Mercurial > hg > ThermostatQA

--- a/ChangeLog	Wed Dec 04 16:05:32 2013 +0100
+++ b/ChangeLog	Wed Dec 04 17:27:28 2013 +0100
@@ -1,3 +1,8 @@
+2013-12-04  Jana Fabrikova  <jfabriko@redhat.com>
+
+	* storageconfig/1.1.0:
+	adding the configuration files for the 1.1.0 version used by the cmdc tests
+
 2013-12-04  Jana Fabrikova  <jfabriko@redhat.com>

 	* src/org/thermostat/qa/framework/ThermostatUtilities.java:
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/db-mongodb/agent.auth	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,9 @@
+# This file is intended to be read by a hand-rolled reader/parser, to avoid
+# passwords needing to be represented as String objects at runtime.  It must
+# be saved with Unix line end characters, and encoded as ascii.
+# Uncomment the following lines and replace with your storage authentication
+# parameters as needed.
+#
+#username=thermostat
+#password=thermostat
+
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/db-mongodb/agent.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,15 @@
+# Indicates if this agent will save its data to the database on exit
+# or rather will purge the db
+SAVE_ON_EXIT=false
+
+# A netty-based side channel for accepting configuration/tuning
+# requests from the client will listen for connections on the address
+# configured here.
+# If this is removed or commented out, the default port is 127.0.0.1:12000
+CONFIG_LISTEN_ADDRESS=127.0.0.1:12000
+
+# Connection URL to storage. This can be overridden with the -d option
+# on the command line. In order to use web storage instead, use something
+# similar to the following line:
+#DB_URL=https://storage-server.example.com:8443/thermostat/storage
+DB_URL=mongodb://127.0.0.1:27518
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/db-mongodb/client.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,5 @@
+#
+#Mon Aug 26 10:34:41 CEST 2013
+connection-url=mongodb\://127.0.0.1\:27518
+save-entitlements=false
+username=
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/db-mongodb/thermostat-roles.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,64 @@
+# This file is used if the PropertiesUsernameRolesLoginModule is used
+# as a delegate in the JAAS configuration *and* the 'roles.properties' option
+# has not been specified for the login module.
+#
+# If that is the case, this file does two things:
+#    1.  It maps user names to roles.
+#    2.  Defines an optional recursive set of roles. This is useful in order to
+#        define role sets. Users can then be members of such defined role sets.
+#        Note that every line which does not have a user name (as defined in the
+#        corresponding users.properties file) on the left hand side of the
+#        equals sign ('='), represents a role.
+#
+# A user is assigned multiple roles by separating them by a comma ','. Every
+# entity in this file which isn't a user name, will be implicitly defined as a
+# role.
+#
+# Format is as follows:
+#
+# user1 = my-role, my-role2
+# user2 = new-role, role1
+# role1 = other-role
+#
+# Considering users 'user1' and 'user2' are defined in users.properties, the
+# above would assign 'user1' the roles 'my-role' and 'my-role2'. 'user2' would
+# be a member of 'new-role', 'role1' and 'other-role' (transitively via role1)
+#
+#
+#
+# Example recursive role definition allowed-to-do-everything agent-users. You
+# can uncomment the following lines and assign your agent users this
+# "thermostat-agent" role.
+#thermostat-agent = thermostat-cmdc-verify, \
+#                   thermostat-login, \
+#                   thermostat-prepare-statement, \
+#                   thermostat-purge, \
+#                   thermostat-register-category, \
+#                   thermostat-realm, \
+#                   thermostat-save-file, \
+#                   thermostat-write
+#
+# Example recursive role definition for allowed-to-see-everything client-users.
+# You may uncomment the following lines and assign your client users this
+# "thermostat-client" role.
