TISGraph & MDA Documentation

# Advanced Installation

These sections cover more advanced topics of a TISGraph installation.

Throughout this tutorial, the installation path of osgi-runner is called %INSTDIR%, which is typically located under C:\iteg\osgi-runner or C:\kisters\osgi-runner

# Encrypting Configuration Values

Configuration values like database passwords or OAuth secrets may be stored in encrypted form.

# Initialize Secrets Encryption

Initially, the encryption master has to be initialized by

cd %INSTDIR%\ps1
.\manage-secrets.ps1 -init

# Add Secrets

A secret might be added to an encrypted property file by specifying the configuration set name called PID and a key for referencing the secret lateron.

cd %INSTDIR%\ps1
.\manage-secrets.ps1 -add secrets.properties org.clazzes.jdbc.provider tisgraph-db-passwd 'fiooobar123!'

In order to access this secret, you have to use secret::prop:tisgraph-db-passwd inside the org.clazzes.jdbc.provider configuration instead of specifying the plain password.

After adding a secret, you have to restart the osgi-runner service.

# Decrypt a Stored Secret

A once encrypted secret might be decrypted again by

cd %INSTDIR%\ps1
.\manage-secrets.ps1 -decrypt db-secrets.properties org.clazzes.jdbc.provider tisgraph-db-passwd

# SSH Access to the osgi-runner Console

In order to access the osgi-runner console for watching individual errors, you might create an SSH key and add to the list of authorized keys.

# Generate SSH Keys

If you have installed the SSH client component of your Window Server, you can create an SSH key:

ssh-keygen

The key is generated in %USERPROFILE%\.ssh\id_rsa, the corresponding private key stored in %USERPROFILE%\.ssh\id_rsa.pub.

# Install the Public SSH Key to osgi-runner

The so-generated ssh key must be copied to the osgi-runner installation.

cd %INSTDIR%\etc\ssh.d
copy `%USERPROFILE%\.ssh\id_rsa.pub authorized_keys

If you have more than one authorized ssh key, authorized_keys must be set up to contain multiple lines with an ssh public key on each line.

# Connect to the osgi-runner Console

Once the ssh key has been set up and authorized, call

cd %INSTDIR%\ps1
.\osgi-shell.ps1

The osgi-runner toplevel installation folder contains a shortcut called osgi-shell, which might be double-clicked instead.

Detailed Installation Settings