Platform

Default value: ""

Client ID provided by Identity Provider. If it is not present, the SSO functionality is disabled.

Default value: ""

Provide the Base URL to the associated Identity Provider. Read access is required for the /.well-known/openid-configuration file to acquire the relevant Provider Configurations.

Default value: ""

The name of the provider needs to be Azure if it is used and groups are returned as uids.

Default value "roles"

Path in ID Token or UserInfo object to find an array of users Access groups as defined by the Access Controller, separated with a dot (.).

The groups should be an array of Strings.

Example:

Here the groups array is inside and object.

{ myObject : { myGroups : [ "myGroup1", "mygroup2" ] } }

The path should then be:

groupPath: myObject.myGroups

When the group's array is direct under UserInfo then groupPath is just the name of the group's array.

Default value: "CLIENT_SECRET_BASIC"

Available authentication methods are CLIENT_SECRET_BASIC and PRIVATE_KEY_JWT

Default value: ""

Path to JKS keystore when PRIVATE_KEY_JWT is used

Default value: ""

Path to JKS keystore when PRIVATE_KEY_JWT is used

auth.oidc.rp.auth.jwt.keystorePassword

Default value: ""

Alias for key in keystore when PRIVATE_KEY_JWT is used

Default value: ""

Optional additional scopes. Default scopes are openid, profile, and email.

Default value: ""

Claim to use as the user name, if not specify sub will be used. This value should be unique. 

Default value: ""

Optional Key ID for JWT header when PRIVATE_KEY_JWT is used

Default value: "TLSv1.2"

Specifies the SSL protocols that will be enabled for SSL connections. The property value is a whitespace separated list of tokens, with possible values "TLSv1, TLSv1.1, TLSv1.2, TLSv1.3".
TLSv1 is not recommended.

Default value: 10

Whenever an update to the Codeserver state is made, such as when saving a workflow with a change in its APL code, the Codeserver state will have to be saved. Using this property allows you to set the minimum interval (in seconds)for how often the Codeserver saves its state to the disk. 

Default value: SHA-256

This property is to use the crypto algorithm for hashing data, for example, files.

mz.cryptoservice.keystore.path

Default value: ""

This property specifies the full path to the crypto service keystore file. This keystore file is used for encrypting/decrypting passwords with specific keys stored in the keystore, and needs to be of JCEKS type. See the JDK product documentation for further information about using keytool in different scenarios. See also the sections describing the mzsh encryptpassword and mzsh reloadkeystore in the /wiki/spaces/MD82/pages/3778935 for further information.

Default value: ""

This property specifies the password for the crypto service keystore file specified by the mz.cryptoservice.keystore.path property. This keystore is used for encrypting/decrypting passwords with specific keys stored in the keystore. See the sections describing the mzsh encryptpassword and mzsh reloadkeystore in the /wiki/spaces/MD82/pages/3778935 for further information.

Default value: false

Set this property to true if you want to bypass the remote database validation in the Database profile. Validation requires that the configured database, tables and columns are available, and if they are unavailable when the validation is performed, the configuration and all its dependents can be marked as invalid. You can set this property if you require to validate your configuration when, or in an environment where, the database or its tables are unavailable.

Default value: "/path/to/accelerators.properties"

Set this property with the default value to set your own key bindings. You require to unpack a properties file from devkit.jar, and go to com/digitalroute/devkit/ui/accelerators/accelerators.properties. Save the accelerators.properties file to disk, and set this property to enable the accelerators.properties file.

Default value: true

This property specifies if the pico instances for Desktop, mzsh, and Service Contexts must be registered on pico hosts for access:

true - Instances always have access.

false - Instances must be registered on pico hosts for access.

Default value: "^.*_anon_.*$, ^SSL_.*$, ^(.*(3DES)).*$, ^.*_DHE_.*$"

This property allows you to use regex to manually disable the Java security cipher suite when using any picos to connect to the Platform with SSL enabled. This property is used when the Platform uses a different Java version than the rest of the picos. As there may be differences in the security ciphers between versions, the property aims to disable these ciphers to allow the picos to communicate with the Platform.

mz.mailserver

Default value: ""

Set the SMTP user to be used for login when having enabled SMTP authentication with the mz.mailserver.auth property.

Default value: false

Set this property to true if you want to enable SMTP authentication. If set to true, you also need to add the properties mz.mailserver.auth.user andmz.mailserver.auth.password.

Default value: ""

This property specifies the name or IP address of the mail server to be used for event generated e-mails.

Default value: ""

Set the encrypted password to be used for the SMTP user stated in the mz.mailserver.auth.user property when having enabled SMTP authentication with themz.mailserver.auth property.

To encrypt the password, use the mzsh encryptpassword command, and enter the result in this field. See the Command Line user documentation for further information on how to use this command.

Default value: 25/587

Use this property to configure which port you want to used for sending event generated e-mails. When the mz.mailserver.auth property is not used, i e set to false, the default value is 25. When the mz.mailserver.auth is set to true, the default value is 587. 

mz.notifier.mailfrom

Default value: ""

This property specifies the sending  e-mail address to be used for event generated e-mails. You must enter an e-mail address for an event notification to be sent by e-mail.

Default value: true

This property enables the cache during a system import.

Default value: 5

Use this property to configure a cache for the external references by entering the number of seconds you want the cache to live. If you require to disable the cache, for example in a development enviroment, set the value to 0.

Default value: 5

Use this property to configure a cache for the external references stored on an S3 Container by entering the number of seconds you want the cache to live. This will only work when you have S3 Properties File selected in your external reference profile. If you require to disable the cache, for example in a development environment, set the value to 0.

mz.platform.wf.max.concurrent.starts

Default value: 10

This is a platform property that controls the number of threads used for the thread pool used by the workflow and group servers.

If you have a very large batch system with a lot of scheduling and workflows that are starting and stopping frequently,  this property might need to be increased to get more threads.

mz.security.user.control.enabled

Default value: [A-Z0-9]

The pattern of the permitted values in regular expression. The password will be matched to the pattern to determine if the condition is met.

Default value: false

Use this property to restrict user login to one instance for each interface type, i e Desktop, Web Interface, and Command Line Tool mzsh.

This property contains one or more service specific identifiers that sets behaviors, that are required by services that run on the Platform.

mz.statistics.collect.all

Default value: true
This property enables or disables collection of all statistics on the Platform. When you set this property to false, it overrides mz.statistics.collect.pico and mz.statistics.collect.workflow.

mz.statistics.collect.pico

Default value: true
This property enables or disables collection of pico statistics on the Platform.

mz.statistics.collect.workflow

Default value: true
This property enables or disables collection of workflow statistics on the Platform.

Default value: false

This property determines if the subfolder feature in Desktop is enabled or disabled. If you want to enable the subfolders feature in Desktop, set the value to true.

mz.subfolder.separator

Default value: "_"

This property determines the separator you can use when naming folders in the Desktop so that the subfolder feature is enabled. The valid values are "-" or "_".

Default value: 500000

This property determines the maximum number of search results when you run a search in the System Log.

mz.ultra.bitfield.codec

Default value: "false"

This property selects the implementation that is to be used for ultra bit_block. If set to “true”, the newly selected implementation will be used. Values that are not set using this property will use the old implementation.

Default value: ""

If you want to set any XML data type to be converted into string, you must set the value of this property to the data type you intend to convert. For example, if you wish to have all decimal data type be handled as string, set the value of this property to decimal.

For further information on XML schema support, see /wiki/spaces/MD82/pages/3781718.

Default value: off

If you want to use XML union element type, you must enable this property .  If you want to use unions and restrictions inside unions, set this property to  union . If you want to use restrictions everywhere, including inside union type, set this property to  on . For further information on XML schema support, see /wiki/spaces/MD82/pages/3781718.

mz.use.date.timezone

Default value: false

If you add this property with the value true, files or configurations with more than one underscore at the beginning of the name are not visible from the Desktop after you restart the Platform.

mz.wi.host

Default value: Taken from the common property pico.rcp.server.host.

This is the host IP address or hostname used to communicate with the Platform Web Interface.

mz.webserver.port

Default value: 2700

This property specifies the time (in seconds) to wait before de-registering an unreachable EC from the Platform. Once de-registered, another EC can be brought up to replace it.

An EC is considered to be unreachable when the last known state was that it was running, but has since lost contact with the Platform.

pico.rcp.tls.keystore

Default value: ""

Set this property to enable the system to use TLS for all RCP connections that are not from the local host. If this property is not set, TLS will not be used at all.

Default value: MZ_HOME/tmp

This property specifies the pico temp directory you want the Platform to use.

snmp.trap.format.b