From 4b70d069f8c211ccb157abe9e0fe2d85e48ac78e Mon Sep 17 00:00:00 2001
From: Paul Caskey <pcaskey@internet2.edu>
Date: Wed, 23 Dec 2020 08:36:09 -0600
Subject: [PATCH] wordpress SP chgs
---
.../wordpress/shibboleth/shibboleth2.xml | 2 +-
Workbench/docker-compose.yml | 10 --
.../conf/attribute-resolver.xml | 2 +-
.../shibboleth-idp/metadata/wordpress-sp.xml | 97 +++++++++----------
.../webproxy/container_files/httpd/index.html | 3 +-
Workbench/wordpress_server/Dockerfile | 2 +-
.../shibboleth/sp-encrypt-cert.pem | 24 +++++
.../shibboleth/sp-encrypt-key.pem | 40 ++++++++
.../shibboleth/sp-signing-cert.pem | 24 +++++
.../shibboleth/sp-signing-key.pem | 40 ++++++++
10 files changed, 180 insertions(+), 64 deletions(-)
create mode 100644 Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-cert.pem
create mode 100644 Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-key.pem
create mode 100644 Workbench/wordpress_server/container_files/shibboleth/sp-signing-cert.pem
create mode 100644 Workbench/wordpress_server/container_files/shibboleth/sp-signing-key.pem
diff --git a/Workbench/configs-and-secrets/wordpress/shibboleth/shibboleth2.xml b/Workbench/configs-and-secrets/wordpress/shibboleth/shibboleth2.xml
index 9df7259..6804343 100644
--- a/Workbench/configs-and-secrets/wordpress/shibboleth/shibboleth2.xml
+++ b/Workbench/configs-and-secrets/wordpress/shibboleth/shibboleth2.xml
@@ -47,7 +47,7 @@
<Handler type="MetadataGenerator" Location="/Metadata" signing="false"/>
<!-- Status reporting service. -->
- <Handler type="Status" Location="/Status" acl="127.0.0.1 ::1 172.16.0.0/12"/>
+ <Handler type="Status" Location="/Status" acl="127.0.0.1 ::1 172.16.0.0/12 192.168.0.0/16"/>
<!-- Session diagnostic service. -->
<Handler type="Session" Location="/Session" showAttributeValues="true"/>
diff --git a/Workbench/docker-compose.yml b/Workbench/docker-compose.yml
index 88341e3..5a4a509 100644
--- a/Workbench/docker-compose.yml
+++ b/Workbench/docker-compose.yml
@@ -399,17 +399,10 @@ services:
- type: bind
source: ./configs-and-secrets/wordpress/httpd/host-cert.pem
target: /etc/pki/tls/certs/cachain.pem
- - type: bind
- source: ./configs-and-secrets/wordpress/shibboleth/sp-cert.pem
- target: /etc/shibboleth/sp-cert.pem
- type: bind
source: ./configs-and-secrets/wordpress/httpd/shib.conf
target: /etc/httpd/conf.d/shib.conf
- secrets:
- - source: w_sp-key.pem
- target: shib_sp-key.pem
-
wordpress_data:
build: ./wordpress_data/
networks:
@@ -511,9 +504,6 @@ secrets:
# COmanage
c_sp-key.pem:
file: ./configs-and-secrets/comanage/shibboleth/sp-key.pem
-# Wordpress
- w_sp-key.pem:
- file: ./configs-and-secrets/wordpress/shibboleth/sp-key.pem
volumes:
grouper_data:
diff --git a/Workbench/idp/shibboleth-idp/conf/attribute-resolver.xml b/Workbench/idp/shibboleth-idp/conf/attribute-resolver.xml
index ac97ff2..cd2fb55 100644
--- a/Workbench/idp/shibboleth-idp/conf/attribute-resolver.xml
+++ b/Workbench/idp/shibboleth-idp/conf/attribute-resolver.xml
@@ -28,7 +28,7 @@
<InputDataConnector ref="myLDAP" attributeNames="cn"/>
</AttributeDefinition>
<AttributeDefinition xsi:type="Scoped" id="eduPersonPrincipalName" scope="%{idp.scope}">
- <InputDataConnector ref="myLDAP" attributeNames="eduPersonPrincipalName"/>
+ <InputDataConnector ref="myLDAP" attributeNames="uid"/>
</AttributeDefinition>
<!-- ========================================== -->
diff --git a/Workbench/idp/shibboleth-idp/metadata/wordpress-sp.xml b/Workbench/idp/shibboleth-idp/metadata/wordpress-sp.xml
index f73b4aa..2dc426c 100644
--- a/Workbench/idp/shibboleth-idp/metadata/wordpress-sp.xml
+++ b/Workbench/idp/shibboleth-idp/metadata/wordpress-sp.xml
@@ -1,7 +1,3 @@
-<!--
-This is example metadata only. Do *NOT* supply it as is without review,
-and do *NOT* provide it in real time to your partners.
