2014-11-27 16:19:43 +01:00
|
|
|
# Fichier /etc/default/authentic2
|
|
|
|
#
|
2015-04-02 15:59:10 +02:00
|
|
|
# Activer le mode DEBUG
|
|
|
|
#
|
|
|
|
# export DEBUG=1
|
|
|
|
#
|
2014-11-27 16:19:43 +01:00
|
|
|
# Configuration du LDAP
|
|
|
|
#
|
|
|
|
# URL de l'annuaire LDAP
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export SUPANN_LDAP_URL=ldap://127.0.0.1/
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# Base DN de l'annuaire LDAP
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export SUPANN_LDAP_BASE_DN=dc=univ-test,dc=fr
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# Bind DN pour connexion à l'annuaire LDAP (optionnel)
|
|
|
|
#
|
2014-11-27 18:34:18 +01:00
|
|
|
# export SUPANN_LDAP_BINDDN=uid=admin,ou=people,$SUPANN_LDAP_BASE_DN
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# Bind Password pour connexion à l'annuaire LDAP (optionnel)
|
|
|
|
#
|
2014-11-27 18:34:18 +01:00
|
|
|
# export SUPANN_LDAP_BINDPW=admin
|
2014-11-27 16:19:43 +01:00
|
|
|
|
|
|
|
# Données de fédération
|
|
|
|
# Prod
|
|
|
|
#
|
|
|
|
# URL des métadonnées
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export RENATER_METADATA=https://federation.renater.fr/renater/renater-metadata.xml
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# URL des règles de filtrage des attributs
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export RENATER_ATTRIBUTE_FILTERS=https://federation.renater.fr/renater/filtres/renater-attribute-filters-all.xml
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# URL du certificat de signature des métadonnées
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export RENATER_CERTIFICATE=https://federation.renater.fr/renater/metadata-federation-renater.crt
|
2014-11-27 16:19:43 +01:00
|
|
|
|
|
|
|
# Test
|
|
|
|
# export RENATER_METADATA=https://federation.renater.fr/test/renater-test-metadata.xml # test
|
|
|
|
# export RENATER_ATTRIBUTE_FILTERS=https://federation.renater.fr/test/filtres/renater-test-attribute-filters-all.xml # test
|
|
|
|
# export RENATER_CERTIFICATE=https://federation.renater.fr/test/metadata-federation-renater.crt # test
|
|
|
|
|
|
|
|
# Raccordement EduGain
|
|
|
|
#
|
|
|
|
# Nom de l'organisation
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export EDUGAIN_SCHAC_HOME_ORGANIZATION="Université Test Authentic2"
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# Type de l'organisation
|
|
|
|
#
|
2015-02-05 15:03:48 +01:00
|
|
|
export EDUGAIN_SCHAC_HOME_ORGANIZATION_TYPE="urn:schac:homeOrganizationType:int:university"
|
2014-11-27 16:19:43 +01:00
|
|
|
#
|
|
|
|
# Une valeur parmi:
|
|
|
|
# urn:schac:homeOrganizationType:int:university
|
|
|
|
# urn:schac:homeOrganizationType:int:researchHospital
|
|
|
|
# urn:schac:homeOrganizationType:int:health-research-institution
|
|
|
|
# urn:schac:homeOrganizationType:int:supercomputing-centre
|
|
|
|
# urn:schac:homeOrganizationType:int:public-research-institution
|
|
|
|
# urn:schac:homeOrganizationType:int:private-research-institution
|
|
|
|
# urn:schac:homeOrganizationType:int:library
|
|
|
|
# urn:schac:homeOrganizationType:int:museum
|
|
|
|
# urn:schac:homeOrganizationType:int:nren
|
2014-11-27 17:49:19 +01:00
|
|
|
|
|
|
|
# Local port for listening
|
2015-02-05 15:03:48 +01:00
|
|
|
export BIND=127.0.0.1:8080
|
2015-03-24 15:37:48 +01:00
|
|
|
|
|
|
|
# Utiliser TLS pour communiquer avec le serveur LDAP, 0 pour désactiver, 1 pour
|
|
|
|
# activer, vous devez au préalable vous assurez que le certificat de votre
|
|
|
|
# serveur LDAP sera reconnu, par exemple en le déclarant dans
|
|
|
|
# /etc/ldap/ldap.conf avec la ligne
|
|
|
|
# TLS_CAPATH /chemin/du/certificat_ou_du_certificat_racine
|
|
|
|
export USE_TLS=0
|