IriusRisk can be installed in several ways.
Every major component (Nginx, Tomcat and PostgreSQL) can live on the same machine (single server) or may be individual components on different machines or a combination of both.
Besides PostgreSQL which is a native installation, both Nginx and Tomcat can be dockerized or not depending on your needs.
This allows us the following setup options:
Single server (everything on the same machine):
- Nginx (docker) + Tomcat (docker) + local PostgreSQL (native).
- Nginx (native) + Tomcat (docker) + local PostgreSQL (native).
- Nginx (docker) + Tomcat (docker) + local PostgreSQL (docker).
Multiple servers (services spread on several machines), from the point of view of tomcat:
- External load balancer + Tomcat (docker) + local PostgreSQL (native).
- External load balancer + Tomcat (docker) + external PostgreSQL.
- Nginx (docker or native) + Tomcat (docker) + external PostgreSQL.
Single server option 1: Nginx (docker) + Tomcat (docker) + local PostgreSQL (native).
This is a recommended option for PoC and small installations. It is documented in the main installation page.
Single server option 2: Nginx (native) + Tomcat (docker) + local PostgreSQL (native).
- Follow steps 1-4 from "Single server option 1", you can skip the Nginx section configuration.
- Delete from the docker-compose.yml file the entire "nginx:" section so only tomcat is launched as a container.
- Configure your native Nginx to forward requests to the Tomcat server using the following rules:
Request to reverse proxy | Redirect to Tomcat |
---|---|
/ | / |
/VAADIN | /VAADIN |
/api |
/api |
/help | /help |
$ docker-compose up -d
Single server option 3: Nginx (docker) + Tomcat (docker) + local PostgreSQL (docker).
This setup is recommended only for tool evaluation purposes, but may be handy when no access to native PostgreSQL database is possible.
It is similar to the main installation guide, but using this other docker-compose.yml file.
Multiple servers
For all multiple servers options you will need to share the same Elliptic Curve Cryptography (ECC) key between all tomcat nodes.
Multiple servers option 1: External load balancer + Tomcat (docker) + local PostgreSQL (native).
- Follow the "Single server Option 2" guide, and use the step 3 configurations as a guideline adapted to your solution.
Multiple servers option 2: External load balancer + Tomcat (docker) + external PostgreSQL.
- Follow the "Single server Option 2" guide, and use the step 3 configurations as a guideline adapted to your solution.
- Ensure your tomcat container can reach your external database. If you need to troubleshoot you can enter the container by using:
$ docker exec -it iriusrisk-tomcat bash
And then using psql, telnet or nc to test the connection.
Multiple servers option 3: Nginx (docker or native) + Tomcat (docker) + external PostgreSQL.
- Follow the single server options for Nginx on docker ("Single server option 3") or native ("Single server option 4").
- Follow the single server options for Tomcat on docker ("Single server option 2") or native ("Single server option 3").
- Follow the step 2 on the "Multiple servers option 2" option.
AD/LDAP Authentication:
All setups are compatible with enable AD/LDAP authentication.To configure it you need to add an environment variable configuration (either on docker-compose or system-wide if you are using native tomcat).
In the Tomcat instance you should include this configuration in the docker compose file:
tomcat8: # [...] environment: # [...] - LDAP_CONFIG_PATH=/etc/irius/LDAP-config.groovy # [...] volumes: - "/etc/irius:/etc/irius"
And ensure that the host has the LDAP-config.groovy file located in the /etc/irius directory of the host machine.
Comments
0 comments
Article is closed for comments.