HTTP

Disable HTTP

To disable plain HTTP, set http.enabled to false in conf/bundles/com.agosense.nucleus.http.cfg.

note

An application restart is required to apply the changes

Enable HTTPS

Keystore

Prepare a jks type keystore with the server certificate and the corresponding private key that should be used for SSL.

A sample keystore is located at conf/keystore. It contains a self-signed certificate that is not intended for production usage.

The key and certificate for that sample keystore is created using the following command:

openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365

Then the key and certificate were merged into a pkcs12 style keystore:

openssl pkcs12 -export -in cert.pem -inkey key.pem -out keystore.p12

And finally the pkcs12 style keystore was imported into a jks style keystore:

keytool -importkeystore -destkeystore mykeystore -srckeystore keystore.p12 -srcstoretype pkcs12

Configuration

Now point the https.keystore property in conf/bundles/com.agosense.nucleus.http.cfg to that keystore.

Set the keystore password using the https.keymanager.password property, select the port using https.port and finally set https.enabled to true.

note

An application restart is required to apply the changes

Setting Session Timeout

By default a user will be logged out after 30 minutes of inactivity. You can change this by adding/updating the following entry in conf/bundles/com.agosense.nucleus.http.deploy.default.cfg:

sessionTimeout=<TimeoutInSeconds>

After restarting symphony the timeout will be active.