source: TI12-security/trunk/python/ndg_security_test/ndg/security/test/unit/wsgi/authn/ssl-test.ini @ 5770

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/python/ndg_security_test/ndg/security/test/unit/wsgi/authn/ssl-test.ini@5770
Revision 5770, 2.2 KB checked in by pjkersha, 10 years ago (diff)

Adding SSL Client authentication step into authz_lite integration test. Broken redirecting back from authn step to requested resource.

Line 
1#
2# AuthN WSGI Testing environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7testConfigDir = ../../../config
8beakerSessionKeyName = beaker.session.ndg.security
9
10[server:main]
11use = egg:Paste#http
12host = 0.0.0.0
13port = 5000
14
15[pipeline:main]
16pipeline = SSLClientAuthNFilter
17                   BeakerSessionFilter
18                   AuthnRedirectInitiatorFilter
19                   AuthnRedirectResponseFilter
20                   TestApp
21
22[app:TestApp]
23paste.app_factory = ndg.security.test.unit.wsgi.authn.test_authn:TestAuthnApp
24
25[filter:BeakerSessionFilter]
26paste.filter_app_factory = beaker.middleware:SessionMiddleware
27
28# Cookie name
29beaker.session.key = ndg.security.session
30
31# WSGI environ key name
32environ_key = %(beakerSessionKeyName)s
33beaker.session.secret = rBIvKXLa+REYB8pM/8pdPoorVpKQuaOW
34beaker.cache.data_dir = %(here)s/authn/beaker/cache
35beaker.session.data_dir = %(here)s/authn/beaker/sessions
36
37# Redirect HTTPS based endpoint for SSL client Based authentication
38[filter:AuthnRedirectInitiatorFilter]
39paste.filter_app_factory = ndg.security.server.wsgi.authn:AuthenticationMiddleware
40prefix = authN.
41authN.redirectURI = /ssl-client-authn/
42#authN.redirectURI = http://localhost:5800/verify
43
44# AuthKit Set-up
45authkit.setup.method=cookie
46
47# This cookie name and secret MUST agree with the name used by the security web
48# services app
49authkit.cookie.name=ndg.security.auth
50authkit.cookie.secret=9wvZObs9anUEhSIAnJNoY2iJq59FfYZr
51authkit.cookie.signoutpath = /logout
52
53# Disable inclusion of client IP address from cookie signature due to
54# suspected problem with AuthKit setting it when a HTTP Proxy is in place
55authkit.cookie.includeip = False
56
57# environ key name for beaker session
58authkit.session.middleware = %(beakerSessionKeyName)s
59
60# Following SSL client authentication redirect back to the URI the client
61# initially requested
62[filter:AuthnRedirectResponseFilter]
63paste.filter_app_factory = ndg.security.server.wsgi.authn:AuthnRedirectResponseMiddleware
64
65[filter:SSLClientAuthNFilter]
66paste.filter_app_factory = ndg.security.server.wsgi.ssl:AuthKitSSLAuthnMiddleware
67prefix = ssl.
68ssl.caCertFilePathList = %(testConfigDir)s/ca/ndg-test-ca.crt
69ssl.rePathMatchList = ^/ssl-client-authn.*
Note: See TracBrowser for help on using the repository browser.