Eolisation de l'applicatif MSE
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

61_pve.xml 40KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <creole>
  3. <files>
  4. <package>mse</package>
  5. <file filelist='pve' name='/etc/eole/eole-db.d/pve-db.yml' source='pve-db.yml' rm='True' mkdir='True'/>
  6. <file filelist='mse-sys-lr-apache' name='/etc/logrotate.d/apache2' source='mse-logrotate-apache.conf' rm='True' mkdir='True'/>
  7. <file filelist='mse-sys-lr' name='/etc/logrotate.d/mse' source='mse-logrotate.conf' rm='True' mkdir='True'/>
  8. <file filelist='mse-rsyslog' name='/etc/rsyslog.d/eole-traps/mse.conf' source='mse-rsyslog.conf' rm='True' mkdir='True'/>
  9. <file filelist='pve' name='/usr/lib/python2.7/dist-packages/eoledb/password/_eole_mypwd.py' source='tmpl_eole_mypwd.py' rm='True' mkdir='True'/>
  10. <file filelist='pve' name='/etc/php/5.6/fpm/php.ini' source='php.ini' rm='True' mkdir='True'/>
  11. <file filelist='pve' name='/var/www/html/mse/app/config/parameters.yml' source='pvebundle-parameters.yml' rm='True' mkdir="True"/>
  12. <file filelist='pve' name='/var/www/html/mse/scripts/scribe-post-install.sh' source='mse-scribe-post-install.sh' rm='True' mkdir="True"/>
  13. <file filelist='pve' name='/var/www/html/mse/app/config/config_prod.yml' source='mse_config_prod.yml' rm='True' mkdir="True"/>
  14. <file filelist='pve-redis' name='/var/www/html/mse/app/config/redis.yml' source='mse-redis.yml' rm='True' mkdir="True"/>
  15. <file filelist='pve-redis-cluster' name='/var/www/html/mse/app/config/redis_cluster.yml' source='mse-redis-cluster.yml' rm='True' mkdir="True"/>
  16. <file filelist='mse-apache' name='/etc/apache2/sites-available/mse.conf' source='msebundle-apache.conf' mkdir='True' rm='True'/>
  17. <file filelist='mse-apache' name='/etc/apache2/mods-available/mpm_event.conf' mkdir='True' rm='True'/>
  18. <file filelist='mse-apache' name='/etc/apache2/mods-available/mpm_worker.conf' mkdir='True' rm='True'/>
  19. <file filelist='mse-apache' name='/etc/apache2/conf-available/security.conf' source='mse-apache-security.conf' mkdir='True' rm='True'/>
  20. <file filelist='mse-apache' name='/etc/php/5.6/fpm/pool.d/mse.conf' source='mse-fpm.conf' mkdir='True' rm='True'/>
  21. <file filelist='mse-apache-revproxy' name='/etc/apache2/mods-available/remoteip.conf' source='mse-apache-remoteip.conf' mkdir='True' rm='True'/>
  22. <service servicelist='svApache'>apache2</service>
  23. <service servicelist='svApache'>php5.6-fpm</service>
  24. <service method='apache'>mse.conf</service>
  25. <service_access service='apache2'>
  26. <port service_accesslist="svlApache">80</port>
  27. <port service_accesslist="svlApache">443</port>
  28. </service_access>
  29. </files>
  30. <variables>
  31. <family name='MSE'>
  32. <!-- SERVICES -->
  33. <variable name='is_mse_master' type='oui/non' description="Définir l'application comme maitre">
  34. <value>oui</value>
  35. </variable>
  36. <variable name='mseSlaves' type='string' description="Adresse des workers MSE escalves" multi='True'/>
  37. <variable name='activer_pvebundle' type='oui/non' description='Activer Profil MSE'>
  38. <value>non</value>
  39. </variable>
  40. <variable name='activer_supportbundle' type='oui/non' description='Activer Support MSE'>
  41. <value>oui</value>
  42. </variable>
  43. <variable name='activer_wsdlbundle' type='oui/non' description='Activer webservices MSE'>
  44. <value>oui</value>
  45. </variable>
  46. <variable name='activer_phpmyadmin' type='oui/non' description='Activer Phpmyadmin'>
  47. <value>non</value>
  48. </variable>
  49. <variable name='activer_phpldapadmin' type='oui/non' description='Activer Phpldapadmin'>
  50. <value>non</value>
  51. </variable>
  52. <variable name='activer_logrotate_apache' type='oui/non' description='Configurer un logrotate pour apache'>
  53. <value>oui</value>
  54. </variable>
  55. <variable name='pve_infravtech' type='oui/non' description='Infrastructure VTech (interfaces réseau eth0/eth1 avec eth0 en IP publique) ?'>
  56. <value>non</value>
  57. </variable>
  58. <!-- GENERAL MSE BUNDLE -->
  59. <variable name='pvebundle_ipbdd' type='string' description="Adresse du serveur BDD" mandatory="True">
  60. <value>127.0.0.1</value>
  61. </variable>
  62. <variable name='pvebundle_urllogin' type='string' description="URL du serveur d'authentification" mandatory="True">
  63. <value>change_me</value>
  64. </variable>
  65. <variable name='pvebundle_urllogout' type='string' description="URL de gestion de la deconnexion du portail" mandatory="True">
  66. <value>/envole/logout</value>
