email'}\ + },\ 'MOSIPVerifiableCredential_ldp' : {\ 'format': 'ldp_vc',\ 'scope' : 'mosip_identity_vc_ldp',\ @@ -520,3 +625,27 @@ mosip.esignet.vci.key-values={\ #logging.level.org.springframework.web.client.RestTemplate=DEBUG #logging.level.io.mosip.esignet=INFO + +##---------------------------------Sunbird-RC Plugin Configurations------------------------------------------------------ + +mosip.esignet.authenticator.sunbird-rc.auth-factor.kba.individual-id-field=policyNumber +mosip.esignet.authenticator.sunbird-rc.auth-factor.kba.field-details={{"id":"policyNumber", "type":"text", "format":""},{"id":"fullName", "type":"text", "format":""},{"id":"dob", "type":"date", "format":"dd/mm/yyyy"}} +mosip.esignet.authenticator.sunbird-rc.auth-factor.kba.registry-search-url=http://10.3.148.107/registry/api/v1/Insurance/search +mosip.esignet.authenticator.sunbird-rc.kba.entity-id-field=osid + +mosip.esignet.vciplugin.sunbird-rc.enable-psut-based-registry-search=false +mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.registry-search-url=http://10.3.148.107/registry/api/v1/Insurance/search +mosip.esignet.vciplugin.sunbird-rc.issue-credential-url=http://10.3.148.107/credential/credentials/issue +mosip.esignet.vciplugin.sunbird-rc.supported-credential-types=LifeInsuranceCredential,InsuranceCredential +mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.static-value-map.issuerId=did:web:holashchand.github.io:test_project:32b08ca7-9979-4f42-aacc-1d73f3ac5322 +mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.template-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/insurance-credential.json +mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.registry-get-url=http://10.3.148.107/registry/api/v1/Insurance/ +mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.cred-schema-id=did:schema:0d10a2cf-94de-4ffc-b32c-4f1a61ee05ba +mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.cred-schema-version=1.0.0 + +mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.static-value-map.issuerId=did:web:holashchand.github.io:test_project:32b08ca7-9979-4f42-aacc-1d73f3ac5322 +mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.template-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/life-insurance-credential.json +mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.registry-get-url=http://10.3.148.107/registry/api/v1/Insurance/ +mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.cred-schema-id=did:schema:0d10a2cf-94de-4ffc-b32c-4f1a61ee05ba +mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.cred-schema-version=1.0.0 +mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.registry-search-url=http://10.3.148.107/registry/api/v1/Insurance/search From 478249da4babcb1dc6b4fc396c40ec7393b931b1 Mon Sep 17 00:00:00 2001 From: abhishek8shankar <127825992+abhishek8shankar@users.noreply.github.com> Date: Tue, 14 May 2024 11:53:01 +0530 Subject: [PATCH 1342/1358] [DSD-5255] Update esignet-default.properties Signed-off-by: abhishek8shankar <127825992+abhishek8shankar@users.noreply.github.com> --- esignet-default.properties | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 48b8a2a3214..9daf9167f48 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -436,10 +436,10 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': '4501-4600', \ 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ 'password.max-length': 20, \ - 'username.regex': '^[1-9][0-9]{7,8}$',\ - 'username.prefix': '+855', \ - 'username.postfix': '@phone', \ - 'username.max-length': 9, \ + 'username.regex': '^[0-9]{10,30}$',\ + 'username.prefix': '', \ + 'username.postfix': '', \ + 'username.max-length': 16, \ 'username.input-type': 'number', 'wallet.config': ${mosip.esignet.ui.wallet.config}, \'signup.config': ${mosip.esignet.ui.signup.config}, \ 'forgot-password.config': ${mosip.esignet.ui.forgot-password.config}, \ 'error.banner.close-timer': 10,\ From ba84e4c124183d43f9f1c738a6776facd83e0f0d Mon Sep 17 00:00:00 2001 From: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> Date: Wed, 15 May 2024 10:59:50 +0530 Subject: [PATCH 1343/1358] [ES-952]Update esignet-default.properties (#6117) Signed-off-by: Balaji Alluru <74903654+balaji-alluru@users.noreply.github.com> --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index 9daf9167f48..432177de530 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -76,7 +76,7 @@ mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authoriza #This property is used for captcha validation and allowed values are send-otp and pwd. #captcha validation is enabled for send-otp and pwd. -mosip.esignet.captcha.required=pwd,send-otp +mosip.esignet.captcha.required= From 114cdb75f0b0154138d8b7c53fbe4da11dc83840 Mon Sep 17 00:00:00 2001 From: syed salman <syedsalman3753@gmail.com> Date: Fri, 24 May 2024 18:15:05 +0530 Subject: [PATCH 1344/1358] [DSD-4578] Updated kernel-default.properties for PKCS12 Signed-off-by: syed salman <syedsalman3753@gmail.com> --- kernel-default.properties | 10 +- migration-default.properties | 772 +++++++++++++++++++++++++++++++++++ 2 files changed, 777 insertions(+), 5 deletions(-) create mode 100644 migration-default.properties diff --git a/kernel-default.properties b/kernel-default.properties index 61227265940..5978d2a6e2c 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -73,11 +73,11 @@ spring.servlet.multipart.max-file-size=5MB ## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE -mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +mosip.kernel.keymanager.hsm.keystore-type=PKCS12 # For PKCS11 provide Path of config file. # For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. # For Offline & JCE property can be left blank, specified value will be ignored. -mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +mosip.kernel.keymanager.hsm.config-path=/home/mosip/config/keys.p12 # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} @@ -345,11 +345,11 @@ mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD,COMPLIANCE_TOOLKIT ## Random keys required for ZK encrypt. -zkcrypto.random.key.generate.count=10000 +zkcrypto.random.key.generate.count=0 -mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident,COMPLIANCE_TOOLKIT:COMP-FIR +mosip.kernel.keymanager.autogen.basekeys.list= # Keymanager service keystore cache properties mosip.kernel.keymanager.keystore.keyreference.enable.cache=false @@ -433,7 +433,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client +auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client,mosip-migration-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} diff --git a/migration-default.properties b/migration-default.properties new file mode 100644 index 00000000000..148af18732f --- /dev/null +++ b/migration-default.properties @@ -0,0 +1,772 @@ +# Follow properites have their values assigned via 'overrides' environment variables of config server docker. +# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server +# helm chart: +# db.dbuser.password +# keycloak.external.url +# keycloak.internal.host +# keycloak.internal.url +# keycloak.admin.password +# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) +# mosip.ida.client.secret +# mosip.admin.client.secret +# mosip.reg.client.secret +# mosip.prereg.client.secret +# softhsm.kernel.security.pin +# softhsm-security-pin +# email.smtp.host +# email.smtp.username +# email.smtp.secret +# mosip.kernel.tokenid.uin.salt +# mosip.kernel.tokenid.partnercode.salt +# mosip.api.internal.url + +softhsm.kernel.security.pin=${softhsm.security.pin} + +## Sync data +mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager +mosip.kernel.syncdata.auth-manager-roles=/roles +mosip.kernel.syncdata.auth-user-details=/userdetails +mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST +mosip.kernel.syncdata.syncdata-version-id=v1.0 +# Name of the file that is present in the config server which has registration specific config. +mosip.kernel.syncdata.registration-center-config-file=registration-${spring.profiles.active}.properties +# Name of the file that is present in the config server which has global config. +mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties +mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef +mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest + +## SMS notification +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+91 +mosip.kernel.sms.number.length=10 +#mosip.kernel.sms.gateway : "infobip" or "msg91" +mosip.kernel.sms.gateway=${sms.gateway.provider} +## --msg91 gateway-- +mosip.kernel.sms.api=smsapi +mosip.kernel.sms.authkey=${sms.authkey} +mosip.kernel.sms.route=route +mosip.kernel.sms.sender=sender +mosip.kernel.sms.unicode=unicode + +mosip.kernel.sms.enabled=true +mosip.kernel.sms.country.code=+91 +mosip.kernel.sms.number.length=10 +mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms +mosip.kernel.sms.sender=AD-MOSIP +mosip.kernel.sms.password=dummy +mosip.kernel.sms.route=mock + +## Email notification +mosip.kernel.notification.email.from=do-not-reply@mosip.io +spring.mail.host=${smtp.host} +spring.mail.username=${smtp.username} +spring.mail.password=${smtp.secret} +spring.mail.port=${smtp.port} +spring.mail.properties.mail.transport.protocol=smtp +spring.mail.properties.mail.smtp.starttls.required=false +spring.mail.properties.mail.smtp.starttls.enable=false +spring.mail.properties.mail.smtp.auth=false +spring.mail.debug=false +spring.servlet.multipart.enabled=true +spring.servlet.multipart.max-file-size=5MB + + +## Keymanager service +#Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +# For PKCS11 provide Path of config file. +# For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. +# For Offline & JCE property can be left blank, specified value will be ignored. +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +# Passkey of keystore for PKCS11, PKCS12 +# For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. +mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} +# Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets +mosip.kernel.client.crypto.use-resident-service-module-key=true + +## Auditmanager +mosip.kernel.auditmanager-service-logs-location=logs/audit.log + +## Auth service +auth.jwt.secret=authjwtsecret +auth.jwt.base=Mosip-Token +auth.jwt.expiry=6000000 +auth.token.header=Authorization +auth.refreshtoken.header=RefreshToken +auth.jwt.refresh.expiry=86400000 +auth.primary.language=eng + +otp.manager.api.generate=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate +otp.manager.api.verify=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/validate +otp.sender.api.email.send=${mosip.kernel.notification.url}/v1/notifier/email/send +otp.sender.api.sms.send=${mosip.kernel.notification.url}/v1/notifier/sms/send +masterdata.api.template=${mosip.kernel.masterdata.url}/v1/masterdata/templates/ +masterdata.api.template.otp=/otp-sms-template +idrepo.api.getuindetails=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} + +mosip.kernel.auth.app.id=auth +mosip.kernel.auth.client.id=mosip-auth-client +mosip.kernel.auth.secret.key=${mosip.auth.client.secret} + +mosip.kernel.ida.app.id=ida +mosip.kernel.ida.client.id=mosip-ida-client +mosip.kernel.ida.secret.key=${mosip.ida.client.secret} + +## VID generator service +mosip.kernel.vid.min-unused-threshold=100000 +mosip.kernel.vid.vids-to-generate=200000 +mosip.kernel.vid.time-to-release-after-expiry=5 +mosip.kernel.vid.pool-population-timeout=10000000 +kernel.vid.revoke-scheduler-type=cron +kernel.vid.revoke-scheduler-seconds=0 +kernel.vid.revoke-scheduler-minutes=0 +kernel.vid.revoke-scheduler-hours=23 +kernel.vid.revoke-scheduler-days_of_month=* +kernel.vid.revoke-scheduler-months=* +kernel.vid.revoke-scheduler-days_of_week=* +kernel.vid.isolator-scheduler-type=cron +kernel.vid.isolator-scheduler-seconds=0 +kernel.vid.isolator-scheduler-minutes=0 +kernel.vid.isolator-scheduler-hours=* +kernel.vid.isolator-scheduler-days_of_month=* +kernel.vid.isolator-scheduler-months=* +kernel.vid.isolator-scheduler-days_of_week=* + +## PRID properties +mosip.kernel.prid.min-unused-threshold=1000 +mosip.kernel.prid.prids-to-generate=2000 +mosip.kernel.prid.pool-population-timeout=10000000 +mosip.kernel.prid.sequence-limit=3 +kernel.prid.revoke-scheduler-type=cron +kernel.prid.revoke-scheduler-seconds=0 +kernel.prid.revoke-scheduler-minutes=0 +kernel.prid.revoke-scheduler-hours=23 +kernel.prid.revoke-scheduler-days_of_month=* +kernel.prid.revoke-scheduler-months=* +kernel.prid.revoke-scheduler-days_of_week=* + +## Database properties +# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace +# If database is external to production, provide the DNS or ip of the host and port +mosip.kernel.database.hostname=postgres-postgresql.postgres +mosip.kernel.database.port=5432 + +javax.persistence.jdbc.driver=org.postgresql.Driver +hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect +hibernate.jdbc.lob.non_contextual_creation=true +hibernate.hbm2ddl.auto=none +hibernate.show_sql=false +hibernate.format_sql=false +hibernate.connection.charSet=utf8 +hibernate.cache.use_second_level_cache=false +hibernate.cache.use_query_cache=false +hibernate.cache.use_structured_entries=false +hibernate.generate_statistics=false + +logging.level.org.hibernate.SQL=ERROR +logging.level.org.hibernate.type=ERROR + +admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +admin_database_username=kerneluser +admin_database_password=${db.dbuser.password} + +syncjob_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master +syncjob_database_username=masteruser +syncjob_database_password=${db.dbuser.password} + +audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_audit +audit_database_username=audituser +audit_database_password=${db.dbuser.password} + +masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master +masterdata_database_username=masteruser +masterdata_database_password=${db.dbuser.password} + +uin.swagger.base-url=https://qa.mosip.io +uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +uin_database_username=kerneluser +uin_database_password=${db.dbuser.password} +hibernate.current_session_context_class=org.springframework.orm.hibernate5.SpringSessionContext + +id_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +id_database_username=kerneluser +id_database_password=${db.dbuser.password} + +vid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +vid_database_username=kerneluser +vid_database_password=${db.dbuser.password} + +prid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +prid_database_username=kerneluser +prid_database_password=${db.dbuser.password} + +keymanager.persistence.jdbc.driver=org.postgresql.Driver +keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_keymgr_src +keymanager_database_password=${db.dbuser.password} +keymanager_database_username= keymgruser + +otpmanager_database_username = kerneluser +otpmanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +otpmanager_database_password=${db.dbuser.password} + +syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master +syncdata_database_username=masteruser +syncdata_database_password=${db.dbuser.password} + +ridgenerator_database_username =regprcuser +ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc +ridgenerator_database_password=${db.dbuser.password} + +## Keycloak properties +mosip.iam.base.url=${keycloak.internal.url} +mosip.iam.base-url=${mosip.iam.base.url} +mosip.iam.admin-realm-id=admin +mosip.iam.default.realm-id=mosip +mosip.iam.open-id-url=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/ +mosip.iam.realm.operations.base-url=${mosip.iam.base.url}/auth/admin/realms/{realmId} +mosip.iam.admin-url=${mosip.iam.base.url}/auth/admin/ +mosip.iam.roles-extn-url=realms/mosip/roles +mosip.iam.users-extn-url=realms/mosip/users +mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm +mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users +keycloak.realm=registration-client +keycloak.resource=account +keycloak.auth-server-url=${mosip.iam.base.url}/auth +keycloak.ssl-required=none +keycloak.public-client=true +keycloak.use-resource-role-mappings=true +keycloak.verify-token-audience=true + +#This is the endpoint use by ui(browser) based applications to redirect to open-id system. This URL should be reachable through the browser. +mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth + +mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token +mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager +mosip.admin.login_flow.name=authorization_code +mosip.admin.login_flow.response_type=code +mosip.admin.login_flow.scope=cls +mosip.admin.clientid=mosip-admin-client +mosip.admin.clientsecret=${mosip.admin.client.secret} +mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ +mosip.admin_realm_id=mosip +mosip.iam.master.realm-id=master +mosip.iam.pre-reg_user_password=mosip + +## TODO: Below config is not needed anymore. Need to remove init of db_3_DS in authmanager code. For now, we just +## point to a valid db. +#db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak +db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel +db_3_DS.keycloak.port=${mosip.kernel.database.port} +db_3_DS.keycloak.username=kerneluser +db_3_DS.keycloak.password=${db.dbuser.password} +db_3_DS.keycloak.driverClassName=org.postgresql.Driver + +mosip.keycloak.admin.client.id=admin-cli +mosip.keycloak.admin.user.id=admin +mosip.keycloak.admin.secret.key=${keycloak.admin.password} + +mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl +mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter + + +master.search.maximum.rows=50 +mosip.level=2 +mosip.kernel.masterdata.audit-url= ${mosip.kernel.auditmanager.url}/v1/auditmanager/audits +mosip.keycloak.max-no-of-users=20000 + +## Register device +# Keymanager runs in separate namespace "keymanager" +mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/sign +masterdata.registerdevice.timestamp.validate=+10 + +## Prereg +mosip.kernel.prereg.realm-id=mosip +mosip.kernel.prereg.client.id=mosip-prereg-client +mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} + +## UIN scheduler +kernel.uin.transfer-scheduler-type=cron +kernel.uin.transfer-scheduler-seconds=0 +kernel.uin.transfer-scheduler-minutes=0 +kernel.uin.transfer-scheduler-hours=* +kernel.uin.transfer-scheduler-days_of_month=* +kernel.uin.transfer-scheduler-months=* +kernel.uin.transfer-scheduler-days_of_week=* + +## UIN Auth adapter config +auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken + + +## Proxy otp +#mosip.kernel.auth.proxy-otp=false +mosip.kernel.auth.proxy-otp-value=111111 +mosip.security.provider.name=SunPKCS11-pkcs11-proxy + +## identity schema backward compatability ######## +mosip.ui.spec.default.domain=registration-client + +## Security properties +mosip.security.csrf-enable=false +mosip.security.cors-enable=false +mosip.security.origins=localhost:8080 +mosip.security.secure-cookie=false + +## ROOT key identifier +mosip.root.key.applicationid=ROOT + +## Certificate signing algorithm +mosip.kernel.certificate.sign.algorithm=SHA256withRSA + +## Default certificate params +mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io +mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER +mosip.kernel.keymanager.certificate.default.organization=IITB +mosip.kernel.keymanager.certificate.default.location=BANGALORE +mosip.kernel.keymanager.certificate.default.state=KA +mosip.kernel.keymanager.certificate.default.country=IN + +## Zero Knowledge Master & Public Key identifier. +mosip.kernel.zkcrypto.masterkey.application.id=KERNEL +mosip.kernel.zkcrypto.masterkey.reference.id=IDENTITY_CACHE +mosip.kernel.zkcrypto.publickey.application.id=IDA +mosip.kernel.zkcrypto.publickey.reference.id=PUBLIC_KEY +mosip.kernel.zkcrypto.wrap.algorithm-name=AES/ECB/NoPadding +mosip.kernel.zkcrypto.derive.encrypt.algorithm-name=AES/ECB/PKCS5Padding + +## Application Id for PMS master key. +mosip.kernel.partner.sign.masterkey.application.id=PMS + +datastores=ldap_1_DS,db_1_DS,db_2_DS + +## Partner Management Service allowed partner domains +mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP + +## List of keys to auto generate. +mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD,COMPLIANCE_TOOLKIT + +## Random keys required for ZK encrypt. +zkcrypto.random.key.generate.count=10000 + + + +mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident,COMPLIANCE_TOOLKIT:COMP-FIR + +# Keymanager service keystore cache properties +mosip.kernel.keymanager.keystore.keyreference.enable.cache=false + +# API to get machine based on machine id +mosip.kernel.syncdata-service-machine-url=${mosip.kernel.masterdata.url}/v1/masterdata/machines/%s/eng + +# Flag added to choose client crypto implementation in syncdata service +# Needs to be updated to true in prod deployments +mosip.syncdata.tpm.required=false + +mosip.kernel.registrationclient.app.id=registrationclient +mosip.kernel.registrationclient.client.id=mosip-reg-client +# env variable +mosip.kernel.registrationclient.secret.key=${mosip.reg.client.secret} + +# API to fetch auth token and refresh token used by syncdata-service +mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd +mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/userotp +mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient +mosip.kernel.auth.sendotp.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/sendotp + +# Sample Additional configuration required for real HSM configured though JCE. +# Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key +# mosip.kernel.keymanager.hsm.jce.className=io.mosip.keymanager.hsm.impl.AnyHSMKeyStoreImpl +# mosip.kernel.keymanager.hsm.jce.keyStoreType=HSMKeyStoreType +# mosip.kernel.keymanager.hsm.jce.keyStoreFile=AnyRequiredKeyStoreFile +# mosip.kernel.keymanager.hsm.jce.localKeyStorePwd=HSMPartitionPassword + +## syncdata-service websub configuration (cacert sync) +syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED +# Secret for partner CA certificate CRUD callback +syncdata.websub.callback.secret.ca-cert=secret +# Callback url for partner CA certificate CRUD event +syncdata.websub.callback.url.path.ca-cert=/callback/partner/ca_certificate +syncdata.websub.callback.url.ca-cert=${mosip.kernel.syncdata.url}/v1/syncdata/callback/partner/ca_certificate +# Number of retires on subscription failure +syncdata.websub.resubscription.retry.count=3 +# Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. +subscriptions-delay-on-startup=120000 + + +# Pause & resume api proeprties +PACKET_RESUME_API=${mosip.api.internal.url}/registrationprocessor/v1/workflowmanager/workflowaction +PACKET_PAUSE_API=${mosip.api.internal.url}/registrationprocessor/v1/workflowmanager/workflow/search +KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey + +## resubscription and subscription initial delay for masterdata service +masterdata.websub.resubscription.delay.millis=48000000 +masterdata.subscriptions-delay-on-startup=120000 + +# The time interval in seconds to schedule subscription of topics which is done as a +# work-around for the bug: MOSIP-9496. By default the +# this property value is set to 0 that disables this workaround. +# To enable the resubscrition scheduling, this property should be assigned with a positive +# number like 1 * 60 * 60 * 1000 = 3600000 for one hour +syncdata.websub.resubscription.delay.millis=48000000 + +## Admin UI +## this pattern like --> display column : configKey. +## We can provide multiple values with ";" separated +mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns};filterValueMaxCount:{"default":${mosip.kernel.filtervalue.max_columns},"registrationcenters":500,"locations":300} + +# Flag to identify the support of no thumbprint in 1.1.3 version. +# Added this for backward compatability. default is false, means support is not required. +# Make it to true if support is required. +mosip.kernel.keymanager.113nothumbprint.support=false + +## Used to get IAM user details. +mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager +mosip.kernel.masterdata.auth-user-details=/userdetails + + +## scheduler do it's job at 2am +scheduling.job.cron=0 0 2 * * ? + +# masterdata swagger openApi +#openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} +#openapi.service.servers[0].description=For Swagger + +#To fetch user details based on user id and user name in zone API's +zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails + +auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client +mosip.iam.adapter.appid=admin +mosip.iam.adapter.clientid=mosip-admin-client +mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} + +#AdminMaster endpoints to access without authentication +mosip.service-context=/v1/masterdata +mosip.service.end-points={cipher}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 + +spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true + +##validity time of mosip-signed certificates + + +## Roles +mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getapplicationtypeslangcode=PRE_REGISTRATION_ADMIN,RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.postapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postbiometricattributes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER +mosip.role.admin.masterdata.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER +mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,CENTRAL_ADMIN +mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR +mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RESIDENT +mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER +mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postpacketrejectionreasonsreasoncategory=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.postpacketresume=REGISTRATION_ADMIN +mosip.role.admin.masterdata.postpacketsearch=REGISTRATION_ADMIN +mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.postregistereddevices=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION +mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN +mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,ID_REPOSITORY +mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRINT_PARTNER,MASTERDATA_ADMIN +mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettemplatefileformatslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchtemplatefileformats=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttemplatetypes=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitle=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.gettitleall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.postuispecpublish=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getuispecall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN +mosip.role.admin.masterdata.getusersid=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusers=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR +mosip.role.admin.masterdata.getusercentermapping=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserdetails=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getuserssearch=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT +mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN +mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION +mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN +mosip.role.admin.masterdata.deletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.patchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.postdynamicfieldsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN +mosip.role.admin.masterdata.putlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN +mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL +mosip.role.kernel.postotpgenerate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getotpvalidate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER +mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT +mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN,ID_REPOSITORY,HOTLIST_ADMIN +mosip.role.keymanager.postcssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postcsverifysign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmsigningpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.posttpmencryptionpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST,HOTLIST_ADMIN +mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST,HOTLIST_ADMIN +mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER +mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postuploadotherdomaincertificate=PARTNER_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postmigratebasekey=KEY_MIGRATION_ADMIN +mosip.role.keymanager.getzktempcertificate=KEY_MIGRATION_ADMIN +mosip.role.keymanager.postlicensegenerate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postmigratezkkeys=KEY_MIGRATION_ADMIN +mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN +mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER +mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER +mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_REQUEST +mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT +mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT +mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postcwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postcwtdecode=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postcwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE +mosip.role.keymanager.postgenerateargon2hash=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT + +mosip.kernel.keymanager.jwtsign.validate.json=false + +auth.allowed.urls=http://localhost:5000/ + +##These properties are used for validation in kernel-masterdata-service +#For example, Arabic needs to be added along with english +#the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag +#the final value in this case might look like [^a-z\u0600-\u06FF] +mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] +mosip.kernel.masterdata.name.validate.regex=[^a-z] +# query param usd to refer url to redirect after logout +mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri +# end session endpoint in OIDC +mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout +mosip.kernel.keymgr.hsm.health.check.enabled=false + +# HSM Key-migration properties +mosip.kernel.keymanager.keymigration.auth.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey +mosip.kernel.keymanager.keymigration.auth.appId=ida +# <clientId with KEY_MIGRATION_ADMIN role> +mosip.kernel.keymanager.keymigration.auth.cliendId=mosip-migration-client +mosip.kernel.keymanager.keymigration.auth.secretKey=${mosip.migration.client.secret} +mosip.kernel.keymanager.keymigration.getcertificate.url=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate +mosip.kernel.keymanager.keymigration.uploadkey.url=${mosip.kernel.keymanager.url}/v1/keymanager/migrateBaseKey +mosip.kernel.keymanager.keymigration.getzktempcertificate.url=${mosip.kernel.keymanager.url}/v1/keymanager/getZKTempCertificate +mosip.kernel.keymanager.keymigration.zkkeys.migration.batch.size=500 +mosip.kernel.keymanager.keymigration.zkUploadkey.url=${mosip.kernel.keymanager.url}/v1/keymanager/migrateZKKeys From ad10df72db18d39b951d912f8f9258a5baabc1d4 Mon Sep 17 00:00:00 2001 From: syed salman <syedsalman3753@gmail.com> Date: Fri, 24 May 2024 22:48:24 +0530 Subject: [PATCH 1345/1358] [DSD-4578] Updated id-authentication-default.properties for PKCS12 Signed-off-by: syed salman <syedsalman3753@gmail.com> --- id-authentication-default.properties | 11 +++++++--- migration-default.properties | 32 +++++++++++++++------------- 2 files changed, 25 insertions(+), 18 deletions(-) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 690970bea5f..7f335febb1c 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -446,9 +446,14 @@ ida.credential.store.retry.backoff.exponential.max.interval.millisecs=120000 ## Configurations needed for dependent libraries ## Softhsm mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io -mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf -mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +mosip.kernel.keymanager.hsm.config-path=/home/mosip/config/keys.p12 +mosip.kernel.keymanager.hsm.keystore-type=PKCS12 mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.ida.security.pin} +# keymigration role +mosip.role.keymanager.postmigratebasekey=KEY_MIGRATION_ADMIN +mosip.role.keymanager.getzktempcertificate=KEY_MIGRATION_ADMIN +mosip.role.keymanager.postmigratezkkeys=KEY_MIGRATION_ADMIN +auth.server.admin.allowed.audience=mosip-migration-client,mpartner-default-auth ## Security - used in Internal Authentication Services by default Kernel Auth Adapter mosip.security.csrf-enable=false @@ -501,7 +506,7 @@ keymanager_database_url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip