nevis
/
adn-agov-work-ob-inventory
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: nevis:master
Branches Tags
nevis:master
nevis:r-dc60a2b08425e5cdcb7a9f6d9c2ec516b52bafeb
nevis:r-e9d20834b307ebc17e96ed1758a8a8022b4530c1
nevis:r-bba80526cea899b1947578419a14c74492ea501f
nevis:r-69708a47aa5312498a4e703772715421ce56ae7b
nevis:r-7188c402aab16fcbb1e1435446513b8abc18de8e
nevis:r-6084449dd6cbd475bb25d36cf2a36e2ccd661824
nevis:r-9e206f8d793087e7a1996ae58b5ed2116e3e9af7
nevis:r-b573f4c9983b648b2dd0a02fa08dbe000a3d18af
nevis:r-cb95da141da4bf5257644e8cd01533de10282e43
nevis:r-ce13d286f79a538141a71c20083a157bcab70b61
nevis:r-45a84e9f4c484b3888f3fa2311578e9af031efea
nevis:r-1c2c7885c3bbd904e080922c99d4a254fdc92559
nevis:r-2520d4f975c340c093b9ed3d554218a5ac656e25
nevis:r-cdd6695000c75e6f55ee934a8ddb47d8d1ee4ba1
nevis:r-ea22f21044b7cd8da039215de411398965a2bdcf
nevis:r-ba59b3f1caf0da0e0f0589650bcae5845f2d05b1
nevis:r-4ca04318607e00fd7e20deea04cfe223be585424
nevis:r-b747af5248dd4f11d7e00565a2345717e8804783
nevis:r-2d75bf36dd209c80cb5dd65474333b0c8c3b95b2
nevis:r-58214011175e9291493ac591bd410a61bef6bbc6
nevis:r-0f2455a0a57b05812913938c27b5e6c573955eea
nevis:r-86c81b57acc35bb459ed2ac2b96662563efdb3df
nevis:r-48ecba4dc24b65ae9719794f822a8e18ae620ca2
nevis:r-606e2a54642c04bc9fe072c99a5140a462f628a6
nevis:r-ea81aa51cad36e21bfebeb54b4128821640dd7a6
nevis:r-89d09fa1182d6b706fb36674eda251615691d046
nevis:r-de27c9925c6b44fc9e1dc51749c7832ef739e7cd
nevis:r-f008bfff7ebf1b41110bd4f9055e63302ce03e28
nevis:r-ccc3170b00e14827fb232c8f34bca95033f70bc0
nevis:r-41c1b29ba3a4cc5c1f4d76198da961a24ae6329e
nevis:r-ead6f7b71788d3ff3620ae21ff304b9f3b94bb06
nevis:r-62ba771c7d6f685abc4f0f645fa618b05f78774f
nevis:r-37b8bdb0132c567067431bc29f9e802beefd6510
nevis:r-77573d3e5e2cb681902d14be670c30fa4846cda4
nevis:r-7e5c3b871a601f4a7e5464b8fbf4ce72900cd5ab
nevis:r-cd99dbf788e131a8698a4755e6a114747bc10c16
nevis:r-0fcea0ae54f7c32644331ee1e07ec004989e173c
nevis:r-4d495f8f73f00597da5fbe633d85d96ac04db24e
nevis:r-6c7464eb8d6ece1e29939bf3c8d50b1c424a0b45
nevis:r-09485d8da5321619f5ae31edb1f81f4e9f3ad2d1
nevis:r-f65a315ec4cfd8575904ed12349257a59adbd1e2
nevis:r-0d14bc8d1f507b55c11ab2b807d691b97d55b1dd
..
compare: nevis:r-7188c402aab16fcbb1e1435446513b8abc18de8e
Branches Tags
nevis:master
nevis:r-dc60a2b08425e5cdcb7a9f6d9c2ec516b52bafeb
nevis:r-e9d20834b307ebc17e96ed1758a8a8022b4530c1
nevis:r-bba80526cea899b1947578419a14c74492ea501f
nevis:r-69708a47aa5312498a4e703772715421ce56ae7b
nevis:r-7188c402aab16fcbb1e1435446513b8abc18de8e
nevis:r-6084449dd6cbd475bb25d36cf2a36e2ccd661824
nevis:r-9e206f8d793087e7a1996ae58b5ed2116e3e9af7
nevis:r-b573f4c9983b648b2dd0a02fa08dbe000a3d18af
nevis:r-cb95da141da4bf5257644e8cd01533de10282e43
nevis:r-ce13d286f79a538141a71c20083a157bcab70b61
nevis:r-45a84e9f4c484b3888f3fa2311578e9af031efea
nevis:r-1c2c7885c3bbd904e080922c99d4a254fdc92559
nevis:r-2520d4f975c340c093b9ed3d554218a5ac656e25
nevis:r-cdd6695000c75e6f55ee934a8ddb47d8d1ee4ba1
nevis:r-ea22f21044b7cd8da039215de411398965a2bdcf
nevis:r-ba59b3f1caf0da0e0f0589650bcae5845f2d05b1
nevis:r-4ca04318607e00fd7e20deea04cfe223be585424
nevis:r-b747af5248dd4f11d7e00565a2345717e8804783
nevis:r-2d75bf36dd209c80cb5dd65474333b0c8c3b95b2
nevis:r-58214011175e9291493ac591bd410a61bef6bbc6
nevis:r-0f2455a0a57b05812913938c27b5e6c573955eea
nevis:r-86c81b57acc35bb459ed2ac2b96662563efdb3df
nevis:r-48ecba4dc24b65ae9719794f822a8e18ae620ca2
nevis:r-606e2a54642c04bc9fe072c99a5140a462f628a6
nevis:r-ea81aa51cad36e21bfebeb54b4128821640dd7a6
nevis:r-89d09fa1182d6b706fb36674eda251615691d046
nevis:r-de27c9925c6b44fc9e1dc51749c7832ef739e7cd
nevis:r-f008bfff7ebf1b41110bd4f9055e63302ce03e28
nevis:r-ccc3170b00e14827fb232c8f34bca95033f70bc0
nevis:r-41c1b29ba3a4cc5c1f4d76198da961a24ae6329e
nevis:r-ead6f7b71788d3ff3620ae21ff304b9f3b94bb06
nevis:r-62ba771c7d6f685abc4f0f645fa618b05f78774f
nevis:r-37b8bdb0132c567067431bc29f9e802beefd6510
nevis:r-77573d3e5e2cb681902d14be670c30fa4846cda4
nevis:r-7e5c3b871a601f4a7e5464b8fbf4ce72900cd5ab
nevis:r-cd99dbf788e131a8698a4755e6a114747bc10c16
nevis:r-0fcea0ae54f7c32644331ee1e07ec004989e173c
nevis:r-4d495f8f73f00597da5fbe633d85d96ac04db24e
nevis:r-6c7464eb8d6ece1e29939bf3c8d50b1c424a0b45
nevis:r-09485d8da5321619f5ae31edb1f81f4e9f3ad2d1
nevis:r-f65a315ec4cfd8575904ed12349257a59adbd1e2
nevis:r-0d14bc8d1f507b55c11ab2b807d691b97d55b1dd