  67. </variable>
  68. <variable name='pvebundle_check_timeout_url' type='string' description="URL de gestion de la deconnexion automatique" mandatory="True">
  69. <value>/envole/ajax/check-timeout</value>
  70. </variable>
  71. <variable name='pvebundle_idle_timeout' type='number' description="Déconnexion automatique après (en minutes)" mandatory="True">
  72. <value>60</value>
  73. </variable>
  74. <variable name='pvebundle_domain' type='string' description="Nom de domaine utilisé pour accéder au MSE" mandatory="True">
  75. <value>www.messervices.etudiant.gouv.fr</value>
  76. </variable>
  77. <variable name='pvebundle_alias' type='string' description="Alias de domaine utilisé pour accéder au MSE" mandatory="True">
  78. <value>messervices.etudiant.gouv.fr</value>
  79. </variable>
  80. <variable name='pvebundle_scheme' type='string' description="Protocole utilisé pour accéder au MSE" mandatory="True">
  81. <value>https</value>
  82. </variable>
  83. <variable name='pvebundle_baseurl' type='string' description="URL racine pour accéder au MSE" mandatory="True">
  84. <value>envole</value>
  85. </variable>
  86. <variable name='pvebundle_portal_url' type='string' description="URL du portail Envole" mandatory="False">
  87. <value>/</value>
  88. </variable>
  89. <variable name='pvebundle_contact_mail' type='string' description="Email de contact (Relation Presse)" mandatory="True">
  90. <value>communication@cnous.fr</value>
  91. </variable>
  92. <!-- LDAP -->
  93. <variable name='pvebundle_ldapserveur' type='string' description="Adresse du serveur LDAP" mandatory="True">
  94. <value>127.0.0.1</value>
  95. </variable>
  96. <variable name='pvebundle_ldapport' type='string' description="Port du serveur LDAP" mandatory="True">
  97. <value>389</value>
  98. </variable>
  99. <variable name='pvebundle_ldapbase' type='string' description="Chemin de recherche dans l'annuaire" mandatory="True">
  100. <value>ou=crous-toulouse,ou=education,o=gouv,c=fr</value>
  101. </variable>
  102. <variable name='pvebundle_ldapdn' type='string' description="Utilisateur d'écriture dans l'annuaire" mandatory="True">
  103. <value>cn=writer,o=gouv,c=fr</value>
  104. </variable>
  105. <variable name='pvebundle_ldappwd' type='string' description="Mot de passe utilisateur d'écriture dans l'annuaire" mandatory="True">
  106. <value>change_me</value>
  107. </variable>
  108. <!-- REDIS -->
  109. <variable name='activer_redis' type='oui/non' description="Utiliser le serveur de cache Redis">
  110. <value>oui</value>
  111. </variable>
  112. <variable name='pvebundle_redismode' type='string' description="Mode d'installation du ou des serveur(s) Redis">
  113. <value>Single node</value>
  114. </variable>
  115. <variable name='pvebundle_redisreplication' type='oui/non' description="Activer la réplication">
  116. <value>oui</value>
  117. </variable>
  118. <variable name='pvebundle_redisalias' type='string' description="Alias du serveur Redis" multi="True" mandatory="True">
  119. <value>session_cache</value>
  120. </variable>
  121. <variable name='pvebundle_redisserveur' type='domain' description="Adresse du serveur Redis" mandatory="True">
  122. <value>127.0.0.1</value>
  123. </variable>
  124. <variable name='pvebundle_redisport' type='string' description="Port du serveur Redis" mandatory="True">
  125. <value>6379</value>
  126. </variable>
  127. <variable name='pvebundle_redisserveurslave' type='domain' description="Adresse du serveur slave Redis" mandatory="True">
  128. <value>127.0.0.1</value>
  129. </variable>
  130. <variable name='pvebundle_redisportslave' type='string' description="Port du serveur slave Redis" mandatory="True">
  131. <value>8379</value>
  132. </variable>
  133. <variable name='pvebundle_redisweight' type='string' description="Poids du serveur" mandatory="True">
  134. <value>10</value>
  135. </variable>
  136. <variable name='pvebundle_redisttl' type='string' description="TTL de la session Redis" mandatory="True">
  137. <value>3600</value>
  138. </variable>
  139. <variable name='pvebundle_redisconnection_timeout' type='string' description="Timeout de connection" mandatory="True">
  140. <value>100</value>
  141. </variable>
  142. <variable name='pvebundle_redisread_write_timeout' type='string' description="Timeout de lecture / écriture" mandatory="True">
  143. <value>300</value>
  144. </variable>
  145. <!-- REVERSE PROXY -->
  146. <variable name='pvebundle_reverse_proxy' type='domain' description="Adresse du reverse proxy en frontal" mandatory="False" />
  147. <!-- SAML -->
