Canonical SSO provider

Merge lp:~canonical-isd-hackers/canonical-identity-provider/config-tweaks-update into lp:canonical-identity-provider/release

  1. config-tweaks-update
  2. Merge into trunk
Proposed by Ricardo Kirkner
Status: Merged
Approved by: Ricardo Kirkner
Approved revision: no longer in the source branch.
Merged at revision: 241
Proposed branch: lp:~canonical-isd-hackers/canonical-identity-provider/config-tweaks-update
Merge into: lp:canonical-identity-provider/release
Diff against target: 224 lines (+40/-51)
2 files modified
django_project/config_dev/config/devel.cfg (+20/-33)
django_project/config_dev/config/main.cfg (+20/-18)
To merge this branch: bzr merge lp:~canonical-isd-hackers/canonical-identity-provider/config-tweaks-update
Reviewer Review Type Date Requested Status
David Owen (community) Approve
Review via email: mp+84798@code.launchpad.net

Commit message

Updated configs with changes from config branch

Description of the change

Updated configs

To post a comment you must log in.
Revision history for this message
David Owen (dsowen) wrote :

Looks good.

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== modified file 'django_project/config_dev/config/devel.cfg'
2--- django_project/config_dev/config/devel.cfg 2011-10-06 21:32:16 +0000
3+++ django_project/config_dev/config/devel.cfg 2011-12-07 18:57:27 +0000
4@@ -1,11 +1,9 @@
5 [__noschema__]
6+basedir = .
7+debug = true
8+environment = devel
9 hostname = localhost:8000
10-db_engine = identityprovider.backend
11-db_name = identityprovider
12-db_host = localhost
13-db_user = postgres
14-db_password =
15-db_port =
16+locale_basedir = %(basedir)s/identityprovider
17
18 #
19 # django settings override
20@@ -26,15 +24,26 @@
21 oauth_backend
22 preflight
23 gargoyle
24+ saml2idp
25 devserver
26- saml2idp
27+middleware_classes =
28+ identityprovider.middleware.dbfailover.DBFailoverMiddleware
29+ django.middleware.common.CommonMiddleware
30+ django.contrib.sessions.middleware.SessionMiddleware
31+ django.middleware.csrf.CsrfViewMiddleware
32+ django.contrib.auth.middleware.AuthenticationMiddleware
33+ identityprovider.middleware.useraccount.UserAccountConversionMiddleware
34+ django.middleware.locale.LocaleMiddleware
35+ identityprovider.middleware.exception.LogExceptionMiddleware
36+# Uncomment this to enable profiling middleware
37+# identityprovider.middleware.profile.ProfileMiddleware
38 # allow cookies to be stored when accessing via http
39 session_cookie_secure = false
40 test_runner = identityprovider.tests.utils.run_tests
41
42 [__main__]
43 db_connections = db_master
44-db_statement_timeout_millis = 60000
45+oops_dir = /tmp
46 # serve media from branch
47 serve_static_media = True
48 # Make sure to include only those fields that are not empty as having
49@@ -48,30 +57,21 @@
50 test_dsn = dbname=test_%(db_name)s user=%(db_user)s
51
52 [captcha]
53+captcha_use_proxy = false
54 disable_captcha_verification = true
55
56-[debug]
57-testing = true
58-
59 [openid]
60 openid_preauthorization_acl = http://%(hostname)s/, http://%(hostname)s/
61
62 [readonly]
63 app_servers = as_localhost
64+dbfailover_flag_dir = /tmp
65
66 [sso]
67+embedded_trust_root = http://%(hostname)s/consumer/
68 sso_media_root = %(basedir)s/identityprovider/media/
69 sso_provider_url = http://%(hostname)s/+openid
70 sso_root_url = http://%(hostname)s/
71-embedded_trust_root = http://%(hostname)s/consumer/
72-
73-
74-[saml2]
75-saml2idp_autosubmit = true
76-saml2idp_issuer = http://%(hostname)s
77-saml2idp_certificate_file = %(basedir)s/path/to/certificate.pem
78-saml2idp_private_key_file = %(basedir)s/path/to/private-key.pem
79-saml2idp_signing = true
80
81 #
82 # helper sections
83@@ -82,14 +82,6 @@
84 host = localhost
85 port = 8000
86
87-[db_default]
88-engine = %(db_engine)s
89-name = %(db_name)s
90-host = %(db_host)s
91-user = %(db_user)s
92-password = %(db_password)s
93-port = %(db_port)s
94-
95 [db_master]
96 database_id = master
97 database_host = %(db_host)s
