adding example config files for new micro services

rhoerbe · rhoerbe · commit 2f0ad6829582 · 2019-10-24T21:32:22.000+02:00
diff --git a/example/plugins/microservices/custom_routing.example b/example/plugins/microservices/custom_routing.example
@@ -0,0 +1,11 @@
+module: satosa.micro_services.custom_routing.DecideIfRequesterIsAllowed
+name: RequesterDecider
+config:
+  rules:
+    target_entity_id1:
+        allow: ["requester1", "requester2"]
+    target_entity_id2:
+        deny: ["requester3"]
+    target_entity_id3:
+        allow: ["requester1"]
+        deny: ["*"]
diff --git a/example/plugins/microservices/filter_requester.yaml b/example/plugins/microservices/filter_requester.yaml
@@ -5,6 +5,5 @@ config:
     - https://sp1.test.wpv.portalverbund.at/sp.xml
     - https://sp3.test.wpv.portalverbund.at/sp.xml
     - https://sp4.test.wpv.portalverbund.at/sp.xml
-    - https://useradmin-core.austrian-standards.at/saml/metadata/alias/austrian-standards-core-wpv
-module: satosa.micro_services.filter_requester
+module: satosa.micro_services.filter_requester.FilterRequester
 name: FilterRequester
diff --git a/example/plugins/microservices/redirect_url_request.yaml.example b/example/plugins/microservices/redirect_url_request.yaml.example
@@ -0,0 +1,4 @@
+module: satosa.micro_services.redirect_url.RedirectUrlRequest
+name: RedirectUrlRequest
+config:
+  db_encryption_key: "WQpuhOELqGAs/ct2mujCqw"
diff --git a/example/plugins/microservices/redirect_url_response.yaml.example b/example/plugins/microservices/redirect_url_response.yaml.example
@@ -0,0 +1,6 @@
+module: satosa.micro_services.redirect_url.RedirectUrlResponse
+name: RedirectUrlResponse
+config:
+  db_encryption_key: "WQpuhOELqGAs/ct2mujCqw"  # must be same in redirect_url_request.yaml
+  redirect_attr_name: WkisRedirect
+  redir_entityid: http://wkis.qss.wko.at/adfs/services/trust
diff --git a/example/plugins/microservices/simpleconsent.yaml.example b/example/plugins/microservices/simpleconsent.yaml.example
@@ -0,0 +1,36 @@
+# this file contains secret keys. Protect file or insert values from environment
+
+module: satosa.micro_services.simpleconsent.SimpleConsent
+name: SimpleConsent
+config:
+  consent_cookie_name: SATOSA_CONSENTID
+  consent_attr_not_displayed:
+    - addr_country
+    - authenticationClass
+    - possibleroles
+    - registrationClassOrg
+    - registrationClassUser
+    - wkis_roleextendeddescription
+    - wkis_roletypeid
+  consent_attrname_display:
+    uid: UserID
+    displayname: Anzeigename
+    givenname: Vorname
+    gln: "GLN der Firma"
+    mail: E-Mailadresse
+    name: Vor+Familienname
+    surname: Familienname
+    wkis_roledescription: "WKO Mitglied"
+  consent_service_api_auth:
+    userid: admin
+    password: adminadmin
+  id_hash_alg: md5  # md5 is shorter than sha-224, but may be missing in (rare) FIPS-compliant C-Python
+  # shard secret: configure same ASCII-value in proxy and consent app
+  PROXY_HMAC_KEY: "your random key (-> `openssh rand -base64 30`)"
+  request_consent_url: https://consent.example.org/request_consent
+  self_entityid: satosa.vnet/idp_proxy.xml
+  # consent display page: translate SP entityIDs to human readable names
+  # (work around, as metadata is not available in the micro service)
+  sp_entityid_names:
+    https://sp1.test.wpv.portalverbund.at/sp.xml: "Test SP1"
+  verify_consent_url: https://consent.example.org/has_consent
