Changes between Version 5 and Version 6 of HttpsRemoteFiles
- Timestamp:
- Feb 7, 2014, 1:49:27 PM (10 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
HttpsRemoteFiles
v5 v6 1 1 = Configuring the Proteios server to access remote files via https = 2 2 3 To allow Proteios to use a certificate when accessing remote files over https, it needs to be configured with the location of the certificate files, and a file with th epassword to the certificate. For security reason it could be good to set permissions to the certificate and password files so that they are only readable b ty the tomcat user. Notthat the certificate file need to be configured with an alias (name) for the certificate to use.3 To allow Proteios to use a certificate when accessing remote files over https, it needs to be configured with the location of the certificate files, and a file with th epassword to the certificate. For security reason it could be good to set permissions to the certificate and password files so that they are only readable by the tomcat user. Note that the certificate file need to be configured with an alias (name) for the certificate to use. 4 4 5 5 == tomcat == 6 The following jvm parameters needs to be set for tomcat: 6 7 === Alternative 1: tomcat settings as jvm parameters === 8 9 The following jvm parameters need to be set for tomcat: 7 10 8 11 - -Djavax.net.ssl.keyStore=PATH_TO_P12_FILE … … 19 22 cert.alias=ALIAS[[BR]] (for example cert.alias=my name) 20 23 24 === Alternative 2: tomcat settings in properties file (Proteios SE 2.20.0 and higher) === 25 The preferred method is to set the connection parameter values in properties file `connection.properties`. 26 Copy template file `client/servlet/conf/connection.properties.in` to a file `connection.properties` 27 and add the settings to the latter: 28 29 - cert.alias = ALIAS 30 31 - cert.passFile = PATH_TO_P12_PASSWORD_FILE 32 33 - javax.net.ssl.keyStore = PATH_TO_P12_FILE 34 35 - javax.net.ssl.keyStorePassword = P12_KEYSTORE_PASSWORD 36 37 - javax.net.ssl.trustStore = PATH_TO_JKS_FILE 38 39 - javax.net.ssl.trustStorePassword = JKS_TRUSTSTORE_PASSWORD 40 41 If `keyStorePassword` is missing, an attempt is made to read it from `cert.passFile`. 42 21 43 == FTP server == 44 If the connection parameters are set in a properties file (alternative 2 above), 45 no changes should be needed for the ftp server. Otherwise, make the following additions: 46 22 47 For the ftp server, currently the startup script has to be edited: 23 48 Add a line in the beginning:[[BR]]
