source: TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/site-a.ini @ 6721

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/site-a.ini@6721
Revision 6721, 3.0 KB checked in by pjkersha, 11 years ago (diff)
  • Working Attribute Authority client unit tests. Configuration parameters such as issuer and flags to test query timestamp and SAML version string have now been moved out of the Attribute Authority to the generic SAML subject Query middleware interface ndg.security.server.wsgi.saml.SOAPQueryInterfaceMiddleware. This could be moved into the SAML egg at a later stage. The AuthzDecisionQuery? interface should be retested to allow for these changes.
Line 
1#
2# PasteDeploy ini file for Attribute Authority Unit tests Site A Server
3#
4# NERC Data Grid Project
5#
6# P J Kershaw 12/09/08
7#
8# Copyright (C) 2009 Science and Technology Facilities Council
9#
10# BSD - See LICENCE file for details
11
12[DEFAULT]
13attributeAuthorityEnvironKeyName = attribute-authority
14attributeQueryInterfaceEnvironKeyName = attributeQueryInterface
15attributeAuthoritySoapWsdlServicePath = /AttributeAuthority
16
17[server:main]
18use = egg:Paste#http
19host = 0.0.0.0
20port = 5000
21
22[app:mainApp]
23paste.app_factory = ndg.security.test.config.attributeauthority.sitea.sitea_attributeauthority:app_factory
24
25# Chain of SOAP Middleware filters - Nb. WS-Security filters apply to the SOAP
26# Binding filter only.
27[pipeline:main]
28pipeline = AttributeAuthorityFilter
29                   AttributeAuthoritySamlSoapBindingFilter
30                   mainApp
31
32
33[filter:AttributeAuthorityFilter]
34paste.filter_app_factory = ndg.security.server.wsgi.attributeauthority:AttributeAuthorityMiddleware.filter_app_factory
35prefix = attributeAuthority.
36
37# Key name by which the WSDL SOAP based interface may reference this
38# service
39attributeAuthority.environKeyName = %(attributeAuthorityEnvironKeyName)s
40
41# Key name for the SAML SOAP binding based interface to reference this
42# service's attribute query method
43attributeAuthority.environKeyNameAttributeQueryInterface: %(attributeQueryInterfaceEnvironKeyName)s
44
45# Attribute Authority settings...
46
47# Lifetime is measured in seconds
48attributeAuthority.assertionLifetime: 28800 
49
50attributeAuthority.dnSeparator:/
51
52# Settings for custom AttributeInterface derived class to get user roles for given
53# user ID
54attributeAuthority.attributeInterface.modFilePath: %(here)s
55attributeAuthority.attributeInterface.className: sitea_attributeinterface.TestUserRoles
56
57# SAML SOAP Binding to the Attribute Authority
58[filter:AttributeAuthoritySamlSoapBindingFilter]
59paste.filter_app_factory = ndg.security.server.wsgi.saml:SOAPQueryInterfaceMiddleware.filter_app_factory
60prefix = saml.soapbinding.
61
62saml.soapbinding.deserialise = ndg.saml.xml.etree:AttributeQueryElementTree.fromXML
63
64# Specialisation to incorporate ESG Group/Role type
65saml.soapbinding.serialise = ndg.security.common.saml_utils.esg.xml.etree:EsgResponseElementTree.toXML
66
67saml.soapbinding.pathMatchList = /AttributeAuthority
68saml.soapbinding.queryInterfaceKeyName = %(attributeQueryInterfaceEnvironKeyName)s
69
70# Clock skew for SAML Attribute Queries - allow clockSkew number of seconds
71# tolerance for query issueInstant parameter. Set here to 3 minutes
72saml.soapbinding.clockSkewTolerance: 180.0
73
74saml.soapbinding.issuer: /O=Site A/CN=Attribute Authority
75
76# Logging configuration
77[loggers]
78keys = root, ndg
79
80[handlers]
81keys = console
82
83[formatters]
84keys = generic
85
86[logger_root]
87level = INFO
88handlers = console
89
90[logger_ndg]
91level = DEBUG
92handlers = 
93qualname = ndg
94
95[handler_console]
96class = StreamHandler
97args = (sys.stderr,)
98level = NOTSET
99formatter = generic
100
101[formatter_generic]
102format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
103datefmt = %Y/%m/%d %H:%M:%S
Note: See TracBrowser for help on using the repository browser.