Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering JBoss Enterprise Application Platform 7
  • Table Of Contents Toc
  • Feedback & Rating feedback
Mastering JBoss Enterprise Application Platform 7

Mastering JBoss Enterprise Application Platform 7

By : Marchioni, Luigi Fugaro
3.7 (3)
Buy this Book
close
close
Mastering JBoss Enterprise Application Platform 7

Mastering JBoss Enterprise Application Platform 7

3.7 (3)
By: Marchioni, Luigi Fugaro
Buy this Book

Overview of this book

The JBoss Enterprise Application Platform (EAP) has been one of the most popular tools for Java developers to create modular, cloud-ready, and modern applications. It has achieved a reputation for architectural excellence and technical savvy, making it a solid and efficient environment for delivering your applications. The book will first introduce application server configuration and the management instruments that can be used to control the application server. Next, the focus will shift to enterprise solutions such as clustering, load balancing, and data caching; this will be the core of the book. We will also discuss services provided by the application server, such as database connectivity and logging. We focus on real-world example configurations and how to avoid common mistakes. Finally, we will implement the knowledge gained so far in terms of Docker containers and cloud availability using RedHat's OpenShift.
Table of Contents (15 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Free Chapter
1
1. Installation and Configuration
chevron up
Icon
1. Installation and Configuration
Icon
What's new in EAP 7?
Icon
Installing EAP 7
Icon
Starting the application server
Icon
Stopping the application server
Icon
Basic server administration
Icon
EAP 7 basic configuration
Icon
Application server core building blocks
Icon
Summary
2
2. The CLI Management Tool
Icon
2. The CLI Management Tool
Icon
Connecting to the CLI
Icon
Using the CLI
Icon
Basic operations
Icon
Features of the CLI
Icon
Summary
3
3. Managing EAP in Domain Mode
Icon
3. Managing EAP in Domain Mode
Icon
Domain mode breakdown
Icon
Handy domain properties
Icon
Electing the domain controller
Icon
Creating an advanced domain
Icon
Domain controller failover
Icon
Additional EAP 7 features
Icon
Summary
4
4. Deploying Applications
Icon
4. Deploying Applications
Icon
Overview of deployments
Icon
Deployment in standalone mode
Icon
Deployment in domain mode
Icon
Advanced deployment strategies
Icon
Summary
5
5. Load Balancing
Icon
5. Load Balancing
Icon
The need for balancing
Icon
Load balancing with mod_cluster
Icon
Using other balancing solutions
Icon
Summary
6
6. Clustering EAP 7
Icon
6. Clustering EAP 7
Icon
Clustering overview and misconceptions
Icon
Clustering in standalone mode
Icon
Clustering from a network point of view
Icon
Clustering in domain mode
Icon
Advanced topics
Icon
Summary
7
7. Logging
Icon
7. Logging
Icon
The basics of logging
Icon
Configuring handlers
Icon
Configuring loggers
Icon
Managing your application logging
Icon
Reading logs with management interfaces
Icon
Building a centralized logging system
Icon
Summary
8
8. Configuring Database Connectivity
Icon
8. Configuring Database Connectivity
Icon
Introduction to datasources
Icon
Datasource overview
Icon
Adding a JDBC 4 driver module
Icon
Configuring a JDBC 4-compliant driver
Icon
Defining a new datasource
Icon
Defining an XA-datasource
Icon
Hardening datasource configuration
Icon
Summary
9
9. Configuring EAP 7 for Java EE Applications
Icon
9. Configuring EAP 7 for Java EE Applications
Icon
Configuring the EJB container
Icon
Configuring the web server
Icon
Monitoring your applications
Icon
Summary
10
10. Messaging Administration
Icon
10. Messaging Administration
Icon
Introduction to Artemis MQ
Icon
Configuring broker transport
Icon
Configuring persistence
Icon
Configuring destinations
Icon
Routing messages to other destinations
Icon
Clustering
Icon
Summary
11
11. Securing the Application Server
Icon
11. Securing the Application Server
Icon
Creating security domains
Icon
Securing the management interfaces with LDAP
Icon
Configuring RBAC
Icon
Securing the management interfaces
Icon
Summary
12
12. New Security Features of EAP 7
Icon
12. New Security Features of EAP 7
Icon
EAP 7 new security model
Icon
Introducing elytron
Icon
Introducing Red Hat SSO
Icon
Summary
13
13. Using EAP 7 with Docker
Icon
13. Using EAP 7 with Docker
Icon
Getting to grips with Docker
Icon
Creating your Docker images
Icon
Managing the server storage
Icon
Managing multiple containers
Icon
Summary
14
14. Running EAP 7 on the Cloud Using OpenShift
Icon
14. Running EAP 7 on the Cloud Using OpenShift
Icon
Introducing OpenShift
Icon
OpenShift Online
Icon
Developing and deploying your first OpenShift application in the cloud
Icon
Summary