  148. <variable name='saml_idp_url_metadata' type='string' description="URL des metadata de l'IDP" mandatory="True">
  149. <value>https://idp.messervices.etudiant.gouv.fr/idp/shibboleth</value>
  150. </variable>
  151. <variable name='cnous_pve_service_saml_logout' type='string' description="URL de deconnexion SAML" mandatory="True">
  152. <value>http://localhost/idp/profile/Logout</value>
  153. </variable>
  154. <variable name='saml_idp_entity_id' type='string' description="IDP Entity ID" mandatory="False">
  155. <value>test</value>
  156. </variable>
  157. <variable name='saml_idp_single_sign_on_service_url' type='string' description="IDP SSO service URL" mandatory="False">
  158. <value>test</value>
  159. </variable>
  160. <variable name='saml_idp_single_logout_service_url' type='string' description="IDP SLO service URL" mandatory="False">
  161. <value>test</value>
  162. </variable>
  163. <variable name='saml_sp_entity_id' type='string' description="SP Entity ID" mandatory="False">
  164. <value>test</value>
  165. </variable>
  166. <variable name='saml_sp_assertion_consumer_service_url' type='string' description="SP Assertion consumer service URL" mandatory="False">
  167. <value>test</value>
  168. </variable>
  169. <variable name='saml_sp_assertion_consumer_service_binding' type='string' description="SP assertion consumer service binding" mandatory="False">
  170. <value>test</value>
  171. </variable>
  172. <variable name='saml_sp_single_logout_service_url' type='string' description="SP logout service URL" mandatory="False">
  173. <value>test</value>
  174. </variable>
  175. <variable name='saml_sp_single_logout_service_binding' type='string' description="SP logout service binding" mandatory="False">
  176. <value>test</value>
  177. </variable>
  178. <variable name='saml_sp_name_id_format' type='string' description="SP Name ID Format" mandatory="False">
  179. <value>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</value>
  180. </variable>
  181. <variable name='saml_security_name_id_encrypted' type='string' description="Name ID encrypted" mandatory="False">
  182. <value>false</value>
  183. </variable>
  184. <variable name='saml_security_authn_requests_signed' type='string' description="Authn request signed" mandatory="False">
  185. <value>false</value>
  186. </variable>
  187. <variable name='saml_security_logout_request_signed' type='string' description="Logout request signed" mandatory="False">
  188. <value>false</value>
  189. </variable>
  190. <variable name='saml_security_logout_response_signed' type='string' description="Logout response signed" mandatory="False">
  191. <value>false</value>
  192. </variable>
  193. <variable name='saml_security_want_messages_signed' type='string' description="Want messages signed" mandatory="False">
  194. <value>false</value>
  195. </variable>
  196. <variable name='saml_security_want_assertions_signed' type='string' description="Want assertions signed" mandatory="False">
  197. <value>false</value>
  198. </variable>
  199. <variable name='saml_security_want_assertions_encrypted' type='string' description="Want assertions encrypted" mandatory="False">
  200. <value>false</value>
  201. </variable>
  202. <variable name='saml_security_want_name_id_encrypted' type='string' description="Want name ID encrypted" mandatory="False">
  203. <value>false</value>
  204. </variable>
  205. <variable name='saml_security_request_authn_context' type='string' description="Request authn context" mandatory="False">
  206. <value>false</value>
  207. </variable>
  208. <variable name='saml_security_sign_metadata' type='string' description="Sign metadata" mandatory="False">
  209. <value>false</value>
  210. </variable>
  211. <variable name='saml_security_want_xml_validation' type='string' description="Want XML validation" mandatory="False">
  212. <value>false</value>
  213. </variable>
  214. <variable name='saml_security_signature_algorithm' type='string' description="Signature Algorithm" mandatory="False">
  215. <value>http://www.w3.org/2000/09/xmldsig#rsa-sha1</value>
  216. </variable>
  217. <!-- AGLAE -->
  218. <variable name='pvebundle_aglae_wsdl_url' type='string' description="URL du WSDL des webservices AGLAE" mandatory="True">
  219. <value>http://localhost</value>
  220. </variable>
  221. <variable name='pvebundle_aglae_systemid' type='string' description="Systeme ID pour communiquer avec les webservices AGLAE" mandatory="True">
  222. <value>MSE</value>
  223. </variable>
  224. <variable name='pvebundle_aglae_mdp' type='string' description="Mot de passe pour communiquer avec les webservices AGLAE" mandatory="True">
