nevis
/
adn-agov-iam-inventory
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

new configuration version

This commit is contained in:
haburger 2024-08-19 16:19:17 +00:00
parent 654c61eaf7
commit cf88ba5486
8 changed files with 33 additions and 33 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts/etc/nevis/k8s-nevisauth-sts-4bad2fe3ccc54716cc87138f.yaml
View File

@ -40,7 +40,7 @@ spec:
podDisruptionBudget:
maxUnavailable: "50%"
git:
tag: "r-5560b9df58bc00fcf3fc92f29f5f7840af9dbf26"
tag: "r-01fcdea9b5e524c965c7f0b885a21df0258ff783"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts"
credentials: "git-credentials"
keystores:

4
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts/var/opt/nevisauth/default/conf/esauth4.xml
View File

@ -93,7 +93,7 @@
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
<ResultCond name="ok" next="Auth_Realm_Main_STS_Verify_User_extID" authLevel="auth.weak"/>
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
<property name="consumerURL" value="https://me.agov-w.azure.adnovum.net/login/saml2/sso/agovidp"/>
<property name="consumerURL" value="https://me.agov-d.azure.adnovum.net/login/saml2/sso/agovidp"/>
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
<property name="in.verify" value="Assertion"/>
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
@ -103,7 +103,7 @@
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
<property name="in.max_age" value="30"/>
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
<property name="in.audience" value="https://me.agov-w.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
<property name="in.audience" value="https://me.agov-d.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
<!-- source: pattern://5d7dc3d51416356293a239f7 -->
<property name="in.keystoreref" value="Auth_Realm_Main_STS"/>
<!-- source: pattern://5d7dc3d51416356293a239f7 -->

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/etc/nevis/k8s-nevisauth-7022472ae407577ae604bbb8.yaml
View File

@ -40,7 +40,7 @@ spec:
podDisruptionBudget:
maxUnavailable: "50%"
git:
tag: "r-5560b9df58bc00fcf3fc92f29f5f7840af9dbf26"
tag: "r-01fcdea9b5e524c965c7f0b885a21df0258ff783"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth"
credentials: "git-credentials"
keystores:

44
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/nevisauth/default/conf/esauth4.xml
View File

