# Storm webdav service will run as this user
# Default: storm
STORM_WEBDAV_USER=storm

# JVM options
STORM_WEBDAV_JVM_OPTS="-Xms256m -Xmx512m -Djava.io.tmpdir=/var/lib/storm-webdav/work"

# StoRM webdav will bind on this address
STORM_WEBDAV_SERVER_ADDRESS="0.0.0.0"

# In order to handle tpc requests, webdav needs to know for which hostnames
# is handling requests (and possibly any alias)
# STORM_WEBDAV_HOSTNAME_0="localhost"
# STORM_WEBDAV_HOSTNAME_1="alias.for.localhost"

# HTTPS connector port
# Default: 8443
STORM_WEBDAV_HTTPS_PORT=8443

# HTTP connector port
# Default: 8085
STORM_WEBDAV_HTTP_PORT=8085

# Path to the service certificate.
# Default: /etc/grid-security/storm-webdav/hostcert.pem
STORM_WEBDAV_CERTIFICATE_PATH="/etc/grid-security/storm-webdav/hostcert.pem"

# Path to the service certificate private key.
# Default: /etc/grid-security/storm-webdav/hostkey.pem
STORM_WEBDAV_PRIVATE_KEY_PATH="/etc/grid-security/storm-webdav/hostkey.pem"

# Trust anchors directory
# Default: /etc/grid-security/certificates
STORM_WEBDAV_TRUST_ANCHORS_DIR="/etc/grid-security/certificates"

# How often (seconds) trust anchors are refreshed from the trust anchors directory
# Default: 86400 (24 hours)
STORM_WEBDAV_TRUST_ANCHORS_REFRESH_INTERVAL=86400

# Max concurrent connections
# Default: 300
STORM_WEBDAV_MAX_CONNECTIONS=300

# Connection queue size
# Default: 900
STORM_WEBDAV_MAX_QUEUE_SIZE=900

# Connector Maximum idle time (in milliseconds)
# Default: 30000 (30 seconds)
STORM_WEBDAV_CONNECTOR_MAX_IDLE_TIME=30000

# Storage area configuration directory
# Default: /etc/storm/webdav/sa.d
STORM_WEBDAV_SA_CONFIG_DIR="/etc/storm/webdav/sa.d"

# The webdav server jar. Do not change this unless you know what you are doing.
STORM_WEBDAV_JAR="/usr/share/java/storm-webdav/storm-webdav-server.jar"

# The StoRM webdav logfile. Do not change this unless you know what you are doing.
STORM_WEBDAV_LOG="/var/log/storm/webdav/storm-webdav-server.log"

# The StoRM webdav logging configuration. Do not change this unless you know what you are doing.
STORM_WEBDAV_LOG_CONFIGURATION="/etc/storm/webdav/logback.xml"

# The StoRM webdav access log configuration. Do not change this unless you know what you are doing.
STORM_WEBDAV_ACCESS_LOG_CONFIGURATION="/etc/storm/webdav/logback-access.xml"

# Enables/disables  support for VO map files
STORM_WEBDAV_VO_MAP_FILES_ENABLE="false"

# Where StoRM WebDAV should look for voms map files.
STORM_WEBDAV_VO_MAP_FILES_CONFIG_DIR="/etc/storm/webdav/vo-mapfiles.d"

# VOMS map files refresh period (in seconds)
STORM_WEBDAV_VO_MAP_FILES_REFRESH_INTERVAL="21600"

# StoRM WebDAV server debug option. Uncomment this (and restart the service)
# if you want to attach a java debugger to the running server process
# STORM_WEBDAV_DEBUG="y"

# JVM debug port. Used together with STORM_WEBDAV_DEBUG to specify on which
# port the JVM should listen for incoming debugger.
# STORM_WEBDAV_DEBUG_PORT=1044

# JVM debug suspend option. Uncomment this to block the process JVM until a remote
# debugger connects to the debugging port specified with the STORM_WEBDAV_DEBUG_PORT
# option
# STORM_WEBDAV_DEBUG_SUSPEND="y"

# Max number of active third party copy connections
STORM_WEBDAV_TPC_MAX_CONNECTIONS="50"

# Proactively verify checksums in third party copy
STORM_WEBDAV_TPC_VERIFY_CHECKSUM="false"


# Enables the OAuth authorization server, used to issue bearer tokens
# to clients presenting a VOMS credential
# Default: true
# STORM_WEBDAV_AUTHZ_SERVER_ENABLE="false"

# The issuer setting for the token
# Default: https://${STORM_WEBDAV_HOSTNAME_0}:${STORM_WEBDAV_HTTPS_PORT}
# STORM_WEBDAV_AUTHZ_SERVER_ISSUER="https://storm.example:8443"

# Maximum token lifetime in seconds
# Default: 43200
# STORM_WEBDAV_AUTHZ_SERVER_MAX_TOKEN_LIFETIME_SEC="43200"

# The WebDAV authz server secret
# This secret is used to sign bearer tokens, so if you have multiple
# instances of storm-webdav serving for the same VOs, you should use
# the same secret
# IMPORTANT: set this in production, do not rely on the default random
# value as that will cause problems across service restarts
#
# Default: a random string
# STORM_WEBDAV_AUTHZ_SERVER_SECRET="areasonablesecretlongerthan256bits"

# Should StoRM WebDAV always require a valid client certificate on the HTTPS endpoint?
# Default: true
# Set to 'false' if you want token-based authentication to work (and thus third-party copy)
# STORM_WEBDAV_REQUIRE_CLIENT_CERT="false"

# Use Conscrypt JSSE provider? 
# Default: false 
# Set to 'true' if you want to use a faster TLS implementation which can improve dramatically
# the performance on data transfers. This flag must also set to "true" when HTTP/2 is enabled
# STORM_WEBDAV_USE_CONSCRYPT="true"

# Use Conscrypt JSSE provider for TPC client connections?
# Default: false 
# Set to 'true' if you want to use a faster TLS implementation which can improve dramatically
# the performance on data transfers. This flag controls the use of Conscrypt for TPC client connections.
# STORM_WEBDAV_TPC_USE_CONSCRYPT="true"

# Enable HTTP/2 support? 
# Default: false 
# Set to 'true' if you want to enable HTTP/2 (and remember to enable conscrypt too!)
# STORM_WEBDAV_ENABLE_HTTP2="false"
