32.4 Post-Installation Steps for JBoss

To deploy the identity applications on JBoss Enterprise Application Platform (EAP), you need to perform several manual setup steps.

NOTE:This procedure is applicable for JBoss clustering as well.

  1. Install JBoss EAP.

  2. Install the identity applications as described in Using the Guided Process to Install the Identity Applications or Section 32.3, Silently Installing the Identity Applications.

  3. Create a new messaging-jboss-beans.xml file with the following content:

    <?xml version="1.0" encoding="UTF-8"?>

<!--
 ========================================================================

 Copyright (c) 2014 NetIQ Corporation. All Rights Reserved.

 THIS WORK IS SUBJECT TO U.S. AND INTERNATIONAL COPYRIGHT LAWS AND TREATIES
 NO PART OF THIS WORK MAY BE USED, PRACTICED, PERFORMED COPIED, DISTRIBUTED,
 REVISED, MODIFIED, TRANSLATED, ABRIDGED, CONDENSED, EXPANDED, COLLECTED,
 COMPILED, LINKED, RECAST, TRANSFORMED OR ADAPTED WITHOUT THE PRIOR WRITTEN
 CONSENT OF NOVELL, INC. ANY USE OR EXPLOITATION OF THIS WORK WITHOUT
 AUTHORIZATION COULD SUBJECT THE PERPETRATOR TO CRIMINAL AND CIVIL
 LIABILITY.

 ========================================================================
-->

<!--
    Messaging beans
    $Id: messaging-jboss-beans.xml 88672 2009-05-11 20:49:47Z anil.saldhana@jboss.com $
-->
<deployment xmlns="urn:jboss:bean-deployer:2.0">

   <!-- messaging application-policy definition -->
   <application-policy xmlns="urn:jboss:security-beans:1.0" name="messaging">
      <authentication>
         <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">
            <module-option name="unauthenticatedIdentity">guest</module-option>
            <module-option name="dsJndiName">java:/IDMUADataSource</module-option>
            <module-option name="principalsQuery">SELECT PASSWD FROM JBM_USER WHERE USER_ID=?</module-option>
            <module-option name="rolesQuery">SELECT ROLE_ID, 'Roles' FROM JBM_ROLE WHERE USER_ID=?</module-option>
         </login-module>
      </authentication>
   </application-policy>

   <bean name="SecurityStore" class="org.jboss.jms.server.jbosssx.JBossASSecurityMetadataStore">
      <!-- default security configuration -->
      <property name="defaultSecurityConfig">
         <![CDATA[
            <security>
               <role name="guest" read="true" write="true" create="true"/>
            </security>
         ]]>
      </property>
      <property name="suckerPassword">changeit</property>
      <property name="securityDomain">messaging</property>
      <property name="securityManagement"><inject bean="JNDIBasedSecurityManagement"/></property>
      <!-- @JMX annotation to export the management view of this bean -->
      <annotation>@org.jboss.aop.microcontainer.aspects.jmx.JMX(name="jboss.messaging:service=SecurityStore",exposedInterface=org.jboss.jms.server.jbosssx.JBossASSecurityMetadataStoreMBean.class)</annotation>
      <!-- Password Annotation to inject the password from the common password utility
       <annotation>@org.jboss.security.integration.password.Password(securityDomain="messaging",methodName="setSuckerPassword")</annotation>
       -->
   </bean>

   <bean name="MessagingDeploymentTemplateInfoFactory"
      class="org.jboss.managed.plugins.factory.DeploymentTemplateInfoFactory"/>

   <bean name="QueueTemplate" class="org.jboss.profileservice.management.templates.JmsDestinationTemplate">
      <property name="info"><inject bean="QueueTemplateInfo"/></property>
   </bean>
   <bean name="QueueTemplateInfo"
      class="org.jboss.profileservice.management.templates.JmsDestinationTemplateInfo">
      <constructor factoryMethod="createTemplateInfo">
         <factory bean="DSDeploymentTemplateInfoFactory"/>
         <parameter class="java.lang.Class">org.jboss.profileservice.management.templates.JmsDestinationTemplateInfo</parameter>
         <parameter class="java.lang.Class">org.jboss.jms.server.destination.QueueServiceMO</parameter>
         <parameter class="java.lang.String">QueueTemplate</parameter>
         <parameter class="java.lang.String">A template for JMS queue *-service.xml deployments</parameter>
      </constructor>
      <property name="destinationType">QueueTemplate</property>
   </bean>

   <bean name="TopicTemplate" class="org.jboss.profileservice.management.templates.JmsDestinationTemplate">
      <property name="info"><inject bean="TopicTemplateInfo"/></property>
   </bean>
   <bean name="TopicTemplateInfo"
      class="org.jboss.profileservice.management.templates.JmsDestinationTemplateInfo">
      <constructor factoryMethod="createTemplateInfo">
         <factory bean="DSDeploymentTemplateInfoFactory"/>
         <parameter class="java.lang.Class">org.jboss.profileservice.management.templates.JmsDestinationTemplateInfo</parameter>
         <parameter class="java.lang.Class">org.jboss.jms.server.destination.TopicServiceMO</parameter>
         <parameter class="java.lang.String">TopicTemplate</parameter>
         <parameter class="java.lang.String">A template for JMS topic *-service.xml deployments</parameter>
      </constructor>
      <property name="destinationType">TopicTemplate</property>
   </bean>

</deployment>

  4. Replace the existing messaging-jboss-beans.xml file in the IDMProv/deploy/messaging folder with the file that you created in Step 3.

