CNG configuration file
CNG configuration file:
The server must include the CNG configuration directory in the classpath.
Configuration Tomcat: To include the CNG configuration directory, create or edit the file setenv.sh in the bin folder of the tomcat installation folder. The file should contain:
#!/bin/sh
export CLASSPATH=$CLASSPATH:/srv/www/default/cng-conf
When running Tomcat on a Windows server as a service, the classpath has to be stored in the registry. Either setting it when installing the Tomcat service or changing the parameter in the registry. More information available at http://tomcat.apache.org/tomcat-6.0-doc/windows-service-howto.html.
For use with Oracle as database, add also this line:
export CATALINA_OPTS="-Xmx300m -Djava.awt.headless=true -Duser.language=no -Duser.region=NO"
Configuration Jetty: The configuration file cng.properties and BankID-configuration resources should be put in the folder JETTY_HOME/resources.
cng.properties:
The CNG configuration directory must include the cng.properties file, which contains the configuration for the CNG web application.
The properties:
application.base.url | url for accessing the web application |
application.theme.path | local directory for theme resources |
mail.smtp.host | mail server host, dns name or ip address |
mail.smtp.port | port on the mail server |
mail.address | e-mail used as sender in system sent emails |
skin.storage.folder | local directory for storing uploaded skins |
skin.url | url for accessing the uploaded skins, read more in the next section |
piwik.admin.siteId | site id for statistics support, only supported on Mores own installations |
authenticationConfigurations | this parameter takes a list of authentication provider configuration files which will be loaded by the system. As of now only Bank ID and ID Porten authentication can be used. The format of the string is a JSON-like string. |
designer.languages | supported languages in the designer. |
designer.defaultLanguage | default language to use in designer when user has not selected one. |
system.defaultLanguage | the default language to use in the system. |
hibernate.dialect | for PostgreSQL use org.hibernate.dialect.PostgreSQLDialect |
designer.dateFormat | date format used in the designer |
malwareDetector.factoryClass | java class for supported malware detection |
malwareDetector.settings | settings for the supported malware detection |
malwareDetector.isPassOnError | If the malware detector fails, should the file be allowed to pass? true/false |
supported.workflow.dateFormats | list supported date formats in the respondent gui |
designerAccessCheck | Flag must be true or false. Indicates if additional access checks should be performed at a certain place instead of in the service layer. Should be true for cng webapp designer. |
portal.resetPassword.expirationTimeInSeconds | the time (in seconds) that a reset password action is valid before it expires in the system. |
exportAgent.delivery.storage | this points to a folder on the system where the export agent activity may store files instead of storing them in the database. |
exportAgent.delivery.maxFileSizeOnDB | size in bytes, if files stored in export agent exeeds this limit they will be stored on disk vs in the database. setting the value to 0 means all files stored on disk. |
more.no.encryptionkey | this contains a filename of a file that is on the classpath containing bytes that will be used to forge part of the encryption key for when secure storage feature is used (encrypted paused sessions). dd if=/dev/urandom of=secret.bin bs=1 count=300 |
max.file.upload.limit | Maximum file upload limit to be set as bytes. The max limit is allowed is up to 1GB. |
continueLater.sessionData.expireDurationInDays | when using 'continue later' functionality, paused sessions are saved to a database table. this configuration value controls how long to keep those records if they are not used. setting value to 0 means never purge. Setting it to > 0 means purge after this many days. |
taskScheduler.cronExpression | this option can be used to tweak when the cron job will run to check and purge old session data. example to run monday – friday at 01:40, the expression could be: 0 40 1 ? * MON-FRI |
These are optional parameters in Compose:
| key | description | example value |
|---|---|---|
| more.no.admin.port | If specified, cng designer actions will be rejected unless request is on this port. You will need a HTTP connector in your servlet container that accepts this. Then configure your firewall to block the admin port from the DNZ. e.g <Connector connectionTimeout="20000" port="8083" protocol="HTTP/1.1" redirectPort="8444"/> | 8083 |
| more.no.flow.remote.directory | Optional key to configure all export agents to pass this string to flow remote agents, meaning they will store documents downloaded from Compose 5 in subfolders. | deliveries |
| more.no.formatFileUploadFilename | Optional key to instruct compose to append export agent delivery id to file upload attachments in compose 5 forms. In next version it is expect to be allowed to configure this in UI and thus renders this key obsolete. | true |
The URL defined in the property skin.url must also be defined in the web server. Either front end web server like Apache or IIS, or in Tomcat.
If using tomcat, you may setup a docBase in tomcat's configuration inside the host section in server.xml
<Context docBase="c:/cng/skins" path="/skins" reloadable="true"/>
Optional configuration instructions:
BankID configuration:
The BankID configuration file specifies the directory where the BankID related files are located, and the name of the merchant used on the installation
Properties:
name on merchant | |
bankid.properties.folder | directory where the BankID files are located. |
The bankid.properties.folder should be a directory in the classpath. The most common configuration is a sub directory of where the CNG configuration is located.