packages/base/src/files/install/servers/pdp/bin/xacml.pdp.properties

   1 ###
   2 # ============LICENSE_START=======================================================
   3 # ONAP Policy Engine
   4 # ================================================================================
   5 # Copyright (C) 2017-2019 AT&T Intellectual Property. All rights reserved.
   6 # ================================================================================
   7 # Licensed under the Apache License, Version 2.0 (the "License");
   8 # you may not use this file except in compliance with the License.
   9 # You may obtain a copy of the License at
  10 #
  11 #      http://www.apache.org/licenses/LICENSE-2.0
  12 #
  13 # Unless required by applicable law or agreed to in writing, software
  14 # distributed under the License is distributed on an "AS IS" BASIS,
  15 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  16 # See the License for the specific language governing permissions and
  17 # limitations under the License.
  18 # ============LICENSE_END=========================================================
  19 ###
  20
  21 # Default XACML Properties File for PDP RESTful servlet
  22 #
  23 # Standard API Factories
  24 #
  25 xacml.dataTypeFactory=com.att.research.xacml.std.StdDataTypeFactory
  26 xacml.pdpEngineFactory=com.att.research.xacmlatt.pdp.ATTPDPEngineFactory
  27 xacml.pepEngineFactory=com.att.research.xacml.std.pep.StdEngineFactory
  28 # NOT USED SEE BELOW xacml.pipFinderFactory=com.att.research.xacml.std.pip.StdPIPFinderFactory
  29 xacml.traceEngineFactory=com.att.research.xacml.std.trace.LoggingTraceEngineFactory
  30 #
  31 # AT&T PDP Implementation Factories
  32 #
  33 xacml.att.evaluationContextFactory=com.att.research.xacmlatt.pdp.std.StdEvaluationContextFactory
  34 xacml.att.combiningAlgorithmFactory=com.att.research.xacmlatt.pdp.std.StdCombiningAlgorithmFactory
  35 xacml.att.functionDefinitionFactory=org.onap.policy.xacml.custom.OnapFunctionDefinitionFactory
  36 # NOT USED SEE BELOW xacml.att.policyFinderFactory=com.att.research.xacmlatt.pdp.std.StdPolicyFinderFactory
  37 # creteUpdate Policy Implementation Class details.
  38 createUpdatePolicy.impl.className=org.onap.policy.pdp.rest.api.services.CreateUpdatePolicyServiceImpl
  39 # AAF Implementation class details
  40 aafClient.impl.className=org.onap.policy.utils.AAFPolicyClientImpl
  41 #
  42 # AT&T RESTful PDP Implementation Factories
  43 #
  44 xacml.pipFinderFactory=org.onap.policy.pdp.rest.impl.XACMLPdpPIPFinderFactory
  45 xacml.att.policyFinderFactory=org.onap.policy.pdp.rest.XACMLPdpPolicyFinderFactory
  46 #
  47 # When set to true, this flag tells the StdPolicyFinderFactory to combined all the root policy files into
  48 # into one PolicySet and use the given Policy Algorithm.
  49 #
  50 xacml.att.policyFinderFactory.combineRootPolicies=urn:com:att:xacml:3.0:policy-combining-algorithm:combined-permit-overrides
  51 #
  52 # PDP RESTful API properties
  53 #
  54 # Set this to the address or list of addresses where the XACML-PAP-REST servlet is running
  55 # http://localhost:9090/pap/
  56 xacml.rest.pap.urls=${{REST_PAP_URL}}
  57 #if multiple paps exist, the xacml.rest.pap.url can be removed and they can be defined like this:
  58 #xacml.rest.pap.urls=http://localhost:9090/pap/,http://localhost:9091/pap/
  59 #
  60 # Give the running PDP an ID for the PAP. The url that its running as is a good choice.
  61 # The PAP identifies PDP's using the URL of the PDP.
  62 #
  63 xacml.rest.pdp.id=${{REST_PDP_ID}}
  64 #
  65 # Give the JMX port number used for the PDP
  66 xacml.jmx.port=${{TOMCAT_JMX_PORT}}
  67 #
  68 # Notification Properties
  69 # Notifcation type: websocket, ueb or dmaap... if left blank websocket is the default
  70 NOTIFICATION_TYPE=${{PDP_NOTIFICATION_TYPE}}
  71 NOTIFICATION_SERVERS=${{PDP_UEB_CLUSTER}}
  72 NOTIFICATION_TOPIC=${{PDP_UEB_TOPIC}}
  73 NOTIFICATION_DELAY=${{PDP_UEB_DELAY}}
  74 UEB_API_KEY=${{PDP_UEB_API_KEY}}
  75 UEB_API_SECRET=${{PDP_UEB_API_SECRET}}
  76 DMAAP_AAF_LOGIN=${{PDP_DMAAP_AAF_LOGIN}}
  77 DMAAP_AAF_PASSWORD=${{PDP_DMAAP_AAF_PASSWORD}}
  78 #
  79 # Set the directory where the PDP holds its Policy Cache and PIP Configuration
  80 #
  81 xacml.rest.pdp.config=${{REST_PDP_CONFIG}}
  82
  83 xacml.rest.pdp.webapps=${{REST_PDP_WEBAPPS}}
  84 #
  85 # Initialize register with PAP servlet
  86 #
  87 xacml.rest.pdp.register=${{REST_PDP_REGISTER}}
  88 #
  89 # Sleep period in seconds between register attempts
  90 #
  91 xacml.rest.pdp.register.sleep=${{REST_PDP_REGISTER_SLEEP}}
  92 #
  93 # number of attempts to register. -1 means keep trying forever.
