Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Users/aedler/installation patch #183

Merged
merged 19 commits into from May 18, 2021
Merged

Users/aedler/installation patch #183

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
19 commits
Select commit Hold shift + click to select a range
8d19fe4
Update installation.md
aedler-ft Apr 20, 2021
cefa107
Update installation.md
aedler-ft Apr 20, 2021
29c61ba
images update
aedler-ft Apr 21, 2021
70d2d18
Update installation.md
aedler-ft Apr 21, 2021
a529b26
Update installation.md
aedler-ft Apr 26, 2021
cd7e600
Update installation.md
aedler-ft Apr 27, 2021
ea09d82
update from master
aedler-ft Apr 27, 2021
93e003d
Update installation.md
aedler-ft Apr 27, 2021
a7added
Update installation.md
aedler-ft Apr 27, 2021
94290fd
Update installation.md
aedler-ft Apr 29, 2021
a7261a8
update from master
aedler-ft Apr 29, 2021
ad821eb
Update installation.md
aedler-ft Apr 29, 2021
66f51ab
updated call parameters based on the feedback in the review
aedler-ft May 3, 2021
3b0d524
Merge branch 'master' into users/aedler/installation-patch
aedler-ft May 18, 2021
81063a5
Update doc/general/installation/installation.md
aedler-ft May 18, 2021
5ec71f9
Update doc/general/installation/installation.md
aedler-ft May 18, 2021
aa7606e
Update doc/general/installation/installation.md
aedler-ft May 18, 2021
e1110a8
Update installation.md
aedler-ft May 18, 2021
10a5ced
added possible -proxy values
aedler-ft May 18, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
Binary file added doc/general/installation/images/launcher-android.png
View file
Open in desktop
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added doc/general/installation/images/launcher-mono.png
View file
Open in desktop
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added doc/general/installation/images/launcher-net.png
View file
Open in desktop
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added doc/general/installation/images/launcher-offline.png
View file
Open in desktop
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
154 changes: 118 additions & 36 deletions doc/general/installation/installation.md
View file
Open in desktop
Expand Up @@ -3,56 +3,138 @@ slug: /poscreators/middleware-doc/general/installation
title: Installation
---

## Installation
# Installation

### fiskaltrust.Middleware
For operating the fiskaltrust.Middleware on-premise or off-premise, the components of the fiskaltrust.Middleware need to be configured, downloaded, and installed/started:

#### Windows, Linux, Mac
## Configuration of Middleware components

The mentioned platforms use the launcher `fiskaltrust.exe` to execute the fiskaltrust.SecurityMechanism. For Linux and Mac, the launcher can be executed via Mono, version 3.2.8 or higher. For Windows the launcher can be executed via the .NET framework, version 4.0 or higher, or via Mono, version 3.2.8 or higher.
The components of the fiskaltrust.Middleware need to be configured in the fiskaltrust.Portal for the environment where the Middleware should be operated. The availability of components and its configuration options are dependent on the local market regulation.

The following call parameters are available with the launcher `fiskaltrust.exe`:
For example, it must be configured at which endpoints the Middleware is listening on, in which database the processed data is to be stored, which Signature Creation Unit (SCU) is to be used for the signatures and how it can be reached by the Middleware.

The components of the Middleware which should be operated as an on-premise Middleware-instance are collected in a so-called "Cashbox"configuration container.

More information on the configuration options of the components can be found in the according market-appendices:

- Austria
- [Germany](https://docs.fiskaltrust.cloud/docs/posdealers/rollout-doc/middleware#the-cashbox-as-a-configuration-container)
- France

At the end of this configuration process, a so-called "Launcher" including the Cashbox-configuration needs to be downloaded.

