new configuration version

DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/auth/etc/nevis/k8s-nevisauth-ac27dd7daad0ca2b7229bfaf.yaml

@@ -45,7 +45,7 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-ffccb0ac6d5831789f198ab73f0ecfff9ea38df7"
+    tag: "r-153c4f15e7495a3864d7ae40ed58b6b28b543733"
     dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/auth"
     credentials: "git-credentials"
   keystores:

DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/auth/var/opt/keys/own/agov-ident-signer-keystore/key.pem

@@ -1,54 +1,54 @@
 -----BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQUuj8UNQmLKEwOD3Ij
+MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQU4I8IE/YYU75bKRAC
-gjT2bC1IgOUCAggAMB0GCWCGSAFlAwQBKgQQilo/zrSzyfj+eUjtGegooASCCVBn
+IFTez1dC3OQCAggAMB0GCWCGSAFlAwQBKgQQjNio9EnwBf2SwaLGHoz4sASCCVCU
-3gQUmNY8CiejjthSXhpxCfVdX4P0lyhQ1Y7Q4wGhxVNTRNQoAJoUx6rnvhO+bLyp
+bCt2Yy8LyQxnkMa0IBx/TB8IsnEs6NnY1U9x52EP7rgwdLLP3qqb7Rh3rsWxQtZ0
-/cW5OkIu212YrSaF9Yr+H06k6v8fMMeDEqLCrAT54HjtNqKP3NerBT0bQHs+ZHI7
+Xpi62QBNtiOb/y0eIifvwSl+g5GQwbimaH5JQXkdX7uecsjOpYI/KbDwKwUxtPSr
-CK92SyxDlwVXzmLBei2vTnclud93AwFXlnY1HEmt6nOIzzZYOZOrJJARoUfnsdEP
+5nn8nZRR/ivd6C/iNWbbSs5xlZW9FNUouKgbcWsaDkGRHD6xs4TVSuMefYcVoDOD
-q0c27EhJ4crY6V4Ld+fhudOo7pPGchDOwagEXIjmi/rLnk3ZPo9vUE5TZh85bcv6
+ynOEHc3x1DK2Oc36VnFvW/DHJBvUZrTjiKI7WDaXcIVqAsPsCR/VtBuJNWOklMSS
-ggAoOKXR6nBVSykdUvwjBSQgkZj13WRSoutWOILxHer98qql3OhstFbmn0OPqabx
+ZAYtZlrODEWEaBokiZGHqBgieqJ4eq40JZJ6CMiAKbhBYbsGHhXJddQD8II1blHL
-C3XL9Xh2iycWNWUFRoRb/b+g6asJrTKNmbq9h1v/iFr2s2dC8bHK3IXRuV0sTGyT
+cr4VwtGtkVQ10n+/sFKyy0CkoveGPqi2osYhhIMYLH6r3W+cmDMTADtAOqtu/L87
-m3iUQOjFN1e1/kAcCu4a7qZwKk0athIPsEX89nkP0TV8TyGKRjP7jyECiTt4AwyE
+esM3OAGcy82L8O/iaXF8pS1vg+6wLQIWEpzJdRLoHzVsgu8oxSbsmBTGX8bHvVQz
-b/I/gbJs8d6zACPkslXJmLmPUhxwwHBRw8Ayk83xvAtjGJAGMNqa2DjjTGE40jnJ
+Im4Wx1ofBgfawGjTAWKFQwa5BeN6DiMhgxLhfMtzUNvUfnoxhPKQiLfxvy0IVwkF
-2/Mmq9uIK1tf7TBF7cp5SJrEpd+c+eq+nx2tgGhYfj3TrlG0LLi2kW/QVcYlJyVE
+L3iabpkIUJS1qvPd8rZc8stpH5YumNy0rH5IbfG27VH/MBGjibNPMAgXU/eQrSBP
-hDxA/PDQQ9ykuwwHGtmgykjEpxqhIlkzrsFfuShRw9KcwFwLaAWDzECzMjzwdCux
+1ndVDkiTK1YdLMC0fOKIwaxHgJx6rWv613VrOMJMJ55wT6fGNr8hQSEqOI/zfD/N
-z3U4HYWMuSUgvwF/ek40yvw40DLPOz9l6WgFRwdtr2t7wPLu/g3KkyRp0SXL5Wf2
+1Hlmsmj8blE9rspUXekTShBCFb1x64E/a163V6DpSFFEmgSPJua81dneR/BF+IZX
-8cyMQ/CZhm10aSzOqFda9c2rFKZ+ICfPg96NGJ9y2lMm7aKVXywxlk42u8wfkG6B
+AJIagH6gaIRiC7/DP0gVqQzIDXklXblvrZzkd52z2qif2MMTTuY+P/4MDEQXoOVi
-Q0vRUNhmhED+SC+aDmxUpwmG5WCX5SJVvt3e9VRBDxZzHVEqTgtOqN8XgFDpoLg8
+jg28yUGQKkhOFviqJLRvJdpjOOZ6tWm9EKiogQbB7JfufS87ZAIczo1vCemGmJza
-nis2Gz3VEpV2Ex1N4mgVNRSp8qIkB+SXm8aFi0s4XFAc4MBVDaW5orS8ucgxoX1m
+TJKHH0fvHHmoPVZBuRng4SRfZJPzj0HI5z8J87QNdeMAVoZDxuOfVYLNsyj1dUpk
-SGa16/EwnP68rQou5bWlApe6TdmxFPGKiQgEb9eHLXy9Ye8wsUo85iDcLUGmiK9k
+IKw38AafPzMrIVP5/owkC09LQZwPWGJDX8ZBoV3qXTf2Y4klNbz18jSNkO6UwU6d
-A9OnE5+essvEKEP0UPkSvML/uf5kaLWNb6lmWmZ9LZd9XuvrAwY+4jH+03OxWEwB
+Qk4Kx5CGy/LKkeynIDSyJmbg3Mo4zyD16KCYxm/R4xDm615Xb65ofBQq+LyG1feW
-UBuEWCrkkYqYubMh6avkZQl/nG0I2nJx1lz7XOaWgXXaHm6w6kqQdfBvpzr6MUXy
