nevis
/
adn-agov-iam-inventory
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: nevis:master
Branches Tags
nevis:master
nevis:r-53c09bd6632aebeda2b892197a01a8f7f185561d
nevis:r-ad7700b35fd4f776a3e64f37dce372a63b90531b
nevis:r-409fd32f98389c9644504cf12ed02ff8c84a9d7a
nevis:r-bd70c110fac69d39b821f336f2bb78789741fe4e
nevis:r-d674beebf5f856247ce8dfb32e9a751b097a238c
nevis:r-5a1cf0f4c41794f3a56737201bbe9465e5fd25ab
nevis:r-8ef0fba9376830a56ab841d506cbf4b17c459453
nevis:r-2942bf9fcda0947d8f79b347d28c4097cbbf8c68
nevis:r-6b345c02eae04635586bb34550d5e12f42df7d14
nevis:r-d21ab336649317f688bfdb318eb68b9a02a105c7
nevis:r-c14e16281a1c61da4a3ccd6370f1299410b47d72
nevis:r-9c1266e8377cd1df363b0b90cfab527c8eb4e6b2
nevis:r-600d3977930a334c904634739dc166e93cd7c90e
nevis:r-d6878093aefa2bfb8cc241b61fff5fe94bc95282
nevis:r-0574c5a2098562d6585435194234bdb2b0cf0858
nevis:r-04ad6fd7455702c2a591f4a7b8d6c94222de911e
nevis:r-ca58de85fdf7a911b85ea6cd56b4c1a3d7f94fd6
nevis:r-e89a903628d5717380e12490c3c41f93df97174b
nevis:r-9849dba282e5e9421988bf7092f242ff73d83ce5
nevis:r-484395a405f9f7123da379fa8df82e197d2dbd71
nevis:r-5e17b7ae74eadb8800587a4f4db74406a7e21e95
nevis:r-8c160b6ed06647cec021e38b8bc8f4dffaab04c1
nevis:r-e157935e7f17a778cb613627a645fe400a85af4d
nevis:r-25da499166053032321f08e80ed9ec3136c59cd1
nevis:r-0a95034444af9c2e5b4a8c12cc3a0f444f6b0447
nevis:r-03ba964be38de059bd62eac8e8eeb6f39135ef6e
nevis:r-317ed268556b37656f27fb58fcffd4797cea27e4
nevis:r-7ea2bb552e56706a0514f07552905db7bb8ee0ad
nevis:r-7adaccc956f4499dc7e8f30195149151fda42e84
nevis:r-bb2cd3363ee68190f35a7218ad989dde72557698
nevis:r-96c71dfed47d4f1ab987933655eca864b70f86ec
nevis:r-3fab31267c332ae6196564e54f92f81ee4f19d6a
nevis:r-b9723a8a2f893f33b1c53bce4c1c71d5cd61104d
nevis:r-da304e232302c1f7e78667894e4bf4f429962356
nevis:r-c55f4258d718835326c2a43b5c614aeeac75db8a
nevis:r-5c8ffed08b0eabc4f6529183cd8130a033ee3b7f
nevis:r-4be12927e2785d7b6ccea3817d7f0be2ab6491d3
nevis:r-600995cbc553d18c54c86ca5293768f8370bb7da
nevis:r-cb437c21eb02a6e831659425531e5e7d23e487bb
nevis:r-a7ea09396ec9921779728521cfa55f36bb60d4da
nevis:r-47b0ce42f7f55a213795e446c236ae7bf27416ba
nevis:r-0ac57bcb3a62569ab6f018933070b6dd734a0978
nevis:r-bb60f152ad6e15bf33c12aa5ef530188e470e4a3
nevis:r-ba39848d1c443859cdedb92e5cb503a09a1feaca
nevis:r-ac8d94ac48915f4fa5085ebb6c94d28d6d7f984a
nevis:r-12631865cbb9170941d0aac3a10d80fa4222f815
nevis:r-d9f8becba9a6acfa30f490d16e18038ab79e9d92
nevis:r-50299cb935be4a677ffbde29128d0706fb4a25d9
nevis:r-1663a8d1d9ae71e0fb7c5af2e10bfc2536ee973b
nevis:r-68680b2182672bd8a81d786c163e95b91fb89a64
nevis:r-a42d028a31e525195a4836e6364a21cb0ad6f04e
nevis:r-e00a9c4734572d2d12c47637bd8775b8447b2904
nevis:r-e2938d9f50d18f0c7df1e51a7cc98a1e4fe2f6fa
nevis:r-10ac923164dfe2ce1b64ff3b8b03dd1e5e240a5b
nevis:r-b95c8e57793f4462c7fef2b90b04dd0225d1b9e1
nevis:r-20ae46349f67d35e89254106268a3ee7b00877de
nevis:r-35527ce0c286b4891eee379a626de7c5db786735
nevis:r-ba0282a303be16d9f91b594506c93c0ad7c1eefb
nevis:r-2931fda661a24a257860d215bc321d6c0b494511
nevis:r-654fc77cfe9eeb743896b19166144c379a1ad337
nevis:r-b0ee5bf8f21b6deb852634ece4565dee10c29032
nevis:r-35a58676fa94fb637419e8df19b37df68f0f6ac5
nevis:r-76635afaaedd25f5d24c9c5946e952dafbf121e4
nevis:r-b7543a0cfa5709d415da026ee75c467a9ce59430
nevis:r-2ba7cdb7df078f1f1eea7434f3d5b4950a0b9426
nevis:r-c346820c0ca80e8ce46fdec0168a87db6399549c
nevis:r-a3e306d2c5cbd1ab8bde2a53d90c7c814c512a7f
nevis:r-8e0d11a79169c116fd515ddebe59e9f9a4e33e82
nevis:r-c7f7304e5441912a692611196c6e13ec89ee8c65
nevis:r-4bb9433bfd44d7e52eeb40e9d46accdaaf0e1dbf
nevis:r-8a9c62b5262336b92be8323622dfab0068aaceea
nevis:r-90fdd9efa6eadd2c367c797bfca194de78d61fec
nevis:r-1311c1b7858da6dda0ca4e11535bf609db56c0ab
nevis:r-b14743723ffdec93c57595edef5e2386d20ea798
nevis:r-e1c8fb676d3cb1b89262d9f0a54f74c6fe4b3a00
nevis:r-ca9c333b8eea500c04c843bc438a729cab8a92ee
nevis:r-c58cc47a5227560a26f98d3aa610b057d4a540ac
nevis:r-3661d1b94c95cb7ba123e574390d8dbaaed8e7a2
nevis:r-20a60efb7465c08b914996cdae59dd87fd1052d1
nevis:r-ba449badcbd7e27508a5cbf6db1b00df4429733f
nevis:r-e51dbccc335b34ef95c86bb9fce5560264c0c8f9
nevis:r-ea8aa9c66b18005d3ab92c70c1fe47ce23561f6e
nevis:r-24292622fad61c5e578f00b8d705ad832cb0c75e
nevis:r-8fb919f88013157ccd00ea44d0c9e22d96b63fed
nevis:r-5190e6a7cf86a817b73807ecaff4b41c37839349
nevis:r-500f09f8321aa28d34a7334829af22055902f81b
nevis:r-212b17ec8c88c148e8285087fe375f58d7bb0d4f
nevis:r-b8f96732441c62b6b91fcaa08ebc22e957092c19
nevis:r-1e222408a8882dd7dd5d101b8071bf618c32760c
nevis:r-c47f1e3863ed593d0e24a21d8b1aca887d66fef6
nevis:r-6c62b8946330d7c4f2ed7d6bb4e18322c0a85ad9
nevis:r-9af4078cd1befd57d74704e77388710ec33873d4
nevis:r-5fa3629fafa6609b3d40f948feeec493651fe174
nevis:r-1f1b04a0a7e3942c8adf5254fe2d830fa190abd0
nevis:r-6671622a8a2248704ea0aadce13b812c82812e68
nevis:r-3df620313bf4e6a321e01eb9fba01e25a6c03379
nevis:r-9f6d84e979285818b66af10c90377f35c4518538
nevis:r-7853cc81851fde2ef41a4695dbbcf36bc76354b9
nevis:r-74652635df557afe285bd6c9b53c946dd0556fdf
nevis:r-d259c68e8b384461ffab7e2d355838f748378bdc
nevis:r-25606babd85f4c8c0457d235e67672ec96405ebf
nevis:r-eff5ff5a5d7995f38eb7c15158306113ca972ce3
nevis:r-ad714e65042728051bc6dee19704df817b9c40b2
nevis:r-3d5124a6dc9c177bf140282895b219df06f36804
nevis:r-134517b70d990d8460a6fdf313cf72799edbdb49
nevis:r-9e58961de0afe126cac1c6cef895dfc310637cb5
nevis:r-069b36f30d92726332fab2b19e9c308ccdfe2f3d
nevis:r-de3192aa36a48a0c9e2734af2cfd5bc3b60701a0
nevis:r-64636a83615bbcbfb88c345b04dfe9606764721c
nevis:r-62662ede470107ec5096dcb2a1eeea54ac2b8773
nevis:r-e6fe0925b59a273698eb3dbfd1525000cc09e032
nevis:r-9efe638c6ac21d0a2b699abc2c739f1922639620
nevis:r-46d6909d7adf378850bd3b79821f2f9a93af3185
nevis:r-76bb710ec35345bf5eb9149c3a3542ee7e23a2eb
nevis:r-22bb1e3a1e5d393f9e550a5aa2a2978b3826a150
nevis:r-139ef65dd089d9e8ca8e589cb232846974ed2f1c
nevis:r-c3f3450d1e993cf5f26ceeaec99256e99fb503fa
nevis:r-3a33cc8960643d6afc30bade3f2d225bea96681a
nevis:r-d19a190ffad492ab91a9ed98a565105e0bd12bf5
nevis:r-1c0759acd254c4baf2150c38f915cea9af509d6d
nevis:r-2a044150ed3a68477132d702114401eb4c7e986f
nevis:r-5ef0aed7c67a82259525e9e179953cd289458e0c
nevis:r-5b79a86c337ca1289540ee43be0ddf8d56ce17c3
nevis:r-bdd002acfcff73d836b81b83744f3ba618e236f8
nevis:r-76669ce293c5840d6e2c23c16822ffd3c143c498
nevis:r-21681a3c14cd883c7172cf255741c8d057352644
nevis:r-c769534cd5f49da9af26374f15617bf56e4becbb
nevis:r-dfa6445c338f6998342e61861b6fbeac0779c87b
nevis:r-2dd29e7a0f66498b8cc9936290c12596ecbcaf37
nevis:r-0d374b6f623df05d38b32efebf71d4666b85a42d
nevis:r-beaf79e44e7ba37c49fe5e4cd4ac1aa2d15208e2
nevis:r-28e22366b5275caf004643b5b80134140fa1fd6d
nevis:r-68d22c8461fae1d86f92dc91331b67bf7ad55703
nevis:r-232522f88238bad6e4221f000cd94670545f5bf5
nevis:r-b10c2226f68adac16ff14a5d90adb198d810135b
nevis:r-be07db7d106d7437ffe94f8044ae723f7acf4b7c
nevis:r-3f9c4e232a4721238be4b4736c0c74804be09ab0
nevis:r-293582b8db6b8e69dbbec5cb425601effe4cebc0
nevis:r-5b3795e964d725e0ca2d4947e23f209453114124
nevis:r-a8541357ef49b3b0096f5e1d2060c700bb6b7e28
nevis:r-fabddcc580ca40da55be2c2defaa0717bf85a07b
nevis:r-07f17f6616f2c0bf3598a69f441d4371045d97e3
nevis:r-d284524a99b510771cce757077c5485187528da0
nevis:r-3aab3f0794f78c9a05e89e88a737ad0e3e648f7f
nevis:r-99b024ab40db43dd54605ef7a00c68a144b42b27
nevis:r-6841e8ab171b9e955775effffb595e52b5f7d122
nevis:r-531df4d70374c7edf2c8bd2dc66243ffcf866911
nevis:r-a688715771af9b47fe1a2e89b9f650a668556a4d
nevis:r-4caccf4cf0af3ba86274f4d1fd247bb9b65d1ed3
nevis:r-c4461bfe63af2bfac8b5b204bdb8b9f66d9e392f
nevis:r-2f8a215769d731c34e6278cbfb370e06e976f51f
nevis:r-8712b3f7b2d4abba874a4015cd79af7c2ab39122
nevis:r-c91fa0066dce91fa2c041fdbac45bfb2e09948c0
nevis:r-b70bc130fa51525c10de02aa3f854bf3c631f5d9
nevis:r-605d91273a27806035012a52e1c36c5421092a85
nevis:r-dfb2cd1c30127a3ce475798d13a401d9e171f368
nevis:r-88ce7fd041e9106c6f5b1f1cb0892a56f30d8993
nevis:r-7c3dca6bb9792f14907f6128a654a963518cbcca
nevis:r-be4d7b3836489983642da8c01294cab133468c44
nevis:r-f797d55ba2e02a3422ac3de2076ce37a44cd21e5
nevis:r-ad8a6961a238d3829894bdb6f156305aae37be74
nevis:r-f0c2fc352ad8e75f5eae1bab7fc80e6315293282
nevis:r-0908e4d0fd3a6d917e38b64e7a6a4c5df57ad551
nevis:r-7bd1348e7326ffa31044fb2b276fbab96102331e
nevis:r-c4c1f2eb61e336e26717c009903d54a57e35f485
nevis:r-258a82a9bd0382dfcefc2fc4d7ef0cae352361f1
nevis:r-97c309f84e290a99578b1666c8e6fbb2cde07963
nevis:r-95871349e8265b00ad7b2829249e4f29cab5d6ab
nevis:r-7364b51af024a93080fe9a7cafbd0f9121c88904
nevis:r-76a9542c5c919177c7b3c1903a1140c1e7274683
nevis:r-01fcdea9b5e524c965c7f0b885a21df0258ff783
nevis:r-5560b9df58bc00fcf3fc92f29f5f7840af9dbf26
nevis:r-90c0ddd9c0c4d9011252ef186298ca61c939e952
nevis:r-db9522d1110b41177e7d034419ef1fb68f95b0b8
nevis:r-a91bcd50897938a040ebdb7d527e880e072a83f7
nevis:r-9af6a792e2720efb1d09318c1e3f4a2ab355af31
nevis:r-339de78f34b28e0019bb55f9f4fee8b70e264486
nevis:r-a7fc19e271dd49cda32459e0c7f08dcddd2213f3
nevis:r-d2576d81a21c7e1cda0623167db4855f03d6b380
nevis:r-4590736ca4892724ba0ff13897707228b258ad85
nevis:r-7fb1368efbf7f7d91ca72b301964b0486688d09d
nevis:r-9b106c5cc12a40258ccd94ea34b823fea2bbb744
nevis:r-b8b0f093d7a2c6d564f85fc11747986a0bd36b92
nevis:r-17392f4fc2f29ede0c371af50d06749396d69a29
nevis:r-38cda7e0ac156aa4e8342fa76df3951edf99f6a5
nevis:r-321172e6fdaf5bceaa7bd1c5ebc16b994cfee6f1
nevis:r-aefba67b7449011a4a611177ab5152f05e97b0da
nevis:r-779d33c24ccffc47e1cd1b39b93d065950aee10e
