Wildfly >=10 support
Wildfly includes these libs so we don't need to install them separately. Check what version of wildfly is being installed and only add the libs if necessary. Prepare to have a different config file for 10 Change-Id: Idc09ef9d6d7200d86daad586719c2d4f6e143f1c
This commit is contained in:
parent
4e86b746c3
commit
5ced64b2bc
@ -86,24 +86,6 @@ class zanata(
|
||||
]
|
||||
}
|
||||
|
||||
archive { "/home/wildfly/${zanata_hibernate_file}":
|
||||
ensure => present,
|
||||
user => 'wildfly',
|
||||
source => $zanata_hibernate_url,
|
||||
extract => true,
|
||||
extract_path => '/opt/wildfly/',
|
||||
require => Package['unzip'],
|
||||
}
|
||||
|
||||
archive { "/home/wildfly/${zanata_mojarra_file}":
|
||||
ensure => present,
|
||||
user => 'wildfly',
|
||||
source => $zanata_mojarra_url,
|
||||
extract => true,
|
||||
extract_path => '/opt/wildfly/',
|
||||
require => Package['unzip'],
|
||||
}
|
||||
|
||||
# The mysql driver name differs based on the version of the package. Ensure
|
||||
# we set it correctly when writing the standalone.xml config file below.
|
||||
if ($::operatingsystem == 'Ubuntu') and ($::operatingsystemrelease >= '16.04') {
|
||||
@ -122,12 +104,31 @@ class zanata(
|
||||
],
|
||||
}
|
||||
|
||||
if (versioncmp($zanata_wildfly_version, '10.0.0') < 0) {
|
||||
archive { "/home/wildfly/${zanata_hibernate_file}":
|
||||
ensure => present,
|
||||
user => 'wildfly',
|
||||
source => $zanata_hibernate_url,
|
||||
extract => true,
|
||||
extract_path => '/opt/wildfly/',
|
||||
require => Package['unzip'],
|
||||
}
|
||||
|
||||
archive { "/home/wildfly/${zanata_mojarra_file}":
|
||||
ensure => present,
|
||||
user => 'wildfly',
|
||||
source => $zanata_mojarra_url,
|
||||
extract => true,
|
||||
extract_path => '/opt/wildfly/',
|
||||
require => Package['unzip'],
|
||||
}
|
||||
|
||||
file { '/opt/wildfly/standalone/configuration/standalone.xml':
|
||||
ensure => present,
|
||||
notify => Service['wildfly'],
|
||||
owner => wildfly,
|
||||
group => wildfly,
|
||||
content => template('zanata/standalone.xml.erb'),
|
||||
content => template('zanata/wildfly-9-standalone.xml.erb'),
|
||||
require => [
|
||||
Class['zanata::wildfly'],
|
||||
Archive['/opt/wildfly/standalone/deployments/ROOT.war'],
|
||||
@ -135,6 +136,20 @@ class zanata(
|
||||
Archive["/home/wildfly/${zanata_hibernate_file}"],
|
||||
],
|
||||
}
|
||||
} else {
|
||||
file { '/opt/wildfly/standalone/configuration/standalone.xml':
|
||||
ensure => present,
|
||||
notify => Service['wildfly'],
|
||||
owner => wildfly,
|
||||
group => wildfly,
|
||||
content => template('zanata/wildfly-10-standalone.xml.erb'),
|
||||
require => [
|
||||
Class['zanata::wildfly'],
|
||||
Archive['/opt/wildfly/standalone/deployments/ROOT.war'],
|
||||
],
|
||||
}
|
||||
}
|
||||
|
||||
}
|
||||
|
||||
# == Define: zanata::validate_listener
|
||||
|
617
templates/wildfly-9-standalone.xml.erb
Normal file
617
templates/wildfly-9-standalone.xml.erb
Normal file
@ -0,0 +1,617 @@
|
||||
<?xml version='1.0' encoding='UTF-8'?>
|
||||
|
||||
<server xmlns="urn:jboss:domain:2.1">
|
||||
|
||||
<extensions>
|
||||
<extension module="org.jboss.as.clustering.infinispan"/>
|
||||
<extension module="org.jboss.as.connector"/>
|
||||
<extension module="org.jboss.as.deployment-scanner"/>
|
||||
<extension module="org.jboss.as.ee"/>
|
||||
<extension module="org.jboss.as.ejb3"/>
|
||||
<extension module="org.jboss.as.jaxrs"/>
|
||||
<extension module="org.jboss.as.jdr"/>
|
||||
<extension module="org.jboss.as.jmx"/>
|
||||
<extension module="org.jboss.as.jpa"/>
|
||||
<extension module="org.jboss.as.jsf"/>
|
||||
<extension module="org.jboss.as.logging"/>
|
||||
<extension module="org.jboss.as.mail"/>
|
||||
<extension module="org.jboss.as.messaging"/>
