Re: [Dev] Secure vault for C5 ?
IMO we need to have the solution within WSO2 products. Like its talking to OC in the bootup process. Reason is, when we talk about securevault we need to assume that the evil person have full access to the host VM and containers. Thanks and regards, Thilina Piyasundara Systems Engineer Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. <http://wso2.com/> lean . enterprise . middleware https://cloud.wso2.com On Wed, Mar 30, 2016 at 12:37 PM, Aruna Karunarathna <ar...@wso2.com> wrote: > > > On Wed, Mar 30, 2016 at 12:26 PM, Afkham Azeez <az...@wso2.com> wrote: > >> What if we modify secvault to be able to read the password from an env >> var? >> >> > Env variables for passwords in docker is not a good approach I believe. > > Can't we use something like [1], for docker containers? > > [1]. https://github.com/ehazlett/docker-volume-libsecret > > >> On Wed, Mar 30, 2016 at 12:19 PM, Thilina Piyasundara <thili...@wso2.com> >> wrote: >> >>> Yes we can't use C4 approach. >>> We try to do it in docker environments but somehow we need to send the >>> password-tmp in to the dokcer (via puppet or environment variables). >>> >>> If we us docker volumes or if we store the password-tmp in the image >>> there is a possibility that anyone can get that root/main password if they >>> have access to the containers. Isn't it ? >>> >>> Thanks and regards, >>> >>> Thilina Piyasundara >>> Systems Engineer >>> >>> >>> Blog: thilina.piyasundara.org >>> Linkedin: linkedin.com/in/thilinapiyasundara >>> >>> WSO2, Inc. >>> >>> <http://wso2.com/> >>> lean . enterprise . middleware >>> https://cloud.wso2.com >>> >>> On Wed, Mar 30, 2016 at 12:12 PM, Afkham Azeez <az...@wso2.com> wrote: >>> >>>> In the container world, the sec vault files will get packed into the >>>> containers, and if there are changes to those files, you will need to >>>> create a new version of the container image. This is true for the rest of >>>> the configuration files as well. This goes with the concept of immutable >>>> servers. >>>> >>>> Azeez >>>> >>>> On Wed, Mar 30, 2016 at 11:54 AM, Sameera Jayasoma <same...@wso2.com> >>>> wrote: >>>> >>>>> I believe we cannot apply the same thing we had in C4. We have to >>>>> think about how we can apply this for containers as well. Lets have a >>>>> quick >>>>> chat on this. >>>>> >>>>> Thanks, >>>>> Sameera. >>>>> >>>>> On Wed, Mar 30, 2016 at 11:51 AM, Hasitha Aravinda <hasi...@wso2.com> >>>>> wrote: >>>>> >>>>>> I think we have to target this for Hamming platform ? Because we have >>>>>> some configuration files like (*-datasource.xml) with passwords. >>>>>> >>>>>> Apart from securing passwords in configuration files, I think we will >>>>>> need secure vault support for runtime as well. In products like GW, ESB >>>>>> and >>>>>> BPS do secure services invocations, (i.e BasicAuth) and we will need a >>>>>> central place to store encrypted credentials. >>>>>> >>>>>> Thanks, >>>>>> Hasitha. >>>>>> >>>>>> On Wed, Mar 30, 2016 at 11:33 AM, Afkham Azeez <az...@wso2.com> >>>>>> wrote: >>>>>> >>>>>>> Simply porting the existing sec vault to work with C5 should be >>>>>>> sufficient. >>>>>>> >>>>>>> On Wed, Mar 30, 2016 at 11:03 AM, Hasitha Aravinda <hasi...@wso2.com >>>>>>> > wrote: >>>>>>> >>>>>>>> Hi team, >>>>>>>> >>>>>>>> How are we going to use $Subject in C5. Can we use existing secure >>>>>>>> vault implementation for this. >>>>>>>> >>>>>>>> Thanks, >>>>>>>> Hasitha. >>>>>>>> >>>>>>>> -- >>>>>>>> -- >>>>>>>> Hasitha Aravinda, >>>>>>>> Senior Software Engineer, >>>>>>>> WSO2 Inc. >>>>>>>> Emai
Re: [Dev] Secure vault for C5 ?
So if the password is in env anyone having access to container also can get that isn't it? Thanks and regards, Thilina Piyasundara Systems Engineer Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. <http://wso2.com/> lean . enterprise . middleware https://cloud.wso2.com On Wed, Mar 30, 2016 at 12:19 PM, Afkham Azeez <az...@wso2.com> wrote: > It can be passed in as an env variable when starting the container > > On Wed, Mar 30, 2016 at 12:16 PM, Hasitha Aravinda <hasi...@wso2.com> > wrote: > >> One limitation we had in C4 based secure vault is once enabled we have to >> provide the keystore password at every server start. I think we have to >> look how we can overcome this limitation in container world. >> >> Thanks, >> Hasitha. >> >> On Wed, Mar 30, 2016 at 12:12 PM, Afkham Azeez <az...@wso2.com> wrote: >> >>> In the container world, the sec vault files will get packed into the >>> containers, and if there are changes to those files, you will need to >>> create a new version of the container image. This is true for the rest of >>> the configuration files as well. This goes with the concept of immutable >>> servers. >>> >>> Azeez >>> >>> On Wed, Mar 30, 2016 at 11:54 AM, Sameera Jayasoma <same...@wso2.com> >>> wrote: >>> >>>> I believe we cannot apply the same thing we had in C4. We have to think >>>> about how we can apply this for containers as well. Lets have a quick chat >>>> on this. >>>> >>>> Thanks, >>>> Sameera. >>>> >>>> On Wed, Mar 30, 2016 at 11:51 AM, Hasitha Aravinda <hasi...@wso2.com> >>>> wrote: >>>> >>>>> I think we have to target this for Hamming platform ? Because we have >>>>> some configuration files like (*-datasource.xml) with passwords. >>>>> >>>>> Apart from securing passwords in configuration files, I think we will >>>>> need secure vault support for runtime as well. In products like GW, ESB >>>>> and >>>>> BPS do secure services invocations, (i.e BasicAuth) and we will need a >>>>> central place to store encrypted credentials. >>>>> >>>>> Thanks, >>>>> Hasitha. >>>>> >>>>> On Wed, Mar 30, 2016 at 11:33 AM, Afkham Azeez <az...@wso2.com> wrote: >>>>> >>>>>> Simply porting the existing sec vault to work with C5 should be >>>>>> sufficient. >>>>>> >>>>>> On Wed, Mar 30, 2016 at 11:03 AM, Hasitha Aravinda <hasi...@wso2.com> >>>>>> wrote: >>>>>> >>>>>>> Hi team, >>>>>>> >>>>>>> How are we going to use $Subject in C5. Can we use existing secure >>>>>>> vault implementation for this. >>>>>>> >>>>>>> Thanks, >>>>>>> Hasitha. >>>>>>> >>>>>>> -- >>>>>>> -- >>>>>>> Hasitha Aravinda, >>>>>>> Senior Software Engineer, >>>>>>> WSO2 Inc. >>>>>>> Email: hasi...@wso2.com >>>>>>> Mobile : +94 718 210 200 >>>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> *Afkham Azeez* >>>>>> Director of Architecture; WSO2, Inc.; http://wso2.com >>>>>> Member; Apache Software Foundation; http://www.apache.org/ >>>>>> * <http://www.apache.org/>* >>>>>> *email: **az...@wso2.com* <az...@wso2.com> >>>>>> * cell: +94 77 3320919 <%2B94%2077%203320919>blog: * >>>>>> *http://blog.afkham.org* <http://blog.afkham.org> >>>>>> *twitter: **http://twitter.com/afkham_azeez* >>>>>> <http://twitter.com/afkham_azeez> >>>>>> *linked-in: **http://lk.linkedin.com/in/afkhamazeez >>>>>> <http://lk.linkedin.com/in/afkhamazeez>* >>>>>> >>>>>> *Lean . Enterprise . Middleware* >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> -- >>>>> Hasitha Aravinda, >>>>> Senior Software Engineer, >>>>> WSO2 Inc. >>>>> Email: hasi...@wso2.com >>>>&
Re: [Dev] Secure vault for C5 ?
