Guía de instalación Service Directory - Xunta
Technical requirements:
-
Machine with OpenESB deployed, connectivity to all environments, and a valid HTTPS certificate.
-
Virtual host (vhost) configuration for access: oesd.xunta.local
-
Integration with CASPEG (specifying the sources) and Keycloak.
THIS GUIDE DOES NOT COVER THE MACHINE DEPLOYMENT PROCESS OR THE OPENESB INSTALLATION PROCESS, AS THESE ARE CONSIDERED WELL-KNOWN PROCEDURES BY THE SYSTEMS TEAM AND ARE OUT OF SCOPE FOR THIS DOCUMENTATION.
The installation process for the Service Directory is detailed below as a prerequisite step for meeting the technical requirements, since these requirements depend on this initial installation for subsequent validation.
Installation process:
First, place the sdconsole folder containing the current version of the Service Directory inside the plugins directory of OpenESB. Usually:
<![CDATA[$cp -r ~/sdconsole /opt/servicios/nombre_servicio/OE-Instance/plugins/]]>
Once this is done, the following steps must be performed:
-
Deploy the CAs oesd-OEWebConsoleAPI-CA and oesd-servicedirectory-ca.
-
Create the following application variables in the sun-bpel-engine component:
| Nombre | Tipo | Valor |
|---|---|---|
| SDconsoleHostName | STRING | localhost |
| SDconsolePort | STRING | puerto https |
| oesd.allow.origin | STRING | url_consola:puerto_consola |
| oesd.ecosystem | STRING | config_ecosistema |
-
At this point, the Service Directory will already be up and running, and we will know both the OpenESB console URL and its port, which are required for the virtual host request, the first requirement to be completed.
Virtual host (vhost) configuration for access - oesd.xunta.local:
The vhost must be configured as detailed below, and the request must be directed to the AIS-DS-Soporte Sistemas1 Linux team:The ecosystem will be defined as follows, for example:
<![CDATA[<Ecosystem xmlns="http://vico.org/oesd">
<id>SPEG</id>
<name>ServicioPublicodeEmpregoGalicia</name>
<Environment>
<id>STG</id>
<name>Pre-Producción</name>
<Node>
<id>stg-01</id>
<name>preproducciónNodo1</name>
<url>http://stg-speg-0001.xunta.local:20548</url>
<adminuser>usuario</adminuser>
<adminpaswword>pass_base64</adminpaswword>
</Node>
<Node>
<id>stg-02</id>
<name>preproducciónNodo2</name>
<url>http://stg-speg-0002.xunta.local:20548</url>
<adminuser>usuario</adminuser>
<adminpaswword>pass_base64</adminpaswword>
</Node>
</Environment>
<Environment>
<id>PRD</id>
<name>Producción</name>
<Node>
<id>prd-01</id>
<name>Producciónnodo1</name>
<url>http://prd-speg-0001.xunta.local:20548</url>
<adminuser>usuario</adminuser>
<adminpaswword>pass_base64</adminpaswword>
</Node>
<Node>
<id>prd-02</id>
<name>PoducciónNodo2</name>
<url>http://prd-speg-0002.xunta.local:20548</url>
<adminuser>usuario</adminuser>
<adminpaswword>pass_base64</adminpaswword>
</Node>
</Environment>
</Ecosystem>]]>
At this point, the Service Directory will already be up and running, and we will know both the OpenESB console URL and its port, which are required for the virtual host request, the first requirement to be completed.
Virtual host (vhost) configuration for access - oesd.xunta.local:
The vhost must be configured as detailed below, and the request must be directed to the AIS-DS-Soporte Sistemas1 Linux team:
<![CDATA[OIDC:{
authority:"url_rhsso",
client_id:"el dado de alta, debe ser oesbesd",
client_secret:"Se extrae del rhsso o en su defecto proporcionado por sistemas",
redirect_uri:"url_dada_de_alta",
scopes:"openid profile email roles",
post_logout_redirect_uri:"url_dada_de_alta"
}]]>