No commits in common. "master" and "r-7188c402aab16fcbb1e1435446513b8abc18de8e" have entirely different histories.
master ... r-7188c402

9 changed files with 7 additions and 103 deletions
Show Stats Expand all files Collapse all files

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth-v1/etc/nevis/k8s-ob-auth-d00b0dcbe241793d30daf91c.yaml
View File

@ -46,7 +46,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-bba80526cea899b1947578419a14c74492ea501f" tag: "r-7188c402aab16fcbb1e1435446513b8abc18de8e"
dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth-v1" dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth-v1"
credentials: "git-credentials" credentials: "git-credentials"
keystores: keystores:

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-auth-v1/var/opt/nevisauth/default/conf/filterRedirectionPaths.groovy
View File

@ -18,7 +18,7 @@ if (request.getSession(false) == null) {
} }
def redirectionPath = getPathFromURL(request['currentResource']) def redirectionPath = getPathFromURL(request['currentResource'])
def applicationPaths = ["/nevisauth/","/register/","/pwreset/"] def applicationPaths = ["/register/","/pwreset/"]
def denyRegexes = [".*[\\n\\r]+.*"] def denyRegexes = [".*[\\n\\r]+.*"]
def denied = false def denied = false

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf-v1/etc/nevis/k8s-ob-fido-uaf-d990accd4fedae1acbc7109d.yaml
View File

@ -47,7 +47,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-69708a47aa5312498a4e703772715421ce56ae7b" tag: "r-7188c402aab16fcbb1e1435446513b8abc18de8e"
dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf-v1" dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf-v1"
credentials: "git-credentials" credentials: "git-credentials"
database: database:

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido-uaf-v1/var/opt/nevisfido/default/conf/nevisfido.yml
View File

