/[pdpsoft]/trunk/aarc.master-portal/ansible/masterportal_env.yml
ViewVC logotype

Contents of /trunk/aarc.master-portal/ansible/masterportal_env.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 2891 - (show annotations) (download) (as text)
Fri Mar 18 01:01:57 2016 UTC (6 years, 2 months ago) by tamasb
File MIME type: text/x-yaml
File size: 2150 byte(s)
added readme file

1 ---
2
3 # OA4MP Client
4
5 # The keystore is used for BOTH mp_client and mp_server to access the Credential Store
6 # therefor the two passwords KEYSTORE_PW should be the same. This way the two components
7 # can share a single keystore. The keystore usually contains the hostcert of the Master Portal
8
9 # The truststore contains trusted root certificates, and it's used to establish connection
10 # to the delegation server (/token and /getcert endpoints are backchannel calls)
11
12 # The mp_client_id and mp_client_secret should be filled from the client ID and SECRET
13 # provided by the delegation server while registering the master portal. Got to
14 # {{ delegation_server_auth }}/register and follow the registration steps to get an ID and SECRET
15
16 mp_client_keystore_pw: KEYSTORE_PW
17 mp_client_truststore_pw: TRUSTSTORE_PW
18 mp_client_id: MP_CLIENT_ID
19 mp_client_secret: MP_CLIENT_SECRET
20
21 # OA4MP Server
22
23 # Make sure mp_server_keystore_pw matches the keystore password set above at mp_client_keystore_pw!
24
25 mp_server_keystore_pw: KEYSTORE_PW
26
27 # Credential Store
28
29 # Set the MyProxy Credential Store that will store all the incoming used proxies. Make sure to
30 # fill in the right hostname (even if it's localhost!), othewise the SSL connection will break!
31 # The MYPROXY_PWD will be used to encrypt every incoming user proxy.
32
33 credstore_host: host.myproxy.com
34 credstore_port: 7512
35 credstore_pw: MYPROXY_PWD
36
37 # Delegation Server
38
39 # Fill in the delegation server oauth2 endpoint that which will be used by this Master Portal
40
41 deleg_server_auth: https://www.example.com/oauth2
42
43 # VO Portal
44
45 # The VO Portal is only deployed for testing purposes! Usually, a VO Portal would like on a different
46 # host. Leave these variables empty for the first run of ansible, since there is no Master Portal
47 # to register with yet. After the first ansible run, the Master Portal should be up and running.
48 # Now you can naviagete to {{ masterportal }}/{{ mp_server }}/register and register your VO Portal.
49 # Once you have the ID and SECRET, you can fill them in here, and rerun ansible
50
51 vo_portal_id: VP_CLIENT_ID
52 vo_portal_secret: VP_CLIENT_SECRET
53 vo_portal_truststore_pw: VO_TRUSTSTORE_PW
54

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28