+

Search Tips | Advanced Search

For up-to-date product documentation, see the IBM MobileFirst Foundation Developer Center.


Configure WebSphere Application Server Liberty profile for MobileFirst Server administration

Configure the Java™ EE security roles of the MobileFirst Server administration and the data source in the server.xml file.


Before you begin

In WebSphere® Application Server Liberty profile, you configure the roles of mfpadmin, mfpdeployer, mfpmonitor, and mfpoperator in the server.xml configuration file of the server.

To configure the security roles, we must edit the server.xml file. In the <application-bnd> element of each <application> element, create <security-role> elements. Each <security-role> element is for each roles: mfpadmin, mfpdeployer, mfpmonitor, and mfpoperator. Map the roles to the appropriate user group name, in this example: mfpadmingroup, mfpdeployergroup, mfpmonitorgroup, or mfpoperatorgroup. These groups are defined through the <basicRegistry> element. We can customize this element or replace it entirely with an <ldapRegistry> element or a <safRegistry> element.

Then, to maintain good response times with a large number of installed applications, for example with 80 applications, you should configure a connection pool for the administration database.


Procedure

  1. Edit the server.xml file.

    For example: 

      <security-role name="mfpadmin">
  <group name="mfpadmingroup"/>
</security-role>
<security-role name="mfpdeployer">
  <group name="mfpdeployergroup"/>
</security-role>
<security-role name="mfpmonitor">
  <group name="mfpmonitorgroup"/>
</security-role>
<security-role name="mfpoperator>
  <group name="mfpoperatorgroup"/>
</security-role>

<basicRegistry id="mfpadmin">
  <user name="admin" password="admin"/>
  <user name="guest" password="guest"/>
  <user name="demo" password="demo"/>
  <group name="mfpadmingroup">
    <member name="guest"/>
    <member name="demo"/>
  </group>
  <group name="mfpdeployergroup">
    <member name="admin" id="admin"/>
  </group>
  <group name="mfpmonitorgroup"/>
  <group name="mfpoperatorgroup"/>
</basicRegistry>

  2. Edit the server.xml file to define the AppCenterPool size. 

      <connectionManager id="AppCenterPool" minPoolSize="10" maxPoolSize="40"/>

  3. In the <dataSource> element, define a reference to the connection manager: 

      <dataSource id="MFPADMIN" jndiName="mfpadmin/jdbc/mfpAdminDS" connectionManagerRef="AppCenterPool">
 ...
</dataSource>

Parent topic: Configure user authentication for MobileFirst Server administration