diff options
author | 2020-02-03 13:43:25 -0500 | |
---|---|---|
committer | 2020-02-06 13:18:40 -0500 | |
commit | c73866cf44cad2be9a91ea1e2a3a77fcc29d9c2a (patch) | |
tree | 69955f0a068c89c2ae05fb05e6d9afa6641f3688 /ccsdk-app-os/docker-dashboard-installation.sh | |
parent | 2ac46fd53461288d5d99a9c0ebb8a3a5216db2a7 (diff) |
DCAE dashboard security fixes
Portal SDK ver 2.6.0, non-root user for docker container
Change label on Dashboard Home page, API changes, Container optimization
Change-Id: Ie2c8efd76d34fddc2b182d5ed494761522695914
Issue-ID: DCAEGEN2-1638
Issue-ID: CCSDK-1485
Issue-ID: DCAEGEN2-1921
Issue-ID: DCAEGEN2-1915
Issue-ID: DCAEGEN2-1856
Issue-ID: DCAEGEN2-1556
Issue-ID: DCAEGEN2-1592
Signed-off-by: Kotagiri, Ramprasad (rp5662) <rp5662@att.com>
Diffstat (limited to 'ccsdk-app-os/docker-dashboard-installation.sh')
-rw-r--r-- | ccsdk-app-os/docker-dashboard-installation.sh | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/ccsdk-app-os/docker-dashboard-installation.sh b/ccsdk-app-os/docker-dashboard-installation.sh index d658490..030e75a 100644 --- a/ccsdk-app-os/docker-dashboard-installation.sh +++ b/ccsdk-app-os/docker-dashboard-installation.sh @@ -47,5 +47,18 @@ export PGPASSWORD=$postgres_password_dashboard psql -h $postgres_ip -U $postgres_user_dashboard $postgres_db_name -f /tmp/create_table.sql psql -h $postgres_ip -U $postgres_user_dashboard $postgres_db_name -c "update FN_APP set app_username='${aaf_app_user}' where app_id=1" +# Update tomcat server.xml to enable HTTPS protocol +if [[ -f /usr/local/share/ca-certificates/cert.jks && $CATALINA_HOME/conf/server.xml ]] +then + echo "<Connector + protocol=\"org.apache.coyote.http11.Http11NioProtocol\" + port=\"8443\" maxThreads=\"200\" + scheme=\"https\" secure=\"true\" SSLEnabled=\"true\" + keystoreFile=\"/usr/local/share/ca-certificates/cert.jks\" keystorePass=\"`cat /usr/local/share/ca-certificates/jks.pass`\" + clientAuth=\"false\" sslProtocol=\"TLS\"/>" >> enablehttps.txt + sed '/Service name=\"Catalina\">/r enablehttps.txt' $CATALINA_HOME/conf/server.xml > $CATALINA_HOME/conf/server-https.xml + mv $CATALINA_HOME/conf/server-https.xml $CATALINA_HOME/conf/server.xml +fi + # Start the tomcat server catalina.sh run |