source: TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteBAttAuthorityProperties.xml @ 4138

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteBAttAuthorityProperties.xml@4138
Revision 4138, 2.2 KB checked in by cbyrom, 13 years ago (diff)

Implement consistent use of keywords throughout the codebase - using
the wssecurity class as the guide - effectively changing the xml
property file key names to match those of the ini files. Also remove
useSignatureHandler keyword and replace with a check for the WS-Security
property + add better checking of properties in the tac and py files
+ add new config files and remove some unnecessary ones.

Line 
1<?xml version="1.0" encoding="utf-8"?>
2<AAprop>
3    <name>Site B</name>
4    <portNum>5100</portNum>
5    <useSSL></useSSL> <!-- leave blank to use http -->
6    <sslCertFile></sslCertFile>
7    <sslKeyPwd></sslKeyPwd>
8    <!--
9    Directory containing CA cert.s to verify SSL peer cert against
10     - ignored if useSSL is blank
11    -->
12    <sslCACertDir>$NDGSEC_AACLNT_UNITTEST_DIR/ca</sslCACertDir>
13    <!--  NB, if no signature handling is required, do not include this element -->
14    <WS-Security>
15                <!-- WS-Security settings -->
16        <signingCertFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteB-aa.crt</signingCertFilePath>
17            <caCertFileList>
18            <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt</caCertFile>
19                <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/cacert.pem</caCertFile>
20                <!--
21            To also trust certificates issued from your MyProxy CA, replace
22                "abcdef01.0" with the unique name for your CA certificate and uncomment
23                the following line:
24            <caCertFile>/etc/grid-security/certificates/abcdef01.0</caCertFile>
25                -->
26            </caCertFileList>
27        <signingPriKeyFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteB-aa.key</signingPriKeyFilePath>
28            <signingPriKeyPwd></signingPriKeyPwd>
29                <refC14nInclNS></refC14nInclNS>
30                <signedInfoC14nInclNS></signedInfoC14nInclNS>
31        <!--
32            Set the certificate used to verify the signature of messages from the
33        client.  This can usually be left blank since the client is expected to
34            include the cert with the signature in the inbound SOAP message
35        -->
36            <verifyingCertFilePath></verifyingCertFilePath>
37        </WS-Security>   
38    <attCertLifetime>28800</attCertLifetime>
39    <attCertNotBeforeOff>0</attCertNotBeforeOff>
40    <attCertFileName>ac.xml</attCertFileName>
41    <attCertFileLogCnt>16</attCertFileLogCnt>
42    <mapConfigFile>$NDGSEC_AACLNT_UNITTEST_DIR/siteBMapConfig.xml</mapConfigFile>
43    <attCertDir>$NDGSEC_AACLNT_UNITTEST_DIR/attCertLog</attCertDir>
44    <dnSeparator>/</dnSeparator>
45    <userRolesModFilePath>$NDGSEC_AACLNT_UNITTEST_DIR</userRolesModFilePath>
46    <userRolesModName>siteBUserRoles</userRolesModName>
47    <userRolesClassName>TestUserRoles</userRolesClassName>
48    <userRolesPropFile></userRolesPropFile>
49</AAprop>
Note: See TracBrowser for help on using the repository browser.