source: TI12-security/trunk/NDGSecurity/python/Tests/esg_integration/test_attributeserviceclient.cfg @ 7357

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/NDGSecurity/python/Tests/esg_integration/test_attributeserviceclient.cfg@7357
Revision 7357, 3.7 KB checked in by pjkersha, 10 years ago (diff)

Incomplete - task 2: XACML-Security Integration

  • implemented caching of authorisation decision statements in the PEP to cut down on calls to authorisation service.
Line 
1# ESG
2#
3# Conifguration for SAML SOAP Binding Interface to the Attribute Service
4#
5# P J Kershaw 02/08/10
6#
7# Copyright (C) 2010 Science and Technology Facilities Council
8#
9# BSD - See LICENCE file for details
10
11#  use a separate test case class in the test module and is
12# included here
13
14[test01ncarAttributeQuery]
15uri = https://esg.prototype.ucar.edu/saml/soap/secure/attributeService.htm
16subject = https://esg.prototype.ucar.edu/myopenid/testUser
17
18attributeQuery.deserialise = ndg.security.common.saml_utils.esg.xml.etree:EsgResponseElementTree.fromXML
19attributeQuery.subjectIdFormat = urn:esg:openid
20attributeQuery.clockSkewTolerance = 1.
21attributeQuery.issuerName = /O=Site A/CN=Authorisation Service
22attributeQuery.queryAttributes.0 = urn:esg:email:address, EmailAddress, http://www.w3.org/2001/XMLSchema#string
23attributeQuery.queryAttributes.1 = urn:esg:first:name, FirstName, http://www.w3.org/2001/XMLSchema#string
24attributeQuery.queryAttributes.2 = urn:esg:last:name, LastName, http://www.w3.org/2001/XMLSchema#string
25attributeQuery.queryAttributes.groupRole1 = urn:esg:group:role, GroupRole, groupRole
26
27# SSL Context Proxy settings
28attributeQuery.sslCACertDir = %(here)s/ca
29attributeQuery.sslCertFilePath = %(here)s/pki/test.crt
30attributeQuery.sslPriKeyFilePath = %(here)s/pki/test.key
31attributeQuery.sslValidDNs = /C=US/ST=Colorado/L=Boulder/O=University Corporation for Atmospheric Research/OU=Computational & Information Systems LaboratoryUniversity /CN=*.prototype.ucar.edu
32
33[test02pcmdiAttributeQuery]
34uri = https://esg2.prototype.ucar.edu/saml/soap/secure/attributeService.htm
35subject = https://esg.prototype.ucar.edu/myopenid/testUser
36
37attributeQuery.deserialise = ndg.security.common.saml_utils.esg.xml.etree:EsgResponseElementTree.fromXML
38attributeQuery.subjectIdFormat = urn:esg:openid
39attributeQuery.clockSkewTolerance = 1.
40attributeQuery.issuerName = /O=Site A/CN=Authorisation Service
41attributeQuery.queryAttributes.0 = urn:esg:email:address, EmailAddress, http://www.w3.org/2001/XMLSchema#string
42attributeQuery.queryAttributes.1 = urn:esg:first:name, FirstName, http://www.w3.org/2001/XMLSchema#string
43attributeQuery.queryAttributes.2 = urn:esg:last:name, LastName, http://www.w3.org/2001/XMLSchema#string
44attributeQuery.queryAttributes.groupRole1 = urn:esg:group:role, GroupRole, groupRole
45
46# SSL Context Proxy settings
47attributeQuery.sslCACertDir = %(here)s/ca
48attributeQuery.sslCertFilePath = %(here)s/pki/test.crt
49attributeQuery.sslPriKeyFilePath = %(here)s/pki/test.key
50attributeQuery.sslValidDNs = /C=US/ST=Colorado/L=Boulder/O=University Corporation for Atmospheric Research/OU=Computational & Information Systems LaboratoryUniversity /CN=*.prototype.ucar.edu
51
52[test03pcmdiProductionAttributeQuery]
53uri = https://pcmdi3.llnl.gov/esgcet/saml/soap/secure/attributeService.htm
54subject = https://ceda.ac.uk/openid/Philip.Kershaw
55
56attributeQuery.deserialise = ndg.security.common.saml_utils.esg.xml.etree:EsgResponseElementTree.fromXML
57attributeQuery.subjectIdFormat = urn:esg:openid
58attributeQuery.clockSkewTolerance = 1.
59attributeQuery.issuerName = /O=Site A/CN=Authorisation Service
60attributeQuery.queryAttributes.0 = urn:esg:email:address, EmailAddress, http://www.w3.org/2001/XMLSchema#string
61attributeQuery.queryAttributes.1 = urn:esg:first:name, FirstName, http://www.w3.org/2001/XMLSchema#string
62attributeQuery.queryAttributes.2 = urn:esg:last:name, LastName, http://www.w3.org/2001/XMLSchema#string
63attributeQuery.queryAttributes.groupRole1 = urn:esg:group:role, GroupRole, groupRole
64
65# SSL Context Proxy settings
66attributeQuery.sslCACertDir = %(here)s/ca
67attributeQuery.sslCertFilePath = %(here)s/pki/test.crt
68attributeQuery.sslPriKeyFilePath = %(here)s/pki/test.key
69attributeQuery.sslValidDNs = /CN=pcmdi3.llnl.gov/OU=ICCD/O=Lawrence Livermore National Laboratory/L=Livermore/ST=California/C=US
70
Note: See TracBrowser for help on using the repository browser.