keymanager_database_username=${mosip.ida.database.user} keymanager_database_password=${db.dbuser.password} mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING,IDA_VCI_EXCHANGE -mosip.kernel.keymanager.autogen.basekeys.list=${application.id}:${internal.reference.id},${application.id}:${partner.reference.id},${application.id}:${partner.biometric.reference.id},${application.id}:${mosip.kernel.zkcrypto.publickey.reference.id},${application.id}:${ida-auth-partner-id} +mosip.kernel.keymanager.autogen.basekeys.list= zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida diff --git a/migration-default.properties b/migration-default.properties index 148af18732f..0f8609b0aea 100644 --- a/migration-default.properties +++ b/migration-default.properties @@ -201,9 +201,10 @@ prid_database_username=kerneluser prid_database_password=${db.dbuser.password} keymanager.persistence.jdbc.driver=org.postgresql.Driver -keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_keymgr_src +keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_ida_src keymanager_database_password=${db.dbuser.password} -keymanager_database_username= keymgruser +keymanager_database_username= idauser +keymanager.persistence.jdbc.schema=ida otpmanager_database_username = kerneluser otpmanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel @@ -341,15 +342,16 @@ datastores=ldap_1_DS,db_1_DS,db_2_DS ## Partner Management Service allowed partner domains mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP -## List of keys to auto generate. -mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD,COMPLIANCE_TOOLKIT - +application.id=IDA +application.name=ID-Authentication +identity-cache.reference.id=IDENTITY_CACHE +mosip.sign.applicationid=${application.id} +mosip.sign.refid=SIGN +# mosip.kernel.zkcrypto.masterkey.reference.id=IDENTITY_CACHE +mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING,IDA_VCI_EXCHANGE ## Random keys required for ZK encrypt. -zkcrypto.random.key.generate.count=10000 - - - -mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident,COMPLIANCE_TOOLKIT:COMP-FIR +zkcrypto.random.key.generate.count=0 +mosip.kernel.keymanager.autogen.basekeys.list= # Keymanager service keystore cache properties mosip.kernel.keymanager.keystore.keyreference.enable.cache=false @@ -759,14 +761,14 @@ mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout mosip.kernel.keymgr.hsm.health.check.enabled=false -# HSM Key-migration properties +## HSM keymigration properties mosip.kernel.keymanager.keymigration.auth.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey mosip.kernel.keymanager.keymigration.auth.appId=ida # <clientId with KEY_MIGRATION_ADMIN role> mosip.kernel.keymanager.keymigration.auth.cliendId=mosip-migration-client mosip.kernel.keymanager.keymigration.auth.secretKey=${mosip.migration.client.secret} -mosip.kernel.keymanager.keymigration.getcertificate.url=${mosip.kernel.keymanager.url}/v1/keymanager/getCertificate -mosip.kernel.keymanager.keymigration.uploadkey.url=${mosip.kernel.keymanager.url}/v1/keymanager/migrateBaseKey -mosip.kernel.keymanager.keymigration.getzktempcertificate.url=${mosip.kernel.keymanager.url}/v1/keymanager/getZKTempCertificate +mosip.kernel.keymanager.keymigration.getcertificate.url=http://keymanager-ida.ida/v1/keymanager/getCertificate +mosip.kernel.keymanager.keymigration.uploadkey.url=http://keymanager-ida.ida/v1/keymanager/migrateBaseKey +mosip.kernel.keymanager.keymigration.getzktempcertificate.url=http://keymanager-ida.ida/v1/keymanager/getZKTempCertificate mosip.kernel.keymanager.keymigration.zkkeys.migration.batch.size=500 -mosip.kernel.keymanager.keymigration.zkUploadkey.url=${mosip.kernel.keymanager.url}/v1/keymanager/migrateZKKeys +mosip.kernel.keymanager.keymigration.zkUploadkey.url=http://keymanager-ida.ida/v1/keymanager/migrateZKKeys From 6704f45f9492e70039fb90fdff18169207d1b089 Mon Sep 17 00:00:00 2001 From: syed salman <syedsalman3753@gmail.com> Date: Fri, 24 May 2024 23:04:03 +0530 Subject: [PATCH 1346/1358] [DSD-4578] Updated id-authentication-default.properties for PKCS12 Signed-off-by: syed salman <syedsalman3753@gmail.com> --- id-authentication-default.properties | 1 + 1 file changed, 1 insertion(+) diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 7f335febb1c..7f577513479 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -664,3 +664,4 @@ mosip.ida.kafka.bootstrap.servers=kafka-0.kafka-headless.${kafka.profile}:${kafk spring.kafka.admin.properties.allow.auto.create.topics=true logging.level.org.apache.kafka=DEBUG #----------------------------------------------------end------------------------------------------ +mosip.kernel.keymgr.hsm.health.check.enabled=false \ No newline at end of file From 4163cba899a7aa0b8f64b8118fa5a44f1819359c Mon Sep 17 00:00:00 2001 From: syed salman <syedsalman3753@gmail.com> Date: Fri, 24 May 2024 23:48:46 +0530 Subject: [PATCH 1347/1358] [DSD-4578] Updated esignet-default.properties for PKCS12 Signed-off-by: syed salman <syedsalman3753@gmail.com> --- esignet-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 432177de530..7eca6a656e5 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -369,11 +369,11 @@ mosip.kernel.certificate.sign.algorithm=SHA256withRSA #mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE -mosip.kernel.keymanager.hsm.keystore-type=PKCS11 +mosip.kernel.keymanager.hsm.keystore-type=PKCS12 # For PKCS11 provide Path of config file. # For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. # For Offline & JCE property can be left blank, specified value will be ignored. -mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +mosip.kernel.keymanager.hsm.config-path=/home/mosip/config/keys.p12 # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.esignet.security.pin} From 0e763dcfd5d83858ce76b7d206500433ab76cebc Mon Sep 17 00:00:00 2001 From: techno-467 <prafulrakhade02@gmail.com> Date: Mon, 17 Jun 2024 16:13:06 +0530 Subject: [PATCH 1348/1358] [DSD-5498] revert back pkcs12 changes from esignet-default.properties, id-authentication-default.properties and kernel-default.properties --- esignet-default.properties | 4 ++-- id-authentication-default.properties | 11 +++-------- kernel-default.properties | 12 +++++------- 3 files changed, 10 insertions(+), 17 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 7eca6a656e5..432177de530 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -369,11 +369,11 @@ mosip.kernel.certificate.sign.algorithm=SHA256withRSA #mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.idp.pin} #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE -mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 # For PKCS11 provide Path of config file. # For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. # For Offline & JCE property can be left blank, specified value will be ignored. -mosip.kernel.keymanager.hsm.config-path=/home/mosip/config/keys.p12 +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.esignet.security.pin} diff --git a/id-authentication-default.properties b/id-authentication-default.properties index 7f577513479..198c3aab59e 100644 --- a/id-authentication-default.properties +++ b/id-authentication-default.properties @@ -446,14 +446,9 @@ ida.credential.store.retry.backoff.exponential.max.interval.millisecs=120000 ## Configurations needed for dependent libraries ## Softhsm mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io -mosip.kernel.keymanager.hsm.config-path=/home/mosip/config/keys.p12 -mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.ida.security.pin} -# keymigration role -mosip.role.keymanager.postmigratebasekey=KEY_MIGRATION_ADMIN -mosip.role.keymanager.getzktempcertificate=KEY_MIGRATION_ADMIN -mosip.role.keymanager.postmigratezkkeys=KEY_MIGRATION_ADMIN -auth.server.admin.allowed.audience=mosip-migration-client,mpartner-default-auth ## Security - used in Internal Authentication Services by default Kernel Auth Adapter mosip.security.csrf-enable=false @@ -506,7 +501,7 @@ keymanager_database_url=jdbc:postgresql://${mosip.ida.database.hostname}:${mosip keymanager_database_username=${mosip.ida.database.user} keymanager_database_password=${db.dbuser.password} mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING,IDA_VCI_EXCHANGE -mosip.kernel.keymanager.autogen.basekeys.list= +mosip.kernel.keymanager.autogen.basekeys.list=${application.id}:${internal.reference.id},${application.id}:${partner.reference.id},${application.id}:${partner.biometric.reference.id},${application.id}:${mosip.kernel.zkcrypto.publickey.reference.id},${application.id}:${ida-auth-partner-id} zkcrypto.random.key.generate.count=0 keymanager.persistence.jdbc.schema=ida diff --git a/kernel-default.properties b/kernel-default.properties index 5978d2a6e2c..ef448f4a506 100644 --- a/kernel-default.properties +++ b/kernel-default.properties @@ -73,11 +73,11 @@ spring.servlet.multipart.max-file-size=5MB ## Keymanager service #Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE -mosip.kernel.keymanager.hsm.keystore-type=PKCS12 +mosip.kernel.keymanager.hsm.keystore-type=PKCS11 # For PKCS11 provide Path of config file. # For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. # For Offline & JCE property can be left blank, specified value will be ignored. -mosip.kernel.keymanager.hsm.config-path=/home/mosip/config/keys.p12 +mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf # Passkey of keystore for PKCS11, PKCS12 # For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} @@ -345,11 +345,9 @@ mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP mosip.kernel.keymanager.autogen.appids.list=ROOT,KERNEL:SIGN,PRE_REGISTRATION,REGISTRATION,REGISTRATION_PROCESSOR,ID_REPO,KERNEL:IDENTITY_CACHE,RESIDENT,PMS,ADMIN_SERVICES,DIGITAL_CARD,COMPLIANCE_TOOLKIT ## Random keys required for ZK encrypt. -zkcrypto.random.key.generate.count=0 +zkcrypto.random.key.generate.count=10000 - - -mosip.kernel.keymanager.autogen.basekeys.list= +mosip.kernel.keymanager.autogen.basekeys.list=RESIDENT:mpartner-default-resident,COMPLIANCE_TOOLKIT:COMP-FIR # Keymanager service keystore cache properties mosip.kernel.keymanager.keystore.keyreference.enable.cache=false @@ -433,7 +431,7 @@ scheduling.job.cron=0 0 2 * * ? #To fetch user details based on user id and user name in zone API's zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails -auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client,mosip-migration-client +auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client mosip.iam.adapter.appid=admin mosip.iam.adapter.clientid=mosip-admin-client mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} From b6b1586e4d273650478dbe9b162437a1fe962099 Mon Sep 17 00:00:00 2001 From: techno-467 <prafulrakhade02@gmail.com> Date: Mon, 17 Jun 2024 16:16:24 +0530 Subject: [PATCH 1349/1358] [DSD-5498] revert back pkcs12 changes from esignet-default.properties, id-authentication-default.properties and kernel-default.properties --- migration-default.properties | 774 ----------------------------------- 1 file changed, 774 deletions(-) delete mode 100644 migration-default.properties diff --git a/migration-default.properties b/migration-default.properties deleted file mode 100644 index 0f8609b0aea..00000000000 --- a/migration-default.properties +++ /dev/null @@ -1,774 +0,0 @@ -# Follow properites have their values assigned via 'overrides' environment variables of config server docker. -# DO NOT define these in any of the property files. They must be passed as env variables. Refer to config-server -# helm chart: -# db.dbuser.password -# keycloak.external.url -# keycloak.internal.host -# keycloak.internal.url -# keycloak.admin.password -# mosip.auth.client.secret (convention: <realm>.<keycloak client name>.secret) -# mosip.ida.client.secret -# mosip.admin.client.secret -# mosip.reg.client.secret -# mosip.prereg.client.secret -# softhsm.kernel.security.pin -# softhsm-security-pin -# email.smtp.host -# email.smtp.username -# email.smtp.secret -# mosip.kernel.tokenid.uin.salt -# mosip.kernel.tokenid.partnercode.salt -# mosip.api.internal.url - -softhsm.kernel.security.pin=${softhsm.security.pin} - -## Sync data -mosip.kernel.syncdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager -mosip.kernel.syncdata.auth-manager-roles=/roles -mosip.kernel.syncdata.auth-user-details=/userdetails -mosip.kernel.syncdata.syncdata-request-id=SYNCDATA.REQUEST -mosip.kernel.syncdata.syncdata-version-id=v1.0 -# Name of the file that is present in the config server which has registration specific config. -mosip.kernel.syncdata.registration-center-config-file=registration-${spring.profiles.active}.properties -# Name of the file that is present in the config server which has global config. -mosip.kernel.syncdata.global-config-file=application-${spring.profiles.active}.properties -mosip.kernel.syncdata.syncjob-base-url=${mosip.kernel.syncdata.syncjob.url}/v1/syncjob/syncjobdef -mosip.kernel.syncdata-service-idschema-url=${mosip.kernel.masterdata.url}/v1/masterdata/idschema/latest - -## SMS notification -mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+91 -mosip.kernel.sms.number.length=10 -#mosip.kernel.sms.gateway : "infobip" or "msg91" -mosip.kernel.sms.gateway=${sms.gateway.provider} -## --msg91 gateway-- -mosip.kernel.sms.api=smsapi -mosip.kernel.sms.authkey=${sms.authkey} -mosip.kernel.sms.route=route -mosip.kernel.sms.sender=sender -mosip.kernel.sms.unicode=unicode - -mosip.kernel.sms.enabled=true -mosip.kernel.sms.country.code=+91 -mosip.kernel.sms.number.length=10 -mosip.kernel.sms.api=http://${sms.host}:${sms.port}/sendsms -mosip.kernel.sms.sender=AD-MOSIP -mosip.kernel.sms.password=dummy -mosip.kernel.sms.route=mock - -## Email notification -mosip.kernel.notification.email.from=do-not-reply@mosip.io -spring.mail.host=${smtp.host} -spring.mail.username=${smtp.username} -spring.mail.password=${smtp.secret} -spring.mail.port=${smtp.port} -spring.mail.properties.mail.transport.protocol=smtp -spring.mail.properties.mail.smtp.starttls.required=false -spring.mail.properties.mail.smtp.starttls.enable=false -spring.mail.properties.mail.smtp.auth=false -spring.mail.debug=false -spring.servlet.multipart.enabled=true -spring.servlet.multipart.max-file-size=5MB - - -## Keymanager service -#Type of keystore, Supported Types: PKCS11, PKCS12, Offline, JCE -mosip.kernel.keymanager.hsm.keystore-type=PKCS11 -# For PKCS11 provide Path of config file. -# For PKCS12 keystore type provide the p12/pfx file path. P12 file will be created internally so provide only file path & file name. -# For Offline & JCE property can be left blank, specified value will be ignored. -mosip.kernel.keymanager.hsm.config-path=/config/softhsm-application.conf -# Passkey of keystore for PKCS11, PKCS12 -# For Offline & JCE proer can be left blank. JCE password use other JCE specific properties. -mosip.kernel.keymanager.hsm.keystore-pass=${softhsm.kernel.security.pin} -# Config to allow use of the resident service module keys for client crypto APIs which is used by resident service to sign uin update packets -mosip.kernel.client.crypto.use-resident-service-module-key=true - -## Auditmanager -mosip.kernel.auditmanager-service-logs-location=logs/audit.log - -## Auth service -auth.jwt.secret=authjwtsecret -auth.jwt.base=Mosip-Token -auth.jwt.expiry=6000000 -auth.token.header=Authorization -auth.refreshtoken.header=RefreshToken -auth.jwt.refresh.expiry=86400000 -auth.primary.language=eng - -otp.manager.api.generate=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/generate -otp.manager.api.verify=${mosip.kernel.otpmanager.url}/v1/otpmanager/otp/validate -otp.sender.api.email.send=${mosip.kernel.notification.url}/v1/notifier/email/send -otp.sender.api.sms.send=${mosip.kernel.notification.url}/v1/notifier/sms/send -masterdata.api.template=${mosip.kernel.masterdata.url}/v1/masterdata/templates/ -masterdata.api.template.otp=/otp-sms-template -idrepo.api.getuindetails=${mosip.idrepo.identity.url}/v1/identity/uin/{uin} - -mosip.kernel.auth.app.id=auth -mosip.kernel.auth.client.id=mosip-auth-client -mosip.kernel.auth.secret.key=${mosip.auth.client.secret} - -mosip.kernel.ida.app.id=ida -mosip.kernel.ida.client.id=mosip-ida-client -mosip.kernel.ida.secret.key=${mosip.ida.client.secret} - -## VID generator service -mosip.kernel.vid.min-unused-threshold=100000 -mosip.kernel.vid.vids-to-generate=200000 -mosip.kernel.vid.time-to-release-after-expiry=5 -mosip.kernel.vid.pool-population-timeout=10000000 -kernel.vid.revoke-scheduler-type=cron -kernel.vid.revoke-scheduler-seconds=0 -kernel.vid.revoke-scheduler-minutes=0 -kernel.vid.revoke-scheduler-hours=23 -kernel.vid.revoke-scheduler-days_of_month=* -kernel.vid.revoke-scheduler-months=* -kernel.vid.revoke-scheduler-days_of_week=* -kernel.vid.isolator-scheduler-type=cron -kernel.vid.isolator-scheduler-seconds=0 -kernel.vid.isolator-scheduler-minutes=0 -kernel.vid.isolator-scheduler-hours=* -kernel.vid.isolator-scheduler-days_of_month=* -kernel.vid.isolator-scheduler-months=* -kernel.vid.isolator-scheduler-days_of_week=* - -## PRID properties -mosip.kernel.prid.min-unused-threshold=1000 -mosip.kernel.prid.prids-to-generate=2000 -mosip.kernel.prid.pool-population-timeout=10000000 -mosip.kernel.prid.sequence-limit=3 -kernel.prid.revoke-scheduler-type=cron -kernel.prid.revoke-scheduler-seconds=0 -kernel.prid.revoke-scheduler-minutes=0 -kernel.prid.revoke-scheduler-hours=23 -kernel.prid.revoke-scheduler-days_of_month=* -kernel.prid.revoke-scheduler-months=* -kernel.prid.revoke-scheduler-days_of_week=* - -## Database properties -# Database hostname below is assuming postgres is running inside cluster in 'postgres' namespace -# If database is external to production, provide the DNS or ip of the host and port -mosip.kernel.database.hostname=postgres-postgresql.postgres -mosip.kernel.database.port=5432 - -javax.persistence.jdbc.driver=org.postgresql.Driver -hibernate.dialect=org.hibernate.dialect.PostgreSQL95Dialect -hibernate.jdbc.lob.non_contextual_creation=true -hibernate.hbm2ddl.auto=none -hibernate.show_sql=false -hibernate.format_sql=false -hibernate.connection.charSet=utf8 -hibernate.cache.use_second_level_cache=false -hibernate.cache.use_query_cache=false -hibernate.cache.use_structured_entries=false -hibernate.generate_statistics=false - -logging.level.org.hibernate.SQL=ERROR -logging.level.org.hibernate.type=ERROR - -admin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -admin_database_username=kerneluser -admin_database_password=${db.dbuser.password} - -syncjob_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -syncjob_database_username=masteruser -syncjob_database_password=${db.dbuser.password} - -audit_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_audit -audit_database_username=audituser -audit_database_password=${db.dbuser.password} - -masterdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -masterdata_database_username=masteruser -masterdata_database_password=${db.dbuser.password} - -uin.swagger.base-url=https://qa.mosip.io -uin_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -uin_database_username=kerneluser -uin_database_password=${db.dbuser.password} -hibernate.current_session_context_class=org.springframework.orm.hibernate5.SpringSessionContext - -id_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -id_database_username=kerneluser -id_database_password=${db.dbuser.password} - -vid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -vid_database_username=kerneluser -vid_database_password=${db.dbuser.password} - -prid_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -prid_database_username=kerneluser -prid_database_password=${db.dbuser.password} - -keymanager.persistence.jdbc.driver=org.postgresql.Driver -keymanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_ida_src -keymanager_database_password=${db.dbuser.password} -keymanager_database_username= idauser -keymanager.persistence.jdbc.schema=ida - -otpmanager_database_username = kerneluser -otpmanager_database_url = jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -otpmanager_database_password=${db.dbuser.password} - -syncdata_database_url=jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_master -syncdata_database_username=masteruser -syncdata_database_password=${db.dbuser.password} - -ridgenerator_database_username =regprcuser -ridgenerator_database_url =jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_regprc -ridgenerator_database_password=${db.dbuser.password} - -## Keycloak properties -mosip.iam.base.url=${keycloak.internal.url} -mosip.iam.base-url=${mosip.iam.base.url} -mosip.iam.admin-realm-id=admin -mosip.iam.default.realm-id=mosip -mosip.iam.open-id-url=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/ -mosip.iam.realm.operations.base-url=${mosip.iam.base.url}/auth/admin/realms/{realmId} -mosip.iam.admin-url=${mosip.iam.base.url}/auth/admin/ -mosip.iam.roles-extn-url=realms/mosip/roles -mosip.iam.users-extn-url=realms/mosip/users -mosip.iam.role-user-mapping-url=/{userId}/role-mappings/realm -mosip.iam.role-based-user-url=realms/{realm}/roles/{role-name}/users -keycloak.realm=registration-client -keycloak.resource=account -keycloak.auth-server-url=${mosip.iam.base.url}/auth -keycloak.ssl-required=none -keycloak.public-client=true -keycloak.use-resource-role-mappings=true -keycloak.verify-token-audience=true - -#This is the endpoint use by ui(browser) based applications to redirect to open-id system. This URL should be reachable through the browser. -mosip.iam.authorization_endpoint=${keycloak.external.url}/auth/realms/{realmId}/protocol/openid-connect/auth - -mosip.iam.token_endpoint=${mosip.iam.base.url}/auth/realms/{realmId}/protocol/openid-connect/token -mosip.authmanager.base-url=${mosip.kernel.authmanager.url}/v1/authmanager -mosip.admin.login_flow.name=authorization_code -mosip.admin.login_flow.response_type=code -mosip.admin.login_flow.scope=cls -mosip.admin.clientid=mosip-admin-client -mosip.admin.clientsecret=${mosip.admin.client.secret} -mosip.admin.redirecturi=${mosip.authmanager.base-url}/login-redirect/ -mosip.admin_realm_id=mosip -mosip.iam.master.realm-id=master -mosip.iam.pre-reg_user_password=mosip - -## TODO: Below config is not needed anymore. Need to remove init of db_3_DS in authmanager code. For now, we just -## point to a valid db. -#db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/keycloak -db_3_DS.keycloak.ipaddress= jdbc:postgresql://${mosip.kernel.database.hostname}:${mosip.kernel.database.port}/mosip_kernel -db_3_DS.keycloak.port=${mosip.kernel.database.port} -db_3_DS.keycloak.username=kerneluser -db_3_DS.keycloak.password=${db.dbuser.password} -db_3_DS.keycloak.driverClassName=org.postgresql.Driver - -mosip.keycloak.admin.client.id=admin-cli -mosip.keycloak.admin.user.id=admin -mosip.keycloak.admin.secret.key=${keycloak.admin.password} - -mosip.iam.impl.basepackage=io.mosip.kernel.auth.defaultimpl -mosip.auth.adapter.impl.basepackage=io.mosip.kernel.auth.defaultadapter - - -master.search.maximum.rows=50 -mosip.level=2 -mosip.kernel.masterdata.audit-url= ${mosip.kernel.auditmanager.url}/v1/auditmanager/audits -mosip.keycloak.max-no-of-users=20000 - -## Register device -# Keymanager runs in separate namespace "keymanager" -mosip.kernel.sign-url=${mosip.kernel.keymanager.url}/v1/keymanager/sign -masterdata.registerdevice.timestamp.validate=+10 - -## Prereg -mosip.kernel.prereg.realm-id=mosip -mosip.kernel.prereg.client.id=mosip-prereg-client -mosip.kernel.prereg.secret.key=${mosip.prereg.client.secret} - -## UIN scheduler -kernel.uin.transfer-scheduler-type=cron -kernel.uin.transfer-scheduler-seconds=0 -kernel.uin.transfer-scheduler-minutes=0 -kernel.uin.transfer-scheduler-hours=* -kernel.uin.transfer-scheduler-days_of_month=* -kernel.uin.transfer-scheduler-months=* -kernel.uin.transfer-scheduler-days_of_week=* - -## UIN Auth adapter config -auth.server.admin.validate.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/admin/validateToken - - -## Proxy otp -#mosip.kernel.auth.proxy-otp=false -mosip.kernel.auth.proxy-otp-value=111111 -mosip.security.provider.name=SunPKCS11-pkcs11-proxy - -## identity schema backward compatability ######## -mosip.ui.spec.default.domain=registration-client - -## Security properties -mosip.security.csrf-enable=false -mosip.security.cors-enable=false -mosip.security.origins=localhost:8080 -mosip.security.secure-cookie=false - -## ROOT key identifier -mosip.root.key.applicationid=ROOT - -## Certificate signing algorithm -mosip.kernel.certificate.sign.algorithm=SHA256withRSA - -## Default certificate params -mosip.kernel.keymanager.certificate.default.common-name=www.mosip.io -mosip.kernel.keymanager.certificate.default.organizational-unit=MOSIP-TECH-CENTER -mosip.kernel.keymanager.certificate.default.organization=IITB -mosip.kernel.keymanager.certificate.default.location=BANGALORE -mosip.kernel.keymanager.certificate.default.state=KA -mosip.kernel.keymanager.certificate.default.country=IN - -## Zero Knowledge Master & Public Key identifier. -mosip.kernel.zkcrypto.masterkey.application.id=KERNEL -mosip.kernel.zkcrypto.masterkey.reference.id=IDENTITY_CACHE -mosip.kernel.zkcrypto.publickey.application.id=IDA -mosip.kernel.zkcrypto.publickey.reference.id=PUBLIC_KEY -mosip.kernel.zkcrypto.wrap.algorithm-name=AES/ECB/NoPadding -mosip.kernel.zkcrypto.derive.encrypt.algorithm-name=AES/ECB/PKCS5Padding - -## Application Id for PMS master key. -mosip.kernel.partner.sign.masterkey.application.id=PMS - -datastores=ldap_1_DS,db_1_DS,db_2_DS - -## Partner Management Service allowed partner domains -mosip.kernel.partner.allowed.domains=AUTH,DEVICE,FTM,MISP - -application.id=IDA -application.name=ID-Authentication -identity-cache.reference.id=IDENTITY_CACHE -mosip.sign.applicationid=${application.id} -mosip.sign.refid=SIGN -# mosip.kernel.zkcrypto.masterkey.reference.id=IDENTITY_CACHE -mosip.kernel.keymanager.autogen.appids.list=ROOT,${application.id},${mosip.sign.applicationid}:${mosip.sign.refid},${application.id}:${mosip.kernel.zkcrypto.masterkey.reference.id},IDA_KYC_EXCHANGE,IDA_KEY_BINDING,IDA_VCI_EXCHANGE -## Random keys required for ZK encrypt. -zkcrypto.random.key.generate.count=0 -mosip.kernel.keymanager.autogen.basekeys.list= - -# Keymanager service keystore cache properties -mosip.kernel.keymanager.keystore.keyreference.enable.cache=false - -# API to get machine based on machine id -mosip.kernel.syncdata-service-machine-url=${mosip.kernel.masterdata.url}/v1/masterdata/machines/%s/eng - -# Flag added to choose client crypto implementation in syncdata service -# Needs to be updated to true in prod deployments -mosip.syncdata.tpm.required=false - -mosip.kernel.registrationclient.app.id=registrationclient -mosip.kernel.registrationclient.client.id=mosip-reg-client -# env variable -mosip.kernel.registrationclient.secret.key=${mosip.reg.client.secret} - -# API to fetch auth token and refresh token used by syncdata-service -mosip.kernel.authtoken.NEW.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/useridPwd -mosip.kernel.authtoken.OTP.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/internal/userotp -mosip.kernel.authtoken.REFRESH.internal.url=${mosip.kernel.authmanager.url}/v1/authmanager/authorize/internal/refreshToken/registrationclient -mosip.kernel.auth.sendotp.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/sendotp - -# Sample Additional configuration required for real HSM configured though JCE. -# Add the required JCE properties with prefix. - "mosip.kernel.keymanager.hsm.jce" for the property key -# mosip.kernel.keymanager.hsm.jce.className=io.mosip.keymanager.hsm.impl.AnyHSMKeyStoreImpl -# mosip.kernel.keymanager.hsm.jce.keyStoreType=HSMKeyStoreType -# mosip.kernel.keymanager.hsm.jce.keyStoreFile=AnyRequiredKeyStoreFile -# mosip.kernel.keymanager.hsm.jce.localKeyStorePwd=HSMPartitionPassword - -## syncdata-service websub configuration (cacert sync) -syncdata.websub.topic.ca-cert=CA_CERTIFICATE_UPLOADED -# Secret for partner CA certificate CRUD callback -syncdata.websub.callback.secret.ca-cert=secret -# Callback url for partner CA certificate CRUD event -syncdata.websub.callback.url.path.ca-cert=/callback/partner/ca_certificate -syncdata.websub.callback.url.ca-cert=${mosip.kernel.syncdata.url}/v1/syncdata/callback/partner/ca_certificate -# Number of retires on subscription failure -syncdata.websub.resubscription.retry.count=3 -# Delay (in milliseconds) for subscription on application startup to avoid failure during intent verification by hub. -subscriptions-delay-on-startup=120000 - - -# Pause & resume api proeprties -PACKET_RESUME_API=${mosip.api.internal.url}/registrationprocessor/v1/workflowmanager/workflowaction -PACKET_PAUSE_API=${mosip.api.internal.url}/registrationprocessor/v1/workflowmanager/workflow/search -KEYBASEDTOKENAPI=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey - -## resubscription and subscription initial delay for masterdata service -masterdata.websub.resubscription.delay.millis=48000000 -masterdata.subscriptions-delay-on-startup=120000 - -# The time interval in seconds to schedule subscription of topics which is done as a -# work-around for the bug: MOSIP-9496. By default the -# this property value is set to 0 that disables this workaround. -# To enable the resubscrition scheduling, this property should be assigned with a positive -# number like 1 * 60 * 60 * 1000 = 3600000 for one hour -syncdata.websub.resubscription.delay.millis=48000000 - -## Admin UI -## this pattern like --> display column : configKey. -## We can provide multiple values with ";" separated -mosip.admin.ui.configs=version:${aplication.configuration.level.version};locationHierarchyLevel:${mosip.recommended.centers.locCode};mandatoryLanguages:${mosip.mandatory-languages};optionalLanguages:${mosip.optional-languages};supportedLanguages: ${mosip.mandatory-languages},${mosip.optional-languages};leftToRightOrientation:${mosip.left_to_right_orientation};rightToLeftOrientation:${mosip.right_to_left_orientation};countryCode:${mosip.country.code};filterValueMaxRecords:${mosip.kernel.filtervalue.max_columns};filterValueMaxCount:{"default":${mosip.kernel.filtervalue.max_columns},"registrationcenters":500,"locations":300} - -# Flag to identify the support of no thumbprint in 1.1.3 version. -# Added this for backward compatability. default is false, means support is not required. -# Make it to true if support is required. -mosip.kernel.keymanager.113nothumbprint.support=false - -## Used to get IAM user details. -mosip.kernel.masterdata.auth-manager-base-uri=${mosip.kernel.authmanager.url}/v1/authmanager -mosip.kernel.masterdata.auth-user-details=/userdetails - - -## scheduler do it's job at 2am -scheduling.job.cron=0 0 2 * * ? - -# masterdata swagger openApi -#openapi.service.servers[0].url=${mosip.api.internal.url}/${server.servlet.context-path:${server.servlet.path:}} -#openapi.service.servers[0].description=For Swagger - -#To fetch user details based on user id and user name in zone API's -zone.user.details.url=${mosip.kernel.authmanager.url}/v1/authmanager/userdetails - -auth.server.admin.allowed.audience=mosip-toolkit-android-client,mosip-toolkit-client,mosip-regproc-client,mosip-prereg-client,mosip-admin-client,mosip-crereq-client,mosip-creser-client,mosip-datsha-client,mosip-ida-client,mosip-resident-client,mosip-reg-client,mpartner-default-print,mosip-idrepo-client,mpartner-default-auth,mosip-syncdata-client,mosip-masterdata-client,mosip-idrepo-client,mosip-pms-client,mosip-hotlist-client,mobileid_newlogic,opencrvs-partner,mosip-deployment-client,mpartner-default-digitalcard,mpartner-default-mobile,mosip-signup-client -mosip.iam.adapter.appid=admin -mosip.iam.adapter.clientid=mosip-admin-client -mosip.iam.adapter.clientsecret=${mosip.admin.client.secret} - -#AdminMaster endpoints to access without authentication -mosip.service-context=/v1/masterdata -mosip.service.end-points={cipher}dd5737cb38b0d354e925a031d1662cae45feb891135577d72d75017f71a3c72d38d157158eb9e12d8e51ffb3e66e1397eb0e20040939ad145363a00c458f247c53a712c564467770d08b0cab22b967ba71d09e75a4c53492f23bb29e4c529a87787e7652c720b8eb7ce61ffc4ea6efe89be9d85034fcb135582af662290eacc0392ea96c15fef0a20694cd24c553ec3325e1450e4fb6ea773b200fcdc5d097014e7ff1794d93330c40f50fce4c20d15fc9b0ddced67877cf51ecf38d7b3fb352e176fe12956e0e2e1d43ac77dd200085dac1d3e3fe49475d5077b6bff6162c53a2d00fdbc5cd12a0aa983165916cb9cd72b2eff9c8bf7bc92bea2619fc0900b5936655a16a96fe8b188fa06a625760f78b1273a66137228095305ca32093b1fda5faac87b1ae172caa990776fa6dc52f6f1863848b21e42eb1af5ee530f12af7ef94aa8bccb254fe65c69870338e7bae1a95f344c9fcb806ac7801466168c81de7262e1a0bf49c62ee0c3676babbc718ba790e7b9428482443f6e612c9ef497702a79c9a49d47ab98d97a868e7f2ce1b7febc3d09afadbf5555e21234290aaaef94681c78326d7c178316b7d211f2a72dfb5a39e6badda11d4ee42b79c003fdf1d83d72aee288f6c8ad6e5f66c2dae350d50f5aec39360b8cce5e3682ef6f8adb7a6377a9580d420944f98c98390d3a2f7a0682d26991a60e3ab79401c63233c5a18b1902f715ebf595107563d9a60d3280c1baed1777e894660ea1e05b6433e2653af499b286fdb6380b29d32953bd23de2ec8f2c441b0e22c3877f85aa23046e2830fb9f94dced2ee55f107c8160f05bfa5436620898b36d18ae26bd4c7400e3d51f85bad2a81665aa7baf7d10cb792067b600fb0277fb0119aa9186c3d1a2079c56ca999ce1d4930b9ea77f80d88bb2afbb93002b77c3d5f5a895822dacc6038112160bf280d392599c268d504aff4e933fa4308ab50d25793c93fd2a51b1c7d2938219ff84202ae286cb1b9650ec5dfd79dabad2acf2b44fbc08170c097c93a9d663b4c130392bd536d86a87cd11ab074d3db666dcf2f40349d1056ce2708cfcfbcdd868a8073acd9a2241159e64cae84eceabd8acb83afbeeafa822defd7616bfd5801f1976392872f61e637bc21c3db4fe30d6c1de644d2291ce9d48ff1afff9f1ab596620553fd669cfa38dc5ccea6286abbcd93ca8b434b2b6d42129d72e7daa91001d43005d781369c054b36a6158d4f2cc6c6136565733b13cd7d306c715809f2d9a5024abcffbc0ef3b58585b881f6509bd1876b923494445a2a430ddf5e517b49b65647f54a2e10a002224269c78a38b6ddbddc02176d93e1e280cfdefc317efe361babe0eb3688c9d3406c4ef7a1851ddc7d511703b1d4e2c449792abd523c6eadfbfea13cf862478d75196f8133deadc31222fa6be3cd1cac015f2af1865d834bda4e7f3352cc72116d732ed384a0b94237810bf5909ea453f9052aeb0ae6d492e7ed4d2c33145e38a79742ca23294f3dc89e3cafcfbc8349aae712172bd661137ad6179df3bcc1f03b80af7c82b8a1aa91140086e663ff257d8084680c00c9a31f9c96e0b3d350192851c0c279b8159070e5f1f06153d132447fddbbf1dbb7378b84c38dc1c5f2f8cbbfcd8a478f78b1ed6ed44a0d81a88be605b66a5caad776ab1ae7c8a88362efef9b43d261dd292324e173606fabd3b8ade5fce14671d274d33e93f975d12071473fa7b0289a99a151ce67b3070f44001b5d74b3087ad1fbd071605fd62fa5f86454b881fd1ad86bd565b33248d47100d862dcc57dc0e9f673e25b0845b27d06b38c30ca975efb8031444459d776f6221a90fa51b971a4054332411de943afd8b - -spring.jpa.properties.hibernate.jdbc.lob.non_contextual_creation=true - -##validity time of mosip-signed certificates - - -## Roles -mosip.role.admin.masterdata.getapplicationconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getconfigs=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getapplicationtypeslangcode=PRE_REGISTRATION_ADMIN,RESIDENT,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.getapplicationtypescodelangcode=RESIDENT,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.postapplicationtypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgetbiometricattributesbyauthtype=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postbiometricattributes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getbiometrictypes=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getbiometrictypeslangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getbiometrictypescodelangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postbiometrictypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postblocklistedwordswords=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putblocklistedwordsdetails=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deleteblocklistedwordsword=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getblocklistedwordsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postblocklistedwordssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postblocklistedwordsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchblocklistedwords=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdeviceslanguagecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.getdeviceslanguagecodedevicetype=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postdevices=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdevices=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdevicesmappeddevicesregcenterid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdevicesdecommissiondeviceid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchdevices=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdeviceshistoriesidlangcodeeffdatetimes=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.putdeviceprovider=GLOBAL_ADMIN,ZONAL_ADMIN,PARTNER_ADMIN,PARTNER,AUTH_PARTNER,DEVICE_MANAGER,DEVICE_PROVIDER -mosip.role.admin.masterdata.postdeviceprovidermanagementvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.deletedevicederegisterdevicecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putdeviceupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsdevicetypecode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deletedevicespecificationsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdevicespecificationsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicespecificationssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicespecificationsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchdevicespecifications=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdevicetypesall=ZONAL_ADMIN,GLOBAL_ADMIN,DEVICE_MANAGER,PRE_REGISTRATION_ADMIN,DEVICE_PROVIDER,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicetypessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdevicetypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchdevicetypes=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdocumentcategorieslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,DEVICE_MANAGER,DEVICE_PROVIDER,PARTNER,PARTNER_ADMIN,RESIDENT,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deletedocumentcategoriescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriesall=PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdocumentcategoriessearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdocumentcategoriesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchdocumentcategories=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deletedocumenttypescode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumenttypesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdocumenttypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdocumenttypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchdocumenttypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getdocumenttypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postdynamicfields=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putdynamicfields =ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchdynamicfieldsall=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchdynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deletedynamicfields=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletedynamicfieldsid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postdynamicfieldssearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.putfoundationaltrustprovider=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER -mosip.role.admin.masterdata.postgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putgendertypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletegendertypescode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getgendertypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,CENTRAL_ADMIN -mosip.role.admin.masterdata.postgendertypessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postgendertypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidays=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getholidaysholidayid=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getholidaysholidayidlangcode=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL,PRE_REGISTRATION,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchholidays=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deleteholidays=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getholidaysall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postholidayssearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postholidaysfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getholidaysmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postidtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getindividualtypesall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,CENTRAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postindividualtypessearch=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postindividualtypesfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putindividualtypes=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postlanguages=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocations=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchlocations=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.deletelocationslocationcode=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postlocationssearch=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postlocationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN,REGISTRATION_ADMIN -mosip.role.admin.masterdata.getlocationslevellangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationsmissingidslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getlocationhierarchylevels=INDIVIDUAL,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,default,GLOBAL_ADMIN,PRE_REGISTRATION,REGISTRATION_ADMIN,REGISTRATION_OPERATOR -mosip.role.admin.masterdata.getmachinesidlangcode=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,RESIDENT -mosip.role.admin.masterdata.getmachineslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getmachines=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.deletemachinesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmachinesmappedmachinesregcenterid=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_CLIENT,REGISTRATION_OFFICER -mosip.role.admin.masterdata.postmachinessearch=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putmachinesdecommissionmachineid=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachines=GLOBAL_ADMIN,ZONAL_ADMIN,RESIDENT,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putmachines=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchmachines=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getmachineshistoriesidlangcode=REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchmachinespecifications=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deletemachinespecificationsid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getmachinespecificationsall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinespecificationssearch=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinespecificationsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchmachinetypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getmachinetypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinetypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postmachinetypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getmodulesidlangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getmoduleslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putmosipdeviceservice=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postpacketrejectionreasonsreasoncategory=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postpacketrejectionreasonsreasonlist=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getpacketrejectionreasonsreasoncategorycodelangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getpacketrejectionreasons=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.postpacketresume=REGISTRATION_ADMIN -mosip.role.admin.masterdata.postpacketsearch=REGISTRATION_ADMIN -mosip.role.admin.masterdata.getpossiblevaluesfieldname=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.postregistereddevices=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postregistereddevicesderegister=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putregistereddevicesupdatestatus=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getgetlocspecificregistrationcenterslangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetregistrationcenterholidayslangcode=INDIVIDUAL,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getgetcoordinatespecificregistrationcenters=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getregistrationcentersidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getregistrationcenters=INDIVIDUAL,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcentersidlangcodehierarchylevel=INDIVIDUAL,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.getregistrationcenterspagelangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getregistrationcentersvalidateidlangcode=INDIVIDUAL,REGISTRATION_PROCESSOR,ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,PRE_REGISTRATION -mosip.role.admin.masterdata.deleteregistrationcentersregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcenterslangcodehierarchylevelnames=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,INDIVIDUAL,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.getregistrationcentersall=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postregistrationcenterssearch=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN -mosip.role.admin.masterdata.postregistrationcentersfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN,REGISTRATION_ADMIN -mosip.role.admin.masterdata.postregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentersdecommission=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchregistrationcenters=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcenterslanguage=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putregistrationcentersnonlanguage=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentersmissingids=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.getgetzonespecificregistrationcenterslangcode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getregistrationcenterdevicehistoryregcenteriddeviceid=REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getregistrationcentershistoryregistrationcenterid=ZONAL_ADMIN,GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deleteregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getregistrationcentertypesall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,REGISTRATION_PROCESSOR,REGISTRATION_CLIENT,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postregistrationcentertypesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postregistrationcentertypessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchregistrationcentertypes=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getregistrationcentertypesmissingidslangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getgetregistrationmachineusermappinghistory=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_PROCESSOR,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putidschemapublish=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteidschema=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getidschemaall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getidschemalatest=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_CLIENT,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,RESIDENT,ID_REPOSITORY -mosip.role.admin.masterdata.posttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.puttemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.deletetemplatesid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatestemplatetypecodescode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,INDIVIDUAL,PRE_REGISTRATION,ID_AUTHENTICATION,AUTH,PRE_REGISTRATION_ADMIN,RESIDENT,PARTNER,AUTH_PARTNER,PARTNER_ADMIN,DEVICE_PROVIDER,DEVICE_MANAGER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,PRINT_PARTNER,MASTERDATA_ADMIN -mosip.role.admin.masterdata.gettemplatesall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.posttemplatessearch=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.posttemplatesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.patchtemplates=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.gettemplatesmissingidslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.posttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttemplatefileformats=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletetemplatefileformatscode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatefileformatscodelangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettemplatefileformatslangcode=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchtemplatefileformats=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttemplatetypes=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttitle=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttitle=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.puttitlecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.gettitleall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttitlesearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.posttitlefiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.putuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.postuispecpublish=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.deleteuispec=GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getuispecall=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN,PRE_REGISTRATION_ADMIN -mosip.role.admin.masterdata.getusersid=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getusers=PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,ZONAL_ADMIN,REGISTRATION_OFFICER,REGISTRATION_SUPERVISOR,REGISTRATION_PROCESSOR -mosip.role.admin.masterdata.getusercentermapping=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.patchusercentermapping=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deleteusersid=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getuserdetails=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getuserssearch=PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getusersideffdtimes=INDIVIDUAL,PRE_REGISTRATION_ADMIN,ID_AUTHENTICATION,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,ZONAL_ADMIN,PRE_REGISTRATION,RESIDENT -mosip.role.admin.masterdata.postvaliddocuments=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletevaliddocumentsdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getvaliddocumentsall=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.postvaliddocumentssearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postvaliddocumentsfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putvaliddocumentsmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.putvaliddocumentsunmapdoccategorycode=GLOBAL_ADMIN,ZONAL_ADMIN,MASTERDATA_ADMIN -mosip.role.admin.masterdata.getzoneshierarchylangcode=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneszonename=GLOBAL_ADMIN,ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION -mosip.role.admin.masterdata.getzonesauthorize=GLOBAL_ADMIN,PRE_REGISTRATION_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postzonesfiltervalues=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.putzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletezoneuseruseridzonecode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getzoneuserhistoryuserid=ZONAL_ADMIN,REGISTRATION_OFFICER,PRE_REGISTRATION_ADMIN,REGISTRATION_PROCESSOR,PRE_REGISTRATION,REGISTRATION_SUPERVISOR,RESIDENT,INDIVIDUAL,ID_AUTHENTICATION -mosip.role.admin.masterdata.patchzoneuser=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.postzoneusersearch=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdocumentcategoriesmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.getdynamicfieldmissingidslangcode=GLOBAL_ADMIN,ZONAL_ADMIN -mosip.role.admin.masterdata.deletelanguagescode=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.patchlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.postdynamicfieldsfiltervalues=ZONAL_ADMIN,GLOBAL_ADMIN -mosip.role.admin.masterdata.putlanguages=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,GLOBAL_ADMIN -mosip.role.kernel.postemailsend=ZONAL_ADMIN,PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postsmssend=PRE_REGISTRATION_ADMIN,AUTH,ID_AUTHENTICATION,RESIDENT,REGISTRATION_ADMIN,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,REGISTRATION_SUPERVISOR,INDIVIDUAL -mosip.role.kernel.postotpgenerate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.getotpvalidate=PRE_REGISTRATION_ADMIN,INDIVIDUAL,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,ID_AUTHENTICATION,AUTH,RESIDENT,REGISTRATION_OFFICER -mosip.role.kernel.getgenerateridcenteridmachineid=REGISTRATION_PROCESSOR,RESIDENT -mosip.role.kernel.postaudits=MASTERDATA_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION,PRE_REGISTRATION_ADMIN,RESIDENT,ZONAL_ADMIN,GLOBAL_ADMIN,ID_REPOSITORY,HOTLIST_ADMIN -mosip.role.keymanager.postcssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postcsverifysign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.posttpmencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.posttpmdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.posttpmsigningpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.posttpmencryptionpublickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST,HOTLIST_ADMIN -mosip.role.keymanager.postdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,ID_REPOSITORY,CREDENTIAL_REQUEST,HOTLIST_ADMIN -mosip.role.keymanager.postencryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptwithpin=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postencryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postdecryptdt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratemasterkeyobjecttype=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.getgetcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,KEY_MAKER -mosip.role.keymanager.postgeneratecsr=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadcertificate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postuploadotherdomaincertificate=PARTNER_ADMIN,ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postgeneratesymmetrickey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.putrevokekey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postmigratebasekey=KEY_MIGRATION_ADMIN -mosip.role.keymanager.getzktempcertificate=KEY_MIGRATION_ADMIN -mosip.role.keymanager.postlicensegenerate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postmigratezkkeys=KEY_MIGRATION_ADMIN -mosip.role.keymanager.postuploadcacertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN -mosip.role.keymanager.postuploadpartnercertificate=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER -mosip.role.keymanager.getgetpartnercertificatepartnercertid=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER -mosip.role.keymanager.postverifycertificatetrust=ZONAL_ADMIN,GLOBAL_ADMIN,PARTNER_ADMIN,PARTNER -mosip.role.keymanager.postsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postvalidate=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postpdfsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_REQUEST -mosip.role.keymanager.postjwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.getuinpartnercode=ZONAL_ADMIN,GLOBAL_ADMIN,ID_AUTHENTICATION,RESIDENT -mosip.role.keymanager.postzkencrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postzkdecrypt=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postzkreencryptrandomkey=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT -mosip.role.keymanager.postjwssign=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT,CREDENTIAL_ISSUANCE -mosip.role.keymanager.postcwtsign=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE -mosip.role.keymanager.postcwtdecode=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE -mosip.role.keymanager.postcwtverify=ZONAL_ADMIN,GLOBAL_ADMIN,RESIDENT,PRINT_PARTNER,CREDENTIAL_ISSUANCE -mosip.role.keymanager.postgenerateargon2hash=ZONAL_ADMIN,GLOBAL_ADMIN,INDIVIDUAL,ID_AUTHENTICATION,TEST,REGISTRATION_ADMIN,REGISTRATION_SUPERVISOR,REGISTRATION_OFFICER,REGISTRATION_PROCESSOR,PRE_REGISTRATION_ADMIN,RESIDENT - -mosip.kernel.keymanager.jwtsign.validate.json=false - -auth.allowed.urls=http://localhost:5000/ - -##These properties are used for validation in kernel-masterdata-service -#For example, Arabic needs to be added along with english -#the unicode range of Arabic (Range: 0600–06FF) has to be added inside the square brackets with \u tag -#the final value in this case might look like [^a-z\u0600-\u06FF] -mosip.kernel.masterdata.code.validate.regex=[^a-z0-9] -mosip.kernel.masterdata.name.validate.regex=[^a-z] -# query param usd to refer url to redirect after logout -mosip.iam.post-logout-uri-param-key=post_logout_redirect_uri -# end session endpoint in OIDC -mosip.iam.end-session-endpoint-path=/protocol/openid-connect/logout -mosip.kernel.keymgr.hsm.health.check.enabled=false - -## HSM keymigration properties -mosip.kernel.keymanager.keymigration.auth.url=${mosip.kernel.authmanager.url}/v1/authmanager/authenticate/clientidsecretkey -mosip.kernel.keymanager.keymigration.auth.appId=ida -# <clientId with KEY_MIGRATION_ADMIN role> -mosip.kernel.keymanager.keymigration.auth.cliendId=mosip-migration-client -mosip.kernel.keymanager.keymigration.auth.secretKey=${mosip.migration.client.secret} -mosip.kernel.keymanager.keymigration.getcertificate.url=http://keymanager-ida.ida/v1/keymanager/getCertificate -mosip.kernel.keymanager.keymigration.uploadkey.url=http://keymanager-ida.ida/v1/keymanager/migrateBaseKey -mosip.kernel.keymanager.keymigration.getzktempcertificate.url=http://keymanager-ida.ida/v1/keymanager/getZKTempCertificate -mosip.kernel.keymanager.keymigration.zkkeys.migration.batch.size=500 -mosip.kernel.keymanager.keymigration.zkUploadkey.url=http://keymanager-ida.ida/v1/keymanager/migrateZKKeys From 3e656aa2343d4d05133c0dc0a2c6e0cc70928d47 Mon Sep 17 00:00:00 2001 From: techno-467 <prafulrakhade02@gmail.com> Date: Mon, 17 Jun 2024 18:30:11 +0530 Subject: [PATCH 1350/1358] [DSD-5498] revert back pkcs12 changes from esignet-default.properties, id-authentication-default.properties and kernel-default.properties --- esignet-default.properties | 165 ++++++++----------------------------- identity-mapping.json | 4 +- 2 files changed, 37 insertions(+), 132 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 432177de530..c3afba5b8ed 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -35,11 +35,11 @@ mosip.esignet.supported-id-regex=\\S* mosip.esignet.id-token-expire-seconds=3600 mosip.esignet.access-token-expire-seconds=3600 # By default, only 2 link codes can be active, and the time period it can be active is defined here, default value is 1 minute -mosip.esignet.link-code-expire-in-secs=600 +mosip.esignet.link-code-expire-in-secs=60 # Number of link code allowed to be generated in a transaction, the default value is 10 mosip.esignet.generate-link-code.limit-per-transaction=10 # Time to complete consent after successful authentication, the default value is 120 -mosip.esignet.authentication-expire-in-secs=600 +mosip.esignet.authentication-expire-in-secs=120 # Auth challenge type & format mapping. Auth challenge length validations for each auth factor type. mosip.esignet.auth-challenge.OTP.format=alpha-numeric @@ -56,7 +56,7 @@ mosip.esignet.auth-challenge.BIO.max-length=300000 mosip.esignet.auth-challenge.WLA.format=jwt mosip.esignet.auth-challenge.WLA.min-length=100 -mosip.esignet.auth-challenge.WLA.max-length=800 +mosip.esignet.auth-challenge.WLA.max-length=1500 mosip.esignet.auth-challenge.KBA.format=base64url-encoded-json mosip.esignet.auth-challenge.KBA.min-length=50 @@ -74,11 +74,8 @@ mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authoriza '${server.servlet.path}/authorization/v3/authenticate', \ '${server.servlet.path}/authorization/auth-code'} -#This property is used for captcha validation and allowed values are send-otp and pwd. -#captcha validation is enabled for send-otp and pwd. -mosip.esignet.captcha.required= - - +# List of auth factors which require captcha validation. +mosip.esignet.captcha.required.auth-factors={'PWD'} ## ------------------------------------------ e-Signet binding --------------------------------------------------------- @@ -123,24 +120,16 @@ mosip.esignet.kafka.linked-auth-code.topic=esignet-consented ## ------------------------------------------- Integrations ------------------------------------------------------------ -mosip.esignet.integration.scan-base-package=io.mosip.esignet.mock.integration,io.mosip.authentication.esignet.integration +mosip.esignet.integration.scan-base-package=io.mosip.authentication.esignet.integration,io.mosip.esignet.mock.integration mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl -mosip.esignet.integration.authenticator=MockAuthenticationService mosip.esignet.integration.authenticator=IdaAuthenticatorImpl mosip.esignet.integration.key-binder=IdaKeyBinderImpl mosip.esignet.integration.audit-plugin=IdaAuditPluginImpl mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.vci-plugin=IdaVCIssuancePluginImpl -#mosip.esignet.integration.scan-base-package=io.mosip.esignet.sunbirdrc.integration.service,io.mosip.esignet.mock.integration -#mosip.esignet.integration.binding-validator=BindingValidatorServiceImpl -#mosip.esignet.integration.authenticator=SunbirdRCAuthenticationService -#mosip.esignet.integration.key-binder=MockKeyBindingWrapperService -#mosip.esignet.integration.audit-plugin=LoggerAuditService -#mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService -#mosip.esignet.integration.vci-plugin=SunbirdRCVCIssuancePlugin - # captcha validator +mosip.esignet.send-otp.captcha-required=true mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} @@ -185,8 +174,8 @@ mosip.esignet.mock.vciplugin.verification-method=${mosip.esignet.vci.authn.jwk-s mosip.esignet.supported.authorize.scopes={'Manage-Identity-Data','Manage-VID','Manage-Authentication','Manage-Service-Requests','Manage-Credentials'} mosip.esignet.supported.openid.scopes={'profile','email','phone'} mosip.esignet.openid.scope.claims={'profile' : {'name','address','gender','birthdate','picture','email','phone_number'},'email' : {'email'}, 'phone' : {'phone_number'}} -mosip.esignet.supported.credential.scopes={'mock_identity_vc_ldp', 'mosip_identity_vc_ldp','sunbird_rc_insurance_vc_ldp'} -mosip.esignet.credential.scope-resource-mapping={'mock_identity_vc_ldp' : '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'mosip_identity_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'sunbird_rc_insurance_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential'} +mosip.esignet.supported.credential.scopes={'mock_identity_vc_ldp', 'mosip_identity_vc_ldp'} +mosip.esignet.credential.scope-resource-mapping={'mock_identity_vc_ldp' : '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential', 'mosip_identity_vc_ldp': '${mosip.esignet.domain.url}${server.servlet.path}/vci/credential'} ## supported authorization processing flow to be used, Currently only supports Authorization Code Flow. mosip.esignet.supported.response.types={'code'} @@ -235,18 +224,17 @@ mosip.esignet.cache.security.algorithm-name=AES/ECB/PKCS5Padding mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction,vcissuance -spring.cache.type=redis -spring.cache.cache-names=${mosip.esignet.cache.names} -spring.redis.host=redis-master-0.redis-headless.redis.svc.cluster.local -spring.redis.port=6379 -spring.redis.password=${redis.password} +#spring.cache.type=redis +#spring.cache.cache-names=${mosip.esignet.cache.names} +#spring.redis.host=localhost +#spring.redis.port=6379 management.health.redis.enabled=false # 'simple' cache type is only applicable only for Non-Production setup -#spring.cache.type=simple +spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 -# Cache size setup is applicable only for 'simple' cache type. +# Cache size setup is applicable only for 'simple' cache type. # Cache size configuration will not be considered with 'Redis' cache type mosip.esignet.cache.size={'clientdetails' : 200, \ 'preauth': 200, \ @@ -264,15 +252,15 @@ mosip.esignet.cache.size={'clientdetails' : 200, \ # Cache expire in seconds is applicable for both 'simple' and 'Redis' cache type mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ -'preauth': 600,\ +'preauth': 300,\ 'authenticated': ${mosip.esignet.authentication-expire-in-secs}, \ -'authcodegenerated': 600, \ +'authcodegenerated': 60, \ 'userinfo': ${mosip.esignet.access-token-expire-seconds}, \ 'linkcodegenerated' : ${mosip.esignet.link-code-expire-in-secs}, \ -'linked': 600, \ +'linked': 120, \ 'linkedcode': ${mosip.esignet.link-code-expire-in-secs}, \ 'linkedauth' : ${mosip.esignet.authentication-expire-in-secs}, \ -'consented': 600, \ +'consented': 60, \ 'authtokens': 86400, \ 'bindingtransaction': 600, \ 'vcissuance': ${mosip.esignet.access-token-expire-seconds} } @@ -282,7 +270,7 @@ mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ mosip.esignet.domain.url=https://${mosip.esignet.host} mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} -# This property holds ./wellknown/jwks.json URL, +# This property holds ./wellknown/jwks.json URL, # for local deployments without esignet-ui nginx change the value to ${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json mosip.esignet.jwks-uri=${mosip.esignet.domain.url}/.well-known/jwks.json @@ -318,7 +306,7 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \ \ 'subject_types_supported' : { 'pairwise' }, \ \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ - \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics', 'mosip:idp:acr:knowledge'},\ + \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ \ 'request_parameter_supported' : false, \ \ 'claims_locales_supported' : {'en'}, \ \ 'ui_locales_supported' : {'en'} } @@ -411,40 +399,36 @@ mosip.kernel.keymgr.hsm.health.check.encrypt=true # 2. A new Qrcode will be autogenerated before the expiry of current qr-code, and the time difference in seconds for the same is defined in wallet.qr-code-buffer-in-secs property # 3. If esignet is deployed with MOSIP IDA, then 'resend.otp.delay.secs' must be the same as 'mosip.kernel.otp.expiry-time' -mosip.esignet.ui.wallet.config={{'wallet.name': 'walletName', 'wallet.logo-url': '/images/qr_code.png', 'wallet.download-uri': '#', \ +mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }} mosip.esignet.ui.signup.config={'signup.banner': true, 'signup.url': 'https://${mosip.signup.host}/signup'} mosip.esignet.ui.forgot-password.config={'forgot-password': true, 'forgot-password.url': 'https://${mosip.signup.host}/reset-password'} -## Configuration required to display KBI form. -# individual-id-field is set with field id which should be considered as an individual ID in the authenticate request. -# form-details holds the list of field details like below: -# id -> unique field Id, type -> holds datatype, format -> only supported for date fields, regex -> pattern to validate the input value, maxLength -> number of allowed characters -# Example: mosip.esignet.authenticator.default.auth-factor.kba.field-details={{'id': '${mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field}', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^\\s*[+-]?