@ -161,9 +161,9 @@
<Arg name="ch.nevis.isiweb4.response.status" value="403"/>
</Response>
<!-- source: pattern://68665057549fd887ea09fb86 -->
<property name="parameter.appAddressRequired.whitelist" value="https://testapp-01.agov-w.azure.adnovum.net/test/api/saml2/service-provider-metadata/agovidp, OidcPlayground"/>
<property name="parameter.appAddressRequired.whitelist" value="https://testapp-01.agov-d.azure.adnovum.net/test/api/saml2/service-provider-metadata/agovidp, OidcPlayground"/>
<!-- source: pattern://68665057549fd887ea09fb86 -->
<property name="parameter.url" value="http://connect-application-billing.adn-agov-connect-01-dev:8082/connect/billing/relying-party"/>
<property name="parameter.url" value="https://utility.agov-d.azure.adnovum.net/connect/billing/relying-party"/>
<!-- source: pattern://68665057549fd887ea09fb86 -->
<property name="scriptTraceGroup" value="AGOV-ACCT"/>
<!-- source: pattern://68665057549fd887ea09fb86 -->
@ -216,7 +216,7 @@
<!-- source: pattern://f63c475c35b616b7c6c1901c -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/mobile_nless_auth.groovy"/>
<!-- source: pattern://f63c475c35b616b7c6c1901c -->
<property name="parameter.agovmeregistrationurl" value="https://me.agov-w.azure.adnovum.net/registration/"/>
<property name="parameter.agovmeregistrationurl" value="https://me.agov-d.azure.adnovum.net/registration/"/>
<!-- source: pattern://f63c475c35b616b7c6c1901c -->
<property name="parameter.recoveryurl" value="https://auth.agov-w.azure.adnovum.net/AUTH/RECOVERY/"/>
</AuthState>
@ -278,7 +278,7 @@
<Arg name="ch.nevis.isiweb4.response.status" value="403"/>
</Response>
<!-- source: pattern://f39352769cb2a1c88e1a176d -->
<property name="parameter.url" value="http://utility-application-be.adn-agov-me-01-uat:8081/utility/api/v1/configinfo"/>
<property name="parameter.url" value="https://utility.agov-d.azure.adnovum.net/utility/api/v1/configinfo"/>
<!-- source: pattern://f39352769cb2a1c88e1a176d -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/fido2_fetchcaptchainfos.groovy"/>
</AuthState>
@ -335,7 +335,7 @@
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="out.keyobjectref" value="Signer_IDP_AGOV"/>
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="spURL" value="https://me.agov-w.azure.adnovum.net/registration/api/login/saml2/sso/agovidpdirect"/>
<property name="spURL" value="https://me.agov-d.azure.adnovum.net/registration/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="acsUrlWhitelist.uris" value="not used"/>
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
@ -357,7 +357,7 @@
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="out.issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2/"/>
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="out.audienceRestriction" value="https://me.agov-w.azure.adnovum.net/registration/api/saml2/service-provider-metadata/agovidpdirect"/>
<property name="out.audienceRestriction" value="https://me.agov-d.azure.adnovum.net/registration/api/saml2/service-provider-metadata/agovidpdirect"/>
</AuthState>
<AuthState name="Auth_Realm_Main_IDP_Email_Input" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="true" resumeState="true">
<!-- source: pattern://e3cac41e75980361d7d26bde -->
@ -449,7 +449,7 @@
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="scriptTraceGroup" value="AGOV-ACCT"/>
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="parameter.agovmedirecturl" value="https://me.agov-w.azure.adnovum.net/registration/api/login/saml2/sso/agovidpdirect"/>
<property name="parameter.agovmedirecturl" value="https://me.agov-d.azure.adnovum.net/registration/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://bfd395eb0dab50aff2f2c01b -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/handleRedirectRegistration.groovy"/>
</AuthState>
@ -479,7 +479,7 @@
<!-- source: pattern://699f22cf1cd4ad08bd973f31 -->
<property name="parameter.ip" value="#{inctx.get('connection.HttpHeader.X-Real-IP')}"/>
<!-- source: pattern://699f22cf1cd4ad08bd973f31 -->
<property name="parameter.url" value="http://utility-application-be.adn-agov-me-01-uat:8081/utility/api/v1/captcha/"/>
<property name="parameter.url" value="https://utility.agov-d.azure.adnovum.net/utility/api/v1/captcha/"/>
<!-- source: pattern://699f22cf1cd4ad08bd973f31 -->
<property name="parameter.userAgent" value="#{inctx.get('connection.HttpHeader.user-agent')}"/>
<!-- source: pattern://699f22cf1cd4ad08bd973f31 -->
@ -843,7 +843,7 @@
<!-- source: pattern://9ff0369f3cf662f95d94ff09 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/ensureRecoveryCode.groovy"/>
<!-- source: pattern://9ff0369f3cf662f95d94ff09 -->
<property name="parameter.utility-service.baseUrl" value="http://utility-application-be.adn-agov-me-01-dev:8081/utility"/>
<property name="parameter.utility-service.baseUrl" value="https://utility.agov-d.azure.adnovum.net/utility"/>
<!-- source: pattern://9ff0369f3cf662f95d94ff09 -->
<property name="parameter.idm.httpclient.tls.trustStoreRef" value="Ensure_Recovery_Code"/>
<!-- source: pattern://9ff0369f3cf662f95d94ff09 -->
@ -1025,7 +1025,7 @@
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="out.keyobjectref" value="Signer_IDP_AGOV"/>
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="spURL" value="https://me.agov-w.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<property name="spURL" value="https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="acsUrlWhitelist.uris" value="not used"/>
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
@ -1055,7 +1055,7 @@
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="out.issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2/"/>
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="out.audienceRestriction" value="https://me.agov-w.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
<property name="out.audienceRestriction" value="https://me.agov-d.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
</AuthState>
<AuthState name="Auth_Realm_Main_IDP_Recovery_redirectAgovMe" class="ch.nevis.esauth.auth.states.saml.IdentityProviderState" final="false" resumeState="false">
