Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
tutorial:adm:czechidm_installation [2020/01/13 14:12] urbanl Uprava návodu na ruční instalaci tomcatu 8 |
tutorial:adm:czechidm_installation [2020/04/21 11:40] fiserp [1. Create DB user and database in PostgreSQL] |
||
---|---|---|---|
Line 15: | Line 15: | ||
psql | psql | ||
CREATE USER czechidm PASSWORD ' | CREATE USER czechidm PASSWORD ' | ||
+ | |||
+ | # Choose appropriate collation and create database. | ||
+ | # with english collation | ||
CREATE DATABASE " | CREATE DATABASE " | ||
+ | # with czech collation | ||
+ | CREATE DATABASE " | ||
</ | </ | ||
Line 47: | Line 52: | ||
<code bash> | <code bash> | ||
- | ln -s /usr/share/java/postgresql-jdbc.jar / | + | ln -s / |
</ | </ | ||
Line 92: | Line 97: | ||
* The **backup** directory stored Groovy scripts backups. | * The **backup** directory stored Groovy scripts backups. | ||
* The **data** directory stores various user-attached files. | * The **data** directory stores various user-attached files. | ||
- | * The **app** directory stores war files. | ||
* | * | ||
Create the directory structure: | Create the directory structure: | ||
Line 197: | Line 201: | ||
flyway.enabled=true | flyway.enabled=true | ||
- | scheduler.enabled=true | + | |
- | scheduler.task.queue.process=1000 | + | |
- | scheduler.event.queue.process=1000 | + | |
scheduler.properties.location=quartz-production.properties | scheduler.properties.location=quartz-production.properties | ||
+ | |||
logging.config=/ | logging.config=/ | ||
- | idm.sec.core.demo.data.enabled=false | ||
- | #spring.cache.ehcache.config=classpath: | + | idm.sec.core.demo.data.enabled=false |
- | spring.activiti.processDefinitionLocationPrefix=classpath*:/ | + | # attachments will be stored under this path. |
- | idm.sec.core.notification.template.folder=classpath*:/ | + | # new directories for attachment will be created in this folder (permissions has to be added) |
- | idm.sec.core.script.folder=classpath*:/eu/ | + | # System.getProperty(" |
+ | idm.sec.core.attachment.storagePath=/opt/czechidm/data | ||
# configuration property for default backup | # configuration property for default backup | ||
idm.sec.core.backups.default.folder.path=/ | idm.sec.core.backups.default.folder.path=/ | ||
Line 218: | Line 221: | ||
idm.sec.security.jwt.secret.token=********** TODO ********* | idm.sec.security.jwt.secret.token=********** TODO ********* | ||
idm.sec.security.jwt.expirationTimeout=36000000 | idm.sec.security.jwt.expirationTimeout=36000000 | ||
- | |||
- | # recaptcha | ||
- | # - recaptchaservice endpoint | ||
- | # | ||
- | # - secret key, can be generated here https:// | ||
- | idm.sec.security.recaptcha.secretKey=xxx | ||
- | # Proxy for HTTP requests | ||
- | # | ||
# Cipher secret key for crypt values in confidential storage | # Cipher secret key for crypt values in confidential storage | ||
Line 232: | Line 227: | ||
cipher.crypt.secret.keyPath=/ | cipher.crypt.secret.keyPath=/ | ||
- | + | # Defaults for: emailer.* | |
+ | # test.enabled=true means mail WILL NOT be sent | ||
idm.sec.core.emailer.test.enabled=true | idm.sec.core.emailer.test.enabled=true | ||
# http:// | # http:// | ||
Line 241: | Line 237: | ||
# idm.sec.core.emailer.password=password | # idm.sec.core.emailer.password=password | ||
idm.sec.core.emailer.from=czechidm@localhost | idm.sec.core.emailer.from=czechidm@localhost | ||
- | |||
- | ## Global property that allow disable or enable sending notification from WF | ||
- | idm.sec.core.wf.notification.send=false | ||
- | |||
- | |||
- | # supports delete identity | ||
- | idm.pub.core.identity.delete=true | ||
- | # | ||
- | # default password change type for custom users, one of values: | ||
- | # DISABLED - password change is disable | ||
- | # ALL_ONLY - users can change passwords only for all accounts | ||
- | # CUSTOM - users can choose for which accounts change password | ||
- | idm.pub.core.identity.passwordChange=ALL_ONLY | ||
- | # | ||
- | # required old password for change password | ||
- | idm.pub.core.identity.passwordChange.requireOldPassword=true | ||
- | # | ||
- | # create default identity' | ||
- | idm.pub.core.identity.create.defaultContract.enabled=true | ||
- | |||
# Default user role will be added automatically, | # Default user role will be added automatically, | ||
Line 269: | Line 245: | ||
idm.sec.core.role.admin=superAdminRole | idm.sec.core.role.admin=superAdminRole | ||
- | + | # Max file size of uploaded file. Values can use the suffixed " | |
- | # ID system against which to authenticate | + | spring.servlet.multipart.max-file-size=100MB |
- | idm.sec.security.auth.systemId= | + | spring.servlet.multipart.max-request-size=100MB |
- | + | ||
- | # attachments will be stored under this path. | + | |
- | # new directories for attachment will be created in this folder (permissions has to be added) | + | |
- | # System.getProperty(" | + | |
- | idm.sec.core.attachment.storagePath=/ | + | |
</ | </ | ||
Line 343: | Line 314: | ||
Apache Tomcat has to know where the new configuration is. Because CzechIdM uses SpringBoot project, we simply add the **/ | Apache Tomcat has to know where the new configuration is. Because CzechIdM uses SpringBoot project, we simply add the **/ | ||
- | Create new file **/ | + | Create new file **/ |
- | <code bash> | + | |
+ | <code bash:> | ||
CLASSPATH=/ | CLASSPATH=/ | ||
</ | </ | ||
Line 389: | Line 361: | ||
Copy the identity manager WAR into webapps folder in Tomcat and name it **idm.war**: | Copy the identity manager WAR into webapps folder in Tomcat and name it **idm.war**: | ||
< | < | ||
- | cp idm-app-9.4.0.war / | + | cp idm-app-9.4.0.war / |
- | chown tomcat: | + | chown tomcat: |
</ | </ | ||
Start the Tomcat container:< | Start the Tomcat container:< |