change oidc admin authz to ipaddress

testbed/integration/shibboleth-idp/config/shib-idp/conf/access-control.xml

@@ -38,7 +38,7 @@
 
         <entry key="AccessByIPAddress">
             <bean id="AccessByIPAddress" parent="shibboleth.IPRangeAccessControl"
-                  p:allowedRanges="#{ {'127.0.0.1/32', '::1/128', '172.16.0.0/12'} }" />
+                  p:allowedRanges="#{ {'127.0.0.1/32', '::1/128', '172.16.0.0/12', '192.168.16.0/24'} }" />
         </entry>
 
         <!--

testbed/integration/shibboleth-idp/config/shib-idp/conf/oidc.properties

@@ -104,17 +104,17 @@ idp.oidc.subject.salt = eezien3iteit0gaiciiweayohxahmai6
 # Settings for issue-registration-access-token flow
 #idp.oidc.admin.registration.logging = IssueRegistrationAccessToken
 idp.oidc.admin.registration.nonBrowserSupported = true
-idp.oidc.admin.registration.authenticated = true
+idp.oidc.admin.registration.authenticated = false
 #idp.oidc.admin.registration.resolveAttributes = false
 #idp.oidc.admin.registration.lookup.policy = shibboleth.oidc.admin.DefaultMetadataPolicyLookupStrategy
 #idp.oidc.admin.registration.defaultTokenLifetime = P1D
-idp.oidc.admin.registration.accessPolicy = AccessByAdminUser
+idp.oidc.admin.registration.accessPolicy = AccessByIPAddress  
 #idp.oidc.admin.registration.policyLocationPolicy = AccessByAdmin
-idp.oidc.admin.registration.policyIdPolicy = AccessByAdminUser
+idp.oidc.admin.registration.policyIdPolicy = AccessByIPAddress
 #idp.oidc.admin.registration.clientIdPolicy = AccessByAdmin
 
-idp.oidc.admin.clients.authenticated = true
-idp.oidc.admin.clients.accessPolicy = AccessByAdminUser
+idp.oidc.admin.clients.authenticated = false
+idp.oidc.admin.clients.accessPolicy = AccessByIPAddress
 
 #
 # OAuth2 Settings - these typically involve generic OAuth 2.0 use cases