2015-02-24 17:58:29 +00:00
|
|
|
[login_config]
|
|
|
|
|
global enabled=fas
|
|
|
|
|
{% if env == 'staging' %}
|
|
|
|
|
fas FAS url=https://admin.stg.fedoraproject.org/accounts/
|
|
|
|
|
{% else %}
|
|
|
|
|
fas FAS url=https://admin.fedoraproject.org/accounts/
|
|
|
|
|
{% endif %}
|
|
|
|
|
fas FAS Proxy client user Agent=Fedora Ipsilon
|
|
|
|
|
fas FAS Insecure Auth=False
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[provider_config]
|
|
|
|
|
global enabled=persona,openid
|
|
|
|
|
|
|
|
|
|
{% if env == 'staging' %}
|
|
|
|
|
persona allowed domains=stg.fedoraproject.org
|
|
|
|
|
persona issuer domain=id.stg.fedoraproject.org
|
2015-02-24 18:03:12 +00:00
|
|
|
persona idp key file=/etc/ipsilon/persona.stg.key
|
2015-02-24 17:58:29 +00:00
|
|
|
{% else %}
|
|
|
|
|
persona allowed domains=fedoraproject.org
|
|
|
|
|
persona issuer domain=id.fedoraproject.org
|
2015-02-24 18:03:12 +00:00
|
|
|
persona idp key file=/etc/ipsilon/persona.key
|
2015-02-24 17:58:29 +00:00
|
|
|
{% endif %}
|
|
|
|
|
|
|
|
|
|
{% if env == 'staging' %}
|
|
|
|
|
openid endpoint url=https://id.stg.fedoraproject.org/openid/
|
2015-03-03 02:01:51 +00:00
|
|
|
openid identity url template=http://%(username)s.id.stg.fedoraproject.org/
|
2015-02-24 17:58:29 +00:00
|
|
|
openid trusted roots=
|
|
|
|
|
{% else %}
|
|
|
|
|
openid endpoint url=https://id.fedoraproject.org/openid/
|
|
|
|
|
openid identity url template=http://%(username)s.id.fedoraproject.org/
|
2015-08-26 16:38:01 +00:00
|
|
|
openid trusted roots=http://jenkins.fedorainfracloud.org/securityRealm/finishLogin,http://jenkins.cloud.fedoraproject.org/securityRealm/finishLogin,https://ask.fedoraproject.org/,https://fedorahosted.org/,https://badges.fedoraproject.org,https://apps.fedoraproject.org/tagger/,https://apps.fedoraproject.org/nuancier/,https://apps.fedoraproject.org/datagrepper/,https://apps.fedoraproject.org/calendar/,http://apps.fedoraproject.org/notifications/,http://copr.fedoraproject.org/,https://copr.fedoraproject.org/,https://admin.fedoraproject.org/pkgdb/,https://admin.fedoraproject.org/voting/,https://apps.fedoraproject.org/github2fedmsg,https://admin.fedoraproject.org,https://apps.fedoraproject.org/,https://release-monitoring.org/,http://pagure.io/,http://admin.fedoraproject.org/mirrormanager/,https://apps.fedoraproject.org/koschei/,https://bodhi.fedoraproject.org
|
2015-02-24 17:58:29 +00:00
|
|
|
{% endif %}
|
2015-07-08 08:19:34 +00:00
|
|
|
openid database url=postgresql://{{ ipsilon_db_user }}:{{ ipsilon_db_pass }}@{{ ipsilon_db_host }}/{{ ipsilon_db_openid_name }}
|
2015-02-24 17:58:29 +00:00
|
|
|
openid untrusted roots=
|
2015-07-08 00:33:26 +00:00
|
|
|
openid enabled extensions=Teams,Attribute Exchange,CLAs,Simple Registration,API
|
2015-02-24 17:58:29 +00:00
|
|
|
|
