1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
|
[global]
# Enable debug logging and use uncompressed javascript.
# Possible values: true, false; Default: false
debug = true
# Enable core dumps
# Possible values: true, false; Default: false
enablecore = true
# Set non-SSL listener port. If omitted, no listener will be started.
port = 8000
# Set bind address of non-SSL listener.
#bindaddr = 127.0.0.1
# Set hostname (optional, for HTTP 1.1 host header comparison if running behind NAT)
# hostname = localhost
# Set syslog logging facility.
# Possible values: see syslog(3), without the LOG_ prefix
# Default: DAEMON.
# On Windows, this option is ignored and the looging is done via OutputDebugstring
logfacility = LOCAL6
# Set syslog mask.
# Possible values: DEBUG, INFO, NOTICE, WARNING, ERR, CRIT, ALERT, EMERG
# Multiple values: separate with the pipe sign "|"
# Default: all enabled
#logmask = WARN|ERR|INFO
# Enable daemon mode.
# Default: false, Currently ignored on Windows.
daemon = true
# Redirect permanently to https
# If listeners for both SSL and non-SSL are configured, enabling this,
# will answer all requests on the non-SSL port with a HTTP redirect response
# pointing to the SSL port.
#
# Default: false
redirect = true
# Path of daemon's PID file.
# Default: none => Don't create a PID-file
# Currently ignored on Windows
pidfile = /var/run/wsgate/wsgate.pid
[http]
# Set document root of web service. NO Default!
documentroot = %pkgdatadir%
[ssl]
# Set SSL listener port. If omitted, no SSL listener will be started.
#port = 4430
# Set bind address of non-SSL listener.
#bindaddr = 127.0.0.1
# Set server cert filename. This option is mandatory, if SSL an listener
# is enabled. It must contain a PEM encoded certificate and the corresponding
# private key.
#certfile = %sysconfdir%/%PACKAGE%/test.pem
# Set password of SSL private key.
#certpass = verysecret
[acl]
# The entries in this section limit the destination RDP hosts that can be
# connected to.
# The order directive, along with the allow and deny directives, controls a three-pass access
# control system. The first pass processes either all allow or all deny directives, as specified
# by the Order directive. The second pass parses the rest of the directives (deny or allow).
# The third pass applies to all requests which do not match either of the first two.
#
# Note that all allow and deny directives are processed, unlike a typical firewall, where only
# the first match is used. The last match is effective (also unlike a typical firewall).
# Additionally, the order in which lines appear in the configuration files is not significant.
# All allow lines are processed as one group, all deny lines are considered as another,
# and the default state is considered by itself.
#
# Possible values:
# allow,deny
# First, all allow directives are evaluated; at least one must match, or the request is rejected.
# Next, all deny directives are evaluated. If any matches, the request is rejected.
# Last, any requests which do not match an allow or a deny directive are denied by default.
#
# deny,allow
# First, all deny directives are evaluated; if any match, the request is denied unless it also
# matches an allow directive. Any requests which do not match any allow or deny directives
# are permitted.
#
# Default: deny,allow
#order = deny,allow
# Possible values: <hostname or IP-Address>, wildcard-characters: * and ?
#allow = 192.168.1.*
# Possible values: <hostname or IP-Address>, wildcard-characters: * and ?
#deny = *.freerdp.net
[rdpoverride]
# The entries in this section can be used to override entries in the
# login form. If specified here, the user won't be able to modify
# those entries interactively anymore.
# Override the destination RDP host
#host = localhost
# Override the destination RDP port
#port = 3389
# Override the RDP username
#user = guest
# Override the RDP passwod
#pass = secret
# Override performance
# Possible values:
# 0 = LAN
# 1 = Broadband
# 2 = Modem
#performance = 0
# Disable wallpaper
#nowallpaper = true
# Disable full window dragging
nofullwindowdrag = true
# Disable menu animation
#nomenuanimation = true
# Disable theming
#notheming = true
# Disable TLS towards RDP backend
#notls = true
# Disable network level authentication
#nonla = true
# Override NTLM authentication version
# Possible values:
# 1 = NTLMv1
# 2 = NTLMv2
#forcentlm = 2
[openstack]
#authurl = http://10.0.0.1:5000/v2.0
#Specify the version for keystone
#keystoneversion = v2.0 or v3
#username = admin
#password = secret
#tenantname = admin
#region = optional region
[hyperv]
# Credentials used to connect to the Hyper-V hosts when accessing
# OpenStack instances consoles
#hostusername = Administrator
#hostpassword = secret
|
