Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
tutorial:adm:czechidm_installation_win [2020/06/10 17:01] apeterova fake certificate |
tutorial:adm:czechidm_installation_win [2020/10/01 14:45] urbanl [Configure environment properties. Select application profile] |
||
---|---|---|---|
Line 27: | Line 27: | ||
* Add '' | * Add '' | ||
* Add '' | * Add '' | ||
- | |||
- | === Change Tomat logging properties === | ||
- | |||
- | In order to set-up log rotation we need stop logging to stdout and start logging to catalina.log . | ||
- | |||
- | Make these changes in file '' | ||
- | Comment out console handler. We don't want tomcat to log to stdout or stderr. | ||
- | < | ||
- | handlers = 1catalina.org.apache.juli.AsyncFileHandler, | ||
- | #handlers = java.util.logging.ConsoleHandler | ||
- | |||
- | .handlers = 1catalina.org.apache.juli.AsyncFileHandler | ||
- | #.handlers = java.util.logging.ConsoleHandler, | ||
- | |||
- | # | ||
- | # | ||
- | </ | ||
- | In 1catalina file handler change log level to " | ||
- | < | ||
- | # | ||
- | # | ||
- | 1catalina.org.apache.juli.AsyncFileHandler.level = INFO | ||
- | 1catalina.org.apache.juli.AsyncFileHandler.directory = ${catalina.base}/ | ||
- | 1catalina.org.apache.juli.AsyncFileHandler.prefix = tomcat | ||
- | 1catalina.org.apache.juli.AsyncFileHandler.rotatable = false | ||
- | 1catalina.org.apache.juli.AsyncFileHandler.suffix = .log | ||
- | </ | ||
- | |||
==== Create CzechIdM configuration folders ==== | ==== Create CzechIdM configuration folders ==== | ||
Line 243: | Line 215: | ||
There are two properties in application-production.properties that influence the confidential storage: | There are two properties in application-production.properties that influence the confidential storage: | ||
- | * You can set the 128bit (16byte) key directly in the property file using **cipher.crypt.secret.key** property or | + | * You can set the 128bit (16byte) or 256bit (32byte) key directly in the property file using **cipher.crypt.secret.key** property or |
* you can create separate file (in our case **secret.key**) containing a random string. Then you reference this file with **cipher.crypt.secret.keyPath** property. | * you can create separate file (in our case **secret.key**) containing a random string. Then you reference this file with **cipher.crypt.secret.keyPath** property. | ||
<note warning> | <note warning> | ||
Line 249: | Line 221: | ||
<note warning> | <note warning> | ||
- | Confidential storage uses AES/ | + | Confidential storage uses AES/ |
=== Attachment store === | === Attachment store === |