Version 2 (modified by pjkersha, 7 years ago) (diff)


Generic Secured Application

This page describes the installation process for securing some WSGI based application with NDG Security middleware.

Steps assume root privileges.

Create virtualenv

  1. Create virtualenv:
    $ pip install virtualenv
  2. Create virtualenv:
    $ virtualenv --no-site-packages /usr/local/myapp
  3. Activate environment
    $ . /usr/local/myapp/bin/activate

Set-up Security Packages

  1. Install the required packages:
    $ cd /usr/local/myapp
    $ pip install -f ndg_security_server ndg_saml ndg_xacml

Set-up Configuration Files

Care should be taken if installing this alongside existing configuration for the application to be secured. The best approach is to set paster to install to a neighbouring directory and then copy over the required files and merge in the security ini file with those of the app (if one exists for the latter).

  1. Create configuration:
    $ paster create -t ndgsecurity_securedapp
    Enter the required information when prompted accepting defaults if acceptable. For the project name, entering 'etc' will set-up the configuration files in a etc sub-directory under /usr/local/ndg-security.