..
compare: nevis:r-5e17b7ae74eadb8800587a4f4db74406a7e21e95
Branches Tags
nevis:master
nevis:r-53c09bd6632aebeda2b892197a01a8f7f185561d
nevis:r-ad7700b35fd4f776a3e64f37dce372a63b90531b
nevis:r-409fd32f98389c9644504cf12ed02ff8c84a9d7a
nevis:r-bd70c110fac69d39b821f336f2bb78789741fe4e
nevis:r-d674beebf5f856247ce8dfb32e9a751b097a238c
nevis:r-5a1cf0f4c41794f3a56737201bbe9465e5fd25ab
nevis:r-8ef0fba9376830a56ab841d506cbf4b17c459453
nevis:r-2942bf9fcda0947d8f79b347d28c4097cbbf8c68
nevis:r-6b345c02eae04635586bb34550d5e12f42df7d14
nevis:r-d21ab336649317f688bfdb318eb68b9a02a105c7
nevis:r-c14e16281a1c61da4a3ccd6370f1299410b47d72
nevis:r-9c1266e8377cd1df363b0b90cfab527c8eb4e6b2
nevis:r-600d3977930a334c904634739dc166e93cd7c90e
nevis:r-d6878093aefa2bfb8cc241b61fff5fe94bc95282
nevis:r-0574c5a2098562d6585435194234bdb2b0cf0858
nevis:r-04ad6fd7455702c2a591f4a7b8d6c94222de911e
nevis:r-ca58de85fdf7a911b85ea6cd56b4c1a3d7f94fd6
nevis:r-e89a903628d5717380e12490c3c41f93df97174b
nevis:r-9849dba282e5e9421988bf7092f242ff73d83ce5
nevis:r-484395a405f9f7123da379fa8df82e197d2dbd71
nevis:r-5e17b7ae74eadb8800587a4f4db74406a7e21e95
nevis:r-8c160b6ed06647cec021e38b8bc8f4dffaab04c1
nevis:r-e157935e7f17a778cb613627a645fe400a85af4d
nevis:r-25da499166053032321f08e80ed9ec3136c59cd1
nevis:r-0a95034444af9c2e5b4a8c12cc3a0f444f6b0447
nevis:r-03ba964be38de059bd62eac8e8eeb6f39135ef6e
nevis:r-317ed268556b37656f27fb58fcffd4797cea27e4
nevis:r-7ea2bb552e56706a0514f07552905db7bb8ee0ad
nevis:r-7adaccc956f4499dc7e8f30195149151fda42e84
nevis:r-bb2cd3363ee68190f35a7218ad989dde72557698
nevis:r-96c71dfed47d4f1ab987933655eca864b70f86ec
nevis:r-3fab31267c332ae6196564e54f92f81ee4f19d6a
nevis:r-b9723a8a2f893f33b1c53bce4c1c71d5cd61104d
nevis:r-da304e232302c1f7e78667894e4bf4f429962356
nevis:r-c55f4258d718835326c2a43b5c614aeeac75db8a
nevis:r-5c8ffed08b0eabc4f6529183cd8130a033ee3b7f
nevis:r-4be12927e2785d7b6ccea3817d7f0be2ab6491d3
nevis:r-600995cbc553d18c54c86ca5293768f8370bb7da
nevis:r-cb437c21eb02a6e831659425531e5e7d23e487bb
nevis:r-a7ea09396ec9921779728521cfa55f36bb60d4da
nevis:r-47b0ce42f7f55a213795e446c236ae7bf27416ba
nevis:r-0ac57bcb3a62569ab6f018933070b6dd734a0978
nevis:r-bb60f152ad6e15bf33c12aa5ef530188e470e4a3
nevis:r-ba39848d1c443859cdedb92e5cb503a09a1feaca
nevis:r-ac8d94ac48915f4fa5085ebb6c94d28d6d7f984a
nevis:r-12631865cbb9170941d0aac3a10d80fa4222f815
nevis:r-d9f8becba9a6acfa30f490d16e18038ab79e9d92
nevis:r-50299cb935be4a677ffbde29128d0706fb4a25d9
nevis:r-1663a8d1d9ae71e0fb7c5af2e10bfc2536ee973b
nevis:r-68680b2182672bd8a81d786c163e95b91fb89a64
nevis:r-a42d028a31e525195a4836e6364a21cb0ad6f04e
nevis:r-e00a9c4734572d2d12c47637bd8775b8447b2904
nevis:r-e2938d9f50d18f0c7df1e51a7cc98a1e4fe2f6fa
nevis:r-10ac923164dfe2ce1b64ff3b8b03dd1e5e240a5b
nevis:r-b95c8e57793f4462c7fef2b90b04dd0225d1b9e1
nevis:r-20ae46349f67d35e89254106268a3ee7b00877de
nevis:r-35527ce0c286b4891eee379a626de7c5db786735
nevis:r-ba0282a303be16d9f91b594506c93c0ad7c1eefb
nevis:r-2931fda661a24a257860d215bc321d6c0b494511
nevis:r-654fc77cfe9eeb743896b19166144c379a1ad337
nevis:r-b0ee5bf8f21b6deb852634ece4565dee10c29032
nevis:r-35a58676fa94fb637419e8df19b37df68f0f6ac5
nevis:r-76635afaaedd25f5d24c9c5946e952dafbf121e4
nevis:r-b7543a0cfa5709d415da026ee75c467a9ce59430
nevis:r-2ba7cdb7df078f1f1eea7434f3d5b4950a0b9426
nevis:r-c346820c0ca80e8ce46fdec0168a87db6399549c
nevis:r-a3e306d2c5cbd1ab8bde2a53d90c7c814c512a7f
nevis:r-8e0d11a79169c116fd515ddebe59e9f9a4e33e82
nevis:r-c7f7304e5441912a692611196c6e13ec89ee8c65
nevis:r-4bb9433bfd44d7e52eeb40e9d46accdaaf0e1dbf
nevis:r-8a9c62b5262336b92be8323622dfab0068aaceea
nevis:r-90fdd9efa6eadd2c367c797bfca194de78d61fec
nevis:r-1311c1b7858da6dda0ca4e11535bf609db56c0ab
nevis:r-b14743723ffdec93c57595edef5e2386d20ea798
nevis:r-e1c8fb676d3cb1b89262d9f0a54f74c6fe4b3a00
nevis:r-ca9c333b8eea500c04c843bc438a729cab8a92ee
nevis:r-c58cc47a5227560a26f98d3aa610b057d4a540ac
nevis:r-3661d1b94c95cb7ba123e574390d8dbaaed8e7a2
nevis:r-20a60efb7465c08b914996cdae59dd87fd1052d1
nevis:r-ba449badcbd7e27508a5cbf6db1b00df4429733f
nevis:r-e51dbccc335b34ef95c86bb9fce5560264c0c8f9
nevis:r-ea8aa9c66b18005d3ab92c70c1fe47ce23561f6e
nevis:r-24292622fad61c5e578f00b8d705ad832cb0c75e
nevis:r-8fb919f88013157ccd00ea44d0c9e22d96b63fed
nevis:r-5190e6a7cf86a817b73807ecaff4b41c37839349
nevis:r-500f09f8321aa28d34a7334829af22055902f81b
nevis:r-212b17ec8c88c148e8285087fe375f58d7bb0d4f
nevis:r-b8f96732441c62b6b91fcaa08ebc22e957092c19
nevis:r-1e222408a8882dd7dd5d101b8071bf618c32760c
nevis:r-c47f1e3863ed593d0e24a21d8b1aca887d66fef6
nevis:r-6c62b8946330d7c4f2ed7d6bb4e18322c0a85ad9
nevis:r-9af4078cd1befd57d74704e77388710ec33873d4
nevis:r-5fa3629fafa6609b3d40f948feeec493651fe174
nevis:r-1f1b04a0a7e3942c8adf5254fe2d830fa190abd0
nevis:r-6671622a8a2248704ea0aadce13b812c82812e68
nevis:r-3df620313bf4e6a321e01eb9fba01e25a6c03379
nevis:r-9f6d84e979285818b66af10c90377f35c4518538
nevis:r-7853cc81851fde2ef41a4695dbbcf36bc76354b9
nevis:r-74652635df557afe285bd6c9b53c946dd0556fdf
nevis:r-d259c68e8b384461ffab7e2d355838f748378bdc
nevis:r-25606babd85f4c8c0457d235e67672ec96405ebf
nevis:r-eff5ff5a5d7995f38eb7c15158306113ca972ce3
nevis:r-ad714e65042728051bc6dee19704df817b9c40b2
nevis:r-3d5124a6dc9c177bf140282895b219df06f36804
nevis:r-134517b70d990d8460a6fdf313cf72799edbdb49
nevis:r-9e58961de0afe126cac1c6cef895dfc310637cb5
nevis:r-069b36f30d92726332fab2b19e9c308ccdfe2f3d
nevis:r-de3192aa36a48a0c9e2734af2cfd5bc3b60701a0
nevis:r-64636a83615bbcbfb88c345b04dfe9606764721c
nevis:r-62662ede470107ec5096dcb2a1eeea54ac2b8773
nevis:r-e6fe0925b59a273698eb3dbfd1525000cc09e032
nevis:r-9efe638c6ac21d0a2b699abc2c739f1922639620
nevis:r-46d6909d7adf378850bd3b79821f2f9a93af3185
nevis:r-76bb710ec35345bf5eb9149c3a3542ee7e23a2eb
nevis:r-22bb1e3a1e5d393f9e550a5aa2a2978b3826a150
nevis:r-139ef65dd089d9e8ca8e589cb232846974ed2f1c
nevis:r-c3f3450d1e993cf5f26ceeaec99256e99fb503fa
nevis:r-3a33cc8960643d6afc30bade3f2d225bea96681a
nevis:r-d19a190ffad492ab91a9ed98a565105e0bd12bf5
nevis:r-1c0759acd254c4baf2150c38f915cea9af509d6d
nevis:r-2a044150ed3a68477132d702114401eb4c7e986f
nevis:r-5ef0aed7c67a82259525e9e179953cd289458e0c
nevis:r-5b79a86c337ca1289540ee43be0ddf8d56ce17c3
nevis:r-bdd002acfcff73d836b81b83744f3ba618e236f8
nevis:r-76669ce293c5840d6e2c23c16822ffd3c143c498
nevis:r-21681a3c14cd883c7172cf255741c8d057352644
nevis:r-c769534cd5f49da9af26374f15617bf56e4becbb
nevis:r-dfa6445c338f6998342e61861b6fbeac0779c87b
nevis:r-2dd29e7a0f66498b8cc9936290c12596ecbcaf37
nevis:r-0d374b6f623df05d38b32efebf71d4666b85a42d
nevis:r-beaf79e44e7ba37c49fe5e4cd4ac1aa2d15208e2
nevis:r-28e22366b5275caf004643b5b80134140fa1fd6d
nevis:r-68d22c8461fae1d86f92dc91331b67bf7ad55703
nevis:r-232522f88238bad6e4221f000cd94670545f5bf5
nevis:r-b10c2226f68adac16ff14a5d90adb198d810135b
nevis:r-be07db7d106d7437ffe94f8044ae723f7acf4b7c
nevis:r-3f9c4e232a4721238be4b4736c0c74804be09ab0
nevis:r-293582b8db6b8e69dbbec5cb425601effe4cebc0
nevis:r-5b3795e964d725e0ca2d4947e23f209453114124
nevis:r-a8541357ef49b3b0096f5e1d2060c700bb6b7e28
nevis:r-fabddcc580ca40da55be2c2defaa0717bf85a07b
nevis:r-07f17f6616f2c0bf3598a69f441d4371045d97e3
nevis:r-d284524a99b510771cce757077c5485187528da0
nevis:r-3aab3f0794f78c9a05e89e88a737ad0e3e648f7f
nevis:r-99b024ab40db43dd54605ef7a00c68a144b42b27
nevis:r-6841e8ab171b9e955775effffb595e52b5f7d122
nevis:r-531df4d70374c7edf2c8bd2dc66243ffcf866911
nevis:r-a688715771af9b47fe1a2e89b9f650a668556a4d
nevis:r-4caccf4cf0af3ba86274f4d1fd247bb9b65d1ed3
nevis:r-c4461bfe63af2bfac8b5b204bdb8b9f66d9e392f
nevis:r-2f8a215769d731c34e6278cbfb370e06e976f51f
nevis:r-8712b3f7b2d4abba874a4015cd79af7c2ab39122
nevis:r-c91fa0066dce91fa2c041fdbac45bfb2e09948c0
nevis:r-b70bc130fa51525c10de02aa3f854bf3c631f5d9
nevis:r-605d91273a27806035012a52e1c36c5421092a85
nevis:r-dfb2cd1c30127a3ce475798d13a401d9e171f368
nevis:r-88ce7fd041e9106c6f5b1f1cb0892a56f30d8993
nevis:r-7c3dca6bb9792f14907f6128a654a963518cbcca
nevis:r-be4d7b3836489983642da8c01294cab133468c44
nevis:r-f797d55ba2e02a3422ac3de2076ce37a44cd21e5
nevis:r-ad8a6961a238d3829894bdb6f156305aae37be74
nevis:r-f0c2fc352ad8e75f5eae1bab7fc80e6315293282
nevis:r-0908e4d0fd3a6d917e38b64e7a6a4c5df57ad551
nevis:r-7bd1348e7326ffa31044fb2b276fbab96102331e
nevis:r-c4c1f2eb61e336e26717c009903d54a57e35f485
nevis:r-258a82a9bd0382dfcefc2fc4d7ef0cae352361f1
nevis:r-97c309f84e290a99578b1666c8e6fbb2cde07963
nevis:r-95871349e8265b00ad7b2829249e4f29cab5d6ab
nevis:r-7364b51af024a93080fe9a7cafbd0f9121c88904
nevis:r-76a9542c5c919177c7b3c1903a1140c1e7274683
nevis:r-01fcdea9b5e524c965c7f0b885a21df0258ff783
nevis:r-5560b9df58bc00fcf3fc92f29f5f7840af9dbf26
nevis:r-90c0ddd9c0c4d9011252ef186298ca61c939e952
nevis:r-db9522d1110b41177e7d034419ef1fb68f95b0b8
nevis:r-a91bcd50897938a040ebdb7d527e880e072a83f7
nevis:r-9af6a792e2720efb1d09318c1e3f4a2ab355af31
nevis:r-339de78f34b28e0019bb55f9f4fee8b70e264486
nevis:r-a7fc19e271dd49cda32459e0c7f08dcddd2213f3
nevis:r-d2576d81a21c7e1cda0623167db4855f03d6b380
nevis:r-4590736ca4892724ba0ff13897707228b258ad85
nevis:r-7fb1368efbf7f7d91ca72b301964b0486688d09d
nevis:r-9b106c5cc12a40258ccd94ea34b823fea2bbb744
nevis:r-b8b0f093d7a2c6d564f85fc11747986a0bd36b92
nevis:r-17392f4fc2f29ede0c371af50d06749396d69a29
nevis:r-38cda7e0ac156aa4e8342fa76df3951edf99f6a5
nevis:r-321172e6fdaf5bceaa7bd1c5ebc16b994cfee6f1
nevis:r-aefba67b7449011a4a611177ab5152f05e97b0da
nevis:r-779d33c24ccffc47e1cd1b39b93d065950aee10e

