Configuring Secure Access to the Admin Servlet

You can use the BASIC authentication mechanism to provide secure communication between your web application's Admin servlet and the AssemblerUpdateComponent and the Usage collector components of the Deployment Template.

To establish secure access to the Admin servlet, follow these steps:

  1. Before modifying the configuration of the Endeca Application Controller (EAC), configure BASIC authentication for the Admin servlet using the standard J2EE mechanism.

  2. Add the BASIC authentication credentials to the credential store. EAC components reference these credentials from the credential store to authenticate the Admin servlet. For example, if you specified webAppAdmin (user name) and complexP@ssword (password) as the BASIC credentials, you can follow these steps to add them to the credentials store:

    1. Go to the credential_store\bin directory of your Tools and Framework installation.

    2. Run following command: manage_credentials add --key webAppAdminCredentialsKey --user webAppAdmin

    3. When prompted, enter the password complexP@ssword from Step 2. The following output appears on the console: 

                              manage_credentials add --key webAppAdminCredentialsKey --user webAppAdmin

Enter password for user webAppAdmin :

Re-enter password to conform :
21 Oct 2013 12:43:51,547  INFO CSFHandler:139 - Credential successfully created for map : endecaToolsAndFrameworks.

  3. Modify LiveAppServerCluster.xml to reference credentials. To do this, follow these steps:

    1. Open LiveAppServerCluster.xml in the config\script directory of your EAC application.

    2. Add the following code to LiveAppServerCluster.xml, to reference the credentials that you created:

      <basic-credentials id="webAppAdminCredentials" credentialsStore="csfManager" credentialsKey="webAppAdminCredentialsKey"/>

    3. Modify a <web-app> element to enable your web application to reference these BASIC credentials: 

    <web-app id="MyWebApp" 
contextPath="/my-web-app"
adminCredentials="webAppAdminCredentials" />

  4. If you enable SSL in Tools and Framework server where you web application resides, add the following property to the a <web-app> element to enable SSL communication: 

    sslEnabled=true

  5. Follow these steps to verify that the usage collection and promotion mechanism are able to authenticate access to the Admin servlet:

    1. Go to the control directory of your EAC application.

    2. Run the collect_usage command.

    3. Verify that usage information is collected in the logs\usage directory of your EAC application.

    4. Verify that the promotion mechanism works correctly by making changes in your Authoring environment and running the promote_content command from the control directory of your EAC application. Verify that your changes are successfully promoted to the live environment.

Copyright © Legal Notices