diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/conf/deployment.toml b/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/conf/deployment.toml index 83ef2da0..16f2e862 100755 --- a/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/conf/deployment.toml +++ b/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/conf/deployment.toml @@ -11,25 +11,20 @@ password = "admin" create_admin_account = true [user_store] -# type = "database_unique_id" -type = "read_write_ldap_unique_id" -connection_url = "ldap://is-as-km:10390" -connection_name = "uid=admin,ou=system" -connection_password = "admin" -base_dn = "dc=wso2,dc=org" - -[database.apim_db] +type = "database_unique_id" + +[database.apim_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&useSSL=false" +url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" username = "wso2carbon" password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" [database.shared_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&useSSL=false" -username = "wso2carbon" -password = "wso2carbon" +url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" +username = "wso2carbon" +password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" [keystore.tls] @@ -59,8 +54,8 @@ key_password = "wso2carbon" [[apim.gateway.environment]] name = "Default" type = "hybrid" -provider = "wso2" gateway_type = "Regular" +provider = "wso2" display_in_api_console = true description = "This is a hybrid gateway that handles both production and sandbox token traffic." show_as_token_endpoint_url = true @@ -106,7 +101,7 @@ gateway_labels =["Default"] #expiry_time = "2m" [apim.analytics] -enable = true +enable = true config_endpoint = "https://analytics-event-auth.choreo.dev/auth/v1" auth_token = "" @@ -116,9 +111,9 @@ token = "" endpoint = "" [apim.key_manager] -enable_apikey_subscription_validation = true service_url = "https://is-as-km:9444/services/" type = "WSO2-IS" +#service_url = "https://localhost:${mgt.transport.https.port}/services/" #username = "$ref{super_admin.username}" #password = "$ref{super_admin.password}" #pool.init_idle_capacity = 50 @@ -167,10 +162,13 @@ type = "WSO2-IS" #enable_cross_tenant_subscriptions = true #default_reserved_username = "apim_reserved_user" +#[apim.publisher] +#enable_portal_configuration_only_mode = false + [apim.cors] allow_origins = "*" allow_methods = ["GET","PUT","POST","DELETE","PATCH","OPTIONS"] -allow_headers = ["authorization","Access-Control-Allow-Origin","Content-Type","SOAPAction","apikey", "Internal-Key"] +allow_headers = ["authorization","Access-Control-Allow-Origin","Content-Type","SOAPAction","apikey","Internal-Key"] allow_credentials = false #[apim.throttling] @@ -269,19 +267,13 @@ order = 1 notification_endpoint = "https://localhost:${mgt.transport.https.port}/internal/data/v1/notify" username = "${admin.username}" password = "${admin.password}" -'header.X-WSO2-KEY-MANAGER' = "WSO2-IS" +'header.X-WSO2-KEY-MANAGER' = "default" [oauth.grant_type.token_exchange] -enable = true +enable = false allow_refresh_tokens = true iat_validity_period = "1h" -[config_data] -path = "/_system/apim/config" - -[transport.passthru_https.sender.parameters] -HostnameVerifier="AllowAll" - #[integration.transaction_counter] #enable = true #server_id = "Gateway1" diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/client-truststore.jks b/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/client-truststore.jks index 97518c56..eca6a110 100644 Binary files a/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/client-truststore.jks and b/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/client-truststore.jks differ diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/wso2carbon.jks