SYNOPSIS
- dacs_sts [m[blue]dacsoptionsm[][1]]
DESCRIPTION
The dacs_sts web service is the Secure Token Service for DACS's managed Information Cards.
Refer to m[blue]dacs_managed_infocard(8)m[][2] for additional information.
-
Security
Depending on the application, consider adding a custom access control rule for dacs_sts (e.g., to limit access to a particular host or subnet, or even certain identities).
Configuration
The following configuration variables are available:
infocard_sts_password
- For managed InfoCards generated with a m[blue]INFOCARD_STS_AUTH_TYPEm[][3] of "passwd" and an m[blue]INFOCARD_STS_PASSWORD_METHODm[][4] of "sts", this is the global user password that must be provided. Changing this password affects all managed InfoCard accounts.
OPTIONS
Web Service Arguments
None.
DIAGNOSTICS
The program exits 0 if everything was fine, 1 if an error occurred.
BUGS
Secure token replay detection is not yet implemented.
As this is a relatively new and complicated feature, please test carefully.
AUTHOR
Distributed Systems Software (m[blue]www.dss.cam[][11])
COPYING
Copyright2003-2012 Distributed Systems Software. See the m[blue]LICENSEm[][12] file that accompanies the distribution for licensing information.
NOTES
- 1.
- dacsoptions
- 2.
- dacs_managed_infocard(8)
- 3.
- INFOCARD_STS_AUTH_TYPE
- 4.
- INFOCARD_STS_PASSWORD_METHOD
- 5.
- dacsinfocard(1)
- 6.
- dacs.conf(5)
- 7.
- dacs_authenticate(8)
- 8.
- dacs_infocard(8)
- 9.
- dacs_mex(8)
- 10.
- Using InfoCards With DACS
- 11.
- www.dss.ca
- 12.
-
LICENSE