(\\d+|\\d*\\.\\d+|\\d+\\.\\d*)([Ee][+-]?\\d*)?\\s*$'},{'id':'fullName', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^[A-Za-z\\s]{1,}[\\.]{0,1}[A-Za-z\\s]{0,}$'},{'id':'dob', 'type':'date', 'format':'dd/mm/yyyy'}} -mosip.esignet.authenticator.default.auth-factor.kba.field-details={{'id':'policyNumber', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^\\s*[+-]?(\\d+|\\d*\\.\\d+|\\d+\\.\\d*)([Ee][+-]?\\d*)?\\s*$'},{'id':'fullName', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '\\S*'},{"id":"dob", "type":"date", "format":"dd/mm/yyyy"}} -mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field=policyNumber - -## Configuration Map input to UI at the start of every transaction. +# username.prefix -> Prefix to be appended to the username, eg: if the username is phone_number then the prefix could be the country code +# username.postfix -> This is required only when a postfix should be automatically appended to the input username +# username.regex -> Regex to be used to validate the input username +# auth.factor.kba.individual-id-field -> Field ID to be used as username in the authenticate API, Must be one of the field defined in `auth.factor.kba.field-details` +# auth.factor.kba.field-details -> List of form fields used to display for Knowledge-based authentication. eg: {{"id":"policyNumber", "type":"text", "format":""},{"id":"fullName", "type":"text", "format":""}} mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ - 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : '${mosip.esignet.captcha.required}', \ + 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'otp,pwd', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': '4501-4600', \ - 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ - 'password.max-length': 20, \ + 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': ${mosip.esignet.auth-challenge.OTP.max-length}, \'password.regex': '^.{8,20}$', \ + 'password.max-length': ${mosip.esignet.auth-challenge.PWD.max-length}, \ 'username.regex': '^[0-9]{10,30}$',\ 'username.prefix': '', \ 'username.postfix': '', \ - 'username.max-length': 16, \ + 'username.max-length': 9, \ 'username.input-type': 'number', 'wallet.config': ${mosip.esignet.ui.wallet.config}, \'signup.config': ${mosip.esignet.ui.signup.config}, \ 'forgot-password.config': ${mosip.esignet.ui.forgot-password.config}, \ 'error.banner.close-timer': 10,\ - 'auth.factor.kba.individual-id-field' : '${mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field}',\ - 'auth.factor.kba.field-details': ${mosip.esignet.authenticator.default.auth-factor.kba.field-details} } + 'auth.factor.kba.individual-id-field' : '',\ + 'auth.factor.kba.field-details': {} } ## ---------------------------------------------- VCI ------------------------------------------------------------------ # Used to verify audience in the PoP JWT @@ -463,7 +447,7 @@ mosip.esignet.vci.key-values={\ 'credential_issuer': '${mosip.esignet.vci.identifier}', \ 'credential_endpoint': '${mosipbox.public.url}${server.servlet.path}/vci/credential', \ 'credentials_supported': {\ - {\ + {\ 'format': 'ldp_vc',\ 'id': 'MockVerifiableCredential_ldp', \ 'scope' : 'mock_identity_vc_ldp',\ @@ -482,34 +466,6 @@ mosip.esignet.vci.key-values={\ 'logo': {'url': '${mosipbox.public.url}/logo.png', 'alt_text': 'a square logo of a MOSIP'},\ 'background_color': '#12107c',\ 'text_color': '#FFFFFF'}}\ - },\ - {\ - 'format': 'ldp_vc',\ - 'id': 'InsuranceCredential', \ - 'scope' : 'sunbird_rc_insurance_vc_ldp',\ - 'cryptographic_binding_methods_supported': {'did:jwk'},\ - 'cryptographic_suites_supported': {'Ed25519Signature2020'},\ - 'proof_types_supported': {'jwt'},\ - 'credential_definition': {\ - 'type': {'VerifiableCredential','InsuranceCredential'},\ - 'credentialSubject': {\ - 'fullName': {'display': {{'name': 'Name','locale': 'en'}}}, \ - 'mobile': {'display': {{'name': 'Phone Number','locale': 'en'}}},\ - 'dob': {'display': {{'name': 'Date of Birth','locale': 'en'}}},\ - 'gender': {'display': {{'name': 'Gender','locale': 'en'}}},\ - 'benefits': {'display': {{'name': 'Benefits','locale': 'en'}}},\ - 'email': {'display': {{'name': 'Email Id','locale': 'en'}}},\ - 'policyIssuedOn': {'display': {{'name': 'Policy Issued On','locale': 'en'}}},\ - 'policyExpiresOn': {'display': {{'name': 'Policy Expires On','locale': 'en'}}},\ - 'policyName': {'display': {{'name': 'Policy Name','locale': 'en'}}},\ - 'policyNumber': {'display': {{'name': 'Policy Number','locale': 'en'}}}\ - }},\ - 'display': {{'name': 'Sunbird RC Insurance Verifiable Credential', \ - 'locale': 'en', \ - 'logo': {'url': 'https://sunbird.org/images/sunbird-logo-new.png', 'alt_text': 'a square logo of a Sunbird'},\ - 'background_color': '#FDFAF9',\ - 'text_color': '#7C4616'}},\ - 'order' : {'fullName','policyName','policyExpiresOn','policyIssuedOn','policyNumber','mobile','dob','gender','benefits','email'}\ },\ {\ 'format': 'ldp_vc',\ @@ -565,33 +521,6 @@ mosip.esignet.vci.key-values={\ 'background_color': '#12107c',\ 'text_color': '#FFFFFF'}}\ }, \ - 'InsuranceCredential' : {\ - 'format': 'ldp_vc',\ - 'scope' : 'sunbird_rc_insurance_vc_ldp',\ - 'cryptographic_binding_methods_supported': {'did:jwk'},\ - 'cryptographic_suites_supported': {'Ed25519Signature2020'},\ - 'proof_types_supported': {'jwt'},\ - 'credential_definition': {\ - 'type': {'VerifiableCredential','InsuranceCredential'},\ - 'credentialSubject': {\ - 'fullName': {'display': {{'name': 'Name','locale': 'en'}}}, \ - 'mobile': {'display': {{'name': 'Phone Number','locale': 'en'}}},\ - 'dob': {'display': {{'name': 'Date of Birth','locale': 'en'}}},\ - 'gender': {'display': {{'name': 'Gender','locale': 'en'}}},\ - 'benefits': {'display': {{'name': 'Benefits','locale': 'en'}}},\ - 'email': {'display': {{'name': 'Email Id','locale': 'en'}}},\ - 'policyIssuedOn': {'display': {{'name': 'Policy Issued On','locale': 'en'}}},\ - 'policyExpiresOn': {'display': {{'name': 'Policy Expires On','locale': 'en'}}},\ - 'policyName': {'display': {{'name': 'Policy Name','locale': 'en'}}},\ - 'policyNumber': {'display': {{'name': 'Policy Number','locale': 'en'}}}\ - }},\ - 'display': {{'name': 'Sunbird RC Insurance Verifiable Credential', \ - 'locale': 'en', \ - 'logo': {'url': 'https://sunbird.org/images/sunbird-logo-new.png','alt_text': 'a square logo of a Sunbird'},\ - 'background_color': '#FDFAF9',\ - 'text_color': '#7C4616'}},\ - 'order' : {'fullName','policyName','policyExpiresOn','policyIssuedOn','policyNumber','mobile','dob','gender','benefits','email'}\ - },\ 'MOSIPVerifiableCredential_ldp' : {\ 'format': 'ldp_vc',\ 'scope' : 'mosip_identity_vc_ldp',\ @@ -624,28 +553,4 @@ mosip.esignet.vci.key-values={\ ## -------------------------------------------- Others ---------------------------------------------------------- #logging.level.org.springframework.web.client.RestTemplate=DEBUG -#logging.level.io.mosip.esignet=INFO - -##---------------------------------Sunbird-RC Plugin Configurations------------------------------------------------------ - -mosip.esignet.authenticator.sunbird-rc.auth-factor.kba.individual-id-field=policyNumber -mosip.esignet.authenticator.sunbird-rc.auth-factor.kba.field-details={{"id":"policyNumber", "type":"text", "format":""},{"id":"fullName", "type":"text", "format":""},{"id":"dob", "type":"date", "format":"dd/mm/yyyy"}} -mosip.esignet.authenticator.sunbird-rc.auth-factor.kba.registry-search-url=http://10.3.148.107/registry/api/v1/Insurance/search -mosip.esignet.authenticator.sunbird-rc.kba.entity-id-field=osid - -mosip.esignet.vciplugin.sunbird-rc.enable-psut-based-registry-search=false -mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.registry-search-url=http://10.3.148.107/registry/api/v1/Insurance/search -mosip.esignet.vciplugin.sunbird-rc.issue-credential-url=http://10.3.148.107/credential/credentials/issue -mosip.esignet.vciplugin.sunbird-rc.supported-credential-types=LifeInsuranceCredential,InsuranceCredential -mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.static-value-map.issuerId=did:web:holashchand.github.io:test_project:32b08ca7-9979-4f42-aacc-1d73f3ac5322 -mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.template-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/insurance-credential.json -mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.registry-get-url=http://10.3.148.107/registry/api/v1/Insurance/ -mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.cred-schema-id=did:schema:0d10a2cf-94de-4ffc-b32c-4f1a61ee05ba -mosip.esignet.vciplugin.sunbird-rc.credential-type.InsuranceCredential.cred-schema-version=1.0.0 - -mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.static-value-map.issuerId=did:web:holashchand.github.io:test_project:32b08ca7-9979-4f42-aacc-1d73f3ac5322 -mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.template-url=${spring_config_url_env}/*/${active_profile_env}/${spring_config_label_env}/life-insurance-credential.json -mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.registry-get-url=http://10.3.148.107/registry/api/v1/Insurance/ -mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.cred-schema-id=did:schema:0d10a2cf-94de-4ffc-b32c-4f1a61ee05ba -mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.cred-schema-version=1.0.0 -mosip.esignet.vciplugin.sunbird-rc.credential-type.LifeInsuranceCredential.registry-search-url=http://10.3.148.107/registry/api/v1/Insurance/search +#logging.level.io.mosip.esignet=INFO \ No newline at end of file diff --git a/identity-mapping.json b/identity-mapping.json index 9f8109612c9..567b1172a27 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -165,8 +165,8 @@ }, "attributeUpdateCountLimit": { "fullName": 2, - "gender": 4, - "dateOfBirth": 3 + "gender": 2, + "dateOfBirth": 2 From eb74c37c1a51c5ea65540114fb546759d31528ff Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 19 Jun 2024 19:29:20 +0530 Subject: [PATCH 1351/1358] DSD-5498 Update signup-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- signup-default.properties | 16 +++++++++++----- 1 file changed, 11 insertions(+), 5 deletions(-) diff --git a/signup-default.properties b/signup-default.properties index 73604837bd0..5704bedae04 100644 --- a/signup-default.properties +++ b/signup-default.properties @@ -4,6 +4,7 @@ mosip.signup.id-schema.version=0.2 mosip.signup.identifier.regex=^\\+855[1-9]\\d{7,8}$ mosip.signup.identifier.prefix=+855 mosip.signup.supported-languages={'khm','eng'} +mosip.signup.default-language=khm mosip.signup.password.pattern=^(?=.*[0-9])(?=.*[a-z])(?=.*[A-Z])(?=.*[\\x5F\\W])(?=.{8,20})[a-zA-Z0-9\\x5F\\W]{8,20}$ mosip.signup.password.max-length=20 mosip.signup.generate-challenge.blocked.timeout=300 @@ -19,6 +20,7 @@ mosip.signup.fullname.pattern=^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u ## so 250 seconds is the Generate and verify cookie max age. mosip.signup.unauthenticated.txn.timeout=250 mosip.signup.challenge.resend-attempt=3 +mosip.signup.challenge.verification-attempt=3 mosip.signup.challenge.resend-delay=${mosip.signup.challenge.timeout} ## Time given to complete registration and get back the status of the registration in seconds. @@ -29,6 +31,8 @@ mosip.signup.verified.txn.timeout=300 mosip.signup.status-check.txn.timeout=200 mosip.signup.status.request.delay=20 mosip.signup.status.request.limit=10 +mosip.signup.task.core.pool.size=2 +mosip.signup.task.max.pool.size=4 ## ------------------------------------- challenge configuration ------------------------------------------------------- @@ -53,7 +57,7 @@ mosip.esignet.cache.size={'challenge_generated': 200, \ 'status_check': 200,\ 'blocked_identifier':2000,\ 'keystore' : 10, \ - 'key_alias' : 2 } + 'key_alias' : 1 } ## Note: keystore TTL should be more than the key_alias cache TTL. ## So that key rotation happens before the actual key is removed from the keystore cache. @@ -138,12 +142,14 @@ mosip.signup.ui.config.key-values={\ 'fullname.allowed.characters': '^[\\u1780-\\u17FF\\u19E0-\\u19FF\\u1A00-\\u1A9F\\u0020]', \ 'fullname.length.min': 1, \ 'fullname.length.max': 30, \ -'otp.blocked' : ${mosip.signup.generate-challenge.blocked.timeout} \ +'otp.blocked' : ${mosip.signup.generate-challenge.blocked.timeout}, \ +'send-challenge.captcha.required': ${mosip.signup.send-challenge.captcha-required} } -## ----------------------------- SMS-message ----------------------------------------------------------------------------- +## ----------------------------- Notification templates ----------------------------------------------------------------------------- # Default charset encoding ISO-8859-1 does not support khmer language characters, so templates in khm language are base64 encoded. +mosip.signup.sms-notification-template.encoded-langcodes={'khm'} mosip.signup.sms-notification-template.send-otp.khm=4Z6U4Z+S4Z6a4Z6+IHtjaGFsbGVuZ2V9IOGeiuGevuGemOGfkuGelOGeuOGeleGfkuGekeGfgOGehOGeleGfkuGekeGetuGej+Gfi+GeguGejuGek+GeuCBLaElEIOGemuGelOGen+Gfi+GeouGfkuGek+GegOGflA== mosip.signup.sms-notification-template.send-otp.eng=Use {challenge} to verify your KhID account. mosip.signup.sms-notification-template.registration.