...
Property | Value |
---|---|
ca.providers | <list of provider names> |
nemidprod. | |
ca.certificates | <list of public certificate files> |
ca.provider.xxxx.class | <java class> |
ca.provider.xxxx.issuerdn | Issuer's DN |
ca.provider.xxxx.crl | <url> |
ca.provider.xxxx.crl.prefercertificateurl | <true |
| false> - Defaults to true | |
ca.provider.xxxx.crl.interval | <interval in minutes> (default 15) |
ca.provider..xxxx.check.signingcapability | <true |
| false> | |
ca.provider.xxxx.check.crl | <true |
| false> | |
ca.provider.xxxx.check.chain | <true |
| false> | |
ca.provider.xxxx. allow.obsolete.crl | <true |
| false> | |
ca.provider.xxxx.crl.verifysignature | <true |
| false> (default true) | |
ca.provider.xxxx.check.ocsp | <true |
| false> | |
ca.provider.xxxx.ocsp.url | <URL> |
ca.provider.xxxx.ocsp.prefercertificateurl | <true |
| false> - Defaults to true | |
ca.provider.xxxx.ocsp.ignoretimechecks | <true |
| false> | |
ca.provider.xxxx.ocsp.cachetimeout | <timeout in minutes> |
ca.provider.xxxx.ocsp.timedifference | <Time difference in minutes> (Default 2) |
ca.provider.xxxx.nemid.appletparam.ZZ.keystore.file | <filename> |
ca.provider.xxxx.nemid.appletparam.ZZ.keystore.type | <keystore type> - Default "PKCS12" |
ca.provider.xxxx.nemid.appletparam.ZZ.keystore.password | <password> |
ca.provider.xxxx.nemid.appletparam.ZZ.keystore.provider | Name of JCE provider to use when loading the keystore – default is BC |
ca.provider.xxxx.nemid.appletparam.ZZ.keystore.privkeyalias | <private key alias name> |
ca.provider.xxxx.nemid.appletparam.ZZ.keystore.certalias | <certificate alias name> |
ca.provider.xxxx.nemid.appletparam.ZZ.jceprovider | <provider name> - Default BC |
ca.provider.xxxx.nemid.providerid | <List of integers, separated by , or ;> - Must be present when using NemID – you get the ID from DanID. |
ca.provider.xxxx.clientcert.keystore.file | <Filename> |
ca.provider.xxxx.clientcert.keystore.type | <Keystore type> - Default PKCS12 |
ca.provider.xxxx.clientcert.keystore.provider | <JCE provider name> - Default BC |
ca.provider.xxxx.clientcert.keystore.password | <Password for keystore> |
ca.provider.xxxx.clientcert.keystore.privatekeyalias | <Alias name> |
ca.provider.xxxx.clientcert.keystore.certificatealias | <Alias name> |
ca.provider.xxxx.http.verifyhostname | <true |
| false> - Default true | |
ca.provider.xxxx.attr.url | <URL> |
ca.provider.xxxx.attr.verifysslcert | <true or false - default is true> |
ca.provider.xxxx.attr.acceptedsslcerts | <List of filenames, separated by comma or semicolon> |
ca.provider.xxxx.attr.keystore.provider | <JCE provider name> - Default "BC" |
ca.provider.xxxx.attr.issuername | <Issuer name> - Default "TDC OCES CA" |
ca.provider.xxxx.pidcpr.url | <URL> |
ca.provider.xxxx.pidcpr.verifysslcert | <true or false - default is true> |
ca.provider.xxxx.pidcpr.acceptedsslcerts | <List of filenames, separated by comma or semicolon> |
ca.provider.xxxx.ssl.providername | <SSL Context provider name> - Default is blank (use JDK default) |
ca.provider.xxxx.ssl.protocol | <SSL protocol – default TLS> |
proxy.enable | <true |
| false> | |
http.proxyHost | <ip address or hostname> |
http.proxyPort | <port number> |
http.proxyUser | <userid> - default blank. |
http.proxyPassword | <password> |
tdc.oces.ldap.servers | <Comma separated list of LDAP servers> |
tdc.oces.ldap.basedn | <Base DN> |
jce.customproviders | <Comma or semicolon separated list of classes> |
...