Yes we can't use C4 approach. We try to do it in docker environments but somehow we need to send the password-tmp in to the dokcer (via puppet or environment variables). If we us docker volumes or if we store the password-tmp in the image there is a possibility that anyone can get that root/main password if they have access to the containers. Isn't it ? Thanks and regards, Thilina Piyasundara Systems Engineer Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. <http://wso2.com/> lean . enterprise . middleware https://cloud.wso2.com On Wed, Mar 30, 2016 at 12:12 PM, Afkham Azeez <az...@wso2.com> wrote: > In the container world, the sec vault files will get packed into the > containers, and if there are changes to those files, you will need to > create a new version of the container image. This is true for the rest of > the configuration files as well. This goes with the concept of immutable > servers. > > Azeez > > On Wed, Mar 30, 2016 at 11:54 AM, Sameera Jayasoma <same...@wso2.com> > wrote: > >> I believe we cannot apply the same thing we had in C4. We have to think >> about how we can apply this for containers as well. Lets have a quick chat >> on this. >> >> Thanks, >> Sameera. >> >> On Wed, Mar 30, 2016 at 11:51 AM, Hasitha Aravinda <hasi...@wso2.com> >> wrote: >> >>> I think we have to target this for Hamming platform ? Because we have >>> some configuration files like (*-datasource.xml) with passwords. >>> >>> Apart from securing passwords in configuration files, I think we will >>> need secure vault support for runtime as well. In products like GW, ESB and >>> BPS do secure services invocations, (i.e BasicAuth) and we will need a >>> central place to store encrypted credentials. >>> >>> Thanks, >>> Hasitha. >>> >>> On Wed, Mar 30, 2016 at 11:33 AM, Afkham Azeez <az...@wso2.com> wrote: >>> >>>> Simply porting the existing sec vault to work with C5 should be >>>> sufficient. >>>> >>>> On Wed, Mar 30, 2016 at 11:03 AM, Hasitha Aravinda <hasi...@wso2.com> >>>> wrote: >>>> >>>>> Hi team, >>>>> >>>>> How are we going to use $Subject in C5. Can we use existing secure >>>>> vault implementation for this. >>>>> >>>>> Thanks, >>>>> Hasitha. >>>>> >>>>> -- >>>>> -- >>>>> Hasitha Aravinda, >>>>> Senior Software Engineer, >>>>> WSO2 Inc. >>>>> Email: hasi...@wso2.com >>>>> Mobile : +94 718 210 200 >>>>> >>>> >>>> >>>> >>>> -- >>>> *Afkham Azeez* >>>> Director of Architecture; WSO2, Inc.; http://wso2.com >>>> Member; Apache Software Foundation; http://www.apache.org/ >>>> * <http://www.apache.org/>* >>>> *email: **az...@wso2.com* <az...@wso2.com> >>>> * cell: +94 77 3320919 <%2B94%2077%203320919>blog: * >>>> *http://blog.afkham.org* <http://blog.afkham.org> >>>> *twitter: **http://twitter.com/afkham_azeez* >>>> <http://twitter.com/afkham_azeez> >>>> *linked-in: **http://lk.linkedin.com/in/afkhamazeez >>>> <http://lk.linkedin.com/in/afkhamazeez>* >>>> >>>> *Lean . Enterprise . Middleware* >>>> >>> >>> >>> >>> -- >>> -- >>> Hasitha Aravinda, >>> Senior Software Engineer, >>> WSO2 Inc. >>> Email: hasi...@wso2.com >>> Mobile : +94 718 210 200 >>> >> >> >> >> -- >> Sameera Jayasoma, >> Software Architect, >> >> WSO2, Inc. (http://wso2.com) >> email: same...@wso2.com >> blog: http://blog.sameera.org >> twitter: https://twitter.com/sameerajayasoma >> flickr: http://www.flickr.com/photos/sameera-jayasoma/collections >> Mobile: 0094776364456 >> >> Lean . Enterprise . Middleware >> >> > > > -- > *Afkham Azeez* > Director of Architecture; WSO2, Inc.; http://wso2.com > Member; Apache Software Foundation; http://www.apache.org/ > * <http://www.apache.org/>* > *email: **az...@wso2.com* <az...@wso2.com> > * cell: +94 77 3320919 <%2B94%2077%203320919>blog: * > *http://blog.afkham.org* <http://blog.afkham.org> > *twitter: **http://twitter.com/afkham_azeez* > <http://twitter.com/afkham_azeez> > *linked-in: **http://lk.linkedin.com/in/afkhamazeez > <http://lk.linkedin.com/in/afkhamazeez>* > > *Lean . Enterprise . Middleware* > > ___ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > > ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
[Dev] What happens when we run '-Dsetup' ?
Hi, What is the actual cause of running this; ./wso2server.sh -Dsetup 1. In local DB (h2) only setup 2. In local DB + remote DB (governance and config) setup What databases/tables will have the effect? Thanks and regards, Thilina Piyasundara Systems Engineer Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. <http://wso2.com/> lean . enterprise . middleware https://cloud.wso2.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [PPaaS] Using Puppet Apply for Private PaaS Cartridges
Hi Isuru, Just to clarify, please refer to those inline comments and let us know if you have a different view. On Fri, Nov 27, 2015 at 1:18 PM, Isuru Haththotuwawrote: > Hi, > > The requirement is to automate the configurations dynamically in a > serverless manner (without a puppet master), > specifically when running PPaas on docker/kubernetes. > This is not specific to docker containers. We can use same thing (puppet apply) for VMs if needed. > > The puppet modules that are currently used (for VM scenario) can be > re-used, with one change. > So we *should* use the same module. Then we don't need to maintain 2 distributions. We need to update existing modules to cater this requirement if those are lagging. That difference is the need include the nodes definitions (site.pp) in each > puppet module > We don't include site.pp within the puppet module. ideally we shouldn't touch a puppet module if there is no custom changes. I think you have done it correctly but telling something different :D > (can skip this it only a single module is used for a node; currently in > the puppet master based deployment there are several modules referred in a > single node definition). > In docker we only run a single server but in order to start a single server we may refer several modules. As an example, we have a common module called 'wso2base' which stores configs common to a deployment. If we need to start an APIM server in a docker container we need to use both 'apimanager' and 'wso2base' modules. > > A very basic puppet module can have a structure roughly similar to the > following: > > ├── files > ├── manifests > │ └── site.pp > ├── modules > │ └── test > │ └── manifests > │ ├── init.pp > │ └── site.pp > ├── puppet.conf > └── templates > > This same structure can be re-used in both puppet scenarios; where the > deployment has a master and where it does not have a master. > > In the serverless puppet scenario there is a requirement to pass data to > the modules. For this, its possible to use facters (similar to the > deployments that include puppet master). For this, need to do the following: > > >1. expose the data as a environment variable, with FACTER_ prepended >to the variable name [1] > > Try to use the ruby facter extension to expose environment variable as facters. > >1. >2. Access the variable in the manifest file [2] > > After the data is exposed as environment variables, can run the puppet > apply command pointing to the relevant module [3]. > As I know it should be the module path, but not the specific module. > After the configurations is done, its possible to re-use the same approach > that is used currently to push the configured templates to the product with > puppet master based deployment. > > [1]. export *FACTER_message*="test puppet apply message" > > [2]. > > class test { > >file { "/var/tmp/testfile": >ensure => "present", >owner => "root", >group => "root", >mode => "664", >content => "*$message*" >} > > } > > [3]. puppet apply --modulepath ** -e "include > **" > > -- > Thanks and Regards, > > Isuru H. > +94 716 358 048 > > > Regards, Thilina. ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] WSO2 Committers += Mahesh Chinthaka