## Download of the Launcher

After configuring the cashbox in the portal, following so-called "Launchers" are available for download:

| Icon | Launcher | Description | AT | DE | FR |
| ------------------------------------------------ | --------------------------------------- | ------------------------------------------------------------ | --------- | ---------- | --------- |
| ![launcher-net](images/launcher-net.png) | .NET Launcher<br />(*default launcher*) | **For starting the Middleware on Windows with Internet connection.**<br />The launcher loads the configuration file and its needed packages during the start from the fiskaltrust packages-server. | supported | supported | supported |
| ![launcher-offline](images/launcher-offline.png) | .NET Offline Launcher | **For starting the Middleware on Windows without Internet connection.** <br />A static configuration and its needed packages for operation is included. The regular package update mechanisms are not supported with the offline launcher. | supported | supported | supported |
| ![launcher-mono](images/launcher-mono.png) | Mono Launcher | **For starting the Middleware on Linux/macOS with Internet connection.**<br />The launcher loads the configuration file and its needed packages during the start from the fiskaltrust packages-server. | supported | supported | supported |
| ![launcher-android](images/launcher-android.png) | Android Launcher | **For starting the Middleware on Android with Internet connection.**<br />The needed packages for operation are already included. The launcher loads the configuration file during the start from the fiskaltrust packages-server.<br />The configuration options are limited to keep the package sizes small. | | supported* | |

*availability dependent on the cashbox configuration. For more details, see the [platform documentation for Android](https://docs.fiskaltrust.cloud/docs/product-description/germany/products-and-services/caas/features/platforms/android).

| **Parameter** | **Description** |
| ------------------------------ | ------------------------------------------------------------ |
| `-cashboxid` | Sets the CashBoxId into the static configuration (`fiskaltrust.exe.config`). The value is a GUID in format `00000000-0000-0000-0000-000000000000`. |
| `-accesstoken` | Sets the AccessToken in the static configuration (`fiskaltrust.exe.config`) for online communication |
| `-useoffline` | Sets the offline mode in the static configuration (`fiskaltrust.exe.config`). The value is a boolean: true \| false |
| `-test` | Executing as command line program. Basic information is provided in the console. Should be indicated as last parameter, if it is set in connection with others. |
| `-i` | Install Windows service |
| `-u` | Uninstall Windows service |
| `-servicename=[myservicename]` | Sets the service name in connection with -i and -u |
| `-displayname=[mydisplayname]` | Sets the service display name within the system control in connection with -i |
| `-description=[mydescription]` | Sets the service description within the system control in connection with -i |
| `-servicefolder` | Sets folder containing the service files in the static configuration (`fiskaltrust.exe.config`) |
| `-sslvalidation` | Sets the certificate validation when connecting through SSL in the static configuration (`fiskaltrust.exe.config`). The value is a boolean: true \| false |
| `-sandbox` | Sets the environment to be used in the static configuration (`fiskaltrust.exe.config`). The value is a boolean: true (sandbox) \| false (production) |
| `-packagesurl` | Sets the url of the package server used to download the packages in the static configuration (`fiskaltrust.exe.config`) |
| `-verbosity` | Sets the level of debug-information in the logfile. The value is a string: `Debug`. Use in the static configuration (`fiskaltrust.exe.config`) the key `loglevel` with the value `Debug`. Possible values/debug levels are: `Trace` \| `Debug` \| `Information` \| `Warning` \| `Error` \| `Critical` |
| `-logfile` | Sets the file used to log the output messages in the static configuration (`fiskaltrust.exe.config`) |
| `-connectiontimeout` | Sets the timeout (in seconds) for the HTTP/HTTPS call to download the configuration in the static configuration (`fiskaltrust.exe.config`) |
| `-connectionretry` | Sets the number of trials to download the configuration in the static configuration (`fiskaltrust.exe.config`) |
| `-proxy` | Sets the proxy server to be used to connect to internet in the static configuration (`fiskaltrust.exe.config`) |
The received zip-compressed folders need to be unzipped and can be moved or renamed if necessary.

The folder with the downloaded and unzipped launcher contains

- the launcher `fiskaltrust.exe`,
- three pre-configured `.cmd` command files,
- a file for the static configuration of the service named `fiskaltrust.exe.config`, and
- the fiskaltrust.Middleware service represented by the `.dll` files.

## Windows, Linux & MacOS

### Launcher configuration

In the fiskaltrust.Portal, the components of the fiskaltrust.Middleware have been configured via Cashbox configuration for the environment where the Middleware should be operated, e.g. which database should be used to store the receipt data.

