Ignore:
Timestamp:
24/08/10 15:34:07 (9 years ago)
Author:
pjkersha
Message:

Incomplete - task 2: XACML-Security Integration

  • added caching capability to Policy Information Point. This enables the PIP to retrieve previously cached assertions from an Attribute Authority optimising performance. Caching is done with beaker.session but instead of indexing based on a cookie, it's based on the subject Id i.e. for ESG, a user's OpenID.
File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/authz/xacml/saml_pip.cfg

    r7314 r7358  
    2020saml_pip.mappingFilePath = %(here)s/pip-mapping.txt 
    2121 
     22# Cache assertions retrieved from the Attribute Authority to optimise performance 
     23saml_pip.sessionCacheDataDir = %(here)s/query-results-cache 
     24 
    2225# The attribute ID of the subject value to extract from the XACML request 
    2326# context and pass in the SAML attribute query 
     
    2730saml_pip.attributeQuery.issuerFormat = urn:oasis:names:tc:SAML:1.1:nameid-format:x509SubjectName 
    2831 
    29 # These settings configure SSL mutual authentication for the query to the SAML Attribute Authority 
     32# These settings configure SSL mutual authentication for the query to the SAML  
     33# Attribute Authority 
    3034saml_pip.attributeQuery.sslCertFilePath = $NDGSEC_TEST_CONFIG_DIR/pki/localhost.crt 
    3135saml_pip.attributeQuery.sslPriKeyFilePath = $NDGSEC_TEST_CONFIG_DIR/pki/localhost.key 
Note: See TracChangeset for help on using the changeset viewer.