+5yraDCovTLAyLuY3e+1zJJqIMk5q4pAXezjM9zUWFeMLyKTJHlbDiAj+FJsDYHqN
-gJKFKaCydI/z+Hb/HRsxQLBTXo/BdTGCYbakiQQbXEKmhrrrHuXUb273kJpmKAWu
+VhcENiTn25zueoTelSce7bb5rKewfTIoIrx6EJGY3cka5+/cRxOyzS67iusA4JjA
-s0147rjEPnZlZjsnKctILUOrUctkB8E53yXLx4mp4ptxOtbb/FgOxdUIo9iQ5/sZ
++Uh3qNNvbaUsiei1snYdT2pNw8U5krmWjK1WKB6PDkq3OtalwBxuVkMKuu73aQSh
-5o2whxjHIXn/jCGXUbdZXmAJ7fG9WY6WHBlcJrJuKJt3duu8OqJ45IZA6kkZLvCm
+MghDP7lfcJNVBcRLHaqIMUKid3+jr6nw8yRVG9tCe5vC1HlUt2FLKP45lN1P6wzI
-eR4tFSJWqvHfxLrzznHLzENOgB2A4Syvrzvbi9nBWWavS6dtqnBpVCr4FbchpZEM
+jnyn43jqCuzSkJlC1otu9SCZxaPuKzZX5gr/a2b2eLAPZ4LXY49w6egvlzYaS2Uu
-N+ljYY3SJ7iX2a0mPpQ5llOfhC3yqrG71aaPLxcuFAY1g/YX/SWRTT3yMds/XZAh
+TB8dPsCsGOthBflcrldijmk9M/xsFe2svffWP8gu9DMJKXuNxOoKR6oZIsicpcJG
-Cd3iCR48Y+NZXQdnnTTyGpe3O+pxZbzxTeRcq7OKETKM/KJaISynEveccTvR1Jh0
+lIqsKI+44V9P1YzjoeKndvX1bthWMYQftel9SKl91lQaayXoboU3Cv+DQDZHGlfC
-7oHr+SxqmzFA3McupLvupv81ERT3kXe6h+5KlIdawwxW30gsIgFpx4XhpYQeBEPC
+7EIeE+U+66j1sxW1fkMx/ONb7qTyhIPvfypDcE6vSqgajxyXjCDU+R/EquZAxDwv
-j/zH+ivBXJRs5+H4KGdTPJCRmXbSVmbCDPedrQOLNHY+rj79PhsV3Ut4s5+EHNiV
+pDy+HCpHoLCJMG6r3hEVrElkGoS8ualEFiIHHxwbfVdbvRBMeWhvNnR3Pl6wLdYc
-269FL0q3MdrPnZfbQSno2HCrOBoixVfFh7Kk+gEAL575NZPvhmkYdtS/ysYlR4yJ
+Bd+28jbckrGuFC5g62JgVSdUBnhqtrQveO9ia4s0Uxa88T6V/r7lIAzuzWM06/b6
-Y6Zwl6IUV/bAu1hTg9vSZsxDId0mrmiJ9U6ovWrIzXHif1asLoHX1oxQHTJq0T9o
+9Ab0NS/b3xDpucnrvkWJuWWZaeSKRtnHXZW4H2SqGId7uzQ3e5Oir/DhFO3MesTy
-boLodekjlXswfXHckQyPwa3fDa0MnGb5ZN1vOo0X+DvmwthNKwhAuUULrTYqSJPQ
+uRYaeqMX/Pa22tOhfO0Etu73KTjqg1x0gD9nucI8c+2j0cY7kupt0SQ7Hd/sH0jn
-zGziNz1aEntO+2W6p+ZiHC0sUl3slVWS13borTLCs1GxyF3THctwCisfs6KfUQ46
+9gRx0z/8ORL7F1LvgemxohFJkPbwFDfMikNhMnP83+oEz1sxUVtgF+p6oYJazlrq
-N9urr/IGyD76TJgXDCWyCStNnDFSi5T67yvHkIkdJsFw4FhFq7nKCiiSqHy0hvwl
+FbnjPZdG7mtdmD/6w5gBlcgnRp+AfzfaXxyIs+p812KC5hq4XpDwiFwMtxNaSKDe
-LuCnBDA5Io+77xRdWKY1X9qdFxeEnp7nTPsk0k0+LH6Ty213wxyOPrIzTGtPYGaH
+vj3fqhRhNrVSOTnGA0CiM4WBYsnxZzMuR3EpDYgPmWLSVEoc8cGbzOFO8Pcu5nSn
-AmFbY4yQ2jEjR1D1IAhH7AjPAP6Ifszp+PdSlCX++nIOQ6JFNw0TKIcxhg5iQ+hS
+Qr5kiPkurazyMGaabgi5qLHuJvhj9tB+bzih6M9MWS0OQvj9jTGfsICT7xkd2px7
-5a76Nmf1R1/KwWTB2h1aP9GxbKnz08xba4zdkf8WOKXTY943i5Dy2mNZ149ha03N
+bxBiVQlPVZqiGRCpW/FQTXm1zkGP360yPp60LlxQs+2+zJICCdmKG705rwrL4+p2
-oOsyzihPw0Spf2ckI4fSTfosXtugoFw8lzt8IKn0V9xk1xWdKGIqCsPXVg9e0YT3
+nJazyBizcf2N6HmQVilYqmLsSpdt1FF1WP9JQEG5+rUtHA/LeNXP35ouhrOjmqch
-i/axJeQ6bEOUvUzMqmj20BxNZ+zwCRcFYJjaC9+L3DAmRpqKgZ9FAi+IHu+F2XS7
+GAC84aWPiX76WHboj7wxBlTZL5D1UleFO77N8qzvSCJDhUXKiWa+0ju7V3G8ZbHV
-sQ6rsFJap7L4fbYy4h05Yr8PAwekJVmw3wOM2Y6jbTa0X/rE/kcOq+eHKywB1zia
+rvPCdSFvYFFc7h6bMbrVflBhbao/y3bX6IvHfwBuo39iMCTHbXy1L92h5e8FjUlU
-fwzGNfE1yDujucQ7gDkFUCHXl2s/5PKYyKf/YSxz5v3KNp4KSNSEM8zgru45xvJx
+4D7BRtqbgNgHjkrEPtq3MC7rGMH2YWlugaOvfzP3smG5QMbVr2ucgjR11eQ1Cw3A
-bNn1A0loW6/KdJVT5lnZ62sKgrd46Zd+8asruQWl0KMCK8t+B0GEuhTUraZd2Ynb
+LAjSvbAoNLl+n99ZPpPnJOZnGvZtmC2T7Rs6dfXmDoAge/gFWUx9xn+hIvR0mT+a
-8yOFnjHfzVcaBaaj5IILw5uVGJ30+vtx7ewaeXF82ssiXjPGE7DMDjW4CQsG5PTk
++8zbQR41qkx7t11U82GdpP+F0bmyCGl6BttQA7f+wgzUSdBWv+NDPi4fxcGKwSHZ
