Excerpt |
---|
The common details of setting up services for the Bitrepository |
Concrete services:
Child pages (Children Display) |
---|
Service requirements
The different services has a common set of requirements:
- An application server which to run on (Tomcat)
- Bitrepository collection and reference settings files.
- A PEM formatted certificate and key file for the service
- Configuration files
- Databases for storage
In the following a there's a general description of the above items.
...
Open the file "tomcat-users.xml" from $TOMCAT_ROOT/conf/ (Assuming $TOMCAT_ROOT is the base directory for the server, if installed through the yum packaging system on a Fedora box it would be /usr/share/tomcat) and add the following:
No Format |
---|
<role rolename="manager-gui" />
<user username="tomcat" password="something-secret" roles="manager-gui"/>
|
...
Below is an general example of setting a context parameter in the context.xml.default file.
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
<Context override="true"> <Parameter name="parameter-name" value="parameter-value" override="false" /> </Context> |
The table below lists the current available services and their corresponding parameter-names
Service name | parameter name |
---|---|
Webclient | configurationDir |
Alarm service | alarmServiceConfDir |
Integrity service | integrityServiceConfDir |
AuditTrail service | auditTrailServiceConfDir |
Monitoring service | monitoringServiceConfDir |
Configuration files
...
The logging setup is done by the logback.xml file and is likely to be similar across the different services, probably only differing to which file the log is written to. Below is an example logback.xml file. The content of the <file>-tag should be altered to reflect the file that is to be logged to.
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
<configuration> <appender name="FILE"> <file>/tmp/logfile.log</file> <append>true</append> <encoder> <pattern>%d{yyyy-MM-dd HH:mm:ss.SSS} \[%thread\] %-5level %logger{36} - %msg%n</pattern> </encoder> </appender> <root level="INFO"> <appender-ref ref="FILE" /> </root> <logger name="org.bitrepository" level="DEBUG" /> </configuration> |
...
For collections where encryption, authentication, messagesigning etc is needed, the service needs to have access to its private key and certificate. For this a PEM formatted certificate is needed.
For make making a PEM formatted file the attached script pkcs12topem can be used to convert a pkcs#12 formatted certificate and key file to the needed PEM format.
...