+#thermostat-client = thermostat-agents-grant-read-agentId-ALL, \
+#                    thermostat-cmdc-generate, \
+#                    thermostat-hosts-grant-read-hostname-ALL, \
+#                    thermostat-load-file, \
+#                    thermostat-login, \
+#                    thermostat-prepare-statement, \
+#                    thermostat-query, \
+#                    thermostat-realm, \
+#                    thermostat-register-category, \
+#                    thermostat-vms-grant-read-username-ALL, \
+#                    thermostat-vms-grant-read-vmId-ALL
+#
+# Example recursive role definition that grants all command channel privileges.
+# You may uncomment the following lines and assign your client users this
+# "thermostat-cmdc" role.
+#thermostat-cmdc = thermostat-cmdc-grant-garbage-collect, \
+#                  thermostat-cmdc-grant-dump-heap, \
+#                  thermostat-cmdc-grant-thread-harvester, \
+#                  thermostat-cmdc-grant-killvm, \
+#                  thermostat-cmdc-grant-ping, \
+#                  thermostat-cmdc-grant-jmx-toggle-notifications
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/db-mongodb/thermostat-users.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,19 @@
+# This file is used if the PropertiesUsernameRolesLoginModule is used
+# as a delegate in the JAAS configuration *and* the 'users.properties' option
+# has not been specified for the login module.
+#
+# If that is the case, this defines the database of users with corresponding
+# passwords, the thermostat web storage servlet knows about.
+#
+# WARNING: Passwords of users are in plain text. This needs to be considered
+#          when using this module in production. The main goal of this login
+#          module is to provide a simple way to define thermostat users and
+#          their corresponding passwords.
+#
+# The format of this file is as follows (whitespace in usernames/passwords are
+# not recommended):
+#
+# user1=password1
+# user2=password2
+# ...
+#
\ No newline at end of file
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/agent.auth	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,8 @@
+# This file is intended to be read by a hand-rolled reader/parser, to avoid
+# passwords needing to be represented as String objects at runtime.  It must
+# be saved with Unix line end characters, and encoded as ascii.
+# Uncomment the following lines and replace with your storage authentication
+# parameters as needed.
+#
+username=agent-tester
+password=heslo1
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/agent.badauth	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,8 @@
+# This file is intended to be read by a hand-rolled reader/parser, to avoid
+# passwords needing to be represented as String objects at runtime.  It must
+# be saved with Unix line end characters, and encoded as ascii.
+# Uncomment the following lines and replace with your storage authentication
+# parameters as needed.
+#
+username=doctor-evil
+password=mini-me
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/agent.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,16 @@
+# Indicates if this agent will save its data to the database on exit
+# or rather will purge the db
+SAVE_ON_EXIT=false
+
+# A netty-based side channel for accepting configuration/tuning
+# requests from the client will listen for connections on the address
+# configured here.
+# If this is removed or commented out, the default port is 127.0.0.1:12000
+CONFIG_LISTEN_ADDRESS=127.0.0.1:12000
+
+# Connection URL to storage. This can be overridden with the -d option
+# on the command line. In order to use web storage instead, use something
+# similar to the following line:
+#DB_URL=https://storage-server.example.com:8443/thermostat/storage
+#DB_URL=mongodb://127.0.0.1:27518
+DB_URL=http://127.0.0.1:8080/thermostat/storage
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/client.badauth	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,6 @@
+#
+#Thu Aug 22 16:10:25 CEST 2013
+password=aaargh
+connection-url=http\://127.0.0.1\:8080/thermostat/storage
+save-entitlements=true
+username=time-for-tea
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/client.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,6 @@
+#
+#Thu Aug 22 16:10:25 CEST 2013
+password=heslo2
+connection-url=http\://127.0.0.1\:8080/thermostat/storage
+save-entitlements=true
+username=client-tester
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/thermostat-roles.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,85 @@
+# This file is used if the PropertiesUsernameRolesLoginModule is used
+# as a delegate in the JAAS configuration *and* the 'roles.properties' option
+# has not been specified for the login module.
+#
+# If that is the case, this file does two things:
+#    1.  It maps user names to roles.
+#    2.  Defines an optional recursive set of roles. This is useful in order to
+#        define role sets. Users can then be members of such defined role sets.
