| ys9693 | 16a9fce | 2020-01-19 13:50:02 +0200 | [diff] [blame] | 1 | # Configure AAF |
| Ofir Sonsino | 8f29cc7 | 2020-03-04 21:05:28 +0200 | [diff] [blame] | 2 | aaf_locate_url=https://aaf.onap.org:8095 |
| 3 | aaf_url=https://aaf.onap.org:8095/locate/ |
| ys9693 | 16a9fce | 2020-01-19 13:50:02 +0200 | [diff] [blame] | 4 | |
| 5 | #aaf_url=https://DME2RESOLVE/service=com.att.authz.AuthorizationService/version=2.0/envContext=TEST/routeOffer=BAU_SE |
| 6 | |
| 7 | #if you are running aaf service from a docker image you have to use aaf service IP and port number |
| Ofir Sonsino | 8f29cc7 | 2020-03-04 21:05:28 +0200 | [diff] [blame] | 8 | aaf_id=sdc@onap |
| ys9693 | 16a9fce | 2020-01-19 13:50:02 +0200 | [diff] [blame] | 9 | #Encrypt the password using AAF Jar |
| 10 | aaf_password= enc:uI_J4jBL4YUcIZZa5uZKj3QMUC63hbS8TmDn5PSp5nO |
| 11 | # Sample CADI Properties, from CADI 1.4.2 |
| Ofir Sonsino | 8f29cc7 | 2020-03-04 21:05:28 +0200 | [diff] [blame] | 12 | hostname=onapportal |
| ys9693 | 16a9fce | 2020-01-19 13:50:02 +0200 | [diff] [blame] | 13 | csp_domain=PROD |
| 14 | |
| 15 | # Add Absolute path to Keyfile |
| 16 | cadi_keyfile=/opt/app/jetty/base/be/etc/keyfile |
| 17 | |
| 18 | |
| 19 | # This is required to accept Certificate Authentication from Certman certificates. |
| 20 | # can be TEST, IST or PROD |
| 21 | aaf_env=IST |
| 22 | |
| 23 | # DEBUG prints off all the properties. Use to get started. |
| 24 | cadi_loglevel=DEBUG |
| 25 | |
| 26 | |
| 27 | # Become CSO Poodle Compliant by only allowing sanctioned TLS versions |
| 28 | # The following is the default |
| 29 | # cadi_protocols=TLSv1.1,TLSv1.2 |
| 30 | |
| 31 | # Default TrustStore - REQUIRED for changing PROTOCOL Defaults for DME2 |
| 32 | # Read https://wiki.web.att.com/pages/viewpage.action?pageId=574623569#URGENT:SolvingSSL2-3/TLSv1removalissues-Up-to-dateTruststore |
| 33 | # Add Absolute path to truststore2018.jks |
| 34 | cadi_truststore=/opt/app/jetty/base/be/etc/cadi_truststore.jks |
| 35 | # Note: This is the ONLY password that doesn't have to be encrypted. All Java's TrustStores are this passcode by default, because they are public certs |
| 36 | cadi_truststore_password=changeit |
| 37 | |
| 38 | # how to turn on SSL Logging |
| 39 | #javax.net.debug=ssl |
| 40 | |
| 41 | ## |
| 42 | # Hint |
| 43 | # Use "maps.bing.com" to get Lat and Long for an Address |
| 44 | AFT_LATITUDE=32.780140 |
| 45 | AFT_LONGITUDE=-96.800451 |
| 46 | AFT_ENVIRONMENT=AFTUAT |
| 47 | AFT_DME2_CLIENT_IGNORE_SSL_CONFIG=true |
| 48 | DME2.DEBUG=true |
| 49 | AFT_DME2_HTTP_EXCHANGE_TRACE_ON=true |
| 50 | |
| 51 | cadi_latitude=32.780140 |
| 52 | cadi_longitude=-96.800451 |
| 53 | |
| 54 | aaf_root_ns=com.att.aaf |
| 55 | aaf_api_version=2.0 |