  225. <value>change_me</value>
  226. </variable>
  227. <variable name='pvebundle_aglae_surveillance_wsdl_url' type='string' description="URL du WSDL Surveillance des webservices AGLAE" mandatory="True">
  228. <value>http://localhost</value>
  229. </variable>
  230. <variable name='pvebundle_aglae_sftp_host' type='domain' description="AGLAE SFTP serveur" mandatory="True">
  231. <value>localhost</value>
  232. </variable>
  233. <variable name='pvebundle_aglae_sftp_port' type='number' description="AGLAE SFTP port" mandatory="True">
  234. <value>22</value>
  235. </variable>
  236. <variable name='pvebundle_aglae_sftp_user' type='string' description="AGLAE SFTP utilisateur" mandatory="True">
  237. <value>root</value>
  238. </variable>
  239. <variable name='pvebundle_aglae_sftp_password' type='string' description="AGLAE SFTP mot de passe" mandatory="True">
  240. <value>password</value>
  241. </variable>
  242. <variable name='pvebundle_aglae_sftp_remote_import_path' type='string' description="AGLAE SFTP repertoire distant pour fichier a importer" mandatory="True">
  243. <value>/tmp/export</value>
  244. </variable>
  245. <variable name='wsdlbundle_aglae_passwd' type='string' description="Mot de passe pour les webservices dédiés à AGLAE" mandatory="True">
  246. <value>change_me</value>
  247. </variable>
  248. <!-- CENTRALE LOGEMENT -->
  249. <variable name='pvebundle_centrale_wsdl_url' type='string' description="URL du WSDL des webservices CENTRALE" mandatory="True">
  250. <value>http://localhost</value>
  251. </variable>
  252. <variable name='pvebundle_centrale_systemid' type='string' description="Utilisateur pour communiquer avec les webservices MSE vers CENTRALE" mandatory="True">
  253. <value>MSE</value>
  254. </variable>
  255. <variable name='pvebundle_centrale_mdp' type='string' description="Mot de passe pour communiquer avec les webservices MSE vers CENTRALE" mandatory="True">
  256. <value>change_me</value>
  257. </variable>
  258. <variable name='pvebundle_centrale_surveillance_wsdl_url' type='string' description="URL du WSDL des webservices surveillance CENTRALE" mandatory="True">
  259. <value>http://localhost</value>
  260. </variable>
  261. <variable name='wsdlbundle_centrale_passwd' type='string' description="Mot de passe pour les webservices dédiés à CENTRAL LOGEMENT" mandatory="True">
  262. <value>change_me</value>
  263. </variable>
  264. <!-- ABP -->
  265. <variable name='pvebundle_apb_wsdl_url' type='string' description="URL du WSDL des webservices APB" mandatory="True">
  266. <value>http://test.admission-postbac.fr/ServicesWebPostbac/services/Pve2apbServiceWEB?wsdl</value>
  267. </variable>
  268. <variable name='pvebundle_apb_systemid' type='string' description="Identifiant pour l'appel au webservice APB distant" mandatory="True">
  269. <value>MSE</value>
  270. </variable>
  271. <variable name='pvebundle_apb_mdp' type='string' description="Mot de passe pour l'appel au webservice APB distant" mandatory="True">
  272. <value>change_me</value>
  273. </variable>
  274. <!-- ANALYTICS -->
  275. <variable name='pvebundle_google_analytics_id' type='string' description="Identifiant Google Analytics" mandatory="False" />
  276. <!-- SMTP -->
  277. <variable name='pvebundle_ipsmtp' type='domain' description="Adresse de la passerelle SMTP" mandatory="True">
  278. <value>127.0.0.1</value>
  279. </variable>
  280. <variable name='pvebundle_mailer_user' type='string' description="Nom de l'utilisateur SMTP" mandatory="False" />
  281. <variable name='pvebundle_mailer_password' type='string' description="Mot de passe de l'utilisateur SMTP" mandatory="False" />
  282. <variable name='pvebundle_mailer_auth_mode' type='string' description="Mode d'authentification SMTP" mandatory="False" />
  283. <variable name='pvebundle_mailer_port' type='string' description="Numéro de port SMTP" mandatory="False" />
  284. <variable name='pvebundle_mailer_localmutt' type='oui/non' description='Utiliser mutt en local'>
  285. <value>non</value>
  286. </variable>
  287. <!-- IZLY -->
  288. <variable name='pvebundle_izly_sftp_host' type='domain' description="IZLY SFTP serveur" mandatory="True">
  289. <value>localhost</value>
  290. </variable>
  291. <variable name='pvebundle_izly_sftp_port' type='number' description="IZLY SFTP port" mandatory="True">
  292. <value>22</value>
  293. </variable>
  294. <variable name='pvebundle_izly_export_start_date' type='string' description="Date de début des exports IZLY (format jj/mm)" mandatory="True">
  295. <value>15/01</value>
  296. </variable>
