From c898c2016547a34f28f087a0f8cb43e21e31e157 Mon Sep 17 00:00:00 2001
From: mamo <mamo>
Date: Fri, 6 Dec 2024 07:30:25 +0000
Subject: [PATCH] new configuration version

---
 ...ession-store-699f0a21dd0e852f28d27e9d.yaml | 26 ++++++
 .../k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml     |  5 +-
 .../WEB-INF/web.xml                           | 79 +++++++++++++------
 3 files changed, 87 insertions(+), 23 deletions(-)
 create mode 100644 DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml

diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml
new file mode 100644
index 0000000..8cbf7e6
--- /dev/null
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-idp-nevisproxy-remote-hybrid-session-store-699f0a21dd0e852f28d27e9d.yaml
@@ -0,0 +1,26 @@
+apiVersion: "operator.nevis-security.ch/v1"
+kind: "NevisDatabase"
+metadata:
+  name: "npi"
+  namespace: "adn-postit-tknxchng-01-dev"
+  labels:
+    deploymentTarget: "npi"
+  annotations:
+    projectKey: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT"
+    patternId: "699f0a21dd0e852f28d27e9d"
+spec:
+  type: "NevisProxy"
+  databaseType: "MariaDB"
+  version: "8.2405.0"
+  url: "mariadb-agov-uat.mariadb.database.azure.com"
+  port: 3306
+  database: "idp_replicated_session_store"
+  bootstrap: true
+  migrate: true
+  rootCredentials:
+    name: "root-adn-agov-nevisidm-admin-01-uat-idm"
+    namespace: "adn-agov-nevisidm-admin-01-uat"
+  podSecurity:
+    policy: "baseline"
+    automountServiceAccountToken: false
+  timeZone: "Europe/Zurich"
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
index f7c8798..15ab089 100644
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
@@ -46,9 +46,12 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-8950749940d49f045219bc99b37db559a44d5e9d"
+    tag: "r-27eef320e045811c799f72fb54cdf1c58a7cbcdb"
     dir: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi"
     credentials: "git-credentials"
+  database:
+    name: "npi"
+    requiredVersion: "8.2405.0"
   keystores:
   - "npi-3b41ca4ca1c4028117d16f5b"
   - "npi-23dc4a9fcc79a12d82662747"
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-cossa.agov-w.azure.adnovum.net/WEB-INF/web.xml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-cossa.agov-w.azure.adnovum.net/WEB-INF/web.xml
index 0cc199b..667a64d 100644
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-cossa.agov-w.azure.adnovum.net/WEB-INF/web.xml
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-cossa.agov-w.azure.adnovum.net/WEB-INF/web.xml
@@ -1,6 +1,11 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "/opt/nevisproxy/dtd/web-app_2_3.dtd">
 <web-app>
+    <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+    <context-param>
+        <param-name>application-id</param-name>
+        <param-value>cossa.agov-w.azure.adnovum.net</param-value>
+    </context-param>
     <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
     <context-param>
         <param-name>SectokenVerifierCert</param-name>
@@ -165,7 +170,7 @@
         <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
         <init-param>
             <param-name>Servlet</param-name>
-            <param-value>LocalSessionStoreServlet</param-value>
+            <param-value>MySQLSessionStoreServlet</param-value>
         </init-param>
         <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
         <init-param>
@@ -340,27 +345,6 @@
         <!-- source: pattern://4b8f4de5fefd5f33774df841 -->
         <servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class>
     </servlet>
-    <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
-    <servlet>
-        <servlet-name>LocalSessionStoreServlet</servlet-name>
-        <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
-        <servlet-class>ch::nevis::nevisproxy::servlet::cache::local::LocalSessionStoreServlet</servlet-class>
-        <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
-        <init-param>
-            <param-name>MaxInactiveInterval</param-name>
-            <param-value>600</param-value>
-        </init-param>
-        <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
-        <init-param>
-            <param-name>MaxLifetime</param-name>
-            <param-value>28800</param-value>
-        </init-param>
-        <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
-        <init-param>
-            <param-name>MemorySize</param-name>
-            <param-value>512000000</param-value>
-        </init-param>
-    </servlet>
     <!-- source: pattern://7dc20659babc66c4401ce0dd -->
     <servlet>
         <servlet-name>LoginRenderer_nli</servlet-name>
@@ -377,6 +361,57 @@
             <param-value>remote:NevisLogrendConnector_nli:/nevislogrend/index.vm?logrendresourcepath=/nevislogrend</param-value>
         </init-param>
     </servlet>
+    <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+    <servlet>
+        <servlet-name>MySQLSessionStoreServlet</servlet-name>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <servlet-class>ch::nevis::nevisproxy::servlet::cache::mysql::MySQLSessionStoreServlet</servlet-class>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>AttributesTableName</param-name>
+            <param-value>attribute</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>ConfigurationsTableName</param-name>
+            <param-value>conf</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>ConnectString</param-name>
+            <param-value>//mariadb-agov-uat.mariadb.database.azure.com:3306/idp_replicated_session_store?connect_timeout=10&amp;ping_timeout=2</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>DisableDatabaseSchemaCheck</param-name>
+            <param-value>false</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>KeyToIdMapTableName</param-name>
+            <param-value>key_id_map</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>MaxLimitOnDelete</param-name>
+            <param-value>100</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>Password</param-name>
+            <param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbPassword}</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>SessionsTableName</param-name>
+            <param-value>session</param-value>
+        </init-param>
+        <!-- source: pattern://699f0a21dd0e852f28d27e9d -->
+        <init-param>
+            <param-name>UserName</param-name>
+            <param-value>${exec:/var/opt/nevisproxy/default/conf/credentials/dbUser}</param-value>
+        </init-param>
+    </servlet>
     <!-- source: pattern://7dc20659babc66c4401ce0dd -->
     <servlet>
         <servlet-name>NevisLogrendConnector_nli</servlet-name>