Add Switch/Migrate to Standalone Section in RN (OPENIG-4800)

[OPENIG-4807] Dev: Provide initial info for migration from Tomcat to Standalone Created: 22/Jul/20  Updated: 30/Jul/20  Resolved: 30/Jul/20

Status: Closed
Project: Identity Gateway
Component/s: None
Affects Version/s: Not Applicable
Fix Version/s: 7.0.0, 7.0.0-micsvc-1.0.3

Type: Sub-task Priority: Major
Reporter: Guillaume Sauthier Assignee: Violette Roche Montane
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Sprint: 2020.10 - IG / Microservices
Story Points: 2


Should cover basic stuff to extract fromĀ server.xml into our admin.json.
Provide example configuration
Extra: add TLS examples

Comment by Violette Roche Montane [ 27/Jul/20 ]

Migration from Tomcat to IG Standalone keypoints:

Change port number / tls ports number

In Tomcat server.xml file, the line to change the port number :

<Connector port="8080" protocol="HTTP/1.1"
           redirectPort="8443" />

For IG standalone: the port number is set in the admin.json:

  "prefix": "openig",
  "connectors": [{
      "port": 8080
    }, {
      "port": 8443,
      "tls": "TlsOptions-1"
  "connectTimeout": "5 seconds"

TLS configuration already described in

Change session cookie name

Previously, it was configured into the IG web.xml file when the war is deployed:

<web-app xmlns="" xmlns:xsi="" xsi:schemaLocation="" version="3.0">
  <display-name>ForgeRock Identity Gateway</display-name>

In IG Standalone/admin.json:

  "session": {
    "cookie": {
      "name"           : String            [OPTIONAL - cookie name, default is "IG_SESSIONID".]
      "httpOnly"       : boolean           [OPTIONAL - cookie httpOnly flag, default is true.]
      "secure"         : boolean           [OPTIONAL - cookie secure flag, default is false.]
      "path"           : String            [OPTIONAL - cookie path value, default is "/".]
    "timeout"          : duration          [OPTIONAL - session timeout as a duration, default is "30 min".]


Add a note about Access Log Valve, now refers in IG as audit event:

Add a note about JDBC connectors( -> "jdbcDatasource" heaplet

Comment by Violette Roche Montane [ 30/Jul/20 ]

Joanne Henry I mark this as resolved, feel free to reopen it if something is missing.

Generated at Sat Feb 27 22:23:35 UTC 2021 using Jira 7.13.12#713012-sha1:6e07c38070d5191bbf7353952ed38f111754533a.