No commits in common. "master" and "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95" have entirely different histories.
master ... r-5e17b7ae

25 changed files with 185 additions and 499 deletions
Show Stats Expand all files Collapse all files

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts/etc/nevis/k8s-nevisauth-sts-4bad2fe3ccc54716cc87138f.yaml
View File

@ -46,7 +46,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-d6878093aefa2bfb8cc241b61fff5fe94bc95282" tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts"
credentials: "git-credentials" credentials: "git-credentials"
keystores: keystores:

BIN
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts/var/opt/keys/trust/idp-pem-atb/truststore.jks
View File

Binary file not shown.

BIN
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts/var/opt/keys/trust/idp-pem-atb/truststore.p12
View File

Binary file not shown.

6
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth-sts/var/opt/nevisauth/default/conf/logging.yml
View File

@ -20,8 +20,6 @@ Configuration:
level: "DEBUG" level: "DEBUG"
- name: "AgovCaptcha" - name: "AgovCaptcha"
level: "DEBUG" level: "DEBUG"
- name: "ArtifactResolutionService"
level: "DEBUG"
- name: "AuthEngine" - name: "AuthEngine"
level: "INFO" level: "INFO"
- name: "AuthPerf" - name: "AuthPerf"
@ -29,10 +27,8 @@ Configuration:
- name: "IdmAuth" - name: "IdmAuth"
level: "DEBUG" level: "DEBUG"
- name: "OpTrace" - name: "OpTrace"
level: "INFO"
- name: "Recovery"
level: "DEBUG" level: "DEBUG"
- name: "Saml" - name: "Recovery"
level: "DEBUG" level: "DEBUG"
- name: "Script" - name: "Script"
level: "DEBUG" level: "DEBUG"

5
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/etc/nevis/k8s-nevisauth-7022472ae407577ae604bbb8.yaml
View File

@ -46,12 +46,9 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-53c09bd6632aebeda2b892197a01a8f7f185561d" tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth"
credentials: "git-credentials" credentials: "git-credentials"
database:
name: "auth"
requiredVersion: "8.2505.5"
keystores: keystores:
- "auth-sh4r3d-internal-idp-auth-signer" - "auth-sh4r3d-internal-idp-auth-signer"
- "auth-auth-realm-mobile-fido-uaf-tls-client-nevisfido" - "auth-auth-realm-mobile-fido-uaf-tls-client-nevisfido"

26
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/etc/nevis/k8s-nevisauth-database-b7b59e97b3fd18bb60178573.yaml
View File

@ -1,26 +0,0 @@
apiVersion: "operator.nevis-security.ch/v1"
kind: "NevisDatabase"
metadata:
name: "auth"
namespace: "adn-agov-nevisidm-01-uat"
labels:
deploymentTarget: "auth"
annotations:
projectKey: "DEFAULT-ADN-AGOV-PROJECT"
patternId: "b7b59e97b3fd18bb60178573"
spec:
type: "NevisAuth"
databaseType: "MariaDB"
version: "8.2505.5"
url: "mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat"
port: 3306
database: "nevisauth"
bootstrap: true
migrate: true
rootCredentials:
name: "root-mariadb-session-store"
namespace: "adn-agov-nevisidm-ob-01-uat"
podSecurity:
policy: "baseline"
automountServiceAccountToken: false
timeZone: "Europe/Zurich"

104
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/own/idp-pem-signer/key.pem
View File