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4Z624Z6T4Z6F4Z674Z+H4Z6I4Z+S4Z6Y4Z+E4Z+H4Z6C4Z6O4Z6T4Z64IEtoSUQg4Z6K4Z+E4Z6Z4Z6H4Z+E4Z6C4Z6H4Z+Q4Z6Z4Z+U @@ -152,5 +158,5 @@ mosip.signup.sms-notification-template.forgot-password.khm=4Z6i4Z+S4Z6T4Z6A4Z6U4 mosip.signup.sms-notification-template.forgot-password.eng=You successfully changed KhID password. #------------------------------------------ Others --------------------------------------------------------------------- -logging.level.io.mosip.signup=INFO -logging.level.org.springframework.web.client.RestTemplate=INFO +#logging.level.io.mosip.signup=DEBUG +#logging.level.org.springframework.web.client.RestTemplate=INFO From aa48f07b8b3ffa6e002cc865accb976f480e9446 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 19 Jun 2024 19:30:11 +0530 Subject: [PATCH 1352/1358] DSD-5498 Update esignet-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- esignet-default.properties | 52 +++++++++++++++++++++++--------------- 1 file changed, 32 insertions(+), 20 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index c3afba5b8ed..2f3c3f9c298 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -74,8 +74,13 @@ mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authoriza '${server.servlet.path}/authorization/v3/authenticate', \ '${server.servlet.path}/authorization/auth-code'} -# List of auth factors which require captcha validation. -mosip.esignet.captcha.required.auth-factors={'PWD'} +#This property is used for captcha validation and allowed values are send-otp, pwd and kba. +#captcha validation is enabled for send-otp, pwd and kba. +mosip.esignet.captcha.required= + +#Properties used to ratelimit the incoming requests +mosip.esignet.send-otp.attempts=3 +mosip.esignet.authenticate.attempts=3 ## ------------------------------------------ e-Signet binding --------------------------------------------------------- @@ -129,7 +134,6 @@ mosip.esignet.integration.captcha-validator=GoogleRecaptchaValidatorService mosip.esignet.integration.vci-plugin=IdaVCIssuancePluginImpl # captcha validator -mosip.esignet.send-otp.captcha-required=true mosip.esignet.captcha-validator.url=https://www.google.com/recaptcha/api/siteverify mosip.esignet.captcha-validator.secret=${esignet.captcha.secret.key} mosip.esignet.captcha-validator.site-key=${esignet.captcha.site.key} @@ -222,7 +226,7 @@ mosip.esignet.cache.store.individual-id=true mosip.esignet.cache.security.secretkey.reference-id=TRANSACTION_CACHE mosip.esignet.cache.security.algorithm-name=AES/ECB/PKCS5Padding -mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction,vcissuance +mosip.esignet.cache.names=clientdetails,preauth,authenticated,authcodegenerated,userinfo,linkcodegenerated,linked,linkedcode,linkedauth,consented,authtokens,bindingtransaction,vcissuance,apiRateLimit,blocked #spring.cache.type=redis #spring.cache.cache-names=${mosip.esignet.cache.names} @@ -234,7 +238,7 @@ management.health.redis.enabled=false spring.cache.type=simple mosip.esignet.cache.key.hash.algorithm=SHA3-256 -# Cache size setup is applicable only for 'simple' cache type. +# Cache size setup is applicable only for 'simple' cache type. # Cache size configuration will not be considered with 'Redis' cache type mosip.esignet.cache.size={'clientdetails' : 200, \ 'preauth': 200, \ @@ -248,7 +252,9 @@ mosip.esignet.cache.size={'clientdetails' : 200, \ 'consented' :200, \ 'authtokens': 2, \ 'bindingtransaction': 200, \ -'vcissuance' : 200 } +'vcissuance' : 200, \ +'apiRateLimit' : 500, \ +'blocked': 500 } # Cache expire in seconds is applicable for both 'simple' and 'Redis' cache type mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ @@ -263,14 +269,16 @@ mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \ 'consented': 60, \ 'authtokens': 86400, \ 'bindingtransaction': 600, \ -'vcissuance': ${mosip.esignet.access-token-expire-seconds} } +'vcissuance': ${mosip.esignet.access-token-expire-seconds}, \ +'apiRateLimit' : 180, \ +'blocked': 300 } ## ------------------------------------------ Discovery openid-configuration ------------------------------------------- mosip.esignet.domain.url=https://${mosip.esignet.host} mosip.esignet.discovery.issuer-id=${mosip.esignet.domain.url}${server.servlet.path} -# This property holds ./wellknown/jwks.json URL, +# This property holds ./wellknown/jwks.json URL, # for local deployments without esignet-ui nginx change the value to ${mosip.esignet.domain.url}${server.servlet.path}/oauth/.well-known/jwks.json mosip.esignet.jwks-uri=${mosip.esignet.domain.url}/.well-known/jwks.json @@ -306,7 +314,7 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\ \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \ \ 'subject_types_supported' : { 'pairwise' }, \ \ 'claims_supported' : {'name','address','gender','birthdate','picture','email','phone_number','individual_id'}, \ - \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics'},\ + \ 'acr_values_supported' : {'mosip:idp:acr:static-code', 'mosip:idp:acr:generated-code', 'mosip:idp:acr:linked-wallet', 'mosip:idp:acr:biometrics', 'mosip:idp:acr:knowledge'},\ \ 'request_parameter_supported' : false, \ \ 'claims_locales_supported' : {'en'}, \ \ 'ui_locales_supported' : {'en'} } @@ -399,18 +407,22 @@ mosip.kernel.keymgr.hsm.health.check.encrypt=true # 2. A new Qrcode will be autogenerated before the expiry of current qr-code, and the time difference in seconds for the same is defined in wallet.qr-code-buffer-in-secs property # 3. If esignet is deployed with MOSIP IDA, then 'resend.otp.delay.secs' must be the same as 'mosip.kernel.otp.expiry-time' -mosip.esignet.ui.wallet.config={{'wallet.name': 'Inji Mobile App', 'wallet.logo-url': 'inji_logo.png', 'wallet.download-uri': '#', \ +mosip.esignet.ui.wallet.config={{'wallet.name': 'walletName', 'wallet.logo-url': '/images/qr_code.png', 'wallet.download-uri': '#', \ 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }} mosip.esignet.ui.signup.config={'signup.banner': true, 'signup.url': 'https://${mosip.signup.host}/signup'} mosip.esignet.ui.forgot-password.config={'forgot-password': true, 'forgot-password.url': 'https://${mosip.signup.host}/reset-password'} -# username.prefix -> Prefix to be appended to the username, eg: if the username is phone_number then the prefix could be the country code -# username.postfix -> This is required only when a postfix should be automatically appended to the input username -# username.regex -> Regex to be used to validate the input username -# auth.factor.kba.individual-id-field -> Field ID to be used as username in the authenticate API, Must be one of the field defined in `auth.factor.kba.field-details` -# auth.factor.kba.field-details -> List of form fields used to display for Knowledge-based authentication. eg: {{"id":"policyNumber", "type":"text", "format":""},{"id":"fullName", "type":"text", "format":""}} +## Configuration required to display KBI form. +# individual-id-field is set with field id which should be considered as an individual ID in the authenticate request. +# form-details holds the list of field details like below: +# id -> unique field Id, type -> holds datatype, format -> only supported for date fields, regex -> pattern to validate the input value, maxLength -> number of allowed characters +# Example: mosip.esignet.authenticator.default.auth-factor.kba.field-details={{'id': '${mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field}', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^\\s*[+-]?(\\d+|\\d*\\.\\d+|\\d+\\.\\d*)([Ee][+-]?\\d*)?\\s*$'},{'id':'fullName', 'type':'text', 'format':'', 'maxLength': 50, 'regex': '^[A-Za-z\\s]{1,}[\\.]{0,1}[A-Za-z\\s]{0,}$'},{'id':'dob', 'type':'date', 'format':'dd/mm/yyyy'}} +mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field= +mosip.esignet.authenticator.default.auth-factor.kba.field-details={} + +## Configuration Map input to UI at the start of every transaction. mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 30, \ 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ @@ -418,8 +430,8 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'otp,pwd', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': '4501-4600', \ - 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': ${mosip.esignet.auth-challenge.OTP.max-length}, \'password.regex': '^.{8,20}$', \ - 'password.max-length': ${mosip.esignet.auth-challenge.PWD.max-length}, \ + 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ + 'password.max-length': 20, \ 'username.regex': '^[0-9]{10,30}$',\ 'username.prefix': '', \ 'username.postfix': '', \ @@ -427,8 +439,8 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'username.input-type': 'number', 'wallet.config': ${mosip.esignet.ui.wallet.config}, \'signup.config': ${mosip.esignet.ui.signup.config}, \ 'forgot-password.config': ${mosip.esignet.ui.forgot-password.config}, \ 'error.banner.close-timer': 10,\ - 'auth.factor.kba.individual-id-field' : '',\ - 'auth.factor.kba.field-details': {} } + 'auth.factor.kba.individual-id-field' : '${mosip.esignet.authenticator.default.auth-factor.kba.individual-id-field}',\ + 'auth.factor.kba.field-details': ${mosip.esignet.authenticator.default.auth-factor.kba.field-details} } ## ---------------------------------------------- VCI ------------------------------------------------------------------ # Used to verify audience in the PoP JWT @@ -553,4 +565,4 @@ mosip.esignet.vci.key-values={\ ## -------------------------------------------- Others ---------------------------------------------------------- #logging.level.org.springframework.web.client.RestTemplate=DEBUG -#logging.level.io.mosip.esignet=INFO \ No newline at end of file +#logging.level.io.mosip.esignet=INFO From 6b19b1d8bb5c26383b5c3c989ca0f8ad3713d893 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 19 Jun 2024 19:37:11 +0530 Subject: [PATCH 1353/1358] ES-5498 Update esignet-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- esignet-default.properties | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/esignet-default.properties b/esignet-default.properties index 2f3c3f9c298..a1b67d8027f 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -427,15 +427,16 @@ mosip.esignet.ui.config.key-values={'sbi.env': 'Developer', 'sbi.timeout.DISC': 'sbi.timeout.DINFO': 30, 'sbi.timeout.CAPTURE': 30, 'sbi.capture.count.face': 1, 'sbi.capture.count.finger': 1, \ 'sbi.capture.count.iris': 1, 'sbi.capture.score.face': 70, 'sbi.capture.score.finger':70, 'sbi.capture.score.iris':70, \ 'resend.otp.delay.secs': ${mosip.kernel.otp.expiry-time}, 'send.otp.channels' : '${mosip.esignet.authenticator.ida.otp-channels}', \ - 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : 'otp,pwd', \ + 'captcha.sitekey' : '${mosip.esignet.captcha-validator.site-key}', 'captcha.enable' : '${mosip.esignet.captcha.required}', \ 'auth.txnid.length' : '${mosip.esignet.auth-txn-id-length}', 'consent.screen.timeout-in-secs':${mosip.esignet.authentication-expire-in-secs}, \ 'consent.screen.timeout-buffer-in-secs': 5, 'linked-transaction-expire-in-secs': 240, 'sbi.port.range': '4501-4600', \ - 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': 6, \'password.regex': '^.{8,20}$', \ - 'password.max-length': 20, \ + 'sbi.bio.subtypes.iris': 'UNKNOWN', 'sbi.bio.subtypes.finger': 'UNKNOWN', 'wallet.qr-code-buffer-in-secs': 10, 'otp.length': ${mosip.esignet.auth-challenge.OTP.max-length}, \ + 'password.regex': '^.{8,20}$', \ + 'password.max-length': ${mosip.esignet.auth-challenge.PWD.max-length}, \ 'username.regex': '^[0-9]{10,30}$',\ 'username.prefix': '', \ 'username.postfix': '', \ - 'username.max-length': 9, \ + 'username.max-length': 16, \ 'username.input-type': 'number', 'wallet.config': ${mosip.esignet.ui.wallet.config}, \'signup.config': ${mosip.esignet.ui.signup.config}, \ 'forgot-password.config': ${mosip.esignet.ui.forgot-password.config}, \ 'error.banner.close-timer': 10,\ From 733742adcacf407c5e59d0dfe448222f63dec9e6 Mon Sep 17 00:00:00 2001 From: ase-101 <sunkadaeanusha@gmail.com> Date: Wed, 19 Jun 2024 19:38:19 +0530 Subject: [PATCH 1354/1358] ES-5498 Update esignet-default.properties Signed-off-by: ase-101 <sunkadaeanusha@gmail.com> --- esignet-default.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/esignet-default.properties b/esignet-default.properties index a1b67d8027f..e946e1573cc 100644 --- a/esignet-default.properties +++ b/esignet-default.properties @@ -76,7 +76,7 @@ mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authoriza #This property is used for captcha validation and allowed values are send-otp, pwd and kba. #captcha validation is enabled for send-otp, pwd and kba. -mosip.esignet.captcha.required= +mosip.esignet.captcha.required=send-otp,pwd #Properties used to ratelimit the incoming requests mosip.esignet.send-otp.attempts=3 From 889134f6134aecc0a6cdbdc3d6509f69d72bb86b Mon Sep 17 00:00:00 2001 From: swethan1718 <113496801+swethan1718@users.noreply.github.com> Date: Fri, 5 Jul 2024 11:30:39 +0530 Subject: [PATCH 1355/1358] Update identity-mapping.json Signed-off-by: swethan1718 <113496801+swethan1718@users.noreply.github.com> --- identity-mapping.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/identity-mapping.json b/identity-mapping.json index 567b1172a27..b72368c67b3 100644 --- a/identity-mapping.json +++ b/identity-mapping.json @@ -164,9 +164,9 @@ } }, "attributeUpdateCountLimit": { - "fullName": 2, + "fullName": 5, "gender": 2, - "dateOfBirth": 2 + "dateOfBirth": 3 From 6530562a42bb6549eb69314766f681976f6dfdc6 Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Wed, 7 Aug 2024 18:38:26 +0530 Subject: [PATCH 1356/1358] [MOSIP-34112] adding manual adjudication stage to update camel route (#7000) * [MOSIP-34112] adding condition for manual adjudication stage Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> * [MOSIP-34112] adding condition for manual adjudication stage Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --------- Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-camel-routes-update-default.xml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/registration-processor-camel-routes-update-default.xml b/registration-processor-camel-routes-update-default.xml index 733b5f8c969..27d4f6840bd 100644 --- a/registration-processor-camel-routes-update-default.xml +++ b/registration-processor-camel-routes-update-default.xml @@ -386,6 +386,10 @@ <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'abis-handler-bus-in')]</jsonpath> <to uri="eventbus://abis-handler-bus-in" /> </when> + <when> + <jsonpath suppressExceptions="true">$.[?(@['messageBusAddress']['address'] == 'manual-adjudication-bus-in')]</jsonpath> + <to uri="eventbus://manual-adjudication-bus-in" /> + </when> <otherwise> <to uri="eventbus://uin-generator-bus-in" /> </otherwise> From ebbdde25d725f5188ec7901a5aa3f065c133c339 Mon Sep 17 00:00:00 2001 From: khuddus shariff <khuddusshariff0022@gmail.com> Date: Thu, 8 Aug 2024 16:36:39 +0530 Subject: [PATCH 1357/1358] Update registration-processor-default.properties Signed-off-by: khuddus shariff <khuddusshariff0022@gmail.com> --- registration-processor-default.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/registration-processor-default.properties b/registration-processor-default.properties index 09c83318208..0cd79812b66 100644 --- a/registration-processor-default.properties +++ b/registration-processor-default.properties @@ -989,7 +989,7 @@ auth.server.admin.allowed.audience=mosip-regproc-client,mosip-admin-client,mosip mosip.regproc.cbeff-validation.mandatory.modalities=Right,Left,Left RingFinger,Left LittleFinger,Right RingFinger,Left Thumb,Left IndexFinger,Right IndexFinger,Right LittleFinger,Right MiddleFinger,Left MiddleFinger,Right Thumb,EXCEPTION_PHOTO #updated properties name with the prefix (mosip.regproc) mosip.regproc.landing.zone.account.name=landing-zone -mosip.regproc.landing.zone.type=ObjectStore +mosip.regproc.landing.zone.type=DMZServer mosip.regproc.landing.zone.fixed.delay.millisecs=120000 mosip.regproc.landing.zone.inital.delay.millisecs=120000 @@ -1000,4 +1000,4 @@ mosip.registration.processor.lostrid.max-registration-date-filter-interval=30 uingenerator.lost.packet.allowed.update.fields=phone,email,permanentAddress ##timeout in milliseconds for health check registrer -mosip.regproc.health-check.handler-timeout=2000 \ No newline at end of file +mosip.regproc.health-check.handler-timeout=2000 From ce4b20f61fed21648970490d517d48538a0d3a90 Mon Sep 17 00:00:00 2001 From: Malleshdappu <93384116+Malleshdappu@users.noreply.github.com> Date: Thu, 14 Nov 2024 09:01:45 +0530 Subject: [PATCH 1358/1358] image-compressor property file adding Signed-off-by: Malleshdappu <93384116+Malleshdappu@users.noreply.github.com> --- image-compressor-default.properties | 7 +++++++ 1 file changed, 7 insertions(+) create mode 100644 image-compressor-default.properties diff --git a/image-compressor-default.properties b/image-compressor-default.properties new file mode 100644 index 00000000000..160eed54587 --- /dev/null +++ b/image-compressor-default.properties @@ -0,0 +1,7 @@ +#iam image-compressor-service config +mosip.bio.image.compressor.resize.factor.fx=0.25 +mosip.bio.image.compressor.resize.factor.fy=0.25 +mosip.bio.image.compressor.compression.ratio=50 +biosdk_class=io.mosip.image.compressor.sdk.impl.ImageCompressorSDKV2 +mosip.role.biosdk.getservicestatus=REGISTRATION_PROCESSOR +biosdk_bioapi_impl=io.mosip.image.compressor.sdk.impl.ImageCompressorSDKV2