From 78c304223b6bc4188c8ab371959370b8b65bd95c Mon Sep 17 00:00:00 2001 From: haburger Date: Wed, 4 Sep 2024 11:36:29 +0000 Subject: [PATCH] new configuration version --- ...-ob-fido-uaf-d990accd4fedae1acbc7109d.yaml | 2 +- .../opt/nevisfido/default/conf/logging.yml | 2 +- ...k8s-ob-fido2-a2d03bb46b87b90160dc83d7.yaml | 3 +-- ...signer-trust-a2d03bb46b87b90160dc83d7.yaml | 12 ------------ .../trust/ob-auth-signer-trust-store/keypass | 2 ++ .../ob-auth-signer-trust-store/truststore.jks | Bin 0 -> 814 bytes .../ob-auth-signer-trust-store/truststore.p12 | Bin 0 -> 1126 bytes .../ob-auth-signer-trust-store/truststore.pem | 18 ++++++++++++++++++ 8 files changed, 23 insertions(+), 16 deletions(-) delete mode 100644 DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-default-signer-trust-a2d03bb46b87b90160dc83d7.yaml create mode 100755 DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/keypass create mode 100644 DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/truststore.jks create mode 100644 DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/truststore.p12 create mode 100644 DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/truststore.pem diff --git a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/etc/nevis/k8s-ob-fido-uaf-d990accd4fedae1acbc7109d.yaml b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/etc/nevis/k8s-ob-fido-uaf-d990accd4fedae1acbc7109d.yaml index c63d2c1..3bd8c19 100644 --- a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/etc/nevis/k8s-ob-fido-uaf-d990accd4fedae1acbc7109d.yaml +++ b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/etc/nevis/k8s-ob-fido-uaf-d990accd4fedae1acbc7109d.yaml @@ -46,7 +46,7 @@ spec: podDisruptionBudget: maxUnavailable: "50%" git: - tag: "r-62ba771c7d6f685abc4f0f645fa618b05f78774f" + tag: "r-ead6f7b71788d3ff3620ae21ff304b9f3b94bb06" dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf" credentials: "git-credentials" database: diff --git a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/var/opt/nevisfido/default/conf/logging.yml b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/var/opt/nevisfido/default/conf/logging.yml index 2921500..82fd611 100644 --- a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/var/opt/nevisfido/default/conf/logging.yml +++ b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf/var/opt/nevisfido/default/conf/logging.yml @@ -19,7 +19,7 @@ Configuration: - name: "ch.nevis.auth.fido.api.uaf" level: "DEBUG" Root: - level: "DEBUG" + level: "WARN" additivity: "false" AppenderRef: - ref: "SERVER" diff --git a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-a2d03bb46b87b90160dc83d7.yaml b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-a2d03bb46b87b90160dc83d7.yaml index 72270d9..b290f8c 100644 --- a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-a2d03bb46b87b90160dc83d7.yaml +++ b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-a2d03bb46b87b90160dc83d7.yaml @@ -46,14 +46,13 @@ spec: podDisruptionBudget: maxUnavailable: "50%" git: - tag: "r-09485d8da5321619f5ae31edb1f81f4e9f3ad2d1" + tag: "r-ead6f7b71788d3ff3620ae21ff304b9f3b94bb06" dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2" credentials: "git-credentials" keystores: - "ob-fido2-default-identity" truststores: - "ob-fido2-agov-work-internal-trust-store" - - "ob-fido2-default-signer-trust" - "ob-fido2-default-tls-client-trust" podSecurity: policy: "baseline" diff --git a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-default-signer-trust-a2d03bb46b87b90160dc83d7.yaml b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-default-signer-trust-a2d03bb46b87b90160dc83d7.yaml deleted file mode 100644 index 38ea91c..0000000 --- a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/etc/nevis/k8s-ob-fido2-default-signer-trust-a2d03bb46b87b90160dc83d7.yaml +++ /dev/null @@ -1,12 +0,0 @@ -apiVersion: "operator.nevis-security.ch/v1" -kind: "NevisTrustStore" -metadata: - name: "ob-fido2-default-signer-trust" - namespace: "adn-agov-nevisidm-ob-01-uat" - labels: - deploymentTarget: "ob-fido2" - annotations: - projectKey: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT" - patternId: "a2d03bb46b87b90160dc83d7" -spec: - keystores: [] diff --git a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/keypass b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/keypass new file mode 100755 index 0000000..5b0d317 --- /dev/null +++ b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/keypass @@ -0,0 +1,2 @@ +#!/bin/bash +echo 'password' \ No newline at end of file diff --git a/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/truststore.jks b/DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2/var/opt/keys/trust/ob-auth-signer-trust-store/truststore.jks new file mode 100644 index 0000000000000000000000000000000000000000..309012b98c55e991a53f01bedf4f918eaee3d1e1 GIT binary patch literal 814 zcmezO_TO6u1_mY|W(3n5X_+bcx}}L}K!J%f_Bls0utw;a8dw6=yftWIdI`k+3z(T0 znV1A>kKg@zLsrxNXXAz2OE|iw7;v$1XtjBqvt?msGLSG7GZ0~84rO5$<}FUmNh{7w z&r40wO-?kB6X!KDF)%eSH8eFfFt&&Sa)BH;*C4`>+kg|KlTDb(*~5?rXe^M!AO5)liUvi%|a1JZbx9@oR z{}tc5rJOgacy4NiOxDvWIWyx(-epzo<0t%-A0D=tW~)4J)$M7omn8p=J@(3JM%cBQ zeLvQ{FFMHQdP-I~sku|#jDbmQ62~@$hgR8X{H1I14>>6ER$a?Gd{1}r`kz`XLEXg( z*9#PHc=I^My*=>##;Ry3_PSZ8|LnV1FOcyrY4+qd$!>qF4g?;|-?!|Qcunm)qvi_R zvs2!rPnxH-+Tp{M-<*cqUc{df5L8?H)XMa*|LbfCHW#JjM?0h0r)-|JoJT>#-hRrm zx2o~|k$k6bGBGnUFfMLfZ_v2LfDagWviyvU|5<>s$=+Zf3*xJ?fFhMcn~jl`m7SRp z&SEm)0Z9vklrtGH7|4To$}AEFVhtj{6Q#tI3_nczm{iRDTQ=%wW6 zCT8X#r#og31_M_n1%Y*yCRYv>SKj~bv3cnZv1v!Q#DAE;5z({FZO00U%f}p;6dAq- z7Du&h%xHFBk$myG%ff3?^L8j+JX4eI=w0&eSo{ss_HZfPAhl=fr>x&LNQUZN+Qe%4v`Ymo-?0Ak?#p(FwVClCSwATSID2r7n1hW8Bu2?YQ! z9R>+thDZTr0|Wso1Q5rgw9%2daj}};(W9T$ZLNTU17O%?EA{m7=~zpZpZ>e0sKHA=wRwnp#Oq_ic^36{uEy5kT5@`LS}q_irp9T74s0 zxX4$i{{z~f)t&w|QB6O*y)=0)EsO`gZ@c@F;K%XGL?w;$=R(M-F16f)bcgSaRB6HE z_lQH-pfR;krROwt2q4x7i{6_r<*<|uQK<+oInb|`JgLd^tq1}tz^Rl=l$u4PhIcPG z-$}c+AlwcS!7+Qyx=Dz?$aAwLH`XuUk&+Q2n0|jL-R^YYjPc~i#%UrD^y62{0xELf z&3ZFx8WH|_Lg>iD8H|vN+zJFGZB#0x+upRmB3Gv^8%f8hgAF7PDRr+IhFaaYg~i!+ zGc(zS!5e9kKobn}sIcT4l#CcwL_{Uj%QoRg`*O{tb~+?YDaTW#ZaT0sQ$)U3Mgapo z2`6TX2Elg>DCSFNq6V3%7S9YvlsKf&P;E>BL%OK||jj5)z1!Bb$3p0I82-L{QJd33xae31~%BGHUH zLvuE(<{=;7(W3V>k*xfQZEc35nX;LZBb$dqbABD`Y>)OFN`d0X+d`T$Z_)g_jfy-x zRPq_zp&@leqR(Tok&zVHo}!#~$1qeqya7%^&a+#lBwxVFos=K+lbORMUhu)&v?DaJ ze%~#&!UNSBtp91ZxKQ4>a5ElWVyHY2^CAiyF7Hn)u7kTlAU-Y(R>WC-DwHEMi`+xS zHHvOuHqV5ZMh3$W0nJkNO5GjYHovdR;ll^6s>!+Is{A?IR>Y)V>GqNq1eWEH_l)C3 zguh*^fvV^JJa0C#D54@vgS*^F0&n8vR#{|^9lvLis0*BGscIYp;|;ERuD9=nnEZW5 zRhvH|=5to@KnjG+?E4@OBhce7U)K zAzls`B08l6lC1rU(ETt?FflL<1_@w>NC9O71OfpC00bbK@rImM&UQ5{rv4