- -->
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_9d0ae95ee88f2396b39d245b74751e04b8508425" entityID="https://wordpressdemo/shibboleth">
<md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
@@ -29,60 +25,60 @@ and do *NOT* provide it in real time to your partners.
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
- <ds:KeyName>1f84026f1f87</ds:KeyName>
<ds:X509Data>
- <ds:X509SubjectName>CN=1f84026f1f87</ds:X509SubjectName>
- <ds:X509Certificate>MIID6zCCAlOgAwIBAgIJAKlkm2CJBUzxMA0GCSqGSIb3DQEBCwUAMBcxFTATBgNV
-BAMTDDFmODQwMjZmMWY4NzAeFw0yMDA0MjExOTAwMzlaFw0zMDA0MTkxOTAwMzla
-MBcxFTATBgNVBAMTDDFmODQwMjZmMWY4NzCCAaIwDQYJKoZIhvcNAQEBBQADggGP
-ADCCAYoCggGBAPHOVkU6Zu4Q0Mpx1/YpGa+iDG3e8boT5D4ptJldP80cmh13MoA3
-AyeQac86EC8dO1Z8XFmnwsSwT246kBVfLgr6gQgMy7Ql4zLpnFzhKFBPgHBCT/5e
-or9qdn/b/ZPBC2sAeRecS7gFox66/s3+/FJ/XNHErrEDZi3XnDIz6UpOPFWR5WE1
-IUWMnEY27GFX4dAqIaXGBELwvPKsyZYpJLGjovi0beFVlN6B39dDmZn5yUD00ekX
-WSnYPSIYgXo5M1iM7tn5jRoaRo/KGbCK0q4/F3cCbzMSgfwkMAJ5GY0yhPUUXQGQ
-5ieLPawBV5QCiNNF4+SJIdGuASTYiZr7o51bmcMTqjAxTqPRL34cd+Cddndf+sGU
-24zPHfmjB79C0Xn+QgKmvkhujoi+n/pCgEtF1M75IsGY1djipqplOiph9vjQsD2x
-HGe5Vi1RDPqCIMgbxARJh3NodbgLeM92SiJur6VDpOVgdVOich1JYBsL5O3Vlb5v
-xKA6Sol8TneRywIDAQABozowODAXBgNVHREEEDAOggwxZjg0MDI2ZjFmODcwHQYD
-VR0OBBYEFOxhICWI1bbhgXsMW4DNuNHLB4g4MA0GCSqGSIb3DQEBCwUAA4IBgQBU
-0gKlnY0GzzFuYyWoF+tbLPKT9i3InG320A4H9V+VJ3ZgnXy+3kG2rIg09j04mgWF
-YSrWb7BUwYk8WMLD5fbhQ99vpFpKiJnhWvISc3wstgo18k9xr09n4lVU2aYDwgoD
-GTVj59KPu+KlwULvIMnvFbWZm3z2JqGzBMFv8zkID3YCGzyz1Ej7W05A12qcga+o
-Pu5/PLuVY2iRRI2cYpbxG5+kYejNXqiNHph5ROmEEpfnMFHyfMZrpH+BUxVfSTkJ
-K62rduZQabp4qKhIibyXw5fuANIXoGxsSC2IbBKl1jJ23j4aY1OUOqW7YBYkk94Q
-hp77m7JILWdulKtE314/Iy+/5V0k05FsVnWdeRLFW08NK5klt7+x6zG5gTFczN4I
-X+znZJ9LQKrr5VRwEx8aGBbpJ1OVXc5U5ARdtSMz/Nl+yRgZJD3kxID/1sjFRwmq
-OGk1Wid/0g2ZjXSiVMjTi8WrUzw9OyyCi4w9AkBPVNHRvBy1qVjZIlCzcso4gEQ=
+ <ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
- <ds:KeyName>1f84026f1f87</ds:KeyName>
<ds:X509Data>
- <ds:X509SubjectName>CN=1f84026f1f87</ds:X509SubjectName>
- <ds:X509Certificate>MIID6zCCAlOgAwIBAgIJAOqc+LvB4m+VMA0GCSqGSIb3DQEBCwUAMBcxFTATBgNV
-BAMTDDFmODQwMjZmMWY4NzAeFw0yMDA0MjExOTAwNDBaFw0zMDA0MTkxOTAwNDBa
-MBcxFTATBgNVBAMTDDFmODQwMjZmMWY4NzCCAaIwDQYJKoZIhvcNAQEBBQADggGP
-ADCCAYoCggGBAKcbX9lvwcBpG9qmza970xI4Vj537Aad7Fq7XNJfxRsXbPK+sRYV
-0TwRok2HhCPt2fKrzE03JZtqA7GemihvDDgWiW/KiSU8mFiFeGap0JkxoRnNQOLu