-upTmWm3zmZnvo/YCLfbzI/WjTnaIoF0vFpE2bIuB4L/BqP1nYlmmFreKmqs0YFoE
+/2oF/1gQGdHFALt2kfu1nWI+etefztNcF2RgdbI9HlqNf/h6Hn1CJ/gXeUpNnV4/
-uLn/7xmbxmw3z6dEboRPPgf9Yx2i+lOJhmfxYjSL0pnnRkFEJWkgaogMaTBgU9p1
+f03ElWKJ+zFPrHoFbYO5ZGYOux2ZgQNesgIOlaZN0jgbv/gOdbr0TGHjwqUpuNqh
-aUvOQZy25SiTnjPagikHIGyQHbWfISAEG2hlpT1Au3pvowQrQ1YdfNHTklRSy32C
+sI9f7e4fncCYflpCPFtRRCZSlVyjHGCBaRVXug3xWqe6M19rLTayHZ7D33oJlI0V
-tA5EaR2AhZmrnSK9TqDREyayM0/g7ms7r7Ul0XbuZ0AJISkcpNvY64C6GCDrN/e4
+ELxQKj0CL2/o0EmkHQWCgUDYVGoKuAm6IZZjHy53vpSNz1zAoLU21gQSg4ts6PXr
-NG+bTh7ALAX7f9QSJns86DAI4n+bYzoFBwclTiQ5N6q05StJIimNkOplNAXpAD26
+Hl6TOQjpTVfOtM4MbLbqkJFebyH2sOY2Qd2yLOHm7vH/7mmceot8Y3j3a9H6jLJ9
-H2d/Mz1JtfhHv9V9w0eM1d64Fcb8SqE2D8f+9m733JRPz8I7LdADq3nRBAwyrusO
+LDe3c75y8nHkz7pKXMwvPnFng9N7l0nVgW/SFLrKs5HGWkhdgJEdIGPEZn4tKuYI
-6/D5tp85Bnt29aPspkJT6AYhPXql9mygg+fzjpnVzBZstkqBAALfgHelRfEyK3sp
+Uy9AUPNhW4A8h3rxX+8Hk2jhDgV7WncANMCYsgxy2f7a/lx0SjBXvRDxECDaHDQ4
-6f2FvxHuHbS7/iSmdLkZ5HCo1A1U2UFocOhfSxnscghwjDaMoueR+Km034Xc9sCf
+lS1tqVuj26Mb5eU1YNDEUQ83zC9mP7kgcWowHf2WSS+/PByuzaZqnIbdJAzx7rfJ
-gXQoZyvcy86NssJvnmIPHF0PP+T3+8lxyl8wE8zWS4xUMPtChQLIZlqQP8iy0Jlo
+MCEQkXr33PZDLpFCPcnxKIKmKGf8iTtcIsh6l+7+GvccEcoKlOHEcy2iOLY5j8HL
-O9FxMcvUnSCzFilbfihHd9VwFkOPcYoyhtyWtAEAhZz0qVjjchESO0D0hiJ9pAYI
+ilK9DJ1nSTR8EOGkPqNdpjK/1z6ZL+qrs0+rCwrXBpJLcodtN7fcMf7YetFVXIIx
-QymW8hknE9mkKNvA+dv2t0EYdiEkUZxXJxpAp29c5A==
+4ol0/nBcXC4/ePHSuoJtkQ4khBa3Ifw3VPBphx8Kyg==
 -----END ENCRYPTED PRIVATE KEY-----

DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/auth/var/opt/keys/own/agov-ident-signer-keystore/keystore.pem

@@ -1,56 +1,56 @@
 -----BEGIN ENCRYPTED PRIVATE KEY-----
-MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQUuj8UNQmLKEwOD3Ij
+MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQU4I8IE/YYU75bKRAC
-gjT2bC1IgOUCAggAMB0GCWCGSAFlAwQBKgQQilo/zrSzyfj+eUjtGegooASCCVBn
+IFTez1dC3OQCAggAMB0GCWCGSAFlAwQBKgQQjNio9EnwBf2SwaLGHoz4sASCCVCU
-3gQUmNY8CiejjthSXhpxCfVdX4P0lyhQ1Y7Q4wGhxVNTRNQoAJoUx6rnvhO+bLyp
+bCt2Yy8LyQxnkMa0IBx/TB8IsnEs6NnY1U9x52EP7rgwdLLP3qqb7Rh3rsWxQtZ0
-/cW5OkIu212YrSaF9Yr+H06k6v8fMMeDEqLCrAT54HjtNqKP3NerBT0bQHs+ZHI7
+Xpi62QBNtiOb/y0eIifvwSl+g5GQwbimaH5JQXkdX7uecsjOpYI/KbDwKwUxtPSr
-CK92SyxDlwVXzmLBei2vTnclud93AwFXlnY1HEmt6nOIzzZYOZOrJJARoUfnsdEP
+5nn8nZRR/ivd6C/iNWbbSs5xlZW9FNUouKgbcWsaDkGRHD6xs4TVSuMefYcVoDOD
-q0c27EhJ4crY6V4Ld+fhudOo7pPGchDOwagEXIjmi/rLnk3ZPo9vUE5TZh85bcv6
+ynOEHc3x1DK2Oc36VnFvW/DHJBvUZrTjiKI7WDaXcIVqAsPsCR/VtBuJNWOklMSS
-ggAoOKXR6nBVSykdUvwjBSQgkZj13WRSoutWOILxHer98qql3OhstFbmn0OPqabx
+ZAYtZlrODEWEaBokiZGHqBgieqJ4eq40JZJ6CMiAKbhBYbsGHhXJddQD8II1blHL
-C3XL9Xh2iycWNWUFRoRb/b+g6asJrTKNmbq9h1v/iFr2s2dC8bHK3IXRuV0sTGyT
+cr4VwtGtkVQ10n+/sFKyy0CkoveGPqi2osYhhIMYLH6r3W+cmDMTADtAOqtu/L87
-m3iUQOjFN1e1/kAcCu4a7qZwKk0athIPsEX89nkP0TV8TyGKRjP7jyECiTt4AwyE
+esM3OAGcy82L8O/iaXF8pS1vg+6wLQIWEpzJdRLoHzVsgu8oxSbsmBTGX8bHvVQz
-b/I/gbJs8d6zACPkslXJmLmPUhxwwHBRw8Ayk83xvAtjGJAGMNqa2DjjTGE40jnJ
+Im4Wx1ofBgfawGjTAWKFQwa5BeN6DiMhgxLhfMtzUNvUfnoxhPKQiLfxvy0IVwkF
-2/Mmq9uIK1tf7TBF7cp5SJrEpd+c+eq+nx2tgGhYfj3TrlG0LLi2kW/QVcYlJyVE