@ -1,54 +1,54 @@
-----BEGIN ENCRYPTED PRIVATE KEY----- -----BEGIN ENCRYPTED PRIVATE KEY-----
MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQUvdFHAj0YggoFr07l MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQU95KG57RacAYBmkeQ
OCEjWZAMT1oCAggAMB0GCWCGSAFlAwQBKgQQc0LHn1pUPI8PXXos61VpwgSCCVBh DIe1bZS0sbkCAggAMB0GCWCGSAFlAwQBKgQQyxdAya9Sd4oHLO1pzVWcYASCCVDT
wA/Ghkde2sb3r+cGG6k7iyM3UWPWu0f0Ac+i4uoKoQhGWlbsMVj/GRgDCcfr5D+C ozdXT3vjyqMzza4QKaMD4ywSAzGhQRM/TnxU5JbRLNMpdtq76Mfet2pv++UUjcof
2DOvjttdX17UIbEpSC8qbUsplrlSnZGZrizQN5oS7iKNegFQENUpj7uNjZ7ASJy3 16EsdOOpDQdxdzQWmwGUNwjkX5YyWTaAefV8l9n6Bp8LV0XabS9We3g5Jr1KjuzP
ZOIOsCvuNau+7teDrlIfcUe/A7M9Pm+ZkVFhCDEys1igRb9Sv0EBwQ6aYeei2BtF O/xJgB2o6BcD/WRPeOaANSGoyWce4rCkpDwqxrp+tY9EK19SoCZG9Zy2hnPPH2Hc
KbnVuEJTi38uGj1VB1E6z8YswlqRIPjcs2UnOUuQ3GBMDLnd4hYGvYOs6Sh8p3kh QgtgCAzqaXIp49KIXHn/Uo532lIz3WqkkhzVakwgAKLKIvc/SwgP0eSXLvPjeJYS
ELP/vZ7zNtSdKVjmsTLyk7BVFkOI5sdBS6igon1aqDqTsY3POgLoqtqi3fF4BKIZ L8DngPP0YD7IPgIs7WmMNNE7or69e7mO0miUOl7xStNHzHpLmtLNbYI7Pk6NLT7N
mhsU7CfF++AutxHaDWXj+0qLcKkA3SSnYdKOJmOBeBEnqqFv5SQ2YZe/DCetfhjS kWfh2+E21R7llsW57boMACXVr7N3CHOlZQhUNViyjPayo1njVnp6gGzuIxluhHJY
SpY4aST2aCfSAWzK6Amo2/TH7bLqgqwqs+RICcQLpOVD9OLSDX+7vqqo+xWzdONw CL070oqBeEYVfvE07HQ4Qd0BL5c02pdrKjdzBYyLwzSNKn2RzgS2R/XtEqdmOUo+
pm+l/x/9NEgTSEwZv7gJxPg8omBub7HR/SHR7BSb8dsld8wUdgNFeixY6NXTLxHv iuRngv9D1UPSI2xlFhv84778ktEeSf8l1nLltqhPJAmJUjSAcu/zjN4Q+HXqMRaF
92HKR6Cw5vFd0OaDGlQL1ay3UAc2SPNE2/0oHEAbwoRPKcNhhHGXl8skhuKHgupp IocDV4I7CaXDc2E0YdU8uHuzzUHLflJ2OZwU5N7tkoVOtAYHKUwCP4J/zpLSe2V2
6gWRpsQeKechQCysP/wRMm7v0przBCUm+PSUpbT5aV3j+iQYXGdme9E01TaRaKKb MIh40IVJK4gzb+iyBiOnsnKKQCKMPbS4lH8zC2S486MgjgbhlZeFg0nOF955c61l
BhiuyzDBPwXeUktBpvpq7d/pOp3eTbF8cbXXDP+DqRl6KcHK5wB+wEavqVo06RGZ Sb4MBrexU4s1TUg/fDpYt6jPZoKivN72jzi60kV43gBFHmP3X4SRAUQ4Y3h5NFF8
NtdHzOJTT1V0cUMobsI7hC0TcB0YeeZBRX66tMIrjCl4QuS2nv8Kn0oz2nZ8htfm h2p4wvYRsYEexjJU/+WJG4Yi1wSi3oEqD161a6vPOsKBLBdLRo1vgnQdGFx/k83X
5M6cwBd/NymfGIEI2RR53fv5dN917WsagY5n0lQzNV4VAK1WrxfxtbUuQVKK5S02 vjPlI2eEUMPCntNBbrTy8eUSJz/0OH2phztZpHuh5cfy4ErUi19d9ywZUlhurGvX
zqGxriMQ9CA1tU86Ec0Gk4mbiEwExArD1YprHl0p8HhEV34J9VjG+GhSXpKp/1zL dC7ouTEqRZLkkSCfGTQM0q0O4JQJTLb5N4gWdZxQd2UwGv3jCK7m5eWx3bTdhhXi
wl+LChF/GxW6INFxH0qo7ecFodoJPTNdTxFHhzdMBoXf2sXpR9nFMuvuRdlS6rKy 179DoSpYBCJF3msn0ROO6PxsccH0w/I6KMi3QNmsDlXhDr6XIBya8CU0lx9lp0pl
zytxZLwT8EF7f4x0BgxCDFD+/1WonSSWahgMWfmthrt9MSFH17ZMd3/aVkJwDxrk 5q62D26Ylr2fovd3qKKbwP6RaZarCzKLO6dWdyMqtUwVlX2FDCFd/SPGWc2TmuVS
61IBEgJI/DhGniNnzK171XiG7cpunwd7TV4RV1i8munPMi4Za1w4rwTzhnLzZ1/R vLb981Zm13AfYtNUSfusroDp3TEuvl7cwozg7p33SQhuCmgKnxMd0iXd5QQZjrR0
jK5AO5waKqecmrMFOhWrcekwn43Tx0PpOeAA9iDlfGPGrY0mCgKTmlccqgrFKtn6 t+y22dHrD1agkkoFMLz/+d+930J0sY4odG/HbL2Bv8ZelVUjA8XSFoGBEA+rfQCg
sjNRsRQ8/77cBRbX8Acrc4wG1814ggLMp1RxRgoHLnzIz0tSbay6eE/TuUMqRalQ DGmLh5a+/yfzxCEKWVLqmwHWbSkub8bXdl6EKEyaO9qo1KCLAf3tArQx45sqw8bK
HAurDKHOJEjS3Kv5SKli0MzsTwGxyoycF6er76CYiIo+n1CBBRrIg/iDaLkKV4TK 8AYq2mrNIiMDhHub+XEEC0Aw2lZkJOrwwMEsTcZWfBvj56MdRNXuZMvPdarTbnDx
E56rxVfVKmN1yg5lNYTg+F7DDudY4/R6RGmORi9dsmgGS/qeKcX/ggdXrgt1Hd07 zzxatqIwfvpOy/S2Poyrc6GuprbZCM6N+cDLdWQqAHVwAlx77NhiJ6s3vUnE3vB7
0xOQmR1rdKnmNoqJXoYhSmMHvCRBc1Yf4xkfvOsE8LQoG91lpucsWjAJM6FnHZRU aHgmXU+a8uPA64tKKaRNQJ31f7viCkWJXEbbEhVTzCvFcoqbKPPMm9w7nO8PMUTu
TlOXa/Z3DDtbr17arJdFtOSsaYodhZcG42diamhbMvKyoYYTwwXubFKOZCQplrin BmwSFEKhd3BDKZavqTHKi66fF3A5ALFYAkMw/AlvinMitb9s+7WlWQrdvSFkqHsY
343cmbhpGfIyhSMerWOsULDffhizfkH8cyXjb2bJZk1zX8/CUtPegAjv0L0zdtv+ wNQ1ankleYd24/8ZllvsQpleLMepDSxP6zUMpXSHbTKp5MZeoCaaY1RCkg7aOduz
6A8UZqGDSbzzGuksUtcNLpnaQeDoLm2GlF8r6JCGRt/31ROI2Eqf71hve55s2DE1 brnD7lRAfLp0H72nxVgC7n6VjidOSruF7k9WIN9VVbP0ZVL/QtkKRWd/hEmtMNaH
whdv+YxmphNgnCn095p8gnOZMmYz2tQMEtslKr+TmYWNxSoB9MCtTDAbtRNxkfnn ELg2ekdm3zvdBuvtr0jNiCxbhTr3j5OWQkT/BjZxHpZfA14XEROJC2Slo3PxUwBH
rjZxe2vHNapJ6VmIfDDuyNxz3323Z9sAzLkqGAe83Zx7XLpXjs0HUaG2EQnMffT8 0lE0cICWTeaeYcCX8ofawN+t1Qa6UD0sLl2670Kc7pozkJM4ul19rGA2KsHX89gE
Frfr9ptczfav1tkmFQMBmCL5xS4/1gkQyNwB2wy8Kdez0T6Oxm31D63HgwKT9pmE CaB1CkhFCqZhPbqX9yonv9XZtLb8Of8rBNVd/2QKN4/tOXcMYshzakSfSSIsyxxt
6EGnxUOBvNk3MEeiaC10plR3cl2PxANqfbtwPuor/a2IQq2zABnjaPgrQn1zexB5 QgMPRfz0nJTtP7v8ZbwIO+ayGoUeH7aYKhQ6Ku3qW9XuYiy+oMTIOToCSddnEI5t
0ncTjv3OcQLAH0di7V0vKpTIQpUL8QM+Sor5YRSO36CgJxVrS7aKo8W0QRSUwgy9 JNuPkT9kzA9stkRbFV5kBvrv5LWprWDXdA/wyAWG7txncWj6UzGlP8C3KhtMHLHv
PGEHu3tagqs05ryIcyU0KaO3KJzkGA/in/OGtm2x3/lFogsvTajleIDcqO6rHYGV CiOXrE8UJdNNeT52dYI9slg+tzcCfz3sqMr9zXratvT6JMzrQZqCSis8vIx18TIK
JYtXn8drG31cbmTtak+N/VfmAVpQ6PJG8b3YevW1W1ySxriTm4jGMvtunDtreyEB N5yDWHDFUOeNpo7aRqd5goW3qProwfZDjBXiqE4J+AJ5wc73PuftHt2l00zvLDWs
MXzSeWhtWot6IBWDMNqh9JIghmG+gwI1xD2AK1BR9ifSgjQ8ZA8mc2C2kinka9wl SFIRvXbavNBA7GxpVtN8Qxmk6Lm0u0pBiastndowgAI5OIQVuwoA21vXyC5n9pMd
Sl7/9/rdsQQRJs7inNUvJ8W4eY62ILlRyAe0xaUlo08JUhlK3Xf3LWD4frRfHoBx bPJsmiPyme62OkCWmAjBNDLNVViwKMH8BxmLKJxX+6ysNsn0YY1+9YfI/zC3j4jM
hCxfOAnlSzaRksatd0N72LiVLIL864peScyMpvS1EaE1aUGhfnFemb5wXIewyY1g OYsK1c0NvFIv5aUxRQZLTJJt9C299jGNvdAJsfdp4LHejzZUjnx3nguz/l6RI1Vb
Hj6bKTQlt0iB+aVj1EWSfGrZ8sshWB91dBNCssu0q+DHHzAX1wkE0i8eNlLlFcmm vjQ1qDRPhkgErGXSHsCoCt+z5Y6mq17JWEX/FiXBWQbfSGoG/ZvoOqiBybCQ3HNl
aDReRJSS+7qAVGdksEyzE+IGAzbXnYKyWudpdB/WwR+6kDEKsqFv52z0i0JH83Tj o9QM1sNQ5fUZDh0TgwkJB91rZXPwi828RklMW8VZszZir5gziTnndhw0ADLCZZ6z
QvinHcyh3nLfXf+GV9LYjLhZEOkHm8diHgYdRMsY2d21jd0q6Eo7hiQzF3pSutj2 nA0vZAI7sjoEeIgiJq3egrsSLq2ZQRQsh5QF+Xo2QktleGvPrtMv//ZyGz4l59yc
GxDya0+rDK8LP9LboYOUTyJaNZPcqlTrQjQQls55kTnHinImYgiT91w6GhFS4GU4 wX/7DtABurFhVs3KdYohcqXk2v5jJCMs+j9YDn6540QR6yXcbifp9ySqhm/PeH91
E3KSIsYzBo64HjHl0vLwcfJ6ghvUMu4cTW1z1L0+ieKqiajIMuvQmIxhS9fO2qVg UuL16YKxoV6QBZIGE0vjdUitGKNsS+H4ibD/0ZHYG+VcyL90eIrBq61CjfIO79O0
FbsihnJKq/EbeU7uMGq/3FJWJk0D0G8SiJsgP85mbY90qePW3CvnoRnH6PemYCeF L9+G4gKB91stXwtpqZWXTrlzrnjloZOPhqyQN/bs/liWQ6qy0a6Cd6nbWc141An1
T3qJMPFgT2ncLhIrC5cR7F27DCU/CH1jJW4GRx7PeNBeLErWpDghzeJS5IJFW5q8 zEiOihbwLJ4ziCut+bq5lwyw6z/wWEhaVNnYspEEBr2URLMHbnBceS6zXoePT0ur
RIw/HJaLd6TmPNnjQ7XXpU6J519EHRmFDnANXooLDFnwDqam0sokdg9ix4yQYw+e 9mQQLitmtlANlJ93vBDPhCaEjkK1v5J7MmIHQzyLSQGuLdXwz50piJukWru3aNax
jh3mOQJ5lwtccSFpcgGvzApA+xd62//qFixqe0zoq9ThEvPB9wKQe8aAtCsDxrvw skloghJYeTMILEcGAszvyVtcvPqkrJnZXx4Qp7Luj5HK9THr78v3T4nWzirfqxPZ
PKLbsdy9OdqM1h3TWh+ioWZJb69LRA9MoArAZ8ntpHluQ1amL1wiV8wJReXD4kua x70xRyhsC2lLcIrJ+3jkXj44edIqdh3Wvi30L2x2iUFyZ0ojQJQDo/+5b+p9k36L
fGbf+S1wnUlH4lTkJa0ApTIM0OsWzYFb2F8VDdgvfmtCSYlbS37Qy4+TKJFNtMEA Dk8ktpeIa/BE3NsfcFaWn9bvRkQ6UAQcNn1zmkavfw5TLI4C1PnD/WUpPHZdhzNV
FQyLUmAlgCdgAiBLVrrV9uDYeRnPVUShlsyZCwBUm92cjDiQkSWhDjro7NQTBMfo K87CsUawxjEg0uCCaViShF6bD9mOWQxE3SM9yNizjTmotF6KrgkT16y/qZ17KGQM
I4A+5OhaX61eNJYFqXv0KWBTGjRnW/dhAilNlc0QWKO+p4mwtTUlwVe0EMb3naxh hJ5PraGu9jvg+L/MrQpr91eyJaeh9JFl9dM/SPM0mXo5q813bdMmqD4cc3YWCLee
9ioJUHlwkcfJWBQAVAR/pbslzlpND8wE8NnH5P6z0H95ft3Q6v+JYD2zdhTTfTlw dHtmaKJ08KD1cJqHBz0DRLVV+zH00BMoYt5HZ5DmHFU1zhDekWZLhilbyWt8+z1E
X/YlQuf14Vuey6B9bnAPHKh2zE5x53MwVL0OvnfVnw== bzsoEAfZvyfvF7fJuxQ/HhYdR6TX5H+aNzZZivVc6g==
-----END ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY-----

104
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/own/idp-pem-signer/keystore.pem
View File

