# Requires an enterprise license key. Enables or disables asymmetric encryption via SSL. When enabled, the entire communication between the Hazelcast members is encrypted at socket level.
# At least each member has to be configured to use a key store. For a detailed instruction please visist documentation.open-xchange.com. 
# More advanced options may still be configured via the <code>hazelcast.xml</code> file, see instructions on top of this page.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.licenseKey
#
# Default: false
com.openexchange.hazelcast.network.ssl = false

# A comma separated, ranked list of protocols to use for SSL. The list must start at the oldest protocol to use (default 'TLSv1') and end at the highest protocol to use (default 'TLSv1.3')
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.licenseKey,com.openexchange.hazelcast.network.ssl
#
# Default: TLSv1,TLSv1.1,TLSv1.3
com.openexchange.hazelcast.ssl.protocols = TLSv1,TLSv1.1,TLSv1.3

# The path to the key store of the Hazelcast member.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.licenseKey,com.openexchange.hazelcast.network.ssl
#
# Default: <empty>
com.openexchange.hazelcast.ssl.keyStore =

# The password for the key store.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.ssl.keyStore
#
# Default: <empty>
com.openexchange.hazelcast.ssl.keyStorePassword =

# The type for the key store. If not set the default type of Java KeyStore is used.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.ssl.keyStore
#
# Default: <empty>
com.openexchange.hazelcast.ssl.keyStoreType =

# The algorithm of the certificates within the key store. If not set the default value of the managing entity is used.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.ssl.keyStore
#
# Default: <empty>
com.openexchange.hazelcast.ssl.keyManagerAlgorithm =

# The path to the trust store of the Hazelcast member. The CA certificate and all other members certificates need to be a in this store.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.licenseKey,com.openexchange.hazelcast.network.ssl
#
# Default: <empty>
com.openexchange.hazelcast.ssl.trustStore =

# The password for the trust store.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.ssl.trustStore
#
# Default: <empty>
com.openexchange.hazelcast.ssl.trustStorePassword =

# The type for the trust store. If not set the default type of Java KeyStore is used.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.ssl.trustStore
#
# Default: <empty>
com.openexchange.hazelcast.ssl.trustStoreType =

# The algorithm of the certificates within the trust store. If not set the default value of the managing entity is used.
#
# Cascading: false
# Reloadable: true
# Related: com.openexchange.hazelcast.ssl.trustStore
#
# Default: <empty>
com.openexchange.hazelcast.ssl.trustManagerAlgorithm =

# If set to "true" password changes will be recorded. If set to "false" the feature is disabled and no password changes will be recorded. This means *not* that password changes are disabled.
#
# Cascading: true
# Reloadable: false
#
# Default: true
com.openexchange.passwordchange.history.enabled = true

# The number of entries that the server should keep. If set to "0" all entries for given user will be deleted. Setting the value to "0" efficiently disables the feature for a user/context.
#
# Cascading: true
# Reloadable: false
#
# Default: 10
com.openexchange.passwordchange.history.limit = 10

# The actual recorder that saves and retrieves the data. Currently shipped "default" for a MySQL implementation.
#
# Cascading: true
# Reloadable: false
#
# Default: default
com.openexchange.passwordchange.history.recorder = default
