source: TI12-security/trunk/ndg_saml/ndg/saml/test/binding/soap/authz-service.ini @ 7138

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/ndg_saml/ndg/saml/test/binding/soap/authz-service.ini@7138
Revision 7138, 2.1 KB checked in by pjkersha, 10 years ago (diff)

Incomplete - task 2: XACML-Security Integration

  • ported SAML WSGI middleware unit tests from ndg.security.
Line 
1#
2# INI file to test the SAML Authorisation middleware
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7testConfigDir = ../../../config
8port = 5000
9baseURI = localhost:%(port)s
10queryInterfaceKeyName = AUTHZ_DECISION_QUERY_FUNC
11[server:main]
12use = egg:Paste#http
13host = 0.0.0.0
14port = %(port)s
15
16[pipeline:main]
17pipeline = AuthorisationServiceFilter SAMLSoapAuthzDecisionInterfaceFilter TestApp
18
19[app:TestApp]
20paste.app_factory = ndg.security.test.unit.wsgi.saml:TestApp
21
22[filter:SAMLSoapAuthzDecisionInterfaceFilter]
23paste.filter_app_factory = ndg.security.server.wsgi.saml:SOAPQueryInterfaceMiddleware.filter_app_factory
24prefix = saml.
25saml.pathMatchList = /authorisationservice
26saml.queryInterfaceKeyName = %(queryInterfaceKeyName)s
27saml.deserialise = ndg.saml.xml.etree:AuthzDecisionQueryElementTree.fromXML
28saml.serialise = ndg.saml.xml.etree:ResponseElementTree.toXML
29
30# AuthzDecisionQuery Response settings
31saml.issuerName = /O=NDG/OU=CEDA/CN=Authorisation Service
32saml.issuerFormat = urn:oasis:names:tc:SAML:1.1:nameid-format:x509SubjectName
33saml.clockSkewTolerance = 1
34saml.assertionLifetime = 86400
35
36#______________________________________________________________________________
37# Authorisation Service WSGI settings
38#
39[filter:AuthorisationServiceFilter]
40# This filter is a container for a binding to a SOAP based interface to the
41# Attribute Authority
42paste.filter_app_factory = ndg.security.server.wsgi.authzservice:AuthzServiceMiddleware.filter_app_factory
43prefix = authz.
44authz.policyFilePath = %(here)s/policy.xml
45authz.queryInterfaceKeyName = %(queryInterfaceKeyName)s
46
47# Policy Information Point settings - makes an Attribute Queries to
48# Attribute Authorities
49authz.pip.attributeQuery.subjectIdFormat = urn:esg:openid
50authz.pip.attributeQuery.queryAttributes.0 = urn:siteA:security:authz:1.0:attr, , http://www.w3.org/2001/XMLSchema#string
51authz.pip.attributeQuery.sslCACertDir=%(testConfigDir)s/ca
52authz.pip.attributeQuery.sslCertFilePath=%(testConfigDir)s/pki/test.crt
53authz.pip.attributeQuery.sslPriKeyFilePath=%(testConfigDir)s/pki/test.key
Note: See TracBrowser for help on using the repository browser.