To run WSO2 Enterprise Store (ES), you start the product server at the command line. You can then run the ES Publisher (Back Office), to configure and manage the store assets; while you can use the Store as an asset catalog. You can then run the ES Management Console to configure and manage the product.
The ES Management Console uses the default HTTP-NIO transport, which is configured in the <ES_HOME>/repository/conf/tomcat/catalina-server.xml
file. (<ES_HOME>
is the directory where you installed WSO2 ES.) You must properly configure the HTTP-NIO transport in this file to access the Management Console. For more information on the HTTP-NIO transport, see the related topics section at the bottom of this page.
The following sections describe how to run the product.
Starting the server
If you want your dynamic changes on asset type RXTs to take place as a hot deployment in ES, then first enable asset hot deployment before starting the server. For more information, see Asset Type Hot Deployment.
Follow the instructions below to start WSO2 ES based on the Operating System that you use.
On Windows/Linux/Mac OS
To start the server, you run <ES_HOME>/bin/wso2server.bat
(on Windows) or <ES_HOME>/bin/wso2server.sh
(on Linux/Mac OS) from the command prompt as described below. Alternatively, you can install and run the server as a Windows or Linux service (see the related topics section at the end of this page).
- Open a command prompt by following the instructions below.
- On Windows: Click Start -> Run, type
cmd
at the prompt, and then press Enter. - On Linux/Mac OS: Establish an SSH connection to the server, log into the text Linux console, or open a terminal window.
- Execute one of the following commands:
- To start the server in a typical environment:
- On Windows:
<ES_HOME>\bin\wso2server.bat --run
On Linux/Mac OS:
sh <ES_HOME>/bin/wso2server.sh
- On Windows:
To start the server in the background mode of Linux:
sh <ES_HOME>/bin/wso2server.sh start
To stop the server running in this mode, you will enter:sh <ES_HOME>/bin/wso2server.sh stop
To check for additional options you can use with the startup commands, type
-help
after the command, such as:
sh <ES_HOME>/bin/wso2server.sh -help
(see the related topics section at the end of this page).The operation log appears in the command window. When the product server has successfully started, the log displays the message "WSO2 Carbon started in 'n' seconds".
On Solaris
To start the server, you run <ES_HOME>/bin/wso2server.sh
from the Command Prompt as described below.
The following instructions are tested on an Oracle Solaris 10 8/11 x86 environment.
- Click Launch -> Run Applications, type
dtterm
at the Prompt, and then press Enter, to open a Command Prompt. - Navigate to the
<ES_HOME>/bin
directory using the Command Prompt. Execute the following command:
bash wso2server.sh
The operation log appears in the command window. When the product server has successfully started, the log displays the message "WSO2 Carbon started in 'n' seconds".
<ES_HOME>/bin/wso2server.sh
file, to start the product as a service/in nohup mode on Solaris.- Open the
<ES_HOME>/bin/wso2server.sh
file in a text editor. Search for the following occurrences:
nohup sh "$CARBON_HOME"/bin/wso2server.sh $args > /dev/null 2>&1 &
Replace the latter mentioned occurrences with the following.
nohup bash "$CARBON_HOME"/bin/wso2server.sh $args > /dev/null 2>&1 &
The only change is replacing
sh
withbash
. This is required only for Solaris.Start the product by following the above instructions.
Accessing the ES Consoles
Once the server has started, you can run the ES Management Console, Publisher Console or Store Console by typing its URL in a Web browser. For more information, see Accessing ES Consoles.
The following sections provide more information about running the ES Management Console:
Working with the URL
The URL appears next to “Mgt Console URL” in the start script log that is displayed in the command window. For example:
The URL for the ES Management Console should be in the following format:
https://<Server Host>:9443/carbon
http://<Server Host>:9763/carbon
You can use this URL to access the Management Console on this computer from any other computer connected to the Internet or LAN. When accessing the Management Console from the same server where it is installed, you can type localhost
instead of the IP address as follows:
https://localhost:9443/carbon
You can change the Management Console URL by modifying the value of the <MgtHostName>
property in the <ES_HOME>/repository/conf/carbon.xml
file. When the host is internal or not resolved by a DNS, map the hostname alias to its IP address in the /etc/hosts
file of your system, and then enter that alias as the value of the <MgtHostName>
property in carbon.xml
. For example:
In /etc/hosts
:
127.0.0.1 localhost
In carbon.xml
:
<MgtHostName>localhost</MgtHostName>
Signing in
At the sign-in screen, you can sign into the ES Management Console, Publisher Console or Store Console using admin as both the username and password.
