This chapter explains how to download and install the Secure Web Access Add-On for Sun GlassFish Web Space Server software.
This section explains the basic requirements and concepts you should review before proceeding to the installation of Secure Web Access Add-On for Web Space Server.
The Web Space Server software should be installed as described in the Chapter 2, Web Space Server Installation Instructions, in Sun GlassFish Web Space Server 10.0 Administration Guide. Note that the requirements listed in the Software and Hardware Requirements in Sun GlassFish Web Space Server 10.0 Installation Guide also apply to the SWA Add-On.
If you are installing the SWA Add-On on a Web Space Server 10.0 update version, make sure that you are using a compatible version. For example, the Secure Web Access Add-On for Web Space Server 10.0 Update 5 should be installed only on a Web Space Server 10.0 Update 5 installation.
The name of the core Web Space Server bundle is webspace-version-for-glassfish.zip), When you unzip this file, a webspace-for-glassfish directory is created. Throughout the installation instructions, this directory is referred to as webspace-dir.You can install and configure Web Space Server from this directory.
Similarly, the directory which contains the unzipped bundle of GlassFish is referred to as glassfish-root.
The instructions and examples in this document use UNIX-style forward slash (/) path separators in file and command names. If Web Space Server and Sun GlassFish Enterprise Server are installed on a Windows system, be sure to use backslashes (\) instead of forward slashes. For example:
UNIX systems or Linux systems ‐ glassfish/bin/asadmin
Windows systems ‐ glassfish\bin\asadmin
As with most Web Space Server add-on packages, the SWA Add-On is downloaded using the Sun GlassFish Update Tool.
The version of Update Tool included with some versions of GlassFish Enterprise Server is not compatible with the Web Space Server add-on package repositories. You must use the version of Update Tool that comes with the Web Space Server 10.0 software.
Update Tool also includes a command-line (CLI) Image Packaging System (IPS) utility called pkg, which provides the same core functionality as its GUI-based counterpart.
If you are running Update Tool for the first time, you will have to install the interface before proceeding.
Start Update Tool by changing to the webspace-dir/bin directory and typing updatetool.
Expand Web Space under the Application Images pane, and choose Available Updates.
Click the Edit Properties button.
The Image Properties window is displayed.
Select the option support.sun.com repository, and choose Preferred.
The Repository Properties window appears.
Provide the appropriate repository URL provided by Sun support, and click OK.
The support.sun.com repository is highlighted.
Click OK again to enable the support.sun.com repository.
The Update Tool main window is displayed.
Expand Web Space under the Application Images pane, and choose Available add-ons.
Select the Web Space for GlassFish V2 component, and click Install.
Select the swa-administration, swa-datastore, and swa-gateway components.
Proceed to Installing the Secure Web Access Add-On for the remaining installation instructions.
Start Update Tool by changing to the webspace-dir/bin directory and typing updatetool.
Change to the webspace-dir/pkg/bin directory.
Type the following command to download the Secure Web Access Add-On:
pkg set-authority -P --enable -O http://pkg.sun.com/webspace/10/ repository-name
Ask your SunSolve service representative for the correct repository name to use.
Type the following commands to install the base Secure Web Access Add-On.
pkg install webspace-swa-datastore-addon
pkg install webspace-swa-administration-addon
pkg install webspace-swa-gateway-addon
Proceed to Installing the Secure Web Access Add-On for the remaining installation instructions.
After using the Update Tool to get the SWA Add-On, the swa-administration, swa-datastore, and swa-gateway components are placed in the webspace-dir/webspace directory.
SWA uses JCR to store the Rewriter rule sets and other configuration data. The Gateway only reads from the data store, whereas the admin module both reads from and writes to the data store. Therefore, SWA has three components in terms of deployment. The Gateway is deployed in the DMZ (demilitarized zone), and the admin module and the data store are usually deployed in the intranet. A DMZ is a small protected network between the public Internet and a private intranet, usually demarcated with a firewall on both ends.
In a simple deployment scenario, the three SWA components; swa-datastore, swa-administration, and swa-gateway are installed in the webspace-dir/webspace directory. Each component should be installed in its own subdirectory. Install the components in this order: swa-datastore, swa-administration, and swa-gateway.
In a command shell of your operating system, change to the webspace-dir/webspace/swa-datastore directory.
