/[pdpsoft]/trunk/aarc.master-portal/ansible/roles/masterportal/templates/server-cfg.xml.j2
ViewVC logotype

Contents of /trunk/aarc.master-portal/ansible/roles/masterportal/templates/server-cfg.xml.j2

Parent Directory Parent Directory | Revision Log Revision Log


Revision 3050 - (show annotations) (download)
Mon Jul 11 13:49:53 2016 UTC (5 years, 11 months ago) by tamasb
File size: 3873 byte(s)
validators configuration for MP

1 <config>
2
3 <service name="default" alias="{{ mp_server_conf }}"/>
4
5 <!-- ############################################################################## -->
6
7 <service name="mysql-mp-server-config" address="https://{{ inventory_hostname }}/{{ mp_server }}" debug="true">
8
9 <logging logFileName="{{ mp_server_log_dir }}/{{ mp_server }}.log"
10 logName="MP"
11 logSize="1000000"
12 logFileCount="10"
13 debug="true"
14 />
15
16 <scopes handler="org.masterportal.oauth2.server.MPForwardingScopeHandler">
17 <scope>org.cilogon.userinfo</scope>
18 </scopes>
19
20 <mysql username="{{ mp_server_db_user }}"
21 password="{{ mp_server_db_pw }}"
22 database="{{ mp_server_db }}"
23 schema="{{ mp_server_db }}" >
24 <transactions/>
25 <clients/>
26 <clientApprovals/>
27 </mysql>
28
29 <myproxy host="{{ credstore_host }}" port="{{ credstore_port }}" password="{{ credstore_pw }}">
30 <keystore path="{{ mp_server_keystore }}"
31 type="pkcs12"
32 password="{{ mp_server_keystore_pw }}"
33 factory="SunX509" />
34 <!--
35 The default lifetime set in seconds is used in case there is no proxylifetime value
36 provided with the original /getproxy request
37 -->
38 <defaultLifetime>43200</defaultLifetime>
39
40 <validators>
41 <validator handler="org.masterportal.oauth2.server.validators.DNValidator">
42 <input name="input_claim">cert_subject_dn</input>
43 </validator>
44 <validator handler="org.masterportal.oauth2.server.validators.LifetimeValidator">
45 <!--
46 max_proxy_lifetime is set in the myproxy-server.conf (converted into seconds)
47 -->
48 <input name="max_proxy_lifetime">950400</input>
49 <!--
50 the tolerance is a small timeframe in seconds (usually a day) which prevents
51 the Delegation Server from being flooded with requests.
52 -->
53 <input name="tolerance">86400</input>
54 </validator>
55 </validators>
56
57 </myproxy>
58
59 <!-- <authorizationServlet useHeader="true" requireHeader="true" headerFieldName="eppn" /> -->
60
61 </service>
62
63 <!-- ############################################################################## -->
64
65 <service name="filestore-mp-server-config" address="https://{{ inventory_hostname }}/{{ mp_server }}" debug="true">
66
67 <logging logFileName="{{ mp_server_log_dir }}/{{ mp_server }}.log"
68 logName="MP"
69 logSize="1000000"
70 logFileCount="10"
71 debug="true"
72 />
73
74 <scopes handler="org.masterportal.oauth2.server.MPForwardingScopeHandler">
75 <scope>org.cilogon.userinfo</scope>
76 </scopes>
77
78 <fileStore path="{{ mp_server_storage_dir }}">
79 <transactions/>
80 <clients/>
81 <clientApprovals/>
82 </fileStore>
83
84 <myproxy host="{{ credstore_host }}" port="{{ credstore_port }}" password="{{ credstore_pw }}">
85 <keystore path="{{ mp_server_keystore }}"
86 type="pkcs12"
87 password="{{ mp_server_keystore_pw }}"
88 factory="SunX509" />
89 </myproxy>
90
91 <!-- <authorizationServlet useHeader="true" requireHeader="true" headerFieldName="eppn" /> -->
92
93 </service>
94
95 </config>
96

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28