Congrats Mahesh ... !!! Thanks and regards, Thilina Piyasundara Systems Engineer Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. http://wso2.com/ lean . enterprise . middleware https://cloud.wso2.com On Wed, Apr 29, 2015 at 2:48 PM, Aiyadurai Rajeevan rajeev...@wso2.com wrote: Congrats Mahesh :) Thanks Regards, S.A.Rajeevan Software Engineer WSO2 Inc E-Mail: rajeev...@wso2.com | Mobile : +94776411636 On Wed, Apr 29, 2015 at 1:56 PM, Chanuka Dissanayake chan...@wso2.com wrote: Congratulations Mahesh.. ! On Wed, Apr 29, 2015 at 11:43 AM, Vijitha Ekanayake vijit...@wso2.com wrote: Congratulations Mahesh ...!!! On Wed, Apr 29, 2015 at 9:21 AM, Madhawa Gunasekara madha...@wso2.com wrote: Congratulations Mahesh On Wed, Apr 29, 2015 at 8:57 AM, Madhuranga Bandara madhura...@wso2.com wrote: Congratulations Mahesh... !!! *Madhuranga Sampath Bandara* Software Engineer WSO2, Inc.;http://wso2.com/ http://www.google.com/url?q=http%3A%2F%2Fwso2.com%2Fsa=Dsntz=1usg=AFQjCNGJuLRux6KkJwXKVUCYOtEsNCmIAQ lean.enterprise.middleware Mobile: +94722241065 On Tue, Apr 28, 2015 at 9:27 AM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi all, It is with great pleasure that WSO2 welcomes Mahesh Chinthaka as WSO2 committer! Thank you for your hard work. Congratulation! thanks, dimuthu -- Dimuthu Leelarathne Architect Product Lead of App Factory WSO2, Inc. (http://wso2.com) email: dimut...@wso2.com Mobile : 0773661935 Lean . Enterprise . Middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- *Madhawa Gunasekara* Software Engineer WSO2 Inc.; http://wso2.com lean.enterprise.middleware mobile: +94 719411002 +94+719411002 blog: *http://madhawa-gunasekara.blogspot.com http://madhawa-gunasekara.blogspot.com* linkedin: *http://lk.linkedin.com/in/mgunasekara http://lk.linkedin.com/in/mgunasekara* ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- Vijitha Ekanayake Software Engineer*, *WSO2, Inc.; http://wso2.com/ Mobile : +94 777 24 73 39 | +94 718 74 44 08 lean.enterprise.middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- Chanuka Dissanayake *Software Engineer | **WSO2 Inc.*; http://wso2.com Mobile: +94 71 33 63 596 Email: chan...@wso2.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [AF] Error when Nodejs Application deploying in Cartridge
Hi, 0. Check the site.pp/nodes.pp (or any other node definition) got a match with the hostname of the agent 1. Check the puppet msters IP and check whether it is correct. 2. Run telnet and see if the port is open. telnet puppet 8140 or telnet puppet master ip 8140 3. Run in puppetmaster puppet cert list --all | grep 'puppet agents hostname' puppet cert sign --all 4. Rerun in agent puppet agent -vt --noop --waitforcert=60 Regards, Thilina Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. http://wso2.com/ lean . enterprise . middleware https://cloud.wso2.com On Mon, Feb 9, 2015 at 11:29 AM, Sajith Kariyawasam saj...@wso2.com wrote: Hi Hasitha, Check whether the puppet agent and master settings are according to this [1] [1] http://sajithblogs.blogspot.com/2014/12/puppet-configs.html On Mon, Feb 9, 2015 at 11:26 AM, Lasindu Charith lasi...@wso2.com wrote: Hi Hasitha, Seems like the spawned instance is having some issues when connecting to the puppet-master. That is the reason why it's not been able to retrieve the node-js puppet module from puppet-master. Were you able to spawn any other instance using the same puppet-master? Thanks, On Sun, Feb 8, 2015 at 9:40 PM, Hasitha Weerasinghe hasit...@wso2.com wrote: Hi All, I followed Apache stratos 4.0.0 [1] https://cwiki.apache.org/confluence/display/STRATOS/4.0.0+Creating+a+Cartridge+on+OpenStack to create a Nodejs cartridge in openstack. I have added Nodejs puppet modules to my puppet master following this blog [2] http://blog.lasindu.com/2014/08/apache-stratos-how-nodejs-cartridge.html. When the successfully build artifact is deployed in s2gitblit, the Nodejs cartridge instance get spawned. But artifact is not getting deployed in cartridge. I have cleared the puppet certificates before creating the snapshot. *puppet_log* file :- Removing all existing certificates .. Node Id 009209021511.default.nodejsdevelopment Domain puppet * Restarting puppet agent ...done. hostname stop/waiting ^[[0;32mInfo: Creating a new SSL key for 009209021511.default.nodejsdevelopment.puppet^[[0m ^[[0;32mInfo: csr_attributes file loading from /etc/puppet/csr_attributes.yaml^[[0m ^[[0;32mInfo: Creating a new SSL certificate request for 009209021511.default.nodejsdevelopment.puppet^[[0m ^[[0;32mInfo: Certificate Request fingerprint (SHA256): 95:37:CD:32:B1:F9:CF:2B:4F:AD:3C:94:A6:3D:28:9E:29:0E:66:B5:FA:2A:D6:55:08:F6:2D:C4:3E:D9:45:F6^[[0m ^[[0;32mInfo: Caching certificate for 009209021511.default.nodejsdevelopment.puppet^[[0m Exiting; failed to retrieve certificate and waitforcert is disabled Initialization completed successfully. [1] https://cwiki.apache.org/confluence/display/STRATOS/4.0.0+Creating+a+Cartridge+on+OpenStack [2] http://blog.lasindu.com/2014/08/apache-stratos-how-nodejs-cartridge.html -- *Hasitha Weerasinghe* *Software Engineer Intern - WSO2 http://wso2.com/ * Mobile : +94 776 33 6626 Email : hasit...@wso2.com -- *Lasindu Charith* Software Engineer, WSO2 Inc. Mobile: +94714427192 Web: blog.lasindu.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] Carbon HostName in a clustered environment.
Thanks Nirmal and Isuru for the info. Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. http://wso2.com/ lean . enterprise . middleware https://cloud.wso2.com On Tue, Jan 27, 2015 at 11:36 AM, Isuru Perera isu...@wso2.com wrote: Hi Thilina, As Nirmal said, it's the host name for the cluster. Perhaps, the comment on carbon.xml should be clarified further. May be you can create a Carbon JIRA. Answering your questions: 1. By default, it's commented out to use the local host name. (As WSO2 products are designed to just unzip and run). It's a required configuration when you set up a cluster of WSO2 servers with a load balancer. 2. The HostName configuarion should be the host name configured for WSO2 cluster in the load balancer. This HostName will be used to build End Point References of the services deployed in the server. Then we can make sure that any EPR generated by the server is served via the load balancer. 3. The HostName configuration is explained in Clustering docs. For example, https://docs.wso2.com/display/CLUSTER420/Clustering+ESB Thanks! On Sat, Jan 24, 2015 at 6:51 AM, Nirmal Fernando nir...@wso2.com wrote: HostName is not the machine name but the name you use to send the request to. So, in your case, HostName's value should be apps.example.com On Sat, Jan 24, 2015 at 6:45 AM, Thilina Piyasundara thili...@wso2.com wrote: Hi all, I'm bit confused with this option in carbon.xml. !-- *Host name or IP address of the machine hosting this server* e.g. www.wso2.org, 192.168.1.10 This is will become part of the End Point Reference of the services deployed on this server instance. -- !--HostNamewww.wso2.org/HostName-- !-- Host name to be used for the Carbon management console -- !--MgtHostNamemgt.wso2.org/MgtHostName-- Think I'm going to host a webapp on 2 wso2 appservers fronted by an nginx revers proxy. There are three servers; Nginx server 54.23.12.34 apps.example.com(Public IP and Public DNS name) 192.168.100.1 lb01.mydatacenter.local App servers 01 192.168.100.21 as01.mydatacenter.local App servers 02 192.168.100.22 as02.mydatacenter.local *According to the comment in the carbon.xml;* in AS01 I will use; HostName*as01.mydatacenter.local*/HostName and in AS02 I will use; HostName*as02.mydatacenter.local*/HostName I will forward http/s traffic for 'apps.example.com' to both AS01 and AS02 on 9443/9763. (With enabled 'proxyPort's options in catalina-server.xml too.) when I access 'apps.example.com/something' via a web browser sometime it redirects to URLs like; as01.mydatacenter.local/something or as02.mydatacenter.local/something randomly. 1. Do we need this option? (By default its commented) 2. If needed, what is the correct way of doing this? 3. Any documentations on usage of this? Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. http://wso2.com/ lean . enterprise . middleware https://cloud.wso2.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- Thanks regards, Nirmal Senior Software Engineer- Platform Technologies Team, WSO2 Inc. Mobile: +94715779733 Blog: http://nirmalfdo.blogspot.com/ ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- Isuru Perera Senior Software Engineer | WSO2, Inc. | http://wso2.com/ Lean . Enterprise . Middleware about.me/chrishantha ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
[Dev] Carbon HostName in a clustered environment.