-y7AcZ9NrSh5jts+ko9SrJkVerNI7tF8njlmCR/19R1g/yp/ThLzr6PwfNg9zkFdo
-RXDtzYd1Qq4GPMaHqC8VMKwnaiv2s4KPU/sKN0sEea4XaaziCI6Cf2iZR/rHLNHe
-x9ST0VpuVODz/BOWmxsgTgeYrY3aGAwrB3lXlRkJL6KKabgC5cvrza1MfilzEart
-ngT0ckzCiLoRp10P3pVINqM7unyDdSwgElWvH3AcI3zJDblNyzL0eZp9F/pudNSN
-V4HVyqWPsGhRnDpLW/TS+Fnxv2DQqEe2Srxh61Un+8jZK7IWGeuCgPPuQrwzxq5c
-X98oyNqeys5X3yHkor42RbX4qYQzjfbvjDg4ewcNpNtu9RKfgUXAaMSS6dH5wdrZ
-fwo4Nuv0lCZB/QIDAQABozowODAXBgNVHREEEDAOggwxZjg0MDI2ZjFmODcwHQYD
-VR0OBBYEFCG6Hg40T0gRUyl4IQdW3pcoOIvTMA0GCSqGSIb3DQEBCwUAA4IBgQCM
-wJIMbAtcShEHhPOeZ72rGycR9Z7+yC72uSXyScgHME/kcLVqwzsHXvw37IkfbuvH
-D9Gz34OI4gg5QZtbarp4GpSycnoNJDT5IRNKkFrPyv3QWvyiTBtFguSAr6xOO8Py
-tBWetorrCcpqvnmiEDHIfs6g8vFq1HUDS1etDkrOk/e5RyHW7Yys3CBfRtLoRX/c
-iiEcuQg/HPqlCTFlHFbaSFMjklomSfSYFytdFkqGNNgZobUCAaj3L2Zw3FEBVn0o
-G0CcW9X3s+L+C3CAyofZBY0Nto2AOrAyaRW0wbGkcI3hI744f9rHArUyonTIe0hG
-SS1pwkfzFbpWZmiBMnoA7CB1ma/xVF+ln/gEn1LS7yKIdHO84/etJ3Ve8yjZKSBD
-e1TRefMMT5McNwoKEZdD0OhD8CBk95Pkhcl2limOzy6R7ekBlak2PclSLXyD6Hda
-m1lmTwWWHX/Jt8iVZsV85PlLIbZC0PJaJk90yMtMTBVxyLTU+iNcdhD9qnjwVb8=
+ <ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
@@ -108,3 +104,4 @@ m1lmTwWWHX/Jt8iVZsV85PlLIbZC0PJaJk90yMtMTBVxyLTU+iNcdhD9qnjwVb8=
</md:SPSSODescriptor>
</md:EntityDescriptor>
+
diff --git a/Workbench/webproxy/container_files/httpd/index.html b/Workbench/webproxy/container_files/httpd/index.html
index 28a56ea..d7862f9 100644
--- a/Workbench/webproxy/container_files/httpd/index.html
+++ b/Workbench/webproxy/container_files/httpd/index.html
@@ -17,7 +17,7 @@ <h3>Welcome to the InCommon TAP Workbench!</h3>
The system also contains the following downstream/target applications:
<ul>
<li><a href="https://__CSPHOSTNAME__/wordpress/" target="TAP-WB-WORDPRESS">WordPress</a></li>
-<li><a href="https://__CSPHOSTNAME__/wordpress/wp-admin/" target="TAP-WB-WORDPRESS-ADMON">WordPress Admin</a></li>
+<ul><li><a href="https://__CSPHOSTNAME__/wordpress/wp-admin/" target="TAP-WB-WORDPRESS-ADMON">WordPress Admin</a></li></ul>
</ul>
<br />
The following repository and message exchange monitoring tools are available:
@@ -35,6 +35,7 @@ <h3>Welcome to the InCommon TAP Workbench!</h3>
<li><a href="https://__CSPHOSTNAME__/grouperSSO/Shibboleth.sso/Status" target="TAP-WB-gSP">Grouper SP (3.2.0) status</a></li>
<li><a href="https://__CSPHOSTNAME__/MPSSO/Shibboleth.sso/Status" target="TAP-WB-mSP">midPoint SP (3.1.0) status</a></li>