<!-- source: pattern://6061abea33a234fad73897b7 -->
@ -1087,7 +1087,7 @@
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="out.keyobjectref" value="Signer_IDP_AGOV"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="spURL" value="https://me.agov-w.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<property name="spURL" value="https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="acsUrlWhitelist.uris" value="not used"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
@ -1109,7 +1109,7 @@
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="out.issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2/"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="out.audienceRestriction" value="https://me.agov-w.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
<property name="out.audienceRestriction" value="https://me.agov-d.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
</AuthState>
<AuthState name="Auth_Realm_Main_IDP_SendSamlResponseWithAssertion" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false" resumeState="true">
<!-- source: pattern://b87d0d2b640e8e545ad70234 -->
@ -1137,7 +1137,7 @@
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="scriptTraceGroup" value="AGOV-ACCT"/>
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="parameter.agovmedirecturl" value="https://me.agov-w.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<property name="parameter.agovmedirecturl" value="https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://cdb228eccc12b4b1dea20d9d -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/handleRedirect.groovy"/>
</AuthState>
@ -1152,7 +1152,7 @@
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="scriptTraceGroup" value="AGOV-ACCT"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="parameter.agovmedirecturl" value="https://me.agov-w.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<property name="parameter.agovmedirecturl" value="https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/handleRedirectRecovery.groovy"/>
</AuthState>
@ -1649,7 +1649,7 @@
<Arg name="ch.nevis.isiweb4.response.status" value="403"/>
</Response>
<!-- source: pattern://bea3ca0c85381d07d632be52 -->
<property name="parameter.url" value="http://utility-application-be.adn-agov-me-01-uat:8081/utility/api/v1/configinfo"/>
<property name="parameter.url" value="https://utility.agov-d.azure.adnovum.net/utility/api/v1/configinfo"/>
<!-- source: pattern://bea3ca0c85381d07d632be52 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/recovery_fetchcaptchainfos.groovy"/>
</AuthState>
@ -1696,7 +1696,7 @@
<!-- source: pattern://717094cbd4ddbadeab4b2cc1 -->
<property name="parameter.ip" value="#{inctx.get('connection.HttpHeader.X-Real-IP')}"/>
<!-- source: pattern://717094cbd4ddbadeab4b2cc1 -->
<property name="parameter.url" value="http://utility-application-be.adn-agov-me-01-uat:8081/utility/api/v1/captcha/"/>
<property name="parameter.url" value="https://utility.agov-d.azure.adnovum.net/utility/api/v1/captcha/"/>
<!-- source: pattern://717094cbd4ddbadeab4b2cc1 -->
<property name="parameter.userAgent" value="#{inctx.get('connection.HttpHeader.user-agent')}"/>
<!-- source: pattern://717094cbd4ddbadeab4b2cc1 -->
@ -1944,7 +1944,7 @@
<!-- source: pattern://9f443ce76f9522dfae4c3aa0 -->
<Response value="AUTH_CONTINUE"/>
<!-- source: pattern://9f443ce76f9522dfae4c3aa0 -->
<property name="parameter.url" value="http://utility-application-be.adn-agov-me-01-uat:8081/utility/api/v1/email/031"/>
<property name="parameter.url" value="https://utility.agov-d.azure.adnovum.net/utility/api/v1/email/031"/>
<!-- source: pattern://9f443ce76f9522dfae4c3aa0 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/recovery_sendemail031.groovy"/>
</AuthState>
@ -2261,7 +2261,7 @@
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="out.keyobjectref" value="Signer_IDP_AGOV"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="spURL" value="https://me.agov-w.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<property name="spURL" value="https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="acsUrlWhitelist.uris" value="not used"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
@ -2283,7 +2283,7 @@
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="out.issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2/"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="out.audienceRestriction" value="https://me.agov-w.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
<property name="out.audienceRestriction" value="https://me.agov-d.azure.adnovum.net/account/api/saml2/service-provider-metadata/agovidpdirect"/>
</AuthState>
<AuthState name="Auth_Realm_Recovery_Recovery_Auth_codeLocked" class="ch.nevis.esauth.auth.states.standard.AuthGeneric" final="true" resumeState="false">
<!-- source: pattern://584964c837512845d7940809 -->
@ -2338,7 +2338,7 @@
<!-- source: pattern://4bc453bf68139ee87966b0c7 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/Recovery_mobile_nless_auth.groovy"/>
<!-- source: pattern://4bc453bf68139ee87966b0c7 -->
<property name="parameter.agovmeregistrationurl" value="https://me.agov-w.azure.adnovum.net/registration/"/>
<property name="parameter.agovmeregistrationurl" value="https://me.agov-d.azure.adnovum.net/registration/"/>
<!-- source: pattern://4bc453bf68139ee87966b0c7 -->
<property name="parameter.recoveryurl" value="https://auth.agov-w.azure.adnovum.net/AUTH/RECOVERY/"/>
</AuthState>
@ -2353,7 +2353,7 @@
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="scriptTraceGroup" value="AGOV-ACCT"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="parameter.agovmedirecturl" value="https://me.agov-w.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<property name="parameter.agovmedirecturl" value="https://me.agov-d.azure.adnovum.net/account/api/login/saml2/sso/agovidpdirect"/>
<!-- source: pattern://6061abea33a234fad73897b7 -->
<property name="script" value="file:///var/opt/nevisauth/default/conf/handleRedirectRecovery.groovy"/>
</AuthState>

