-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathconfigschema.json
135 lines (135 loc) · 4.47 KB
/
configschema.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
{
"$id": "http://github.com/tapis-project/authenticator/configschema.json",
"$schema": "http://json-schema.org/schema#",
"properties": {
"sql_db_url": {
"type": "string",
"description": "URL to postgres db, including port and database.",
"default": "postgres:5432/authenticator"
},
"postgres_user": {
"type": "string",
"description": "user for the SQL db.",
"default": "authenticator"
},
"postgres_password": {
"type": "string",
"description": "password to the SQL db.",
"default": "d3fd6pAssw0rd"
},
"python_framework_type": {
"type": "string",
"default": "flask"
},
"default_page_limit": {
"type": "integer",
"description": "The default maximum number of results to return for each listing endpoint.",
"default": 100
},
"populate_all_clients": {
"type": "boolean",
"description": "At start up, ensure the Token Webapp has clients for all tenants it is configured to serve.",
"default": true
},
"populate_dev_ldap": {
"type": "boolean",
"description": "At start up, ensure the test LDAP db is populated with an OU and set of user accounts for the dev tenant.",
"default": true
},
"dev_ldap_tenant_id": {
"type": "string",
"description": "The tenant id that this authenticator will use for configuration of the dev ldap. For the primary site, this should be 'dev'; for the test associate site, this should be 'assocdev'; for other sites, they may or may not want a dev ldap at all, in which case populate_dev_ldap, etc., should be false."
},
"dev_ldap_url": {
"type": "string",
"description": "full URL to the test LDAP db.",
"default": "ldap://ldap"
},
"dev_ldap_port": {
"type": "integer",
"description": "port for the test LDAP db.",
"default": 389
},
"dev_ldap_use_ssl": {
"type": "boolean",
"description": "Whether to use SSL for the test LDAP db.",
"default": false
},
"dev_ldap_tenants_base_dn": {
"type": "string",
"description": "Base DN for tenant OUs in the test LDAP db.",
"default": "dc=tapis"
},
"dev_ldap_user_dn": {
"type": "string",
"description": "Base DN for users within the dev tenant in the test LDAP db.",
"default": "ou=tenants.dev,dc=tapis"
},
"dev_ldap_bind_dn": {
"type": "string",
"description": "Bind DN for the test LDAP db.",
"default": "cn=admin,dc=tapis"
},
"dev_ldap_bind_credential": {
"type": "string",
"description": "Bind credential for the test LDAP db.",
"default": "a1r2c3HKvv0"
},
"dev_tacc_ldap_bind_credential": {
"type": "string",
"description": "Bind credential for testing the TACC LDAP db.",
"default": "Def@ult$"
},
"dev_token_service": {
"type": "string",
"description": "full URL to the tokens service to use when use_sk is False.",
"default": "https://dev.develop.tapis.io/v3/tokens"
},
"dev_client_id": {
"type": "string",
"description": "Test client id",
"default": "testclient"
},
"dev_client_key": {
"type": "string",
"description": "Test client key",
"default": "testclientkey"
},
"dev_client_callback": {
"type": "string",
"description": "Test client callback url",
"default": "/oauth2/webapp/callback"
},
"dev_client_display_name": {
"type": "string",
"description": "Test client display name",
"default": "The Test Client"
},
"client_id": {
"type": "string",
"description": "Base string for the Token Webapp client id's; the full client id for a given tenant will include the tenant id.",
"default": "CIC.tokenapp"
},
"client_key": {
"type": "string",
"description": "Base string for the Token Webapp client secrets.",
"default": "Wcke39x^481rZ"
},
"client_callback": {
"type": "string",
"description": "URL path for the Token Webapp client callback url",
"default": "/v3/oauth2/webapp/callback"
},
"client_display_name": {
"type": "string",
"description": "The display name used by the Tapis Token Webapp",
"default": "Tapis Token Webapp"
},
"turn_off_mfa": {
"type": "boolean",
"description": "A single configuration that will cause Authenticator to disable all MFA checks.",
"default": false
}
},
"required": ["dev_ldap_tenant_id"]
}