added two new env variables for rep idp service

2022-03-24 15:51:06 +01:00 · 2022-03-24 15:51:06 +01:00 · 1036eb0b03
commit 1036eb0b03
parent 5cb2b89b3d
2 changed files with 4 additions and 1 deletions
--- a/global/overlay/etc/puppet/cosmos-rules.yaml
+++ b/global/overlay/etc/puppet/cosmos-rules.yaml
@ -863,6 +863,7 @@ demw-2.sveidas.se:
   swedenconnect_refidp:
      version: 1.3.1
      hostname: qa.test.swedenconnect.se
+      env: qa
   sunet::frontend::register_sites:
     sites:
       'qa.test.swedenconnect.se':
--- a/global/overlay/etc/puppet/manifests/cosmos-site.pp
+++ b/global/overlay/etc/puppet/manifests/cosmos-site.pp
@ -491,7 +491,7 @@ class eidastest($version="1.0.0", $hostname="locahost") {
   ensure_resource('class','https_server',{})
 }

-class swedenconnect_refidp($version="1.0.3",$hostname='localhost') {
+class swedenconnect_refidp($version="1.0.3",$hostname='localhost',$env=undef) {
  $_version = safe_hiera('swedenconnect_refidp_version',$version)
  $_hostname = safe_hiera('swedenconnect_refidp_hostname',$hostname)
  $idp_persistent_id_salt = safe_hiera('idp_persistent_id_salt');
@ -509,6 +509,8 @@ class swedenconnect_refidp($version="1.0.3",$hostname='localhost') {
                   '/etc/ssl:/etc/ssl'],
      env      => ["IDP_SERVER_HOSTNAME=$_hostname",
                   "TOMCAT_HOSTNAME=$_hostname",
+                   "IDP_FEDERATION_METADATA_URL=https://${env}.md.swedenconnect.se/entities",
+                   "IDP_FEDERATION_METADATA_VALIDATION_CERT=/etc/swedenconnect-idp/credentials/trust/sc-${env}-metadata-validation-cert.crt",
                   "TOMCAT_TLS_SERVER_KEY=/etc/ssl/private/${::fqdn}_infra.key",
                   "TOMCAT_TLS_SERVER_CERTIFICATE=/etc/ssl/certs/${::fqdn}_infra.crt",
                   "TOMCAT_PROXY_SHARED_SECRET=$proxy_header_secret",