Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
Next revision Both sides next revision
tutorial:adm:czechidm_installation [2020/01/13 14:12]
urbanl Uprava návodu na ruční instalaci tomcatu 8 		tutorial:adm:czechidm_installation [2020/04/21 11:40]
fiserp [1. Create DB user and database in PostgreSQL]
Line 15: Line 15:
 psql  psql 
 CREATE USER czechidm PASSWORD 'XXXXXXXXXXXX'; CREATE USER czechidm PASSWORD 'XXXXXXXXXXXX';
 +
 +# Choose appropriate collation and create database.
 +# with english collation
 CREATE DATABASE "czechidm" WITH OWNER 'czechidm' ENCODING 'UTF8' LC_COLLATE = 'en_US.UTF-8' LC_CTYPE = 'en_US.UTF-8' template 'template0'; CREATE DATABASE "czechidm" WITH OWNER 'czechidm' ENCODING 'UTF8' LC_COLLATE = 'en_US.UTF-8' LC_CTYPE = 'en_US.UTF-8' template 'template0';
 +# with czech collation
 +CREATE DATABASE "czechidm" WITH OWNER 'czechidm' ENCODING 'UTF8' LC_COLLATE = 'cs_CZ.UTF-8' LC_CTYPE = 'cs_CZ.UTF-8' template 'template0';
 </code> </code>
  
Line 47: Line 52:
  
 <code bash> <code bash>
-ln -s /usr/share/java/postgresql-jdbc.jar /opt/tomcat/current/lib/+ln -s /usr/share/java/postgresql-jdbc.jar /opt/tomcat/current/lib/
 </code>  </code> 
  
Line 92: Line 97:
   * The **backup** directory stored Groovy scripts backups.   * The **backup** directory stored Groovy scripts backups.
   * The **data** directory stores various user-attached files.   * The **data** directory stores various user-attached files.
-  * The **app** directory stores war files. 
   *    * 
 Create the directory structure: Create the directory structure:
Line 197: Line 201:
 flyway.enabled=true flyway.enabled=true
    
-scheduler.enabled=true + 
-scheduler.task.queue.process=1000 +
-scheduler.event.queue.process=1000+
 scheduler.properties.location=quartz-production.properties scheduler.properties.location=quartz-production.properties
 + 
 logging.config=/opt/czechidm/etc/logback-spring.xml logging.config=/opt/czechidm/etc/logback-spring.xml
-idm.sec.core.demo.data.enabled=false 
    
-#spring.cache.ehcache.config=classpath:ehcache.xml+idm.sec.core.demo.data.enabled=false
    
-spring.activiti.processDefinitionLocationPrefix=classpath*:/eu/bcvsolutions/idm/workflow/ +# attachments will be stored under this path
-idm.sec.core.notification.template.folder=classpath*:/eu/bcvsolutions/idm/templates+# new directories for attachment will be created in this folder (permissions has to be added) 
-idm.sec.core.script.folder=classpath*:/eu/bcvsolutions/idm/scripts/+# System.getProperty("user.home")/idm_data will be used if no path is given 
 +idm.sec.core.attachment.storagePath=/opt/czechidm/data
 # configuration property for default backup  # configuration property for default backup 
 idm.sec.core.backups.default.folder.path=/opt/czechidm/backup idm.sec.core.backups.default.folder.path=/opt/czechidm/backup
Line 218: Line 221:
 idm.sec.security.jwt.secret.token=********** TODO ********* idm.sec.security.jwt.secret.token=********** TODO *********
 idm.sec.security.jwt.expirationTimeout=36000000 idm.sec.security.jwt.expirationTimeout=36000000
- 
-# recaptcha 
-# - recaptchaservice endpoint  
-#idm.sec.security.recaptcha.url=https://www.google.com/recaptcha/api/siteverify 
-# - secret key, can be generated here https://www.google.com/recaptcha/admin 
-idm.sec.security.recaptcha.secretKey=xxx 
-# Proxy for HTTP requests 
-#idm.sec.core.http.proxy=12.34.56.78:1234 
    
