Changes between Version 5 and Version 6 of HttpsRemoteFiles


Ignore:
Timestamp:
Feb 7, 2014, 1:49:27 PM (9 years ago)
Author:
olle
Comment:

Added info on setting connection parameters in properties file.

Legend:

Unmodified
Added
Removed
Modified
  • HttpsRemoteFiles

    v5 v6  
    11= Configuring the Proteios server to access remote files via https =
    22
    3 To allow Proteios to use a certificate when accessing remote files over https, it needs to be configured with the location of the certificate files, and a file with th epassword to the certificate. For security reason it could be good to set permissions to the certificate and password files so that they are only readable bty the tomcat user. Not that the certificate file need to be configured with an alias (name) for the certificate to use.
     3To allow Proteios to use a certificate when accessing remote files over https, it needs to be configured with the location of the certificate files, and a file with th epassword to the certificate. For security reason it could be good to set permissions to the certificate and password files so that they are only readable by the tomcat user. Note that the certificate file need to be configured with an alias (name) for the certificate to use.
    44
    55== tomcat ==
    6 The following jvm parameters needs to be set for tomcat:
     6
     7=== Alternative 1: tomcat settings as jvm parameters ===
     8
     9The following jvm parameters need to be set for tomcat:
    710
    811 - -Djavax.net.ssl.keyStore=PATH_TO_P12_FILE
     
    1922cert.alias=ALIAS[[BR]] (for example cert.alias=my name)
    2023
     24=== Alternative 2: tomcat settings in properties file (Proteios SE 2.20.0 and higher) ===
     25The preferred method is to set the connection parameter values in properties file `connection.properties`.
     26Copy template file `client/servlet/conf/connection.properties.in` to a file `connection.properties`
     27and add the settings to the latter:
     28
     29 - cert.alias = ALIAS
     30
     31 - cert.passFile = PATH_TO_P12_PASSWORD_FILE
     32
     33 - javax.net.ssl.keyStore = PATH_TO_P12_FILE
     34
     35 - javax.net.ssl.keyStorePassword = P12_KEYSTORE_PASSWORD
     36
     37 - javax.net.ssl.trustStore = PATH_TO_JKS_FILE
     38
     39 - javax.net.ssl.trustStorePassword = JKS_TRUSTSTORE_PASSWORD
     40
     41If `keyStorePassword` is missing, an attempt is made to read it from `cert.passFile`.
     42
    2143== FTP server ==
     44If the connection parameters are set in a properties file (alternative 2 above),
     45no changes should be needed for the ftp server. Otherwise, make the following additions:
     46
    2247For the ftp server, currently the startup script has to be edited:
    2348Add a line in the beginning:[[BR]]