source: TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteBAttAuthorityProperties.xml @ 4139

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteBAttAuthorityProperties.xml@4139
Revision 4139, 2.5 KB checked in by cbyrom, 13 years ago (diff)

Further standardise property keywords - consolidating caCertFileList into
caCertFilePathList.
Line 
1<?xml version="1.0" encoding="utf-8"?>
2<AAprop>
3    <name>Site B</name>
4    <portNum>5100</portNum>
5    <useSSL></useSSL> <!-- leave blank to use http -->
6    <sslCertFile></sslCertFile>
7    <sslKeyPwd></sslKeyPwd>
8    <!--
9    Directory containing CA cert.s to verify SSL peer cert against
10     - ignored if useSSL is blank
11    -->
12    <sslCACertDir>$NDGSEC_AACLNT_UNITTEST_DIR/ca</sslCACertDir>
13        <!-- WS-Security settings -->
14    <!--  NB, if no signature handling is required, do not include this element -->
15    <WS-Security>
16        <signingCertFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteB-aa.crt</signingCertFilePath>
17        <signingPriKeyFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteB-aa.key</signingPriKeyFilePath>
18            <signingPriKeyPwd></signingPriKeyPwd>
19                <refC14nInclNS></refC14nInclNS>
20                <signedInfoC14nInclNS></signedInfoC14nInclNS>
21            <caCertFilePathList>
22            <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt</caCertFile>
23                <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/cacert.pem</caCertFile>
24                <!--
25            To also trust certificates issued from your MyProxy CA, replace
26                "abcdef01.0" with the unique name for your CA certificate and uncomment
27                the following line:
28            <caCertFile>/etc/grid-security/certificates/abcdef01.0</caCertFile>
29                -->
30            </caCertFilePathList>
31            <!-- Set the value type of the server cert -->
32        <reqBinSecTokValType>X509v3</reqBinSecTokValType>
33            <!-- Set the response message header to include a SignatureConfirmation element -->
34            <applySignatureConfirmation>True</applySignatureConfirmation>
35        <!--
36            Set the certificate used to verify the signature of messages from the
37        client.  This can usually be left blank since the client is expected to
38            include the cert with the signature in the inbound SOAP message
39        -->
40            <verifyingCertFilePath></verifyingCertFilePath>
41        </WS-Security>   
42    <attCertLifetime>28800</attCertLifetime>
43    <attCertNotBeforeOff>0</attCertNotBeforeOff>
44    <attCertFileName>ac.xml</attCertFileName>
45    <attCertFileLogCnt>16</attCertFileLogCnt>
46    <mapConfigFile>$NDGSEC_AACLNT_UNITTEST_DIR/siteBMapConfig.xml</mapConfigFile>
47    <attCertDir>$NDGSEC_AACLNT_UNITTEST_DIR/attCertLog</attCertDir>
48    <dnSeparator>/</dnSeparator>
49    <userRolesModFilePath>$NDGSEC_AACLNT_UNITTEST_DIR</userRolesModFilePath>
50    <userRolesModName>siteBUserRoles</userRolesModName>
51    <userRolesClassName>TestUserRoles</userRolesClassName>
52    <userRolesPropFile></userRolesPropFile>
53</AAprop>
Note: See TracBrowser for help on using the repository browser.