source: cows_wps/trunk/config.ini @ 6903

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/cows_wps/trunk/config.ini@6903
Revision 6903, 8.2 KB checked in by astephen, 10 years ago (diff)

various updates. Key thing to add next is polling of jobs and update of
response when it has polled correctly. Can re-use jquery stuff in
submit_utils.js which is relatively lightweight.

Line 
1#
2# cows_wps - Pylons development environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7#debug = true
8# Uncomment and replace with the address which should receive any error reports
9email_to = Stephen.Pascoe@stfc.ac.uk
10smtp_server = localhost
11error_email_from = paste@localhost
12securityConfigDir = %(here)s/../../ndg-security/etc
13beakerSessionKeyName = beaker.session.ndg.security
14authKitCookieSecret = MmUd8maSweeYsXkuwzzEK2vjq5pAqappeCZ74ZQ4OwU
15
16[pipeline:main]
17pipeline = BeakerSessionFilter
18           AuthenticationFilter
19           AuthorizationFilter
20           wpsApp
21
22##############################################################################
23# Server configuration section
24
25[server:main]
26use = egg:Paste#http
27# Note host must be changed to 0.0.0.0 to listen for external connections
28host = 0.0.0.0
29port = 8443
30
31##############################################################################
32# Main WSGI application section
33
34[app:wpsApp]
35use = egg:cows_wps
36full_stack = true
37cache_dir = %(here)s/data
38
39
40# If behind a proxy uncomment this and edit the filter:proxy-prefix section
41#filter-with = proxy-prefix
42
43# WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*
44# Debug mode will enable the interactive debugging tool, allowing ANYONE to
45# execute malicious code after an exception is raised.
46set debug = true
47
48
49##############################################################################
50# WPS config section
51
52#!NOTE: wps.logs_dir is removed.  Use logging config section below
53
54wps.template_dir = %(here)s/cows_wps/templates
55
56# Directory where process output directories are stored.  Needs to be shared
57# across all nodes under the same path
58#wps.proc_output_dir = %(here)s/proc_outputs
59wps.proc_output_dir = /disks/kona1/wps/proc_outputs
60
61# Place where config initialisation files are stored.  Theoretically doesn't
62# need to be visible to execute hosts but some processes might rely on it.
63wps.proc_config_dir = %(here)s/process_configs
64
65# Metadata output options
66wps.max_len_metadata_line = 42
67
68# Initiation file for the process output rules and user roles
69wps.outputs_rules = %(here)s/outputs_rules.ini
70wps.roles_ini = %(here)s/user_roles.ini
71
72# Database backend options
73#wps.database_url = sqlite:///:memory:
74#wps.database_url = sqlite:////tmp/cows_wps_ag.db
75wps.database_url = postgresql://ceda_wps:wasp_ced@bora/ceda_wps_test
76
77
78# Sun Grid Engine options
79wps.sge_root = /usr/local/sge
80wps.sge_cell = default
81wps.max_proc_duration = 300
82wps.sge_queue_l = wps_l.q
83wps.sge_queue_s = wps_s.q
84wps.max_l_proc = 1
85wps.max_s_proc = 2
86wps.sge_queue_timeout = 30
87wps.runproc_path = %(here)s/../buildout/bin/wps_runproc
88
89# Nappy configuration
90#wps.nappy_locals = /usr/local/ddp/buildout/../config/nappy_ukcp09_attributes.ini
91#wps.nappy_annotations = /usr/local/ddp/buildout/../config/ukcp09_nappy_annotations.ini
92
93
94# VNC options
95# Where vncserver will put config information
96wps.vnc_user_dir = %(here)s/.vncctrl
97
98# Extra stuff needed for mod_wsgi and new in the codebase
99#!TODO: tidy this up
100wps.user = cwps
101wps.mpl_configdir = /disks/cache/wps/.matplotlib
102wps.worker_pool = 5
103
104# Caching configuration
105# Set wps.caching_enabled to "true", "on" or "1" to enable caching
106wps.caching_enabled = false
107#true
108
109#Email sending arguments
110wps.notify_email_from = no-reply@ukcp09-ui.defra.gov.uk
111wps.mailhost = localhost
112#wps.ukcp_helpdesk_url = http://ukclimateprojections.defra.gov.uk/content/view/518/681/helpdesk.php
113wps.ui_url_to_jobs_page = http://ukclimateprojections-ui.defra.gov.uk/ui/outputs/jobs.php
114
115# Output directory striping.  Processes can be configured to be sent to a
116# host-dependent path
117wps.stripe_outputs = false
118###
119# In striping mode map each wps host to "proc_outputs_dir sge_host redirect_prefix"
120#wps.striped_outputs_host_map =
121#  ddp-app1.badc.rl.ac.uk = /disks/acache1/wps/proc_outputs ddp-store1 http://ddp-store1.badc.rl.ac.uk/wps_dl
122#  ddp-app2.badc.rl.ac.uk = /disks/acache2/wps/proc_outputs ddp-store2 http://ddp-store2.badc.rl.ac.uk/wps_dl
123#  ddp-app3.badc.rl.ac.uk = /disks/acache3/wps/proc_outputs ddp-store3 http://ddp-store3.badc.rl.ac.uk/wps_dl
