From e0f2c64ad6360e2ecec983cb5e0a60f812672106 Mon Sep 17 00:00:00 2001 From: wbauer Date: Thu, 4 Sep 2008 14:56:54 +0000 Subject: finished access controller, accessed it from command invoker and configured everything within onlinebku git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@14 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 3 +++ 1 file changed, 3 insertions(+) create mode 100644 BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties new file mode 100644 index 00000000..12deac35 --- /dev/null +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -0,0 +1,3 @@ +# Configuration for online CCE +AccessController.acceptUnmatched=false +AccessController.policyResource=classpath:at/gv/egiz/bku/online/conf/accessControlConfig.xml \ No newline at end of file -- cgit v1.2.3 From ead5dc6d62e7fd6325ea164625b02a6b6fbb226e Mon Sep 17 00:00:00 2001 From: wbauer Date: Fri, 5 Sep 2008 09:50:12 +0000 Subject: Added SSL configuration to BKUOnline git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@15 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../gv/egiz/bku/online/conf/defaultConf.properties | 22 +++++++++++++++++++++- 1 file changed, 21 insertions(+), 1 deletion(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 12deac35..a6bf9de6 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -1,3 +1,23 @@ # Configuration for online CCE + +# security manager configuration AccessController.acceptUnmatched=false -AccessController.policyResource=classpath:at/gv/egiz/bku/online/conf/accessControlConfig.xml \ No newline at end of file +AccessController.policyResource=classpath:at/gv/egiz/bku/online/conf/accessControlConfig.xml + +# ------------BEGIN SSL Config -------------------- +# SSL configuration for connections to external +# resources (e.g. data urls) + +# directory where certificates for +# chain constructions can be placed +SSL.certDirectory=classpath:at/gv/egiz/bku/online/conf/certs/certStore + +# Directory where trusted CA +# certificates are placed +SSL.caDirectory=classpath:at/gv/egiz/bku/online/conf/certs/CACerts + +SSL.doRevocationChecking=true +SSL.sslProtocol=TLS + +# ------------ END SSL Config -------------------- + -- cgit v1.2.3 From 14d74dd27c32a02b5301a0755f3fe174d7e3c9f6 Mon Sep 17 00:00:00 2001 From: wbauer Date: Fri, 5 Sep 2008 12:05:55 +0000 Subject: added file headers git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@17 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../at/gv/egiz/bku/online/conf/defaultConf.properties | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index a6bf9de6..108f8624 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -1,3 +1,21 @@ +# +# Copyright 2008 Federal Chancellery Austria and +# Graz University of Technology +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + + # Configuration for online CCE # security manager configuration -- cgit v1.2.3 From 76bb812a3254be530e403f8db8c01323a31b30c1 Mon Sep 17 00:00:00 2001 From: wbauer Date: Thu, 11 Sep 2008 13:03:44 +0000 Subject: git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@33 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 2 ++ 1 file changed, 2 insertions(+) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 108f8624..cdc2bfad 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -39,3 +39,5 @@ SSL.sslProtocol=TLS # ------------ END SSL Config -------------------- +ValidateHashDataInputs=true + -- cgit v1.2.3 From 9ca314eced8a73f58282684597468f98621ac502 Mon Sep 17 00:00:00 2001 From: wbauer Date: Fri, 19 Sep 2008 12:17:47 +0000 Subject: git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@53 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 3 +++ 1 file changed, 3 insertions(+) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index cdc2bfad..42b0d93e 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -41,3 +41,6 @@ SSL.sslProtocol=TLS ValidateHashDataInputs=true + +HTTPProxyHost=taranis.iaik.tugraz.at +HTTPProxyPort=8888 -- cgit v1.2.3 From 55302f2bbe65d28a21d61822f3c316a7fafd1eff Mon Sep 17 00:00:00 2001 From: wbauer Date: Wed, 24 Sep 