Hi all, I'm bit confused with this option in carbon.xml. !-- *Host name or IP address of the machine hosting this server* e.g. www.wso2.org, 192.168.1.10 This is will become part of the End Point Reference of the services deployed on this server instance. -- !--HostNamewww.wso2.org/HostName-- !-- Host name to be used for the Carbon management console -- !--MgtHostNamemgt.wso2.org/MgtHostName-- Think I'm going to host a webapp on 2 wso2 appservers fronted by an nginx revers proxy. There are three servers; Nginx server 54.23.12.34 apps.example.com(Public IP and Public DNS name) 192.168.100.1 lb01.mydatacenter.local App servers 01 192.168.100.21 as01.mydatacenter.local App servers 02 192.168.100.22 as02.mydatacenter.local *According to the comment in the carbon.xml;* in AS01 I will use; HostName*as01.mydatacenter.local*/HostName and in AS02 I will use; HostName*as02.mydatacenter.local*/HostName I will forward http/s traffic for 'apps.example.com' to both AS01 and AS02 on 9443/9763. (With enabled 'proxyPort's options in catalina-server.xml too.) when I access 'apps.example.com/something' via a web browser sometime it redirects to URLs like; as01.mydatacenter.local/something or as02.mydatacenter.local/something randomly. 1. Do we need this option? (By default its commented) 2. If needed, what is the correct way of doing this? 3. Any documentations on usage of this? Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. http://wso2.com/ lean . enterprise . middleware https://cloud.wso2.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] Getting started with Puppet
Hi Michael, Please refer to those inline comments. On Tue, Dec 9, 2014 at 11:35 PM, Michael mcnasty...@gmail.com wrote: Good Morning, I have a good amount of experience with WSO2 API Manager, Linux and some experience with scripting. But I have zero experience with Puppet. I am hoping to install WSO2 API Manager using Puppet as a working example and then hand over the project to another chap. What do you think would be the best way to approach this, keeping in mind I have no experience with Puppet. For example, you might suggest: 1. Go do this online course here.. 2. Check out this site over here and read with Bob said... 3. Here is a example here that another guy did... but make sure you do x, y and z. I have found these: https://forge.puppetlabs.com/thilina I did this as a test round so it's not up-to-date. So don't use it. https://github.com/wso2/Puppet/tree/master/modules/apimanager/1.5.0/apimanager (Don't use this.) We have change the puppet github repository to this https://github.com/wso2/Puppet-Modules new repo. But to be honest I'm not sure where to start - I definitely don't want to spend 2 months doing courses just to get this started. Any advice you can offer? Here are some resources to learn puppet. We use puppet opensource. Intro guide : https://docs.puppetlabs.com/learning/variables.html Try the test VM from puppet labs (download it and try it) : http://puppetlabs.com/download-learning-vm Go through the library and learn step by step : https://puppetlabs.com/learn/library This is a good *troubleshoot* guide I use: http://bitcube.co.uk/content/ puppet-errors-explained ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 Blog: thilina.piyasundara.org Linkedin: linkedin.com/in/thilinapiyasundara WSO2, Inc. http://wso2.com/ lean . enterprise . middleware https://cloud.wso2.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] Getting error in puppet integration to Mac OS X during tools installation using 'brew'
On Thu, Nov 13, 2014 at 5:45 AM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi all, If puppet is giving all of these problems on Mac, shall we check whether it is feasible to use Docker instance of Ubuntu with puppet in it and then run our scripts? Don't make things much complex. Use a Ubuntu 12.04 virtual machine. Docker + puppet is something that need more effort to do. thanks, dimuthu On Thu, Nov 13, 2014 at 12:40 AM, Pirinthapan Mahendran pirintha...@wso2.com wrote: Hi Mahesh, When I setting up AF, I had to install unzip. Thanks. Mahendran Pirinthapan Software Engineer | WSO2 Inc. Mobile +94772378732. On Wed, Nov 12, 2014 at 10:51 PM, Mahesh Chinthaka mahe...@wso2.com wrote: Hi, why do you want to install unzip via brew ?? AFAIK unzip comes with mac OS by default. On Wed, Nov 12, 2014 at 6:22 PM, Danushka Fernando danush...@wso2.com wrote: I think unzip is coming with zip package. Just install zip and check whether unzip command works. Thanks Regards Danushka Fernando Software Engineer WSO2 inc. http://wso2.com/ Mobile : +94716332729 On Wed, Nov 12, 2014 at 6:20 PM, Aiyadurai Rajeevan rajeev...@wso2.com wrote: Hi All, We are in the process of integrating puppet scripts to Mac OS X, Where we have implementation to install list of tools to be installed by puppet script when executed, The puppet code looks like below. *$packages = ['lsof','unzip','sysstat','telnet', 'git', 'less', 'tree', 'zip']* * package { $packages:* *ensure = installed,* *provider = 'brew',* *}* Here, *$Packages* has the tools to be installed using the *brew*. When i execute this, it gives error as below, *Error: Failed to apply catalog: Parameter provider failed on Package[lsof]: Invalid package provider 'brew' at /home/rajeevan/appfactory/modules/wso2base/manifests/packages.pp:9* *Wrapped exception:* *Invalid package provider 'brew'* *Wrapped exception:* *Invalid package provider 'brew'* Then we executed the command - *brew install unzip* - just to ensure the unzip tool is getting installed, but it doesn't. google it and found a solution [1] *$ brew tap homebrew/dupes * *$ brew install unzip* This works nicely, But, As far as puppet concerned, How to do this in my above puppet script? Appreciate your view on this please. [1] http://apple.stackexchange.com/questions/149080/how-can-i-update-my-version-of-unzip-to-version-6-00-or-higher Thanks Regards, S.A.Rajeevan Software Engineer WSO2 Inc Lean . Enterprise . Middleware E-Mail: rajeev...@wso2.com | Mobile : +94776411636 ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- *Mahesh Chinthaka Vidanagama* | Software Engineer WSO2, Inc | lean. enterprise. middleware. #20, Palm Grove, Colombo 03, Sri Lanka Mobile: +94 71 63 63 083 | Work: +94 112 145 345 Email: mahe...@wso2.com | Web: www.wso2.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev -- Dimuthu Leelarathne Architect Product Lead of App Factory WSO2, Inc. (http://wso2.com) email: dimut...@wso2.com Mobile : 0773661935 Lean . Enterprise . Middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] docker blog and other servers
Hi Vincent, Have you try to edit the /etc/hosts file in docker. In docker its a read-only file. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Tue, Jul 8, 2014 at 2:41 PM, Vincent ylyy-1...@163.com wrote: Hi, Thilana, what did you mean that we cannot edit /etc/hosts? If we attach to the instance and vi the file, will it take effect? -- Vincent *From:* Thilina Piyasundara thili...@wso2.com *Date:* 2014-06-09 22:48 *To:* Steven Gimenez sgime...@tapestrysolutions.com; WSO2 Developers' List dev@wso2.org *Subject:* Re: [Dev] docker blog and other servers Hi Steven, Simply you can change all 'wso2am-1.6.0' to relevant package in all places. Download relevant pack to 'dist' folder and do the same. BTW, in docker you can't edit '/etc/hosts' so if you need to setup a cluster you need to have a small DNS server setup. Regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Jun 9, 2014 at 7:32 PM, Steven Gimenez sgime...@tapestrysolutions.com wrote: Hello Thilina, I just came across your blog using Docker with API Manager and I found it very interesting. Have you tried this with other WSO2 products? We are currently trying to work with a full stack of WSO2 tiers to run a local test environment. Do you have additional blogs/links that you can share on setting up the communication between products? Thank you and great job on the blog! [image: LIMS] *Steven Gimenez* Sr. Software Engineer *Logistics Information Management Systems* www.mirotechnologies.com www.tapestrysolutions.com 4977 Benchmark Centre Drive Swansea, IL 62226 Office: +1 (858) 503-1990 Mobile: 920-830-0176 Fax: sgime...@tapestrysolutions.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] docker blog and other servers
Hi Steven, Simply you can change all 'wso2am-1.6.0' to relevant package in all places. Download relevant pack to 'dist' folder and do the same. BTW, in docker you can't edit '/etc/hosts' so if you need to setup a cluster you need to have a small DNS server setup. Regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Jun 9, 2014 at 7:32 PM, Steven Gimenez sgime...@tapestrysolutions.com wrote: Hello Thilina, I just came across your blog using Docker with API Manager and I found it very interesting. Have you tried this with other WSO2 products? We are currently trying to work with a full stack of WSO2 tiers to run a local test environment. Do you have additional blogs/links that you can share on setting up the communication between products? Thank you and great job on the blog! [image: LIMS] *Steven Gimenez* Sr. Software Engineer *Logistics Information Management Systems* www.mirotechnologies.com www.tapestrysolutions.com 4977 Benchmark Centre Drive Swansea, IL 62226 Office: +1 (858) 503-1990 Mobile: 920-830-0176 Fax: sgime...@tapestrysolutions.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] Ext Re: docker blog and other servers
