X-Git-Url: https://osm.etsi.org/gitweb/?p=osm%2FNBI.git;a=blobdiff_plain;f=osm_nbi%2Fnbi.cfg;h=60320ad87dc62f224e5e12bc59606e8886366b26;hp=81237cd87de7946bddd9695f1010f62503fccd18;hb=4ca5152329fcba2f575085df9c0921f6d1135020;hpb=29933fc257389f16f9c798f52a43e43800475a4a diff --git a/osm_nbi/nbi.cfg b/osm_nbi/nbi.cfg index 81237cd..60320ad 100644 --- a/osm_nbi/nbi.cfg +++ b/osm_nbi/nbi.cfg @@ -41,13 +41,12 @@ server.ssl_private_key: "./http/privkey.pem" server.ssl_pass_phrase: "osm4u" server.thread_pool: 10 -# Only for test. It works without authorization using the provided user and project: -# test.user_not_authorized: "admin" -# test.project_not_authorized: "admin" - # Uncomment for allow basic authentication apart from bearer # auth.allow_basic_authentication: True +# comment or set to False to disable /test URL +server.enable_test: True + log.screen: False log.access_file: "" log.error_file: "" @@ -61,14 +60,18 @@ driver: "mongo" # mongo or memory host: "mongo" # hostname or IP port: 27017 name: "osm" +# replicaset: "replicaset" # user: "user" # password: "password" # commonkey: "commonkey" +[prometheus] +host: "prometheus" #hostname or IP +port: 9090 + loglevel: "DEBUG" #logfile: /var/log/osm/nbi-database.log - [storage] driver: "local" # local filesystem # for local provide file path @@ -89,8 +92,29 @@ loglevel: "DEBUG" group_id: "nbi-server" [authentication] -backend: "internal" +backend: "keystone" # internal or keystone or tacacs +# for keystone backend a comma separated list of user adn project _domain_name list can ba provided. +# NBI will try authenticate with all of then if domain is not provided in the content of a POST token +# user_domain_name: "default,ldap" +# project_domain_name: "default,ldap" + +# Keystone config parameters are +# auth_url: format https://:/v3 # v3 is necessary +# auth_host: ip address of keystone host. +# auth_port: port number of keystone. +# Provide either auth_url or (auth_host and auth_port) +# service_username: "nbi" +# service_password: "nbi" + +# Only for test. It works without authorization using the provided user and project: +# user_not_authorized: "admin" +# project_not_authorized: "admin" + +# TACACS configuration +# tacacs_host: "" +# tacacs_secret: "" +# tacacs_port: 49 # Default value +# tacacs_timeout: 10 # Default value [rbac] -#resources_to_operations: "resources_to_operations.yml" -#roles_to_operations: "roles_to_operations.yml" +# roles_to_operations: "roles_to_operations.yml" # initial role generation when database