2008 16:05:02 +0000 Subject: git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@69 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 42b0d93e..ec7d932c 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -42,5 +42,5 @@ SSL.sslProtocol=TLS ValidateHashDataInputs=true -HTTPProxyHost=taranis.iaik.tugraz.at -HTTPProxyPort=8888 +#HTTPProxyHost=taranis.iaik.tugraz.at +#HTTPProxyPort=8888 -- cgit v1.2.3 From c7e27d956e3f3a1059398ac8a791e753a53f27ae Mon Sep 17 00:00:00 2001 From: wbauer Date: Fri, 26 Sep 2008 07:36:55 +0000 Subject: added property to configure applet timeout git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@73 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index ec7d932c..73d89f22 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -40,7 +40,7 @@ SSL.sslProtocol=TLS # ------------ END SSL Config -------------------- ValidateHashDataInputs=true - +AppletTimeout=300000 #HTTPProxyHost=taranis.iaik.tugraz.at #HTTPProxyPort=8888 -- cgit v1.2.3 From 7d3f6235a46f70323defa9910da240e61ca684b3 Mon Sep 17 00:00:00 2001 From: wbauer Date: Wed, 1 Oct 2008 07:30:55 +0000 Subject: Moved main parts of the configuration to bkucommon git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@78 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 5 +++++ 1 file changed, 5 insertions(+) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 73d89f22..d7fc5ae9 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -36,6 +36,10 @@ SSL.caDirectory=classpath:at/gv/egiz/bku/online/conf/certs/CACerts SSL.doRevocationChecking=true SSL.sslProtocol=TLS +SSL.cache.lifetime=3600 + +# use authority info access extension to find ca certs. +SSL.useAIA=true # ------------ END SSL Config -------------------- @@ -44,3 +48,4 @@ AppletTimeout=300000 #HTTPProxyHost=taranis.iaik.tugraz.at #HTTPProxyPort=8888 +#DefaultSocketTimeout=200 -- cgit v1.2.3 From 5702f241064f90106e8495f3cf23b6e6798d6501 Mon Sep 17 00:00:00 2001 From: wbauer Date: Wed, 1 Oct 2008 10:49:31 +0000 Subject: added project for local MOCCA git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@79 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index d7fc5ae9..9766ae26 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -48,4 +48,4 @@ AppletTimeout=300000 #HTTPProxyHost=taranis.iaik.tugraz.at #HTTPProxyPort=8888 -#DefaultSocketTimeout=200 +DefaultSocketTimeout=200 -- cgit v1.2.3 From 27d91275555207f9e152c2867d52fbbf83f92ba7 Mon Sep 17 00:00:00 2001 From: wbauer Date: Wed, 8 Oct 2008 08:39:17 +0000 Subject: changed ssl certificate validation, now using iaik_pki git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@83 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../at/gv/egiz/bku/online/conf/defaultConf.properties | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 9766ae26..eebe36cd 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -28,18 +28,18 @@ AccessController.policyResource=classpath:at/gv/egiz/bku/online/conf/accessContr # directory where certificates for # chain constructions can be placed +#SSL.certDirectory=classpath:at/gv/egiz/bku/online/conf/certs/certStore SSL.certDirectory=classpath:at/gv/egiz/bku/online/conf/certs/certStore + # Directory where trusted CA # certificates are placed SSL.caDirectory=classpath:at/gv/egiz/bku/online/conf/certs/CACerts - -SSL.doRevocationChecking=true SSL.sslProtocol=TLS -SSL.cache.lifetime=3600 -# use authority info access extension to find ca certs. -SSL.useAIA=true +# warning do not set the following property to true +# its intended for debugging and testing only +SSL.disableAllChecks=false # ------------ END SSL Config -------------------- -- cgit v1.2.3 From 2f49ed7ea3649a51a9457b99004c8cb0ca443432 Mon Sep 17 00:00:00 2001 From: wbauer Date: Fri, 13 Mar 2009 10:58:21 +0000 Subject: git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@321 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 1 + 1 file changed, 1 insertion(+) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index eebe36cd..e2f07481 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -49,3 +49,4 @@ AppletTimeout=300000 #HTTPProxyHost=taranis.iaik.tugraz.at #HTTPProxyPort=8888 DefaultSocketTimeout=200 +#SignatureLayout= \ No newline at end of file -- cgit v1.2.3 From 616e06910051528674165319a1d6d161dff5859c Mon Sep 17 00:00:00 2001 From: clemenso Date: Fri, 27 Mar 2009 17:33:11 +0000 Subject: 1.1-RC6 (pinpad, pinmgmt, secureviewer) git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@323 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 3 +++ 1 file changed, 3 insertions(+) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index e2f07481..04c9c7bf 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -40,9 +40,12 @@ SSL.sslProtocol=TLS # warning do not set the following property to true # its intended for debugging and testing only SSL.disableAllChecks=false +#SSL.disableHostnameVerification=true # ------------ END SSL Config -------------------- +#UserAgent=citizen-card-environment/1.2 MOCCA/1.0 + ValidateHashDataInputs=true AppletTimeout=300000 -- cgit v1.2.3 From 66abdeca3ee555c8667851720d7a08f8e191294a Mon Sep 17 00:00:00 2001 From: clemenso Date: Wed, 1 Jul 2009 14:52:18 +0000 Subject: before release (keep defaultConf changes in comments) git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@384 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 04c9c7bf..17d1bd3e 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -44,7 +44,9 @@ SSL.disableAllChecks=false # ------------ END SSL Config -------------------- -#UserAgent=citizen-card-environment/1.2 MOCCA/1.0 +#UserAgent=citizen-card-environment/1.2 trustDeskbasic-Linux/2.7.7 +#MOCCA/1.1 +#DataURLConnectionImplClass=at.gv.egiz.bku.binding.LegacyDataUrlConnectionImpl ValidateHashDataInputs=true AppletTimeout=300000 -- cgit v1.2.3 From cc212daa67a7827c4718a104bb31719eb824c107 Mon Sep 17 00:00:00 2001 From: clemenso Date: Thu, 13 Aug 2009 09:33:46 +0000 Subject: [#427] No help in BKULocal [#433] update BKU Web Start CertStore git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@429 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index 17d1bd3e..a5add7b6 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -29,12 +29,12 @@ AccessController.policyResource=classpath:at/gv/egiz/bku/online/conf/accessContr # directory where certificates for # chain constructions can be placed #SSL.certDirectory=classpath:at/gv/egiz/bku/online/conf/certs/certStore -SSL.certDirectory=classpath:at/gv/egiz/bku/online/conf/certs/certStore +SSL.certDirectory=classpath:at/gv/egiz/bku/certs/certStore # Directory where trusted CA # certificates are placed -SSL.caDirectory=classpath:at/gv/egiz/bku/online/conf/certs/CACerts +SSL.caDirectory=classpath:at/gv/egiz/bku/certs/trustStore SSL.sslProtocol=TLS # warning do not set the following property to true @@ -45,7 +45,6 @@ SSL.disableAllChecks=false # ------------ END SSL Config -------------------- #UserAgent=citizen-card-environment/1.2 trustDeskbasic-Linux/2.7.7 -#MOCCA/1.1 #DataURLConnectionImplClass=at.gv.egiz.bku.binding.LegacyDataUrlConnectionImpl ValidateHashDataInputs=true -- cgit v1.2.3 From 32ecfb52f91cf17f42a24ed2a566a832b409f157 Mon Sep 17 00:00:00 2001 From: clemenso Date: Tue, 19 Jan 2010 08:42:48 +0000 Subject: user-agent for activation test with local BKU simulation git-svn-id: https://joinup.ec.europa.eu/svn/mocca/trunk@578 8a26b1a7-26f0-462f-b9ef-d0e30c41f5a4 --- .../main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties') diff --git a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties index a5add7b6..b4ecfd86 100644 --- a/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties +++ b/BKUOnline/src/main/resources/at/gv/egiz/bku/online/conf/defaultConf.properties @@ -44,8 +44,8 @@ SSL.disableAllChecks=false # ------------ END SSL Config -------------------- -#UserAgent=citizen-card-environment/1.2 trustDeskbasic-Linux/2.7.7 -#DataURLConnectionImplClass=at.gv.egiz.bku.binding.LegacyDataUrlConnectionImpl +#UserAgent=citizen-card-environment/1.2 MOCCA/1.2 +#UserAgent=citizen-card-environment/1.2 trustDeskbasic/2.8.1 ValidateHashDataInputs=true AppletTimeout=300000 -- cgit v1.2.3