  5. Locate the persistence service configuration file for JBoss. For example, for PostgreSQL databases, the file is the postgresql-persistence-service.xml in the novell\\jboss\docs\examples\jms directory.

  6. Replace the existing persistence service configuration file with the file in the database examples folder. For example for PostgreSQL, the %jboss-root%/docs/examples/jms/postgresql-persistence-service.xml file.

  7. Add a copy of the new persistence service configuration file to the %jboss-root%/server/IDMProv/deploy/messaging/ directory.

  8. Open the persistence service configuration file, and then complete the following steps:

    1. Replace the text DefaultDS with the text IDMUADataSource.

    2. Within the Clustered attribute, comment out the following lines:

      <attribute name="Clustered">false</attribute>

      <!-- All the remaining properties only have to be specified if the post
office is clustered.
           You can safely comment them out if your post office is non clustered
-->

      <!-- The JGroups group name that the post office will use -->

      <!--attribute
name="GroupName">${jboss.messaging.groupname:MessagingPostOffice}</attribute>-->

      <!-- Max time to wait for state to arrive when the post office joins the
cluster -->

      <!--attribute name="StateTimeout">30000</attribute>-->

      <!-- Max time to wait for a synchronous call to node members using the
MessageDispatcher -->

      <!--attribute name="CastTimeout">30000</attribute>-->

      <!-- Set this to true if you want failover of connections to occur when a
node is shut down -->

      <!--<attribute name="FailoverOnNodeLeave">false</attribute>

      <depends
optional-attribute-name="ChannelFactoryName">jboss.jgroups:service=ChannelFactory</depends>
      <attribute name="ControlChannelName">jbm-control</attribute>
      <attribute name="DataChannelName">jbm-data</attribute>
      <attribute
name="ChannelPartitionName">${jboss.partition.name:DefaultPartition}-JMS</attribute>-->
   </mbean>

    3. Replace the following lines with the specified text:

      Replace this text

      With this text

      POPULATE.TABLES.3 = INSERT INTO JBM_USER (USER_ID, PASSWD, CLIENTID) VALUES ('john', 'needle', 'DurableSubscriberExample')

      POPULATE.TABLES.3 = INSERT INTO JBM_USER (USER_ID, PASSWD, CLIENTID) VALUES ('p_user', 'changeit', 'IDMNotificationDurableTopic')

      POPULATE.TABLES.8 = INSERT INTO JBM_ROLE (ROLE_ID, USER_ID) VALUES ('john','guest')

      POPULATE.TABLES.8 = INSERT INTO JBM_ROLE (ROLE_ID, USER_ID) VALUES ('p_user','guest')

      POPULATE.TABLES.9 = INSERT INTO JBM_ROLE (ROLE_ID, USER_ID) VALUES ('subscriber','john')

      POPULATE.TABLES.9 = INSERT INTO JBM_ROLE (ROLE_ID, USER_ID) VALUES ('subscriber','p_user')

      POPULATE.TABLES.10 = INSERT INTO JBM_ROLE (ROLE_ID, USER_ID) VALUES ('publisher','john')

      POPULATE.TABLES.10 = INSERT INTO JBM_ROLE (ROLE_ID, USER_ID) VALUES ('durpublisher','p_user')

    4. Close and save the persistence service configuration file.

  9. Start JBoss.

  10. (Conditional) If JBoss fails to start on a Windows server, perform the workaround specified in Solution 310273 “System properties cannot be set via run.bat script in EAP 5.2”.

    When this issue occurs, the server.log file records an exception error for AbstractKernelController. For more information, see the discussions in the JBoss Community forum for JBPAAP-10938 and JBPAAP-9581.

  11. Add the JBoss administrator account to the stop-jboss.sh script by completing the following steps:

    1. Open the stop-jboss.sh script.

    2. At the end of the shutdown.sh command, append the user account and password of the JBoss administrator. Use the following syntax:

      shutdown.sh -s jnp://localhost:1199 -u %user_account% -p %password%

      For example:

      shutdown.sh -s jnp://localhost:1199 -u admin -p novell

    3. Close and save the script.

  12. (Optional) To verify proper configuration, ensure that the server log contains the following information:

    INFO  [ServerPeer] JBoss Messaging 1.4.7.GA server [0] started

INFO  [TopicService] Topic[/topic/IDMNotificationDurableTopic] started,
fullSize=200000, pageSize=2000, downCacheSize=2000
    INFO  [RBPM] [com.novell.soa.notification.impl.jms.JMSConnectionMediator:init]
Starting JMS notification system
INFO  [STDOUT] INFO  [RBPM]
[com.novell.soa.notification.impl.NotificationThread:run] Starting asynchronous notification system