Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

Introduction

URAC micro-service V3 configuration variables that are needed and can be customized 

1. Password generation

...

configuration

Info
titleLocation

create a custom registry - urac

You can change the values of the below variables to customize iterations, seeding, and the algorithm used to hash passwords.

NameTypeDescription

Example

hashIterationsintegerHashing iteration value used by SOAJS hasher to encrypt/compare passwords16seedLengthintegerSeed length value used by SOAJS hasher to encrypt/compare passwords3212

optionalAlgorithm

string

Password Hashing algorithm name"aes-128-cbc-hmac-sha256"aes256" or "des".

You can go to List of Crypto Algorithms to find the name of the algorithm that you can use.

2. Passport Login variables

Define application keys for passport integration. Currently supporting Twitter, Facebook, and Google. For more information and an example of the configuration, go to Passport Login.

3. Mail Configuration variables

You do not need to set this configuration if you do not want to specify an algorithm

 aes256

More information can be found in the Complete Example

2. Join & Membership

Info
titleLocation

Add to provision - key configuration

Create custom registry - urac

You can change the values of the below variables to customize if you want the user to validate their email once they join or not.

NameTypeDescriptionExample
validateJoinBooleanThis configuration controllers the status of a user after joining. aka ('pendingJoin' : 'active')
 
true
membershipObjectThis configuration allows you to configure different type of membership that can be set while joining to drive different user configuration like groups (make sure the groups is available). Should be an array of groups. 


Code Block
{
	"basic":{
		"groups": ["starter"]
	}
}


3. Mail Configuration

Info
titleLocation

Add to provision - key configuration

Create custom registry  - mail & urac

Mail configuration can be found under two configuration objects:

  1. SMTP Configuration: Under common fields in order to be used in other microservices not only in URAC. This includes the transport configuration for the mail provider.
  2. Email Content Configuration: Under URAC configuration in order to customize mail options to handle URAC requirements. This includes links and content of emails sent in each stage.

More information about Variables used, custom data fields used in "content", and examples of the configuration can be found under Mail Configuration

Examples: In provision

"
Code Block
languagejs
titleMail Configuration in Common Fields
In provision
"commonFields" : {
  "mail": { // to control the smtp configuration
      "from": 'me@localhost.com',
      "transport": {...}
  },
  "typesms":{
	  "sendmailfrom": '16170000000',
      "optionstwilio": {
         "accountSid": "WWWW",
         "authToken": "WWWW"
	  }
  }
}
Code Block
languagejs
titleMail Configuration in URAC Config
"mail,
"urac" : {
  "link": {...}, //urac mail options this object to control the links in the emails
  "joinmail": { // this object to control the content of the "subject": 'Welcome to SOAJS',emails
    "join": {...}, // Join - mail content configuration
    "pathforgotPassword": "./mail/urac/join.tmpl"
  },{...}, // Forgot password mail - content configuration
    "forgotPasswordaddUser": {...}, // Add User - mail "subject": 'Reset Your Password at SOAJS',content configuration
    "changeUserStatus": {...}, // Change User Status - mail content configuration
    "pathchangeEmail": "{...} /mail/urac/forgotPassword.tmpl"/ Change Email - mail content configuration
  },
  "addUsersms": {
	"inviteToJoin": {...}
  "subject": 'Account Created at SOAJS',
}	
}

Examples: In custom registry

You should create to entries under custom registry (one for mail, one for urac, and one for sms) as follow:

Image Added

with the following configuration content:

Code Block
languagejs
titlemail
{ // to control the smtp configuration
      "from": 'me@localhost.com',
      "pathtransport": "./mail/urac/addUser.tmpl"
  },{...}
}


Code Block
languagejs
titleURAC
{
  "changeUserStatuslink": { // this object to control the links in the emails
		"addUser": "...",
		"changeEmail": "...",
		"subjectforgotPassword": "Account Status changed at SOAJS"...",
		"inviteToJoin": "...",
		"join": "..."
	},
  "mail": { //use custom HTML this object to control the content of the emails
    "contentaddUser": {...}, "<p>Dear <b>{{ username }}</b>, <br />Your account status has changed to <b>{{ status }}</b> by the administrator on {{ ts|date('F jS, Y') }}.<br /><br /> Regards,<br/> SOAJS Team. </p>"
  },
  "changeEmail": {
    "changeEmail": {...}, 
    "changePin": {...}, 
    "changeUserStatus": {...}, 
    "forgotPassword": {...}, 
    "invitePin": {...}, 
    "join": {...},
    "subjectresetPin": {...}
	"inviteToJoin"Change Account Email at SOAJS": {...}
  },
  "sms": {
	"pathinviteToJoin": "./mail/urac/changeEmail.tmpl"
  }
}

Variables used, custom data fields used in "content", more information, and examples of the configuration can be found under Mail Notification Configuration

4. Pin configuration variables

...

{...}
  }		
}


Code Block
languagejs
titlesms
{ // to control the smtp configuration
      "from": '16170000000',
      "twilio": {...}
}


4. Mail token configuration

Info
titleLocation

Add to provision - key configuration

Create custom registry - urac

The URAC sends verification mail with links containing token with expiration date.

NameTypeDescriptionExample

tokenExpiryTTL

millisecondsThis configuration controllers the expiration period for the email links token.
 

172800000

5. Pin login configuration

Info
titleLocation

In provision - key configuration

In custom registry 

Pin code adds a second layer of authentication to URAC. For full example, in the hospitality business you want the manager to login and turn on pin login. This way a user can key in a ping and get access. For more information go to Pin login Configuration.

...

6.

...

Data configuration

Resources and database creation steps can be found under Database needed by URAC. More information can be found under the registry configuration layer below.

Configuration Layers and Levels

Default Configuration

Default Configuration layer That can be overridden by one of the below configuration layers.

Tenant Configuration

Table and links to examples 

Link to Complete example 

Registry Configuration 

Table and links to examples 

Database needed by URAC

Configuration priority and the default values

This table illustrates the configuration that can be overridden at a different layer of configuration 

Info
titlePriority

Local → Registry → Tenant 

  1. Local Configuration
  2. Custom Registry
  3. Service Configuration (Tenant)

Name

Local Configuration (Default)

config.js

...

Registry Configuration (Per Environment)

req.soajs.registry

Tenant Configuration (Per Tenant Per Environment)

...

hashIterations

...

You should add a database configuration to the environment where you deployed URAC. for more information go to Data Configuration.

7. Roaming among main tenants

Info
titleLocation

Create custom registry - urac

You can change the values of the below variable to turn on roaming among main tenants. Either you set masterCode or your set dbCodes.


NameTypeDescription

Example

masterCodeString

consolidate all main tenants' user under one master db and create roaming capabilities among them by invitation only. 

Also this will consolidate all tenants groups under one master db.

"TTTT"
autoRoamingObjectTo automatically allow roaming among main tenants


Code Block
languagejs
{
	"0000_TENANTID_TO_000": {
		"0000_TENANTID_FROM_000": {
			"groups": ["optional", "..."]
		}
	}
}


dbCodesObject

To consolidate designated main tenants' users and create roaming capabilities among them by invitation only. 

for example we have tenant TTT turning on roaming with tCODE1 and tCODE2


Code Block
languagejs
{
	"TTTT": ["tCODE1", "tCODE2"]
	"XXXX": ["tCODE4", "tCODE5"]
}