/[pdpsoft]/trunk/egi-pilot/onlineCA/DS/ansible/roles/delegserver/defaults/main.yml
ViewVC logotype

Contents of /trunk/egi-pilot/onlineCA/DS/ansible/roles/delegserver/defaults/main.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 3176 - (show annotations) (download) (as text)
Thu Mar 30 15:19:20 2017 UTC (4 years, 9 months ago) by msalle
File MIME type: text/x-yaml
File size: 3277 byte(s)
Install public CA files in webroot.

1 ---
2
3 ### ENVIRONMENT SPECIFIC INFORMATION ###
4 ### ###
5 ### Usually you would override these using a variables include ###
6 ### file, using the vars_files include in your play. These ###
7 ### varabales include, for example, passwords, secrets and other ###
8 ### environment specific information ###
9
10
11 # certificates
12
13 certificates: /etc/grid-security/certificates
14 hostcert: /etc/grid-security/hostcert.pem
15 hostkey: /etc/grid-security/hostkey.pem
16 hostcert_intermediate: /etc/grid-security/certificates/TERENA-eScience-SSL-CA-3.pem
17
18 private_creds_archive: /root/frontend.canet.tgz
19 private_creds_dir: /root/private_creds
20 private_certificates: "{{ private_creds_dir }}/certificates"
21 private_hostcert: "{{ private_creds_dir }}/hostcert.pem"
22 private_hostkey: "{{ private_creds_dir }}/hostkey.pem"
23
24 ca_dir: "/var/lib/globus/simple_ca"
25 ca_cert: "{{ ca_dir }}/cacert.pem"
26 ca_signing_policy: "{{ ca_dir }}/signing-policy"
27 ca_crl: "{{ ca_dir }}/crl.pem"
28 ca_tarball: "{{ ca_dir }}/ca.tgz"
29
30 ca_name: "DemoCA"
31
32 # shibboleth
33
34 shib_entity_id: "https://{{ inventory_hostname }}"
35 shib_idp_id: "https://ipd.example.com/idp/shibboleth"
36 shib_idp_metadata: "https://ipd.example.com/idp/shibboleth/metadata"
37
38 shib_meta_name: "Delegation Service"
39 shib_meta_desc: "Delegation Service Description"
40 shib_meta_url: "https://wiki.organization.com"
41 shib_meta_org: "Organization"
42 shib_meta_org_link: "http://www.organization.com"
43
44 shib_meta_admin_company: "Organization"
45 shib_meta_admin_name: "Operator"
46 shib_meta_admin_mail: "johndoe@organization.com"
47
48 shib_meta_contact_company: "Organization"
49 shib_meta_contact_name: "Operator"
50 shib_meta_contact_mail: "johndoe@organization.com"
51
52 shib_meta_sec_contact_company: "Organization"
53 shib_meta_sec_contact_name: "CSIRT"
54 shib_meta_sec_contact_mail: "security@organization.com"
55 shib_meta_sec_contact_phone: ""
56
57 shib_meta_tech_name: "Operator"
58 shib_meta_tech_mail: "johndoe@organization.com"
59
60 # db
61
62 #mysql_root_password: changeme
63 #mariadb_root_password: changeme
64 #postgresql_root_password: changeme
65
66 # OA4MP secrets
67
68 oa4mp_server_db_pw: changeme
69 oa4mp_server_keystore_pw: changeme
70
71 # OA4MP server
72
73 oa4mp_server: oauth2
74 oa4mp_remote_user: REMOTE_USER
75
76 oa4mp_server_db: oa2server
77 oa4mp_server_db_user: oa4mp
78 oa4mp_server_db_conf: mysql
79 #oa4mp_server_db_conf: fileStore
80 #oa4mp_server_db_conf: mariadb
81 #oa4mp_server_db_conf: postgresql
82
83 oa4mp_server_dir: /var/www/server
84 oa4mp_server_conf_dir: "{{ oa4mp_server_dir }}/conf"
85 oa4mp_server_conf_file: "{{ oa4mp_server_conf_dir }}/cfg.xml"
86 #oa4mp_server_truststore: "{{ oa4mp_server_conf_dir }}/trust-store.jks"
87 oa4mp_server_keystore: "{{ oa4mp_server_conf_dir }}/private-hostcred.p12"
88 oa4mp_server_log_dir: "{{ oa4mp_server_dir }}/log"
89 oa4mp_server_storage_dir: "{{ oa4mp_server_dir }}/storage"
90 oa4mp_server_tools_dir: "{{ oa4mp_server_dir }}/tools"
91 oa4mp_server_certificates_dir: "{{ oa4mp_server_dir }}/certificates"
92
93 # Signing keys
94 oa4mp_server_jwk_file: "{{ oa4mp_server_conf_dir }}/ds.jwk"
95 oa4mp_server_jwk_key_id: changeme
96
97 # myproxy
98
99 #myproxy_ca_host: "{{ private_ca_hostname }}.{{ private_domain }}"
100 myproxy_ca_port: 7512
101
102 # contact in case of errors
103
104 contact: "contact@organization.com"

grid.support@nikhef.nl
ViewVC Help
Powered by ViewVC 1.1.28