@ -1,56 +1,56 @@
-----BEGIN ENCRYPTED PRIVATE KEY----- -----BEGIN ENCRYPTED PRIVATE KEY-----
MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQUvdFHAj0YggoFr07l MIIJqzBVBgkqhkiG9w0BBQ0wSDAnBgkqhkiG9w0BBQwwGgQU95KG57RacAYBmkeQ
OCEjWZAMT1oCAggAMB0GCWCGSAFlAwQBKgQQc0LHn1pUPI8PXXos61VpwgSCCVBh DIe1bZS0sbkCAggAMB0GCWCGSAFlAwQBKgQQyxdAya9Sd4oHLO1pzVWcYASCCVDT
wA/Ghkde2sb3r+cGG6k7iyM3UWPWu0f0Ac+i4uoKoQhGWlbsMVj/GRgDCcfr5D+C ozdXT3vjyqMzza4QKaMD4ywSAzGhQRM/TnxU5JbRLNMpdtq76Mfet2pv++UUjcof
2DOvjttdX17UIbEpSC8qbUsplrlSnZGZrizQN5oS7iKNegFQENUpj7uNjZ7ASJy3 16EsdOOpDQdxdzQWmwGUNwjkX5YyWTaAefV8l9n6Bp8LV0XabS9We3g5Jr1KjuzP
ZOIOsCvuNau+7teDrlIfcUe/A7M9Pm+ZkVFhCDEys1igRb9Sv0EBwQ6aYeei2BtF O/xJgB2o6BcD/WRPeOaANSGoyWce4rCkpDwqxrp+tY9EK19SoCZG9Zy2hnPPH2Hc
KbnVuEJTi38uGj1VB1E6z8YswlqRIPjcs2UnOUuQ3GBMDLnd4hYGvYOs6Sh8p3kh QgtgCAzqaXIp49KIXHn/Uo532lIz3WqkkhzVakwgAKLKIvc/SwgP0eSXLvPjeJYS
ELP/vZ7zNtSdKVjmsTLyk7BVFkOI5sdBS6igon1aqDqTsY3POgLoqtqi3fF4BKIZ L8DngPP0YD7IPgIs7WmMNNE7or69e7mO0miUOl7xStNHzHpLmtLNbYI7Pk6NLT7N
mhsU7CfF++AutxHaDWXj+0qLcKkA3SSnYdKOJmOBeBEnqqFv5SQ2YZe/DCetfhjS kWfh2+E21R7llsW57boMACXVr7N3CHOlZQhUNViyjPayo1njVnp6gGzuIxluhHJY
SpY4aST2aCfSAWzK6Amo2/TH7bLqgqwqs+RICcQLpOVD9OLSDX+7vqqo+xWzdONw CL070oqBeEYVfvE07HQ4Qd0BL5c02pdrKjdzBYyLwzSNKn2RzgS2R/XtEqdmOUo+
pm+l/x/9NEgTSEwZv7gJxPg8omBub7HR/SHR7BSb8dsld8wUdgNFeixY6NXTLxHv iuRngv9D1UPSI2xlFhv84778ktEeSf8l1nLltqhPJAmJUjSAcu/zjN4Q+HXqMRaF
92HKR6Cw5vFd0OaDGlQL1ay3UAc2SPNE2/0oHEAbwoRPKcNhhHGXl8skhuKHgupp IocDV4I7CaXDc2E0YdU8uHuzzUHLflJ2OZwU5N7tkoVOtAYHKUwCP4J/zpLSe2V2
6gWRpsQeKechQCysP/wRMm7v0przBCUm+PSUpbT5aV3j+iQYXGdme9E01TaRaKKb MIh40IVJK4gzb+iyBiOnsnKKQCKMPbS4lH8zC2S486MgjgbhlZeFg0nOF955c61l
BhiuyzDBPwXeUktBpvpq7d/pOp3eTbF8cbXXDP+DqRl6KcHK5wB+wEavqVo06RGZ Sb4MBrexU4s1TUg/fDpYt6jPZoKivN72jzi60kV43gBFHmP3X4SRAUQ4Y3h5NFF8
NtdHzOJTT1V0cUMobsI7hC0TcB0YeeZBRX66tMIrjCl4QuS2nv8Kn0oz2nZ8htfm h2p4wvYRsYEexjJU/+WJG4Yi1wSi3oEqD161a6vPOsKBLBdLRo1vgnQdGFx/k83X
5M6cwBd/NymfGIEI2RR53fv5dN917WsagY5n0lQzNV4VAK1WrxfxtbUuQVKK5S02 vjPlI2eEUMPCntNBbrTy8eUSJz/0OH2phztZpHuh5cfy4ErUi19d9ywZUlhurGvX
zqGxriMQ9CA1tU86Ec0Gk4mbiEwExArD1YprHl0p8HhEV34J9VjG+GhSXpKp/1zL dC7ouTEqRZLkkSCfGTQM0q0O4JQJTLb5N4gWdZxQd2UwGv3jCK7m5eWx3bTdhhXi
wl+LChF/GxW6INFxH0qo7ecFodoJPTNdTxFHhzdMBoXf2sXpR9nFMuvuRdlS6rKy 179DoSpYBCJF3msn0ROO6PxsccH0w/I6KMi3QNmsDlXhDr6XIBya8CU0lx9lp0pl
zytxZLwT8EF7f4x0BgxCDFD+/1WonSSWahgMWfmthrt9MSFH17ZMd3/aVkJwDxrk 5q62D26Ylr2fovd3qKKbwP6RaZarCzKLO6dWdyMqtUwVlX2FDCFd/SPGWc2TmuVS
61IBEgJI/DhGniNnzK171XiG7cpunwd7TV4RV1i8munPMi4Za1w4rwTzhnLzZ1/R vLb981Zm13AfYtNUSfusroDp3TEuvl7cwozg7p33SQhuCmgKnxMd0iXd5QQZjrR0
jK5AO5waKqecmrMFOhWrcekwn43Tx0PpOeAA9iDlfGPGrY0mCgKTmlccqgrFKtn6 t+y22dHrD1agkkoFMLz/+d+930J0sY4odG/HbL2Bv8ZelVUjA8XSFoGBEA+rfQCg
sjNRsRQ8/77cBRbX8Acrc4wG1814ggLMp1RxRgoHLnzIz0tSbay6eE/TuUMqRalQ DGmLh5a+/yfzxCEKWVLqmwHWbSkub8bXdl6EKEyaO9qo1KCLAf3tArQx45sqw8bK
HAurDKHOJEjS3Kv5SKli0MzsTwGxyoycF6er76CYiIo+n1CBBRrIg/iDaLkKV4TK 8AYq2mrNIiMDhHub+XEEC0Aw2lZkJOrwwMEsTcZWfBvj56MdRNXuZMvPdarTbnDx
E56rxVfVKmN1yg5lNYTg+F7DDudY4/R6RGmORi9dsmgGS/qeKcX/ggdXrgt1Hd07 zzxatqIwfvpOy/S2Poyrc6GuprbZCM6N+cDLdWQqAHVwAlx77NhiJ6s3vUnE3vB7
0xOQmR1rdKnmNoqJXoYhSmMHvCRBc1Yf4xkfvOsE8LQoG91lpucsWjAJM6FnHZRU aHgmXU+a8uPA64tKKaRNQJ31f7viCkWJXEbbEhVTzCvFcoqbKPPMm9w7nO8PMUTu
TlOXa/Z3DDtbr17arJdFtOSsaYodhZcG42diamhbMvKyoYYTwwXubFKOZCQplrin BmwSFEKhd3BDKZavqTHKi66fF3A5ALFYAkMw/AlvinMitb9s+7WlWQrdvSFkqHsY
343cmbhpGfIyhSMerWOsULDffhizfkH8cyXjb2bJZk1zX8/CUtPegAjv0L0zdtv+ wNQ1ankleYd24/8ZllvsQpleLMepDSxP6zUMpXSHbTKp5MZeoCaaY1RCkg7aOduz
6A8UZqGDSbzzGuksUtcNLpnaQeDoLm2GlF8r6JCGRt/31ROI2Eqf71hve55s2DE1 brnD7lRAfLp0H72nxVgC7n6VjidOSruF7k9WIN9VVbP0ZVL/QtkKRWd/hEmtMNaH
whdv+YxmphNgnCn095p8gnOZMmYz2tQMEtslKr+TmYWNxSoB9MCtTDAbtRNxkfnn ELg2ekdm3zvdBuvtr0jNiCxbhTr3j5OWQkT/BjZxHpZfA14XEROJC2Slo3PxUwBH
rjZxe2vHNapJ6VmIfDDuyNxz3323Z9sAzLkqGAe83Zx7XLpXjs0HUaG2EQnMffT8 0lE0cICWTeaeYcCX8ofawN+t1Qa6UD0sLl2670Kc7pozkJM4ul19rGA2KsHX89gE
Frfr9ptczfav1tkmFQMBmCL5xS4/1gkQyNwB2wy8Kdez0T6Oxm31D63HgwKT9pmE CaB1CkhFCqZhPbqX9yonv9XZtLb8Of8rBNVd/2QKN4/tOXcMYshzakSfSSIsyxxt
6EGnxUOBvNk3MEeiaC10plR3cl2PxANqfbtwPuor/a2IQq2zABnjaPgrQn1zexB5 QgMPRfz0nJTtP7v8ZbwIO+ayGoUeH7aYKhQ6Ku3qW9XuYiy+oMTIOToCSddnEI5t
0ncTjv3OcQLAH0di7V0vKpTIQpUL8QM+Sor5YRSO36CgJxVrS7aKo8W0QRSUwgy9 JNuPkT9kzA9stkRbFV5kBvrv5LWprWDXdA/wyAWG7txncWj6UzGlP8C3KhtMHLHv
PGEHu3tagqs05ryIcyU0KaO3KJzkGA/in/OGtm2x3/lFogsvTajleIDcqO6rHYGV CiOXrE8UJdNNeT52dYI9slg+tzcCfz3sqMr9zXratvT6JMzrQZqCSis8vIx18TIK
JYtXn8drG31cbmTtak+N/VfmAVpQ6PJG8b3YevW1W1ySxriTm4jGMvtunDtreyEB N5yDWHDFUOeNpo7aRqd5goW3qProwfZDjBXiqE4J+AJ5wc73PuftHt2l00zvLDWs
MXzSeWhtWot6IBWDMNqh9JIghmG+gwI1xD2AK1BR9ifSgjQ8ZA8mc2C2kinka9wl SFIRvXbavNBA7GxpVtN8Qxmk6Lm0u0pBiastndowgAI5OIQVuwoA21vXyC5n9pMd
Sl7/9/rdsQQRJs7inNUvJ8W4eY62ILlRyAe0xaUlo08JUhlK3Xf3LWD4frRfHoBx bPJsmiPyme62OkCWmAjBNDLNVViwKMH8BxmLKJxX+6ysNsn0YY1+9YfI/zC3j4jM
hCxfOAnlSzaRksatd0N72LiVLIL864peScyMpvS1EaE1aUGhfnFemb5wXIewyY1g OYsK1c0NvFIv5aUxRQZLTJJt9C299jGNvdAJsfdp4LHejzZUjnx3nguz/l6RI1Vb
Hj6bKTQlt0iB+aVj1EWSfGrZ8sshWB91dBNCssu0q+DHHzAX1wkE0i8eNlLlFcmm vjQ1qDRPhkgErGXSHsCoCt+z5Y6mq17JWEX/FiXBWQbfSGoG/ZvoOqiBybCQ3HNl
aDReRJSS+7qAVGdksEyzE+IGAzbXnYKyWudpdB/WwR+6kDEKsqFv52z0i0JH83Tj o9QM1sNQ5fUZDh0TgwkJB91rZXPwi828RklMW8VZszZir5gziTnndhw0ADLCZZ6z
QvinHcyh3nLfXf+GV9LYjLhZEOkHm8diHgYdRMsY2d21jd0q6Eo7hiQzF3pSutj2 nA0vZAI7sjoEeIgiJq3egrsSLq2ZQRQsh5QF+Xo2QktleGvPrtMv//ZyGz4l59yc
GxDya0+rDK8LP9LboYOUTyJaNZPcqlTrQjQQls55kTnHinImYgiT91w6GhFS4GU4 wX/7DtABurFhVs3KdYohcqXk2v5jJCMs+j9YDn6540QR6yXcbifp9ySqhm/PeH91
E3KSIsYzBo64HjHl0vLwcfJ6ghvUMu4cTW1z1L0+ieKqiajIMuvQmIxhS9fO2qVg UuL16YKxoV6QBZIGE0vjdUitGKNsS+H4ibD/0ZHYG+VcyL90eIrBq61CjfIO79O0
FbsihnJKq/EbeU7uMGq/3FJWJk0D0G8SiJsgP85mbY90qePW3CvnoRnH6PemYCeF L9+G4gKB91stXwtpqZWXTrlzrnjloZOPhqyQN/bs/liWQ6qy0a6Cd6nbWc141An1
T3qJMPFgT2ncLhIrC5cR7F27DCU/CH1jJW4GRx7PeNBeLErWpDghzeJS5IJFW5q8 zEiOihbwLJ4ziCut+bq5lwyw6z/wWEhaVNnYspEEBr2URLMHbnBceS6zXoePT0ur
RIw/HJaLd6TmPNnjQ7XXpU6J519EHRmFDnANXooLDFnwDqam0sokdg9ix4yQYw+e 9mQQLitmtlANlJ93vBDPhCaEjkK1v5J7MmIHQzyLSQGuLdXwz50piJukWru3aNax
jh3mOQJ5lwtccSFpcgGvzApA+xd62//qFixqe0zoq9ThEvPB9wKQe8aAtCsDxrvw skloghJYeTMILEcGAszvyVtcvPqkrJnZXx4Qp7Luj5HK9THr78v3T4nWzirfqxPZ
PKLbsdy9OdqM1h3TWh+ioWZJb69LRA9MoArAZ8ntpHluQ1amL1wiV8wJReXD4kua x70xRyhsC2lLcIrJ+3jkXj44edIqdh3Wvi30L2x2iUFyZ0ojQJQDo/+5b+p9k36L
fGbf+S1wnUlH4lTkJa0ApTIM0OsWzYFb2F8VDdgvfmtCSYlbS37Qy4+TKJFNtMEA Dk8ktpeIa/BE3NsfcFaWn9bvRkQ6UAQcNn1zmkavfw5TLI4C1PnD/WUpPHZdhzNV
FQyLUmAlgCdgAiBLVrrV9uDYeRnPVUShlsyZCwBUm92cjDiQkSWhDjro7NQTBMfo K87CsUawxjEg0uCCaViShF6bD9mOWQxE3SM9yNizjTmotF6KrgkT16y/qZ17KGQM
I4A+5OhaX61eNJYFqXv0KWBTGjRnW/dhAilNlc0QWKO+p4mwtTUlwVe0EMb3naxh hJ5PraGu9jvg+L/MrQpr91eyJaeh9JFl9dM/SPM0mXo5q813bdMmqD4cc3YWCLee
9ioJUHlwkcfJWBQAVAR/pbslzlpND8wE8NnH5P6z0H95ft3Q6v+JYD2zdhTTfTlw dHtmaKJ08KD1cJqHBz0DRLVV+zH00BMoYt5HZ5DmHFU1zhDekWZLhilbyWt8+z1E
X/YlQuf14Vuey6B9bnAPHKh2zE5x53MwVL0OvnfVnw== bzsoEAfZvyfvF7fJuxQ/HhYdR6TX5H+aNzZZivVc6g==
-----END ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY-----
-----BEGIN CERTIFICATE----- -----BEGIN CERTIFICATE-----

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/trust/idp-pem-atb-enc/keypass
View File

@ -1,2 +0,0 @@
#!/bin/bash
echo 'password'

BIN
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/trust/idp-pem-atb-enc/truststore.jks
View File

Binary file not shown.

