nevis
/
adn-post-iam-tknxchng-inv
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

new configuration version

This commit is contained in:
mamo 2024-11-11 10:31:24 +00:00
parent 8fac4d4910
commit 54a020bfd6
4 changed files with 54 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
View File

@ -46,14 +46,16 @@ spec:
podDisruptionBudget:
maxUnavailable: "50%"
git:
tag: "r-037e6dff11b107c9a9ce0551a345b013cfe756dd"
tag: "r-4fb5275ec4c9d183bf1a4df388ebf867cbd8f1c9"
dir: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi"
credentials: "git-credentials"
keystores:
- "npi-3b41ca4ca1c4028117d16f5b"
- "npi-23dc4a9fcc79a12d82662747"
- "npi-new-automatic-key-store"
- "npi-cossa-realm-identity"
truststores:
- "npi-new-automatic-trust-store"
- "npi-cossa-realm-signer-trust"
- "npi-cossa-realm-tls-trust"
ingresses:

18
DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-new-automatic-key-store-92e282d1dc2b69d9e4f91fc0.yaml Normal file
View File

@ -0,0 +1,18 @@
apiVersion: "operator.nevis-security.ch/v1"
kind: "NevisKeyStore"
metadata:
name: "npi-new-automatic-key-store"
namespace: "adn-postit-tknxchng-01-dev"
labels:
deploymentTarget: "npi"
annotations:
projectKey: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT"
patternId: "92e282d1dc2b69d9e4f91fc0"
spec:
cn: "npi"
usage: "<reserved for future use>"
san:
dns:
- "npi"
- "npi.adn-postit-tknxchng-01-dev"
email: []

12
DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-new-automatic-trust-store-92e282d1dc2b69d9e4f91fc0.yaml Normal file
View File

@ -0,0 +1,12 @@
apiVersion: "operator.nevis-security.ch/v1"
kind: "NevisTrustStore"
metadata:
name: "npi-new-automatic-trust-store"
namespace: "adn-postit-tknxchng-01-dev"
labels:
deploymentTarget: "npi"
annotations:
projectKey: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT"
patternId: "92e282d1dc2b69d9e4f91fc0"
spec:
keystores: []

22
DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-cossa.agov-w.azure.adnovum.net/WEB-INF/web.xml
View File

@ -273,7 +273,7 @@
<param-value>/var/opt/keys/own/npi-cossa-realm-identity/key.pem</param-value>
</init-param>
</servlet>
<!-- source: pattern://cc0434226c610ad74ffbf1d1, pattern://cc0434226c610ad74ffbf1d1#allowedMethods, pattern://cc0434226c610ad74ffbf1d1#backends, pattern://cc0434226c610ad74ffbf1d1#responseRewrite -->
<!-- source: pattern://cc0434226c610ad74ffbf1d1, pattern://cc0434226c610ad74ffbf1d1#allowedMethods, pattern://cc0434226c610ad74ffbf1d1#backends, pattern://cc0434226c610ad74ffbf1d1#keystore, pattern://cc0434226c610ad74ffbf1d1#responseRewrite, pattern://cc0434226c610ad74ffbf1d1#truststore -->
<servlet>
<servlet-name>Connector_cossa_realm_REST2</servlet-name>
<!-- source: pattern://cc0434226c610ad74ffbf1d1 -->
@ -323,6 +323,26 @@
<param-name>ResourceManager.RetryTimeout</param-name>
<param-value>0</param-value>
</init-param>
<!-- source: pattern://cc0434226c610ad74ffbf1d1#truststore -->
<init-param>
<param-name>SSLCACertificateFile</param-name>
<param-value>/var/opt/keys/trust/npi-new-automatic-trust-store/truststore.pem</param-value>
</init-param>
<!-- source: pattern://cc0434226c610ad74ffbf1d1#keystore -->
<init-param>
<param-name>SSLClientCertificateFile</param-name>
<param-value>/var/opt/keys/own/npi-new-automatic-key-store/cert.pem</param-value>
</init-param>
<!-- source: pattern://cc0434226c610ad74ffbf1d1#keystore -->
<init-param>
<param-name>SSLClientKeyFile</param-name>
<param-value>/var/opt/keys/own/npi-new-automatic-key-store/key.pem</param-value>
</init-param>
<!-- source: pattern://cc0434226c610ad74ffbf1d1 -->
<init-param>
<param-name>SSLSNISupport</param-name>
<param-value>true</param-value>
</init-param>
<!-- source: pattern://cc0434226c610ad74ffbf1d1 -->
<init-param>
<param-name>URIPrefix</param-name>