Deploy OWF 7 in WebLogic 11g
-
Go to the Oracle WebLogic download page and download the appropriate WebLogic version for your operating system and licensing requirements.
-
Install WebLogic on your machine. You can find detailed installation instructions at the Oracle Fusion Middleware Documentation Library (version 11.1.1). See the WebLogic Server product area therein.
-
Configure a domain by running the Configuration Wizard from the Start Menu -> All Programs -> Oracle WebLogic -> WebLogic Server 10gR3 -> Tools folder. Alternatively the wizard may be run from [webLogicHome]
/wlserver_10.3/common/bin/config.sh
orconfig.cmd
depending on your operating system. The location you specify for your domain will be referred to as [domainHome] for the remainder of this document. (The default domain location is [webLogicHome]/user_projects/domains/
[name].) -
Start up WebLogic per the instructions in the documentation. Make sure it's running by accessing the administration console at http://localhost:7001/console, assuming you selected the default installation settings.
The default OWF configuration requires SSL to be enabled on the application server. Said configuration will use port 8080 for HTTP and 8443 for HTTPS (in contrast to 7001 and 7002 which are the corresponding defaults for WebLogic).
-
Login to the administration console with the user and password you specified during domain creation.
The default is user weblogic with password weblogic.
-
Click on the Servers link from the Environment section. Select the appropriate server that will be used for the deployment from the list.
-
In the General tab check the SSL Listen Port Enabled checkbox.
-
Set the SSL Listen Port to 8443 (or a port of your choice).
-
Set the Listen Port to 8080 (or a port of your choice).
-
Click the Save button. (If you changed the standard listen port from say 7001 to 8080 with the changes you just made the console will bump you out and the URL will redirect back to the login page on the new listen port. Otherwise you will get the page back with confirmation messages of a successful change if all went well. If you got presented with the console login page due to port change please login again.)
-
Copy the [owfBundle]
/apache-tomcat-7.0.21/certs/keystore.jks
file to your [domainHome] directory. Said file contains the OWF development certificates and will serve as both a keystore and truststore for a demo configuration. -
Click the Keystores tab and select the Custom Identity and Custom Trust option from the dropdown. Then click Save.
-
Enter the path and/or filename, type, and password for both the Identity and the Trust. The path must either be absolute or relative to where the server was booted. Click Save.
-
Click the SSL tab. Enter the appropriate Private Key Alias and corresponding passphrase. The development server certificate has an alias of localhost and password of changeit.
-
Expand the Advanced section in the SSL tab. Select Client Certs Requested But Not Enforced from the Two Way Client Cert Behavior dropdown if you plan to use the default OWF security plug-in (X509 cert with CAS fall back). Select None in the Hostname Verification dropdown if you are using the development certs.
-
Set the keystore/trsustore path and passphrase for the JVM. For example, you can define the
SSL_VMARGS
variable in the [domainHome]/startWebLogic.cmd
file as follows:set SSL_VMARGS=-Djavax.net.ssl.keyStore="keystore.jks" -Djavax.net.ssl.trustStore="keystore.jks" -Djavax.net.ssl.keyStorePassword="changeit" -Djavax.net.ssl.trustStorePassword="changeit"
- The sample above assumes the
keystore.jks
file is located in what will be the current working directory when the server is running. - In order for SSL communication between OWF and CAS to succeed the truststore for the JVM that hosts CAS must include the certificate authority that signed the OWF server certificate.
- The sample above assumes the
-
Create a new [domainHome]
/autodeploy/owf.war
directory and unwar (unzip) the contents of the [owfBundle]/apache-tomcat-7.0.21/webapps/owf.war
file into it. -
Create a new [domainHome]
/autodeploy/owf.war/WEB-INF/weblogic.xml
file with the following content:<weblogic-web-app> <context-root>/owf</context-root> <container-descriptor> <prefer-web-inf-classes>true</prefer-web-inf-classes> </container-descriptor> </weblogic-web-app>
-
Additional OWF resources and configuration files must be added to the
CLASSPATH
. Copy the following files and directories from the [owfBundle]/apache-tomcat-7.0.21/lib
directory to the [domainHome] directory:owf-override-log4j.xml OwfConfig.groovy OWFsecurityContext.xml OzoneConfig.properties users.properties js-plugins/ ozone-security-beans/
Alternatively you may use the AppFileOverride feature of WebLogic deployment plans in order to host the above files and directories.
-
(Optional) Copy the [owfBundle]
/apache-tomcat-7.0.21/prodDb.script
file to the [domainHome] directory. This step is only necessary when using the development HyperSQL database.The HyperSQL database system is not recommended for production use.
-
Create a new [domainHome]
/autodeploy/cas.war
directory and unwar (unzip) the contents of the [owfBundle]/apache-tomcat-7.0.21/webapps/cas.war
file into it. -
Create a new [domainHome]
/autodeploy/cas.war/WEB-INF/weblogic.xml
file with the following content:<weblogic-web-app> <context-root>/cas</context-root> </weblogic-web-app>
-
Open a command prompt. Navigate to the [domainHome] directory. Then execute the
startWebLogic.cmd
orstartWebLogic.sh
script. -
Navigate to https://localhost:8443/owf in your web browser. Authenticate using client certificates or CAS.
Please enter issues with the product or documentation at OWF Framework Issues.