You can use the BASIC authentication mechanism to provide secure
communication between your web application's Admin servlet and the
AssemblerUpdateComponent
and the Usage collector
components of the Deployment Template.
To establish secure access to the Admin servlet, follow these steps:
Before modifying the configuration of the Endeca Application Controller (EAC), configure BASIC authentication for the Admin servlet using the standard J2EE mechanism.
Add the BASIC authentication credentials to the credential store. EAC components reference these credentials from the credential store to authenticate the Admin servlet. For example, if you specified
webAppAdmin
(user name) andcomplexP@ssword
(password) as the BASIC credentials, you can follow these steps to add them to the credentials store:Go to the
credential_store\bin
directory of your Tools and Framework installation.Run following command:
manage_credentials add --key webAppAdminCredentialsKey --user webAppAdmin
When prompted, enter the password
complexP@ssword
from Step 2. The following output appears on the console:manage_credentials add --key webAppAdminCredentialsKey --user webAppAdmin Enter password for user webAppAdmin : Re-enter password to conform : 21 Oct 2013 12:43:51,547 INFO CSFHandler:139 - Credential successfully created for map : endecaToolsAndFrameworks.
Modify LiveAppServerCluster.xml to reference credentials. To do this, follow these steps:
Open
LiveAppServerCluster.xml
in theconfig\script
directory of your EAC application.Add the following code to
LiveAppServerCluster.xml
, to reference the credentials that you created:<basic-credentials id="webAppAdminCredentials" credentialsStore="csfManager" credentialsKey="webAppAdminCredentialsKey"/>
Modify a <
web-app
> element to enable your web application to reference these BASIC credentials:
<web-app id="MyWebApp" contextPath="/my-web-app" adminCredentials="webAppAdminCredentials" />
If you enable SSL in Tools and Framework server where you web application resides, add the following property to the a <
web-app
> element to enable SSL communication:sslEnabled=true
Follow these steps to verify that the usage collection and promotion mechanism are able to authenticate access to the Admin servlet:
Verify that usage information is collected in the
logs\usage
directory of your EAC application.Verify that the promotion mechanism works correctly by making changes in your Authoring environment and running the
promote_content
command from the control directory of your EAC application. Verify that your changes are successfully promoted to the live environment.