source: cows_wps/trunk/config.ini @ 6903

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/cows_wps/trunk/config.ini@7084
Revision 6903, 8.2 KB checked in by astephen, 9 years ago (diff)

various updates. Key thing to add next is polling of jobs and update of
response when it has polled correctly. Can re-use jquery stuff in
submit_utils.js which is relatively lightweight.

Line 
1#
2# cows_wps - Pylons development environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7#debug = true
8# Uncomment and replace with the address which should receive any error reports
9email_to = Stephen.Pascoe@stfc.ac.uk
10smtp_server = localhost
11error_email_from = paste@localhost
12securityConfigDir = %(here)s/../../ndg-security/etc
13beakerSessionKeyName = beaker.session.ndg.security
14authKitCookieSecret = MmUd8maSweeYsXkuwzzEK2vjq5pAqappeCZ74ZQ4OwU
15
16[pipeline:main]
17pipeline = BeakerSessionFilter
18           AuthenticationFilter
19           AuthorizationFilter
20           wpsApp
21
22##############################################################################
23# Server configuration section
24
25[server:main]
26use = egg:Paste#http
27# Note host must be changed to 0.0.0.0 to listen for external connections
28host = 0.0.0.0
29port = 8443
30
31##############################################################################
32# Main WSGI application section
33
34[app:wpsApp]
35use = egg:cows_wps
36full_stack = true
37cache_dir = %(here)s/data
38
39
40# If behind a proxy uncomment this and edit the filter:proxy-prefix section
41#filter-with = proxy-prefix
42
43# WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*
44# Debug mode will enable the interactive debugging tool, allowing ANYONE to
45# execute malicious code after an exception is raised.
46set debug = true
47
48
49##############################################################################
50# WPS config section
51
52#!NOTE: wps.logs_dir is removed.  Use logging config section below
53
54wps.template_dir = %(here)s/cows_wps/templates
55
56# Directory where process output directories are stored.  Needs to be shared
57# across all nodes under the same path
58#wps.proc_output_dir = %(here)s/proc_outputs
59wps.proc_output_dir = /disks/kona1/wps/proc_outputs
60
61# Place where config initialisation files are stored.  Theoretically doesn't
62# need to be visible to execute hosts but some processes might rely on it.
63wps.proc_config_dir = %(here)s/process_configs
64
65# Metadata output options
66wps.max_len_metadata_line = 42
67
68# Initiation file for the process output rules and user roles
69wps.outputs_rules = %(here)s/outputs_rules.ini
70wps.roles_ini = %(here)s/user_roles.ini
71
72# Database backend options
73#wps.database_url = sqlite:///:memory:
74#wps.database_url = sqlite:////tmp/cows_wps_ag.db
75wps.database_url = postgresql://ceda_wps:wasp_ced@bora/ceda_wps_test
76
77
78# Sun Grid Engine options
79wps.sge_root = /usr/local/sge
80wps.sge_cell = default
81wps.max_proc_duration = 300
82wps.sge_queue_l = wps_l.q
83wps.sge_queue_s = wps_s.q
84wps.max_l_proc = 1
85wps.max_s_proc = 2
86wps.sge_queue_timeout = 30
87wps.runproc_path = %(here)s/../buildout/bin/wps_runproc
88
89# Nappy configuration
90#wps.nappy_locals = /usr/local/ddp/buildout/../config/nappy_ukcp09_attributes.ini
91#wps.nappy_annotations = /usr/local/ddp/buildout/../config/ukcp09_nappy_annotations.ini
92
93
94# VNC options
95# Where vncserver will put config information
96wps.vnc_user_dir = %(here)s/.vncctrl
97
98# Extra stuff needed for mod_wsgi and new in the codebase
99#!TODO: tidy this up
100wps.user = cwps
101wps.mpl_configdir = /disks/cache/wps/.matplotlib
102wps.worker_pool = 5
103
104# Caching configuration
105# Set wps.caching_enabled to "true", "on" or "1" to enable caching
106wps.caching_enabled = false
107#true
108
109#Email sending arguments
110wps.notify_email_from = no-reply@ukcp09-ui.defra.gov.uk
111wps.mailhost = localhost
112#wps.ukcp_helpdesk_url = http://ukclimateprojections.defra.gov.uk/content/view/518/681/helpdesk.php
113wps.ui_url_to_jobs_page = http://ukclimateprojections-ui.defra.gov.uk/ui/outputs/jobs.php
114
115# Output directory striping.  Processes can be configured to be sent to a
116# host-dependent path
117wps.stripe_outputs = false
118###
119# In striping mode map each wps host to "proc_outputs_dir sge_host redirect_prefix"
120#wps.striped_outputs_host_map =
121#  ddp-app1.badc.rl.ac.uk = /disks/acache1/wps/proc_outputs ddp-store1 http://ddp-store1.badc.rl.ac.uk/wps_dl
122#  ddp-app2.badc.rl.ac.uk = /disks/acache2/wps/proc_outputs ddp-store2 http://ddp-store2.badc.rl.ac.uk/wps_dl
123#  ddp-app3.badc.rl.ac.uk = /disks/acache3/wps/proc_outputs ddp-store3 http://ddp-store3.badc.rl.ac.uk/wps_dl
