wiki:ndg_security/Installation/GenericSecuredApplication

Version 2 (modified by pjkersha, 6 years ago) (diff)

--

Generic Secured Application

This page describes the installation process for securing some WSGI based application with NDG Security middleware.

Steps assume root privileges.

Create virtualenv

  1. Create virtualenv:
    $ pip install virtualenv
    
  2. Create virtualenv:
    $ virtualenv --no-site-packages /usr/local/myapp
    
  3. Activate environment
    $ . /usr/local/myapp/bin/activate
    

Set-up Security Packages

  1. Install the required packages:
    $ cd /usr/local/myapp
    $ pip install -f http://ndg.nerc.ac.uk/dist/ ndg_security_server ndg_saml ndg_xacml
    

Set-up Configuration Files

Care should be taken if installing this alongside existing configuration for the application to be secured. The best approach is to set paster to install to a neighbouring directory and then copy over the required files and merge in the security ini file with those of the app (if one exists for the latter).

  1. Create configuration:
    $ paster create -t ndgsecurity_securedapp
    
    Enter the required information when prompted accepting defaults if acceptable. For the project name, entering 'etc' will set-up the configuration files in a etc sub-directory under /usr/local/ndg-security.