<li><a href="https://__CSPHOSTNAME__/registrySSO/Shibboleth.sso/Status" target="TAP-WB-cSP">COmanage SP (3.2.0) status</a></li>
+ <li><a href="https://__CSPHOSTNAME__/wordpressSSO/Shibboleth.sso/Status" target="TAP-WB-wSP">Wordpress SP (3.2.0) status</a></li>
</ul>
</ul>
<br /><br /><br />
diff --git a/Workbench/wordpress_server/Dockerfile b/Workbench/wordpress_server/Dockerfile
index 3e2a4fa..d7a5586 100644
--- a/Workbench/wordpress_server/Dockerfile
+++ b/Workbench/wordpress_server/Dockerfile
@@ -24,7 +24,7 @@ RUN echo 'date.timezone="UTC"' >> /etc/php.ini
RUN cat /etc/resolv.conf
WORKDIR /var/www/html
-RUN ln -sf /run/secrets/shib_sp-key.pem /etc/shibboleth/sp-key.pem
+#RUN ln -sf /run/secrets/shib_sp-key.pem /etc/shibboleth/sp-key.pem
RUN chown -R apache:apache /var/www/html
COPY container_files/system/setservername.sh /usr/local/bin/
RUN chmod 755 /usr/local/bin/setservername.sh #&& rm -f /etc/httpd/conf.d/ssl.conf
diff --git a/Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-cert.pem b/Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-cert.pem
new file mode 100644
index 0000000..7a591f9
--- /dev/null
+++ b/Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-cert.pem
@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-key.pem b/Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-key.pem
new file mode 100644
index 0000000..27aa71d
--- /dev/null
+++ b/Workbench/wordpress_server/container_files/shibboleth/sp-encrypt-key.pem
@@ -0,0 +1,40 @@
+-----BEGIN PRIVATE KEY-----
+MIIG/QIBADANBgkqhkiG9w0BAQEFAASCBucwggbjAgEAAoIBgQCxrmmZ5i40GMnx
+3mtQGms7afSmd+xN5UKYG26+uQPBdwt2VgS22bF4wv3mJH5fzzU7HYT/4U/KWN1+
+asP6U+AQeI7PZeos1qwFC5b3UrxxKctXBRdC0ESyBA+DsY6Hijz76Jc8weCroid7
+NVAMAaoXdsRQnhjp9/YOdHkfmSB2xwIMHmMgWPS4bOKNX929of3R6UJ6KzvK/QPi
+1Uw8U8P2u+yGD9ZpK5xJVIMUhZY67UeUfySHBwj0VeHzy92+9SrFOp82Lg8CJp3f
+1YKomMYJ673j0jEd7xDNyL9Qc/T45gsDIipWM0eCFgB939111Evc23e1c0IEH2Sd
+tsZ5SPLXJlyNDrq5UGuPhfl1Tywiy1tzIwxsz0bjDchc8R7htuCQegDPaiWlYF0e
+jbUMVlCj+Zq1pQegNkc99b/wDamJGqd0SkSr1zxq3pYnCIrEVJJuPkFk/wW4JsUz
+wrylCPmx/xtO3GA6uN4u31qbNBmyz6j7yzYFo32QK/zcmjwDoScCAwEAAQKCAYB3
+BGhSIWBTn0MuU5k4d+naS3gIRg4wg2AfOUjuUkoUvmQcKTRRMvLw/FRMY6ePD+IN
+LhHXwJnM5cfAFU4fES3meorWm+LHlCh33LKMCoyVlLRTHuLc61sIjzXBNh9N5ShC
+aSNdHFUdQqoFmsl6sWa4/uIzSiNQHbthJV24775SMa3KZlRp54xNOQpsPonuq2K0
+x/WyleEgcGi4+b1uL4H1dR3TEyrBGeg/Km//QBhIcoZfDudt1yWFXT3UK3vmnJuh
