<?xml version="1.0"?>
<configuration>
  <!-- application specific settings -->
  <appSettings file="dev.config">
    <add key="MasterConnectionString" value="database=propertymng;password=root;user id=root;server=localhost;port=3307;"/>
    <!-- The file path to the folder that contains the text file used for the mail messages -->
    <add key="DocumentFileUploadInitialPath" value="C:\\Documents\\"/>
    <!-- test:  Payments are processed against a test server  -->
    <!-- live:  Payments are live!  -->
    <add key="PaymentIntegrationSetting" value="test"/>
    <add key="MerchantId" value="107293"/>
    <add key="MerchantPassword" value="HU89KR9"/>
    <add key="CheckPrintingFTPHost" value="67.15.250.12"/>
    <add key="CheckPrintingFTPUsername" value=""/>
    <add key="CheckPrintingFTPPassword" value=""/>
    <!-- 1099 Service  -->
    <!-- true/false: Activates-Deactivates the 1099 service for all subscribers  -->
    <add key="ServiceActivated1099" value="true"/>
    <add key="UserName1099" value="TSTBuildium1"/>
    <add key="Password1099" value="password"/>
    <!-- Tenant Screening -->
    <add key="DefaultURLTenantScreening" value="http://beta.mysmgateway.com/gateway.asmx"/>
    <add key="GatewayIdTenantScreening" value="2"/>
    <add key="SecurityKeyTenantScreening" value="l0u68VyW7Tt0fAY8RppH3cJxHIPBMmM5yn6sqM/VJrH7989uCANR6ZoVFyyF3JzpIHu7GZzxZkvgWIPdzz/WRw=="/>
    <add key="APIClientKeys" value="94FEB1E4-9400-4DE6-9E07-0098BC44DC66,941C269C-6924-4572-B0C3-06153F9D1DD7"/>
    <add key="InternalAPIKey" value="94FEB1E4-9400-4DE6-9E07-0098BC44DC66"/>
  </appSettings>
  <!-- allows users to access all pages in the publicPages folder without authenticating -->
  <location path="publicPages">
    <system.web>
      <authorization>
        <allow users="?"/>
      </authorization>
    </system.web>
  </location>
  <location path="Style">
    <system.web>
      <authorization>
        <allow users="?"/>
      </authorization>
    </system.web>
  </location>
  <location path="Layout">
    <system.web>
      <authorization>
        <allow users="?"/>
      </authorization>
    </system.web>
  </location>
  <location path="Services">
    <system.web>
      <authorization>
        <allow users="?"/>
      </authorization>
    </system.web>
  </location>
  <location path="Images">
    <system.web>
      <authorization>
        <allow users="?"/>
      </authorization>
    </system.web>
  </location>
  <location path="DataServices/Lookups.svc">
    <system.web>
      <authorization>
        <allow users="?"/>
      </authorization>
    </system.web>
  </location>
  <system.web>
    <httpRuntime requestValidationMode="2.0"/>
    <!--  We are turning event validation off because most of the add/edit pages triger postbacks and it
        doesn't work with the new 2.0 event validaiton model.  Low risk that someone will try to hack
        the event validation-->
    <pages enableEventValidation="false" controlRenderingCompatibilityVersion="3.5" clientIDMode="AutoID" validateRequest="false"/>
    <!--  DYNAMIC DEBUG COMPILATION
          Set compilation debug="true" to enable ASPX debugging.  Otherwise, setting this value to
          false will improve runtime performance of this application. 
          Set compilation debug="true" to insert debugging symbols (.pdb information)
          into the compiled page. Because this creates a larger file that executes
          more slowly, you should set this value to true only when debugging and to
          false at all other times. For more information, refer to the documentation about
          debugging ASP.NET files.
    -->
    <compilation defaultLanguage="c#" targetFramework="4.0" debug="true">
      <assemblies>
        <add assembly="System.Data.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/>
        <add assembly="System.Data.Services.Client, Version=4.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/>
      </assemblies>
  </compilation>
    <!--  CUSTOM ERROR MESSAGES
          Set customErrors mode="On" or "RemoteOnly" to enable custom error messages, "Off" to disable. 
          Add <error> tags for each of the errors you want to handle.

          "On" Always display custom (friendly) messages.
          "Off" Always display detailed ASP.NET error information.
          "RemoteOnly" Display custom (friendly) messages only to users not running 
           on the local Web server. This setting is recommended for security purposes, so 
           that you do not display application detail information to remote clients.
    -->
    <customErrors mode="Off"/>
    <!--  AUTHENTICATION 
          This section sets the authentication policies of the application. Possible modes are "Windows", 
          "Forms", "Passport" and "None"

          "None" No authentication is performed. 
          "Windows" IIS performs authentication (Basic, Digest, or Integrated Windows) according to 
           its settings for the application. Anonymous access must be disabled in IIS. 
          "Forms" You provide a custom form (Web page) for users to enter their credentials, and then 
           you authenticate them in your application. A user credential token is stored in a cookie.
          "Passport" Authentication is performed via a centralized authentication service provided
           by Microsoft that offers a single logon and core profile services for member sites.
    -->
    <authentication mode="Forms">
      <forms name="AdminAuth" slidingExpiration="true" timeout="240" loginUrl="~/PublicPages/Login.aspx" protection="All" path="/"/>
    </authentication>
    <authorization>
      <deny users="?"/>
    </authorization>
    <!--  APPLICATION-LEVEL TRACE LOGGING
          Application-level tracing enables trace log output for every page within an application. 
          Set trace enabled="true" to enable application trace logging.  If pageOutput="true", the
          trace information will be displayed at the bottom of each page.  Otherwise, you can view the 
          application trace log by browsing the "trace.axd" page from your web application
          root. 
    -->
    <trace enabled="false" requestLimit="10" pageOutput="false" traceMode="SortByTime" localOnly="true"/>
    <!--  SESSION STATE SETTINGS
          By default ASP.NET uses cookies to identify which requests belong to a particular session. 
          If cookies are not available, a session can be tracked by adding a session identifier to the URL. 
          To disable cookies, set sessionState cookieless="true".
    -->
    <sessionState mode="Off" stateConnectionString="tcpip=127.0.0.1:42424" sqlConnectionString="data source=127.0.0.1;Trusted_Connection=yes" cookieless="false" timeout="20"/>
    <!--  GLOBALIZATION
          This section sets the globalization settings of the application. 
    -->
    <globalization requestEncoding="utf-8" responseEncoding="utf-8" culture="en-US" uiCulture="en-US"/>
    <xhtmlConformance mode="Legacy"/>
  </system.web>
  <system.webServer>
    <defaultDocument>
      <files>
        <clear/>
        <add value="default.aspx"/>
        <add value="default.htm"/>
      </files>
    </defaultDocument>
  </system.webServer>
  <system.serviceModel>
    <serviceHostingEnvironment aspNetCompatibilityEnabled="true"/>
  </system.serviceModel>
</configuration>