When the ES Management Console, Publisher or Store sign-in page appears, the Web browser typically displays an "insecure connection" message, which requires your confirmation before you can continue.
The latter mentioned ES Consoles are based on the HTTPS protocol, which is a combination of HTTP and SSL protocols. This protocol is generally used to encrypt the traffic from the client to server for security reasons. The certificate it works with is used for encryption only and does not prove the server identity. Therefore, when you try to access these ES Console, a warning of untrusted connection is usually displayed. To continue working with this certificate, some steps should be taken to "accept" the certificate before access to the site is permitted. If you are using the Mozilla Firefox browser, this usually occurs only on the first access to the server, after which the certificate is stored in the browser database and marked as trusted. With other browsers, the insecure connection warning might be displayed every time you access the server.
This scenario is suitable for testing purposes, or for running the program on the company's internal networks. If you want to make these ES Consoles available to external users, your organization should obtain a certificate signed by a well-known certificate authority, which verifies that the server actually has the name it is accessed by and that this server actually belongs to the given organization.
Getting help
The tabs and menu items in the navigation pane on the left may vary depending on the features you have installed. To view information about a particular page, click the Help link at the top right corner of that page, or click the Docs link to open the documentation for full information on managing the product.
Configuring the session time-out
If you leave the ES Management Console unattended for a defined time, its login session will time out. The default timeout value is 15 minutes, but you can change this in the <ES_HOME>/repository/conf/tomcat/carbon/WEB-INF/web.xml
file as follows.
<session-config> <session-timeout>15</session-timeout> </session-config>
Restricting access to the Management Console and Web applications
You can restrict access to the Management Console of your product by binding the Management Console with selected IP addresses. You can either restrict access to the Management Console only, or you can restrict access to all Web applications in your server as explained below.
To control access only to the Management Console, add the IP addresses to the
<ES_HOME>/repository/conf/tomcat/carbon/META-INF/context.xml
file as follows:<Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="<IP-address-01>|<IP-address-02>|<IP-address-03>"/>
The
RemoteAddrValve
Tomcat valve defined in this file only applies to the Management Console, and thereby all outside requests to the Management Console are blocked.To control access to all Web applications deployed on your server, add the IP addresses to the
<ES_HOME>/repository/conf/context.xml
file as follows.<Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="<IP-address-01>|<IP-address-02>|<IP-address-03>"/>
The
RemoteAddrValve
Tomcat valve defined in this file applies to each Web application hosted on the WSO2 product server. Therefore, all outside requests to any Web application are blocked.You can also restrict access to particular servlets in a Web application by adding a Remote Address Filter to the
<ES_HOME>/repository/conf/tomcat/
file and by mapping that filter to the servlet URL. In the Remote Address Filter that you add, you can specify the IP addresses that should be allowed to access the servlet. The following example from aweb.xml
web.xml
file illustrates how access to the Management Console page (/carbon/admin/login.jsp
) is granted only to one IP address.<filter> <filter-name>Remote Address Filter</filter-name> <filter-class>org.apache.catalina.filters.RemoteAddrFilter</filter-class> <init-param> <param-name>allow</param-name> <param-value>127.0.01</param-value> </init-param> </filter> <filter-mapping> <filter-name>Remote Address Filter</filter-name> <url-pattern>/carbon/admin/login.jsp</url-pattern> </filter-mapping>
Any configurations, including values defined in the <ES_HOME>/repository/conf/tomcat/catalina-server.xml
file, apply to all Web applications and are globally available on the server, regardless of the host or cluster. For more information about using remote host filters, see the Apache Tomcat documentation.
Stopping the server
To stop the server, press Ctrl+C in the command window, or click the Shutdown/Restart link in the ES Management Console. If you started the server in background mode in Linux, enter the following command instead:
sh <ES_HOME>/bin/wso2server.sh stop