+#        Note that every line which does not have a user name (as defined in the
+#        corresponding users.properties file) on the left hand side of the
+#        equals sign ('='), represents a role.
+#
+# A user is assigned multiple roles by separating them by a comma ','. Every
+# entity in this file which isn't a user name, will be implicitly defined as a
+# role.
+#
+# Format is as follows:
+#
+# user1 = my-role, my-role2
+# user2 = new-role, role1
+# role1 = other-role
+#
+# Considering users 'user1' and 'user2' are defined in users.properties, the
+# above would assign 'user1' the roles 'my-role' and 'my-role2'. 'user2' would
+# be a member of 'new-role', 'role1' and 'other-role' (transitively via role1)
+#
+#
+#
+# Example recursive role definition allowed-to-do-everything agent-users. You
+# can uncomment the following lines and assign your agent users this
+# "thermostat-agent" role.
+#thermostat-agent = thermostat-add, thermostat-replace, thermostat-update, \
+#                  thermostat-remove, thermostat-save-file, thermostat-purge, \
+#                  thermostat-register-category, thermostat-register-category, \
+#                  thermostat-cmdc-verify, thermostat-login, thermostat-realm
+#
+# Example recursive role definition for allowed-to-see-everything client-users.
+# You may uncomment the following lines and assign your client users this
+# "thermostat-client" role.
+#thermostat-client = thermostat-realm, thermostat-login, thermostat-query, \
+#                    thermostat-cmdc-generate, thermostat-load-file, \
+#                    thermostat-register-category, thermostat-prepare-statement
+#
+# Example recursive role definition that grants all command channel privileges.
+# You may uncomment the following lines and assign your client users this
+# "thermostat-cmdc" role.
+#thermostat-cmdc = thermostat-cmdc-grant-garbage-collect, \
+#                  thermostat-cmdc-grant-dump-heap, \
+#                  thermostat-cmdc-grant-thread-harvester, \
+#                  thermostat-cmdc-grant-killvm, \
+#                  thermostat-cmdc-grant-ping, \
+#                  thermostat-cmdc-grant-jmx-toggle-notifications
+cmdc-tester=thermostat-cmdc, \
+            thermostat-client
+agent-tester=thermostat-agent
+client-tester=thermostat-client
+thermostat-agent=thermostat-write, \
+                 thermostat-save-file, \
+                 thermostat-purge, \
+                 thermostat-prepare-statement, \
+                 thermostat-register-category, \
+                 thermostat-cmdc-verify, \
+                 thermostat-login, \
+                 thermostat-realm
+# Grants users who are member of the "thermostat-client" role ALL read privileges.
+# See http://icedtea.classpath.org/wiki/?title=Thermostat/SecurityConsiderations#Thermostat_Access_Control
+thermostat-client=thermostat-agents-grant-read-agentId-ALL, \
+                  thermostat-hosts-grant-read-hostname-ALL, \
+                  thermostat-vms-grant-read-vmId-ALL, \
+                  thermostat-vms-grant-read-username-ALL, \
+                  thermostat-realm, \
+                  thermostat-login, \
+                  thermostat-query, \
+                  thermostat-prepare-statement, \
+                  thermostat-cmdc-generate, \
+                  thermostat-load-file, \
+                  thermostat-register-category
+thermostat-cmdc = thermostat-cmdc-grant-garbage-collect, \
+                  thermostat-cmdc-grant-dump-heap, \
+                  thermostat-cmdc-grant-thread-harvester, \
+                  thermostat-cmdc-grant-killvm, \
+                  thermostat-cmdc-grant-ping, \
+                  thermostat-cmdc-grant-jmx-toggle-notifications
+#^the above will be used for ping tests etc: cmdc-tester user
+
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/thermostat-roles.properties-old	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,56 @@
+# This file is used if the PropertiesUsernameRolesLoginModule is used
+# as a delegate in the JAAS configuration *and* the 'roles.properties' option
+# has not been specified for the login module.
