Add prod config file for test-my-eid, SC-2522

2025-04-03 09:12:31 +02:00 · 2025-04-03 09:12:31 +02:00 · b5a5c1af6a
commit b5a5c1af6a
parent a296ee9dad
1 changed files with 90 additions and 0 deletions
--- a/global/overlay/etc/puppet/modules/eid/templates/test_my_eid/application-prod.yml.erb
+++ b/global/overlay/etc/puppet/modules/eid/templates/test_my_eid/application-prod.yml.erb
@ -0,0 +1,90 @@
+---
+spring:
+  ssl:
+    bundle:
+      pem:
+        test-my-eid-web-server:
+          keystore:
+            certificate: file:/etc/ssl/certs/<%= @server_fqdn %>_infra.crt
+            private-key: file:/etc/ssl/private/<%= @server_fqdn %>_infra.key
+credential:
+  bundles:
+    keystore:
+      sp-keys-store:
+        location: file:${SP_CONFIG_DIRECTORY}/credentials/testmyeid-prod-sp-keys.jks
+        type: JKS
+        password: secret
+      sp-metadata-store:
+        location: file:${SP_CONFIG_DIRECTORY}/credentials/testmyeid-prod-md-sign.jks
+        type: JKS
+        password: secret
+
+    jks:
+      sp-sign:
+        name: sp-sign-key
+        store-reference: sp-keys-store
+        key:
+          alias: sign
+          key-password: secret
+      sp-decrypt:
+        name: sp-decrypt-key
+        store-reference: sp-keys-store
+        key:
+          alias: encrypt
+          key-password: secret
+      sp-md-sign:
+        name: sp-metadata-sign
+        store-reference: sp-metadata-store
+        key:
+          alias: mdsign
+          key-password: secret
+
+server:
+  servlet:
+    context-path: /
+    session:
+      tracking-modes: 'cookie'
+      cookie:
+        domain: qa.test.swedenconnect.se
+        name: TESTMYEIDQA
+  ssl:
+    enabled: true
+    bundle: test-my-eid-web-server
+
+sp:
+  base-uri: https://test.swedenconnect.se
+  entity-id: https://test.swedenconnect.se/sp
+  sign-entity-id: https://test.swedenconnect.se/sp-sign
+  credential:
+    sign:
+      bundle: sp-sign
+    decrypt:
+      bundle: sp-decrypt
+    md-sign:
+      bundle: sp-md-sign
+  eidas-connector:
+    entity-id: https://connector.eidas.swedenconnect.se/eidas
+  discovery:
+    ignore-contracts: true
+    include-only-static: true
+    idp:
+      - entity-id: https://connector.eidas.swedenconnect.se/eidas
+      - entity-id: https://idp-sweden-connect-valfr-2017-ct.test.frejaeid.com
+        logo-url: https://idp-sweden-connect-valfr-2017-ct.test.frejaeid.com/idp/images/frejaeid_logo.svg
+        logo-height: 75
+        logo-width: 75
+      - entity-id: http://test.swedenconnect.se/idp
+  federation:
+    metadata:
+      url: https://md.swedenconnect.se/role/idp.xml
+      validation-certificate: file:${SP_CONFIG_DIRECTORY}/credentials/sc-prod-md-signer.crt
+  security:
+    algorithm-config:
+      use-aes-gcm: true
+
+logging:
+  level:
+    root: WARN
+    testmyeid: DEBUG
+    se:
+      swedenconnect: ${logging.level.testmyeid}