  297. <variable name='pvebundle_izly_export_end_date' type='string' description="Date de fin des exports IZLY (format jj/mm)" mandatory="True">
  298. <value>30/06</value>
  299. </variable>
  300. <variable name='pvebundle_izly_sftp_user' type='string' description="IZLY SFTP utilisateur" mandatory="True">
  301. <value>root</value>
  302. </variable>
  303. <variable name='pvebundle_izly_sftp_password' type='string' description="IZLY SFTP mot de passe" mandatory="True">
  304. <value>password</value>
  305. </variable>
  306. <variable name='pvebundle_izly_sftp_remote_import_path' type='string' description="IZLY SFTP repertoire distant pour import IM" mandatory="True">
  307. <value>/tmp/export</value>
  308. </variable>
  309. <variable name='pvebundle_izly_sftp_remote_export_path' type='string' description="IZLY SFTP repertoire distant pour export MI" mandatory="True">
  310. <value>/tmp/import</value>
  311. </variable>
  312. <!-- JOBAVIZ -->
  313. <variable name='wsdlbundle_jobaviz_passwd' type='string' description="Mot de passe pour les webservices dédiés à JOBAVIZ" mandatory="True">
  314. <value>change_me</value>
  315. </variable>
  316. <!-- LOKAVIZ -->
  317. <variable name='wsdlbundle_lokaviz_passwd' type='string' description="Mot de passe pour les webservices dédiés à LOKAVIZ" mandatory="True">
  318. <value>change_me</value>
  319. </variable>
  320. <!-- CITÉ-U -->
  321. <variable name='wsdlbundle_citeu_passwd' type='string' description="Mot de passe pour les webservices dédiés à CITÉ-U" mandatory="True">
  322. <value>change_me</value>
  323. </variable>
  324. <!-- RDV -->
  325. <variable name='wsdlbundle_rdv_passwd' type='string' description="Mot de passe pour les webservices dédiés à RDV" mandatory="True">
  326. <value>change_me</value>
  327. </variable>
  328. <!-- PASSCULTURE -->
  329. <variable name='wsdlbundle_passculture_passwd' type='string' description="Mot de passe pour les webservices dédiés à PASSCULTURE" mandatory="True">
  330. <value>change_me</value>
  331. </variable>
  332. <!-- BEDNCROUS -->
  333. <variable name='wsdlbundle_bedncrous_passwd' type='string' description="Mot de passe pour les webservices dédiés à BEDNCROUS" mandatory="True">
  334. <value>change_me</value>
  335. </variable>
  336. <!-- BON PLANS CROUS -->
  337. <variable name='wsdlbundle_bonsplanscrous_passwd' type='string' description="Mot de passe pour les webservices dédiés à BON PLANS CROUS" mandatory="True">
  338. <value>change_me</value>
  339. </variable>
  340. <!-- EVOTE -->
  341. <variable name='wsdlbundle_evote_passwd' type='string' description="Mot de passe pour les webservices dédiés à EVOTE" mandatory="True">
  342. <value>change_me</value>
  343. </variable>
  344. <!-- HEBERG -->
  345. <variable name='wsdlbundle_heberg_passwd' type='string' description="Mot de passe pour les webservices dédiés à BEDNCROUS" mandatory="True">
  346. <value>change_me</value>
  347. </variable>
  348. <!-- CVE -->
  349. <variable name='wsdlbundle_cve_passwd' type='string' description="Mot de passe pour les webservices dédiés à CVE" mandatory="True">
  350. <value>change_me</value>
  351. </variable>
  352. <!-- APB -->
  353. <variable name='wsdlbundle_apb_passwd' type='string' description="Mot de passe pour les webservices dédiés à APB" mandatory="True">
  354. <value>change_me</value>
  355. </variable>
  356. <!-- SACLAY -->
  357. <variable name='wsdlbundle_saclay_passwd' type='string' description="Mot de passe pour les webservices dédiés à SACLAY (CENTRAL LOGEMENT VERSAILLE)" mandatory="True">
  358. <value>change_me</value>
  359. </variable>
  360. <!-- MYTROC -->
  361. <variable name='wsdlbundle_mytroc_passwd' type='string' description="Mot de passe pour les webservices dédiés à MYTROC" mandatory="True">
  362. <value>change_me</value>
  363. </variable>
  364. <!-- WIIN -->
  365. <variable name='wsdlbundle_wiin_passwd' type='string' description="Mot de passe pour les webservices dédiés à WIIN" mandatory="True">
  366. <value>change_me</value>
  367. </variable>
  368. <!-- ???? -->
  369. <variable name='smb_min_password_length' type='number' exists='False' description='Longueur minimale du mot de passe' mandatory='True'>
  370. <value>6</value>
  371. </variable>
  372. <variable name='smb_min_password_class' type='number' exists='False' description='Nombre minimum de classes de caractères'>
  373. <value>3</value>
  374. </variable>
  375. </family>
  376. <family name='MSE-Logrotate' mode='expert'>
  377. <variable name='mseLogPeriod' type='string' description="Périodicité de la rotation des journaux applicatifs">
  378. <value>weekly</value>