+#
+# If that is the case, this file does two things:
+#    1.  It maps user names to roles.
+#    2.  Defines an optional recursive set of roles. This is useful in order to
+#        define role sets. Users can then be members of such defined role sets.
+#        Note that every line which does not have a user name (as defined in the
+#        corresponding users.properties file) on the left hand side of the
+#        equals sign ('='), represents a role.
+#
+# A user is assigned multiple roles by separating them by a comma ','. Every
+# entity in this file which isn't a user name, will be implicitly defined as a
+# role.
+#
+# Format is as follows:
+#
+# user1 = my-role, my-role2
+# user2 = new-role, role1
+# role1 = other-role
+#
+# Considering users 'user1' and 'user2' are defined in users.properties, the
+# above would assign 'user1' the roles 'my-role' and 'my-role2'. 'user2' would
+# be a member of 'new-role', 'role1' and 'other-role' (transitively via role1)
+#
+#
+#
+# Example recursive role definition allowed-to-do-everything agent-users. You
+# can uncomment the following lines and assign your agent users this
+# "thermostat-agent" role.
+#thermostat-agent = thermostat-add, thermostat-replace, thermostat-update, \
+#                  thermostat-remove, thermostat-save-file, thermostat-purge, \
+#                  thermostat-register-category, thermostat-register-category, \
+#                  thermostat-cmdc-verify, thermostat-login, thermostat-realm
+#
+# Example recursive role definition for allowed-to-see-everything client-users.
+# You may uncomment the following lines and assign your client users this
+# "thermostat-client" role.
+#thermostat-client = thermostat-realm, thermostat-login, thermostat-query, \
+#                    thermostat-cmdc-generate, thermostat-load-file, \
+#                    thermostat-register-category, thermostat-prepare-statement
+#
+# Example recursive role definition that grants all command channel privileges.
+# You may uncomment the following lines and assign your client users this
+# "thermostat-cmdc" role.
+#thermostat-cmdc = thermostat-cmdc-grant-garbage-collect, \
+#                  thermostat-cmdc-grant-dump-heap, \
+#                  thermostat-cmdc-grant-thread-harvester, \
+#                  thermostat-cmdc-grant-killvm, \
+#                  thermostat-cmdc-grant-ping, \
+#                  thermostat-cmdc-grant-jmx-toggle-notifications
+agent-tester=thermostat-agent
+client-tester=thermostat-client
+thermostat-agent=thermostat-add, thermostat-replace, thermostat-update, thermostat-remove, thermostat-save-file, thermostat-purge, thermostat-register-category, thermostat-register-category, thermostat-cmdc-verify, thermostat-login, thermostat-realm
+thermostat-client=thermostat-agents-grant-read-agentId-ALL, thermostat-hosts-grant-read-hostname-ALL, thermostat-vms-grant-read-vmId-ALL,thermostat-vms-grant-read-username-sgehwolf, thermostat-realm, thermostat-login, thermostat-query, thermostat-prepare-statement, thermostat-cmdc-generate, thermostat-load-file, thermostat-get-count, thermostat-register-category
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/storageconfig/1.1.0/web-tomcat/thermostat-users.properties	Wed Dec 04 17:27:28 2013 +0100
@@ -0,0 +1,22 @@
+# This file is used if the PropertiesUsernameRolesLoginModule is used
+# as a delegate in the JAAS configuration *and* the 'users.properties' option
+# has not been specified for the login module.
+#
+# If that is the case, this defines the database of users with corresponding
+# passwords, the thermostat web storage servlet knows about.
+#
+# WARNING: Passwords of users are in plain text. This needs to be considered
+#          when using this module in production. The main goal of this login
+#          module is to provide a simple way to define thermostat users and
+#          their corresponding passwords.
+#
+# The format of this file is as follows (whitespace in usernames/passwords are
+# not recommended):
+#
+# user1=password1
+# user2=password2
+# ...
+#
+agent-tester=heslo1
+client-tester=heslo2
+cmdc-tester=heslo3