BIN
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/trust/idp-pem-atb-enc/truststore.p12
View File

Binary file not shown.

32
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/trust/idp-pem-atb-enc/truststore.pem
View File

@ -1,32 +0,0 @@
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

BIN
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/trust/idp-pem-atb/truststore.jks
View File

Binary file not shown.

BIN
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/keys/trust/idp-pem-atb/truststore.p12
View File

Binary file not shown.

139
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/nevisauth/default/conf/esauth4.xml
View File

@ -5,8 +5,6 @@
<SessionCoordinator sessionInitialInactivityTimeout="600" sessionInactivityTimeout="28800" sessionMaxLifetime="28800" sessionIdPreGenerate="true"> <SessionCoordinator sessionInitialInactivityTimeout="600" sessionInactivityTimeout="28800" sessionMaxLifetime="28800" sessionIdPreGenerate="true">
<!-- source: pattern://7022472ae407577ae604bbb8 --> <!-- source: pattern://7022472ae407577ae604bbb8 -->
<LocalSessionStore maxSessions="100000"/> <LocalSessionStore maxSessions="100000"/>
<!-- source: pattern://b7b59e97b3fd18bb60178573 -->
<RemoteSessionStore connectionUser="pipe:///var/opt/nevisauth/default/conf/credentials/dbUser" connectionPassword="pipe:///var/opt/nevisauth/default/conf/credentials/dbPassword" connectionUrl="jdbc:mariadb://mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat:3306/nevisauth?serverTimezone=UTC&amp;sslMode=disable&amp;autocommit=true" connectionMaxLifeTime="1800000" connectionMaxIdleTime="600000" connectionMinPoolSize="10" connectionMaxPoolSize="10" connectionAutomaticDbSchemaSetup="false" storeUnauthenticatedSessions="true"/>
<!-- source: pattern://7022472ae407577ae604bbb8 --> <!-- source: pattern://7022472ae407577ae604bbb8 -->
<TokenAssembler name="DefaultTokenAssembler"> <TokenAssembler name="DefaultTokenAssembler">
<Selector default="true"/> <Selector default="true"/>
@ -134,11 +132,6 @@
<!-- source: pattern://8dbec5bb024707d73fca93ef --> <!-- source: pattern://8dbec5bb024707d73fca93ef -->
<KeyObject name="https://trustbroker-idp.agov-w.azure.adnovum.net" certificate="/var/opt/keys/trust/idp-pem-atb/truststore.jks"/> <KeyObject name="https://trustbroker-idp.agov-w.azure.adnovum.net" certificate="/var/opt/keys/trust/idp-pem-atb/truststore.jks"/>
</KeyStore> </KeyStore>
<!-- source: pattern://b09a3092a59797b317c06ae4 -->
<KeyStore name="EncryptionKeys">
<!-- source: pattern://b09a3092a59797b317c06ae4 -->
<KeyObject name="DefaultEncryptionKey" certificate="/var/opt/keys/trust/idp-pem-atb-enc/truststore.jks"/>
</KeyStore>
<!-- source: pattern://cb8c63274fe346280de0ffd5 --> <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<KeyStore name="Auth_Realm_Mobile_FIDO_UAFKeyStore"> <KeyStore name="Auth_Realm_Mobile_FIDO_UAFKeyStore">
<!-- source: pattern://cb8c63274fe346280de0ffd5 --> <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
@ -157,8 +150,8 @@
<KeyObject name="internal_tls_Truststore" certificate="/var/opt/keys/trust/env-ca/truststore.jks"/> <KeyObject name="internal_tls_Truststore" certificate="/var/opt/keys/trust/env-ca/truststore.jks"/>
</KeyStore> </KeyStore>
</SessionCoordinator> </SessionCoordinator>
<!-- source: pattern://b7b59e97b3fd18bb60178573 --> <!-- source: pattern://7022472ae407577ae604bbb8 -->
<RemoteOutOfContextDataStore connectionUser="pipe:///var/opt/nevisauth/default/conf/credentials/dbUser" connectionPassword="pipe:///var/opt/nevisauth/default/conf/credentials/dbPassword" connectionUrl="jdbc:mariadb://mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat:3306/nevisauth?serverTimezone=UTC&amp;sslMode=disable&amp;autocommit=true" connectionMaxLifeTime="1800000" connectionMaxIdleTime="600000" connectionMinPoolSize="10" connectionMaxPoolSize="10" connectionAutomaticDbSchemaSetup="false"/> <LocalOutOfContextDataStore reaperPeriod="60"/>
<!-- source: pattern://204c22beaccdfd22727af378, pattern://06aeae2d799e492f5580d03b, pattern://7022472ae407577ae604bbb8, pattern://7022472ae407577ae604bbb8, pattern://9a8294b080ea769d22924af0, pattern://f393012a278e525956a362d3, pattern://c686c1bdd5355351f7f98cc8, pattern://7fb39bfd6c34685866a22180, pattern://b8bdab6e4634a1d81f20e5bb, pattern://cb8c63274fe346280de0ffd5, pattern://9a1d3c6052019748d3510261, pattern://ae023be7e097522c74e31d17, pattern://81ae3547acc02160f787a546, pattern://0327ca909dfcaf2d332da104, pattern://584964c837512845d7940809, pattern://e0fda9336be9c69dafc9b69e, pattern://7022472ae407577ae604bbb8, pattern://cb8c63274fe346280de0ffd5, pattern://204c22beaccdfd22727af378, pattern://06aeae2d799e492f5580d03b, pattern://7022472ae407577ae604bbb8 --> <!-- source: pattern://204c22beaccdfd22727af378, pattern://06aeae2d799e492f5580d03b, pattern://7022472ae407577ae604bbb8, pattern://7022472ae407577ae604bbb8, pattern://9a8294b080ea769d22924af0, pattern://f393012a278e525956a362d3, pattern://c686c1bdd5355351f7f98cc8, pattern://7fb39bfd6c34685866a22180, pattern://b8bdab6e4634a1d81f20e5bb, pattern://cb8c63274fe346280de0ffd5, pattern://9a1d3c6052019748d3510261, pattern://ae023be7e097522c74e31d17, pattern://81ae3547acc02160f787a546, pattern://0327ca909dfcaf2d332da104, pattern://584964c837512845d7940809, pattern://e0fda9336be9c69dafc9b69e, pattern://7022472ae407577ae604bbb8, pattern://cb8c63274fe346280de0ffd5, pattern://204c22beaccdfd22727af378, pattern://06aeae2d799e492f5580d03b, pattern://7022472ae407577ae604bbb8 -->
<AuthEngine useLiteralDictionary="true" literalDictionaryLanguages="en,de,fr,it" inputLanguageCookie="LANG" compatLevel="none" addAutheLevelToSecRoles="true" classPath="/var/opt/nevisauth/default/plugin:/opt/nevisidmcl/nevisauth/lib:/opt/nevisfidocl/nevisauth/lib:/opt/nevisauth/plugin" propagateSession="false"> <AuthEngine useLiteralDictionary="true" literalDictionaryLanguages="en,de,fr,it" inputLanguageCookie="LANG" compatLevel="none" addAutheLevelToSecRoles="true" classPath="/var/opt/nevisauth/default/plugin:/opt/nevisidmcl/nevisauth/lib:/opt/nevisfidocl/nevisauth/lib:/opt/nevisauth/plugin" propagateSession="false">
<!-- source: pattern://4fcfadb4a5c946ead7e6e995 --> <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
@ -431,8 +424,6 @@
<!-- source: pattern://73efd00d67082ff1eb927922 --> <!-- source: pattern://73efd00d67082ff1eb927922 -->
<ResultCond name="main" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP"/> <ResultCond name="main" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP"/>
<!-- source: pattern://73efd00d67082ff1eb927922 --> <!-- source: pattern://73efd00d67082ff1eb927922 -->
<ResultCond name="main_secure" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC"/>
<!-- source: pattern://73efd00d67082ff1eb927922 -->
<Response value="AUTH_CONTINUE"> <Response value="AUTH_CONTINUE">
<!-- source: pattern://73efd00d67082ff1eb927922 --> <!-- source: pattern://73efd00d67082ff1eb927922 -->
<Gui name="saml_dispatcher" label="title.saml.failed"> <Gui name="saml_dispatcher" label="title.saml.failed">
@ -860,10 +851,6 @@
<!-- source: pattern://92cb6d5256008a32f12ceb93 --> <!-- source: pattern://92cb6d5256008a32f12ceb93 -->
<property name="logoutTrigger" value="#{request['currentResource'].contains('logout') || inargs.containsKey('logout') || inargs.containsKey('SAMLLogout')}"/> <property name="logoutTrigger" value="#{request['currentResource'].contains('logout') || inargs.containsKey('logout') || inargs.containsKey('SAMLLogout')}"/>
<!-- source: pattern://92cb6d5256008a32f12ceb93 --> <!-- source: pattern://92cb6d5256008a32f12ceb93 -->
<property name="in.verify" value="Assertion, AuthnRequest, ArtifactResolve, ArtifactResponse"/>
<!-- source: pattern://92cb6d5256008a32f12ceb93 -->
<property name="in.prospectVerification" value="ArtifactResolve"/>
<!-- source: pattern://92cb6d5256008a32f12ceb93 -->
<property name="out.binding" value="http-post"/> <property name="out.binding" value="http-post"/>
<!-- source: pattern://92cb6d5256008a32f12ceb93 --> <!-- source: pattern://92cb6d5256008a32f12ceb93 -->
<property name="out.post.relayStateEncoding" value="HTML"/> <property name="out.post.relayStateEncoding" value="HTML"/>
@ -950,19 +937,6 @@
<!-- source: pattern://92cb6d5256008a32f12ceb93 --> <!-- source: pattern://92cb6d5256008a32f12ceb93 -->
<property name="out.attribute.http://schemas.agov.ch/ws/2025/07/identity/claims/op/conversationId" value="${inctx:connection.HttpHeader.traceparent:^([0-9a-f]+)-([0-9a-f]+)-([0-9a-f]+)-([0-9a-f]+)$:$2}"/> <property name="out.attribute.http://schemas.agov.ch/ws/2025/07/identity/claims/op/conversationId" value="${inctx:connection.HttpHeader.traceparent:^([0-9a-f]+)-([0-9a-f]+)-([0-9a-f]+)-([0-9a-f]+)$:$2}"/>
</AuthState> </AuthState>
<AuthState name="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC" class="ch.nevis.esauth.auth.states.standard.ConditionalDispatcherState" final="false" resumeState="false">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="default" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC_post"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="useArtifact" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC_artifact"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<Response value="AUTH_ERROR">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<Gui name="AuthErrorDialog"/>
</Response>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="condition:useArtifact" value="${sess:agov.idp.use.artifact:^true$}"/>
</AuthState>
<AuthState name="Auth_Realm_Main_IDP_ReturnTimeoutButKeepSession" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false" resumeState="true"> <AuthState name="Auth_Realm_Main_IDP_ReturnTimeoutButKeepSession" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false" resumeState="true">
<!-- source: pattern://826166d230a6a4849f2837ae --> <!-- source: pattern://826166d230a6a4849f2837ae -->
<Response value="AUTH_CONTINUE"> <Response value="AUTH_CONTINUE">
@ -1218,100 +1192,6 @@
<Arg name="ch.nevis.isiweb4.response.status" value="403"/> <Arg name="ch.nevis.isiweb4.response.status" value="403"/>
</Response> </Response>
</AuthState> </AuthState>
<AuthState name="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC_post" class="ch.nevis.esauth.auth.states.saml.IdentityProviderState" final="false" resumeState="true">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="IDP-initiated-ConcurrentLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Concurrent_Logout"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="IDP-initiated-SingleLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Prepare_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="LogoutCompleted" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Logout_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="LogoutFailed" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Logout_Fail"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="SP-initiated-ConcurrentLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Concurrent_Logout"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="SP-initiated-SingleLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Prepare_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="authenticate:IDP-initiated-SSO" next="Auth_Realm_Main_IDP_RequestedRoleLevel"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="authenticate:SP-initiated-SSO" next="Auth_Realm_Main_IDP_RequestedRoleLevel"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="invalidAssertionConsumerUrl" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="ok" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Prepare_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="stepup:IDP-initiated-SSO" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Selector"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="stepup:SP-initiated-SSO" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Selector"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<Response value="AUTH_ERROR">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<Gui name="saml_idp" label="title.saml.failed">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<GuiElem name="lasterror" type="error" label="error.saml.failed"/>
</Gui>
</Response>
<propertyRef name="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2SEC/"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.binding" value="http-post"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.post.relayStateEncoding" value="HTML"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.encrypt" value="none"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.encrypt.keystoreref" value="EncryptionKeys"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.encrypt.keyobjectref" value="DefaultEncryptionKey"/>
</AuthState>
<AuthState name="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC_artifact" class="ch.nevis.esauth.auth.states.saml.IdentityProviderState" final="false" resumeState="true">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="IDP-initiated-ConcurrentLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Concurrent_Logout"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="IDP-initiated-SingleLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Prepare_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="LogoutCompleted" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Logout_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="LogoutFailed" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Logout_Fail"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="SP-initiated-ConcurrentLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Concurrent_Logout"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="SP-initiated-SingleLogout" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Prepare_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="authenticate:IDP-initiated-SSO" next="Auth_Realm_Main_IDP_RequestedRoleLevel"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="authenticate:SP-initiated-SSO" next="Auth_Realm_Main_IDP_RequestedRoleLevel"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="invalidAssertionConsumerUrl" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP_SEC"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="ok" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Prepare_Done"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="stepup:IDP-initiated-SSO" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Selector"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<ResultCond name="stepup:SP-initiated-SSO" next="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_Selector"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<Response value="AUTH_ERROR">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<Gui name="saml_idp" label="title.saml.failed">
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<GuiElem name="lasterror" type="error" label="error.saml.failed"/>
</Gui>
</Response>
<propertyRef name="Auth_Realm_Main_IDP_Auth_Realm_Main_IDP_Custom_AGOV_IDP"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2SEC/"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.binding" value="http-artifact"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.post.relayStateEncoding" value="HTML"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.encrypt" value="none"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.encrypt.keystoreref" value="EncryptionKeys"/>
<!-- source: pattern://bb9e7806a04578e0ad468829 -->
<property name="out.encrypt.keyobjectref" value="DefaultEncryptionKey"/>
</AuthState>
<AuthState name="Auth_Realm_Main_IDP_Fido_Email_Verify" class="ch.nevis.idm.authstate.IdmUserVerifyState" final="false" resumeState="false"> <AuthState name="Auth_Realm_Main_IDP_Fido_Email_Verify" class="ch.nevis.idm.authstate.IdmUserVerifyState" final="false" resumeState="false">
<!-- source: pattern://7fb39bfd6c34685866a22180 --> <!-- source: pattern://7fb39bfd6c34685866a22180 -->
<ResultCond name="clientNotFound" next="Auth_Realm_Main_IDP_AuthnFailed_Client_NotFound"/> <ResultCond name="clientNotFound" next="Auth_Realm_Main_IDP_AuthnFailed_Client_NotFound"/>
@ -3570,21 +3450,6 @@
<!-- source: pattern://ab5a82719993921822e95751 --> <!-- source: pattern://ab5a82719993921822e95751 -->
<property name="out.keyobjectref" value="Signer_IDP_AGOV"/> <property name="out.keyobjectref" value="Signer_IDP_AGOV"/>
</WebService> </WebService>
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<WebService name="IDP_AGOV_SEC_ARS" class="ch.nevis.esauth.auth.adapter.saml.ArtifactResolutionService" uri="/nevisauth/services/ars/sec" SSODomain="Auth_Realm_Main_IDP">
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<property name="issuer" value="https://auth.agov-w.azure.adnovum.net/SAML2SEC/"/>
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<property name="out.keystoreref" value="Store_IDP_AGOV"/>
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<property name="out.keyobjectref" value="Signer_IDP_AGOV"/>
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<property name="in.keystoreref" value="Store_IDP_AGOV"/>
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<property name="in.verify" value="ArtifactResolve"/>
<!-- source: pattern://14efdcb489f3f295fcbdf811 -->
<property name="in.prospectVerification" value=""/>
</WebService>
<!-- source: pattern://7022472ae407577ae604bbb8 --> <!-- source: pattern://7022472ae407577ae604bbb8 -->
<RESTService name="ManagementService" class="ch.nevis.esauth.rest.service.session.ManagementService"/> <RESTService name="ManagementService" class="ch.nevis.esauth.rest.service.session.ManagementService"/>
</esauth-server> </esauth-server>

