# Changes between Version 15 and Version 16 of ESGF-Security

Ignore:
Timestamp:
Mar 14, 2013 11:18:36 AM (9 years ago)
Comment:

--

Unmodified
Removed
Modified
• ## ESGF-Security

 v15 Edit WEB-INF/classes/esg-orp.properties to configure ESG-ORP to sign the cookies: Edit ''WEB-INF/classes/esg-orp.properties'' to configure ESG-ORP to sign the cookies: {{{ #location of keystore used to sign the authentication cookie ESG-ORP manages a list that is used to allow the idp's. It is called whitelist. The idp's are entities which provide an openid login and return a valid cookie. We will need two lists and you can download them from here [[attachment:esgf_idp.xml]] [[attachment:esgf_idp_static.xml]]. If your idp is not contained by ''esgf_idp_static.xml'' just add your idp to the file. It is recommended to save these files in '''WEB-INF/classes/esg/config''' to work properly in all environments because Windows paths are not considered by the momment. The whitelist files are read by '''WEB-INF/classes/esg/orp/orp/config/security-context-auth.xml''' The whitelist files are read by ''WEB-INF/classes/esg/orp/orp/config/security-context-auth.xml'' Go to the line 84 and replace it with this line: {{{ == TDS Configuration == Firstable, copy the following jars onto the TDS WEB-INF/lib directory [[attachment:thredds_esg_security_libraries.zip​]] Firstable, copy the following jars onto the TDS ''WEB-INF/lib directory'' [[attachment:"thredds_esg_security_libraries.zip​"]] After that, edit the file $CATALINA_HOME/webapps/thredds/WEB-INF/web.xml and insert the XML snippet that configures the ESG access control filters to intercepts all requests sent to the TDS. You must configure the filter parameters to values that are specific to your system, specifically: After that, edit the file ''$CATALINA_HOME/webapps/thredds/WEB-INF/web.xml'' and insert the XML snippet that configures the ESG access control filters to intercepts all requests sent to the TDS. You must configure the filter parameters to values that are specific to your system, specifically: {{{