Changes between Version 12 and Version 13 of ESGF-Security


Ignore:
Timestamp:
Mar 13, 2013 1:44:20 PM (9 years ago)
Author:
vegasm
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • ESGF-Security

    v12 v13  
    1 = Adding ESG-SECURITY to THREDDS =
     1= Adding ESGF-Security to THREDDS =
    22
    33Before publishing test datasets, it is necessary to install some security components and filters to support ESGF-Security.
     
    4242
    4343 1. Start tomcat server. Run '''$CATALINA_HOME/bin/startup.bat on windows''' or '''$CATALINA_HOME/bin/startup.sh''' on Linux
    44  1. Download [[attachment:esg-orp.war]] and move to '''$CATALINA_HOME/webapps'''. A new directory called 'esg-orp' will be created by Tomcat.
     44 1. Download [[attachment:esg-orp.war]] and move it to '''$CATALINA_HOME/webapps'''. A new directory called 'esg-orp' will be created by Tomcat.
    4545
    4646
     
    4848{{{
    4949#location of keystore used to sign the authentication cookie
    50 keystoreFile=C:/apache-tomcat-6.0.36/config_files/esg-orp/.keystore
     50keystoreFile=$CATALINA_HOME/config_files/esg-orp/.keystore
    5151
    5252#password used to read the keystore
     
    5757}}}
    5858
    59 ESG-ORP manages a whitelist. This list is used by the app to allow the idp's. The idp's are entities which provide an openid login and return a valid cookie. We will need two lists and you can download them from here attachment:esgf_idp.xml attachment:esgf_idp_static.xml. If your idp is not contained by ''esgf_idp_static.xml'' just add your idp to the file. These files have to be saved in '''WEB-INF/classes/esg/config''' due to an apps bug. The app only accepts Linux paths or relative paths. Windows paths are not considered by the momment.
     59ESG-ORP manages a list that is used to allow the idp's. It is called whitelist. The idp's are entities which provide an openid login and return a valid cookie. We will need two lists and you can download them from here [[attachment:esgf_idp.xml]] [[attachment:esgf_idp_static.xml]]. If your idp is not contained by ''esgf_idp_static.xml'' just add your idp to the file. It is recommended to save these files in '''WEB-INF/classes/esg/config''' to work properly in all environments because Windows paths are not considered by the momment.
    6060
    6161The file which reads the lists is located in WEB-INF/classes/esg/orp/orp/config/security-context-auth.xml