1ipsilon.conf(5)              Ipsilon Manual Pages              ipsilon.conf(5)
2
3
4

NAME

6       ipsilon.conf - Ipsilon IdP configuration file
7

SYNOPSIS

9       /etc/ipsilon/<instancename>/ipsilon.conf
10

DESCRIPTION

12       ipsilon.conf is used to set instance-specific configuration options for
13       an Ipsilon instance. It should be stored in a subdirectory representing
14       the  instance  under  the  the system configuration directory, normally
15       /etc/ipsilon. For example /etc/ipsilon/idp/ispilon.conf.
16
17

SYNTAX

19       The configuration options are not case sensitive.  The  values  may  be
20       case sensitive, depending on the option.
21
22       Blank  lines  are ignored.  Lines beginning with # are comments and are
23       ignored.
24
25       Valid lines consist of an option name, an equals sign and a value. Spa‐
26       ces  surrounding  equals  sign are ignored. An option terminates at the
27       end of a line.
28
29       Non-string values  should  not  be  quoted,  the  quotes  will  not  be
30       stripped.
31
32           # Wrong - don't include quotes with boolean options
33           verbose = "True"
34
35           # Right - Properly formatted options
36           verbose = True
37           verbose=True
38
39       Options  must  appear in the section named [global]. There are no other
40       sections defined or used currently.
41
42

OPTIONS

44       The following options are defined:
45
46       debug  Enables additional debugging output.
47
48       tools.log_request_response.on
49              Logs the full SAML 2 request and response information.
50
51       db.conn.log
52              Enable verbose database connection tracing logs. debug needs  to
53              be True for this to be written.
54
55       template_dir
56              Location  of  the  template  directory used for buidling the UI.
57              This can be relative to base.dir.
58
59       base.mount
60              The base mount mount for UI pages. This should match the name of
61              the IdP.
62
63       base.dir
64              The Ipsilon UI base directory, e.g. /usr/share/ipsilon.
65
66       admin.config.db
67              Database URL for storing Ipsilon administrative settings.
68
69       user.prefs.db
70              Database  URL  for  storing persistent user information. This is
71              where users are marked as administrators by setting is_admin  to
72              1.
73
74       transactions.db
75              Database URL for storing login transactions.
76
77       tools.sessions.on
78              Enable sessions in CherryPy. This should always be True.
79
80       tools.sessions.name
81              The session name to be used in session cookies.
82
83       tools.sessions.storage_type
84              Type of storage for the sessions. See CherryPy documentation for
85              more details. Ipsilon defaults to using  file.  Ipsilon  adds  a
86              session  storage  type  "Sql"  for storing the sesions in an SQL
87              database for load-balanced servers.
88
89       tools.sessions.storage_path
90              The directory where the CherryPy sessions are stored.
91
92       tools.sessions.storage_dburi
93              The database URL used for session storage if storage_type is set
94              to "Sql".
95
96       tools.sessions.path
97              The  URI  for where the session is valid, this should conform to
98              the instance name, e.g. /idp.
99
100       tools.sessions.timeout
101              The time in minutes the session is valid for. Default is 60.
102
103       tools.sessions.httponly
104              If False (the default) the cookie httponly  value  will  not  be
105              set.  If  True, the cookie httponly value will be set (to 1). Of
106              this is set to True, browsers are instructed to only send  cook‐
107              ies  with  http  requests, resulting in them not being available
108              for Javascript-based requests.
109
110       tools.sessions.secure
111              If False the cookie secure value will not be set. If  True  (the
112              default), the cookie secure value will be set (to 1). If this is
113              set to True, browsers are instructed to only send cookies to se‐
114              cure (TLS-protected) URLs.
115

SEE ALSO

117       ipsilon-server-install(1)
118
119
120
121Ipsilon                              3.0.1                     ipsilon.conf(5)
Impressum