Add Micro-purchase staging and prod to SP config (#900)

**Why**: This is a required step for adding a new service provider * See 18F/micropurchase#1476
18F · Feb 28, 2017 · 16b0e66 · 16b0e66
1 parent c276634
commit 16b0e66
Show file tree

Hide file tree

Showing 3 changed files with 61 additions and 2 deletions.
diff --git a/certs/sp/sp_micropurchase.crt b/certs/sp/sp_micropurchase.crt
@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/config/application.yml.example b/config/application.yml.example
@@ -85,7 +85,7 @@ development:
   twilio_accounts: '[{"sid":"sid", "auth_token":"token", "number":"9999999999"}]'
   twilio_record_voice: 'true'
   use_kms: 'false'
-  valid_service_providers: '["https://rp1.serviceprovider.com/auth/saml/metadata", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost-rails", "https://dashboard.login.gov"]'
+  valid_service_providers: '["https://rp1.serviceprovider.com/auth/saml/metadata", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost-rails", "https://dashboard.login.gov", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost-micropurchase"]'
   enable_i18n_mode: 'false'
 
 production:
@@ -128,7 +128,7 @@ production:
   twilio_accounts: '[{"sid":"sid", "auth_token":"token", "number":"9999999999"}]'
   twilio_record_voice: 'false'
   use_kms: 'false'
-  valid_service_providers: '["https://upaya-dev.18f.gov", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:dev", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:demo", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:rails-dev", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:rails-demo", "https://dashboard.demo.login.gov", "https://dashboard.qa.login.gov", "https://dashboard.dev.login.gov"]'
+  valid_service_providers: '["https://upaya-dev.18f.gov", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:dev", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:demo", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:rails-dev", "urn:gov:gsa:SAML:2.0.profiles:sp:sso:rails-demo", "https://dashboard.demo.login.gov", "https://dashboard.qa.login.gov", "https://dashboard.dev.login.gov", "urn:gov:gsa:saml:2.0.profiles:sp:sso:micropurchase-staging", "urn:gov:gsa:saml:2.0.profiles:sp:sso:micropurchase-production"]'
   enable_i18n_mode: 'false'
 
 test:

diff --git a/config/service_providers.yml b/config/service_providers.yml
@@ -60,6 +60,18 @@ development:
     attribute_bundle:
       - email
 
+  'urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost-micropurchase':
+    acs_url: 'http://localhost:3000/auth/saml/callback'
+    assertion_consumer_logout_service_url: 'http://localhost:3000/auth/saml/logout'
+    sp_initiated_login_url: 'http://localhost:3000/login'
+    block_encryption: 'aes256-cbc'
+    cert: 'sp_micropurchase'
+    agency: 'TTS Acquisition'
+    friendly_name: 'Micro-purchase Dev'
+    return_to_sp_url: 'http://localhost:3000'
+    attribute_bundle:
+      - email
+
   'urn:gov:gsa:SAML:2.0.profiles:sp:sso:localhost-rails':
     acs_url: 'http://localhost:3003/auth/saml/callback'
     assertion_consumer_logout_service_url: 'http://localhost:3003/auth/saml/logout'
@@ -161,6 +173,31 @@ production:
     attribute_bundle:
       - email
 
+# Micro-purchase
+  'urn:gov:gsa:saml:2.0.profiles:sp:sso:micropurchase-staging':
+    acs_url: 'https://micropurchase-staging.18f.gov/auth/saml/callback'
+    assertion_consumer_logout_service_url: 'https://micropurchase-staging.gov/auth/saml/logout'
+    sp_initiated_login_url: 'https://micropurchase-staging.18f.gov/login'
+    block_encryption: 'aes256-cbc'
+    cert: 'sp_micropurchase'
+    agency: 'TTS Acquisition'
+    friendly_name: 'Micro-purchase Staging'
+    return_to_sp_url: 'https://micropurchase-staging.gov'
+    attribute_bundle:
+      - email
+
+  'urn:gov:gsa:SAML:2.0.profiles:sp:sso:micropurchase-production':
+    acs_url: 'https://micropurchase.18f.gov/auth/saml/callback'
+    assertion_consumer_logout_service_url: 'https://micropurchase.gov/auth/saml/logout'
+    sp_initiated_login_url: 'https://micropurchase.18f.gov/login'
+    block_encryption: 'aes256-cbc'
+    cert: 'sp_micropurchase'
+    agency: 'TTS Acquisition'
+    friendly_name: 'Micro-purchase'
+    return_to_sp_url: 'https://micropurchase.18f.gov'
+    attribute_bundle:
+      - email
+
   # Dashboard
   'https://dashboard.demo.login.gov':
     acs_url: 'https://dashboard.demo.login.gov/users/auth/saml/callback'