source: TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/site-a.ini @ 6720

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/site-a.ini@6720
Revision 6720, 3.0 KB checked in by pjkersha, 11 years ago (diff)
  • Attribute Authority unit tests now pass with refactored Attribute Authority which has NDG Attribute Certificate and role mapping code removed.
  • Now refactoring client unit tests.
  • Removed NDG Attribute Certificate and XMLSec unit tests - no longer needed.
Line 
1#
2# PasteDeploy ini file for Attribute Authority Unit tests Site A Server
3#
4# NERC Data Grid Project
5#
6# P J Kershaw 12/09/08
7#
8# Copyright (C) 2009 Science and Technology Facilities Council
9#
10# BSD - See LICENCE file for details
11
12[DEFAULT]
13attributeAuthorityEnvironKeyName = attribute-authority
14attributeQueryInterfaceEnvironKeyName = attributeQueryInterface
15attributeAuthoritySoapWsdlServicePath = /AttributeAuthority
16
17[server:main]
18use = egg:Paste#http
19host = 0.0.0.0
20port = 5000
21
22[app:mainApp]
23paste.app_factory = ndg.security.test.config.attributeauthority.sitea.siteAServerApp:app_factory
24
25# Chain of SOAP Middleware filters - Nb. WS-Security filters apply to the SOAP
26# Binding filter only.
27[pipeline:main]
28pipeline = AttributeAuthorityFilter
29                   AttributeAuthoritySamlSoapBindingFilter
30                   mainApp
31
32
33[filter:AttributeAuthorityFilter]
34paste.filter_app_factory = ndg.security.server.wsgi.attributeauthority:AttributeAuthorityMiddleware.filter_app_factory
35prefix = attributeAuthority.
36
37# Key name by which the WSDL SOAP based interface may reference this
38# service
39attributeAuthority.environKeyName = %(attributeAuthorityEnvironKeyName)s
40
41# Key name for the SAML SOAP binding based interface to reference this
42# service's attribute query method
43attributeAuthority.environKeyNameAttributeQueryInterface: %(attributeQueryInterfaceEnvironKeyName)s
44
45# Attribute Authority settings
46# 'name' setting MUST agree with map config file 'thisHost' name attribute
47attributeAuthority.name: Site A
48
49# Lifetime is measured in seconds
50attributeAuthority.assertionLifetime: 28800 
51
52attributeAuthority.dnSeparator:/
53
54# Settings for custom AttributeInterface derived class to get user roles for given
55# user ID
56attributeAuthority.attributeInterface.modFilePath: %(here)s
57attributeAuthority.attributeInterface.modName: siteAUserRoles
58attributeAuthority.attributeInterface.className: TestUserRoles
59
60# SAML SOAP Binding to the Attribute Authority
61[filter:AttributeAuthoritySamlSoapBindingFilter]
62paste.filter_app_factory = ndg.security.server.wsgi.saml:SOAPQueryInterfaceMiddleware.filter_app_factory
63prefix = saml.soapbinding.
64
65saml.soapbinding.deserialise = ndg.saml.xml.etree:AttributeQueryElementTree.fromXML
66
67# Specialisation to incorporate ESG Group/Role type
68saml.soapbinding.serialise = ndg.security.common.saml_utils.esg.xml.etree:EsgResponseElementTree.toXML
69
70saml.soapbinding.pathMatchList = /AttributeAuthority/saml
71saml.soapbinding.queryInterfaceKeyName = %(attributeQueryInterfaceEnvironKeyName)s
72
73# Clock skew for SAML Attribute Queries - allow clockSkew number of seconds
74# tolerance for query issueInstant parameter. Set here to 3 minutes
75saml.soapbinding.clockSkewTolerance: 180.0
76
77# Logging configuration
78[loggers]
79keys = root, ndg
80
81[handlers]
82keys = console
83
84[formatters]
85keys = generic
86
87[logger_root]
88level = INFO
89handlers = console
90
91[logger_ndg]
92level = DEBUG
93handlers = 
94qualname = ndg
95
96[handler_console]
97class = StreamHandler
98args = (sys.stderr,)
99level = NOTSET
100formatter = generic
101
102[formatter_generic]
103format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
104datefmt = %Y/%m/%d %H:%M:%S
Note: See TracBrowser for help on using the repository browser.