|
||||
<extension module="org.jboss.as.naming"/>
|
||||
<extension module="org.jboss.as.pojo"/>
|
||||
<extension module="org.jboss.as.remoting"/>
|
||||
<extension module="org.jboss.as.sar"/>
|
||||
<extension module="org.jboss.as.security"/>
|
||||
<extension module="org.jboss.as.transactions"/>
|
||||
<extension module="org.jboss.as.webservices"/>
|
||||
<extension module="org.wildfly.extension.batch"/>
|
||||
<extension module="org.wildfly.extension.io"/>
|
||||
<extension module="org.wildfly.extension.undertow"/>
|
||||
</extensions>
|
||||
|
||||
<system-properties>
|
||||
<property name="javamelody.storage-directory" value="<%= @zanata_storage_dir %>/stats"/>
|
||||
<property name="hibernate.search.default.indexBase" value="<%= @zanata_storage_dir %>/indexes"/>
|
||||
<property name="ehcache.disk.store.dir" value="<%= @zanata_storage_dir %>/ehcache"/>
|
||||
</system-properties>
|
||||
|
||||
|
||||
<management>
|
||||
<security-realms>
|
||||
<security-realm name="ManagementRealm">
|
||||
<authentication>
|
||||
<local default-user="$local" skip-group-loading="true"/>
|
||||
<properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>
|
||||
</authentication>
|
||||
<authorization map-groups-to-roles="false">
|
||||
<properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/>
|
||||
</authorization>
|
||||
</security-realm>
|
||||
<security-realm name="ApplicationRealm">
|
||||
<authentication>
|
||||
<local default-user="$local" allowed-users="*" skip-group-loading="true"/>
|
||||
<properties path="application-users.properties" relative-to="jboss.server.config.dir"/>
|
||||
</authentication>
|
||||
<authorization>
|
||||
<properties path="application-roles.properties" relative-to="jboss.server.config.dir"/>
|
||||
</authorization>
|
||||
</security-realm>
|
||||
</security-realms>
|
||||
<audit-log>
|
||||
<formatters>
|
||||
<json-formatter name="json-formatter"/>
|
||||
</formatters>
|
||||
<handlers>
|
||||
<file-handler name="file" formatter="json-formatter" path="audit-log.log" relative-to="jboss.server.data.dir"/>
|
||||
</handlers>
|
||||
<logger log-boot="true" log-read-only="false" enabled="false">
|
||||
<handlers>
|
||||
<handler name="file"/>
|
||||
</handlers>
|
||||
</logger>
|
||||
</audit-log>
|
||||
<management-interfaces>
|
||||
<http-interface security-realm="ManagementRealm" http-upgrade-enabled="true">
|
||||
<socket-binding http="management-http"/>
|
||||
</http-interface>
|
||||
</management-interfaces>
|
||||
<access-control provider="simple">
|
||||
<role-mapping>
|
||||
<role name="SuperUser">
|
||||
<include>
|
||||
<user name="$local"/>
|
||||
</include>
|
||||
</role>
|
||||
</role-mapping>
|
||||
</access-control>
|
||||
</management>
|
||||
|
||||
<profile>
|
||||
<subsystem xmlns="urn:jboss:domain:logging:2.0">
|
||||
<console-handler name="CONSOLE">
|
||||
<level name="INFO"/>
|
||||
<formatter>
|
||||
<named-formatter name="COLOR-PATTERN"/>
|
||||
</formatter>
|
||||
</console-handler>
|
||||
<periodic-rotating-file-handler name="FILE" autoflush="true">
|
||||
<formatter>
|
||||
<named-formatter name="PATTERN"/>
|
||||
</formatter>
|
||||
<file relative-to="jboss.server.log.dir" path="server.log"/>
|
||||
<suffix value=".yyyy-MM-dd"/>
|
||||
<append value="true"/>
|
||||
</periodic-rotating-file-handler>
|
||||
<logger category="com.arjuna">
|
||||
<level name="WARN"/>
|
||||
</logger>
|
||||
<logger category="org.apache.tomcat.util.modeler">
|
||||
<level name="WARN"/>
|
||||
</logger>
|
||||
<logger category="org.jboss.as.config">
|
||||
<level name="DEBUG"/>
|
||||
</logger>
|
||||
<logger category="sun.rmi">
|
||||
<level name="WARN"/>
|
||||
</logger>
|
||||
<logger category="jacorb">
|
||||
<level name="WARN"/>
|
||||