+L3iabpkIUJS1qvPd8rZc8stpH5YumNy0rH5IbfG27VH/MBGjibNPMAgXU/eQrSBP
-hDxA/PDQQ9ykuwwHGtmgykjEpxqhIlkzrsFfuShRw9KcwFwLaAWDzECzMjzwdCux
+1ndVDkiTK1YdLMC0fOKIwaxHgJx6rWv613VrOMJMJ55wT6fGNr8hQSEqOI/zfD/N
-z3U4HYWMuSUgvwF/ek40yvw40DLPOz9l6WgFRwdtr2t7wPLu/g3KkyRp0SXL5Wf2
+1Hlmsmj8blE9rspUXekTShBCFb1x64E/a163V6DpSFFEmgSPJua81dneR/BF+IZX
-8cyMQ/CZhm10aSzOqFda9c2rFKZ+ICfPg96NGJ9y2lMm7aKVXywxlk42u8wfkG6B
+AJIagH6gaIRiC7/DP0gVqQzIDXklXblvrZzkd52z2qif2MMTTuY+P/4MDEQXoOVi
-Q0vRUNhmhED+SC+aDmxUpwmG5WCX5SJVvt3e9VRBDxZzHVEqTgtOqN8XgFDpoLg8
+jg28yUGQKkhOFviqJLRvJdpjOOZ6tWm9EKiogQbB7JfufS87ZAIczo1vCemGmJza
-nis2Gz3VEpV2Ex1N4mgVNRSp8qIkB+SXm8aFi0s4XFAc4MBVDaW5orS8ucgxoX1m
+TJKHH0fvHHmoPVZBuRng4SRfZJPzj0HI5z8J87QNdeMAVoZDxuOfVYLNsyj1dUpk
-SGa16/EwnP68rQou5bWlApe6TdmxFPGKiQgEb9eHLXy9Ye8wsUo85iDcLUGmiK9k
+IKw38AafPzMrIVP5/owkC09LQZwPWGJDX8ZBoV3qXTf2Y4klNbz18jSNkO6UwU6d
-A9OnE5+essvEKEP0UPkSvML/uf5kaLWNb6lmWmZ9LZd9XuvrAwY+4jH+03OxWEwB
+Qk4Kx5CGy/LKkeynIDSyJmbg3Mo4zyD16KCYxm/R4xDm615Xb65ofBQq+LyG1feW
-UBuEWCrkkYqYubMh6avkZQl/nG0I2nJx1lz7XOaWgXXaHm6w6kqQdfBvpzr6MUXy
+5yraDCovTLAyLuY3e+1zJJqIMk5q4pAXezjM9zUWFeMLyKTJHlbDiAj+FJsDYHqN
-gJKFKaCydI/z+Hb/HRsxQLBTXo/BdTGCYbakiQQbXEKmhrrrHuXUb273kJpmKAWu
+VhcENiTn25zueoTelSce7bb5rKewfTIoIrx6EJGY3cka5+/cRxOyzS67iusA4JjA
-s0147rjEPnZlZjsnKctILUOrUctkB8E53yXLx4mp4ptxOtbb/FgOxdUIo9iQ5/sZ
++Uh3qNNvbaUsiei1snYdT2pNw8U5krmWjK1WKB6PDkq3OtalwBxuVkMKuu73aQSh
-5o2whxjHIXn/jCGXUbdZXmAJ7fG9WY6WHBlcJrJuKJt3duu8OqJ45IZA6kkZLvCm
+MghDP7lfcJNVBcRLHaqIMUKid3+jr6nw8yRVG9tCe5vC1HlUt2FLKP45lN1P6wzI
-eR4tFSJWqvHfxLrzznHLzENOgB2A4Syvrzvbi9nBWWavS6dtqnBpVCr4FbchpZEM
+jnyn43jqCuzSkJlC1otu9SCZxaPuKzZX5gr/a2b2eLAPZ4LXY49w6egvlzYaS2Uu
-N+ljYY3SJ7iX2a0mPpQ5llOfhC3yqrG71aaPLxcuFAY1g/YX/SWRTT3yMds/XZAh
+TB8dPsCsGOthBflcrldijmk9M/xsFe2svffWP8gu9DMJKXuNxOoKR6oZIsicpcJG
-Cd3iCR48Y+NZXQdnnTTyGpe3O+pxZbzxTeRcq7OKETKM/KJaISynEveccTvR1Jh0
+lIqsKI+44V9P1YzjoeKndvX1bthWMYQftel9SKl91lQaayXoboU3Cv+DQDZHGlfC
-7oHr+SxqmzFA3McupLvupv81ERT3kXe6h+5KlIdawwxW30gsIgFpx4XhpYQeBEPC
+7EIeE+U+66j1sxW1fkMx/ONb7qTyhIPvfypDcE6vSqgajxyXjCDU+R/EquZAxDwv
-j/zH+ivBXJRs5+H4KGdTPJCRmXbSVmbCDPedrQOLNHY+rj79PhsV3Ut4s5+EHNiV
+pDy+HCpHoLCJMG6r3hEVrElkGoS8ualEFiIHHxwbfVdbvRBMeWhvNnR3Pl6wLdYc
-269FL0q3MdrPnZfbQSno2HCrOBoixVfFh7Kk+gEAL575NZPvhmkYdtS/ysYlR4yJ
+Bd+28jbckrGuFC5g62JgVSdUBnhqtrQveO9ia4s0Uxa88T6V/r7lIAzuzWM06/b6
-Y6Zwl6IUV/bAu1hTg9vSZsxDId0mrmiJ9U6ovWrIzXHif1asLoHX1oxQHTJq0T9o
+9Ab0NS/b3xDpucnrvkWJuWWZaeSKRtnHXZW4H2SqGId7uzQ3e5Oir/DhFO3MesTy
-boLodekjlXswfXHckQyPwa3fDa0MnGb5ZN1vOo0X+DvmwthNKwhAuUULrTYqSJPQ
+uRYaeqMX/Pa22tOhfO0Etu73KTjqg1x0gD9nucI8c+2j0cY7kupt0SQ7Hd/sH0jn
-zGziNz1aEntO+2W6p+ZiHC0sUl3slVWS13borTLCs1GxyF3THctwCisfs6KfUQ46
+9gRx0z/8ORL7F1LvgemxohFJkPbwFDfMikNhMnP83+oEz1sxUVtgF+p6oYJazlrq
-N9urr/IGyD76TJgXDCWyCStNnDFSi5T67yvHkIkdJsFw4FhFq7nKCiiSqHy0hvwl
+FbnjPZdG7mtdmD/6w5gBlcgnRp+AfzfaXxyIs+p812KC5hq4XpDwiFwMtxNaSKDe
-LuCnBDA5Io+77xRdWKY1X9qdFxeEnp7nTPsk0k0+LH6Ty213wxyOPrIzTGtPYGaH
+vj3fqhRhNrVSOTnGA0CiM4WBYsnxZzMuR3EpDYgPmWLSVEoc8cGbzOFO8Pcu5nSn
-AmFbY4yQ2jEjR1D1IAhH7AjPAP6Ifszp+PdSlCX++nIOQ6JFNw0TKIcxhg5iQ+hS
