/[pdpsoft]/trunk/eu.rcauth.pilot-ica/DS/ansible/roles/delegserver/vars/rh7.yml
ViewVC logotype

Contents of /trunk/eu.rcauth.pilot-ica/DS/ansible/roles/delegserver/vars/rh7.yml

Parent Directory Parent Directory | Revision Log Revision Log

Revision 3045 - (show annotations) (download) (as text)
Mon Jul 11 10:52:25 2016 UTC (5 years, 11 months ago) by tamasb
File MIME type: text/x-yaml
File size: 3003 byte(s) 
Change delegation server idp to RCauth WAYF

- change IdP metadata endpoint and entityID
- idp claim source becomes Shib-Authenticating-Authority (since Shib-Identity-Provider will always be the WAYF from here on)
- idp_name claim source becomse o (since orgDisplayName will always be the WAYF)
1 ---
2
3 enabled_services:
4 - tomcat
5 - httpd
6 - shibd
7 - mariadb
8
9 # general dependencies
10
11 dependencies:
12 - epel-release
13
14 # java constants
15
16 java_download_url: "https://javadl.sun.com/webapps/download/AutoDL?BundleId=114680"
17 javax_mail_url: "https://java.net/projects/javamail/downloads/download/javax.mail.jar"
18 java_home: /usr/java/default
19
20 # tomcat constants
21
22 tomcat_packages:
23 - tomcat
24 - tomcat-admin-webapps
25
26 tomcat_extra_packages:
27 - jglobus-jsse
28 - jglobus-ssl-proxies
29
30 tomcat_extra_libs: /usr/share/java/jglobus
31
32 catalina_home: /usr/share/tomcat
33 tomcat_user: tomcat
34 tomcat_service: tomcat
35
36 # apache
37
38 httpd_packages:
39 - httpd
40 - httpd-tools
41 - mod_ssl
42
43 httpd_service: httpd
44 httpd_web_root: /var/www/html
45
46 # The shibboleth repo is now pulled in by the cafrontend role!
47 # shibboleth
48
49 #shib_repo_baseurl: http://download.opensuse.org/repositories/security:/shibboleth/CentOS_7/
50 #shib_repo_gpgkey: http://download.opensuse.org/repositories/security:/shibboleth/CentOS_7/repodata/repomd.xml.key
51
52 shib_packages:
53 - shibboleth
54
55 shib_service: shibd
56
57 shib_httpd_conf: /etc/httpd/conf.d/shib.conf
58 shib_attr_map_file: /etc/shibboleth/attribute-map.xml
59 shib_conf_file: /etc/shibboleth/shibboleth2.xml
60
61 shib_attr_map:
62 - {name: "urn:oid:2.5.4.3", id: "cn"}
63 - {name: "urn:oid:0.9.2342.19200300.100.1.1", id: "uid"}
64 - {name: "urn:oid:0.9.2342.19200300.100.1.3", id: "mail"}
65 - {name: "urn:oid:2.16.840.1.113730.3.1.241", id: "displayName"}
66 - {name: "urn:oid:2.5.4.42", id: "givenName"}
67 - {name: "urn:oid:2.5.4.4", id: "sn"}
68 - {name: "urn:oid:1.3.6.1.4.1.25178.1.2.9", id: "schacHomeOrganization"}
69 - {name: "urn:oid:2.5.4.10", id: "o"}
70
71 # mysql
72
73 # NOTE
74 # THERE IS NO MYSQL PACKAGE IN CENTOS7 SINCE IT COMES WITH THE MARIADB IMPLEMENTATION
75 # YOU CAN INSTALL MTSQL FROM THE REPOSITORY BELOW, BUT THIS WILL NOT WORK PROPERLY
76
77 #mysql_repo_baseurl: http://repo.mysql.com/yum/mysql-5.7-community/el/7/$basearch/
78 #mysql_repo_connectors_baseurl: http://repo.mysql.com/yum/mysql-connectors-community/el/7/$basearch/
79 #mysql_repo_gpgkey: https://repo.mysql.com/RPM-GPG-KEY-mysql
80
81 #mysql_packages:
82 # - mysql-community-server
83 # - mysql-connector-java
84 # - mysql-connector-python
85
86 #mysql_root_password: changeme
87
88 # mariadb
89
90 # NOTE
91 # THE MARIADB PACKAGES ARE IN THE CENTOS7 REPOS, BUT THERE IS NO MARIADB JDBC CONNECTOR PROVIDED
92 # THE CONNECTOR DOWLOADED FROM THE OFFICIAL MARIADB WEBPAGE DOES NOT WORK PROPERLY ON CENTOS7
93 # THEREFOR WE USE THE CONNECTOR PROVIDED BY MYSQL INSTEAD.
94
95 # THE ABOVE EFFECTIVELY MEANS THAT OA4MP WILL RUN WITH 'MYSQL' CONNECTOR AND IMPLEMENTATION
96 # BUT THE UNDERLYING DATABASE WILL ACTUALLY BY MARIADB.
97
98 mariadb_packages:
99 - mariadb
100 - mariadb-server
101 - mysql-connector-java
102 - MySQL-python
103
104 mariadb_connector_path: /usr/share/java
105 mariadb_connector: mysql-connector-java.jar
106
107 # postgresql
108
109 postgresql_packages:
110 - postgresql
111 - postgresql-server
112 - postgresql-jdbc
113 - python-psycopg2
114
115 postgresql_connector_path: /usr/share/java
116 postgresql_connector: postgresql-jdbc.jar
grid.support@nikhef.nl
 ViewVC Help
Powered by ViewVC 1.1.28