124
125
126
127##############################################################################
128# COWS configuration section
129
130cows.capabilities_config = %(here)s/capabilities.conf
131
132
133##############################################################################
134# Proxy config
135
136# Edit this to work behind a proxy. 
137# It should match the apache ProxyPass directive
138[filter:proxy-prefix]
139use = egg:PasteDeploy#prefix
140prefix = /wps
141
142
143[filter:BeakerSessionFilter]
144paste.filter_app_factory = beaker.middleware:SessionMiddleware
145
146# Cookie name
147beaker.session.key = ndg.security.session
148
149# WSGI environ key name
150environ_key = %(beakerSessionKeyName)s
151beaker.session.secret = rBIvKXLa+REYB8pM/8pdPoorVpKQuaOW
152beaker.cache.data_dir = %(here)s/authn/beaker/cache
153beaker.session.data_dir = %(here)s/authn/beaker/sessions
154
155
156[filter:AuthenticationFilter]
157paste.filter_app_factory = ndg.security.server.wsgi.authn:AuthenticationMiddleware
158prefix = authN.
159
160# Set redirect for OpenID Relying Party in the Security Services app instance
161authN.redirectURI = https://ceda-wps1.badc.rl.ac.uk/verify
162
163# AuthKit Set-up
164authkit.setup.method=cookie
165
166# This cookie name and secret MUST agree with the name used by the security web
167# services app
168authkit.cookie.name=ndg.security.auth
169authkit.cookie.secret=%(authKitCookieSecret)s
170authkit.cookie.signoutpath = /logout
171
172# Disable inclusion of client IP address from cookie signature due to
173# suspected problem with AuthKit setting it when a HTTP Proxy is in place
174authkit.cookie.includeip = False
175
176# environ key name for beaker session
177authkit.session.middleware = %(beakerSessionKeyName)s
178
179[filter:AuthorizationFilter]
180paste.filter_app_factory=ndg.security.server.wsgi.authz:SAMLAuthorizationMiddleware.filter_app_factory
181prefix = authz.
182authz.pepResultHandler = ndg.security.server.wsgi.authz.result_handler.genshi.GenshiPEPResultHandlerMiddleware
183authz.pepResultHandler.staticContentDir = %(here)s/ndg-security/pep_result_handler
184authz.pepResultHandler.baseURL = http://ceda-wps1.badc.rl.ac.uk
185authz.pepResultHandler.heading = Access Denied
186authz.pepResultHandler.messageTemplate = Access is forbidden for this resource:<div id="accessDeniedMessage">$pdpResponseMsg</div>Please check with your site administrator that you have the required access privileges.
187authz.pepResultHandler.footerText = This site is for test purposes only.
188authz.pepResultHandler.rightLink = http://ceda.ac.uk/
189authz.pepResultHandler.rightImage = %(authz.pepResultHandler.baseURL)s/layout/CEDA_RightButton60.png
190authz.pepResultHandler.rightAlt = Centre for Environmental Data Archival
191authz.pepResultHandler.helpIcon = %(authz.pepResultHandler.baseURL)s/layout/icons/help.png
192
193policy.filePath = %(here)s/ndg-security/policy.xml
194
195# Settings for Policy Information Point used by the Policy Decision Point to
196# retrieve subject attributes from the Attribute Authority associated with the
197# resource to be accessed
198
199# If omitted, DN of SSL Cert is used
200pip.attributeQuery.issuerName = 
201pip.attributeQuery.clockSkew = 0.5
202
203# Specify what type of attributes you want to query the Attribute Authority for
204pip.attributeQuery.queryAttributes.0 = urn:ceda:security:authz:1.0:attr, , http://www.w3.org/2001/XMLSchema#string
205
206# Verify the Attribute Authority's SSL certificate against this trust root
207pip.attributeQuery.sslCACertDir=%(securityConfigDir)s/pki/ca
208
209# Pass a certificate in the SSL call so that the Attribute Authority can authenticate this request
210pip.attributeQuery.sslCertFilePath=%(here)s/ndg-security/pki/ceda-wps1.badc.rl.ac.uk.pip.crt
211pip.attributeQuery.sslPriKeyFilePath=%(here)s/ndg-security/pki/ceda-wps1.badc.rl.ac.uk.pip.key
212
213
214#############################################################################
215# Logging configuration
216[loggers]
217keys = root, cows_wps, ndg, saml
218
219[handlers]
220keys = console
221
222[formatters]
223keys = generic
224
225[logger_root]
226level = INFO
227handlers = console
228
229[logger_cows_wps]
230level = DEBUG
231handlers =
232qualname = cows_wps
233
234[logger_ndg]
235level = DEBUG
236handlers =
237qualname = ndg
238
239[logger_saml]
240level = DEBUG
241handlers =
242qualname = saml
243
244[handler_console]
245class = StreamHandler
246args = (sys.stderr,)
247level = NOTSET
248formatter = generic
249
250[formatter_generic]
251format = %(asctime)s,%(msecs)03d %(levelname)-5.5s [%(name)s:%(lineno)s] %(message)s
252datefmt = %Y-%m-%d-%H:%M:%S
Note: See TracBrowser for help on using the repository browser.