source: TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/authz-decision-interface.ini @ 6574

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/authz-decision-interface.ini@6574
Revision 6574, 2.9 KB checked in by pjkersha, 10 years ago (diff)

Changes for addition of AuthzDecisionQuery? WSGI interface (Authorisation service)

Line 
1#
2# SSL Client AuthN WSGI Testing environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7testConfigDir = ../../../config
8port = 5000
9baseURI = localhost:%(port)s
10
11[server:main]
12use = egg:Paste#http
13host = 0.0.0.0
14port = %(port)s
15
16[pipeline:main]
17pipeline = AttributeAuthorityFilter SAMLSoapAttributeInterfaceFilter TestApp
18
19[app:TestApp]
20paste.app_factory = ndg.security.test.unit.wsgi.saml.test_soapattributeinterface:TestApp
21
22[filter:SAMLSoapAttributeInterfaceFilter]
23paste.filter_app_factory = ndg.security.server.wsgi.saml.attributeinterface:SOAPAttributeInterfaceMiddleware.filter_app_factory
24prefix = saml.
25saml.pathMatchList = /attributeauthority/saml
26saml.queryInterfaceKeyName = attributeQueryInterface
27
28#______________________________________________________________________________
29# Attribute Authority WSGI settings
30#
31[filter:AttributeAuthorityFilter]
32# This filter is a container for a binding to a SOAP based interface to the
33# Attribute Authority
34paste.filter_app_factory = ndg.security.server.wsgi.attributeauthority:AttributeAuthorityMiddleware.filter_app_factory
35
36prefix = attributeAuthority.
37
38attributeAuthority.environKeyName: attributeauthority
39attributeAuthority.environKeyNameAttributeQueryInterface: attributeQueryInterface
40
41# Attribute Authority settings
42# 'name' setting MUST agree with map config file 'thisHost' name attribute
43attributeAuthority.name: Site A
44
45# Lifetime is measured in seconds
46attributeAuthority.attCertLifetime: 28800 
47
48# Allow an offset for clock skew between servers running
49# security services. NB, measured in seconds - use a minus sign for time in the
50# past
51attributeAuthority.attCertNotBeforeOff: 0
52
53# All Attribute Certificates issued are recorded in this dir
54attributeAuthority.attCertDir: %(testConfigDir)s/attributeauthority/sitea/attributeCertificateLog
55
56# Files in attCertDir are stored using a rotating file handler
57# attCertFileLogCnt sets the max number of files created before the first is
58# overwritten
59attributeAuthority.attCertFileName: ac.xml
60attributeAuthority.attCertFileLogCnt: 16
61attributeAuthority.dnSeparator:/
62
63# Location of role mapping file
64attributeAuthority.mapConfigFilePath: %(testConfigDir)s/attributeauthority/sitea/siteAMapConfig.xml
65
66# Settings for custom AttributeInterface derived class to get user roles for given
67# user ID
68attributeAuthority.attributeInterface.modFilePath: %(testConfigDir)s/attributeauthority/sitea
69attributeAuthority.attributeInterface.modName: ndg.security.test.config.attributeauthority.sitea.siteAUserRoles
70attributeAuthority.attributeInterface.className: TestUserRoles
71
72# Config for XML signature of Attribute Certificate
73attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key
74attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt
75attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt
Note: See TracBrowser for help on using the repository browser.