124
125
126
127##############################################################################
128# COWS configuration section
129
130cows.capabilities_config = %(here)s/capabilities.conf
131
132
133##############################################################################
134# Proxy config
135
136# Edit this to work behind a proxy. 
137# It should match the apache ProxyPass directive
138[filter:proxy-prefix]
139use = egg:PasteDeploy#prefix
140prefix = /wps
141
142
143[filter:BeakerSessionFilter]
144paste.filter_app_factory = beaker.middleware:SessionMiddleware
145
146# Cookie name
147beaker.session.key = ndg.security.session
148
149# WSGI environ key name
150environ_key = %(beakerSessionKeyName)s
151beaker.session.secret = rBIvKXLa+REYB8pM/8pdPoorVpKQuaOW
152beaker.cache.data_dir = %(here)s/authn/beaker/cache
153beaker.session.data_dir = %(here)s/authn/beaker/sessions
154
155
156[filter:AuthenticationFilter]
157paste.filter_app_factory = ndg.security.server.wsgi.authn:AuthenticationMiddleware
158prefix = authN.
159
160# Set redirect for OpenID Relying Party in the Security Services app instance
161authN.redirectURI = https://ceda-wps1.badc.rl.ac.uk/verify
162
163# AuthKit Set-up
164authkit.setup.method=cookie
165
166# This cookie name and secret MUST agree with the name used by the security web
167# services app
168authkit.cookie.name=ndg.security.auth
169authkit.cookie.secret=%(authKitCookieSecret)s
170authkit.cookie.signoutpath = /logout
171
172# Disable inclusion of client IP address from cookie signature due to
173# suspected problem with AuthKit setting it when a HTTP Proxy is in place
174authkit.cookie.includeip = False
175
176# environ key name for beaker session
177authkit.session.middleware = %(beakerSessionKeyName)s
178
179[filter:AuthorizationFilter]
180paste.filter_app_factory=ndg.security.server.wsgi.authz:SAMLAuthorizationMiddleware.filter_app_factory
181prefix = authz.
182authz.pepResultHandler = ndg.security.server.wsgi.authz.result_handler.genshi.GenshiPEPResultHandlerMiddleware
183authz.pepResultHandler.staticContentDir = %(here)s/ndg-security/pep_result_handler
184authz.pepResultHandler.baseURL = http://ceda-wps1.badc.rl.ac.uk
185authz.pepResultHandler.heading = Access Denied
186authz.pepResultHandler.messageTemplate = Access is forbidden for this resource:<div id="accessDeniedMessage">$pdpResponseMsg</div>Please check with your site administrator that you have the required access privileges.
187authz.pepResultHandler.footerText = This site is for test purposes only.
188authz.pepResultHandler.rightLink = http://ceda.ac.uk/
189authz.pepResultHandler.rightImage = %(authz.pepResultHandler.baseURL)s/layout/CEDA_RightButton60.png
190authz.pepResultHandler.rightAlt = Centre for Environmental Data Archival
191authz.pepResultHandler.helpIcon = %(authz.pepResultHandler.baseURL)s/layout/icons/help.png
192
193policy.filePath = %(here)s/ndg-security/policy.xml
194
195# Settings for Policy Information Point used by the Policy Decision Point to
196# retrieve subject attributes from the Attribute Authority associated with the
197# resource to be accessed
198
199# If omitted, DN of SSL Cert is used
200pip.attributeQuery.issuerName = 
201pip.attributeQuery.clockSkew = 0.5
202
203# Specify what type of attributes you want to query the Attribute Authority for
204pip.attributeQuery.queryAttributes.0 = urn:ceda:security:authz:1.0:attr, , http://www.w3.org/2001/XMLSchema#string
205
206# Verify the Attribute Authority's SSL certificate against this trust root
207pip.attributeQuery.sslCACertDir=%(securityConfigDir)s/pki/ca
208
209# Pass a certificate in the SSL call so that the Attribute Authority can authenticate this request
210pip.attributeQuery.sslCertFilePath=%(here)s/ndg-security/pki/ceda-wps1.badc.rl.ac.uk.pip.crt
211pip.attributeQuery.sslPriKeyFilePath=%(here)s/ndg-security/pki/ceda-wps1.badc.rl.ac.uk.pip.key
212
213
214#############################################################################
215# Logging configuration
216[loggers]
217keys = root, cows_wps, ndg, saml
218
219[handlers]
220keys = console
221
222[formatters]
223keys = generic
224
225[logger_root]
226level = INFO
227handlers = console
228
229[logger_cows_wps]
230level = DEBUG
231handlers =
232qualname = cows_wps
233
234[logger_ndg]
235level = DEBUG
236handlers =
237qualname = ndg
238
239[logger_saml]
240level = DEBUG
241handlers =
242qualname = saml
243
244[handler_console]
245class = StreamHandler
246args = (sys.stderr,)
247level = NOTSET
248formatter = generic
249
250[formatter_generic]
251format = %(asctime)s,%(msecs)03d %(levelname)-5.5s [%(name)s:%(lineno)s] %(message)s
252datefmt = %Y-%m-%d-%H:%M:%S
Note: See TracBrowser for help on using the repository browser.