Project

General

Profile

Actions
Copy link

Task #2648

closed

Update installation HOWTOs to Tomcat 9

Added by Petr Fišer over 3 years ago. Updated almost 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Luděk Urban
Category:
Documentation
Target version:
-
Start date:
01/15/2021
Due date:
% Done:

0%

Estimated time:
Owner:

Description

When I was dealing with another ticket, I did a docker od CzechIdM+Tomcat9 - simply swapped Tomcat 8.5 for 9.0 - and it seems to work properly (even settings did not seem to change).
Vitek confirmed that current CzechIdM works on Tomcat 9.

Please, do another check that there is no surprise when we use Tomcat 9 with IdM (installation, configuration).
Then, update Linux and Windows installation HOWTOs.

Actions
Copy link
 #2

Updated by Luděk Urban about 3 years ago

When I update guide for tomcat 9 I will also update "Geting Started" page:
https://wiki.czechidm.com/getting-started

It's also need to check these modsec rules. They was add to guide but they are probably for modsec 2 and not 3.

        # These break Certificate Authority module
        <Location "/idm/api/v1/crt/certificates">
                SecRuleRemoveById 960915
                SecRuleRemoveById 200003
        </Location>

    # Modsec can throw false positives on some files due to multipart boundary check
    <Location "/idm/api/v1/attachments/upload">
        SecRuleRemoveById 960915
        SecRuleRemoveById 200003
    </Location>

Actions
Copy link
 #3

Updated by Luděk Urban almost 3 years ago

  • Status changed from New to Needs feedback

I updated getting started guide to support IdM 11.
Installation now uses tomcat 9 and java 11.
https://wiki.czechidm.com/getting-started

In linux server preparation I removed these modsec rules because they are not supported by modsec_crs 3.0

        # These break Certificate Authority module
        <Location "/idm/api/v1/crt/certificates">
                SecRuleRemoveById 960915
                SecRuleRemoveById 200003
        </Location>

    # Modsec can throw false positives on some files due to multipart boundary check
    <Location "/idm/api/v1/attachments/upload">
        SecRuleRemoveById 960915
        SecRuleRemoveById 200003
    </Location>

Finally I updated both linux and windows preparation and installation guides to use tomcat9.
There are only changes in path. Tomcat 8 configuration in versions 8.5.51 and never is compatible with tomcat 9 configuration.
linux:
https://wiki.czechidm.com/tutorial/adm/server_preparation
https://wiki.czechidm.com/tutorial/adm/czechidm_installation
win:
https://wiki.czechidm.com/tutorial/adm/server_preparation_win
https://wiki.czechidm.com/tutorial/adm/czechidm_installation_win

Actions
Copy link
 #4

Updated by Luděk Urban almost 3 years ago

  • Status changed from Needs feedback to Closed

All changes are done. I am closing the ticket.

Actions
Copy link

Also available in: Atom PDF