X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=plc_config.xml;h=567babe5c545b1524ee55edfe9e494209cc20116;hb=fa54f8b158000ff2112b997ff79e4ebff9469b0e;hp=dd5d7b10ac10e6d2a3634c24135a603415dd07f6;hpb=fea33a45caccef4c114c9ed852fe39009ed85ba7;p=myplc.git diff --git a/plc_config.xml b/plc_config.xml index dd5d7b1..567babe 100644 --- a/plc_config.xml +++ b/plc_config.xml @@ -6,7 +6,7 @@ Default PLC configuration file Mark Huang Copyright (C) 2006 The Trustees of Princeton University -$Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ +$Id: plc_config.xml,v 1.16 2006/10/27 20:26:49 mlhuang Exp $ --> @@ -101,27 +101,6 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ The SSH private key used to access the root account on your nodes. - - - Root CA SSL Private Key - /etc/planetlab/root_ca_ssl.key - The SSL private key used for signing all other - generated certificates. If non-existent, one will be - generated. - - - - Root CA SSL Public Key - /etc/planetlab/root_ca_ssl.pub - The corresponding SSL public key. - - - - Root CA SSL Public Certificate - /etc/planetlab/root_ca_ssl.crt - The corresponding SSL public - certificate. - @@ -148,27 +127,39 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ be generated. - - SSL Public Key - /etc/planetlab/ma_sa_ssl.pub - The corresponding SSL public key. - - SSL Public Certificate /etc/planetlab/ma_sa_ssl.crt - The corresponding SSL public certificate, - signed by the root CA. + The corresponding SSL public certificate. By + default, this certificate is self-signed. You may replace + the certificate later with one signed by the PLC root + CA. + + + + Root CA SSL Public Certificate + /etc/planetlab/ma_sa_ca_ssl.crt + If applicable, the certificate of the PLC root + CA. If your MA/SA certificate is self-signed, then this file + is the same as your MA/SA certificate. + + + + Root CA SSL Public Key + /etc/planetlab/ma_sa_ca_ssl.pub + If applicable, the public key of the PLC root + CA. If your MA/SA certificate is self-signed, then this file + is the same as your MA/SA public key. API Certificate /etc/planetlab/ma_sa_api.xml - The API Certificate for your MA/SA is the SSL - public key for your MA/SA embedded in an XML document and - signed by the root CA SSL private key. The API Certificate - can be used by any PlanetLab node managed by any MA, to - verify that your MA/SA public key is valid. + The API Certificate is your MA/SA public key + embedded in a digitally signed XML document. By default, + this document is self-signed. You may replace this + certificate later with one signed by the PLC root + CA. @@ -299,7 +290,7 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ Database Name - planetlab3 + planetlab4 The name of the database to access. @@ -355,13 +346,9 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ Port - 80 + 443 The TCP port number through which the API - should be accessed. Warning: SSL (port 443) access is not - fully supported by the website code yet. We recommend that - port 80 be used for now and that the API server either run - on the same machine as the web server, or that they both be - on a secure wired network. + should be accessed. @@ -412,8 +399,19 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ SSL Public Certificate /etc/planetlab/api_ssl.crt - The corresponding SSL public certificate, - signed by the root CA. + The corresponding SSL public certificate. By + default, this certificate is self-signed. You may replace + the certificate later with one signed by a root + CA. + + + + Root CA SSL Public Certificate + /etc/planetlab/api_ca_ssl.crt + The certificate of the root CA, if any, that + signed your server certificate. If your server certificate is + self-signed, then this file is the same as your server + certificate. @@ -482,8 +480,19 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ SSL Public Certificate /etc/planetlab/www_ssl.crt - The corresponding SSL public certificate, - signed by the root CA. + The corresponding SSL public certificate for + the HTTP server. By default, this certificate is + self-signed. You may replace the certificate later with one + signed by a root CA. + + + + Root CA SSL Public Certificate + /etc/planetlab/www_ca_ssl.crt + The certificate of the root CA, if any, that + signed your server certificate. If your server certificate is + self-signed, then this file is the same as your server + certificate. @@ -543,15 +552,25 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ SSL Private Key /etc/planetlab/boot_ssl.key The SSL private key to use for encrypting HTTPS - traffic. If non-existent, one will be - generated. + traffic. SSL Public Certificate /etc/planetlab/boot_ssl.crt - The corresponding SSL public certificate, - signed by the root CA. + The corresponding SSL public certificate for + the HTTP server. By default, this certificate is + self-signed. You may replace the certificate later with one + signed by a root CA. + + + + Root CA SSL Public Certificate + /etc/planetlab/boot_ca_ssl.crt + The certificate of the root CA, if any, that + signed your server certificate. If your server certificate is + self-signed, then this file is the same as your server + certificate. @@ -611,9 +630,6 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ python - - plcapilib - postgresql postgresql-server @@ -627,7 +643,8 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ access the DB directly. --> php php-pgsql - php-xmlrpc + + gd @@ -637,6 +654,7 @@ $Id: plc_config.xml,v 1.13 2006/05/23 18:14:47 mlhuang Exp $ mod_python + PLCAPI PyXML PlanetLabAuth