1 # Licensed under the Apache License, Version 2.0 (the "License");
2 # you may not use this file except in compliance with the License.
3 # You may obtain a copy of the License at
5 # http://www.apache.org/licenses/LICENSE-2.0
7 # Unless required by applicable law or agreed to in writing, software
8 # distributed under the License is distributed on an "AS IS" BASIS,
9 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
11 # See the License for the specific language governing permissions and
12 # limitations under the License.
15 # tools.secureheaders.on = True
16 tools.sessions.on = True
17 # increase security on sessions
18 tools.sessions.secure = True
19 tools.sessions.httponly = True
20 tools.encode.on: True,
21 tools.encode.encoding: 'utf-8'
22 tools.response_headers.on = True
24 # tools.auth_basic.on: True,
25 # tools.auth_basic.realm: 'localhost',
26 # tools.auth_basic.checkpassword: get_tokens
30 tools.staticdir.on: True
31 tools.staticdir.dir: "/app/NBI/osm_nbi/html_public"
35 server.socket_host: "0.0.0.0"
36 server.socket_port: 9999
38 server.ssl_module: "builtin"
39 server.ssl_certificate: "./http/cert.pem"
40 server.ssl_private_key: "./http/privkey.pem"
41 server.ssl_pass_phrase: "osm4u"
42 server.thread_pool: 10
44 # Uncomment for allow basic authentication apart from bearer
45 # auth.allow_basic_authentication: True
47 # comment or set to False to disable /test URL
48 server.enable_test: True
55 #log.file: /var/log/osm/nbi.log
59 driver: "mongo" # mongo or memory
60 host: "mongo" # hostname or IP
64 # password: "password"
65 # commonkey: "commonkey"
68 host: "prometheus" #hostname or IP
72 #logfile: /var/log/osm/nbi-database.log
75 driver: "local" # local filesystem
76 # for local provide file path
77 path: "/app/storage" #"/home/atierno/OSM/osm/NBI/local/storage"
80 #logfile: /var/log/osm/nbi-storage.log
83 driver: "kafka" # local or kafka
84 # for local provide file path
85 path: "/app/storage/kafka"
90 #logfile: /var/log/osm/nbi-message.log
91 group_id: "nbi-server"
94 backend: "internal" # internal or keystone
95 # for keystone backend a comma separated list of user adn project _domain_name list can ba provided.
96 # NBI will try authenticate with all of then if domain is not provided in the content of a POST token
97 # user_domain_name: "default,ldap"
98 # project_domain_name: "default,ldap"
100 # Keystone config parameters are
101 # auth_url: format https://<ip>:<port>/v3 # v3 is necessary
102 # auth_host: ip address of keystone host.
103 # auth_port: port number of keystone.
104 # Provide either auth_url or (auth_host and auth_port)
105 # service_username: "nbi"
106 # service_password: "nbi"
108 # Only for test. It works without authorization using the provided user and project:
109 # user_not_authorized: "admin"
110 # project_not_authorized: "admin"
113 # roles_to_operations: "roles_to_operations.yml" # initial role generation when database