</logger>
|
||||
<logger category="jacorb.config">
|
||||
<level name="ERROR"/>
|
||||
</logger>
|
||||
<root-logger>
|
||||
<level name="INFO"/>
|
||||
<handlers>
|
||||
<handler name="CONSOLE"/>
|
||||
<handler name="FILE"/>
|
||||
</handlers>
|
||||
</root-logger>
|
||||
<formatter name="PATTERN">
|
||||
<pattern-formatter pattern="%d{HH:mm:ss,SSS}Z %-5p [%c] (%t) %s%E%n"/>
|
||||
</formatter>
|
||||
<formatter name="COLOR-PATTERN">
|
||||
<pattern-formatter pattern="%K{level}%z{utc}%d{yyyy-MM-dd}T%d{HH:mm:ss,SSS}Z %-5p [%c] (%t) %s%E%n"/>
|
||||
</formatter>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:batch:1.0">
|
||||
<job-repository>
|
||||
<in-memory/>
|
||||
</job-repository>
|
||||
<thread-pool>
|
||||
<max-threads count="10"/>
|
||||
<keepalive-time time="30" unit="seconds"/>
|
||||
</thread-pool>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:datasources:2.0">
|
||||
<datasources>
|
||||
<datasource jndi-name="java:jboss/datasources/ExampleDS" pool-name="ExampleDS" enabled="true" use-java-context="true">
|
||||
<connection-url>jdbc:h2:mem:test;DB_CLOSE_DELAY=-1;DB_CLOSE_ON_EXIT=FALSE</connection-url>
|
||||
<driver>h2</driver>
|
||||
<security>
|
||||
<user-name>sa</user-name>
|
||||
<password>sa</password>
|
||||
</security>
|
||||
</datasource>
|
||||
<datasource jndi-name="java:jboss/datasources/zanataDatasource" pool-name="zanataDatasource" enabled="true" use-ccm="false">
|
||||
<connection-url>jdbc:mysql://<%= @mysql_host %>:<%= @mysql_port %>/zanata?characterEncoding=UTF-8</connection-url>
|
||||
<driver-class>com.mysql.jdbc.Driver</driver-class>
|
||||
<driver><%= @mysql_driver_name %></driver>
|
||||
<pool>
|
||||
<min-pool-size>0</min-pool-size>
|
||||
<max-pool-size>20</max-pool-size>
|
||||
<flush-strategy>FailingConnectionOnly</flush-strategy>
|
||||
</pool>
|
||||
<security>
|
||||
<user-name><%= @zanata_db_username %></user-name>
|
||||
<% if @zanata_db_password != '' -%>
|
||||
<password><%= @zanata_db_password %></password>
|
||||
<% end -%>
|
||||
</security>
|
||||
<statement>
|
||||
<track-statements>NOWARN</track-statements>
|
||||
</statement>
|
||||
</datasource>
|
||||
<drivers>
|
||||
<driver name="h2" module="com.h2database.h2">
|
||||
<xa-datasource-class>org.h2.jdbcx.JdbcDataSource</xa-datasource-class>
|
||||
</driver>
|
||||
</drivers>
|
||||
</datasources>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:deployment-scanner:2.0">
|
||||
<deployment-scanner path="deployments" relative-to="jboss.server.base.dir" scan-interval="5000"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:ee:2.0">
|
||||
<spec-descriptor-property-replacement>false</spec-descriptor-property-replacement>
|
||||
<concurrent>
|
||||
<context-services>
|
||||
<context-service name="default" jndi-name="java:jboss/ee/concurrency/context/default" use-transaction-setup-provider="true"/>
|
||||
</context-services>
|
||||
<managed-thread-factories>
|
||||
<managed-thread-factory name="default" jndi-name="java:jboss/ee/concurrency/factory/default" context-service="default"/>
|
||||
</managed-thread-factories>
|
||||
<managed-executor-services>
|
||||
<managed-executor-service name="default" jndi-name="java:jboss/ee/concurrency/executor/default" context-service="default" hung-task-threshold="60000" core-threads="5" max-threads="25" keepalive-time="5000"/>
|
||||
</managed-executor-services>
|
||||
<managed-scheduled-executor-services>
|
||||
<managed-scheduled-executor-service name="default" jndi-name="java:jboss/ee/concurrency/scheduler/default" context-service="default" hung-task-threshold="60000" core-threads="2" keepalive-time="3000"/>
|
||||
</managed-scheduled-executor-services>
|
||||
</concurrent>
|
||||