[adding dev@wso2.org] Hi, For product deployment automation we use puppet. There are several puppet modules we wrote in [1]. For docker you can create images and use it as you need. But there are several limitations in docker such as you can't edit the hostname, DNS server settings, /etc/hosts file after starting the docker instance. IMO the best approach to use puppet to push configurations and when running a docker container use --dns, -h options and use an external DNS server container like bind. 1. https://github.com/wso2/Puppet-Modules Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Jun 9, 2014 at 7:51 PM, Steven Gimenez sgime...@tapestrysolutions.com wrote: Hello, Thank you for the quick response! Is it possible to automate the startup of several servers for the cluster? I was thinking I could use a bash script to start multiple Docker instances for the cluster? Thank you again! [image: LIMS] *Steven Gimenez* Sr. Software Engineer *Logistics Information Management Systems* www.mirotechnologies.com www.tapestrysolutions.com 4977 Benchmark Centre Drive Swansea, IL 62226 Office: +1 (858) 503-1990 Mobile: 920-830-0176 Fax: sgime...@tapestrysolutions.com *From:* Thilina Piyasundara [mailto:thili...@wso2.com] *Sent:* Monday, June 09, 2014 9:19 AM *To:* Steven Gimenez; WSO2 Developers' List *Subject:* Ext Re: docker blog and other servers Hi Steven, Simply you can change all 'wso2am-1.6.0' to relevant package in all places. Download relevant pack to 'dist' folder and do the same. BTW, in docker you can't edit '/etc/hosts' so if you need to setup a cluster you need to have a small DNS server setup. Regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Jun 9, 2014 at 7:32 PM, Steven Gimenez sgime...@tapestrysolutions.com wrote: Hello Thilina, I just came across your blog using Docker with API Manager and I found it very interesting. Have you tried this with other WSO2 products? We are currently trying to work with a full stack of WSO2 tiers to run a local test environment. Do you have additional blogs/links that you can share on setting up the communication between products? Thank you and great job on the blog! [image: LIMS] *Steven Gimenez* Sr. Software Engineer *Logistics Information Management Systems* www.mirotechnologies.com www.tapestrysolutions.com 4977 Benchmark Centre Drive Swansea, IL 62226 Office: +1 (858) 503-1990 Mobile: 920-830-0176 Fax: sgime...@tapestrysolutions.com ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] GSOC proposal for WSO2 deployment engine (GUI tool)
Hi Gayatri, IMO you don't need to spend time on testing the UI on IE and Opera (and even safari). Because, 1. Its a UI for a system which is going to use by specific people. 2. We can force the user to use a specific browser and a version to get the maximum out of it. 3. You need to manage time. So do development and testing on *latest and stable* firefox and chrome web browsers. No need to test on mobile devices like mobile phones but need to work on an iPad (or similar device with resolution from 1024x786 to up). We can add features if we have time. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Thu, Apr 10, 2014 at 10:55 PM, Gayatri SN sacredlight2...@gmail.comwrote: Hi all, I have submitted a Google Summer of Code(GSoC 2014) proposal. This is the link to it: http://www.google-melange.com/gsoc/proposal/review/student/google/gsoc2014/gayatri2709/5629499534213120 I have been working on this proposal and as Mr.Gajasinghe had suggested, here are some of my findings: 1. I have been trying out different front-end options and using Bootstrap with jQuery seems to be the best choice due to it's wide usage and simplicity of code. 2. Using bootstrap will be beneficial because it will provide responsive front-end design. 3. Trying my code on small screen devices like cell phones and tablets, the drag and drop area seems insufficient, so for them we can also provide an alternate menu based GUI for ease-of-use. In my proposal, have mentioned some features like image export that can be added this GUI tool, and currently working on their jQuery implementation. I would like to have some suggestions for any more features you would want me to implement, so that we can give the users the best GUI experience. Regards, Gayatri Nesarikar ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [Gsoc 2014][proposal 5: WSO2 Deployment Engine] Implementation guide
Hi, It's fine for the moment. Add a 'robots.txt' to the root of the website with following content. We don't need to index this in google. User-agent: * Disallow: / Ref: http://www.robotstxt.org/robotstxt.html Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Mar 24, 2014 at 5:19 AM, Tharindu Peiris madushanka.b...@gmail.comwrote: Hi, I trying to implement some basic level interfaces for the project. you can watch it using fallowing link [1]. I used jquery and bootstrap for it. it's just only a front page for project only. At the movement I develop main interface also using jquery ui. I will make a mail with another update asap. it's open to clarifications.make your comment as a reply. [1] http://gsoc2014.groupb.site11.com/ Thanks. Tharindu Madushanka. ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
[Dev] Stackoverflow - Compiling ws02 Web Services Framework for C++ hello.cpp program
FYI ... http://stackoverflow.com/questions/22561667/compiling-ws02-web-services-framework-for-c-hello-cpp-program Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [Gsoc 2014][proposal 5: WSO2 Deployment Engine]
Please refer to : [Gsoc 2014][proposal 5: WSO2 Deployment Engine] Implementation guide mail on dev@wso2.org. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Tue, Mar 18, 2014 at 1:06 PM, Tharindu Peiris madushanka.b...@gmail.comwrote: Thilina, Have some confutions with technologies that we may use for this. so if you can give me a roughf idea about tecnologies that may easy for me and to go to a beeter proposal. if you have a idea about and feeling free please make a reply to me. including what kind of technologies that you prefer for UI development, internal process and etc... Thanks. Tharindu. On Mon, Mar 17, 2014 at 2:39 AM, Thilina Piyasundara thili...@wso2.comwrote: Yes, that's better. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Mar 17, 2014 at 2:49 PM, Tharindu Peiris madushanka.b...@gmail.com wrote: Thilina, yes, thanks and you are right , wide scope may make some confusions. I would try to minimize it's scope and make it more achievable. I suppose to make a better timeline with a rapid development plan. version by version development.(suppose 2 or 3 versions ) What would you think about..? Tharindu. On Mon, Mar 17, 2014 at 9:55 AM, Thilina Piyasundara thili...@wso2.comwrote: Hi Tharindu, Its great to hear that you're interested in this project. Your ideas are great but you need to think about the timeline you got. As we know, it takes lots of time to development this tool specially those UI components. Our main objective is to provide a rich user experience. So you need to spend lot of time and effort on those UI/UX related drag and drop, validation, etc. features. For the record, there is no best solution we can pre-define. Everything will depend on the situation, customers requirement and the cost factor. We need to generate a 'json' file to save the deployment as a template. Uses can use these templates to start their deployment but they can/will change/modify it according to the situation. Don't spend much time on documentation. We will provide the puppet modules for you. And try to use Apache-Jclouds to interact with IaaS. I hope you read this doc : wso2-oxygen-tank.10903.n7.nabble.com/attachment/93081/0/GSoSProposalsWSO2DeploymentEngine.pdf Please contact dev@wso2.org if you need further clarification. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sat, Mar 15, 2014 at 7:40 AM, Tharindu Peiris madushanka.b...@gmail.com wrote: hi, I would like to make a contribution for GSOC 2014, WSO2 project proposal 5, I create some basic proposal structure including my ideas about the project. you can go with from fallowing link and feeling free to make a comment what are the opinions about and have you expect some more. [1] https://docs.google.com/document/d/1d6uhll7HoxENECf3uR7df7M153n8bFM6uGzl6_PMZNY/edit?usp=sharing Thanks, Tharindu. ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [Gsoc 2014][proposal 5: WSO2 Deployment Engine]
Yes, that's better. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Mar 17, 2014 at 2:49 PM, Tharindu Peiris madushanka.b...@gmail.comwrote: Thilina, yes, thanks and you are right , wide scope may make some confusions. I would try to minimize it's scope and make it more achievable. I suppose to make a better timeline with a rapid development plan. version by version development.(suppose 2 or 3 versions ) What would you think about..? Tharindu. On Mon, Mar 17, 2014 at 9:55 AM, Thilina Piyasundara thili...@wso2.comwrote: Hi Tharindu, Its great to hear that you're interested in this project. Your ideas are great but you need to think about the timeline you got. As we know, it takes lots of time to development this tool specially those UI components. Our main objective is to provide a rich user experience. So you need to spend lot of time and effort on those UI/UX related drag and drop, validation, etc. features. For the record, there is no best solution we can pre-define. Everything will depend on the situation, customers requirement and the cost factor. We need to generate a 'json' file to save the deployment as a template. Uses can use these templates to start their deployment but they can/will change/modify it according to the situation. Don't spend much time on documentation. We will provide the puppet modules for you. And try to use Apache-Jclouds to interact with IaaS. I hope you read this doc : wso2-oxygen-tank.10903.n7.nabble.com/attachment/93081/0/GSoSProposalsWSO2DeploymentEngine.pdf Please contact dev@wso2.org if you need further clarification. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sat, Mar 15, 2014 at 7:40 AM, Tharindu Peiris madushanka.b...@gmail.com wrote: hi, I would like to make a contribution for GSOC 2014, WSO2 project proposal 5, I create some basic proposal structure including my ideas about the project. you can go with from fallowing link and feeling free to make a comment what are the opinions about and have you expect some more. [1] https://docs.google.com/document/d/1d6uhll7HoxENECf3uR7df7M153n8bFM6uGzl6_PMZNY/edit?usp=sharing Thanks, Tharindu. ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] [Gsoc 2014][proposal 5: WSO2 Deployment Engine]
