1ipsilon.conf(5) Ipsilon Manual Pages ipsilon.conf(5)
2
3
4
6 ipsilon.conf - Ipsilon IdP configuration file
7
9 /etc/ipsilon/<instancename>/ipsilon.conf
10
12 ipsilon.conf is used to set instance-specific configuration options for
13 an Ipsilon instance. It should be stored in a subdirectory representing
14 the instance under the the system configuration directory, normally
15 /etc/ipsilon. For example /etc/ipsilon/idp/ispilon.conf.
16
17
19 The configuration options are not case sensitive. The values may be
20 case sensitive, depending on the option.
21
22 Blank lines are ignored. Lines beginning with # are comments and are
23 ignored.
24
25 Valid lines consist of an option name, an equals sign and a value. Spa‐
26 ces surrounding equals sign are ignored. An option terminates at the
27 end of a line.
28
29 Non-string values should not be quoted, the quotes will not be
30 stripped.
31
32 # Wrong - don't include quotes with boolean options
33 verbose = "True"
34
35 # Right - Properly formatted options
36 verbose = True
37 verbose=True
38
39 Options must appear in the section named [global]. There are no other
40 sections defined or used currently.
41
42
44 The following options are defined:
45
46 debug Enables additional debugging output. log.screen must also be
47 True for this to be written.
48
49 tools.log_request_response.on
50 Logs the full SAML 2 request and response information.
51
52 db.conn.log
53 Enable verbose database connection tracing logs. debug and
54 log.screen both need to be True for this to be written.
55
56 template_dir
57 Location of the template directory used for buidling the UI.
58 This can be relative to base.dir.
59
60 log.screen
61 Send logs to the console, which Apache grabs and adds to its own
62 error log.
63
64 base.mount
65 The base mount mount for UI pages. This should match the name of
66 the IdP.
67
68 base.dir
69 The Ipsilon UI base directory, e.g. /usr/share/ipsilon.
70
71 admin.config.db
72 Database URL for storing Ipsilon administrative settings.
73
74 user.prefs.db
75 Database URL for storing persistent user information. This is
76 where users are marked as administrators by setting is_admin to
77 1.
78
79 transactions.db
80 Database URL for storing login transactions.
81
82 tools.sessions.on
83 Enable sessions in CherryPy. This should always be True.
84
85 tools.sessions.name
86 The session name to be used in session cookies.
87
88 tools.sessions.storage_type
89 Type of storage for the sessions. See CherryPy documentation for
90 more details. Ipsilon defaults to using file. Ipsilon adds a
91 session storage type "Sql" for storing the sesions in an SQL
92 database for load-balanced servers.
93
94 tools.sessions.storage_path
95 The directory where the CherryPy sessions are stored.
96
97 tools.sessions.storage_dburi
98 The database URL used for session storage if storage_type is set
99 to "Sql".
100
101 tools.sessions.path
102 The URI for where the session is valid, this should conform to
103 the instance name, e.g. /idp.
104
105 tools.sessions.timeout
106 The time in minutes the session is valid for. Default is 60.
107
108 tools.sessions.httponly
109 If False (the default) the cookie httponly value will not be
110 set. If True, the cookie httponly value will be set (to 1). Of
111 this is set to True, browsers are instructed to only send cook‐
112 ies with http requests, resulting in them not being available
113 for Javascript-based requests.
114
115 tools.sessions.secure
116 If False the cookie secure value will not be set. If True (the
117 default), the cookie secure value will be set (to 1). If this is
118 set to True, browsers are instructed to only send cookies to
119 secure (TLS-protected) URLs.
120
122 ipsilon-server-install(1)
123
124
125
126Ipsilon 1.0.0 ipsilon.conf(5)