<default-bindings context-service="java:jboss/ee/concurrency/context/default" datasource="java:jboss/datasources/ExampleDS" jms-connection-factory="java:jboss/DefaultJMSConnectionFactory" managed-executor-service="java:jboss/ee/concurrency/executor/default" managed-scheduled-executor-service="java:jboss/ee/concurrency/scheduler/default" managed-thread-factory="java:jboss/ee/concurrency/factory/default"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:ejb3:2.0">
|
||||
<session-bean>
|
||||
<stateful default-access-timeout="5000" cache-ref="simple" passivation-disabled-cache-ref="simple"/>
|
||||
<singleton default-access-timeout="5000"/>
|
||||
</session-bean>
|
||||
<pools>
|
||||
<bean-instance-pools>
|
||||
<strict-max-pool name="slsb-strict-max-pool" max-pool-size="20" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/>
|
||||
<strict-max-pool name="mdb-strict-max-pool" max-pool-size="20" instance-acquisition-timeout="5" instance-acquisition-timeout-unit="MINUTES"/>
|
||||
</bean-instance-pools>
|
||||
</pools>
|
||||
<caches>
|
||||
<cache name="simple"/>
|
||||
<cache name="distributable" passivation-store-ref="infinispan" aliases="passivating clustered"/>
|
||||
</caches>
|
||||
<passivation-stores>
|
||||
<passivation-store name="infinispan" cache-container="ejb" max-size="10000"/>
|
||||
</passivation-stores>
|
||||
<async thread-pool-name="default"/>
|
||||
<timer-service thread-pool-name="default" default-data-store="default-file-store">
|
||||
<data-stores>
|
||||
<file-data-store name="default-file-store" path="timer-service-data" relative-to="jboss.server.data.dir"/>
|
||||
</data-stores>
|
||||
</timer-service>
|
||||
<remote connector-ref="http-remoting-connector" thread-pool-name="default"/>
|
||||
<thread-pools>
|
||||
<thread-pool name="default">
|
||||
<max-threads count="10"/>
|
||||
<keepalive-time time="100" unit="milliseconds"/>
|
||||
</thread-pool>
|
||||
</thread-pools>
|
||||
<default-security-domain value="other"/>
|
||||
<default-missing-method-permissions-deny-access value="true"/>
|
||||
<mdb>
|
||||
<resource-adapter-ref resource-adapter-name="hornetq-ra"/>
|
||||
<bean-instance-pool-ref pool-name="mdb-strict-max-pool"/>
|
||||
</mdb>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:io:1.1">
|
||||
<worker name="default"/>
|
||||
<buffer-pool name="default"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:infinispan:2.0">
|
||||
<cache-container name="zanata" default-cache="default"
|
||||
jndi-name="java:jboss/infinispan/container/zanata"
|
||||
start="EAGER"
|
||||
module="org.jboss.as.clustering.web.infinispan">
|
||||
<local-cache name="default">
|
||||
<transaction mode="NON_XA"/>
|
||||
<eviction strategy="LRU" max-entries="10000"/>
|
||||
<expiration max-idle="100000"/>
|
||||
</local-cache>
|
||||
</cache-container>
|
||||
<cache-container name="web" default-cache="passivation" module="org.wildfly.clustering.web.infinispan">
|
||||
<local-cache name="passivation" batching="true">
|
||||
<file-store passivation="true" purge="false"/>
|
||||
</local-cache>
|
||||
<local-cache name="persistent" batching="true">
|
||||
<file-store passivation="false" purge="false"/>
|
||||
</local-cache>
|
||||
</cache-container>
|
||||
<cache-container name="ejb" default-cache="passivation" module="org.wildfly.clustering.ejb.infinispan" aliases="sfsb">
|
||||
<local-cache name="passivation" batching="true">
|
||||
<file-store passivation="true" purge="false"/>
|
||||
</local-cache>
|
||||
<local-cache name="persistent" batching="true">
|
||||
<file-store passivation="false" purge="false"/>
|
||||
</local-cache>
|
||||
</cache-container>
|
||||
<cache-container name="hibernate" default-cache="local-query" module="org.hibernate">
|
||||
<local-cache name="entity">
|
||||
<transaction mode="NON_XA"/>
|
||||