The downloaded Launcher can now be optionally adapted for the local machine; e.g. setting the target folder for the data storage of the service, or setting the service name. This can be done by either using call parameters when executing the `fiskaltrust.exe`, or by directly modifying the `fiskaltrust.exe.config` by adding the appropriate key-value pairs in the section `appSettings`.

The following call parameters are available with the launcher `fiskaltrust.exe`:

| **Parameter** | **Description** | Overwrites the values in the static configuration `fiskaltrust.exe.config` |
| ------------------------------ | ------------------------------------------------------------ | ------------------------------------------------------------ |
| `-cashboxid` | Sets the CashBoxId. The value is a GUID in format `00000000-0000-0000-0000-000000000000`. | yes |
| `-accesstoken` | Sets the AccessToken for online communication | yes |
| `-useoffline` | Sets the offline mode. The value is a boolean: true \| false | yes |
| `-test` | Executing as command line program. Basic information is provided in the console. Should be indicated as last parameter, if it is set in connection with others. | no |
| `-i` | Install Windows service | no |
| `-u` | Uninstall Windows service | no |
| `-servicename=[myservicename]` | Sets the service name in connection with -i and -u | no |
| `-displayname=[mydisplayname]` | Sets the service display name within the system control in connection with -i | no |
| `-description=[mydescription]` | Sets the service description within the system control in connection with -i | no |
| `-servicefolder` | Sets folder containing the service files. | yes |
| `-sslvalidation` | Sets the certificate validation when connecting through SSL. The value is a boolean: true \| false | yes |
| `-sandbox` | Sets the environment to be used. The value is a boolean: true (sandbox) \| false (production) | yes |
| `-packagesurl` | Sets the url of the package server used to download the packages. | yes |
| `-logfile` | Sets the file used to log the output messages. | yes |
| `-connectiontimeout` | Sets the timeout (in seconds) for the HTTP/HTTPS call to download the configuration. | yes |
| `-connectionretry` | Sets the number of trials to download the configuration. | yes |
| `-proxy` | Sets the proxy server to be used to connect to the internet. The value can be used as follows: `“address=xxx.xxx.xxx.xxx;user=test;password=pwd123` | yes |
| `-verbosity` | Sets the level of debug-information in the logfile. The value is a string. Possible values are: `Trace` \|`Debug` \|`Information` \|`Warning` \|`Error` \|`Critical`<br />**Supported in the German market only!** | yes. <br />Use in the static configuration the key `loglevel` |
<span id="_Toc527986661" class="anchor"></span>*Table 8. fiskaltrust.exe launch parameters*

#### Test Environment
### Starting the Launcher

Following options are available for executing the `fiskaltrust.exe`:

| Option | Description | Windows | Linux |
| ----------------------------------- | ------------------------------------------------------------ | ------------------------------------------------------------ | ------------------------------------------------------------ |
| `fiskaltrust.exe` | Executing the launcher `fiskaltrust.exe` as a command line program using call parameters. | Run the command line `cmd.exe` as administrator.<br /><br />Example: `fiskaltrust.exe - test` | Example: ```sudo mono fiskaltrust.exe -test```. |
| `[pre-configured command file].cmd` | Command files can be used for executing the `fiskaltrust.exe` with pre-defined setups, e.g. for developing and debugging. Three pre-configured setups are already included with the downloaded launcher (see below). | | |
| `install-service.cmd` | Pre-configured command file which executes `fiskaltrust.exe` using the parameter `-i` for installing the fiskaltrust.Middleware as a service under Windows, recommended for permanent on-premise operation. | Run the command file `install-service.cmd` as administrator. <br />For details, see [Windows Service Installation](#windows-service-installation) | For installing the fiskaltrust.Middleware as a Daemon, see [Mono service installation](#mono-service-installation). |
| `uninstall-service.cmd` | Pre-configured command file which executes `fiskaltrust.exe` using the parameter `-u` for un-installing the fiskaltrust.Middleware as a service under Windows. | Run the command file `uninstall-service.cmd` as administrator. | |
| `test.cmd` | Pre-configured command file which executes `fiskaltrust.exe` using the parameter `-test` for starting the fiskaltrust.Middleware as a command line program under Windows, recommended for test and development purpose. | Run the command file `test.cmd` as administrator.<br />For details, see [Test Environment](#test-environment) | |

### Applying the Cashbox-configuration

During the start of the Online-Launcher (.NET Launcher or Mono-Launcher), the configuration is checked and the configuration-file (usually Configuration-`00000000-0000-0000-0000-000000000000`.json) including the needed packages are downloaded to the fiskaltrust service-folder (usually `C:\ProgramData\fiskaltrust\service`) if necessary.

