Versions Compared

Old Version 19

changes.mady.by.user Jacques Le Roux

Saved on

compared with

New Version 20

changes.mady.by.user Jacques Le Roux

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

This file is used to enable/disable different logging levels and used to configure Log4J logging level and output settings. For most production use it can stay as-is. Disabling the "info" and "timing" level properties can save some resources on the server, but we recommend leaving all of the others enabled. To do this just change the values of the "print.info" and "print.timing" properties to anything except "true".

To ease development (Out Of The Box, OFBiz is configured in development mode) the compressHTML properties in general.properties if OFF. If you prefer to strip unnecessary whitespace from HTML output you can set it on ON. Note that, it is NOT the same thing as gzipped HTTP 1.1 compression.

Security Settings

${ofbiz install dir}/framework/security/config/security.properties

...

  • ${ofbiz install dir}/framework/webapp/config/fop.xconf (FOP configuration file)
    • the default settings in this file can remain unchanged for production deployments, but you may need to change the "base" element (the default value is "http://localhost:8080") to point to the modified base url (it is used by FOP to resolve relative paths, e.g. to images) .

Ports, Default Values

Widgets setting

${ofbiz install dir}/framework/widget/config/widget.properties

  • To ease development (Out Of The Box, OFBiz is configured in development mode) the compressHTML properties in general.properties if OFF. If you prefer to strip unnecessary whitespace from HTML output you can set it on ON (uncomment the line "#compress.HTML=true"). Note that, it is NOT the same thing as gzipped HTTP 1.1 compression.
  • For the same reason (development mode) the line "widget.verbose=true" is uncommented. If you do not want to see any informations about widget boundaries in the generated HTLM code, you should comment this line.

Ports, Default Values

  • HTTP - HTTP - 8080
    • Configured in: Containers XML File
    • Referenced in: Service Engine XML File, Client Browser (if running direct), URL Properties File
  • HTTPS - 8443
    • Configured in: Containers XML File
    • Referenced in: Client Browser (if running direct)
  • AJP13 - 8009
    • Configured in: Containers XML File
    • Referenced in: Apache mod_jk plugin configuration
  • JRMP (JNDI, RMI, etc) - 1099
    • Configured in: Carol Properties (carol.jrmp.url)
    • Referenced in: Containers XML File, JNDI Properties File, Service Engine XML File
  • IIOP (Shark, etc) - 2000
    • Configured in: Carol Properties (carol.iiop.url)
    • Referenced in: Containers XML File
  • BSH Client - 9989, 9990 (this should generally be disabled or at least protected by a firewall)
    • Configured in: Containers XML File

...

The CSR will be saved in the current directory: ---- BEGIN NEW CERTIFICATE REQUEST --- and --- END NEW CERTIFICATE REQUEST----

3. Submit the CSR to a signing authority (Thawte, Verisign, etc)

...

  • If using Tomcat (Catalina), which is the default, find the "catalina-container" -> "https-connector" -> "keystore" and "password" properties and set them.
  • If using Jetty find the "jetty-container" -> "https-listener" -> "keystore" and "password" properties and set them.
  • For other Servlet containers, see the documentation for that container to find out how to set the HTTPS keystore and password settings.

...