<eviction strategy="LRU" max-entries="10000"/>
|
||||
<expiration max-idle="100000"/>
|
||||
</local-cache>
|
||||
<local-cache name="local-query">
|
||||
<transaction mode="NONE"/>
|
||||
<eviction strategy="LRU" max-entries="10000"/>
|
||||
<expiration max-idle="100000"/>
|
||||
</local-cache>
|
||||
<local-cache name="timestamps">
|
||||
<transaction mode="NONE"/>
|
||||
<eviction strategy="NONE"/>
|
||||
</local-cache>
|
||||
</cache-container>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:jaxrs:1.0"/>
|
||||
<subsystem xmlns="urn:jboss:domain:jca:2.0">
|
||||
<archive-validation enabled="true" fail-on-error="true" fail-on-warn="false"/>
|
||||
<bean-validation enabled="true"/>
|
||||
<default-workmanager>
|
||||
<short-running-threads>
|
||||
<core-threads count="50"/>
|
||||
<queue-length count="50"/>
|
||||
<max-threads count="50"/>
|
||||
<keepalive-time time="10" unit="seconds"/>
|
||||
</short-running-threads>
|
||||
<long-running-threads>
|
||||
<core-threads count="50"/>
|
||||
<queue-length count="50"/>
|
||||
<max-threads count="50"/>
|
||||
<keepalive-time time="10" unit="seconds"/>
|
||||
</long-running-threads>
|
||||
</default-workmanager>
|
||||
<cached-connection-manager debug="true"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:jdr:1.0"/>
|
||||
<subsystem xmlns="urn:jboss:domain:jmx:1.3">
|
||||
<expose-resolved-model/>
|
||||
<expose-expression-model/>
|
||||
<remoting-connector/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:jpa:1.1">
|
||||
<jpa default-datasource="" default-extended-persistence-inheritance="DEEP"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:jsf:1.0" default-jsf-impl-slot="mojarra-2.1.28"/>
|
||||
<subsystem xmlns="urn:jboss:domain:mail:2.0">
|
||||
<mail-session name="default" jndi-name="java:jboss/mail/Default">
|
||||
<smtp-server outbound-socket-binding-ref="mail-smtp"/>
|
||||
</mail-session>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:messaging:2.0">
|
||||
<hornetq-server>
|
||||
<persistence-enabled>true</persistence-enabled>
|
||||
<security-enabled>false</security-enabled>
|
||||
<journal-type>NIO</journal-type>
|
||||
<journal-file-size>102400</journal-file-size>
|
||||
<journal-min-files>2</journal-min-files>
|
||||
<connectors>
|
||||
<http-connector name="http-connector" socket-binding="http">
|
||||
<param key="http-upgrade-endpoint" value="http-acceptor"/>
|
||||
</http-connector>
|
||||
<http-connector name="http-connector-throughput" socket-binding="http">
|
||||
<param key="http-upgrade-endpoint" value="http-acceptor-throughput"/>
|
||||
<param key="batch-delay" value="50"/>
|
||||
</http-connector>
|
||||
<in-vm-connector name="in-vm" server-id="0"/>
|
||||
</connectors>
|
||||
<acceptors>
|
||||
<http-acceptor name="http-acceptor" http-listener="default"/>
|
||||
<http-acceptor name="http-acceptor-throughput" http-listener="default">
|
||||
<param key="batch-delay" value="50"/>
|
||||
<param key="direct-deliver" value="false"/>
|
||||
</http-acceptor>
|
||||
<in-vm-acceptor name="in-vm" server-id="0"/>
|
||||
</acceptors>
|
||||
<security-settings>
|
||||
<security-setting match="#">
|
||||
<permission type="send" roles="guest"/>
|
||||
<permission type="consume" roles="guest"/>
|
||||
<permission type="createNonDurableQueue" roles="guest"/>
|
||||
<permission type="deleteNonDurableQueue" roles="guest"/>
|
||||
</security-setting>
|
||||
</security-settings>
|
||||
<address-settings>
|
||||
<!--default for catch all-->
|
||||
<address-setting match="#">
|
||||
<dead-letter-address>jms.queue.DLQ</dead-letter-address>
|
||||
<expiry-address>jms.queue.ExpiryQueue</expiry-address>
|
||||
<redelivery-delay>5000</redelivery-delay>
|
||||
<max-delivery-attempts>2</max-delivery-attempts>
|
||||
