Newer
Older
# 1. web.xml: custom version contains TwoStepRemoteUser definition.
file { '/opt/shibboleth-idp/webapp/WEB-INF/web.xml':
ensure => present,
content => template('shibb_idp3/opt/shibboleth-idp/webapp/WEB-INF/web.xml.erb'),
mode => '0644',
}
# Add idp.properties configuration file. This file has a password in it(?)
file { '/etc/shibboleth-idp/conf/idp.properties':
ensure => present,
content => template('shibb_idp3/etc/shibboleth-idp/conf/idp.properties.erb'),
owner => 'tomcat8',
group => 'tomcat8',
mode => '0644',
}
# 1. metadata-providers.xml: points to all our SP metadata.
file { '/etc/shibboleth-idp/conf/metadata-providers.xml':
ensure => present,
content => template('shibb_idp3/etc/shibboleth-idp/conf/metadata-providers.xml.erb'),
mode => '0644',
}
# 2. access-control.xml: allow access to status page
file { '/etc/shibboleth-idp/conf/access-control.xml':
ensure => present,
content => template('shibb_idp3/etc/shibboleth-idp/conf/access-control.xml.erb'),
mode => '0644',
}
# 3. logback.xml: log-level settings
file { '/etc/shibboleth-idp/conf/logback.xml':
ensure => present,
content => template('shibb_idp3/etc/shibboleth-idp/conf/logback.xml.erb'),
mode => '0644',
}
# 3. saml-nameid.xml
file { '/etc/shibboleth-idp/conf/saml-nameid.properties':
ensure => present,
content => template('shibb_idp3/etc/shibboleth-idp/conf/saml-nameid.properties.erb'),
mode => '0644',
}
#### FLOWS
# general-authn.xml: some customizations
file { '/etc/shibboleth-idp/conf/authn/general-authn.xml':
ensure => present,
content => template('shibb_idp3/etc/shibboleth-idp/conf/authn/general-authn.xml.erb'),
mode => '0644',
file { '/etc/shibboleth-idp/conf/authn/twostepremoteuser-authn-config.xml':
source => 'puppet:///modules/shibb_idp3/etc/shibboleth-idp/conf/authn/twostepremoteuser-authn-config.xml',
mode => '0644',
owner => 'tomcat8',
group => 'tomcat8',
}
# twostepremoteuser-authn-flow.xml
file { '/opt/shibboleth-idp/flows/authn/TwoStepRemoteUser/twostepremoteuser-authn-beans.xml':
source => 'puppet:///modules/shibb_idp3/opt/shibboleth-idp/flows/authn/TwoStepRemoteUser/twostepremoteuser-authn-beans.xml',
file { '/opt/shibboleth-idp/flows/authn/TwoStepRemoteUser/twostepremoteuser-authn-flow.xml':
source => 'puppet:///modules/shibb_idp3/opt/shibboleth-idp/flows/authn/TwoStepRemoteUser/twostepremoteuser-authn-flow.xml',
mode => '0644',
owner => 'tomcat8',
group => 'tomcat8',
}