Description

PoC Apache Unomi Securized

Start Apache Unomi

Execute this command:

docker compose up -d

Check cluster and send some requests

To access to any Unomi resource we will use the default credentials as basic authentication:

Username: karaf
Password: karaf

Check cluster status from browser:

https://localhost:9444/cxs/cluster

Access to Unomi REST API Swagger UI Portal:

https://localhost:9444/cxs/api-docs?url=https://localhost:9444/cxs/openapi.json

Exist a default PetStore Awagger UI API (?)

https://localhost:9444/cxs/api-docs

Using curl list cluster info or postman we must use the default credentials:

curl -X GET --insecure -u karaf:karaf -H "Accept: application/json" https://localhost:9444/cxs/cluster

Start WSO2 API Manager Server (wso2-am) (AM)

We will configured a offset of 3 to WSO2 AM because we have portainer in 9443 port. We will configured this offset in the file deployment.tom setting 3 to the offset attribute like this:

[server]
hostname = "localhost"
offset=3
base_path = "${carbon.protocol}://${carbon.host}:${carbon.management.port}"
#discard_empty_caches = false
server_role = "default"

Now when start the docker WSO2 AM we must add 3 offset to all ports published by WSO2 like this:

docker run -it --name poc-wso2-am -d -p 8283:8283 -p 8246:8246 -p 9446:9446 --volume $PWD/deployment-am.toml:/home/wso2carbon/wso2am-4.0.0/repository/conf/deployment.toml wso2/wso2am:4.0.0

All portals offered by WSO2 AM are:

To access to Management Console UI: https://localhost:9446/carbon
To access the API Manager Publisher: https://localhost:9446/publisher
To access the API Manager Developer Portal: https://localhost:9446/devportal (We cam open this portal from API Manager Publisher for each API created)

The default credentials to all portals is:

Username: admin
Password: admin

Start WSO2 Indentity Server (wso2-is) (IAM)

We will configured a offest of 2 to WSO2 IS because we hace portainer deployed in 9443 port. We will configured this offset in the file deployment.tom adding a offset of 2 to this attribute like this:

[server]
hostname = "localhost"
node_ip = "127.0.0.1"
base_path = "https://$ref{server.hostname}:${carbon.management.port}"
offset = 2

Also we must add this offset to the port published by WSO IS like this:

docker run -it --name poc-wso2-is -d -p 9445:9445 --volume $PWD/deployment-is.toml:/home/wso2carbon/wso2is-7.0.0/repository/conf/deployment.toml wso2/wso2is:7.0.0

Access to Management Console UI: https://localhost:9445/carbon

In this version exist a new Management Console UI located under /console path: https://localhost:9445/console

The default credentials to access is:

Username: admin
Password: admin

Start HAProxy

Links

Some links:

masalinas / poc-unomi-sec