109
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/nevisauth/default/conf/idp_dispatcher.groovy
View File

@ -23,72 +23,54 @@ def redirect(String url) {
outargs.put('nevis.transfer.destination', url) outargs.put('nevis.transfer.destination', url)
} }
String getNormalisedSamlMessage(String parameter) { /**
if (parameter == null) { * Extracts the content of the Issuer element from a parsed SAML message.
* The Issuer is optional according to SAML specification but we need it for dispatching.
*
* @param xml - as parsed by Groovy XmlSlurper
* @return text content of Issuer element converted or null
*/
String getIssuer(GPathResult xml) {
return xml.depthFirst().find { GPathResult node -> {
node.name().endsWith(":Issuer") || node.name().equalsIgnoreCase("Issuer")
}
}?.text()
}
String getIssuer(String value) {
if (value == null) {
return return
} }
String text String text
byte[] decoded byte[] decoded
def parser = new XmlSlurper()
// if parameter is raw xml then continue otherwise try to parse the base64 encoding // if value is raw xml then continue otherwise try to parse the base64 encoding
if (parameter.startsWith("<")) { if (value.startsWith("<")) {
text = new String(parameter) text = new String(value)
} }
else { else {
decoded = parameter.decodeBase64() decoded = value.decodeBase64()
text = new String(decoded) text = new String(decoded)
LOG.info("received SAML request $value")
} }
return text
}
// after decoded, if redirect binding, we need to parse string to xml
String getNodeText(GPathResult xml, String nodeName) { if (text.startsWith("<")) {
return xml.depthFirst().find { GPathResult node -> { LOG.debug("assuming POST/SOAP binding")
node.name().endsWith(":${nodeName}") || node.name().equalsIgnoreCase(nodeName) // plain String (POST/SOAP parameter)
} def xml = parser.parseText(text)
}?.text()?.trim() return getIssuer(xml)
}
String getAttribute(GPathResult xml, String attributeName) {
return xml.depthFirst().find { GPathResult node -> {
node.attributes().containsKey(attributeName)
}
}?.attributes()?.get(attributeName)
}
String getNodeText(String parameter, String nodeName) {
String samlMessage = getNormalisedSamlMessage(parameter)
if (samlMessage == null) {
return
} }
def parser = new XmlSlurper() else {
def xml = parser.parseText(samlMessage) LOG.debug("assuming redirect binding")
return getNodeText(xml, nodeName) // should be deflate encoded (query parameter)
} def is = new InflaterInputStream(new ByteArrayInputStream(decoded), new Inflater(true))
def xml = parser.parse(is)
String getAttribute(String parameter, String attributeName) { return getIssuer(xml)
String samlMessage = getNormalisedSamlMessage(parameter)
if (samlMessage == null) {
return
} }
def parser = new XmlSlurper()
def xml = parser.parseText(samlMessage)
return getAttribute(xml, attributeName)
} }
String getIssuer(String value) { def dispatchIssuer(i2s, String issuer) {
return getNodeText(value, 'Issuer')
}
String getAttributeConsumingServiceIndex(String value) {
return getAttribute(value, 'AttributeConsumingServiceIndex')
}
String getProtocolBinding(String value) {
return getAttribute(value, 'ProtocolBinding')
}
def dispatchIssuer(i2s, String issuer, boolean secureMode) {
def result = i2s.get(issuer) def result = i2s.get(issuer)
if (result == null) { if (result == null) {
LOG.info("No SP found for issuer '$issuer'. Hint: check SAML SP Connector patterns.") LOG.info("No SP found for issuer '$issuer'. Hint: check SAML SP Connector patterns.")
@ -98,33 +80,22 @@ def dispatchIssuer(i2s, String issuer, boolean secureMode) {
if(parameters.get('epdMode') == 'artifact' && result == 'epd'){ if(parameters.get('epdMode') == 'artifact' && result == 'epd'){
LOG.debug("EPD: Artifact mode") LOG.debug("EPD: Artifact mode")
result = result + "_artifact" result = result + "_artifact"
} else if (result == 'main' && secureMode) { }else{
LOG.debug("AGOV: Secure mode requested") LOG.debug("EPD: POST mode")
result = result + "_secure"
} }
response.setResult(result) response.setResult(result)
session.put('saml.inbound.issuer', issuer) session.put("saml.inbound.issuer", issuer)
session.put('saml.idp.result', result) // remember decision for sub-sequent requests without a SAML message session.put('saml.idp.result', result) // remember decision for sub-sequent requests without a SAML message
} }
def dispatchIssuer(i2s, String issuer) {
dispatchIssuer(i2s, issuer, false)
}
def dispatchMessage(i2s, String message) { def dispatchMessage(i2s, String message) {
def issuer = getIssuer(message) def issuer = getIssuer(message)
def secureMode = (getAttributeConsumingServiceIndex(message) == '10101')
def useArtifact = ('urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact' == getProtocolBinding(message))
LOG.info("secureMode requested: ${secureMode}")
if (issuer == null) { if (issuer == null) {
LOG.info("No issuer found in incoming SAML message. Giving up.") LOG.info("No issuer found in incoming SAML message. Giving up.")
} }
session.put('saml.inbound.issuer', issuer) session.put("saml.inbound.issuer", issuer)
session.put('agov.idp.use.artifact', '' + useArtifact) dispatchIssuer(i2s, issuer)
dispatchIssuer(i2s, issuer, secureMode)
} }
if (parameters.get('logoutConfirmation') == 'true' && "stepup" == request.getMethod()) { if (parameters.get('logoutConfirmation') == 'true' && "stepup" == request.getMethod()) {

6
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/auth/var/opt/nevisauth/default/conf/logging.yml
View File

@ -20,8 +20,6 @@ Configuration:
level: "DEBUG" level: "DEBUG"
- name: "AgovCaptcha" - name: "AgovCaptcha"
level: "DEBUG" level: "DEBUG"
- name: "ArtifactResolutionService"
level: "DEBUG"
- name: "AuthEngine" - name: "AuthEngine"
level: "INFO" level: "INFO"
- name: "AuthPerf" - name: "AuthPerf"
@ -29,10 +27,8 @@ Configuration:
- name: "IdmAuth" - name: "IdmAuth"
level: "DEBUG" level: "DEBUG"
- name: "OpTrace" - name: "OpTrace"
level: "INFO"
- name: "Recovery"
level: "DEBUG" level: "DEBUG"
- name: "Saml" - name: "Recovery"
level: "DEBUG" level: "DEBUG"
- name: "Script" - name: "Script"
level: "DEBUG" level: "DEBUG"

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido-uaf/etc/nevis/k8s-fido-uaf-instance-ca92034f995b39fde562293c.yaml
View File

@ -47,7 +47,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-484395a405f9f7123da379fa8df82e197d2dbd71" tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido-uaf" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido-uaf"
credentials: "git-credentials" credentials: "git-credentials"
database: database:

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido-uaf/var/opt/nevisfido/default/conf/nevisfido.yml
View File

