Web Access Management Options

This document describes the Web options for the Web Access Management options group. Review these options to determine any necessary setup that your organization might need to perform.

ICON_LOGIN[scope][_lang]

This option defines the display properties of the <!--{portalsubmit}--> token on the pverify2_web.html form. This option accepts HTML, defining either the text or an image to use in place of the text. For example:

ICON_LOGIN=<strong>Login</strong>

For a graphic link example:

ICON_LOGIN=<img src="/screens/login.gif" border=0>

If this option is not defined, the system displays a system-generated "Submit" button.

This option can vary by scope and language.

PORTAL_ID[_lang]

This option determines the label for the user prompt to verify through a web portal. This option accepts text as a value with HTML markup. For example:

PORTAL_ID=<em>Login using your Michigan ID</em>

This option does not have a default.

PORTAL_INST[_lang]

This option determines the prompt for the user to select the institution with which the user is affiliated. This option accepts text as a value with HTML markup. For example:

PORTAL_ID=<em>Please select your institution.</em>

If this option is not defined, the system uses the following default:

PORTAL_ID=With which institution are you affiliated?

PROXYDNS

This option specifies the domain name to use for DNS wildcarding in the Proxy Rewrite method of Web Access Management. The option format is:

PROXYDNS=<domain name>

For example:

PROXYDNS=www.library.edu

SSLPROXYPORT

This option specifies the secure port for the proxy to use in Web Access Management.

NOTES
  • This option does not enable SSL on your WebPAC. If your organization uses the SSLPORT Web option, the SSLPROXYPORT Web option is overriden by the SSLPORT Web option.
  • Your organization must have an SSL certificate to use the SSLPROXYPORT or SSLPORT Web options. For details, see the Sierra SSL Overview on CSDirect.
  • See SSLPORT and Secure Sockets Layer (SSL) for details on setting up SSL for WebPAC.

This option is defined as follows:

SSLPROXYPORT=<unsecured_port>:<secure_port>:<unsecured_name>:<secure_name>

The <unsecured_port> entry corresponds to the port on which your WebPAC runs (default port 80). The <secure_port> entry corresponds to the port on which your SSL WebPAC runs (default port 443). The <unsecured_name> entry is the alias of the non-secure port (e.g., public.opac.edu). The <secure_name> entry is the alias for the secure port (e.g., library.opac.edu). This field must match the common name as defined in your SSL certificate. See the SSL Overview on CSDirect for details.

For example:

SSLPROXYPORT=80:443:public.opac.edu:library.opac.edu

You may enter multiple <unsecured_port>:<secure_port>:<unsecured_name>:<secure_name> groups into the option value by separating them with a vertical bar character ('|').

For example:

SSLPROXYPORT=80:443:public.opac.edu:library.opac.edu|2080:444:everyone.opac.edu:secure.opac.edu

TIMEOUT_WAMPATRON

This option defines the duration, in seconds, of inactivity before a patron is automatically logged-out of My Account and Web Access Management. The system honors this option only if the second element of the MY_WEBPAC Web option is set to 1, 2, or 3.

If this option is not defined or does not exist, and the MY_WEBPAC Web option is set to 2 or 3, the system uses the following default setting:

TIMEOUT_WAMPATRON=1800

Note that 1800 seconds translates to 30 minutes.

If this option is not defined and the MY_WEBPAC Web option is set to 1, the system does not offer a default timeout.

WAM_LOG_IP

If this option is set to a "true" value (any word starting with 't', 'T', 'y', 'Y', or the number '1') Web Access Management will log the IP address of the user's computer.

If this option is set to a "false" value (any word starting with 'f', 'F', 'n', 'N', or the number '0'), or is not defined, Web Access Management will not log the IP address of the user's computer.

WAM_LOG_PNUM

If this option is set to a "true" value (any word starting with 't', 'T', 'y', 'Y', or the number '1') Web Access Management will log the patron record number of the user (if known).

If this option is set to a "false" value (any word starting with 'f', 'F', 'n', 'N', or the number '0'), or is not defined, Web Access Management will not log the patron record number of the user.

WAM_LOG_REJECTIONS

If this option is set to a "true" value (any word starting with 't', 'T', 'y', 'Y', or the number '1') Web Access Management will log rejected forwarding requests.

If this option is set to a "false" value (any word starting with 'f', 'F', 'n', 'N', or the number '0'), or is not defined, Web Access Management does not log rejected forwarding requests.

WEBPROXY_COOKIE_REFRESH_TIME

This option specifies the time of day that the cookie key should refresh. The option format is:

WEBPROXY_COOKIE_REFRESH_TIME=<hour>

Where <hour> is the hour in a day from 0 to 23. For example:

WEBPROXY_COOKIE_REFRESH_TIME=22

This setting has the cookie refresh at 22:00 hours (10:00 PM). If this option is not defined, then the default setting is '0' (12:00 AM - Midnight).

WEBPROXY_TIMEOUT

This option specifies the timeout for requests placed through Web Access Management. The option format is:

WEBPROXY_TIMEOUT=[timeout]

Where [timeout] is the timeout duration, in seconds. If this option is not defined, Web Access Management uses the following default setting:

WEBPROXY_TIMEOUT=60