---
name: log-cache-cf-auth-proxy
templates:
  bpm.yml.erb: config/bpm.yml
  cc_ca.crt.erb: config/certs/cc_ca.crt
  uaa_ca.crt.erb: config/certs/uaa_ca.crt

packages:
- log-cache-cf-auth-proxy

provides:
- name: log-cache-cf-auth-proxy
  type: log-cache-cf-auth-proxy
  properties:
  - proxy_port

consumes:
- name: log-cache
  type: log-cache
- name: log-cache-gateway
  type: log-cache-gateway
- name: cloud_controller
  type: cloud_controller

properties:
  skip_cert_verify:
    description: "Whether to accept invalid certs"
    default: false
  proxy_port:
    description: "The port for the cf-auth-proxy to listen on"
  security_event_log:
    description: "When provided, the path to a file where security events will be logged"
  cc.ca_cert:
    description: "The CA for the internal api"
  cc.common_name:
    description: "The CN for the CA cert"
  uaa.client_id:
    description: "The client id to authenticate to UAA"
  uaa.client_secret:
    description: "The client secret to authenticate to UAA"
  uaa.ca_cert:
    description: "The CA for internal UAA api"
  uaa.internal_addr:
    description: "The endpoint used for the internal UAA api"