@ -109,7 +109,7 @@ session-repository:
max-connection-idle-time: "600s" max-connection-idle-time: "600s"
credential-repository: credential-repository:
type: "nevisidm" type: "nevisidm"
client-id: "cfa9c9b9-119f-4dff-9bb8-86d7c0cf2720" client-id: 1000
user-attribute: "extId" user-attribute: "extId"
rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm" rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm"
keystore: "/var/opt/keys/own/fido-uaf-default-client-identity/keystore.p12" keystore: "/var/opt/keys/own/fido-uaf-default-client-identity/keystore.p12"

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido2/etc/nevis/k8s-nevisfido2-087f275433f3973a1421318f.yaml
View File

@ -47,7 +47,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-484395a405f9f7123da379fa8df82e197d2dbd71" tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido2" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido2"
credentials: "git-credentials" credentials: "git-credentials"
keystores: keystores:

2
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/fido2/var/opt/nevisfido/default/conf/nevisfido.yml
View File

@ -33,7 +33,7 @@ management:
enabled: true enabled: true
credential-repository: credential-repository:
type: "nevisidm" type: "nevisidm"
client-id: "cfa9c9b9-119f-4dff-9bb8-86d7c0cf2720" client-id: 1000
rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm" rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm"
keystore: "/var/opt/keys/own/fido2-default-client-identity/keystore.p12" keystore: "/var/opt/keys/own/fido2-default-client-identity/keystore.p12"
keystore-passphrase: "${exec:/var/opt/keys/own/fido2-default-client-identity/keypass}" keystore-passphrase: "${exec:/var/opt/keys/own/fido2-default-client-identity/keypass}"

26
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml
View File

@ -1,26 +0,0 @@
apiVersion: "operator.nevis-security.ch/v1"
kind: "NevisDatabase"
metadata:
name: "proxy-idp"
namespace: "adn-agov-nevisidm-01-uat"
labels:
deploymentTarget: "proxy-idp"
annotations:
projectKey: "DEFAULT-ADN-AGOV-PROJECT"
patternId: "699f0a21dd0e852f28d27e9d"
spec:
type: "NevisProxy"
databaseType: "MariaDB"
version: "8.2505.5"
url: "mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat"
port: 3306
database: "workproxy"
bootstrap: true
migrate: true
rootCredentials:
name: "root-mariadb-session-store"
namespace: "adn-agov-nevisidm-ob-01-uat"
podSecurity:
policy: "baseline"
automountServiceAccountToken: false
timeZone: "Europe/Zurich"

5
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/etc/nevis/k8s-nevisproxy-idp-0ceb05c56644a59d648c13b9.yaml
View File

@ -47,12 +47,9 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-0574c5a2098562d6585435194234bdb2b0cf0858" tag: "r-5e17b7ae74eadb8800587a4f4db74406a7e21e95"
dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp" dir: "DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp"
credentials: "git-credentials" credentials: "git-credentials"
database:
name: "proxy-idp"
requiredVersion: "8.2505.5"
keystores: keystores:
- "proxy-idp-notused-auth-realm-identity" - "proxy-idp-notused-auth-realm-identity"
- "proxy-idp-1f0702aaabef60a615abf41f" - "proxy-idp-1f0702aaabef60a615abf41f"

6
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/conf/log.properties
View File

@ -3,15 +3,15 @@ BC.Tracer.LogFile=pipe:///bin/sed -u -e "s/^/[navajo.log] /g" | /bin/egrep --lin
# source: pattern://2be125abf4a8be1a0ae5f007 # source: pattern://2be125abf4a8be1a0ae5f007
BC.Tracer.ThresholdBase=3 BC.Tracer.ThresholdBase=3
# source: pattern://2be125abf4a8be1a0ae5f007 # source: pattern://2be125abf4a8be1a0ae5f007
BC.Tracer.DebugProfile.IW4LuaFlt=3 BC.Tracer.DebugProfile.IW4LuaFlt=4
# source: pattern://2be125abf4a8be1a0ae5f007 # source: pattern://2be125abf4a8be1a0ae5f007
BC.Tracer.DebugProfile.IsiwebOp=3 BC.Tracer.DebugProfile.IsiwebOp=3
# source: pattern://2be125abf4a8be1a0ae5f007 # source: pattern://2be125abf4a8be1a0ae5f007
BC.Tracer.DebugProfile.NPMySQLSes=3 BC.Tracer.DebugProfile.NPMySQLSes=3
# source: pattern://2be125abf4a8be1a0ae5f007 # source: pattern://2be125abf4a8be1a0ae5f007
BC.Tracer.DebugProfile.NProxyOp=3 BC.Tracer.DebugProfile.NProxyOp=4
# source: pattern://2be125abf4a8be1a0ae5f007 # source: pattern://2be125abf4a8be1a0ae5f007
BC.Tracer.DebugProfile.NavajoOp=4 BC.Tracer.DebugProfile.NavajoOp=3
# source: pattern://0ceb05c56644a59d648c13b9 # source: pattern://0ceb05c56644a59d648c13b9
ch.nevis.nevisproxy.LocalLogFileName=/var/opt/nevisproxy/default/conf/conditionallog.properties ch.nevis.nevisproxy.LocalLogFileName=/var/opt/nevisproxy/default/conf/conditionallog.properties
# source: pattern://0ceb05c56644a59d648c13b9 # source: pattern://0ceb05c56644a59d648c13b9

102
DEFAULT-ADN-AGOV-PROJECT/DEFAULT-ADN-AGOV-INV/proxy-idp/var/opt/nevisproxy/default/host-auth.agov-w.azure.adnovum.net/WEB-INF/web.xml
View File

@ -1,11 +1,6 @@
<?xml version="1.0" encoding="UTF-8"?> <?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "/opt/nevisproxy/dtd/web-app_2_3.dtd"> <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "/opt/nevisproxy/dtd/web-app_2_3.dtd">
<web-app> <web-app>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<context-param>
<param-name>application-id</param-name>
<param-value>auth.agov-w.azure.adnovum.net</param-value>
</context-param>
<!-- source: pattern://06aeae2d799e492f5580d03b, pattern://4fcfadb4a5c946ead7e6e995, pattern://204c22beaccdfd22727af378 --> <!-- source: pattern://06aeae2d799e492f5580d03b, pattern://4fcfadb4a5c946ead7e6e995, pattern://204c22beaccdfd22727af378 -->
<context-param> <context-param>
<param-name>SectokenVerifierCert</param-name> <param-name>SectokenVerifierCert</param-name>
@ -864,7 +859,7 @@
<!-- source: pattern://4fcfadb4a5c946ead7e6e995 --> <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>MySQLSessionStoreServlet</param-value> <param-value>LocalSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://4fcfadb4a5c946ead7e6e995 --> <!-- source: pattern://4fcfadb4a5c946ead7e6e995 -->
<init-param> <init-param>
@ -909,7 +904,7 @@
<!-- source: pattern://cb8c63274fe346280de0ffd5 --> <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>MySQLSessionStoreServlet</param-value> <param-value>LocalSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://cb8c63274fe346280de0ffd5 --> <!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param> <init-param>
@ -954,7 +949,7 @@
<!-- source: pattern://204c22beaccdfd22727af378 --> <!-- source: pattern://204c22beaccdfd22727af378 -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>MySQLSessionStoreServlet</param-value> <param-value>LocalSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://204c22beaccdfd22727af378 --> <!-- source: pattern://204c22beaccdfd22727af378 -->
<init-param> <init-param>
@ -999,7 +994,7 @@
<!-- source: pattern://e0fda9336be9c69dafc9b69e --> <!-- source: pattern://e0fda9336be9c69dafc9b69e -->
<init-param> <init-param>
<param-name>Servlet</param-name> <param-name>Servlet</param-name>
<param-value>MySQLSessionStoreServlet</param-value> <param-value>LocalSessionStoreServlet</param-value>
</init-param> </init-param>
<!-- source: pattern://06aeae2d799e492f5580d03b --> <!-- source: pattern://06aeae2d799e492f5580d03b -->
<init-param> <init-param>
@ -1054,7 +1049,7 @@
<filter-mapping> <filter-mapping>
<filter-name>DefaultErrorFilter</filter-name> <filter-name>DefaultErrorFilter</filter-name>
<url-pattern>/*</url-pattern> <url-pattern>/*</url-pattern>
<exclude-url-regex>^/auth/fidouaf$|^/auth/fidouaf/authenticationresponse/.*$|^/nevisfido/devices/credentials/.*$|^/nevisfido/devices/oobOperations/.*$|^/nevisfido/status$|^/nevisfido/token/dispatch/registration$|^/nevisfido/token/dispatch/targets/.*$|^/nevisfido/token/redeem/authentication$|^/nevisfido/token/redeem/registration$|^/nevisfido/uaf/1.1/authentication$|^/nevisfido/uaf/1.1/authentication/.*$|^/nevisfido/uaf/1.1/facets$|^/nevisfido/uaf/1.1/registration/.*$|^/nevisfido/uaf/1.1/request/deregistration/.*$|^/oidc4vp/.*$|^/resource/utility/.*$</exclude-url-regex> <exclude-url-regex>^/oidc4vp/.*$|^/resource/utility/.*$</exclude-url-regex>
</filter-mapping> </filter-mapping>
<!-- source: pattern://ecf4381f4653b0aa9a69b417, pattern://ecf4381f4653b0aa9a69b417#filters --> <!-- source: pattern://ecf4381f4653b0aa9a69b417, pattern://ecf4381f4653b0aa9a69b417#filters -->
<filter-mapping> <filter-mapping>
@ -1641,6 +1636,27 @@
<!-- source: pattern://e0fda9336be9c69dafc9b69e, pattern://a6f6dc6affdc7c692ff857b9, pattern://decb9b3f88d430fb5c95f466 --> <!-- source: pattern://e0fda9336be9c69dafc9b69e, pattern://a6f6dc6affdc7c692ff857b9, pattern://decb9b3f88d430fb5c95f466 -->
<servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class> <servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class>
</servlet> </servlet>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<servlet>
<servlet-name>LocalSessionStoreServlet</servlet-name>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<servlet-class>ch::nevis::nevisproxy::servlet::cache::local::LocalSessionStoreServlet</servlet-class>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param>
<param-name>MaxInactiveInterval</param-name>
<param-value>600</param-value>
</init-param>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param>
<param-name>MaxLifetime</param-name>
<param-value>28800</param-value>
</init-param>
<!-- source: pattern://cb8c63274fe346280de0ffd5 -->
<init-param>
<param-name>MemorySize</param-name>
<param-value>512000000</param-value>
</init-param>
</servlet>
<!-- source: pattern://097929211988398a87bcbb0c --> <!-- source: pattern://097929211988398a87bcbb0c -->
<servlet> <servlet>
<servlet-name>LoginRenderer_nevisLogrend</servlet-name> <servlet-name>LoginRenderer_nevisLogrend</servlet-name>
@ -1657,72 +1673,6 @@
<param-value>remote:NevisLogrendConnector_nevisLogrend:/nevislogrend/index.vm?logrendresourcepath=/nevislogrend</param-value> <param-value>remote:NevisLogrendConnector_nevisLogrend:/nevislogrend/index.vm?logrendresourcepath=/nevislogrend</param-value>
</init-param> </init-param>
</servlet> </servlet>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<servlet>
<servlet-name>MySQLSessionStoreServlet</servlet-name>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<servlet-class>ch::nevis::nevisproxy::servlet::cache::mysql::MySQLSessionStoreServlet</servlet-class>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>AttributesTableName</param-name>
<param-value>attribute</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>ConfigurationsTableName</param-name>
<param-value>conf</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>ConnectString</param-name>
<param-value>//mariadb-session-store-service.adn-agov-nevisidm-ob-01-uat:3306/workproxy?connect_timeout=10&amp;ping_timeout=2</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>DisableDatabaseSchemaCheck</param-name>
<param-value>false</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>KeyToIdMapTableName</param-name>
<param-value>key_id_map</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>MaxConn</param-name>
<param-value>150</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>MaxLimitOnDelete</param-name>
<param-value>100</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>MinConn</param-name>
<param-value>10</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>Password</param-name>
<param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbPassword}</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>SessionsTableName</param-name>
<param-value>session</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>TimeOut</param-name>
<param-value>600</param-value>
</init-param>
<!-- source: pattern://699f0a21dd0e852f28d27e9d -->
<init-param>
<param-name>UserName</param-name>
<param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbUser}</param-value>
</init-param>
</servlet>
<!-- source: pattern://097929211988398a87bcbb0c --> <!-- source: pattern://097929211988398a87bcbb0c -->
<servlet> <servlet>
<servlet-name>NevisLogrendConnector_nevisLogrend</servlet-name> <servlet-name>NevisLogrendConnector_nevisLogrend</servlet-name>