Hi Tharindu, Its great to hear that you're interested in this project. Your ideas are great but you need to think about the timeline you got. As we know, it takes lots of time to development this tool specially those UI components. Our main objective is to provide a rich user experience. So you need to spend lot of time and effort on those UI/UX related drag and drop, validation, etc. features. For the record, there is no best solution we can pre-define. Everything will depend on the situation, customers requirement and the cost factor. We need to generate a 'json' file to save the deployment as a template. Uses can use these templates to start their deployment but they can/will change/modify it according to the situation. Don't spend much time on documentation. We will provide the puppet modules for you. And try to use Apache-Jclouds to interact with IaaS. I hope you read this doc : wso2-oxygen-tank.10903.n7.nabble.com/attachment/93081/0/GSoSProposalsWSO2DeploymentEngine.pdf Please contact dev@wso2.org if you need further clarification. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sat, Mar 15, 2014 at 7:40 AM, Tharindu Peiris madushanka.b...@gmail.comwrote: hi, I would like to make a contribution for GSOC 2014, WSO2 project proposal 5, I create some basic proposal structure including my ideas about the project. you can go with from fallowing link and feeling free to make a comment what are the opinions about and have you expect some more. [1] https://docs.google.com/document/d/1d6uhll7HoxENECf3uR7df7M153n8bFM6uGzl6_PMZNY/edit?usp=sharing Thanks, Tharindu. ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] Fwd: GSOC 2014 proposal 5 - WSO2 Deployment Engine (GUI Tool)
Hi, You can use any Apache compatible licence libraries. jQuery Bootstrap raphaeljs d3.js Handlebars.js Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Thu, Mar 13, 2014 at 7:51 PM, Adam Ocsvari ocs...@gmail.com wrote: Hi, Thank you for the fast reply. I have a question about the project: -Is there any restrictions/already used tools/frameworks for the UI what these features should implemented with, or it is part of the task to discover the right tool for it? ( Like dragdrop support) (I assume, there are good jQuery based solutions for this) Regards, Adam On 3/13/2014 10:02 AM, Thilina Piyasundara wrote: Hi, This is a basic things we need to do [1]. 75% of the effort will on UI/UX things. 1. GSoSProposalsWSO2DeploymentEngine.pdf (187K)https://mail.google.com/mail/u/1/?ui=2ik=78184bc6ebview=attth=1449a90bab9d6864attid=0.1disp=saferealattid=f_hsgwfo8w0zw Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
[Dev] GSOC 2014 Proposal 6: AMI baker for WSO2 Private PaaS
Hi all, In 'Proposal 6: AMI baker for WSO2 Private PaaS' we need a framework to create AMIs for all (or at least AWS/OpenStack/VMWare). Create an AMI based on user inputs like, Operating system - distribution, version, Processor type, etc. Softwares to install - (using a package manager and sometimes without a package manager.) Add custom scripts to run on bootup. do things like, publish AMI as a public, private or paid AMI to a given region. How to manage different users/aws account API keys. Save an almost created config (Like a json template to be modify in future.) and re-create an AMI using a template. and do some basic stuff like, proper naming and versioning to AMIs. Remove Authorized Keys Delete history Empty log files Remove sensitive data Delete all downloaded packages and files Refs: https://aws.amazon.com/marketplace/help/200897460 Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] GSOC 2014 proposal 5 - WSO2 Deployment Engine (GUI Tool)
Hi, I think it's better if you can do the project 'Proposal 6: AMI baker for WSO2 Private PaaS' as you have much into systems side. For the GUI tool project it need some knowledge and experience in UI/UX things. In 'Proposal 6: AMI baker for WSO2 Private PaaS' we need a framework to create AMIs for all (or at least AWS/OpenStack/VMWare). Create an AMI based on user inputs like, Operating system - distribution, version, Processor type, etc. Softwares to install - (using a package manager and sometimes without a package manager.) Add custom scripts to run on bootup. do things like, publish AMI as a public, private or paid AMI to a given region. How to manage different users/aws account API keys. Save an almost created config (Like a json template to be modify in future.) and re-create an AMI using a template. and do some basic stuff like, proper naming and versioning to AMIs. Remove Authorized Keys Delete history Empty log files Remove sensitive data Delete all downloaded packages and files Refs: https://aws.amazon.com/marketplace/help/200897460 Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sun, Mar 9, 2014 at 2:09 AM, Prameswar Lal engg.pr...@gmail.com wrote: Hi , i am prameswar lal B. Tech 3rd year(IT) of malviya national institute of technology jaipur (NIT jaipur , india) . i have certifications RHCSA , RHCE , RHCSA - with OPENSTACK , Redhat cloud storage (glusterfs) , RHCVA working knowledge on AWS and hadoop i want to work on bellow projects A framework to create AWS/Openstack AMIs (Amazon machine images). Simply a user will give some parameter like OS version, packages with relevant versions and some custom scripts. Framework should be able to create an AMI which will fulfill all user needs and directly upload to the endpoint(EC2 or relevant openstack IaaS) OR A GUI tool like WSO2 Developer studio which can use to design and generate puppet manifests and IaaS deployment scripts (AWS CloudFormation/Openstack Heat.). Users can drag and drop hosts, services and create the architecture. When a user drag and drop a service on to a host, it will automatically set relevant parameters( update hosts file. update offset.). Then if a user connect two services like an AS and an ELB it will automatically enable proxy port and so on. If there are many AS instances it will automatically enable clustering and update members. And via IaaS APIs (CloudFormation) deploy the hole thing by one click. i can do easily this project . i want to ask that which project have high priority to select for gsoc'14 and please give me suggestion about this project On 3/8/14, Thilina Piyasundara thili...@wso2.com wrote: hi, Find the attached pdf. If you're interest in this please forward that to dev@wso2.org mail group. R egards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
[Dev] Getting a database issue when try to cluster two appservers.
datasource used for user manager/description jndiConfig !-- namejdbc/WSO2AppfacUserDB/name -- namejdbc/userstore/name /jndiConfig definition type=RDBMS configuration urljdbc:mysql:// mysql_2.example.com:3306/userstore?autoReconnect=true/url ... datasource nameWSO2_REGISTRY_DB/name descriptionThe datasource used for registry/description jndiConfig !-- namejdbc/WSO2AppfacRegDB/name -- namejdbc/governance/name /jndiConfig definition type=RDBMS configuration urljdbc:mysql:// mysql_1.example.com:3306/registry?autoReconnect=true/url ... datasource nameWSO2_APPSERVER_CONFIG_DB/name descriptionThe datasource used for appserver config registry/description jndiConfig namejdbc/appserver_config/name /jndiConfig definition type=RDBMS configuration urljdbc:mysql:// mysql_1.example.com:3306/appserver_config?autoReconnect=true/url *On registory.xml.* currentDBConfigwso2registry/currentDBConfig readOnlyfalse/readOnly enableCachetrue/enableCache registryRoot//registryRoot dbConfig name=wso2registry dataSourcejdbc/WSO2CarbonDB/dataSource /dbConfig handler class=org.wso2.carbon.appfactory.registry.handler.ReferenceHandler property name=systemVariablestage/property filter class=org.wso2.carbon.registry.core.jdbc.handlers.filters.URLMatcher property name=pattern/_system/governance/.*/property /filter /handler dbConfig name=governance dataSourcejdbc/governance/dataSource /dbConfig remoteInstance url=https://registryernance.cloud-test.wso2.com; idgovernance/id dbConfiggovernance/dbConfig readOnlyfalse/readOnly registryRoot//registryRoot enableCachetrue/enableCache /remoteInstance mount path=/_system/governance overwrite=true instanceIdgovernance/instanceId targetPath/_system/governance/targetPath /mount dbConfig name=config dataSourcejdbc/appserver_config/dataSource /dbConfig remoteInstance url=https://registryernance.cloud-test.wso2.com; idconfig/id dbConfigconfig/dbConfig readOnlyfalse/readOnly registryRoot//registryRoot enableCachetrue/enableCache /remoteInstance mount path=/_system/config overwrite=true instanceIdconfig/instanceId targetPath/_system/appserver_config/targetPath /mount Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
Re: [Dev] Getting a database issue when try to cluster two appservers.
