source: TI12-security/trunk/NDGSecurity/python/Tests/openidaxtest/development.ini @ 6440

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/NDGSecurity/python/Tests/openidaxtest/development.ini@6440
Revision 6440, 2.6 KB checked in by pjkersha, 11 years ago (diff)
  • #1088 Important fix to AuthnRedirectResponseMiddleware? to set redirect ONLY when SSL client authentication has just succeeded in the upstream middleware AuthKitSSLAuthnMiddleware. This bug was causing the browser to redirect to the wrong place following OpenID sign in in the case where the user is already logged into their provider and selects a new relying party to sign into.
    • Improvements to Provider decide page interface: leave out messages about attributes that the provider can't retrieve for the RP. Also included NDG style help icon.
Line 
1#
2# openidaxtest - Pylons development environment configuration
3#
4# The %(here)s variable will be replaced with the parent directory of this file
5#
6[DEFAULT]
7debug = true
8# Uncomment and replace with the address which should receive any error reports
9#email_to = you@yourdomain.com
10smtp_server = localhost
11error_email_from = paste@localhost
12
13[server:main]
14use = egg:Paste#http
15host = 127.0.0.1
16port = 5000
17
18[app:main]
19use = egg:openidaxtest
20full_stack = true
21static_files = true
22
23cache_dir = %(here)s/data
24beaker.session.key = openidaxtest
25beaker.session.secret = somesecret
26
27# If you'd like to fine-tune the individual locations of the cache data dirs
28# for the Cache data, or the Session saves, un-comment the desired settings
29# here:
30#beaker.cache.data_dir = %(here)s/data/cache
31#beaker.session.data_dir = %(here)s/data/sessions
32
33# WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*
34# Debug mode will enable the interactive debugging tool, allowing ANYONE to
35# execute malicious code after an exception is raised.
36#set debug = false
37
38# AuthKit Set-up
39authkit.setup.enable = true
40authkit.setup.method=form, cookie
41authkit.form.authenticate.user.data = me:too
42authkit.form.template.obj = openidaxtest.lib.auth:render_signin
43#authkit.setup.method=openid, cookie
44
45# This cookie name and secret MUST agree with the name used by the
46# Authentication Filter used to secure a given app
47authkit.cookie.name=ndg.security.auth
48
49authkit.cookie.secret=9wvZObs9anUEhSIAnJNoY2iJq59FfYZr
50authkit.cookie.signoutpath = /logout
51
52# Disable inclusion of client IP address from cookie signature due to
53# suspected problem with AuthKit setting it when a HTTP Proxy is in place
54authkit.cookie.includeip = False
55
56#authkit.openid.path.signedin=/
57#authkit.openid.store.type=file
58#authkit.openid.store.config=%(here)s/openidrelyingparty/store
59#authkit.openid.session.key = authkit_openid
60#authkit.openid.session.secret = random string
61#
62## Key name for dereferencing beaker.session object held in environ
63#authkit.openid.session.middleware = beaker.session
64#
65#authkit.openid.baseurl =
66
67# Logging configuration
68[loggers]
69keys = root, routes, openidaxtest
70
71[handlers]
72keys = console
73
74[formatters]
75keys = generic
76
77[logger_root]
78level = INFO
79handlers = console
80
81[logger_routes]
82level = INFO
83handlers =
84qualname = routes.middleware
85# "level = DEBUG" logs the route matched and routing variables.
86
87[logger_openidaxtest]
88level = DEBUG
89handlers =
90qualname = openidaxtest
91
92[handler_console]
93class = StreamHandler
94args = (sys.stderr,)
95level = NOTSET
96formatter = generic
97
98[formatter_generic]
99format = %(asctime)s,%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
100datefmt = %H:%M:%S
Note: See TracBrowser for help on using the repository browser.