**When a new configuration shall be applied, the fiskaltrust service needs to be restarted so that the Launcher checks if a new configuration exists.**

For checking the configuration and downloading the needed packages the Launcher must be able to contact the fiskaltrust packages-server:
aedler-ft marked this conversation as resolved.
Show resolved Hide resolved

**Outbound traffic**

| Type | Protocol | Port | Source |
| ----- | -------- | ---- | ---------------------------------- |
| https | TCP | 443 | packages-sandbox.fiskaltrust.cloud |
| https | TCP | 443 | packages.fiskaltrust.cloud |

### Service folder

The data for the service, including

- the configuration,
- service packages,
- the local data storage for receipt data if a SQLite database is used, and
- data exports like DSFinV-K, TSE-TAR files,

is saved under Windows in `C:\ProgramData\fiskaltrust\service`.

In Linux, the data is saved under `/usr/share/fiskaltrust/service`.

The deletion of this folder results in a loss of data, and a loss in functionality of the fiskaltrust.SecurityMechanism. In case of an active online connection, the fiskaltrust.SecurityMechanism can restore its functionality without this folder, however the data which was lost cannot be restored.

### Test Environment

For development, integration and testing purpose we recommend to run the Middleware in the command line.

In Windows, it is necessary to run the `cmd.exe` as administrator. The launcher `fiskaltrust.exe` can be then executed as a command line program through the call parameter `–test`.

In Linux, the following command should be used:

```sudo mono fiskaltrust.exe -test```.
`sudo mono fiskaltrust.exe -test`.

A static configuration can be enforced via the configuration.json file in the `fiskaltrust.exe` folder in connection with `-useoffline=true`.

In Windows, all data is saved per default in `C:\ProgramData\fiskaltrust\service`. In Linux, the data is saved under `/usr/share/fiskaltrust/service`. The deletion of this folder results in a loss of data, and a loss in functionality of the fiskaltrust.SecurityMechanism. In case of an active online connection, the fiskaltrust.SecurityMechanism can restore its functionality without this folder, however the data which was lost cannot be restored.

![](./images/01-console-testmode.png)

<span id="_Toc527986811" class="anchor"></span>*Illustration 10. Screen Shot console in test mode*

#### Windows Service
### Windows Service Installation

The Windows service can be installed and uninstalled via the call parameters -i and –u.

Expand All @@ -62,7 +144,7 @@ The Windows service can be installed and uninstalled via the call parameters -i

Once successfully completed, the service will appear in the list of running services.

#### Mono Service
### Mono Service Installation

For Linux, the fiskaltrust.SecurityMechanism can be installed as Daemon.

Expand Down Expand Up @@ -142,10 +224,10 @@ Finally, the daemon can be installed with the following command:

Once completed, the service should appear in the running daemon list.

#### iOS-Devices, Android-Devices, Windows Universal App (XBox, Windows Phone, …)
## Android

A background app for each respective platform is in planning.
The fiskaltrust.Middleware for Android is currently available for the German market only. For details about the platform specific installation, please refer to the [platform documentation for Android](https://docs.fiskaltrust.cloud/docs/product-description/germany/products-and-services/caas/features/platforms/android).

The scope of operation will be limited to one queue and the update ability will be realised via the platform store. The support nutshell will not be available.
## Migration of the Middleware instance to a different hardware

The main features of the data and function structure however, will be the same, and the communication will be adapted to the platform specific standard.
We do not recommend to migrate an active instance of the fiskaltrust.Middleware to another hardware. If possible, please set the queue [out of operation](https://docs.fiskaltrust.cloud/docs/poscreators/middleware-doc/germany/reference-tables/ftreceiptcase) and configure and install a new Middleware instance on the new machine.