  379. </variable>
  380. <variable name='mseLogRotate' type='string' description="Nombre de fichiers de journaux applicatifs compressés à conserver">
  381. <value>52</value>
  382. </variable>
  383. <variable name='mseLogDir' type='string' description="Répertoire des fichiers de journaux applicatifs">
  384. <value>/var/www/html/mse/app/logs</value>
  385. </variable>
  386. <variable name='mseLogSize' type='string' description="Taille maximale d'un fichier de journal applicatif (en Mo)">
  387. <value>900</value>
  388. </variable>
  389. <variable name='mseLogMaxAge' type='string' description="Age maximum des archives de journaux applicatifs">
  390. <value>365</value>
  391. </variable>
  392. <variable name='mse_lr_apache_period' type='string' description='Périodicité de la rotation'>
  393. <value>weekly</value>
  394. </variable>
  395. <variable name='mse_lr_apache_rotate' type='number' description='Nombre de fichiers compressés à conserver'>
  396. <value>52</value>
  397. </variable>
  398. <variable name='mse_lr_apache_maxage' type='number' description="Âge maximum des archives (en jours)">
  399. <value>365</value>
  400. </variable>
  401. <variable name='mse_lr_apache_olddir' type='string' description="Emplacement des archives"/>
  402. </family>
  403. <family name='Logs'>
  404. <variable name='activer_conf_lr' type='oui/non' description='Ajouter des configurations logrotate ?'>
  405. <value>non</value>
  406. </variable>
  407. <variable name='mse_lr_tag' type='string' description='Fichier de journaux à traiter' multi='True'/>
  408. <variable name='mse_lr_period' type='string' description='Périodicité de la rotation'>
  409. <value>daily</value>
  410. </variable>
  411. <variable name='mse_lr_rotate' type='number' description='Nombre de fichiers compressés à conserver'>
  412. <value>52</value>
  413. </variable>
  414. <variable name='mse_lr_maxage' type='number' description="Âge maximum des archives (en jours)">
  415. <value>365</value>
  416. </variable>
  417. <variable name='mse_lr_olddir' type='string' description="Emplacement des archives"/>
  418. <variable name='mse_lr_copytruncate' type='oui/non' description="Remise à 0 du fichier de journal">
  419. <value>oui</value>
  420. </variable>
  421. </family>
  422. <family name='MSE-NFS' mode='expert'>
  423. <variable name='nfsUploads' type='oui/non' description="Les fichiers 'uploads' sont dans un partage NFS ?">
  424. <value>non</value>
  425. </variable>
  426. <variable name='mseNFSaddr' description="Adresse du partage NFS" type='string'/>
  427. <variable name='mseNFSMntPnt' description="Point de montage du partage NFS" type='string'/>
  428. </family>
  429. <family name='MSE-Apache'>
  430. <variable name='mseApacheBehindRevproxy' type='oui/non' description="Le serveur web est derrière un reverse proxy">
  431. <value>non</value>
  432. </variable>
  433. <variable name='mseApacheBehindRevproxyIP' type='domain' description="Adresse IP du serveur reverse proxy" mandatory='True'/>
  434. <variable name='mseApacheServerLimit' type='string' description='Limite supérieure de la définition du nombre de processus (ServerLimit)' >
  435. <value>16</value>
  436. </variable>
  437. <variable name='mseApacheStartServers' type='string' description='Nombre initial de process' >
  438. <value>2</value>
  439. </variable>
  440. <variable name='mseApacheMinSpareThreads' type='string' description='Nombre minimum de threads disponibles' >
  441. <value>25</value>
  442. </variable>
  443. <variable name='mseApacheMaxSpareThreads' type='string' description='Nombre maximum de threads disponibles' >
  444. <value>75</value>
  445. </variable>
  446. <variable name='mseApacheThreadLimit' type='string' description='Nombre maximum de threads par process' >
  447. <value>64</value>
  448. </variable>
  449. <variable name='mseApacheThreadsPerChild' type='string' description='Nombre de threads par process par défaut' >
  450. <value>25</value>
  451. </variable>
  452. <variable name='mseApacheMaxRequestWorkers' type='string' description='Nombre maximum de threads total' >
  453. <value>150</value>
  454. </variable>
  455. <variable name='mseApacheMaxConnectionsPerChild' type='string' description='Nombre maximum de requêtes par process' >
  456. <value>0</value>
  457. </variable>
  458. <variable name='mseTimeout' type='string' description='Timeout du Vhost Apache' >
  459. <value>600</value>
  460. </variable>
  461. <variable name='mseProxyTimeout' type='string' description='ProxyTimeout du Vhost Apache' >
  462. <value>600</value>
  463. </variable>
  464. </family>
