diff options
Diffstat (limited to 'install/share/custodia.conf.template')
-rw-r--r-- | install/share/custodia.conf.template | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/install/share/custodia.conf.template b/install/share/custodia.conf.template new file mode 100644 index 000000000..688229a50 --- /dev/null +++ b/install/share/custodia.conf.template @@ -0,0 +1,28 @@ +[global] +server_version = "IPAKeys/0.0.1" +server_socket = $IPA_CUSTODIA_SOCKET +auditlog = $IPA_CUSTODIA_AUDIT_LOG + +[auth:simple] +handler = custodia.httpd.authenticators.SimpleCredsAuth +uid = 48 +gid = 48 + +[auth:header] +handler = custodia.httpd.authenticators.SimpleHeaderAuth +header = GSS_NAME + +[authz:kemkeys] +handler = ipapython.secrets.kem.IPAKEMKeys +paths = /keys +store = ipa +server_keys = $IPA_CUSTODIA_CONF_DIR/server.keys + +[store:ipa] +handler = ipapython.secrets.store.iSecStore +ldap_uri = $LDAP_URI + +[/keys] +handler = custodia.secrets.Secrets +allowed_keytypes = kem +store = ipa |