98@@ -110,8 +102,3 @@
99 # devserver.modules.cache.CacheSummaryModule
100 # devserver.modules.profile.MemoryUseModule
101 # devserver.modules.profile.LineProfilerModule
102-
103-[django_databases]
104-default = db_default
105-
106-[django_logging]
107
108=== modified file 'django_project/config_dev/config/main.cfg'
109--- django_project/config_dev/config/main.cfg 2011-11-21 19:38:32 +0000
110+++ django_project/config_dev/config/main.cfg 2011-12-07 18:57:27 +0000
111@@ -1,13 +1,16 @@
112 [__noschema__]
113-basedir = /usr/share
114+basedir = /srv/%(hostname)s/%(environment)s/canonical-identity-provider
115 db_engine = identityprovider.backend
116 db_host = localhost
117 db_name = identityprovider
118 db_password =
119 db_port =
120 db_user = postgres
121-hostname = localhost:8000
122-locale_basedir = /usr/share
123+debug = false
124+domain = ubuntu.com
125+environment = default
126+hostname = login.%(domain)s
127+locale_basedir = /srv/%(hostname)s/%(environment)s/canonical-identity-provider/branches/translations
128
129 #
130 # django settings
131@@ -46,13 +49,13 @@
132 gargoyle
133 saml2idp
134 language_code = en
135-locale_paths = %(locale_basedir)s/identityprovider/locale
136+locale_paths = %(locale_basedir)s/locale
137 logging = django_logging
138 login_redirect_url = /
139 login_url = /+login
140 managers = %(admins)s
141 middleware_classes =
142- identityprovider.middleware.dbfailover.DBFailoverMiddleware
143+# identityprovider.middleware.dbfailover.DBFailoverMiddleware
144 django.middleware.common.CommonMiddleware
145 django.contrib.sessions.middleware.SessionMiddleware
146 django.middleware.csrf.CsrfViewMiddleware
147@@ -63,7 +66,7 @@
148 # Uncomment this to enable profiling middleware
149 # identityprovider.middleware.profile.ProfileMiddleware
150 secret_key =
151-server_email = noreply@localhost
152+server_email = noreply@%(domain)s
153 session_cookie_secure = true
154 session_engine = django.contrib.sessions.backends.db
155 static_root = media
156@@ -95,14 +98,14 @@
157 db_statement_timeout_millis = 5000
158 extra_pythonpath = %(basedir)s
159 includes =
160-oops_dir = /tmp
161-pgconnect_timeout = 10
162+oops_dir = /srv/%(hostname)s/%(environment)s-logs/www-oops
163+pgconnect_timeout = 5
164 serve_static_media = False
165 support_form_url = https://forms.canonical.com/sso-support/
166 google_analytics_id = UA-1018242-24
167
168 [api]
169-api_enabled = false
170+api_enabled = true
171 api_host = %(hostname)s
172 oauth_data_store = identityprovider.store.SSODataStore
173
174@@ -118,18 +121,18 @@
175 captcha_proxies = captcha_proxies
176 captcha_public_key = captcha-public-key
177 # direct internet connection
178-captcha_use_proxy = false
179+captcha_use_proxy = true
180 captcha_verify_url = http://api-verify.recaptcha.net/verify
181 disable_captcha_verification = False
182
183 [debug]
184-openid_debug = false
185-testing = false
186+openid_debug = %(debug)s
187+testing = %(debug)s
188
189 [email]
190-enable_token_debug = true
191-feedback_to_address = feedback@localhost
192-noreply_from_address = noreply@localhost
193+enable_token_debug = %(debug)s
194+feedback_to_address = feedback@%(domain)s
195+noreply_from_address = noreply@%(domain)s
196
197 [i18n]
198 language_names = language_names
199@@ -159,7 +162,7 @@
200 [readonly]
201 app_servers =
202 dbfailover_attempts = 3
203-dbfailover_flag_dir = /tmp
204+dbfailover_flag_dir = /srv/%(hostname)s/tmp
205 dbrecover_attempts = 10
206 dbrecover_interval = 15
207 dbrecover_multiplier = 2
208@@ -167,7 +170,7 @@
209
210 [sso]
211 embedded_trust_root =
212-logging_config_file = config/logging.conf
213+logging_config_file = config/logging_%(environment)s.conf
214 sso_account_update_url = None
215 sso_media_root = media
216 sso_provider_url = https://%(hostname)s/+openid
217@@ -175,7 +178,6 @@
218 sso_root_url = https://%(hostname)s/
219 sso_versions_teams =
220
221-
222 [saml2]
223 saml2idp_autosubmit = true
224 saml2idp_issuer = http://%(hostname)s