  94 #
  95 xacml.rest.pdp.register.retries=${{REST_PDP_REGISTER_RETRIES}}
  96 #
  97 # max number of bytes in a POST of a XML/JSON request
  98 #
  99 xacml.rest.pdp.maxcontent=${{REST_PDP_MAXCONTENT}}
 100 #
 101 # Set UserID here
 102 xacml.rest.pdp.userid=${{PDP_HTTP_USER_ID}}
 103 # Set Password here
 104 xacml.rest.pdp.password=${{PDP_HTTP_PASSWORD}}
 105 # id PAP
 106 xacml.rest.pap.userid=${{PDP_PAP_PDP_HTTP_USER_ID}}
 107 # pass PAP
 108 xacml.rest.pap.password=${{PDP_PAP_PDP_HTTP_PASSWORD}}
 109 # Delay for Notifications Don't change this. Value in milliSec.
 110 xacml.rest.notification.delay=30
 111 # Client interval to ping notification service.
 112 CLIENT_INTERVAL=15000
 113 # Request Buffer Size.
 114 REQUEST_BUFFER_SIZE=50
 115 #***Properties for IntegrityMonitor integration defined in XACMLRestProperties.java***
 116 #The name of the PDP.  Must be unique across the system
 117 xacml.rest.pdp.resource.name=${{resource_name}}
 118
 119 #***Properties for IntegrityMonitor integration defined in IntegrityMonitorProperties.java***
 120 site_name=${{site_name}}
 121 node_type=${{node_type}}
 122 dependency_groups=${{dependency_groups}}
 123 fp_monitor_interval=${{fp_monitor_interval}}
 124 failed_counter_threshold=${{failed_counter_threshold}}
 125 test_trans_interval=${{test_trans_interval}}
 126 write_fpc_interval=${{write_fpc_interval}}
 127 max_fpc_update_interval=${{max_fpc_update_interval}}
 128 test_via_jmx=${{test_via_jmx}}
 129
 130 #database properties needed by IntegrityMonitor
 131 javax.persistence.jdbc.driver=${{JDBC_DRIVER}}
 132 javax.persistence.jdbc.url=${{JDBC_URL}}
 133 javax.persistence.jdbc.user=${{JDBC_USER}}
 134 javax.persistence.jdbc.password=${{JDBC_PASSWORD}}
 135 # Environment should be Set either DEV, TEST or PROD
 136 ENVIRONMENT=${{ENVIRONMENT}}
 137 xacml.rest.pep.idfile = client.properties
 138
 139 #AAF cadi properties
 140 enable_aaf=false
 141 policy.aaf.namespace = ${{AAF_NAMESPACE}}
 142 policy.aaf.root.permission=${{AAF_NAMESPACE}}.pdpx
 143 cm_url=https://${{AAF_HOST}}:8095/onap.org.osaaf.aaf.cm:2.1
 144 cadi_latitude=38.000
 145 cadi.longitude=72.000
 146 cadi_alias=policy@policy.onap.org
 147 cadi_loglevel=DEBUG
 148 cadi_keyfile=${{POLICY_HOME}}/etc/ssl/aaf-cadi.keyfile
 149 cadi_protocols=TLSv1.1,TLSv1.2
 150 cadi_x509_issuers=CN=intermediateCA_1, OU=OSAAF, O=ONAP, C=US:CN=intermediateCA_7, OU=OSAAF, O=ONAP, C=US
 151 cadi_keystore=${{POLICY_HOME}}/etc/ssl/policy-keystore
 152 cadi_keystore_password=${{KEYSTORE_PASSWD}}
 153 cadi_key_password=${{KEYSTORE_PASSWD}}
 154 cadi_truststore=${{POLICY_HOME}}/etc/ssl/policy-truststore
 155 cadi_truststore_password=${{TRUSTSTORE_PASSWD}}
 156 aaf_env=DEV
 157 aaf_url=https://${{AAF_HOST}}:8095/onap.org.osaaf.aaf.service:2.1
 158 aaf_fqdn=${{AAF_HOST}}
 159 aaf_oauth2_introspect_url=https://${{AAF_HOST}}:8095/onap.org.osaaf.aaf.introspect:2.1/introspect
 160 aaf_oauth2_token_url=https://${{AAF_HOST}}:8095/onap.org.osaaf.aaf.token:2.1/token
 161 fs_url=https://${{AAF_HOST}}:8095/onap.org.osaaf.aaf.fs.2.1
 162 gui_url=https://${{AAF_HOST}}:8095/onap.org.osaaf.aaf.gui.2.1
 163
 164 # Decision Response settings.
 165 # can be either PERMIT or DENY.
 166 decision.indeterminate.response=${{DECISION_INDETERMINATE_RESPONSE}}
 167
 168 msToscaModel.home=${{REST_PDP_WEBAPPS}}
 169 # AES key for password encryption in config files
 170 #org.onap.policy.encryption.aes.key=12345678901234567890123456789012