-
Notifications
You must be signed in to change notification settings - Fork 9
/
config.yaml
127 lines (118 loc) · 3.01 KB
/
config.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
---
common:
mongo:
uri: mongodb://mongo:27017
production: false
tracing:
addr: jaeger:4318
type: jaeger
#timeout: 10
qr:
recovery_level: 2
size: 256
issuing_base_url: https://satosa-test-1.sunet.se
kafka:
enabled: false
brokers:
- "kafka0:9092"
- "kafka1:9092"
authentic_sources:
SUNET_v1:
country_code: "SE"
notification_endpoint:
url: "http://vc_dev_apigw:8080/api/v1/document/notify"
authentic_source_endpoint:
url: "http://vc_dev_apigw:8080"
signature_service_endpoint:
url: "http://vc_dev_issuer:8080"
revocation_service_endpoint:
url: "http://vc_dev_apigw:8080/api/v1/document/revok"
credential_types:
EHIC:
profile: "SD-JWT"
PDA1:
profile: "SD-JWT"
SUNET_v2:
country_code: "SE"
notification_endpoint:
url: "http://vc_dev_apigw:8080/api/v1/document/notify"
authentic_source_endpoint:
url: "http://vc_dev_mockas:8080"
signature_service_endpoint:
url: "http://vc_dev_issuer:8080"
revocation_service_endpoint:
url: "http://vc_dev_apigw:8080/api/v1/document/revok"
datastore_service_endpoint:
url: "http://vc_dev_apigw:8080"
credential_types:
EHIC:
profile: "SD-JWT"
PDA1:
profile: "SD-JWT"
issuer:
identifier: "SUNET_v1"
api_server:
addr: :8080
grpc_server:
addr: vc_dev_issuer:8090
signing_key_path: "/private_ec256.pem"
jwt_attribute:
issuer: https://issuer.sunet.se
enable_not_before: true
valid_duration: 3600
verifiable_credential_type: "https://credential.sunet.se/identity_credential"
static_host: "http://vc_dev_portal:8080/statics"
verifier:
api_server:
addr: :8080
grpc_server:
addr: vc_dev_verifier:8090
registry:
api_server:
addr: :8080
smt:
update_periodicity: 5
init_leaf: 575cea4a-5725-11ee-8287-2b486b7ace28
grpc_server:
addr: vc_dev_registry:8090
persistent:
api_server:
addr: :8080
apigw:
identifier: "SUNET_v1"
trust_model:
type: "openid_federation"
trust_anchors:
- "https://example.com/trust_anchor.pem"
api_server:
addr: :8080
basic_auth:
enabled: false
users:
admin: "secret123"
mock_as:
api_server:
addr: :8080
datastore_url: http://vc_dev_apigw:8080
ui:
api_server:
addr: :8080
username: "admin"
password: "secret123"
#It is recommended to use an authentication key with 32 or 64 bytes.
session_cookie_authentication_key: "PjanW5cOBIlWzjLK23Q8NIo4va53e1bsgWmcqMdznVzkW3uEozfotj7MZsD7HpBo"
#The encryption key, must be either 16, 24, or 32 bytes to select AES-128, AES-192, or AES-256 modes.
session_store_encryption_key: "SQxqb3LKw1YFyAiy4j7FaGGJKeEzr8Db"
session_inactivity_timeout_in_seconds: 600
services:
apigw:
base_url: http://vc_dev_apigw:8080
mockas:
base_url: http://vc_dev_mockas:8080
verifier:
base_url: http://vc_dev_verifier:8080
portal:
api_server:
addr: :8080
apigw_api_server:
addr: http://vc_dev_apigw:8080