b/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/wso2carbon.jks index 7e09a747..384e60c9 100644 Binary files a/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/wso2carbon.jks and b/docker-compose/apim-is-as-km-with-analytics/conf/apim/repository/resources/security/wso2carbon.jks differ diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/conf/deployment.toml b/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/conf/deployment.toml index 1e94d848..370fff7b 100644 --- a/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/conf/deployment.toml +++ b/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/conf/deployment.toml @@ -10,28 +10,24 @@ password = "admin" create_admin_account = true [user_store] -type = "read_write_ldap_unique_id" -connection_url = "ldap://localhost:${Ports.EmbeddedLDAP.LDAPServerPort}" -connection_name = "uid=admin,ou=system" -connection_password = "admin" -base_dn = "dc=wso2,dc=org" #refers the base dn on which the user and group search bases will be generated +type = "database_unique_id" [database.identity_db] -type = "h2" -url = "jdbc:h2:./repository/database/WSO2IDENTITY_DB;DB_CLOSE_ON_EXIT=FALSE;LOCK_TIMEOUT=60000" +type = "mysql" +url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" username = "wso2carbon" password = "wso2carbon" +driver = "com.mysql.cj.jdbc.Driver" [database.shared_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&useSSL=false" -username = "wso2carbon" -password = "wso2carbon" +url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" +username = "wso2carbon" +password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" -[keystore.primary] -file_name = "wso2carbon.jks" -password = "wso2carbon" +[keystore] +userstore_password_encryption = "InternalKeyStore" [truststore] file_name="client-truststore.jks" @@ -65,7 +61,7 @@ app_password= "dashboard" #Google reCAPTCHA settings. #[recaptcha] -#enabled = "true" +#enabled = true #api_url = "https://www.google.com/recaptcha/api.js" #verify_url = "https://www.google.com/recaptcha/api/siteverify" #site_key = "" @@ -79,7 +75,6 @@ app_password= "dashboard" #hostname= "smtp.gmail.com" #port= 587 -# custom identity server as key manager configurations [[event_listener]] id = "token_revocation" type = "org.wso2.carbon.identity.core.handler.AbstractIdentityHandler" @@ -123,23 +118,32 @@ scopes = "internal_application_mgt_view" [[resource.access_control]] context = "(.*)/keymanager-operations/dcr/register(.*)" secure = true -http_method = "PUT" -permissions = "/permission/admin/manage/identity/applicationmgt/update" -scopes = "internal_application_mgt_update" +http_method = "DELETE" +permissions = "/permission/admin/manage/identity/applicationmgt/delete" +scopes = "internal_application_mgt_delete" [[resource.access_control]] -context = "(.)/keymanager-operations/dcr/register(.)" +context = "(.*)/keymanager-operations/dcr/register(.*)" secure = true -http_method = "POST" +http_method = "PUT" permissions = "/permission/admin/manage/identity/applicationmgt/update" scopes = "internal_application_mgt_update" [[resource.access_control]] context = "(.*)/keymanager-operations/dcr/register(.*)" secure = true -http_method = "DELETE" -permissions = "/permission/admin/manage/identity/applicationmgt/delete" -scopes = "internal_application_mgt_delete" +http_method = "POST" +permissions = "/permission/admin/manage/identity/applicationmgt/update" +scopes = "internal_application_mgt_update" [tenant_context.rewrite] custom_webapps = ["/keymanager-operations/"] + +[system.parameter] +"org.wso2.CipherTransformation" = "RSA/ECB/OAEPwithSHA1andMGF1Padding" + +[encryption] +internal_crypto_provider = "org.wso2.carbon.crypto.provider.KeyStoreBasedInternalCryptoProvider" + +[authorization_manager.properties] +GroupAndRoleSeparationEnabled = false diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/client-truststore.jks b/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/client-truststore.jks index 97518c56..eca6a110 100644 Binary files a/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/client-truststore.jks and b/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/client-truststore.jks differ diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/wso2carbon.jks b/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/wso2carbon.jks index 7e09a747..384e60c9 100644 Binary files a/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/wso2carbon.jks and b/docker-compose/apim-is-as-km-with-analytics/conf/is-as-km/repository/resources/security/wso2carbon.jks differ diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_apim.sql b/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_apim.sql index 4e77c9d9..55c3e387 100644 --- a/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_apim.sql +++ b/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_apim.sql @@ -1,7 +1,9 @@ DROP DATABASE IF EXISTS WSO2AM_DB; -CREATE DATABASE WSO2AM_DB; -GRANT ALL ON WSO2AM_DB.* TO 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +CREATE DATABASE WSO2AM_DB CHARACTER SET latin1; +CREATE USER IF NOT EXISTS 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +GRANT ALL PRIVILEGES ON WSO2AM_DB.* TO 'wso2carbon'@'%'; +FLUSH PRIVILEGES; USE WSO2AM_DB; -- Start of IDENTITY Tables-- diff --git a/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_shared.sql b/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_shared.sql index 1dc70736..9c51d4ce 100644 --- a/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_shared.sql +++ b/docker-compose/apim-is-as-km-with-analytics/conf/mysql/scripts/mysql_shared.sql @@ -1,7 +1,9 @@ DROP DATABASE IF EXISTS WSO2AM_SHARED_DB; -CREATE DATABASE WSO2AM_SHARED_DB; -GRANT ALL ON WSO2AM_SHARED_DB.* TO 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +CREATE DATABASE WSO2AM_SHARED_DB CHARACTER SET latin1; +CREATE USER IF NOT EXISTS 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +GRANT ALL PRIVILEGES ON WSO2AM_SHARED_DB.* TO 'wso2carbon'@'%'; +FLUSH PRIVILEGES; USE WSO2AM_SHARED_DB; CREATE TABLE IF NOT EXISTS REG_CLUSTER_LOCK ( diff --git a/docker-compose/apim-is-as-km-with-analytics/docker-compose.yml b/docker-compose/apim-is-as-km-with-analytics/docker-compose.yml index e116c84a..0622d045 100755 --- a/docker-compose/apim-is-as-km-with-analytics/docker-compose.yml +++ b/docker-compose/apim-is-as-km-with-analytics/docker-compose.yml @@ -15,14 +15,14 @@ version: '2.4' services: mysql: - image: mysql:8.3.0 + image: mysql:8.0.36 ports: - 3306 environment: MYSQL_ROOT_PASSWORD: root volumes: - ./conf/mysql/scripts:/docker-entrypoint-initdb.d - - ./conf/mysql/conf/my.cnf:/etc/mysql/my.cnf + - ./conf/mysql/conf/my.cnf:/etc/mysql/mysql.conf.d/my.cnf ulimits: nofile: soft: 20000 diff --git a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/apim/Dockerfile b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/apim/Dockerfile index 991c699c..d5673ca2 100644 --- a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/apim/Dockerfile +++ b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/apim/Dockerfile @@ -22,8 +22,7 @@ FROM docker.wso2.com/wso2am:4.3.0.0 LABEL maintainer="WSO2 Docker Maintainers " -# build arguments for external artifacts -ARG MYSQL_CONNECTOR_VERSION=8.0.17 +ARG MYSQL_CONNECTOR_VERSION=8.0.30 # add MySQL JDBC connector to server home as a third party library ADD --chown=wso2carbon:wso2 https://repo1.maven.org/maven2/mysql/mysql-connector-java/${MYSQL_CONNECTOR_VERSION}/mysql-connector-java-${MYSQL_CONNECTOR_VERSION}.jar ${WSO2_SERVER_HOME}/repository/components/dropins/ diff --git a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/Dockerfile b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/Dockerfile index 9f5e74d3..70f86e57 100644 --- a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/Dockerfile +++ b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/Dockerfile @@ -20,12 +20,6 @@ FROM docker.wso2.com/wso2is:6.1.0.0 LABEL maintainer="WSO2 Docker Maintainers " -# build arguments for external artifacts -ARG MYSQL_CONNECTOR_VERSION=8.0.17 - -# add MySQL JDBC connector to server home as a third party library -ADD --chown=wso2carbon:wso2 https://repo1.maven.org/maven2/mysql/mysql-connector-java/${MYSQL_CONNECTOR_VERSION}/mysql-connector-java-${MYSQL_CONNECTOR_VERSION}.jar ${WSO2_SERVER_HOME}/repository/components/dropins/ - # copy extensions to the identity server home COPY dropins ${WSO2_SERVER_HOME}/repository/components/dropins/ # copy customized webapps to the identity server home diff --git a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.key.manager.core-1.7.8.jar b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.key.manager.core-1.7.8.jar new file mode 100644 index 00000000..0ea1efc8 Binary files /dev/null and b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.key.manager.core-1.7.8.jar differ diff --git a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.key.manager_1.7.8.jar b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.key.manager_1.7.8.jar deleted file mode 100644 index 13a171ce..00000000 Binary files a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.key.manager_1.7.8.jar and /dev/null differ diff --git a/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.notification.event.handlers_1.7.8.jar b/docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.notification.event.handlers-1.7.8.jar similarity index 100% rename from docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.notification.event.handlers_1.7.8.jar rename to docker-compose/apim-is-as-km-with-analytics/dockerfiles/is-as-km/dropins/wso2is.notification.event.handlers-1.7.8.jar diff --git a/docker-compose/apim-with-analytics/conf/apim/repository/conf/deployment.toml b/docker-compose/apim-with-analytics/conf/apim/repository/conf/deployment.toml index 221d56a1..4cfd94d2 100755 --- a/docker-compose/apim-with-analytics/conf/apim/repository/conf/deployment.toml +++ b/docker-compose/apim-with-analytics/conf/apim/repository/conf/deployment.toml @@ -13,18 +13,18 @@ create_admin_account = true [user_store] type = "database_unique_id" -[database.apim_db] +[database.apim_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&useSSL=false" +url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" username = "wso2carbon" password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" [database.shared_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&useSSL=false" -username = "wso2carbon" -password = "wso2carbon" +url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" +username = "wso2carbon" +password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" [keystore.tls] @@ -54,8 +54,8 @@ key_password = "wso2carbon" [[apim.gateway.environment]] name = "Default" type = "hybrid" -provider = "wso2" gateway_type = "Regular" +provider = "wso2" display_in_api_console = true description = "This is a hybrid gateway that handles both production and sandbox token traffic." show_as_token_endpoint_url = true diff --git a/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_apim.sql b/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_apim.sql index 4e77c9d9..55c3e387 100644 --- a/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_apim.sql +++ b/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_apim.sql @@ -1,7 +1,9 @@ DROP DATABASE IF EXISTS WSO2AM_DB; -CREATE DATABASE WSO2AM_DB; -GRANT ALL ON WSO2AM_DB.