...
Attribute | Description | Expected values | Mandatory |
---|---|---|---|
url | The server URL endpoint | “opc.tcp://<IP>:<port>[/sub/path]” e.g. “opc.tcp://10.5.0.1:4841” | YES |
appUri | The application URI | e.g. “urn:S2OPC:localhost” | YES |
productUri | The product URI | e.g. “urn:S2OPC:localhost” | YES |
appDescription | Application description | Any non-empty string. | YES |
localeId | The default language Id. | e.g. "en-US", "fr-FR", ... | YES |
namespaces | List of namespaces URI, starting at namespace 1. Thus, the array should contain only one name. (Array is kept for portability) | e.g. for 2 users namespaces (ns=1, ns=2): [ "urn:S2OPC:localhost", "urn:S2OPC:localhost_2" ] | YES |
policies | Array of accepted policies If no security is required: | YES | |
policies.securityMode | The security mode | A string among “None”, “Sign” and “SignAndEncrypt” (case insensitive) | YES |
policies.securityPolicy | The security policy | A string among “None”, “Basic256”, “Basic256Sha256”, “Aes128Sha256RsaOaep” and “Aes256Sha256RsaPss” | YES |
policies.userPolicies | The user policy If no security is required, "Anonymous" should be used | A string among “Anonymous”, “username”, “username_None”, “username_Basic256” | YES |
users | A map of 'user':'password'. If no user-authentication is required, it can be an empty object | e.g: {"user" : "password", "user2" : "xGt4sdE3Z+" } e.g: {} | YES |
certificates | Note: all certificate files are expected to be provided in subfolders under the $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv folder | NOYES | |
certificates.serverCertPath | The Server certificate filename (DER format). The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/server/ | e.g. "server_2k_cert.der" | NOYES |
certificates.serverKeyPath | The Server key filename (PEM format) The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/server/ | e.g. "server_2k_key.pem" | NOYES |
certificates.trusted_root | The list of trusted root certificates (DER). Can be empty. The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/trusted/ | e.g. [ "cacert.der" ] | NO |
certificates.trusted_intermediate | The list of trusted intermediate certificates (DER). Can be empty. The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/trusted/ | Same as “trusted_root” | NO |
certificates.revoked | The list of revoked certificates (DER). Can be empty. The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/revoked/ | Same as “trusted_root” | NO |
certificates.untrusted_root | The list of untrusted root certificates (DER). Can be empty. The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/untrusted/ | Same as “trusted_root” | NO |
certificates.untrusted_intermediate | The list of untrusted intermediate certificates (DER). Can be empty. The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/untrusted/ | Same as “trusted_root” | NO |
certificates.issued | The list of untrusted issued certificates (DER). Can be empty. The complete path for this file is $(FLEDGE_INSTALL)/data/etc/certs/s2opc_srv/issued/ | Same as “trusted_root” | NO |
Configuration JSON structure
...