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/idm/etc/nevis/k8s-nevisidm-b8a36646f81c3247cdb5d90b.yaml
View File

@ -41,7 +41,7 @@ spec:
podDisruptionBudget:
maxUnavailable: "50%"
git:
tag: "r-5560b9df58bc00fcf3fc92f29f5f7840af9dbf26"
tag: "r-01fcdea9b5e524c965c7f0b885a21df0258ff783"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/idm"
credentials: "git-credentials"
keystores:

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/idm/var/opt/nevisidm/default/conf/nevisidm-prod.properties
View File

@ -51,7 +51,7 @@ application.modules.event.repeat.count=0
# source: pattern://71411a755a625f9b850c6cf5
application.modules.provisioning.enabled=false
# source: pattern://71411a755a625f9b850c6cf5
database.connection.pool.size.max=10
database.connection.pool.size.max=5
# source: pattern://71411a755a625f9b850c6cf5
database.connection.pool.size.min=5
# source: pattern://71411a755a625f9b850c6cf5

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
View File

@ -41,7 +41,7 @@ spec:
podDisruptionBudget:
maxUnavailable: "50%"
git:
tag: "r-5560b9df58bc00fcf3fc92f29f5f7840af9dbf26"
tag: "r-01fcdea9b5e524c965c7f0b885a21df0258ff783"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp"
credentials: "git-credentials"
keystores:

8
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml
View File

@ -1142,7 +1142,7 @@
<!-- source: pattern://cdbb957d49fdc6695a978265#backends -->
<init-param>
<param-name>InetAddress</param-name>
<param-value>connect-application-billing.adn-agov-connect-01-dev:8082</param-value>
<param-value>utility.agov-d.azure.adnovum.net:443</param-value>
</init-param>
<!-- source: pattern://cdbb957d49fdc6695a978265#backends -->
<init-param>
@ -1157,7 +1157,7 @@
<!-- source: pattern://cdbb957d49fdc6695a978265#backends -->
<init-param>
<param-name>UseSSL</param-name>
<param-value>false</param-value>
<param-value>true</param-value>
</init-param>
</servlet>
<!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
@ -1434,7 +1434,7 @@
<!-- source: pattern://cadefc0abd2323fdccdb7a18#backends -->
<init-param>
<param-name>InetAddress</param-name>
<param-value>utility-application-be.adn-agov-me-01-uat:8081</param-value>
<param-value>utility.agov-d.azure.adnovum.net:443</param-value>
</init-param>
<!-- source: pattern://cadefc0abd2323fdccdb7a18#backends -->
<init-param>
@ -1449,7 +1449,7 @@
<!-- source: pattern://cadefc0abd2323fdccdb7a18#backends -->
<init-param>
<param-name>UseSSL</param-name>
<param-value>false</param-value>
<param-value>true</param-value>
</init-param>
</servlet>
<!-- source: pattern://e0fda9336be9c69dafc9b69e, pattern://c642107fde6b2e07f16bfedb, pattern://decb9b3f88d430fb5c95f466 -->