* Combine filter specs into single spec with multiple match strings
* Use example.com instead of local in example hostnames
* Remove "max_tree_depth", which is not used
{
"tr_internal": {
- "max_tree_depth": 12,
"hostname":"beta.example.com",
"trps_port":12308,
"tids_port":12309,
"realm": "apc.x",
"identity_provider": {
"aaa_servers": [
- "apc.local"
+ "apc.example.com"
],
"apcs": [
"apc.x"
{
"action": "accept",
"domain_constraints": [
- "*.local"
+ "*.example.com"
],
"specs": [
{
"field": "rp_realm",
- "match": "rp.x"
- },
- {
- "field": "rp_realm",
- "match": "*.rp.x"
+ "match": [
+ "rp.x", "*.rp.x"
+ ]
}
],
"realm_constraints": [
"realm": "idp.x",
"gss_names": ["idp-cred@apc.x"],
"identity_provider": {
- "aaa_servers": ["idp.local"],
+ "aaa_servers": ["idp.example.com"],
"apcs": ["apc.x"],
"shared_config": "no"
}
"realm": "other.idp.x",
"gss_names": ["other-idp-cred@apc.x"],
"identity_provider": {
- "aaa_servers": ["idp.local"],
+ "aaa_servers": ["idp.example.com"],
"apcs": ["apc.x"],
"shared_config": "no"
}
{
"tr_internal": {
- "max_tree_depth": 12,
- "hostname":"beta.example.com",
+ "hostname":"tr.example.com",
"trps_port":12308,
"tids_port":12309,
"cfg_poll_interval": 1,
"realm": "apc.x",
"identity_provider": {
"aaa_servers": [
- "apc.local"
+ "apc.example.com"
],
"apcs": [
"apc.x"
{
"action": "accept",
"domain_constraints": [
- "*.local"
+ "*.example.com"
],
"specs": [
{
"field": "rp_realm",
- "match": "rp.x"
- },
- {
- "field": "rp_realm",
- "match": "*.rp.x"
+ "match": [
+ "rp.x", "*.rp.x"
+ ]
}
],
"realm_constraints": [
"realm": "idp.x",
"gss_names": ["idp-cred@apc.x"],
"identity_provider": {
- "aaa_servers": ["idp.local"],
+ "aaa_servers": ["idp.example.com"],
"apcs": ["apc.x"],
"shared_config": "no"
}
"realm": "other.idp.x",
"gss_names": ["other-idp-cred@apc.x"],
"identity_provider": {
- "aaa_servers": ["idp.local"],
+ "aaa_servers": ["idp.example.com"],
"apcs": ["apc.x"],
"shared_config": "no"
}
projects / trust_router.git / commitdiff