+Qr5kiPkurazyMGaabgi5qLHuJvhj9tB+bzih6M9MWS0OQvj9jTGfsICT7xkd2px7
-5a76Nmf1R1/KwWTB2h1aP9GxbKnz08xba4zdkf8WOKXTY943i5Dy2mNZ149ha03N
+bxBiVQlPVZqiGRCpW/FQTXm1zkGP360yPp60LlxQs+2+zJICCdmKG705rwrL4+p2
-oOsyzihPw0Spf2ckI4fSTfosXtugoFw8lzt8IKn0V9xk1xWdKGIqCsPXVg9e0YT3
+nJazyBizcf2N6HmQVilYqmLsSpdt1FF1WP9JQEG5+rUtHA/LeNXP35ouhrOjmqch
-i/axJeQ6bEOUvUzMqmj20BxNZ+zwCRcFYJjaC9+L3DAmRpqKgZ9FAi+IHu+F2XS7
+GAC84aWPiX76WHboj7wxBlTZL5D1UleFO77N8qzvSCJDhUXKiWa+0ju7V3G8ZbHV
-sQ6rsFJap7L4fbYy4h05Yr8PAwekJVmw3wOM2Y6jbTa0X/rE/kcOq+eHKywB1zia
+rvPCdSFvYFFc7h6bMbrVflBhbao/y3bX6IvHfwBuo39iMCTHbXy1L92h5e8FjUlU
-fwzGNfE1yDujucQ7gDkFUCHXl2s/5PKYyKf/YSxz5v3KNp4KSNSEM8zgru45xvJx
+4D7BRtqbgNgHjkrEPtq3MC7rGMH2YWlugaOvfzP3smG5QMbVr2ucgjR11eQ1Cw3A
-bNn1A0loW6/KdJVT5lnZ62sKgrd46Zd+8asruQWl0KMCK8t+B0GEuhTUraZd2Ynb
+LAjSvbAoNLl+n99ZPpPnJOZnGvZtmC2T7Rs6dfXmDoAge/gFWUx9xn+hIvR0mT+a
-8yOFnjHfzVcaBaaj5IILw5uVGJ30+vtx7ewaeXF82ssiXjPGE7DMDjW4CQsG5PTk
++8zbQR41qkx7t11U82GdpP+F0bmyCGl6BttQA7f+wgzUSdBWv+NDPi4fxcGKwSHZ
-upTmWm3zmZnvo/YCLfbzI/WjTnaIoF0vFpE2bIuB4L/BqP1nYlmmFreKmqs0YFoE
+/2oF/1gQGdHFALt2kfu1nWI+etefztNcF2RgdbI9HlqNf/h6Hn1CJ/gXeUpNnV4/
-uLn/7xmbxmw3z6dEboRPPgf9Yx2i+lOJhmfxYjSL0pnnRkFEJWkgaogMaTBgU9p1
+f03ElWKJ+zFPrHoFbYO5ZGYOux2ZgQNesgIOlaZN0jgbv/gOdbr0TGHjwqUpuNqh
-aUvOQZy25SiTnjPagikHIGyQHbWfISAEG2hlpT1Au3pvowQrQ1YdfNHTklRSy32C
+sI9f7e4fncCYflpCPFtRRCZSlVyjHGCBaRVXug3xWqe6M19rLTayHZ7D33oJlI0V
-tA5EaR2AhZmrnSK9TqDREyayM0/g7ms7r7Ul0XbuZ0AJISkcpNvY64C6GCDrN/e4
+ELxQKj0CL2/o0EmkHQWCgUDYVGoKuAm6IZZjHy53vpSNz1zAoLU21gQSg4ts6PXr
-NG+bTh7ALAX7f9QSJns86DAI4n+bYzoFBwclTiQ5N6q05StJIimNkOplNAXpAD26
+Hl6TOQjpTVfOtM4MbLbqkJFebyH2sOY2Qd2yLOHm7vH/7mmceot8Y3j3a9H6jLJ9
-H2d/Mz1JtfhHv9V9w0eM1d64Fcb8SqE2D8f+9m733JRPz8I7LdADq3nRBAwyrusO
+LDe3c75y8nHkz7pKXMwvPnFng9N7l0nVgW/SFLrKs5HGWkhdgJEdIGPEZn4tKuYI
-6/D5tp85Bnt29aPspkJT6AYhPXql9mygg+fzjpnVzBZstkqBAALfgHelRfEyK3sp
+Uy9AUPNhW4A8h3rxX+8Hk2jhDgV7WncANMCYsgxy2f7a/lx0SjBXvRDxECDaHDQ4
-6f2FvxHuHbS7/iSmdLkZ5HCo1A1U2UFocOhfSxnscghwjDaMoueR+Km034Xc9sCf
+lS1tqVuj26Mb5eU1YNDEUQ83zC9mP7kgcWowHf2WSS+/PByuzaZqnIbdJAzx7rfJ
-gXQoZyvcy86NssJvnmIPHF0PP+T3+8lxyl8wE8zWS4xUMPtChQLIZlqQP8iy0Jlo
+MCEQkXr33PZDLpFCPcnxKIKmKGf8iTtcIsh6l+7+GvccEcoKlOHEcy2iOLY5j8HL
-O9FxMcvUnSCzFilbfihHd9VwFkOPcYoyhtyWtAEAhZz0qVjjchESO0D0hiJ9pAYI
+ilK9DJ1nSTR8EOGkPqNdpjK/1z6ZL+qrs0+rCwrXBpJLcodtN7fcMf7YetFVXIIx
-QymW8hknE9mkKNvA+dv2t0EYdiEkUZxXJxpAp29c5A==
+4ol0/nBcXC4/ePHSuoJtkQ4khBa3Ifw3VPBphx8Kyg==
 -----END ENCRYPTED PRIVATE KEY-----
 
 -----BEGIN CERTIFICATE-----

DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/proxy-sp/etc/nevis/k8s-operations-nevisproxy-instance-bd83dfbd467e8211ffe71d28.yaml

@@ -46,7 +46,7 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-ffccb0ac6d5831789f198ab73f0ecfff9ea38df7"
+    tag: "r-153c4f15e7495a3864d7ae40ed58b6b28b543733"
     dir: "DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/proxy-sp"
     credentials: "git-credentials"
   keystores:

DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/proxy-sp/var/opt/nevisproxy/default/host-op.agov-w.azure.adnovum.net/WEB-INF/security_nevismeta_web_console.conf

@@ -0,0 +1,18 @@
+# load modsecurity
+Include /var/opt/nevisproxy/default/host-op.agov-w.azure.adnovum.net/WEB-INF/modsecurity.conf
+
+# apply whitelist modifications - must be done before loading other rules (replaces REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf)
+SecRule REQUEST_URI "@beginsWith /nevismeta/index.xhtml" "pass,nolog,id:500004,ctl:ruleRemoveById=200004
+
+# apply application-specific paranoia level
+SecAction "id:900000,phase:1,nolog,pass,t:none,setvar:tx.paranoia_level=1"
+
+# load the rule set of the virtual host
+Include /var/opt/nevisproxy/default/host-op.agov-w.azure.adnovum.net/WEB-INF/rules.conf
+
+# apply rule exceptions (replaces RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf)
+
+
+# set mode
+SecRuleEngine On
+

DEFAULT-ADN-AGOV-ADMIN-PROJECT/DEFAULT-ADN-AGOV-ADMIN-INV/proxy-sp/var/opt/nevisproxy/default/host-op.agov-w.azure.adnovum.net/WEB-INF/web.xml

@@ -146,6 +146,21 @@
             <param-value>replacement</param-value>
         </init-param>
     </filter>
+    <!-- source: pattern://16fe6ebff034edff24072530, pattern://16fe6ebff034edff24072530#nevisMeta -->
+    <filter>
+        <filter-name>CSRFRewrite_nevisMeta_Web_Console</filter-name>
+        <filter-class>ch::nevis::isiweb4::filter::rewrite::RewriteFilter</filter-class>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <init-param>
+            <param-name>ResponseBody</param-name>
+            <param-value>PCRE/(if\s?\(isValidDomain\(document.domain,).*$/:$1(function(h) { var i = h.indexOf("\:"); return h.substring(0, i != -1 ? i \: h.length) })("ENV\:HTTP_Host;"))) {:PT</param-value>
+        </init-param>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <init-param>
+            <param-name>ResponseBody.Mode</param-name>
+            <param-value>replacement</param-value>
+        </init-param>
+    </filter>
     <!-- source: pattern://58ece0328f5bf4d78e1a82d2, pattern://58ece0328f5bf4d78e1a82d2#filters -->
     <filter>
         <filter-name>DefaultErrorFilter</filter-name>
@@ -263,6 +278,16 @@
             <param-value>/var/opt/nevisproxy/default/host-op.agov-w.azure.adnovum.net/WEB-INF/security_nevisidm_operations_administration_gui.conf</param-value>
         </init-param>
     </filter>
+    <!-- source: pattern://16fe6ebff034edff24072530 -->
+    <filter>
+        <filter-name>ModSecurity_nevisMeta_Web_Console</filter-name>
+        <filter-class>ch::nevis::nevisproxy::filter::modsecurity::ModsecurityFilter</filter-class>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <init-param>
+            <param-name>ConfigFile</param-name>
+            <param-value>/var/opt/nevisproxy/default/host-op.agov-w.azure.adnovum.net/WEB-INF/security_nevismeta_web_console.conf</param-value>
+        </init-param>
+    </filter>
     <!-- source: pattern://39ecde9a0d101628fed3e3be -->
     <filter>
         <filter-name>Redirect_Default</filter-name>
