nevis
/
adn-agov-iam-inventory
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

new configuration version

This commit is contained in:
haburger 2025-08-25 15:39:02 +00:00
parent 5fb9ba8c87
commit c7cbe4fe4d
3 changed files with 105 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml Normal file
View File

@ -0,0 +1,26 @@
apiVersion: "operator.nevis-security.ch/v1"
kind: "NevisDatabase"
metadata:
name: "proxy-idp"
namespace: "adn-agov-nevisidm-01-uat"
labels:
deploymentTarget: "proxy-idp"
annotations:
projectKey: "DEFAULT-ADN-AGOV-PROJECT"
patternId: "699f0a21dd0e852f28d27e9d"
spec:
type: "NevisProxy"
databaseType: "MariaDB"
version: "8.2505.5"
url: "mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat"
port: 3306
database: "workproxy"
bootstrap: true
migrate: true
rootCredentials:
name: "root-mariadb-session-store"
namespace: "adn-agov-nevisidm-ob-01-uat"
podSecurity:
policy: "baseline"
automountServiceAccountToken: false
timeZone: "Europe/Zurich"

5
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
View File

@ -47,9 +47,12 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95" tag: "r-e89a903628d5717380e12490c3c41f93df97174b"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp"
credentials: "git-credentials" credentials: "git-credentials"
database:
name: "proxy-idp"
requiredVersion: "8.2505.5"
keystores: keystores:
- "proxy-idp-notused-auth-realm-identity" - "proxy-idp-notused-auth-realm-identity"
- "proxy-idp-1f0702aaabef60a615abf41f" - "proxy-idp-1f0702aaabef60a615abf41f"

100
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml
View File

@ -1,6 +1,11 @@
<?xml version="1.0" encoding="UTF-8"?> <?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "/opt/nevisproxy/dtd/web-app_2_3.dtd"> <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "/opt/nevisproxy/dtd/web-app_2_3.dtd">
<web-app> <web-app>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<context-param>
<param-name>application-id</param-name>
<param-value>auth.agov-w.azure.adnovum.net</param-value>
</context-param>
<!-- source: pattern://06aeae2d799e492f5580d03b, pattern://4fcfadb4a5c946ead7e6e995, pattern://204c22beaccdfd22727af378 --> <!-- source: pattern://06aeae2d799e492f5580d03b, pattern://4fcfadb4a5c946ead7e6e995, pattern://204c22beaccdfd22727af378 -->
<context-param> <context-param>
<param-name>SectokenVerifierCert</param-name> <param-name>SectokenVerifierCert</param-name>
@ -859,7 +864,7 @@
<!-- source: pattern://4fcfadb4a5c946ead7e6e995 --> <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>LocalSessionStoreServlet</param-value> <param-value>MySQLSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://4fcfadb4a5c946ead7e6e995 --> <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
<init-param> <init-param>
@ -904,7 +909,7 @@
<!-- source: pattern://cb8c63274fe346280de0ffd5 --> <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>LocalSessionStoreServlet</param-value> <param-value>MySQLSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://cb8c63274fe346280de0ffd5 --> <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param> <init-param>
@ -949,7 +954,7 @@
<!-- source: pattern://204c22beaccdfd22727af378 --> <!-- source: pattern://204c22beaccdfd22727af378 -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>LocalSessionStoreServlet</param-value> <param-value>MySQLSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://204c22beaccdfd22727af378 --> <!-- source: pattern://204c22beaccdfd22727af378 -->
<init-param> <init-param>
@ -994,7 +999,7 @@
<!-- source: pattern://e0fda9336be9c69dafc9b69e --> <!-- source: pattern://e0fda9336be9c69dafc9b69e -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>LocalSessionStoreServlet</param-value> <param-value>MySQLSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://06aeae2d799e492f5580d03b --> <!-- source: pattern://06aeae2d799e492f5580d03b -->
<init-param> <init-param>
@ -1636,27 +1641,6 @@
<!-- source: pattern://e0fda9336be9c69dafc9b69e, pattern://a6f6dc6affdc7c692ff857b9, pattern://decb9b3f88d430fb5c95f466 --> <!-- source: pattern://e0fda9336be9c69dafc9b69e, pattern://a6f6dc6affdc7c692ff857b9, pattern://decb9b3f88d430fb5c95f466 -->
<servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class> <servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class>
</servlet> </servlet>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<servlet>
<servlet-name>LocalSessionStoreServlet</servlet-name>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<servlet-class>ch::nevis::nevisproxy::servlet::cache::local::LocalSessionStoreServlet</servlet-class>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param>
<param-name>MaxInactiveInterval</param-name>
<param-value>600</param-value>
</init-param>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param>
<param-name>MaxLifetime</param-name>
<param-value>28800</param-value>
</init-param>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param>
<param-name>MemorySize</param-name>
<param-value>512000000</param-value>
</init-param>
</servlet>
<!-- source: pattern://097929211988398a87bcbb0c --> <!-- source: pattern://097929211988398a87bcbb0c -->
<servlet> <servlet>
<servlet-name>LoginRenderer_nevisLogrend</servlet-name> <servlet-name>LoginRenderer_nevisLogrend</servlet-name>
@ -1673,6 +1657,72 @@
<param-value>remote:NevisLogrendConnector_nevisLogrend:/nevislogrend/index.vm?logrendresourcepath=/nevislogrend</param-value> <param-value>remote:NevisLogrendConnector_nevisLogrend:/nevislogrend/index.vm?logrendresourcepath=/nevislogrend</param-value>
</init-param> </init-param>
</servlet> </servlet>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<servlet>
<servlet-name>MySQLSessionStoreServlet</servlet-name>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<servlet-class>ch::nevis::nevisproxy::servlet::cache::mysql::MySQLSessionStoreServlet</servlet-class>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>AttributesTableName</param-name>
<param-value>attribute</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>ConfigurationsTableName</param-name>
<param-value>conf</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>ConnectString</param-name>
<param-value>//mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat:3306/workproxy?connect_timeout=10&amp;ping_timeout=2</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>DisableDatabaseSchemaCheck</param-name>
<param-value>false</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>KeyToIdMapTableName</param-name>
<param-value>key_id_map</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>MaxConn</param-name>
<param-value>150</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>MaxLimitOnDelete</param-name>
<param-value>100</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>MinConn</param-name>
<param-value>10</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>Password</param-name>
<param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbPassword}</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>SessionsTableName</param-name>
<param-value>session</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>TimeOut</param-name>
<param-value>600</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>UserName</param-name>
<param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbUser}</param-value>
</init-param>
</servlet>
<!-- source: pattern://097929211988398a87bcbb0c --> <!-- source: pattern://097929211988398a87bcbb0c -->
<servlet> <servlet>
<servlet-name>NevisLogrendConnector_nevisLogrend</servlet-name> <servlet-name>NevisLogrendConnector_nevisLogrend</servlet-name>