If two packs are in two different directories its working. like /mnt/10.112.43.67/wso2as ... and /mnt/10.112.43.75/wso2as. Thanks and regards, Thilina Piyasundara Systems Engineer (DevOps) M: 071-775-0006 Blog: blog.thilina.org WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Mon, Mar 10, 2014 at 2:00 PM, Afkham Azeez az...@wso2.com wrote: If you give two different directories in the two nodes, does it work? On Mon, Mar 10, 2014 at 12:47 PM, Thilina Piyasundara thili...@wso2.comwrote: Hi, I'm getting this when I try to cluster two wso2 appservers. Both are on '*/mnt/wso2as-5.2.0*' in two separate virtual servers. TID: [0] [AS] [2014-03-09 23:42:58,460] ERROR {org.wso2.carbon.registry.core.jdbc.dao.JDBCResourceDAO} - Failed to add resource to path /. Referential integrity constraint violation: REG_RESOURCE_FK_BY_PATH_ID: PUBLIC.REG_RESOURCE FOREIGN KEY(REG_PATH_ID, REG_TENANT_ID) REFERENCES PUBLIC.REG_PATH(REG_PATH_ID, REG_TENANT_ID); SQL statement: INSERT INTO REG_RESOURCE (REG_PATH_ID, REG_NAME, REG_MEDIA_TYPE, REG_CREATOR, REG_CREATED_TIME, REG_LAST_UPDATOR, REG_LAST_UPDATED_TIME, REG_DESCRIPTION, REG_TENANT_ID, REG_UUID) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?) [23002-140] {org.wso2.carbon.registry.core.jdbc.dao.JDBCResourceDAO} org.h2.jdbc.JdbcSQLException: Referential integrity constraint violation: REG_RESOURCE_FK_BY_PATH_ID: PUBLIC.REG_RESOURCE FOREIGN KEY(REG_PATH_ID, REG_TENANT_ID) REFERENCES PUBLIC.REG_PATH(REG_PATH_ID, REG_TENANT_ID); SQL statement: INSERT INTO REG_RESOURCE (REG_PATH_ID, REG_NAME, REG_MEDIA_TYPE, REG_CREATOR, REG_CREATED_TIME, REG_LAST_UPDATOR, REG_LAST_UPDATED_TIME, REG_DESCRIPTION, REG_TENANT_ID, REG_UUID) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?) [23002-140] at org.h2.message.DbException.getJdbcSQLException(DbException.java:327) at org.h2.message.DbException.get(DbException.java:167) at org.h2.message.DbException.get(DbException.java:144) at org.h2.constraint.ConstraintReferential.checkRowOwnTable(ConstraintReferential.java:329) at org.h2.constraint.ConstraintReferential.checkRow(ConstraintReferential.java:271) at org.h2.table.Table.fireConstraints(Table.java:801) at org.h2.table.Table.fireAfterRow(Table.java:818) at org.h2.command.dml.Insert.insertRows(Insert.java:122) at org.h2.command.dml.Insert.update(Insert.java:82) at org.h2.command.CommandContainer.update(CommandContainer.java:70) at org.h2.command.Command.executeUpdate(Command.java:199) at org.h2.jdbc.JdbcPreparedStatement.executeUpdateInternal(JdbcPreparedStatement.java:141) at org.h2.jdbc.JdbcPreparedStatement.executeUpdate(JdbcPreparedStatement.java:127) at org.wso2.carbon.registry.core.jdbc.dao.JDBCResourceDAO.addResourceWithoutContentId(JDBCResourceDAO.java:1391) at org.wso2.carbon.registry.core.jdbc.dao.JDBCResourceDAO.addRoot(JDBCResourceDAO.java:445) at org.wso2.carbon.registry.core.session.UserRegistry.addRootCollection(UserRegistry.java:365) at org.wso2.carbon.registry.core.session.UserRegistry.init(UserRegistry.java:299) at org.wso2.carbon.registry.core.session.UserRegistry.init(UserRegistry.java:226) at org.wso2.carbon.registry.core.session.UserRegistry.init(UserRegistry.java:205) at org.wso2.carbon.registry.core.jdbc.EmbeddedRegistryService.getUserRegistry(EmbeddedRegistryService.java:427) at org.wso2.carbon.registry.core.jdbc.EmbeddedRegistryService.getSystemRegistry(EmbeddedRegistryService.java:292) at org.wso2.carbon.registry.core.jdbc.EmbeddedRegistryService.getConfigSystemRegistry(EmbeddedRegistryService.java:485) at org.wso2.carbon.core.multitenancy.utils.TenantAxisUtils.createTenantConfigurationContext(TenantAxisUtils.java:295) at org.wso2.carbon.core.multitenancy.utils.TenantAxisUtils.getTenantConfigurationContext(TenantAxisUtils.java:135) at org.wso2.carbon.core.multitenancy.utils.TenantAxisUtils.setTenantAccessed(TenantAxisUtils.java:161) at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.setTenantAccessed(TenantLazyLoaderValve.java:112) at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(TenantLazyLoaderValve.java:87) at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invokeValves(TomcatValveContainer.java:47) at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(CompositeValve.java:141) at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve.invoke(CarbonStuckThreadDetectionValve.java:156) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:936) at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke(CarbonContextCreatorValve.java:52) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1004) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java
Re: [Dev] Configure Puppet master for Private PaaS
Use this as the puppet master (demo) AMI : ami-38fda86a client (carbon base) : ami-40f4a112 Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sun, Nov 17, 2013 at 11:19 AM, Nirmal Fernando nir...@wso2.com wrote: Thilina, that worked, thanks. But, now it seems like there's an issue with mismatching user-store databases. On Sun, Nov 17, 2013 at 9:08 AM, Thilina Piyasundara thili...@wso2.comwrote: Update the client AMI to : ami-40f4a112 The issue was a SSL conflict as the puppet agent was pre-installed on the client. As a solution I update the bootup script to remove all SSL certs of the puppet agent. When puppet restart after it will regenerate the SSL certs according to new configs. -- Updated - Run the demo AMI which included a puppetmaster in itself. AMI : ami-16cf9a44 User-data : EC2_KEY_PATH=pem_key_path,ACCESS_KEY=access_key,SECRET_KEY=secret_key,OWNER_ID=owner_id,AVAILABILITY_ZONE=availability_zone,SECURITY_GROUP=s2-demo,KEY_PAIR_NAME=keypair_name,DOMAIN=domain Then run the demo.sh it will configure the puppetmaster also. After that get the private_IP of the demo instance and use that IP for the client instances user-data. Client : AMI : ami-40f4a112 user-data : TENANT_RANGE=*,TENANT_ID=1,REPO_INFO_EPR=https://ip_of_the_demo :9445/services/RepositoryInformationService,CARTRIDGE_AGENT_EPR=https:// ip_of_the_demo:9447/services/CartridgeAgentService,PORTS=http:9763:8280|https:9443:8243,MIN=1,MAX=1,SERVICE=appserver,ALARMING_LOWER_RATE=0.2,ALARMING_UPPER_RATE=0.7,MAX_REQUESTS_PER_SEC=5,ROUNDS_TO_AVERAGE=2,SCALE_DOWN_FACTOR=0.25,DOMAIN=same_domain,PUPPETMASTER_IP=ip_of_the_demo When the client startup it should run puppet and install relevant service on the server. Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sat, Nov 16, 2013 at 4:48 PM, Nirmal Fernando nir...