<max-size-bytes>10485760</max-size-bytes>
|
||||
<page-size-bytes>2097152</page-size-bytes>
|
||||
<address-full-policy>BLOCK</address-full-policy>
|
||||
<message-counter-history-day-limit>10</message-counter-history-day-limit>
|
||||
</address-setting>
|
||||
</address-settings>
|
||||
<jms-connection-factories>
|
||||
<connection-factory name="InVmConnectionFactory">
|
||||
<connectors>
|
||||
<connector-ref connector-name="in-vm"/>
|
||||
</connectors>
|
||||
<entries>
|
||||
<entry name="java:/ConnectionFactory"/>
|
||||
</entries>
|
||||
</connection-factory>
|
||||
<connection-factory name="RemoteConnectionFactory">
|
||||
<connectors>
|
||||
<connector-ref connector-name="http-connector"/>
|
||||
</connectors>
|
||||
<entries>
|
||||
<entry name="java:jboss/exported/jms/RemoteConnectionFactory"/>
|
||||
</entries>
|
||||
</connection-factory>
|
||||
<pooled-connection-factory name="hornetq-ra">
|
||||
<transaction mode="xa"/>
|
||||
<connectors>
|
||||
<connector-ref connector-name="in-vm"/>
|
||||
</connectors>
|
||||
<entries>
|
||||
<entry name="java:/JmsXA"/>
|
||||
<!-- Global JNDI entry used to provide a default JMS Connection factory to EE application -->
|
||||
<entry name="java:jboss/DefaultJMSConnectionFactory"/>
|
||||
</entries>
|
||||
</pooled-connection-factory>
|
||||
</jms-connection-factories>
|
||||
<jms-destinations>
|
||||
<jms-queue name="MailsQueue">
|
||||
<entry name="jms/queue/MailsQueue"/>
|
||||
<durable>true</durable>
|
||||
</jms-queue>
|
||||
<jms-queue name="ExpiryQueue">
|
||||
<entry name="jms/queue/ExpiryQueue"/>
|
||||
<durable>true</durable>
|
||||
</jms-queue>
|
||||
<jms-queue name="DLQ">
|
||||
<entry name="jms/queue/DLQ"/>
|
||||
<durable>true</durable>
|
||||
</jms-queue>
|
||||
</jms-destinations>
|
||||
</hornetq-server>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:naming:2.0">
|
||||
<bindings>
|
||||
<% if @zanata_openid_provider_url == '' -%>
|
||||
<simple name="java:global/zanata/security/auth-policy-names/internal" value="zanata.internal"/>
|
||||
<% end -%>
|
||||
<simple name="java:global/zanata/security/auth-policy-names/openid" value="zanata.openid"/>
|
||||
<% if @zanata_admin_users != '' -%>
|
||||
<simple name="java:global/zanata/security/admin-users" value="<%= @zanata_admin_users %>"/>
|
||||
<% else -%>
|
||||
<simple name="java:global/zanata/security/admin-users" value="admin"/>
|
||||
<% end -%>
|
||||
<simple name="java:global/zanata/files/document-storage-directory" value="<%= @zanata_storage_dir %>/files"/>
|
||||
<simple name="java:global/zanata/email/default-from-address" value="<%= @zanata_default_from_address %>"/>
|
||||
<% if @zanata_smtp_host != '' -%>
|
||||
<simple name="java:global/zanata/smtp/host" value="<%= @zanata_smtp_host %>" />
|
||||
<% end -%>
|
||||
<% if @zanata_smtp_port != '' -%>
|
||||
<simple name="java:global/zanata/smtp/port" value="<%= @zanata_smtp_port %>" />
|
||||
<% end -%>
|
||||
<% if @zanata_smtp_username != '' -%>
|
||||
<simple name="java:global/zanata/smtp/username" value="<%= @zanata_smtp_username %>" />
|
||||
<% end -%>
|
||||
<% if @zanata_smtp_password != '' -%>
|
||||
<simple name="java:global/zanata/smtp/password" value="<%= @zanata_smtp_password %>" />
|
||||
<% end -%>
|
||||
<% if @zanata_smtp_tls != '' -%>
|
||||
<simple name="java:global/zanata/smtp/tls" value="<%= @zanata_smtp_tls %>" />
|
||||
<% end -%>
|
||||
<% if @zanata_smtp_ssl != '' -%>
|
||||
<simple name="java:global/zanata/smtp/ssl" value="<%= @zanata_smtp_ssl %>" />
|
||||
<% end -%>
|
||||
</bindings>
|
||||
<remote-naming/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:pojo:1.0"/>
|
||||
<subsystem xmlns="urn:jboss:domain:remoting:2.0">
|
||||
<endpoint worker="default"/>
|
||||
<http-connector name="http-remoting-connector" connector-ref="default" security-realm="ApplicationRealm"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:resource-adapters:2.0"/>
|
||||
<subsystem xmlns="urn:jboss:domain:sar:1.0"/>
|
||||
<subsystem xmlns="urn:jboss:domain:security:1.2">
|
||||
<security-domains>
|
||||
<security-domain name="zanata">
|
||||
<authentication>
|
||||
<login-module code="org.zanata.security.ZanataCentralLoginModule" flag="required"/>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="zanata.internal">
|
||||
<authentication>
|
||||
<login-module code="org.jboss.seam.security.jaas.SeamLoginModule" flag="required"/>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="zanata.openid">
|
||||
<authentication>
|
||||
|
||||
<login-module code="org.zanata.security.OpenIdLoginModule" flag="required">
|
||||
<% if @zanata_openid_provider_url != '' -%>
|
||||
<module-option name="providerURL" value="<%= @zanata_openid_provider_url %>" />
|
||||
<% end -%>
|
||||
</login-module>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="zanata.jaas">
|
||||
<authentication>
|
||||
<login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">
|
||||
<module-option name="dsJndiName" value="java:authdb"/>
|
||||
<module-option name="principalsQuery" value="SELECT password FROM users WHERE username = ?"/>
|
||||
<module-option name="rolesQuery" value="select '','' FROM users WHERE username = ?"/>
|
||||
<module-option name="hashAlgorithm" value="md5"/>
|
||||
<module-option name="hashEncoding" value="hex"/>
|
||||
</login-module>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="zanata.kerberos">
|
||||
<authentication>
|
||||
<login-module code="org.jboss.security.negotiation.spnego.SPNEGOLoginModule" flag="sufficient">
|
||||
<module-option name="password-stacking" value="useFirstPass"/>
|
||||
<module-option name="serverSecurityDomain" value="host"/>
|
||||
<module-option name="removeRealmFromPrincipal" value="true"/>
|
||||
<module-option name="usernamePasswordDomain" value="krb5"/>
|
||||
</login-module>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="krb5">
|
||||
<authentication>
|
||||
<login-module code="com.sun.security.auth.module.Krb5LoginModule" flag="sufficient">
|
||||
<module-option name="storePass" value="false"/>
|
||||
<module-option name="clearPass" value="true"/>
|
||||
<module-option name="debug" value="true"/>
|
||||
<module-option name="doNotPrompt" value="false"/>
|
||||
</login-module>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="host">
|
||||
<authentication>
|
||||
<login-module code="com.sun.security.auth.module.Krb5LoginModule" flag="required">
|
||||
<module-option name="storeKey" value="true"/>
|
||||
<module-option name="useKeyTab" value="true"/>
|
||||
<module-option name="principal" value="HTTP/zanata-master-kerberos.lab.eng.bne.redhat.com@REDHAT.COM"/>
|
||||
<module-option name="keyTab" value="/usr/share/jbossas/standalone/configuration/jboss.keytab"/>
|
||||
<module-option name="doNotPrompt" value="true"/>
|
||||
<module-option name="debug" value="true"/>
|
||||
</login-module>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="other" cache-type="default">
|
||||
<authentication>
|
||||
<login-module code="Remoting" flag="optional">
|
||||
<module-option name="password-stacking" value="useFirstPass"/>
|
||||
</login-module>
|
||||
<login-module code="RealmDirect" flag="required">
|
||||
<module-option name="password-stacking" value="useFirstPass"/>
|
||||
</login-module>
|
||||
</authentication>
|
||||
</security-domain>
|
||||
<security-domain name="jboss-web-policy" cache-type="default">
|
||||
<authorization>
|
||||
<policy-module code="Delegating" flag="required"/>
|
||||
</authorization>
|
||||
</security-domain>
|
||||
