/[pdpsoft]/trunk/aarc.master-portal/ansible/secrets_env.yml
ViewVC logotype

Contents of /trunk/aarc.master-portal/ansible/secrets_env.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 3081 - (show annotations) (download) (as text)
Mon Aug 15 09:00:55 2016 UTC (5 years, 11 months ago) by msalle
File MIME type: text/x-yaml
File size: 1851 byte(s)
Purger job can be myproxy owned, also add all template secret values

1 ---
2
3 # Trust and Key stores
4
5 # The keystore is used for BOTH MP Client and MP Server to access the Credential Store
6 # therefor the two passwords (mp_client_keystore_pw and mp_server_keystore_pw) should be the
7 # same. This way the two components can share a single keystore. The keystore usually contains
8 # the hostcert of the Master Portal. Levea the following configuration as it is
9 mp_server_keystore_pw: "{{ mp_client_keystore_pw }}"
10
11 # The truststore contains trusted root certificates, and it's used to establish connection
12 # to the delegation server (/token and /getcert endpoints are backchannel calls)
13
14 # OA4MP Client
15
16 # The mp_client_id and mp_client_secret should be filled from the client ID and SECRET
17 # provided by the delegation server while registering the master portal. Got to
18 # {{ delegation_server_auth }}/register and follow the registration steps to get an ID and SECRET
19
20 mp_client_id: MP_CLIENT_ID
21 mp_client_secret: MP_CLIENT_SECRET
22
23 # VO Portal
24
25 # The VO Portal is only deployed for testing purposes! Usually, a VO Portal would like on a different
26 # host. Leave these variables empty for the first run of ansible, since there is no Master Portal
27 # to register with yet. After the first ansible run, the Master Portal should be up and running.
28 # Now you can naviagete to {{ masterportal }}/{{ mp_server }}/register and register your VO Portal.
29 # Once you have the ID and SECRET, you can fill them in here, and rerun ansible
30
31 vo_portal_id: VP_CLIENT_ID
32 vo_portal_secret: VP_CLIENT_SECRET
33
34 # Other generated secrets
35
36 mysql_root_password: MYSQL_ROOT_PW
37 mariadb_root_password: MARIADB_ROOT_PW
38 mp_client_db_pw: MP_CLIENT_DB_PW
39 mp_server_db_pw: MP_SERVER_DB_PW
40 mp_client_keystore_pw: MP_CLIENT_KEYSTORE_PW
41 mp_client_truststore_pw: MP_CLIENT_TRUSTSTORE_PW
42 vo_portal_truststore_pw: VO_PORTAL_TRUSTSTORE_PW
43 credstore_pw: CREDSTORE_PW

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28