-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathproxy_service_settings.py
75 lines (65 loc) · 2.17 KB
/
proxy_service_settings.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
"""
Development settings for eidas_node.proxy_service Django app.
DO NOT USE IN PRODUCTION!
See https://docs.djangoproject.com/en/2.2/howto/deployment/checklist/
"""
# Security
SECRET_KEY = 'secret'
DEBUG = True
ALLOWED_HOSTS = ['*']
# Application definition
INSTALLED_APPS = [
'django.contrib.staticfiles',
'eidas_node.proxy_service.apps.ProxyServiceConfig',
]
MIDDLEWARE = [
'django.middleware.common.CommonMiddleware',
]
ROOT_URLCONF = 'eidas_node.proxy_service.urls'
STATIC_ROOT = '/var/www/eidas-node-proxy-service/static'
STATIC_URL = '/static/'
TEMPLATES = [
{
'BACKEND': 'django.template.backends.django.DjangoTemplates',
'APP_DIRS': True,
'OPTIONS': {
'context_processors': [
'django.contrib.messages.context_processors.messages',
'django.template.context_processors.debug',
'django.template.context_processors.request',
'django.template.context_processors.i18n',
]
}
}
]
# eIDAS Proxy Service
PROXY_SERVICE_REQUEST_TOKEN = {
'HASH_ALGORITHM': 'sha256',
'SECRET': 'mySecretProxyserviceRequest',
'ISSUER': 'specificCommunicationDefinitionProxyserviceRequest',
'LIFETIME': 10, # minutes
}
PROXY_SERVICE_RESPONSE_TOKEN = {
'HASH_ALGORITHM': 'sha256',
'SECRET': 'mySecretProxyserviceResponse',
'ISSUER': 'specificCommunicationDefinitionProxyserviceResponse',
}
PROXY_SERVICE_LIGHT_STORAGE = {
'BACKEND': 'eidas_node.storage.ignite.IgniteStorage',
'OPTIONS': {
'host': 'ignite.example.net',
'port': 10800,
'request_cache_name': 'nodeSpecificProxyserviceRequestCache',
'response_cache_name': 'specificNodeProxyserviceResponseCache',
}
}
PROXY_SERVICE_IDENTITY_PROVIDER = {
'ENDPOINT': 'https://tnia.eidentita.cz/fpsts/saml2/basic',
'REQUEST_ISSUER': 'http://eidasproxyservice.example.net/saml/idp.xml',
'KEY_SOURCE': 'file',
'KEY_LOCATION': '/etc/eidas-proxy-service/key.pem',
}
PROXY_SERVICE_EIDAS_NODE = {
'PROXY_SERVICE_RESPONSE_URL': 'http://eidasnode.example.net/EidasNode/SpecificProxyServiceResponse',
'RESPONSE_ISSUER': 'http://eidasproxyservice.example.net',
}