Ignore:
Timestamp:
26/07/07 16:55:08 (12 years ago)
Author:
pjkersha
Message:

called by HandleSecurity? function. Needs testing and fixes - see TODOs

ows_server/ows_server/config/ndgDiscovery.config:

  • added a section for security including WS-Security and SSL PKI settings.

ows_server/ows_server/config/routing.py:

  • added entry for login handling

ws_server/ows_server/controllers/login.py:

  • security web services integrated. TODO: credentials passing across http

redirect

ows_server/ows_server/controllers/logout.py:

  • security WS calls integrated

ows_server/ows_server/templates/ndgPage.kid:

  • fix to display of roles

ows_server/ows_server/templates/login.kid:

  • new page for login
Location:
TI05-delivery/ows_framework/trunk/ows_server/ows_server/config
Files:
2 edited

Legend:

Unmodified
Added
Removed
  • TI05-delivery/ows_framework/trunk/ows_server/ows_server/config/ndgDiscovery.config

    r2736 r2748  
    106106npm.ac.uk: pgsql.npm.ac.uk 
    107107 
     108[NDG_SECURITY] 
     109# Debug e.g. open(<somefile>, 'w') 
     110#tracefile: None 
     111tracefile: sys.stderr 
     112 
     113# Service addresses 
     114#sessionMgrURI: https://localhost:5700/SessionManager 
     115sessionMgrURI: https://glue.badc.rl.ac.uk:50000/SessionManager 
     116#attAuthorityURI: http://localhost:5000/AttributeAuthority 
     117attAuthorityURI: http://glue.badc.rl.ac.uk/services/ndg/security/AttributeAuthority 
     118 
     119# WS-Security signature handler 
     120# 
     121# X.509 certificate sent with outbound signed messages 
     122wssCertFilePath: Junk-cert.pem 
     123 
     124# Private key used to sign messages 
     125wssKeyFilePath: Junk-key.pem 
     126 
     127# Password for private key - comment out if the file is not password protected 
     128wssKeyPwd:  
     129 
     130# Space separated list of CA cert. files to validate certs against when 
     131# verifying responses 
     132wssCACertFilePathList = cacert.pem 
     133 
     134# SSL Connections 
     135# 
     136# Space separated list of CA cert. files.  The peer cert. 
     137# must verify against at least one of these otherwise the connection is  
     138# dropped. 
     139sslCACertFilePathList: cacert.pem 
     140 
     141# Set an alternate CommonName to match with peer cert for SSL 
     142# Connections.  If the CN=hostname of the peer then this option  
     143# can be commented out 
     144#sslPeerCertCN:  
     145 
     146# Attribute Certificate  
     147# Issuer name - should match with name element specified in  
     148# home Attribute Authority's attAuthorityProperties.xml 
     149acIssuerName: BADC 
     150 
     151# verification of X.509 cert back to CA 
     152acCACertFilePathList: cacert.pem 
    108153 
    109154[RELATED] 
  • TI05-delivery/ows_framework/trunk/ows_server/ows_server/config/routing.py

    r2740 r2748  
    3838    # following is the shell for the rest of the ndg  
    3939    map.connect('login', controller='login') 
     40    map.connect('getCredentials', controller='login', action='getCredentials') 
    4041    map.connect('wayf', controller='login', action='wayf') 
    4142    map.connect('logout', controller='logout') 
Note: See TracChangeset for help on using the changeset viewer.