Include ipAuth in SP's authentication sequence.

[mkws-moved-to-github.git] / tools / service-proxy / service-proxy.properties

diff --git a/tools/service-proxy/service-proxy.properties b/tools/service-proxy/service-proxy.properties
index 91da1ac..1c67a04 100644 (file)
--- a/tools/service-proxy/service-proxy.properties
+++ b/tools/service-proxy/service-proxy.properties
@@ -1,30 +1,16 @@
-## Service Proxy configuration for MKWS (host sp-mkws.indexdata.com)
-## Based on MKC's configuration, mk2-config-mkcadmin/service-proxy/service-proxy.properties
+# Service Proxy configuration for MKWS (host sp-mkws.indexdata.com)
+# Initially based on MKC's configuration
 
-## chains.<name> controls plugin mapping to the chain invoked with 
-## 'command=<name>' param, can contain comma-separated list of plugins
-
-## by default map everything to pazpar2 relayer
-chains.*      = relay
-chains.record = relay
-
-## other plugins may be mapped to specific commands
-chains.auth   = authn
-chains.categories = categories
-chains.ils = ils
-
-## register plugin classes with custom names
+# Register plugin classes with custom names
 plugins.relay      = com.indexdata.serviceproxy.plugins.Pazpar2RelayPlugin
 plugins.authn      = com.indexdata.serviceproxy.plugins.AuthNTorusPlugin
 plugins.categories = com.indexdata.serviceproxy.plugins.TargetCategoriesPlugin
-plugins.ils  = com.indexdata.serviceproxy.plugins.ILSPlugin
-#inlead, maps to 'record'
-#plugins.holdings-json  = com.indexdata.serviceproxy.plugins.SecondaryLookup
-#plugins.rdf-json  = com.indexdata.serviceproxy.plugins.SecondaryLookup
+plugins.ils        = com.indexdata.serviceproxy.plugins.ILSPlugin
 
-## Configuration properties for plug-ins 
 
-## relay plugin
+# Configuration properties for individual plug-ins 
+
+# relay plugin, proxies commands through to Pazpar2
 relay.PROXY_MODE = 3
 relay.PAZPAR2_URL = http://localhost:8004
 relay.PAZPAR2_SERVICE_ID = mkc
@@ -35,24 +21,29 @@ relay.STREAMBUFF_SIZE = 4096
 relay.PARSE_RESPONSES = true
 relay.CF_ENGINE_ADDRESS = localhost:9003
 
-## authn plugin
-## used for torus based authentication 
-authn.TORUS_URL = http://mkc-admin.indexdata.com/torus2/identity.USERS/records/
+# authn plugin, for torus based authentication 
+authn.TORUS_URL        = http://mkc-admin.indexdata.com/torus2/identity.USERS/records/
 authn.MASTER_TORUS_URL = http://mkc-admin.indexdata.com/torus2/admin.admin/records/
+authn.ACTION_SEQUENCE = check,login,referrer,constraint,ipauth
+authn.SPECIFIC_CONSTRAINT = hostName=${thisHost} 
 
-## categories plugin, for torus based target categories
-categories.TORUS_BASEURL = http://mkc-admin.indexdata.com/torus2/
-categories.EXCLUDE_EMPTY_CATEGORIES = true
+# categories plugin, for Torus-based target categories
+categories.TORUS_BASEURL            = http://mkc-admin.indexdata.com/torus2/
 categories.TORUS_BASEURL_SEARCHABLE = http://mkc-admin.indexdata.com/torus2/
+categories.EXCLUDE_EMPTY_CATEGORIES = true
 
+# ils plugin, for ILS operations such as holds and renewals
 ils.CFWS_URL = http://localhost:9003/connector
 
-# holdings-json.URL_PATTERN = http://www.deich.folkebibl.no/cgi-bin/rest_service/copies/1.0-alpha/data/${md-id/u}
 
-#holdings-json.IN_LOC_ID = z3950.deich.folkebibl.no:210/data
-#holdings-json.OUT_LOC_ID = z3950.deich.folkebibl.no:210/data
+# Map SP commands to command-separated sequences of plugins
+chains.auth = authn
+chains.categories = categories
+chains.ils = ils
+# Map all other commands to the Pazpar2 relayer
+chains.* = relay
 
-#rdf-json.URL_PATTERN = http://data.deichman.no/resource/tnr_${md-id/u}.json
 
-#rdf-json.IN_LOC_ID = z3950.deich.folkebibl.no:210/data
-#rdf-json.OUT_LOC_ID = z3950.deich.folkebibl.no:210/data
+# Just so I can check that this particular SP config is in use
+chains.mike = info
+plugins.info = com.indexdata.serviceproxy.plugins.InfoPlugin