source: TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteAAttAuthorityProperties.xml @ 4139

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteAAttAuthorityProperties.xml@4139
Revision 4139, 2.6 KB checked in by cbyrom, 13 years ago (diff)

Further standardise property keywords - consolidating caCertFileList into
caCertFilePathList.

Line 
1<?xml version="1.0" encoding="utf-8"?>
2<AAprop>
3    <name>Site A</name>
4    <portNum>5000</portNum>
5    <useSSL></useSSL> <!-- leave blank to use http -->
6    <sslCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/siteA-aa.crt</sslCertFile>
7    <sslKeyFile>$NDGSEC_AACLNT_UNITTEST_DIR/siteA-aa.key</sslKeyFile>
8    <sslKeyPwd></sslKeyPwd>
9    <!--
10    Directory containing CA cert.s to verify SSL peer cert against
11     - ignored if useSSL is blank
12    -->
13    <sslCACertDir>$NDGSEC_AACLNT_UNITTEST_DIR/ca</sslCACertDir>
14        <!-- WS-Security settings -->
15    <!--  NB, if no signature handling is required, do not include this element -->
16    <WS-Security>
17        <signingCertFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteA-aa.crt</signingCertFilePath>
18            <signingPriKeyFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteA-aa.key</signingPriKeyFilePath>
19        <signingPriKeyPwd></signingPriKeyPwd>
20                <refC14nInclNS></refC14nInclNS>
21                <signedInfoC14nInclNS></signedInfoC14nInclNS>
22            <caCertFilePathList>
23            <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt</caCertFile>
24                <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/cacert.pem</caCertFile>
25                <!--
26            To also trust certificates issued from your MyProxy CA, replace
27                "abcdef01.0" with the unique name for your CA certificate and uncomment
28                the following line:
29            <caCertFile>/etc/grid-security/certificates/abcdef01.0</caCertFile>
30                -->
31            </caCertFilePathList>
32            <!-- Set the value type of the server cert -->
33        <reqBinSecTokValType>X509v3</reqBinSecTokValType>
34            <!-- Set the response message header to include a SignatureConfirmation element -->
35            <applySignatureConfirmation>True</applySignatureConfirmation>
36            <!--
37        Set the certificate used to verify the signature of messages from the
38            client.  This can usually be left blank since the client is expected to
39        include the cert with the signature in the inbound SOAP message
40            -->
41        <verifyingCertFilePath></verifyingCertFilePath>   
42    </WS-Security>
43    <attCertLifetime>28800</attCertLifetime>
44    <attCertNotBeforeOff>0</attCertNotBeforeOff>
45    <attCertFileName>ac.xml</attCertFileName>
46    <attCertFileLogCnt>16</attCertFileLogCnt>
47    <mapConfigFile>$NDGSEC_AACLNT_UNITTEST_DIR/siteAMapConfig.xml</mapConfigFile>
48    <attCertDir>$NDGSEC_AACLNT_UNITTEST_DIR/attCertLog</attCertDir>
49    <dnSeparator>/</dnSeparator>
50    <userRolesModFilePath>$NDGSEC_AACLNT_UNITTEST_DIR</userRolesModFilePath>
51    <userRolesModName>siteAUserRoles</userRolesModName>
52    <userRolesClassName>TestUserRoles</userRolesClassName>
53    <userRolesPropFile></userRolesPropFile>
54</AAprop>
Note: See TracBrowser for help on using the repository browser.