Ignore:
Timestamp:
16/02/10 16:11:08 (11 years ago)
Author:
pjkersha
Message:
  • Important fix for SOAP client used with SAML SOAP binding: set text/xml content type.
  • Refactored SAML SOAP binding query clients.
File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/unit/wsgi/saml/authz-decision-interface.ini

    r6575 r6578  
    1515 
    1616[pipeline:main] 
    17 pipeline = AttributeAuthorityFilter SAMLSoapAttributeInterfaceFilter TestApp 
     17pipeline = TestAuthorisationServiceFilter SAMLSoapAuthzDecisionInterfaceFilter TestApp 
    1818 
    1919[app:TestApp] 
    2020paste.app_factory = ndg.security.test.unit.wsgi.saml:TestApp 
    2121 
    22 [filter:SAMLSoapAttributeInterfaceFilter] 
    23 paste.filter_app_factory = ndg.security.server.wsgi.saml.attributeinterface:SOAPAttributeInterfaceMiddleware.filter_app_factory 
     22[filter:SAMLSoapAuthzDecisionInterfaceFilter] 
     23paste.filter_app_factory = ndg.security.server.wsgi.saml:SOAPQueryInterfaceMiddleware.filter_app_factory 
    2424prefix = saml. 
    25 saml.pathMatchList = /attributeauthority/saml 
    26 saml.queryInterfaceKeyName = attributeQueryInterface 
     25saml.pathMatchList = /authorisationservice 
     26saml.queryInterfaceKeyName = AUTHZ_DECISION_QUERY_FUNC 
     27saml.deserialise = saml.xml.etree:AuthzDecisionQueryElementTree.fromXML 
     28saml.serialise = saml.xml.etree:ResponseElementTree.toXML 
    2729 
    2830#______________________________________________________________________________ 
    29 # Attribute Authority WSGI settings 
     31# Authorisation Service WSGI settings 
    3032# 
    31 [filter:AttributeAuthorityFilter] 
     33[filter:TestAuthorisationServiceFilter] 
    3234# This filter is a container for a binding to a SOAP based interface to the 
    3335# Attribute Authority 
    34 paste.filter_app_factory = ndg.security.server.wsgi.attributeauthority:AttributeAuthorityMiddleware.filter_app_factory 
    35  
    36 prefix = attributeAuthority. 
    37  
    38 attributeAuthority.environKeyName: attributeauthority 
    39 attributeAuthority.environKeyNameAttributeQueryInterface: attributeQueryInterface 
    40  
    41 # Attribute Authority settings 
    42 # 'name' setting MUST agree with map config file 'thisHost' name attribute 
    43 attributeAuthority.name: Site A 
    44  
    45 # Lifetime is measured in seconds 
    46 attributeAuthority.attCertLifetime: 28800  
    47  
    48 # Allow an offset for clock skew between servers running  
    49 # security services. NB, measured in seconds - use a minus sign for time in the 
    50 # past 
    51 attributeAuthority.attCertNotBeforeOff: 0 
    52  
    53 # All Attribute Certificates issued are recorded in this dir 
    54 attributeAuthority.attCertDir: %(testConfigDir)s/attributeauthority/sitea/attributeCertificateLog 
    55  
    56 # Files in attCertDir are stored using a rotating file handler 
    57 # attCertFileLogCnt sets the max number of files created before the first is  
    58 # overwritten 
    59 attributeAuthority.attCertFileName: ac.xml 
    60 attributeAuthority.attCertFileLogCnt: 16 
    61 attributeAuthority.dnSeparator:/ 
    62  
    63 # Location of role mapping file 
    64 attributeAuthority.mapConfigFilePath: %(testConfigDir)s/attributeauthority/sitea/siteAMapConfig.xml 
    65  
    66 # Settings for custom AttributeInterface derived class to get user roles for given  
    67 # user ID 
    68 attributeAuthority.attributeInterface.modFilePath: %(testConfigDir)s/attributeauthority/sitea 
    69 attributeAuthority.attributeInterface.modName: ndg.security.test.config.attributeauthority.sitea.siteAUserRoles 
    70 attributeAuthority.attributeInterface.className: TestUserRoles 
    71  
    72 # Config for XML signature of Attribute Certificate 
    73 attributeAuthority.signingPriKeyFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.key 
    74 attributeAuthority.signingCertFilePath: %(testConfigDir)s/attributeauthority/sitea/siteA-aa.crt 
    75 attributeAuthority.caCertFilePathList: %(testConfigDir)s/ca/ndg-test-ca.crt 
     36paste.filter_app_factory = ndg.security.test.unit.wsgi.saml.test_soapauthzdecisioninterface:TestAuthorisationServiceMiddleware 
     37queryInterfaceKeyName = AUTHZ_DECISION_QUERY_FUNC 
Note: See TracChangeset for help on using the changeset viewer.