 # Cipher secret key for crypt values in confidential storage # Cipher secret key for crypt values in confidential storage
Line 232: Line 227:
 cipher.crypt.secret.keyPath=/opt/czechidm/etc/secret.key cipher.crypt.secret.keyPath=/opt/czechidm/etc/secret.key
    
- +# Defaults for: emailer.* 
 +# test.enabled=true means mail WILL NOT be sent
 idm.sec.core.emailer.test.enabled=true idm.sec.core.emailer.test.enabled=true
 # http://camel.apache.org/mail.html # http://camel.apache.org/mail.html
Line 241: Line 237:
 # idm.sec.core.emailer.password=password # idm.sec.core.emailer.password=password
 idm.sec.core.emailer.from=czechidm@localhost idm.sec.core.emailer.from=czechidm@localhost
-  
-## Global property that allow disable or enable sending notification from WF 
-idm.sec.core.wf.notification.send=false 
-  
-  
-# supports delete identity 
-idm.pub.core.identity.delete=true 
-# 
-# default password change type for custom users, one of values:  
-# DISABLED - password change is disable 
-# ALL_ONLY - users can change passwords only for all accounts 
-# CUSTOM - users can choose for which accounts change password 
-idm.pub.core.identity.passwordChange=ALL_ONLY 
-# 
-# required old password for change password 
-idm.pub.core.identity.passwordChange.requireOldPassword=true 
-# 
-# create default identity's contract, when identity is created 
-idm.pub.core.identity.create.defaultContract.enabled=true 
-  
    
 # Default user role will be added automatically, after an identity is logged in # Default user role will be added automatically, after an identity is logged in
Line 269: Line 245:
 idm.sec.core.role.admin=superAdminRole idm.sec.core.role.admin=superAdminRole
    
-  +Max file size of uploaded file. Values can use the suffixed "MB" or "KB" to indicate a Megabyte or Kilobyte size. 
-ID system against which to authenticate +spring.servlet.multipart.max-file-size=100MB 
-idm.sec.security.auth.systemId+spring.servlet.multipart.max-request-size=100MB
- +
-# attachments will be stored under this path. +
-# new directories for attachment will be created in this folder (permissions has to be added) +
-# System.getProperty("user.home")/idm_data will be used if no path is given +
-idm.sec.core.attachment.storagePath=/opt/czechidm/data+
 </file> </file>
  
Line 343: Line 314:
 Apache Tomcat has to know where the new configuration is. Because CzechIdM uses SpringBoot project, we simply add the **/opt/czechidm/etc** directory (and others) on the classpath. Apache Tomcat has to know where the new configuration is. Because CzechIdM uses SpringBoot project, we simply add the **/opt/czechidm/etc** directory (and others) on the classpath.
  
-Create new file **/opt/tomcat/current/bin/setenv.sh** with following ​content: +Create new file **/opt/tomcat/current/bin/setenv.sh** with following ​content: 
-<code bash>+ 
 +<code bash:>
 CLASSPATH=/opt/czechidm/etc:/opt/czechidm/lib/* CLASSPATH=/opt/czechidm/etc:/opt/czechidm/lib/*
 </code> </code>
Line 389: Line 361:
 Copy the identity manager WAR into webapps folder in Tomcat and name it **idm.war**: Copy the identity manager WAR into webapps folder in Tomcat and name it **idm.war**:
 <code> <code>
-cp idm-app-9.4.0.war /opt/tomcat/current/webapps/idm.war +cp idm-app-9.4.0.war /opt/tomcat/current/webapps/idm.war 
-chown tomcat:tomcat /opt/tomcat/current/webapps/idm.war+chown tomcat:tomcat /opt/tomcat/current/webapps/idm.war
 </code> </code>
 Start the Tomcat container:<code> Start the Tomcat container:<code>
  • by kralikf