source: TI05-delivery/ows_framework/trunk/ows_server/development.ini @ 3919

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI05-delivery/ows_framework/trunk/ows_server/development.ini@3919
Revision 3919, 3.0 KB checked in by pjkersha, 13 years ago (diff)

Initial Integration of Single Sign On Service with OpenID and Pylons AuthKit?:

  • WAYF now contains an OpenID textbox for sign in
  • No role integration carried out yet - OpenID has no better privileges than an anonymous user(!)
  • Integrated into Authkit - requires lots of config settings in pylons ini file
  • HTTP 401 error get redirected automatically to WAYF
  • Need to create an AuthKit? egg from SVN 151 checkout - will put on NDG dist

SWITCH OFF security by setting standalone = False in ndgDiscovery.

Line 
1#
2# ows_server - Pylons development environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7debug = true
8email_to = you@yourdomain.com
9smtp_server = localhost
10error_email_from = paste@localhost
11
12[server:main]
13use = egg:Paste#http
14host = 0.0.0.0
15port = 8080
16
17[pipeline:main]
18pipeline = logger main_app
19
20[filter:logger]
21use = egg:Paste#translogger
22
23[app:main_app]
24use = egg:ows_server
25cache_dir = %(here)s/data
26session.key = ows_server
27session.secret = somesecret
28csml_dir = /research/home/spascoe/host/saturn/data/ddc_data/obs
29tmp_dir = %(here)s/data/tmp
30#used for wcs "store":
31publish_dir=%(here)s/ows_server/private/filestore 
32ows_common_config = %(here)s/eg_ows_capabilities.xml
33configfile = %(here)s/ndgDiscovery.config
34
35#the password file needs to be outside the egg:
36#passwordFile =  %(here)s/passwords.txt 
37#but it's gone back to ndgDiscoveryq
38
39# If you'd like to fine-tune the individual locations of the cache data dirs
40# for Myghty, the Cache data, or the Session saves, un-comment the desired
41# settings here:
42#myghty_data_dir = %(here)s/data/templates
43#cache_data_dir = %(here)s/data/cache
44#session_data_dir = %(here)s/data/sessions
45
46# Specify the database for SQLAlchemy to use via
47# pylons.database.session_context.
48# %(here) may include a ':' character on Windows environments; this can
49# invalidate the URI when specifying a SQLite db via path name
50#sqlalchemy.dburi = sqlite:///%(here)s/somedb.db
51
52# Specify the database for SQLObject to use via pylons.database.PackageHub.
53#sqlobject.dburi = sqlite://%(here)s/somedb.db
54
55# WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*
56# Debug mode will enable the interactive debugging tool, allowing ANYONE to
57# execute malicious code after an exception is raised.
58#set debug = false
59
60# AuthKit Set-up
61authkit.setup.method=openid, cookie
62authkit.cookie.secret=secret encryption string
63authkit.cookie.signoutpath = /logout
64authkit.openid.path.signedin=/
65authkit.openid.store.type=file
66authkit.openid.store.config=%(here)s/data/openid
67authkit.openid.session.key = authkit_openid
68authkit.openid.session.secret = random string
69
70authkit.openid.baseurl = http://localhost
71
72# Template for signin
73authkit.openid.template.obj = ndg.security.server.sso.sso.lib.openid_util:make_template
74
75# Handler for parsing OpenID and creating a session from it
76authkit.openid.urltouser = ndg.security.server.sso.sso.lib.openid_util:url2user
77
78# Logging configuration
79[loggers]
80keys = root, ows_server, ndg
81
82[handlers]
83keys = console
84
85[formatters]
86keys = generic
87
88[logger_root]
89level = INFO
90handlers = console
91
92[logger_ows_server]
93level = DEBUG
94handlers =
95qualname = ows_server
96
97[logger_ndg]
98level = DEBUG
99handlers =
100qualname = ndg
101
102[logger_authkit]
103level = DEBUG
104handlers =
105qualname = authkit
106
107
108[handler_console]
109class = StreamHandler
110args = (sys.stderr,)
111#level = NOTSET
112level = DEBUG
113formatter = generic
114
115[formatter_generic]
116format = %(asctime)s,%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
117datefmt = %H:%M:%S
118
Note: See TracBrowser for help on using the repository browser.