  465. <family name='MSE-PHP-FPM'>
  466. <variable name='mseFpmPhpMaxExecTime' type='string' description="Temps maximal d'exécution d'un script, en secondes" >
  467. <value>30</value>
  468. </variable>
  469. <variable name='mseFpmMode' type='string' description='Mode de création de processus' >
  470. <value>dynamic</value>
  471. </variable>
  472. <variable name='mseFpmProcessIDLETimeout' type='number' description="Temps d'inactivité avant la mort du process (secondes)">
  473. <value>10</value>
  474. </variable>
  475. <variable name='mseFpmMaxChildren' type='string' description='Nombre maximum de process' >
  476. <value>200</value>
  477. </variable>
  478. <variable name='mseFpmStartServers' type='string' description='Nombre initial de process' >
  479. <value>20</value>
  480. </variable>
  481. <variable name='mseFpmMinSpareThreads' type='string' description='Nombre minimum de process disponibles' >
  482. <value>10</value>
  483. </variable>
  484. <variable name='mseFpmMaxSpareThreads' type='string' description='Nombre maximum de process disponibles' >
  485. <value>20</value>
  486. </variable>
  487. <variable name='mseFpmMaxRequest' type='string' description='Nombre maximum de requêtes' >
  488. <value>1000</value>
  489. </variable>
  490. <variable name='mseFpmPhpReqTerminateTimeout' type='string' description="Temps maximal d'exécution d'une requête, en secondes" >
  491. <value>600</value>
  492. </variable>
  493. <variable name='mseFpmPhpReqSlowlogTimeout' type='string' description="Temps à partir duquel une requête est considérée comme lente, en secondes" >
  494. <value>60</value>
  495. </variable>
  496. </family>
  497. <separators>
  498. <separator name='activer_pvebundle'>Services et configurations du MSE</separator>
  499. <separator name='pvebundle_ipbdd'>Configuration du bundle MSE</separator>
  500. <separator name='pvebundle_ldapserveur'>Annuaire</separator>
  501. <separator name='activer_redis'>Redis</separator>
  502. <separator name='pvebundle_reverse_proxy'>Reverse Proxy</separator>
  503. <separator name='cnous_pve_service_saml_logout'>SAML</separator>
  504. <separator name='pvebundle_aglae_wsdl_url'>AGLAE</separator>
  505. <separator name="pvebundle_centrale_wsdl_url">CENTRALE</separator>
  506. <separator name='activer_conf_lr'>Configuration logrotate supplémentaire</separator>
  507. <separator name='pvebundle_apb_wsdl_url'>APB</separator>
  508. <separator name='pvebundle_google_analytics_id'>Analytics</separator>
  509. <separator name='pvebundle_ipsmtp'>SMTP</separator>
  510. <separator name='pvebundle_izly_sftp_host'>IZLY</separator>
  511. <separator name='wsdlbundle_jobaviz_passwd'>Mot de passe des WebServices hébergés par le MSE</separator>
  512. <!--<separator name='wsdlbundle_jobaviz_passwd'>JOBAVIZ</separator>
  513. <separator name='wsdlbundle_lokaviz_passwd'>LOKAVIZ</separator>
  514. <separator name='wsdlbundle_citeu_passwd'>CITÉ-u</separator>
  515. <separator name='wsdlbundle_rdv_passwd'>RDV</separator>
  516. <separator name='wsdlbundle_passculture_passwd'>PASS CULTURE</separator>
  517. <separator name='wsdlbundle_bedncrous_passwd'>BEDNCROUS</separator>
  518. <separator name='wsdlbundle_bonsplanscrous_passwd'>BON PLAN CROUS</separator>
  519. <separator name='wsdlbundle_evote_passwd'>EVOTE</separator>
  520. <separator name='wsdlbundle_heberg_passwd'>HEBERG</separator>
  521. <separator name='wsdlbundle_cve_passwd'>CVE</separator>-->
  522. <separator name='smb_min_password_length'>WHAT</separator>
  523. <separator name='mseLogPeriod'>Configuration des rotations de journaux applicatifs</separator>
  524. <separator name='mse_lr_apache_period'>Configuration des logrotate pour Apache</separator>
  525. </separators>
  526. </variables>
  527. <constraints>
  528. <check name='valid_enum' target='mseFpmMode'>
  529. <param>['dynamic','ondemand']</param>
  530. </check>
  531. <check name='valid_enum' target='mse_lr_apache_period'>
  532. <param>['daily', 'weekly', 'monthly', 'yearly']</param>
  533. </check>
  534. <check name='valid_enum' target='mse_lr_period'>
  535. <param>['daily', 'weekly', 'monthly', 'yearly']</param>
  536. </check>
  537. <check name='valid_enum' target='mseLogPeriod'>
  538. <param>['daily', 'weekly', 'monthly', 'yearly']</param>
  539. </check>
  540. <check name='valid_enum' target='pvebundle_scheme'>
  541. <param>['http', 'https']</param>
  542. </check>
  543. <condition name='disabled_if_in' source='activer_logrotate_apache'>
  544. <param>non</param>
  545. <target type='variable'>mse_lr_apache_period</target>
  546. <target type='variable'>mse_lr_apache_rotate</target>