Run ant -f install-glassfish.xmlinstallation script..
ant -f install-glassfish.xml Buildfile: install-glassfish.xml check-ant: check-last-install: set-last-install: show-user-warning: [input] JAVA_HOME must be set to JDK 1.5 or greater and java must be available in the execution path. GlassFish must be running. [RETURN to continue or CONTROL-C to stop] set-glassfish-properties: [input] Enter GlassFish Directory [/opt/glassfish] glassfish-root/glassfish [input] Enter GlassFish Domain (include full path to domain) [glassfish-root/glassfish/domains/domain1] [input] Enter GlassFish Target [server] [input] Enter GlassFish Administrator [admin] [input] Enter GlassFish Administrator Password File (include full path to file) [/root/asadmin-password] [input] Enter GlassFish Administration Port [4848] [input] Can installer deploy wars? [true] set-datastore-properties: [input] Enter Fully Qualified Datastore Host [localhost] ***fully qualified name of the datastore deployment machine; can be the same machine*** [input] Enter Datastore Port [1099] [input] Use builtin Derby or a mySQL database [Derby] mysql set-derby-properties: set-mysql-properties: [input] Enter Database User Name [root] lportal [input] Enter Database User Password File (include full path to file) [/root/database-user-password] [input] Enter Database Host [localhost] [input] Enter Database Port [3306] [input] Enter Database Name [lportal] |
You need to provide the GlassFish root directory, path for the GlassFish administration password file and other details while installing the swa-datastore component of SWA.
You need to provide a FQDN. Apart from that, you need to specify the database, user name for the database, path for the database password file, and other attributes.
Restart the GlassFish server.
In a command shell of your operating system, change to the webspacedir/webspace/swa-administration directory.
Run ant -f install-glassfish.xml.
ant -f install-glassfish.xml Buildfile: install-glassfish.xml check-ant: check-last-install: set-last-install: show-user-warning: [input] JAVA_HOME must be set to JDK 1.5 or greater and java must be available in the execution path. GlassFish must be running. [RETURN to continue or CONTROL-C to stop] set-glassfish-properties: [input] Enter GlassFish Directory [/opt/glassfish] glassfish-root/glassfish [input] Enter GlassFish Domain (include full path to domain) [glassfish-root/glassfish/domains/domain1] [input] Enter GlassFish Target [server] [input] Enter GlassFish Administrator [admin] [input] Enter GlassFish Administrator Password File (include full path to file) [/root/asadmin-password] [input] Enter GlassFish Administration Port [4848] [input] Can installer deploy wars? [true] set-datastore-properties: [input] Enter Fully Qualified Datastore Host [localhost] ***fully qualified name of the datastore deployment machine; can be the same machine*** [input] Enter Datastore Port [1099] |
You need to provide the GlassFish root directory, path for the GlassFish administration password file and other details while installing the swa-administration component of SWA.
For the successful configuration of SWA, you need to provide the Fully Qualified Domain Name (FQDN). In a simple deployment scenario, where you are installing all the components on a single machine, FQDN can be your machine host name. You should not select the default localhost.
Restart the GlassFish server.
In a command shell of your operating system, change to the webspace-dir/webspace/swa-gateway directory.
Run ant -f install-glassfish.xml.
ant -f install-glassfish.xml Buildfile: install-glassfish.xml check-ant: check-last-install: set-last-install: show-user-warning: [input] JAVA_HOME must be set to JDK 1.5 or greater and java must be available in the execution path. GlassFish must be running. [RETURN to continue or CONTROL-C to stop] set-glassfish-properties: [input] Enter GlassFish Directory [/opt/glassfish] glassfish-root/glassfish [input] Enter GlassFish Domain (include full path to domain) [glassfish-root/glassfish/domains/domain1] [input] Enter GlassFish Target [server] [input] Enter GlassFish Administrator [admin] [input] Enter GlassFish Administrator Password File (include full path to file) [/root/asadmin-password] [input] Enter GlassFish Administration Port [4848] [input] Can installer deploy wars? [true] set-datastore-properties: [input] Enter Fully Qualified Datastore Host [localhost] ***fully qualified name of the datastore deployment machine; can be the same machine*** [input] Enter Datastore Port [1099] |
You need to provide the GlassFish root directory, path for the GlassFish administration password file and other details while installing the swa-gateway component of SWA.
Also, you need to provide the FQDN name.