source: TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteBAttAuthorityProperties.xml @ 4158

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/python/ndg.security.test/ndg/security/test/attAuthority/siteBAttAuthorityProperties.xml@4158
Revision 4158, 2.4 KB checked in by cbyrom, 12 years ago (diff)

Create new utility module, ClassFactory? - to allow generic instantiation
of classes dynamically.

Implement use of this in the AttAuth? and SessionMgr? services + adjust
the config files for these accordingly + abstract use of MyProxy? in
SessionMgr? to generic authNService - and create packages with real
and test authN services. Adjust the SessionMgr? tests to use the
test authN service.

Line 
1<?xml version="1.0" encoding="utf-8"?>
2<AAprop>
3    <name>Site B</name>
4    <portNum>5100</portNum>
5    <useSSL></useSSL> <!-- leave blank to use http -->
6    <sslCertFile></sslCertFile>
7    <sslKeyPwd></sslKeyPwd>
8    <!--
9    Directory containing CA cert.s to verify SSL peer cert against
10     - ignored if useSSL is blank
11    -->
12    <sslCACertDir>$NDGSEC_AACLNT_UNITTEST_DIR/ca</sslCACertDir>
13        <!-- WS-Security settings -->
14    <!--  NB, if no signature handling is required, do not include this element -->
15    <WS-Security>
16        <signingCertFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteB-aa.crt</signingCertFilePath>
17        <signingPriKeyFilePath>$NDGSEC_AACLNT_UNITTEST_DIR/siteB-aa.key</signingPriKeyFilePath>
18            <signingPriKeyPwd></signingPriKeyPwd>
19                <refC14nInclNS></refC14nInclNS>
20                <signedInfoC14nInclNS></signedInfoC14nInclNS>
21            <caCertFilePathList>
22            <caCertFile>$NDGSEC_AACLNT_UNITTEST_DIR/ca/ndg-test-ca.crt</caCertFile>
23                <!--
24            To also trust certificates issued from your MyProxy CA, replace
25                "abcdef01.0" with the unique name for your CA certificate and uncomment
26                the following line:
27            <caCertFile>/etc/grid-security/certificates/abcdef01.0</caCertFile>
28                -->
29            </caCertFilePathList>
30            <!-- Set the value type of the server cert -->
31        <reqBinSecTokValType>X509v3</reqBinSecTokValType>
32            <!-- Set the response message header to include a SignatureConfirmation element -->
33            <applySignatureConfirmation>True</applySignatureConfirmation>
34        <!--
35            Set the certificate used to verify the signature of messages from the
36        client.  This can usually be left blank since the client is expected to
37            include the cert with the signature in the inbound SOAP message
38        -->
39            <verifyingCertFilePath></verifyingCertFilePath>
40        </WS-Security>   
41    <attCertLifetime>28800</attCertLifetime>
42    <attCertNotBeforeOff>0</attCertNotBeforeOff>
43    <attCertFileName>ac.xml</attCertFileName>
44    <attCertFileLogCnt>16</attCertFileLogCnt>
45    <mapConfigFile>$NDGSEC_AACLNT_UNITTEST_DIR/siteBMapConfig.xml</mapConfigFile>
46    <attCertDir>$NDGSEC_AACLNT_UNITTEST_DIR/attCertLog</attCertDir>
47    <dnSeparator>/</dnSeparator>
48    <userRolesModFilePath>$NDGSEC_AACLNT_UNITTEST_DIR</userRolesModFilePath>
49    <userRolesModName>siteBUserRoles</userRolesModName>
50    <userRolesClassName>TestUserRoles</userRolesClassName>
51    <userRolesPropFile></userRolesPropFile>
52</AAprop>
Note: See TracBrowser for help on using the repository browser.