@wso2.com wrote: Hi Thilina, I'm getting following error at the client side log: /var/log/stratos-init.log. * Stopping puppet agent ...done. ^[[0;32minfo: Creating a new SSL key for 150516111345.appserver.paas.wso2.com^[[0m ^[[0;32minfo: Creating a new SSL certificate request for 150516111345.appserver.paas.wso2.com^[[0m ^[[0;32minfo: Certificate Request fingerprint (md5): xxx^[[0m ^[[0;32minfo: Caching certificate for 150516111345.appserver.paas.wso2.com^[[0m ^[[1;35merr: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client^[[0m ^[[0;33mwarning: Not using cache on failed catalog^[[0m ^[[1;35merr: Could not retrieve catalog; skipping run^[[0m Can you please check? === Great work Thilina! I'll try this out and will give you feedback. Can you please configure puppet modules for all other Carbon 4.2.0 based released products too? -- Forwarded message -- From: Thilina Piyasundara (JIRA) j...@wso2.org Date: Sat, Nov 16, 2013 at 9:40 AM Subject: [Carbon-jira] [jira] (PAAS-5) Configure Puppet master for Private PaaS To: carbon-j...@wso2.org Thilina Piyasundarahttps://wso2.org/jira/secure/ViewProfile.jspa?name=thilinap%40wso2.comedited a comment on [image: Task] PAAS-5 https://wso2.org/jira/browse/PAAS-5 *Configure Puppet master for Private PaaS*https://wso2.org/jira/browse/PAAS-5 Run the demo AMI which included a puppetmaster in itself. AMI : ami-16cf9a44 User-data : EC2_KEY_PATH=pem_key_path,ACCESS_KEY=access_key,SECRET_KEY=secret_key,OWNER_ID=owner_id,AVAILABILITY_ZONE=availability_zone,SECURITY_GROUP=s2-demo,KEY_PAIR_NAME=keypair_name,DOMAIN=domain Then run the demo.sh it will configure the puppetmaster also. After that get the private_IP of the demo instance and use that IP for the client instances user-data. Client : AMI : ami-14c49146 user-data : TENANT_RANGE=*,TENANT_ID=1,REPO_INFO_EPR=https://ip_of_the_demo :9445/services/RepositoryInformationService,CARTRIDGE_AGENT_EPR= https://lt;ip_of_the_demogt;:9447/services/CartridgeAgentService,PORTS=http:9763:8280|https:9443:8243,MIN=1,MAX=1,SERVICE=appserver,ALARMING_LOWER_RATE=0.2,ALARMING_UPPER_RATE=0.7,MAX_REQUESTS_PER_SEC=5,ROUNDS_TO_AVERAGE=2,SCALE_DOWN_FACTOR=0.25,DOMAIN=same_domain,PUPPETMASTER_IP=ip_of_the_demo When the client startup it should run puppet and install relevant service on the server. This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira ___ Carbon-jira mailing list carbon-j
Re: [Dev] Configure Puppet master for Private PaaS
Update the client AMI to : ami-40f4a112 The issue was a SSL conflict as the puppet agent was pre-installed on the client. As a solution I update the bootup script to remove all SSL certs of the puppet agent. When puppet restart after it will regenerate the SSL certs according to new configs. -- Updated - Run the demo AMI which included a puppetmaster in itself. AMI : ami-16cf9a44 User-data : EC2_KEY_PATH=pem_key_path,ACCESS_KEY=access_key,SECRET_KEY=secret_key,OWNER_ID=owner_id,AVAILABILITY_ZONE=availability_zone,SECURITY_GROUP=s2-demo,KEY_PAIR_NAME=keypair_name,DOMAIN=domain Then run the demo.sh it will configure the puppetmaster also. After that get the private_IP of the demo instance and use that IP for the client instances user-data. Client : AMI : ami-40f4a112 user-data : TENANT_RANGE=*,TENANT_ID=1,REPO_INFO_EPR=https://ip_of_the_demo :9445/services/RepositoryInformationService,CARTRIDGE_AGENT_EPR=https:// ip_of_the_demo:9447/services/CartridgeAgentService,PORTS=http:9763:8280|https:9443:8243,MIN=1,MAX=1,SERVICE=appserver,ALARMING_LOWER_RATE=0.2,ALARMING_UPPER_RATE=0.7,MAX_REQUESTS_PER_SEC=5,ROUNDS_TO_AVERAGE=2,SCALE_DOWN_FACTOR=0.25,DOMAIN=same_domain,PUPPETMASTER_IP=ip_of_the_demo When the client startup it should run puppet and install relevant service on the server. Thanks and regards, Thilina Piyasundara Systems Engineer M: 071-775-0006 WSO2, Inc. http://wso2.com/ lean . enterprise . middleware On Sat, Nov 16, 2013 at 4:48 PM, Nirmal Fernando nir...@wso2.com wrote: Hi Thilina, I'm getting following error at the client side log: /var/log/stratos-init.log. * Stopping puppet agent ...done. ^[[0;32minfo: Creating a new SSL key for 150516111345.appserver.paas.wso2.com^[[0m ^[[0;32minfo: Creating a new SSL certificate request for 150516111345.appserver.paas.wso2.com^[[0m ^[[0;32minfo: Certificate Request fingerprint (md5): xxx^[[0m ^[[0;32minfo: Caching certificate for 150516111345.appserver.paas.wso2.com ^[[0m ^[[1;35merr: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed. This is often because the time is out of sync on the server or client^[[0m ^[[0;33mwarning: Not using cache on failed catalog^[[0m ^[[1;35merr: Could not retrieve catalog; skipping run^[[0m Can you please check? === Great work Thilina! I'll try this out and will give you feedback. Can you please configure puppet modules for all other Carbon 4.2.0 based released products too? -- Forwarded message -- From: Thilina Piyasundara (JIRA) j...@wso2.org Date: Sat, Nov 16, 2013 at 9:40 AM Subject: [Carbon-jira] [jira] (PAAS-5) Configure Puppet master for Private PaaS To: carbon-j...@wso2.org Thilina Piyasundarahttps://wso2.org/jira/secure/ViewProfile.jspa?name=thilinap%40wso2.comedited a comment on [image: Task] PAAS-5 https://wso2.org/jira/browse/PAAS-5 *Configure Puppet master for Private PaaS*https://wso2.org/jira/browse/PAAS-5 Run the demo AMI which included a puppetmaster in itself. AMI : ami-16cf9a44 User-data : EC2_KEY_PATH=pem_key_path,ACCESS_KEY=access_key,SECRET_KEY=secret_key,OWNER_ID=owner_id,AVAILABILITY_ZONE=availability_zone,SECURITY_GROUP=s2-demo,KEY_PAIR_NAME=keypair_name,DOMAIN=domain Then run the demo.sh it will configure the puppetmaster also. After that get the private_IP of the demo instance and use that IP for the client instances user-data. Client : AMI : ami-14c49146 user-data : TENANT_RANGE=*,TENANT_ID=1,REPO_INFO_EPR=https://ip_of_the_demo :9445/services/RepositoryInformationService,CARTRIDGE_AGENT_EPR= https://lt;ip_of_the_demogt;:9447/services/CartridgeAgentService,PORTS=http:9763:8280|https:9443:8243,MIN=1,MAX=1,SERVICE=appserver,ALARMING_LOWER_RATE=0.2,ALARMING_UPPER_RATE=0.7,MAX_REQUESTS_PER_SEC=5,ROUNDS_TO_AVERAGE=2,SCALE_DOWN_FACTOR=0.25,DOMAIN=same_domain,PUPPETMASTER_IP=ip_of_the_demo When the client startup it should run puppet and install relevant service on the server. This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira ___ Carbon-jira mailing list carbon-j...@wso2.org https://wso2.org/cgi-bin/mailman/listinfo/carbon-jira -- Thanks regards, Nirmal Senior Software Engineer- Platform Technologies Team, WSO2 Inc. Mobile: +94715779733 Blog: http://nirmalfdo.blogspot.com/ -- Thanks regards, Nirmal Senior Software Engineer- Platform Technologies Team, WSO2 Inc. Mobile: +94715779733 Blog: http://nirmalfdo.blogspot.com/ ___ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev