source: TI12-security/trunk/python/ndg.security.server/ndg/security/server/conf/attAuthorityProperties.xml @ 2251

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/python/ndg.security.server/ndg/security/server/conf/attAuthorityProperties.xml@2251
Revision 2251, 1.8 KB checked in by pjkersha, 13 years ago (diff)

ndg.security.server/setup.py:

ndg.security.server/setup.cfg:

  • removed EasyInstall? and build sections
  • reinstated tag_build - set to '_dews' - and tag_svn_revision

ndg.security.server/ndg/security/server/AttAuthority/server-config.tac:

  • removed socket import and added os
  • added M2Crypto SSL support - works with Python client unit tests (required setting SSL v2 and 3 support)

but problems with WebSphere? client

ndg.security.server/ndg/security/server/AttAuthority/init.py,
ndg.security.server/ndg/security/server/conf/attAuthorityProperties.xml,
ndg.security.test/ndg/security/test/AttAuthority/siteAAttAuthorityProperties.xml,
ndg.security.test/ndg/security/test/AttAuthority/siteBAttAuthorityProperties.xml:

  • added sslKeyPwd setting for properties

ndg.security.server/ndg/security/server/MyProxy.py:

  • ensure cnHostPfx is reinitialised to if equal to None

ndg.security.common/setup.py:

  • added M2Crypto, ZSI and 4Suite to dependencies
  • revised dependency links to use NDG site, http://ndg.nerc.ac.uk/dist and ZSI sourceforge link taken

from pyGridWare settings. Latter won't work for PyXML but does work from command line ??

ndg.security.common/ndg/security/common/wsSecurity.py:

  • IMPORTANT FIX * - removed strip() from signed info digest calc - NOT needed and caused some problems

with verify.

  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
Line 
1<?xml version="1.0" encoding="utf-8"?>
2<AAprop>
3        <!--
4        'name' setting MUST agree with map config file 'thisHost' name
5        attribute
6        -->
7    <name>BADC</name> 
8    <portNum>5000</portNum>
9    <!--
10    PKI settings for transport level encryption
11    -->
12    <useSSL></useSSL> <!-- leave blank to use http -->
13    <sslCertFile></sslCertFile>
14    <sslKeyFile></sslKeyFile>
15    <sslKeyPwd></sslKeyPwd>
16    <!--
17    PKI settings for signature of outbound SOAP messages
18    -->
19    <certFile></certFile>
20    <keyFile></keyFile>
21    <keyPwd></keyPwd>
22    <caCertFile></caCertFile>
23    <!--
24    Set the certificate used to verify the signature of messages from the
25    client.  This can usually be left blank since the client is expected to
26    include the cert with the signature in the inbound SOAP message
27    -->
28    <clntCertFile></clntCertFile>   
29    <attCertLifetime></attCertLifetime> <!-- Measured in seconds -->
30        <!--
31        Allow an offset for clock skew between servers running
32        security services.  - Use minus sign for time in the past
33        -->
34    <attCertNotBeforeOff>0</attCertNotBeforeOff>
35    <!-- Location of role mapping file -->
36    <mapConfigFile></mapConfigFile>
37    <!-- All Attribute Certificates are recorded in this dir before dispatch
38    to SOAP requestor
39    -->
40    <attCertDir></attCertDir>
41    <!--
42    File prefix and suffix for files stored in attCertDir
43    -->
44    <attCertFilePfx>ac-</attCertFilePfx>
45    <attCertFileSfx>.xml</attCertFileSfx>
46    <dnSeparator>/</dnSeparator>
47    <!--
48    Settings for custom AAUserRoles derived class to get user roles for
49    given user ID
50    -->
51    <userRolesModFilePath></userRolesModFilePath>
52    <userRolesModName></userRolesModName>
53    <userRolesClassName></userRolesClassName>
54    <userRolesPropFile></userRolesPropFile>
55</AAprop>
Note: See TracBrowser for help on using the repository browser.