@@ -595,6 +620,11 @@
         <url-pattern>/nevisidm/*</url-pattern>
     </filter-mapping>
     <!-- source: pattern://7518c6cc61e47eec6322ae17 -->
+    <filter-mapping>
+        <filter-name>SessionHandler_SAML_SP_nevisidm_operations_Realm</filter-name>
+        <url-pattern>/nevismeta/*</url-pattern>
+    </filter-mapping>
+    <!-- source: pattern://7518c6cc61e47eec6322ae17 -->
     <filter-mapping>
         <filter-name>SAML_AllowCORS_SAML_SP_nevisidm_operations_Realm</filter-name>
         <url-pattern>/SAML2/ACS/*</url-pattern>
@@ -614,6 +644,11 @@
         <filter-name>ModSecurity_nevisIDM_Operations_Administration_GUI</filter-name>
         <url-pattern>/nevisidm/admin/*</url-pattern>
     </filter-mapping>
+    <!-- source: pattern://16fe6ebff034edff24072530 -->
+    <filter-mapping>
+        <filter-name>ModSecurity_nevisMeta_Web_Console</filter-name>
+        <url-pattern>/nevismeta/*</url-pattern>
+    </filter-mapping>
     <!-- source: pattern://f02bc0de60aad829670e4c5b -->
     <filter-mapping>
         <filter-name>ModSecurity_OP-ONBRDNG-ModSecuritySettings</filter-name>
@@ -630,6 +665,11 @@
         <url-pattern>/nevisidm/*</url-pattern>
     </filter-mapping>
     <!-- source: pattern://7518c6cc61e47eec6322ae17 -->
+    <filter-mapping>
+        <filter-name>Authentication_SAML_SP_nevisidm_operations_Realm</filter-name>
+        <url-pattern>/nevismeta/*</url-pattern>
+    </filter-mapping>
+    <!-- source: pattern://7518c6cc61e47eec6322ae17 -->
     <filter-mapping>
         <filter-name>SAML_SAML_SP_nevisidm_operations_Realm</filter-name>
         <url-pattern>/SAML2/ACS/*</url-pattern>
@@ -649,6 +689,11 @@
         <filter-name>Requirement_NEVIS_SecToken_SAML_SP_nevisidm_operations_Realm</filter-name>
         <url-pattern>/nevisidm/*</url-pattern>
     </filter-mapping>
+    <!-- source: pattern://7518c6cc61e47eec6322ae17 -->
+    <filter-mapping>
+        <filter-name>Requirement_NEVIS_SecToken_SAML_SP_nevisidm_operations_Realm</filter-name>
+        <url-pattern>/nevismeta/*</url-pattern>
+    </filter-mapping>
     <!-- source: pattern://088e03c92ee8a5168b030e9e -->
     <filter-mapping>
         <filter-name>Authorization_Required_Roles_AGOV-Loi.level300_AGOV-Loi.level400_AGOV-Loi.level500_SAML_SP_nevisidm_operations_Realm</filter-name>
@@ -659,11 +704,21 @@
         <filter-name>Token_NEVIS_SecToken</filter-name>
         <url-pattern>/nevisidm/*</url-pattern>
     </filter-mapping>
+    <!-- source: pattern://7518c6cc61e47eec6322ae17 -->
+    <filter-mapping>
+        <filter-name>Token_NEVIS_SecToken</filter-name>
+        <url-pattern>/nevismeta/*</url-pattern>
+    </filter-mapping>
     <!-- source: pattern://13ea034de32c190083ba9e35, pattern://13ea034de32c190083ba9e35#nevisIDM -->
     <filter-mapping>
         <filter-name>CSRFRewrite_nevisIDM_Operations_Administration_GUI</filter-name>
         <url-pattern>/nevisidm/JavaScriptServlet</url-pattern>
     </filter-mapping>