@ -94,7 +94,7 @@ session-repository:
max-connection-idle-time: "600s" max-connection-idle-time: "600s"
credential-repository: credential-repository:
type: "nevisidm" type: "nevisidm"
client-id: "cfa9c9b9-119f-4dff-9bb8-86d7c0cf2720" client-id: 1000
user-attribute: "extId" user-attribute: "extId"
rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm" rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm"
keystore: "/var/opt/keys/own/ob-fido-uaf-v1-default-client-identity/keystore.p12" keystore: "/var/opt/keys/own/ob-fido-uaf-v1-default-client-identity/keystore.p12"

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2-v1/etc/nevis/k8s-ob-fido2-a2d03bb46b87b90160dc83d7.yaml
View File

@ -47,7 +47,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-69708a47aa5312498a4e703772715421ce56ae7b" tag: "r-7188c402aab16fcbb1e1435446513b8abc18de8e"
dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2-v1" dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2-v1"
credentials: "git-credentials" credentials: "git-credentials"
keystores: keystores:

2
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-fido2-v1/var/opt/nevisfido/default/conf/nevisfido.yml
View File

@ -34,7 +34,7 @@ management:
enabled: true enabled: true
credential-repository: credential-repository:
type: "nevisidm" type: "nevisidm"
client-id: "cfa9c9b9-119f-4dff-9bb8-86d7c0cf2720" client-id: 1000
rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm" rest-url: "https://idm.adn-agov-nevisidm-admin-01-uat:8989/nevisidm"
keystore: "/var/opt/keys/own/ob-fido2-v1-default-client-identity/keystore.p12" keystore: "/var/opt/keys/own/ob-fido2-v1-default-client-identity/keystore.p12"
keystore-passphrase: "${exec:/var/opt/keys/own/ob-fido2-v1-default-client-identity/keypass}" keystore-passphrase: "${exec:/var/opt/keys/own/ob-fido2-v1-default-client-identity/keypass}"

3
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-proxy-v1/etc/nevis/k8s-ob-proxy-b4d2da2fa2d0b060752a1fe2.yaml
View File

@ -47,7 +47,7 @@ spec:
podDisruptionBudget: podDisruptionBudget:
maxUnavailable: "50%" maxUnavailable: "50%"
git: git:
tag: "r-dc60a2b08425e5cdcb7a9f6d9c2ec516b52bafeb" tag: "r-7188c402aab16fcbb1e1435446513b8abc18de8e"
dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-proxy-v1" dir: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-proxy-v1"
credentials: "git-credentials" credentials: "git-credentials"
keystores: keystores:
@ -59,7 +59,6 @@ spec:
- "ob-proxy-v1-ob-realm-signer-trust" - "ob-proxy-v1-ob-realm-signer-trust"
- "ob-proxy-v1-ob-mock-me-realm-tls-trust" - "ob-proxy-v1-ob-mock-me-realm-tls-trust"
- "ob-proxy-v1-ob-mock-me-realm-signer-trust" - "ob-proxy-v1-ob-mock-me-realm-signer-trust"
- "ob-proxy-v1-agov-work-internal-trust-store"
ingresses: ingresses:
- "ob-proxy-v1" - "ob-proxy-v1"
podSecurity: podSecurity:

14
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-proxy-v1/etc/nevis/k8s-ob-proxy-v1-agov-work-internal-trust-store-b4d2da2fa2d0b060752a1fe2.yaml
View File

@ -1,14 +0,0 @@
apiVersion: "operator.nevis-security.ch/v1"
kind: "NevisTrustStore"
metadata:
name: "ob-proxy-v1-agov-work-internal-trust-store"
namespace: "adn-agov-nevisidm-ob-01-uat"
labels:
deploymentTarget: "ob-proxy-v1"
annotations:
projectKey: "DEFAULT-ADN-AGOV-WORK-OB-PROJECT"
patternId: "b4d2da2fa2d0b060752a1fe2"
spec:
keystores: []
extraCerts:
- "-----BEGIN CERTIFICATE-----\nMIIBcTCCARagAwIBAgIQWRl1eifIt8yohQYzh6yr/jAKBggqhkjOPQQDAjAYMRYw\nFAYDVQQDEw1zZWxmc2lnbmVkLWNhMB4XDTIzMDYyODE0MzI0MFoXDTQzMDYyODE0\nMzI0MFowGDEWMBQGA1UEAxMNc2VsZnNpZ25lZC1jYTBZMBMGByqGSM49AgEGCCqG\nSM49AwEHA0IABEwcjsIhSyyh0i9zP1G7ReOkFt/djzlGoUtSd5v3ZEk5QoZYjfl9\n04HdaZzrmveB2aRppbXgW7//s2Ma8wTd5uejQjBAMA4GA1UdDwEB/wQEAwICpDAP\nBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBT7YRoWIjHwkvFicwvk0Tx/yA4uUTAK\nBggqhkjOPQQDAgNJADBGAiEAgyg9t0qgb+czuscs07pNGI+12BedrD+y71psIlqx\nt2UCIQC/85UXyjYI9zg7Mg7rROTbGNCU3Jq/KIC3VzbbD+68VA==\n-----END CERTIFICATE-----\n"