<security-domain name="jboss-ejb-policy" cache-type="default">
|
||||
<authorization>
|
||||
<policy-module code="Delegating" flag="required"/>
|
||||
</authorization>
|
||||
</security-domain>
|
||||
</security-domains>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:transactions:2.0">
|
||||
<core-environment>
|
||||
<process-id>
|
||||
<uuid/>
|
||||
</process-id>
|
||||
</core-environment>
|
||||
<recovery-environment socket-binding="txn-recovery-environment" status-socket-binding="txn-status-manager"/>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:undertow:1.1">
|
||||
<buffer-cache name="default"/>
|
||||
<server name="default-server">
|
||||
|
||||
<% @zanata_listeners.each do |listener| -%>
|
||||
<% if listener == 'https' -%>
|
||||
<% @listener_realm = ' security-realm="ApplicationRealm"' -%>
|
||||
<% else -%>
|
||||
<% @listener_realm = '' -%>
|
||||
<% end -%>
|
||||
<<%= listener %>-listener name="default.<%= listener %>" socket-binding="<%= listener %>"<%= @listener_realm %>/>
|
||||
<% end -%>
|
||||
<http-listener name="default" socket-binding="http"/>
|
||||
<host name="default-host" alias="localhost">
|
||||
<location name="/" handler="welcome-content"/>
|
||||
<filter-ref name="server-header"/>
|
||||
<filter-ref name="x-powered-by-header"/>
|
||||
</host>
|
||||
</server>
|
||||
<servlet-container name="default">
|
||||
<jsp-config/>
|
||||
</servlet-container>
|
||||
<handlers>
|
||||
<file name="welcome-content" path="${jboss.home.dir}/welcome-content"/>
|
||||
</handlers>
|
||||
<filters>
|
||||
<response-header name="server-header" header-name="Server" header-value="WildFly/8"/>
|
||||
<response-header name="x-powered-by-header" header-name="X-Powered-By" header-value="Undertow/1"/>
|
||||
</filters>
|
||||
</subsystem>
|
||||
<subsystem xmlns="urn:jboss:domain:webservices:1.2">
|
||||
<wsdl-host>${jboss.bind.address:127.0.0.1}</wsdl-host>
|
||||
<endpoint-config name="Standard-Endpoint-Config"/>
|
||||
<endpoint-config name="Recording-Endpoint-Config">
|
||||
<pre-handler-chain name="recording-handlers" protocol-bindings="##SOAP11_HTTP ##SOAP11_HTTP_MTOM ##SOAP12_HTTP ##SOAP12_HTTP_MTOM">
|
||||
<handler name="RecordingHandler" class="org.jboss.ws.common.invocation.RecordingServerHandler"/>
|
||||
</pre-handler-chain>
|
||||
</endpoint-config>
|
||||
<client-config name="Standard-Client-Config"/>
|
||||
</subsystem>
|
||||
</profile>
|
||||
|
||||
<interfaces>
|
||||
<interface name="management">
|
||||
<inet-address value="${jboss.bind.address.management:0.0.0.0}"/>
|
||||
</interface>
|
||||
<interface name="public">
|
||||
<inet-address value="${jboss.bind.address:0.0.0.0}"/>
|
||||
</interface>
|
||||
<interface name="unsecure">
|
||||
<inet-address value="${jboss.bind.address.unsecure:0.0.0.0}"/>
|
||||
</interface>
|
||||
</interfaces>
|
||||
|
||||
<socket-binding-group name="standard-sockets" default-interface="public" port-offset="${jboss.socket.binding.port-offset:0}">
|
||||
<socket-binding name="management-http" interface="management" port="${jboss.management.http.port:9990}"/>
|
||||
<socket-binding name="management-https" interface="management" port="${jboss.management.https.port:9993}"/>
|
||||
<socket-binding name="ajp" port="${jboss.ajp.port:8009}"/>
|
||||
<socket-binding name="http" port="${jboss.http.port:8080}"/>
|
||||
<socket-binding name="https" port="${jboss.https.port:8443}"/>
|
||||
<socket-binding name="txn-recovery-environment" port="4712"/>
|
||||
<socket-binding name="txn-status-manager" port="4713"/>
|
||||
<outbound-socket-binding name="mail-smtp">
|
||||
<remote-destination host="localhost" port="25"/>
|
||||
</outbound-socket-binding>
|
||||
</socket-binding-group>
|
||||
|
||||
</server>
|
Loading…
Reference in New Issue
Block a user