From c7cbe4fe4d6287fd1df4f8d4e529ed100359483c Mon Sep 17 00:00:00 2001
From: haburger <haburger>
Date: Mon, 25 Aug 2025 15:39:02 +0000
Subject: [PATCH] new configuration version

---
 ...ession-store-699f0a21dd0e852f28d27e9d.yaml |  26 +++++
 ...visproxy-idp-0ceb05c56644a59d648c13b9.yaml |   5 +-
 .../WEB-INF/web.xml                           | 100 +++++++++++++-----
 3 files changed, 105 insertions(+), 26 deletions(-)
 create mode 100644 DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml

diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml
new file mode 100644
index 0000000..6b49d08
--- /dev/null
+++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml
@@ -0,0 +1,26 @@
+apiVersion: "operator.nevis-security.ch/v1"
+kind: "NevisDatabase"
+metadata:
+  name: "proxy-idp"
+  namespace: "adn-agov-nevisidm-01-uat"
+  labels:
+    deploymentTarget: "proxy-idp"
+  annotations:
+    projectKey: "DEFAULT-ADN-AGOV-PROJECT"
+    patternId: "699f0a21dd0e852f28d27e9d"
+spec:
+  type: "NevisProxy"
+  databaseType: "MariaDB"
+  version: "8.2505.5"
+  url: "mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat"
+  port: 3306
+  database: "workproxy"
+  bootstrap: true
+  migrate: true
+  rootCredentials:
+    name: "root-mariadb-session-store"
+    namespace: "adn-agov-nevisidm-ob-01-uat"
+  podSecurity:
+    policy: "baseline"
+    automountServiceAccountToken: false
+  timeZone: "Europe/Zurich"
diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
index c4855ce..e262e18 100644
--- a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
+++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
@@ -47,9 +47,12 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95"
+    tag: "r-e89a903628d5717380e12490c3c41f93df97174b"
     dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp"
     credentials: "git-credentials"
+  database:
+    name: "proxy-idp"
+    requiredVersion: "8.2505.5"
   keystores:
   - "proxy-idp-notused-auth-realm-identity"
   - "proxy-idp-1f0702aaabef60a615abf41f"
diff --git a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml
index 464dd4d..b18dbbb 100644
--- a/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml
+++ b/DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml
@@ -1,6 +1,11 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "/opt/nevisproxy/dtd/web-app_2_3.dtd">
 <web-app>
+    <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+    <context-param>
+        <param-name>application-id</param-name>
+        <param-value>auth.agov-w.azure.adnovum.net</param-value>
+    </context-param>
     <!-- source: pattern://06aeae2d799e492f5580d03b, pattern://4fcfadb4a5c946ead7e6e995, pattern://204c22beaccdfd22727af378 -->
     <context-param>
         <param-name>SectokenVerifierCert</param-name>
@@ -859,7 +864,7 @@
         <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
         <init-param>
             <param-name>Servlet</param-name>
-            <param-value>LocalSessionStoreServlet</param-value>
+            <param-value>MySQLSessionStoreServlet</param-value>
         </init-param>
         <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
         <init-param>
@@ -904,7 +909,7 @@
         <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
         <init-param>
             <param-name>Servlet</param-name>
-            <param-value>LocalSessionStoreServlet</param-value>
+            <param-value>MySQLSessionStoreServlet</param-value>
         </init-param>
         <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
         <init-param>
@@ -949,7 +954,7 @@
         <!-- source: pattern://204c22beaccdfd22727af378 -->
         <init-param>
             <param-name>Servlet</param-name>
-            <param-value>LocalSessionStoreServlet</param-value>
+            <param-value>MySQLSessionStoreServlet</param-value>
         </init-param>
         <!-- source: pattern://204c22beaccdfd22727af378 -->
         <init-param>
@@ -994,7 +999,7 @@
         <!-- source: pattern://e0fda9336be9c69dafc9b69e -->
         <init-param>
             <param-name>Servlet</param-name>
-            <param-value>LocalSessionStoreServlet</param-value>
+            <param-value>MySQLSessionStoreServlet</param-value>
         </init-param>
         <!-- source: pattern://06aeae2d799e492f5580d03b -->
         <init-param>
@@ -1636,27 +1641,6 @@
         <!-- source: pattern://e0fda9336be9c69dafc9b69e, pattern://a6f6dc6affdc7c692ff857b9, pattern://decb9b3f88d430fb5c95f466 -->
         <servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class>
     </servlet>
-    <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
-    <servlet>
-        <servlet-name>LocalSessionStoreServlet</servlet-name>
-        <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
-        <servlet-class>ch::nevis::nevisproxy::servlet::cache::local::LocalSessionStoreServlet</servlet-class>
-        <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
-        <init-param>
-            <param-name>MaxInactiveInterval</param-name>
-            <param-value>600</param-value>
-        </init-param>
-        <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
-        <init-param>
-            <param-name>MaxLifetime</param-name>
-            <param-value>28800</param-value>
-        </init-param>
-        <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
-        <init-param>
-            <param-name>MemorySize</param-name>
-            <param-value>512000000</param-value>
-        </init-param>
-    </servlet>
     <!-- source: pattern://097929211988398a87bcbb0c -->
     <servlet>
         <servlet-name>LoginRenderer_nevisLogrend</servlet-name>
@@ -1673,6 +1657,72 @@
             <param-value>remote:NevisLogrendConnector_nevisLogrend:/nevislogrend/index.vm?logrendresourcepath=/nevislogrend</param-value>
         </init-param>
     </servlet>
+    <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+    <servlet>
+        <servlet-name>MySQLSessionStoreServlet</servlet-name>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <servlet-class>ch::nevis::nevisproxy::servlet::cache::mysql::MySQLSessionStoreServlet</servlet-class>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>AttributesTableName</param-name>
+            <param-value>attribute</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>ConfigurationsTableName</param-name>
+            <param-value>conf</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>ConnectString</param-name>
+            <param-value>//mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat:3306/workproxy?connect_timeout=10&amp;ping_timeout=2</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>DisableDatabaseSchemaCheck</param-name>
+            <param-value>false</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>KeyToIdMapTableName</param-name>
+            <param-value>key_id_map</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>MaxConn</param-name>
+            <param-value>150</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>MaxLimitOnDelete</param-name>
+            <param-value>100</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>MinConn</param-name>
+            <param-value>10</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>Password</param-name>
+            <param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbPassword}</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>SessionsTableName</param-name>
+            <param-value>session</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>TimeOut</param-name>
+            <param-value>600</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>UserName</param-name>
+            <param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbUser}</param-value>
+        </init-param>
+    </servlet>
     <!-- source: pattern://097929211988398a87bcbb0c -->
     <servlet>
         <servlet-name>NevisLogrendConnector_nevisLogrend</servlet-name>