  547. <target type='variable'>mse_lr_apache_olddir</target>
  548. <target type='variable'>mse_lr_apache_maxage</target>
  549. <target type='filelist'>mse-sys-lr-apache</target>
  550. </condition>
  551. <condition name='disabled_if_in' source='mseApacheBehindRevproxy'>
  552. <param>non</param>
  553. <target type='variable'>mseApacheBehindRevproxyIP</target>
  554. <target type='filelist'>mse-apache-revproxy</target>
  555. </condition>
  556. <condition name='disabled_if_in' source='activer_log_distant'>
  557. <param>non</param>
  558. <target type='filelist'>mse-rsyslog</target>
  559. </condition>
  560. <condition name='disabled_if_in' source='is_mse_master'>
  561. <param>non</param>
  562. <target type='variable'>mseSlaves</target>
  563. <target type='filelist'>mse-lsyncd</target>
  564. </condition>
  565. <condition name='disabled_if_in' source='nfsUploads'>
  566. <param>non</param>
  567. <target type='variable'>mseNFSaddr</target>
  568. <target type='variable'>mseNFSMntPnt</target>
  569. </condition>
  570. <group master='mse_lr_tag'>
  571. <slave>mse_lr_period</slave>
  572. <slave>mse_lr_rotate</slave>
  573. <slave>mse_lr_olddir</slave>
  574. <slave>mse_lr_maxage</slave>
  575. <slave>mse_lr_copytruncate</slave>
  576. </group>
  577. <condition name='disabled_if_in' source='activer_conf_lr'>
  578. <param>non</param>
  579. <target type='variable'>mse_lr_tag</target>
  580. <target type='variable'>mse_lr_period</target>
  581. <target type='variable'>mse_lr_rotate</target>
  582. <target type='variable'>mse_lr_olddir</target>
  583. <target type='variable'>mse_lr_copytruncate</target>
  584. <target type='variable'>mse_lr_maxage</target>
  585. </condition>
  586. <condition name='hidden_if_in' source='activer_pvebundle'>
  587. <param>non</param>
  588. <target type='filelist' >pvebundle</target>
  589. <target type='servicelist'>pvebundle</target>
  590. </condition>
  591. <condition name='hidden_if_in' source='activer_supportbundle'>
  592. <param>non</param>
  593. <target type='filelist' >supportbundle</target>
  594. <target type='servicelist'>supportbundle</target>
  595. </condition>
  596. <condition name='hidden_if_in' source='activer_wsdlbundle'>
  597. <param>non</param>
  598. <target type='filelist' >wsdlbundle</target>
  599. <target type='servicelist'>wsdlbundle</target>
  600. <target type='variable' >wsdlbundle_apb_passwd</target>
  601. <target type='variable' >wsdlbundle_aglae_passwd</target>
  602. </condition>
  603. <condition name='hidden_if_in' source='activer_redis'>
  604. <param>non</param>
  605. <target type='variable'>pvebundle_redismode</target>
  606. <target type='variable'>pvebundle_redisalias</target>
  607. <target type='variable'>pvebundle_redisserveur</target>
  608. <target type='variable'>pvebundle_redisport</target>
  609. <target type='variable'>pvebundle_redisttl</target>
  610. <target type='variable'>pvebundle_redisweight</target>
  611. </condition>
  612. <condition name='hidden_if_in' source='pvebundle_redismode'>
  613. <param>Single node</param>
  614. <target type='variable'>pvebundle_redisweight</target>
  615. </condition>
  616. <condition name='disabled_if_in' source='pvebundle_redismode'>
  617. <param>Single node</param>
  618. <target type='filelist'>pve-redis-cluster</target>
  619. </condition>
  620. <condition name='hidden_if_in' source='pvebundle_redismode'>
  621. <param>Cluster</param>
  622. <target type='variable'>pvebundle_redisreplication</target>
  623. </condition>
  624. <condition name='disabled_if_in' source='pvebundle_redismode'>
  625. <param>Cluster</param>
  626. <target type='filelist'>pve-redis</target>
  627. </condition>
  628. <condition name='hidden_if_in' source='pvebundle_redisreplication'>
  629. <param>non</param>
  630. <target type='variable'>pvebundle_redisserveurslave</target>
  631. <target type='variable'>pvebundle_redisportslave</target>
  632. </condition>
  633. <!-- Redis configuration multiple hosts -->
  634. <group master="pvebundle_redisalias">
  635. <slave>pvebundle_redisserveur</slave>
  636. <slave>pvebundle_redisport</slave>
  637. <slave>pvebundle_redisserveurslave</slave>
  638. <slave>pvebundle_redisportslave</slave>
  639. <slave>pvebundle_redisweight</slave>
  640. </group>
  641. <check name="valid_enum" target="pvebundle_redisalias">
  642. <param>['session_cache','doctrine']</param>
  643. </check>
  644. <check name="valid_enum" target="pvebundle_redismode">
  645. <param>['Single node','Cluster']</param>
  646. </check>
  647. </constraints>
  648. <help></help>
  649. </creole>