From 95df47ae4e2b858b298a9c99af9df2f9884f8e40 Mon Sep 17 00:00:00 2001 From: Florian Dold Date: Wed, 4 Aug 2021 13:31:25 +0200 Subject: debian: adopt new accountcredentials config structure --- .../taler/conf.d/exchange-business.conf | 12 ++++++++++++ .../secrets/exchange-accountcredentials.secret.conf | 17 +++++++++++++++++ .../taler/secrets/exchange-accounts.secret.conf | 21 --------------------- 3 files changed, 29 insertions(+), 21 deletions(-) create mode 100644 debian/etc-taler-exchange/taler/secrets/exchange-accountcredentials.secret.conf delete mode 100644 debian/etc-taler-exchange/taler/secrets/exchange-accounts.secret.conf (limited to 'debian') diff --git a/debian/etc-taler-exchange/taler/conf.d/exchange-business.conf b/debian/etc-taler-exchange/taler/conf.d/exchange-business.conf index 3fae902ea..4a6b16df8 100644 --- a/debian/etc-taler-exchange/taler/conf.d/exchange-business.conf +++ b/debian/etc-taler-exchange/taler/conf.d/exchange-business.conf @@ -19,3 +19,15 @@ BASE_URL = # specification on Etags. # TERMS_ETAG = # PRIVACY_ETAG = + + +# Bank accounts used by the exchange should be specified here: +[exchange-accounts-1] + +enable_credit = yes +enable_debit = yes +payto_uri = + +# Credentials to access the account are in a separate +# config file with restricted permissions. +@inline-secret@ exchange-accountcredentials-1 ../exchange-accountcredentials.secret.conf diff --git a/debian/etc-taler-exchange/taler/secrets/exchange-accountcredentials.secret.conf b/debian/etc-taler-exchange/taler/secrets/exchange-accountcredentials.secret.conf new file mode 100644 index 000000000..8c8d14320 --- /dev/null +++ b/debian/etc-taler-exchange/taler/secrets/exchange-accountcredentials.secret.conf @@ -0,0 +1,17 @@ +# This file contains the secret credentials +# to access the Taler Wire Gateway API (usually +# provided by LibEuFin) for the exchange accounts. +# +# Each exchange-account-* section should have a matching +# exchange-accountcredentials-* section here. +# +# Each of those sections must be imported via @inline-secret@, +# usually in conf.d/exchange-business.conf. + +[exchange-accountcredentials-1] + +wire_gateway_auth_method = basic +password = +username = +wire_gateway_url = + diff --git a/debian/etc-taler-exchange/taler/secrets/exchange-accounts.secret.conf b/debian/etc-taler-exchange/taler/secrets/exchange-accounts.secret.conf deleted file mode 100644 index 7b6c649fd..000000000 --- a/debian/etc-taler-exchange/taler/secrets/exchange-accounts.secret.conf +++ /dev/null @@ -1,21 +0,0 @@ -# This file should contain the wire account access information which is needed -# by the Taler exchange to talk to LibEuFin to interact with the bank. -# The file SHOULD only be readable for the "taler-exchange-wire" user, -# as other users/services have no business talking to the bank. - - -[exchange-account-1] -enable_credit = yes - -enable_debit = yes - -wire_gateway_auth_method = basic - -password = - -username = - -wire_gateway_url = - -payto_uri = - -- cgit v1.2.3