* TO 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +CREATE DATABASE WSO2AM_DB CHARACTER SET latin1; +CREATE USER IF NOT EXISTS 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +GRANT ALL PRIVILEGES ON WSO2AM_DB.* TO 'wso2carbon'@'%'; +FLUSH PRIVILEGES; USE WSO2AM_DB; -- Start of IDENTITY Tables-- diff --git a/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_shared.sql b/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_shared.sql index 1dc70736..9c51d4ce 100644 --- a/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_shared.sql +++ b/docker-compose/apim-with-analytics/conf/mysql/scripts/mysql_shared.sql @@ -1,7 +1,9 @@ DROP DATABASE IF EXISTS WSO2AM_SHARED_DB; -CREATE DATABASE WSO2AM_SHARED_DB; -GRANT ALL ON WSO2AM_SHARED_DB.* TO 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +CREATE DATABASE WSO2AM_SHARED_DB CHARACTER SET latin1; +CREATE USER IF NOT EXISTS 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +GRANT ALL PRIVILEGES ON WSO2AM_SHARED_DB.* TO 'wso2carbon'@'%'; +FLUSH PRIVILEGES; USE WSO2AM_SHARED_DB; CREATE TABLE IF NOT EXISTS REG_CLUSTER_LOCK ( diff --git a/docker-compose/apim-with-analytics/docker-compose.yml b/docker-compose/apim-with-analytics/docker-compose.yml index 7de12916..9809af64 100755 --- a/docker-compose/apim-with-analytics/docker-compose.yml +++ b/docker-compose/apim-with-analytics/docker-compose.yml @@ -15,14 +15,14 @@ version: '2.4' services: mysql: - image: mysql:8.3.0 + image: mysql:8.0.36 ports: - 3306 environment: MYSQL_ROOT_PASSWORD: root volumes: - ./conf/mysql/scripts:/docker-entrypoint-initdb.d - - ./conf/mysql/conf/my.cnf:/etc/mysql/my.cnf + - ./conf/mysql/conf/my.cnf:/etc/mysql/mysql.conf.d/my.cnf ulimits: nofile: soft: 20000 diff --git a/docker-compose/apim-with-analytics/dockerfiles/apim/Dockerfile b/docker-compose/apim-with-analytics/dockerfiles/apim/Dockerfile index e73ad00a..511a62f0 100644 --- a/docker-compose/apim-with-analytics/dockerfiles/apim/Dockerfile +++ b/docker-compose/apim-with-analytics/dockerfiles/apim/Dockerfile @@ -21,7 +21,7 @@ FROM docker.wso2.com/wso2am:4.3.0.0 LABEL maintainer="WSO2 Docker Maintainers " # build arguments for external artifacts -ARG MYSQL_CONNECTOR_VERSION=8.0.17 +ARG MYSQL_CONNECTOR_VERSION=8.0.30 # add MySQL JDBC connector to server home as a third party library ADD --chown=wso2carbon:wso2 https://repo1.maven.org/maven2/mysql/mysql-connector-java/${MYSQL_CONNECTOR_VERSION}/mysql-connector-java-${MYSQL_CONNECTOR_VERSION}.jar ${WSO2_SERVER_HOME}/repository/components/dropins/ diff --git a/docker-compose/apim-with-mi/conf/apim/repository/conf/deployment.toml b/docker-compose/apim-with-mi/conf/apim/repository/conf/deployment.toml index 2156ab85..955a2e15 100644 --- a/docker-compose/apim-with-mi/conf/apim/repository/conf/deployment.toml +++ b/docker-compose/apim-with-mi/conf/apim/repository/conf/deployment.toml @@ -15,14 +15,14 @@ type = "database_unique_id" [database.apim_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&useSSL=false" +url = "jdbc:mysql://mysql:3306/WSO2AM_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" username = "wso2carbon" password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" [database.shared_db] type = "mysql" -url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&useSSL=false" +url = "jdbc:mysql://mysql:3306/WSO2AM_SHARED_DB?autoReconnect=true&allowPublicKeyRetrieval=true&useSSL=false" username = "wso2carbon" password = "wso2carbon" driver = "com.mysql.cj.jdbc.Driver" @@ -54,8 +54,8 @@ key_password = "wso2carbon" [[apim.gateway.environment]] name = "Default" type = "hybrid" -provider = "wso2" gateway_type = "Regular" +provider = "wso2" display_in_api_console = true description = "This is a hybrid gateway that handles both production and sandbox token traffic." show_as_token_endpoint_url = true @@ -260,7 +260,6 @@ id = "token_revocation" type = "org.wso2.carbon.identity.core.handler.AbstractIdentityHandler" name = "org.wso2.is.notification.ApimOauthEventInterceptor" order = 1 - [event_listener.properties] notification_endpoint = "https://localhost:${mgt.transport.https.port}/internal/data/v1/notify" username = "${admin.username}" diff --git a/docker-compose/apim-with-mi/conf/apim/repository/resources/security/client-truststore.jks b/docker-compose/apim-with-mi/conf/apim/repository/resources/security/client-truststore.jks new file mode 100644 index 00000000..97518c56 Binary files /dev/null and b/docker-compose/apim-with-mi/conf/apim/repository/resources/security/client-truststore.jks differ diff --git a/docker-compose/apim-with-mi/conf/apim/repository/resources/security/wso2carbon.jks b/docker-compose/apim-with-mi/conf/apim/repository/resources/security/wso2carbon.jks new file mode 100644 index 00000000..7e09a747 Binary files /dev/null and b/docker-compose/apim-with-mi/conf/apim/repository/resources/security/wso2carbon.jks differ diff --git a/docker-compose/apim-with-mi/conf/mi/repository/resources/security/client-truststore.jks b/docker-compose/apim-with-mi/conf/mi/repository/resources/security/client-truststore.jks new file mode 100644 index 00000000..97518c56 Binary files /dev/null and b/docker-compose/apim-with-mi/conf/mi/repository/resources/security/client-truststore.jks differ diff --git a/docker-compose/apim-with-mi/conf/mi/repository/resources/security/wso2carbon.jks b/docker-compose/apim-with-mi/conf/mi/repository/resources/security/wso2carbon.jks new file mode 100644 index 00000000..7e09a747 Binary files /dev/null and b/docker-compose/apim-with-mi/conf/mi/repository/resources/security/wso2carbon.jks differ diff --git a/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_apim.sql b/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_apim.sql index 4e77c9d9..55c3e387 100644 --- a/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_apim.sql +++ b/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_apim.sql @@ -1,7 +1,9 @@ DROP DATABASE IF EXISTS WSO2AM_DB; -CREATE DATABASE WSO2AM_DB; -GRANT ALL ON WSO2AM_DB.* TO 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +CREATE DATABASE WSO2AM_DB CHARACTER SET latin1; +CREATE USER IF NOT EXISTS 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +GRANT ALL PRIVILEGES ON WSO2AM_DB.* TO 'wso2carbon'@'%'; +FLUSH PRIVILEGES; USE WSO2AM_DB; -- Start of IDENTITY Tables-- diff --git a/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_shared.sql b/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_shared.sql index 1dc70736..9c51d4ce 100644 --- a/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_shared.sql +++ b/docker-compose/apim-with-mi/conf/mysql/scripts/mysql_shared.sql @@ -1,7 +1,9 @@ DROP DATABASE IF EXISTS WSO2AM_SHARED_DB; -CREATE DATABASE WSO2AM_SHARED_DB; -GRANT ALL ON WSO2AM_SHARED_DB.* TO 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +CREATE DATABASE WSO2AM_SHARED_DB CHARACTER SET latin1; +CREATE USER IF NOT EXISTS 'wso2carbon'@'%' IDENTIFIED BY 'wso2carbon'; +GRANT ALL PRIVILEGES ON WSO2AM_SHARED_DB.