source: TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionMgr/sessionMgrProperties.xml @ 4139

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg-security/TI12-security/trunk/python/ndg.security.test/ndg/security/test/sessionMgr/sessionMgrProperties.xml@4139
Revision 4139, 3.8 KB checked in by cbyrom, 13 years ago (diff)

Further standardise property keywords - consolidating caCertFileList into
caCertFilePathList.

Line 
1<?xml version="1.0" encoding="utf-8"?>
2<sessMgrProp>
3    <portNum>5700</portNum>
4    <useSSL></useSSL> <!-- leave blank to use http -->
5    <!--<useSSL>Yes</useSSL>  leave blank to use http -->
6    <sslCertFile>$NDGSEC_SM_UNITTEST_DIR/sm.crt</sslCertFile>
7    <sslKeyFile>$NDGSEC_SM_UNITTEST_DIR/sm.key</sslKeyFile>
8    <!--
9    Directory containing CA cert.s to verify SSL peer cert against
10     - ignored if useSSL is blank
11    -->
12    <sslCACertDir>$NDGSEC_SM_UNITTEST_DIR/ca</sslCACertDir>
13    <!--
14    WS-Security settings for signature of outbound SOAP messages
15    NB, if no signature handling is required, do not include this element
16    -->
17    <WS-Security>
18            <!--
19            CA Certificates used to verify X.509 certs used in peer SOAP messages,
20            SSL connections and Attribute Certificates
21        -->
22            <caCertFilePathList>
23            <caCertFile>$NDGSEC_SM_UNITTEST_DIR/ca/ndg-test-ca.crt</caCertFile>
24        </caCertFilePathList>
25            <signingCertFilePath>$NDGSEC_SM_UNITTEST_DIR/sm.crt</signingCertFilePath>
26        <signingPriKeyFilePath>$NDGSEC_SM_UNITTEST_DIR/sm.key</signingPriKeyFilePath>
27            <signingPriKeyPwd/>
28                <!--
29                Inclusive namespace prefixes for reference and SignedInfo sections of
30                WS-Security digital signature
31                -->
32                <refC14nInclNS></refC14nInclNS>
33                <signedInfoC14nInclNS></signedInfoC14nInclNS>
34        <!--
35            Set the certificate used to verify the signature of messages from the
36        client.  This can usually be left blank since the client is expected to
37            include the cert with the signature in the inbound SOAP message
38        -->
39        <verifyingCertFilePath></verifyingCertFilePath>
40    </WS-Security>   
41    <sessMgrEncrKey>abcdef0123456789</sessMgrEncrKey>
42    <sessMgrURI>https://localhost:5700/SessionManager</sessMgrURI>
43    <cookieDomain></cookieDomain>
44        <myProxyProp>
45                <!--
46                Delete this element and take setting from MYPROXY_SERVER environment
47                variable if required
48                <hostname>localhost</hostname>
49                -->
50                <!--
51                Delete this element to take default setting 7512 or read
52                MYPROXY_SERVER_PORT setting
53                -->
54                <port>7512</port>
55                <!--
56                Useful if hostname and certificate CN don't match correctly.  Globus
57                host DN is set to "host/<fqdn>".  Delete this element and set from
58                MYPROXY_SERVER_DN environment variable if preferred
59                <serverDN>/O=NDG/OU=BADC/OU=Gabriel/CN=localhost</serverDN>
60                -->
61                <!--
62                Set "host/" prefix to host cert CN as is default with globus otherwise
63                client SSL peer cert check fails
64                -->
65                <serverCNprefix>host/</serverCNprefix> 
66                <!--
67                This directory path is used to locate the OpenSSL configuration file
68               
69                The settings are used to set up the defaults for the Distinguished Name of
70                the new proxy cert. issued
71               
72                GLOBUS_LOCATION or GRID_SECURITY_DIR environment variables may be used
73                but the settings can be independent of any Globus installation
74                -->
75                <openSSLConfFilePath>$NDGSEC_SM_UNITTEST_DIR/openssl.conf</openSSLConfFilePath>
76                <tmpDir>/tmp</tmpDir>
77                <!--
78                        Limit on maximum lifetime any proxy certificate can have -
79                        specified when a certificate is first created by store() method
80                -->
81                <proxyCertMaxLifetime>43200</proxyCertMaxLifetime> <!-- in seconds -->
82                <!--
83                        Life time of a proxy certificate when issued from the Proxy Server
84                        with getDelegation() method
85                        -->
86                <proxyCertLifetime>43200</proxyCertLifetime> <!-- in seconds -->
87                <caCertFile>$NDGSEC_SM_UNITTEST_DIR/ndg-test-ca.crt</caCertFile>
88        </myProxyProp>
89        <simpleCACltProp>
90            <uri></uri>
91        <xmlSigKeyFile></xmlSigKeyFile>
92        <xmlSigCertFile></xmlSigCertFile>
93        <xmlSigCertPwd></xmlSigCertPwd>
94    </simpleCACltProp>
95    <credReposProp>
96            <modFilePath></modFilePath>
97            <modName>ndg.security.common.CredWallet</modName>
98            <className>NullCredRepos</className>
99            <propFile></propFile>
100    </credReposProp>
101</sessMgrProp>
Note: See TracBrowser for help on using the repository browser.