source: TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/site-a.ini @ 6730

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/config/attributeauthority/sitea/site-a.ini@6730
Revision 6730, 2.9 KB checked in by pjkersha, 11 years ago (diff)
  • Working Credential Wallet refactored for Python 2.6
  • Pruned out more old code: ZSI and Twisted SAOP/WSDL wrappers, Session Manager and WS-Security, Test 'Site B' Attribute Authority - for testing role mapping.
  • Started XACML package ElementTree based parser.
Line 
1#
2# PasteDeploy ini file for Attribute Authority Unit tests Site A Server
3#
4# NERC Data Grid Project
5#
6# P J Kershaw 12/09/08
7#
8# Copyright (C) 2009 Science and Technology Facilities Council
9#
10# BSD - See LICENCE file for details
11
12[DEFAULT]
13attributeAuthorityEnvironKeyName = attribute-authority
14attributeQueryInterfaceEnvironKeyName = attributeQueryInterface
15attributeAuthoritySoapWsdlServicePath = /AttributeAuthority
16
17[server:main]
18use = egg:Paste#http
19host = 0.0.0.0
20port = 5000
21
22[app:mainApp]
23paste.app_factory = ndg.security.test.config.attributeauthority.sitea.sitea_attributeauthority:app_factory
24
25# Chain of SOAP Middleware filters - Nb. WS-Security filters apply to the SOAP
26# Binding filter only.
27[pipeline:main]
28pipeline = AttributeAuthorityFilter
29                   AttributeAuthoritySamlSoapBindingFilter
30                   mainApp
31
32
33[filter:AttributeAuthorityFilter]
34paste.filter_app_factory = ndg.security.server.wsgi.attributeauthority:AttributeAuthorityMiddleware.filter_app_factory
35prefix = attributeAuthority.
36
37# Key name by which the WSDL SOAP based interface may reference this
38# service
39attributeAuthority.environKeyName = %(attributeAuthorityEnvironKeyName)s
40
41# Key name for the SAML SOAP binding based interface to reference this
42# service's attribute query method
43attributeAuthority.environKeyNameAttributeQueryInterface: %(attributeQueryInterfaceEnvironKeyName)s
44
45# Attribute Authority settings...
46
47# Lifetime is measured in seconds
48attributeAuthority.assertionLifetime: 28800 
49
50# Settings for custom AttributeInterface derived class to get user roles for given
51# user ID
52attributeAuthority.attributeInterface.modFilePath: %(here)s
53attributeAuthority.attributeInterface.className: sitea_attributeinterface.TestUserRoles
54
55# SAML SOAP Binding to the Attribute Authority
56[filter:AttributeAuthoritySamlSoapBindingFilter]
57paste.filter_app_factory = ndg.security.server.wsgi.saml:SOAPQueryInterfaceMiddleware.filter_app_factory
58prefix = saml.soapbinding.
59
60saml.soapbinding.deserialise = ndg.saml.xml.etree:AttributeQueryElementTree.fromXML
61
62# Specialisation to incorporate ESG Group/Role type
63saml.soapbinding.serialise = ndg.security.common.saml_utils.esg.xml.etree:EsgResponseElementTree.toXML
64
65saml.soapbinding.pathMatchList = /AttributeAuthority
66saml.soapbinding.queryInterfaceKeyName = %(attributeQueryInterfaceEnvironKeyName)s
67
68# Clock skew for SAML Attribute Queries - allow clockSkew number of seconds
69# tolerance for query issueInstant parameter. Set here to 3 minutes
70saml.soapbinding.clockSkewTolerance: 180.0
71
72saml.soapbinding.issuer: /O=Site A/CN=Attribute Authority
73
74# Logging configuration
75[loggers]
76keys = root, ndg
77
78[handlers]
79keys = console
80
81[formatters]
82keys = generic
83
84[logger_root]
85level = INFO
86handlers = console
87
88[logger_ndg]
89level = DEBUG
90handlers = 
91qualname = ndg
92
93[handler_console]
94class = StreamHandler
95args = (sys.stderr,)
96level = NOTSET
97formatter = generic
98
99[formatter_generic]
100format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
101datefmt = %Y/%m/%d %H:%M:%S
Note: See TracBrowser for help on using the repository browser.