source: TI12-security/trunk/python/ndg_security_test/ndg/security/test/unit/wsgi/authn/ssl-test.ini @ 5757

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/python/ndg_security_test/ndg/security/test/unit/wsgi/authn/ssl-test.ini@5757
Revision 5757, 2.2 KB checked in by pjkersha, 10 years ago (diff)

Testing SSL Client Authentication middleware with session and redirect middleware to enable wget support for NDG Security.

Line 
1#
2# AuthN WSGI Testing environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7testConfigDir = ../../../config
8beakerSessionKeyName = beaker.session.ndg.security
9
10[server:main]
11use = egg:Paste#http
12host = 0.0.0.0
13port = 5000
14
15[pipeline:main]
16pipeline = SSLClientAuthNFilter
17                   BeakerSessionFilter
18                   AuthnRedirectResponseFilter
19                   AuthnRedirectInitiatorFilter
20                   TestApp
21
22[app:TestApp]
23paste.app_factory = ndg.security.test.unit.wsgi.authn.test_authn:TestAuthnApp
24
25[filter:BeakerSessionFilter]
26paste.filter_app_factory = beaker.middleware:SessionMiddleware
27
28# Cookie name
29beaker.session.key = ndg.security.session
30
31# WSGI environ key name
32environ_key = %(beakerSessionKeyName)s
33beaker.session.secret = rBIvKXLa+REYB8pM/8pdPoorVpKQuaOW
34beaker.cache.data_dir = %(here)s/authn/beaker/cache
35beaker.session.data_dir = %(here)s/authn/beaker/sessions
36
37# Redirect HTTPS based endpoint for SSL client Based authentication
38[filter:AuthnRedirectInitiatorFilter]
39paste.filter_app_factory = ndg.security.server.wsgi.authn:AuthenticationMiddleware
40prefix = authN.
41authN.redirectURI = /ssl-client-authn/
42#authN.redirectURI = http://localhost:5800/verify
43
44# AuthKit Set-up
45authkit.setup.method=cookie
46
47# This cookie name and secret MUST agree with the name used by the security web
48# services app
49authkit.cookie.name=ndg.security.auth
50authkit.cookie.secret=9wvZObs9anUEhSIAnJNoY2iJq59FfYZr
51authkit.cookie.signoutpath = /logout
52
53# Disable inclusion of client IP address from cookie signature due to
54# suspected problem with AuthKit setting it when a HTTP Proxy is in place
55authkit.cookie.includeip = False
56
57# environ key name for beaker session
58authkit.session.middleware = %(beakerSessionKeyName)s
59
60# Following SSL client authentication redirect back to the URI the client
61# initially requested
62[filter:AuthnRedirectResponseFilter]
63paste.filter_app_factory = ndg.security.server.wsgi.authn:AuthnRedirectResponseMiddleware
64
65[filter:SSLClientAuthNFilter]
66paste.filter_app_factory = ndg.security.server.wsgi.ssl:AuthKitSSLAuthnMiddleware
67prefix = ssl.
68caCertFilePathList = %(testConfigDir)s/ca/ndg-test-ca.crt
69clientCertVerificationClassName = 
70rePathMatchList = ^/ssl-client-authn.*
Note: See TracBrowser for help on using the repository browser.