Add prod config file for test-my-eid, SC-2522

This commit is contained in:
Patrik Holmqvist 2025-04-03 09:12:31 +02:00
parent a296ee9dad
commit b5a5c1af6a
Signed by: pahol
GPG key ID: 5D5B0D4E93F77273

View file

@ -0,0 +1,90 @@
---
spring:
ssl:
bundle:
pem:
test-my-eid-web-server:
keystore:
certificate: file:/etc/ssl/certs/<%= @server_fqdn %>_infra.crt
private-key: file:/etc/ssl/private/<%= @server_fqdn %>_infra.key
credential:
bundles:
keystore:
sp-keys-store:
location: file:${SP_CONFIG_DIRECTORY}/credentials/testmyeid-prod-sp-keys.jks
type: JKS
password: secret
sp-metadata-store:
location: file:${SP_CONFIG_DIRECTORY}/credentials/testmyeid-prod-md-sign.jks
type: JKS
password: secret
jks:
sp-sign:
name: sp-sign-key
store-reference: sp-keys-store
key:
alias: sign
key-password: secret
sp-decrypt:
name: sp-decrypt-key
store-reference: sp-keys-store
key:
alias: encrypt
key-password: secret
sp-md-sign:
name: sp-metadata-sign
store-reference: sp-metadata-store
key:
alias: mdsign
key-password: secret
server:
servlet:
context-path: /
session:
tracking-modes: 'cookie'
cookie:
domain: qa.test.swedenconnect.se
name: TESTMYEIDQA
ssl:
enabled: true
bundle: test-my-eid-web-server
sp:
base-uri: https://test.swedenconnect.se
entity-id: https://test.swedenconnect.se/sp
sign-entity-id: https://test.swedenconnect.se/sp-sign
credential:
sign:
bundle: sp-sign
decrypt:
bundle: sp-decrypt
md-sign:
bundle: sp-md-sign
eidas-connector:
entity-id: https://connector.eidas.swedenconnect.se/eidas
discovery:
ignore-contracts: true
include-only-static: true
idp:
- entity-id: https://connector.eidas.swedenconnect.se/eidas
- entity-id: https://idp-sweden-connect-valfr-2017-ct.test.frejaeid.com
logo-url: https://idp-sweden-connect-valfr-2017-ct.test.frejaeid.com/idp/images/frejaeid_logo.svg
logo-height: 75
logo-width: 75
- entity-id: http://test.swedenconnect.se/idp
federation:
metadata:
url: https://md.swedenconnect.se/role/idp.xml
validation-certificate: file:${SP_CONFIG_DIRECTORY}/credentials/sc-prod-md-signer.crt
security:
algorithm-config:
use-aes-gcm: true
logging:
level:
root: WARN
testmyeid: DEBUG
se:
swedenconnect: ${logging.level.testmyeid}