+6mlRf2rgZ0D/Nsz5E81NtTfVensNOyYREY0JdRMSjb5PYfpXFMZKJvTmIUcMOa+I
+FQbH7y44K3+1kxv0gs7REndlcfHsTaWlKMLhVYMFFMCRv1MOzkYbCM5Kse+F8l3x
+3/1B6rgRp/GeF6DAGDcoxvt/YgEhf/nLpsjtwoQPsjjv1mnyP2Ec5QoIZH3hfV7b
+PXCoHYTLtfXNM9XFgYNLtHL919FpR53Z8FYZfa1LkNc2BtdqhaKqCKJGGAt+/2EC
+gcEA6FIYlGn4esnjQkdo6OoupsVghh+Ycu3yfIAKgLXl7aXIBLpEbUM50Ox9SX+A
+g2gzxnCHz9map/FaZ2h3cC5cX9h+du05FFRr46zJiLxsEM1FTNVBuw8muE/iARNL
+oMLet7MOlP6zT/6Zrnzs74U+eHpN3b3yj0wwXuhU5+l2NAcurxVg/ek8cMWxZcHr
+1PsxQ5+jLNMARcK5Q4c1+xiH52Xrpr3APiT8GfUiRjFQRorIOUxmvuJI/HQvHTJE
+0awxAoHBAMPKnslqlTn4gVu/PHz1YOfkC4KTG89Z8u9qP7Ut0VMmRWy/xQ9y3vJV
+llNnuLKq0eH3IPhBcFBZZ3VemVrziCZ1oVhpFjbAtCFaI/OLprSQ+V4wO5HEq0D+
+3hA9zMULbWuZUbn8QxQBDRWcVP/AmeTUWhupnVRSJWfeiORfsfmqIeimGU747Rk7
+KQjHjKQ1Okcs0MsaZheSRry2diKauLss5U1yGLYP63keHutKrH243oDyvpcUE6Ls
+yxoLWF9E1wKBwAG/ZFnxdiIOVLxR5zMhV9p/T5uSr0XmDlXrbKjNNX6VKa0Hba5Y
+vB2bOdIMuH3EkecjP5JLs8MhqKlwer2IS7+Y1FK2tCA4Blu/GAEEUdfKg4Pxcr4i
+fgsS5sNVTtNVw/Ej0q9CPz0R0Dwkym9+1Bp56Q4K+MElNJPyMXlRI0d+6lX81i7y
+yzaZ9hyq2chPX25/y+1xZOYhcd1VLg3GgHc4KA6oDMMq6g6T7n8SreTp9Fmh/n/f
+Ged0REp271eYcQKBwFUepeHTIIVPcI2+mkGJPFQUZJyj8Bc5d9B2VLQj8zk/Dje1
+N6r7ucmJRA2GrlmewhiHJCJJ8NY9yCjSs8FC1xJBWZ/iL/Il3SoS0kZzlEo0LPWx
+6nP5GKrtIwXUmE2iJjP9N/avoUn1GwcmLB30UfOWDoawOuIJxJFfwgvnPqzYNl26
+uI4I0quBeNmER7SsH2YKKcvi8jeVNIOen8VzlpRpdFczH2MnkKvbWH3avRr7YGCX
+KBzucYsHf1UXUZg5iQKBwQCu0zLtL66yU3K+Ycy2gx3gDMLkr0vTvu9lG7gSBKr0
+6jzO1lbHzfaQv5kNeLiDtyU2COU+cqV21/VsPBsM963MsUJXVV2cTSvfHmBMly5g
++75DreUmFnEe5hON756oRWTHWqPNHuklEfpU5ydE/c49NuL6gdx9KBzrEMXJq/Ej
+Z4kQBN74lZDsx9HVOTCoWFOEF9tMHobBmG7S6WYQv31pjduwAkUd4GNJ7a9w60Ku
+akxuQgnBaVCpMtYpxIu/j04=
+-----END PRIVATE KEY-----
diff --git a/Workbench/wordpress_server/container_files/shibboleth/sp-signing-cert.pem b/Workbench/wordpress_server/container_files/shibboleth/sp-signing-cert.pem
new file mode 100644
index 0000000..eff28c4
--- /dev/null
+++ b/Workbench/wordpress_server/container_files/shibboleth/sp-signing-cert.pem
@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/Workbench/wordpress_server/container_files/shibboleth/sp-signing-key.pem b/Workbench/wordpress_server/container_files/shibboleth/sp-signing-key.pem
new file mode 100644
index 0000000..7da4fd6
--- /dev/null
+++ b/Workbench/wordpress_server/container_files/shibboleth/sp-signing-key.pem
@@ -0,0 +1,40 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----