* TO 'wso2carbon'@'%'; +FLUSH PRIVILEGES; USE WSO2AM_SHARED_DB; CREATE TABLE IF NOT EXISTS REG_CLUSTER_LOCK ( diff --git a/docker-compose/apim-with-mi/docker-compose.yml b/docker-compose/apim-with-mi/docker-compose.yml index 70052095..c05f25fc 100644 --- a/docker-compose/apim-with-mi/docker-compose.yml +++ b/docker-compose/apim-with-mi/docker-compose.yml @@ -15,14 +15,14 @@ version: '2.4' services: mysql: - image: mysql:8.3.0 + image: mysql:8.0.36 ports: - 3306 environment: MYSQL_ROOT_PASSWORD: root volumes: - ./conf/mysql/scripts:/docker-entrypoint-initdb.d - - ./conf/mysql/conf/my.cnf:/etc/mysql/my.cnf + - ./conf/mysql/conf/my.cnf:/etc/mysql/mysql.conf.d/my.cnf ulimits: nofile: soft: 20000 diff --git a/docker-compose/apim-with-mi/dockerfiles/apim/Dockerfile b/docker-compose/apim-with-mi/dockerfiles/apim/Dockerfile index ffd4fdc6..2422f28f 100644 --- a/docker-compose/apim-with-mi/dockerfiles/apim/Dockerfile +++ b/docker-compose/apim-with-mi/dockerfiles/apim/Dockerfile @@ -21,7 +21,7 @@ FROM docker.wso2.com/wso2am:4.3.0.0 LABEL maintainer="WSO2 Docker Maintainers " # build arguments for external artifacts -ARG MYSQL_CONNECTOR_VERSION=8.0.17 +ARG MYSQL_CONNECTOR_VERSION=8.0.30 # add MySQL JDBC connector to server home as a third party library ADD --chown=wso2carbon:wso2 https://repo1.maven.org/maven2/mysql/mysql-connector-java/${MYSQL_CONNECTOR_VERSION}/mysql-connector-java-${MYSQL_CONNECTOR_VERSION}.jar ${WSO2_SERVER_HOME}/repository/components/dropins/ diff --git a/dockerfiles/jdk21/rocky/apim/Dockerfile b/dockerfiles/jdk21/rocky/apim/Dockerfile index 243cd032..5d5130d6 100755 --- a/dockerfiles/jdk21/rocky/apim/Dockerfile +++ b/dockerfiles/jdk21/rocky/apim/Dockerfile @@ -105,7 +105,7 @@ RUN \ && rm -f ${WSO2_SERVER}.zip # remove unnecesary packages -RUN yum remove -y nc unzip wget +RUN yum remove -y unzip wget # set the user and work directory USER ${USER_ID} diff --git a/dockerfiles/jdk21/ubuntu/apim/Dockerfile b/dockerfiles/jdk21/ubuntu/apim/Dockerfile index f58e6df2..7a7eba3f 100755 --- a/dockerfiles/jdk21/ubuntu/apim/Dockerfile +++ b/dockerfiles/jdk21/ubuntu/apim/Dockerfile @@ -23,7 +23,7 @@ ENV LANG='en_US.UTF-8' LANGUAGE='en_US:en' LC_ALL='en_US.UTF-8' # install dependencies RUN apt-get update \ - && DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends tzdata curl ca-certificates fontconfig locales python-is-python3 libxml2-utils netcat-openbsd unzip wget \ + && DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends tzdata curl ca-certificates fontconfig locales python-is-python3 libxml2-utils netcat unzip wget \ && echo "en_US.UTF-8 UTF-8" >> /etc/locale.gen \ && locale-gen en_US.UTF-8 \ && rm -rf /var/lib/apt/lists/* diff --git a/dockerfiles/rocky/apim/Dockerfile b/dockerfiles/rocky/apim/Dockerfile index cb0a8acf..bd4543da 100755 --- a/dockerfiles/rocky/apim/Dockerfile +++ b/dockerfiles/rocky/apim/Dockerfile @@ -105,7 +105,7 @@ RUN \ && rm -f ${WSO2_SERVER}.zip # remove unnecesary packages -RUN yum remove -y nc unzip wget +RUN yum remove -y unzip wget # set the user and work directory USER ${USER_ID} diff --git a/dockerfiles/ubuntu/apim/Dockerfile b/dockerfiles/ubuntu/apim/Dockerfile index 903fa0d2..8dd81283 100755 --- a/dockerfiles/ubuntu/apim/Dockerfile +++ b/dockerfiles/ubuntu/apim/Dockerfile @@ -23,7 +23,7 @@ ENV LANG='en_US.UTF-8' LANGUAGE='en_US:en' LC_ALL='en_US.UTF-8' # install dependencies RUN apt-get update \ - && DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends tzdata curl ca-certificates fontconfig locales python-is-python3 libxml2-utils netcat-openbsd unzip wget \ + && DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends tzdata curl ca-certificates fontconfig locales python-is-python3 libxml2-utils netcat unzip wget \ && echo "en_US.UTF-8 UTF-8" >> /etc/locale.gen \ && locale-gen en_US.UTF-8 \ && rm -rf /var/lib/apt/lists/* @@ -116,7 +116,7 @@ RUN \ && rm -f ${WSO2_SERVER}.zip # remove unnecesary packages -RUN apt-get purge -y netcat-openbsd unzip wget +RUN apt-get purge -y netcat unzip wget # set the user and work directory USER ${USER_ID}