Building secure applications  Creating secure applications

Chapter 4: Advanced Application Creation

Setting up Unwired Accelerator to create secure applications

This section describes the steps required to set up Secure Sockets Layer (SSL) and to turn on portal security parameters that enable the creation of secure applications.

StepsSetting up SSL for secure application creation

Perform this procedure only if you are using EAServer as your application server– it is not necessary if you are using Tomcat.

  1. Copy jnet.jar, jcert.jar, and jsse.jar from %SYBASE%\EAServer\Webservices\java to %SYBASE%\EAServer\java\lib.

  2. Modify %JAGUAR%\bin\serverstart.bat as follows:

    1. Add these lines at the beginning of Set EAS_CLASSPATH_P1.

      set
EAS_CLASSPATH_P1=%EAS_CLASSPATH_P1%;%JAGUAR%\java\lib\jsse.jar 

      set
EAS_CLASSPATH_P1=%EAS_CLASSPATH_P1%;%JAGUAR%\java\lib\jnet.jar 

      set
EAS_CLASSPATH_P1=%EAS_CLASSPATH_P1%;%JAGUAR%\java\lib\jcert.jar

    2. Add these lines at the beginning of Set EAS_BOOTCLASSPATH_P1:

      set EAS_BOOTCLASSPATH_P1=%EAS_BOOTCLASSPATH_P1%;
   %JAGUAR%\java\lib\jsse.jar

      set EAS_BOOTCLASSPATH_P1=%EAS_BOOTCLASSPATH_P1%;
   %JAGUAR%\java\lib\jnet.jar

      set EAS_BOOTCLASSPATH_P1=%EAS_BOOTCLASSPATH_P1%;
   %JAGUAR%\java\lib\jcert.jar

  3. In a text editor, open java.security, which is located in %SYBASE%\Shared\jdk1.3.1_06\jre\lib\security, and add this line:

    security.provider.2=com.sun.net.ssl.internal.ssl.Provider

StepsEnabling portal security

The final step in setting up the portal to create secure applications is to enable the portal’s security parameters in the global.properties.xml master configuration file.

  1. In a text editor, open global.properties.xml, which is located in the %UnwiredAccelerator70%\tomcat\onepage\config subdirectory of your installation if you are using Tomcat. If you are using EAServer this file is located in %JAGUAR%\EAServer\Repository\WebApplication\onepage\config.

  2. In the Global Properties group, locate the “secure” property and set the value to “on”:

    <Property name="secure" value="on" description="(on/off). on if HTTPS is enabled for the web-container. HTTPS will be used for login and registration" menugroup="-1" />

  3. Optionally, you can also set the “turnOffSecurePassword” property to “true” so you are not always prompted for another password. 

    <Property name="turnOffSecurePassword" value="@SECURE_PASSSWD_OFF@" description="Turn on/off the usage of the secure password prompting by PI when using http portlets created from Studio. Default is on" menugroup="-1" />

  4. Save your changes in global.properties.xml and exit the text editor.




Copyright © 2005. Sybase Inc. All rights reserved. Creating secure applications

View this book as PDF