+    <!-- source: pattern://16fe6ebff034edff24072530, pattern://16fe6ebff034edff24072530#nevisMeta -->
+    <filter-mapping>
+        <filter-name>CSRFRewrite_nevisMeta_Web_Console</filter-name>
+        <url-pattern>/nevismeta/JavaScriptServlet</url-pattern>
+    </filter-mapping>
     <!-- source: pattern://6df66943ca713eed2a25d935 -->
     <listener>
         <listener-class>ch::nevis::isiweb4::listener::SessionListener</listener-class>
@@ -847,6 +902,42 @@
             <param-value>true</param-value>
         </init-param>
     </servlet>
+    <!-- source: pattern://16fe6ebff034edff24072530, pattern://16fe6ebff034edff24072530#allowedMethods, pattern://16fe6ebff034edff24072530#nevisMeta -->
+    <servlet>
+        <servlet-name>Connector_nevisMeta_Web_Console</servlet-name>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <servlet-class>ch::nevis::isiweb4::servlet::connector::http::HttpsConnectorServlet</servlet-class>
+        <!-- source: pattern://16fe6ebff034edff24072530#allowedMethods -->
+        <init-param>
+            <param-name>AllowedMethods</param-name>
+            <param-value>ALL-HTTP,ALL-WEBDAV,-TRACE,-CONNECT</param-value>
+        </init-param>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <init-param>
+            <param-name>AutoRewrite</param-name>
+            <param-value>header</param-value>
+        </init-param>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <init-param>
+            <param-name>CookieManager</param-name>
+            <param-value>retain:^.*$</param-value>
+        </init-param>
+        <!-- source: pattern://16fe6ebff034edff24072530#nevisMeta -->
+        <init-param>
+            <param-name>InetAddress</param-name>
+            <param-value>agov-w.azure.adnovum.net-web.adn-agov-mobile-01-uat:8996</param-value>
+        </init-param>
+        <!-- source: pattern://16fe6ebff034edff24072530 -->
+        <init-param>
+            <param-name>ResourceManager.RetryTimeout</param-name>
+            <param-value>0</param-value>
+        </init-param>
+        <!-- source: pattern://16fe6ebff034edff24072530#nevisMeta -->
+        <init-param>
+            <param-name>UseSSL</param-name>
+            <param-value>true</param-value>
+        </init-param>
+    </servlet>
     <!-- source: pattern://7518c6cc61e47eec6322ae17, pattern://9415bf61610843e0f5c77e39 -->
     <servlet>
         <servlet-name>Hosting_Default</servlet-name>
@@ -947,6 +1038,12 @@
         <servlet-name>NevisLogrendConnector_nevisLogrend</servlet-name>
         <url-pattern>/nevislogrend/*</url-pattern>
     </servlet-mapping>
+    <!-- source: pattern://16fe6ebff034edff24072530, pattern://16fe6ebff034edff24072530#nevisMeta -->
+    <servlet-mapping>
+        <servlet-name>Connector_nevisMeta_Web_Console</servlet-name>
+        <url-pattern>/nevismeta/*</url-pattern>
+        <exclude-url-regex>/nevismeta/rest/.*</exclude-url-regex>
+    </servlet-mapping>
     <servlet-mapping>
         <servlet-name>Hosting_Default</servlet-name>
         <url-pattern>/*</url-pattern>