Basic server administration

Once the installation has been completed, it's about time to complete some basic administration tasks. The most obvious one involves creating one or more users for managing your platform. Out of the box, a script called add-user.sh is provided along with your installation. The purpose of this script is to manage two different types of user:

  • Management users: users in charge of administrating your application server
  • Application users: users in charge of accessing your applications

Note

Important notice!

The add-user script uses a very simple file-based mechanism to store the users' information. This can be acceptable for basic security requirements. Real-world scenarios, however, would need to use more appropriate security polices as detailed in Chapter 11, Securing the Application Server, of this book.

You can execute the add-user script both in an interactive way and in an automatic way.

In order to execute the add-user script in an interactive way, just execute it as follows and provide the requested information:

$ ./add.user.sh
What type of user do you wish to add? 
 a) Management User (mgmt-users.properties) 
 b) Application User (application-users.properties)
(a): a
Enter the details of the new user to add.
Using realm 'ManagementRealm' as discovered from the existing 
    property files.
Username : administrator1
. . . . .
Password : 
Re-enter Password : 
What groups do you want this user to belong to? (Please enter a
    comma separated list, or leave blank for none)[  ]: 
About to add user 'administrator1' for realm 'ManagementRealm'
Is this correct yes/no? yes
To represent the user add the following to the server-
    identities definition <secret value="UGFzc3dvcmQxIQ==" />

We have removed some negligible information from the output so that you can focus on the required arguments of the script. The previous information can be filled in also in a non- interactive way by providing the username with the -u parameter, the password with the -p, and the group (if needed) with -g. You can discriminate between management users and application users with the -m and -a parameters.

Here is how to create a management user:

$ ./add-user.sh -m -u administrator1 -p Securepassword1!

Note

Once you have created the management user, you can verify that the login correctly lets you through the management console, which is available at http://localhost:9990.

On the other hand, here is the shell script to create an application user belonging to the guest group:

$ ./add-user.sh -a -u demouser -p Securepassword1! -g guest

Note

Beware that creating users in a non-interactive way exposes your user/password information across the shell history system process table if you are a Linux user.

Once you have created your users the following files (contained in the configuration folder of your server base directory) will be updated:

-rw-rw-r--. 1 francesco francesco   711 Oct 26 06:13 
    application-roles.properties
-rw-------. 1 francesco francesco   935 Oct 26 06:13 
    application-users.properties
-rw-rw-r--. 1 francesco francesco   646 Nov 24 16:11 mgmt-
    groups.properties
-rw-------. 1 francesco francesco  1111 Nov 24 16:11 mgmt-
    users.properties

The application-roles.properties holds the list of roles granted to application users. The file application-users.properties contains the list of application users and their hashed passwords. Conversely, mgmt-groups.properties contains the list of roles granted to management users and  mgmt-users.properties holds the management users and their hash passwords. As a final note, the password contained in *-users.properties files is in hash using this format:

username=HEX( MD5( username ':' realm ':' password))

Note

How to recover the password

Being an MD5 based hash means that the password is not reversible. On the other hand, consider that most hashes are also non-unique; rather, they're unique enough, so a collision is highly improbable, but still possible.

End of Section 6
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY