Configuration
Advanced configuration options and customization
Configuration Areas
Application Integration
Apache, IIS, Tomcat, WebLogic, OpenID Connect, Virtual Provider
View Docs
Authentication
Directory, Windows Auth, Magic Link, Social Login
View Docs
Identity Sources
LDAP, Database, Built-in Identity Vault
View Docs
Look & Feel
Branding, colors, custom CSS, localization
View Docs
User Interface
Self-service portal, password management, MFA enrollment
View Docs
Protocol Configuration
SAML 2.0
Entity ID Assertion signing Name ID formats Attribute mapping Single Logout
OAuth 2.0
Client credentials Grant types Token lifetimes Scopes PKCE support
OpenID Connect
Claims configuration ID token settings UserInfo endpoint Discovery document
Environment Variables
Configure JOSSO using environment variables for containerized deployments:
# Server Configuration JOSSO_SERVER_PORT=8443 JOSSO_SERVER_HOST=0.0.0.0 JOSSO_BASE_URL=https://idp.example.com # Database Configuration JOSSO_DB_TYPE=postgresql JOSSO_DB_HOST=db.example.com JOSSO_DB_PORT=5432 JOSSO_DB_NAME=josso JOSSO_DB_USER=josso_user JOSSO_DB_PASSWORD=secure_password # Security Settings JOSSO_SESSION_TIMEOUT=3600 JOSSO_REMEMBER_ME_DURATION=604800 JOSSO_MAX_FAILED_LOGINS=5 JOSSO_LOCKOUT_DURATION=900 # Logging JOSSO_LOG_LEVEL=INFO JOSSO_AUDIT_ENABLED=true
SSL/TLS Configuration
Certificate Setup
Configure SSL/TLS certificates for secure communications:
# Generate a keystore with your certificate keytool -importkeystore \ -srckeystore your-cert.p12 \ -srcstoretype PKCS12 \ -destkeystore josso-keystore.jks \ -deststoretype JKS # Configure in environment JOSSO_SSL_KEYSTORE=/config/josso-keystore.jks JOSSO_SSL_KEYSTORE_PASSWORD=keystore_password JOSSO_SSL_KEY_ALIAS=josso
Recommended Settings
-
Use TLS 1.2 or higher for all connections
-
Enable HTTP Strict Transport Security (HSTS)
-
Configure secure cipher suites
-
Use certificates from trusted Certificate Authorities