81
DEFAULT-ADN-AGOV-WORK-OB-PROJECT/DEFAULT-DEFAULT-ADN-AGOV-OB-INV/ob-proxy-v1/var/opt/nevisproxy/default/host-ob.agov-w.azure.adnovum.net/WEB-INF/web.xml
View File

@ -398,82 +398,6 @@
<listener> <listener>
<listener-class>ch::nevis::isiweb4::listener::SessionListener</listener-class> <listener-class>ch::nevis::isiweb4::listener::SessionListener</listener-class>
</listener> </listener>
<!-- source: pattern://bcfcb6808653a4ca9054146b, pattern://bcfcb6808653a4ca9054146b#allowedMethods, pattern://bcfcb6808653a4ca9054146b#backends, pattern://bcfcb6808653a4ca9054146b#responseRewrite, pattern://bcfcb6808653a4ca9054146b#truststore -->
<servlet>
<servlet-name>Connector_ArtifactResolutionService</servlet-name>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<servlet-class>ch::nevis::isiweb4::servlet::connector::http::HttpsConnectorServlet</servlet-class>
<!-- source: pattern://bcfcb6808653a4ca9054146b#allowedMethods -->
<init-param>
<param-name>AllowedMethods</param-name>
<param-value>ALL-HTTP,ALL-WEBDAV,-TRACE,-CONNECT</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b#responseRewrite -->
<init-param>
<param-name>AutoRewrite</param-name>
<param-value>header</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>CookieManager</param-name>
<param-value>block:^.*$</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>DNSCache.ttl</param-name>
<param-value>60</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b#backends -->
<init-param>
<param-name>InetAddress</param-name>
<param-value>auth.adn-agov-nevisidm-01-uat:8991</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>KeepAlive.LifeTime</param-name>
<param-value>30</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>RequestTimeout</param-name>
<param-value>90000</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>ResourceManager.RetryTimeout</param-name>
<param-value>0</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b#truststore -->
<init-param>
<param-name>SSLCACertificateFile</param-name>
<param-value>/var/opt/keys/trust/ob-proxy-v1-agov-work-internal-trust-store/truststore.pem</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>SSLCheckPeerHostname</param-name>
<param-value>false</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>SSLClientCertificateFile</param-name>
<param-value>/var/opt/keys/own/ob-proxy-v1-ob-realm-identity/cert.pem</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>SSLClientKeyFile</param-name>
<param-value>/var/opt/keys/own/ob-proxy-v1-ob-realm-identity/key.pem</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b -->
<init-param>
<param-name>SSLSNISupport</param-name>
<param-value>true</param-value>
</init-param>
<!-- source: pattern://bcfcb6808653a4ca9054146b#backends -->
<init-param>
<param-name>UseSSL</param-name>
<param-value>true</param-value>
</init-param>
</servlet>
<!-- source: pattern://25bdd7e6f5b76694f6688ab8 --> <!-- source: pattern://25bdd7e6f5b76694f6688ab8 -->
<servlet> <servlet>
<servlet-name>Connector_NevisFIDO</servlet-name> <servlet-name>Connector_NevisFIDO</servlet-name>
@ -682,11 +606,6 @@
<servlet-name>Hosting_Default</servlet-name> <servlet-name>Hosting_Default</servlet-name>
<url-pattern>/mock-me/*</url-pattern> <url-pattern>/mock-me/*</url-pattern>
</servlet-mapping> </servlet-mapping>
<!-- source: pattern://bcfcb6808653a4ca9054146b, pattern://bcfcb6808653a4ca9054146b#path -->
<servlet-mapping>
<servlet-name>Connector_ArtifactResolutionService</servlet-name>
<url-pattern>/nevisauth/*</url-pattern>
</servlet-mapping>
<!-- source: pattern://25bdd7e6f5b76694f6688ab8 --> <!-- source: pattern://25bdd7e6f5b76694f6688ab8 -->
<servlet-mapping> <servlet-mapping>
<servlet-name>Connector_NevisFIDO</servlet-name> <servlet-name>Connector_NevisFIDO</servlet-name>