ch.nevis.navajo.boot.ShowErrorsOnBoot | Boolean, default: false | You may set this property if navajo doesn't start without a visible reason printed or logged. |
ch.nevis.navajo.boot.PreventStartOnInvalidConfig | Boolean, default: false | This property defines the behavior of nevisProxy in case of an invalid configuration, such as an invalid web.xml file or a missing .cert file. - If you set the property to "true", nevisProxy will not start the instance at all.- If you set the property to "false", which is the default, nevisProxy will start the instance, but returns the HTTP status code "500". |
ch.nevis.navajo.response.BufferBlocks | Integer, default: 512 | Determines the number of blocks used for response buffering (one block is buffering 8192 bytes). |
ch.nevis.navajo.request.BufferSize | Integer, default: 65536 | Defines the number of bytes for request body buffering (needed for TLS renegotiation and body parsing). |
ch.nevis.navajo.request.MemBufferSize | Integer, default: 102400 | Maximum size of a request body that will be buffered into memory (needed if someone is calling mark(..) on the InputStream). If the request body exceeds that value, a file will be used for buffering. |
ch.nevis.navajo.error-page.CheckAcceptHeader | Boolean, default: true | If this property is set to "true", nevisProxy checks the HTTP header Accept against the mime type for the configured error page. |
ch.nevis.navajo.tracing.ReconfigurationPeriod | Integer, default: not configured | This property allows detecting changes in the trace configuration. It defines the period during which the changes are detected. By default, this property is not set. |
ch.nevis.navajo.boot.PreloadLibraries | String, default: not configured | Configures list of shared object files that will be loaded first. |
ch.nevis.navajo.loading.servlet.LibPath | String, default: not configured | Normally, all servlets and filters will be loaded from the directory WEB-INF/lib. With that property an alternative directory can be configured. |
ch.nevis.navajo.admin.ListenerPeriod | Integer, default: 10 | Periodicity of the admin listener, i.e. how fast a 'stop' event is propagated. |
ch.nevis.navajo.request.ThrowExceptionOnInvalidHeader | Boolean default: false | If this property is set to "true", nevisProxy returns a Bad Request (status code 400) to the client if a header is not RFC 2616 conform. If this property is set to "false", or not set at all, nevisProxy just cuts off the invalid header. In both cases, nevisProxy logs an ERROR message with one of the following error codes:* [NVRQ-0001], [NVRQ-0002], [NVRQ-0003] |
ch.nevis.session.sectoken.algorithm.blacklist | String default: MD2withRSA, MD5withRSA | Defines a blacklist of algorithms which are not accepted for sectoken signing. Existing algorithms: SHA1withRSA, SHA256withRSA, SHA384withRSA, SHA512withRSA, MD2withRSA, MD5withRSA, SHA1withDSA |
bc.lang.system.MaxAllocSize | Integer default: 16777215 | With this property, the maximal allocable size can be increased. The default is 16777215 bytes. An attacker may try to allocate several times the defined size, which would cause a memory overflow on your server. This is a low-level technical parameter, consult support before changing it. |
ch.nevis.isiweb4.filter.lua.CheckMemory | Boolean default: false | With this property the memory in the LuaFilter will be analyzed and an exception will be thrown in case of memory errors. NEVER use in production. |
ch.nevis.bc.sql.mysql.MaxLoopsToGetAConnection | Integer, optional, advanced default: unlimited | With this property you can limit the number of retries to get an available MysqlConnection. |
ch.nevis.navajo.TraceClIdAlwaysIfSessionIsThere | Boolean, optional, advanced default: false | Normally if nobody was interested in a session no ClId is logged. This property turns on ClId logging even if no filter/servlet needed a session at all. This also implies a session cache access. |
ch.nevis.navajo.SessionCleanupWaitTimeout | Integer, optional, advanced | The maximal time (in msec) to wait for a reaper-call to wait, before shutting down an instance |
ch.nevis.isiweb4.listener.SessionListener.MaxPendingWorkerJobs | Integer, optional, default: 10000 | Defines the maximal number of jobs that will be queued when reaping. Once this limit is reached, the listeners will not be called for the related sessions. |
ch.nevis.isiweb4.listener.SessionListener.NumWorkerThreads | Integer, optional, default: 10 | Defines the number of threads which will be used to call the listeners when a session is invalidated. If set to '0' the reaping is done sequentially which may have a performance impact if many sessions expire at the same time. |
ch.nevis.ErrorOn Deprecated | Boolean, optional, default: false | This property defines the behavior of nevisProxy in case a filter or servlet configuration contains a deprecated parameter.- If you set the property to "true", nevisProxy will not load the related filter or servlet and block all requests using this filter. Additionally, nevisProxy will log the error message CONF-0001. For more information on this error message, see Low-level properties.- If you set the property to "false", which is the default, nevisProxy will only log a notice message (no error message). The related filter or servlet will be loaded and work as usual. |
ch.nevis.bc.sql.mysql.ConnectTimeout | Integer, optional, default: 10 | This property defines the default connection timeout in seconds for a MySQL connection. If you do not set this property, the connection may "hang" for several minutes before a timeout occurs. This is because the default built-in timeout of the MariaDB database can be up to 20 minutes, depending on the configuration of your MariaDB installation. |
ch.nevis.nevisproxy.UseSecureDefaults | Boolean, optional, default: false | This property allows you to activate the recommended secure filter and servlet values as defaults. This is a global configuration option for the entire nevisProxy installation. See the chapter Secure defaults for more information. |
ch.nevis.navajo.AllowUnknownParameters | Boolean, optional, default: false | If you set this property to "true", the system will silently accept unknown filter or servlet parameters. If the property is set to "false" or not set at all, the system will trace error NVUT-0010 in case of an unknown parameter. See Appendix B - Error Codes for more information about this error code. |
ch.nevis.navajo.AllowMultipleMapping | Boolean, default: false | Checks for multiple mappings of the same filter. If you set this property to "false", the system traces an ERROR if a filter is added multiple times to the filter chain of a request. If set to "true", the system only traces an INFO message. |
ch.nevis.bc.net.multipart.formdata.rfccompliant | Boolean, default: true | Allows multipart requests to have preamble and epilogue parts, as described in RFC1341. |
ch.nevis.bc.sql.mysql.RetriesOnLockWaitTimeOut | Integer, default: 0 | If the configured MariaDB session store returns a "Lock wait timeout exceeded; try restarting transaction" error (error code 1205), nevisProxy can try to re-execute the failed command. This property configures the number of retries allowed in such a case. |
ch.nevis.navajo.hsm.engine.hook | Boolean, default: false | Disables the Proxy's internal OpenSSL's at-exit cleanup when it is set to 'true'. Use this parameter when GemEngine's own OpenSSL's at-exit cleanup is causing cores. |