/[pdpsoft]/trunk/aarc.master-portal/ansible/masterportal_env.yml
ViewVC logotype

Annotation of /trunk/aarc.master-portal/ansible/masterportal_env.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 2891 - (hide annotations) (download) (as text)
Fri Mar 18 01:01:57 2016 UTC (6 years, 3 months ago) by tamasb
File MIME type: text/x-yaml
File size: 2150 byte(s)
added readme file

1 tamasb 2890 ---
2    
3     # OA4MP Client
4    
5     # The keystore is used for BOTH mp_client and mp_server to access the Credential Store
6     # therefor the two passwords KEYSTORE_PW should be the same. This way the two components
7     # can share a single keystore. The keystore usually contains the hostcert of the Master Portal
8    
9 tamasb 2891 # The truststore contains trusted root certificates, and it's used to establish connection
10     # to the delegation server (/token and /getcert endpoints are backchannel calls)
11    
12 tamasb 2890 # The mp_client_id and mp_client_secret should be filled from the client ID and SECRET
13     # provided by the delegation server while registering the master portal. Got to
14     # {{ delegation_server_auth }}/register and follow the registration steps to get an ID and SECRET
15    
16     mp_client_keystore_pw: KEYSTORE_PW
17     mp_client_truststore_pw: TRUSTSTORE_PW
18     mp_client_id: MP_CLIENT_ID
19     mp_client_secret: MP_CLIENT_SECRET
20    
21     # OA4MP Server
22    
23     # Make sure mp_server_keystore_pw matches the keystore password set above at mp_client_keystore_pw!
24    
25     mp_server_keystore_pw: KEYSTORE_PW
26    
27     # Credential Store
28    
29     # Set the MyProxy Credential Store that will store all the incoming used proxies. Make sure to
30     # fill in the right hostname (even if it's localhost!), othewise the SSL connection will break!
31     # The MYPROXY_PWD will be used to encrypt every incoming user proxy.
32    
33     credstore_host: host.myproxy.com
34     credstore_port: 7512
35     credstore_pw: MYPROXY_PWD
36    
37     # Delegation Server
38    
39     # Fill in the delegation server oauth2 endpoint that which will be used by this Master Portal
40    
41     deleg_server_auth: https://www.example.com/oauth2
42    
43     # VO Portal
44    
45     # The VO Portal is only deployed for testing purposes! Usually, a VO Portal would like on a different
46     # host. Leave these variables empty for the first run of ansible, since there is no Master Portal
47     # to register with yet. After the first ansible run, the Master Portal should be up and running.
48     # Now you can naviagete to {{ masterportal }}/{{ mp_server }}/register and register your VO Portal.
49     # Once you have the ID and SECRET, you can fill them in here, and rerun ansible
50    
51     vo_portal_id: VP_CLIENT_ID
52     vo_portal_secret: VP_CLIENT_SECRET
53     vo_portal_truststore_pw: VO_TRUSTSTORE_PW
54    

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28