~ Copyright 2005-2011 WSO2, Inc. (
~ Licensed under the Apache License, Version 2.0 (the "License");
~ you may not use this file except in compliance with the License.
~ You may obtain a copy of the License at
~ Unless required by applicable law or agreed to in writing, software
~ distributed under the License is distributed on an "AS IS" BASIS,
~ See the License for the specific language governing permissions and
~ limitations under the License.
<project default="setup" basedir=".." xmlns:ac="antlib:net.sf.antcontrib">
<property name="carbon.home" value="${basedir}"/>
<property name="lib" value="${carbon.home}/repository/lib"/>
<property name="tempdir" value="${carbon.home}/../tmp/setup"/>
<property name="output.dir" value="${carbon.home}/../tmp/wso2"/>
<target name="setup">
<mkdir dir="${lib}"/>
<copy todir="${lib}" overwrite="false">
<fileset dir="${carbon.home}/../components/plugins/">
<include name="org.wso2.carbon.ndatasource*.jar"/>
<include name="org.wso2.carbon.securevault*.jar"/>
<include name="org.wso2.carbon.queuing*.jar"/>
<include name="jdbc-pool*.jar"/>
<include name="axis2*.jar"/>
<include name="axiom*.jar"/>
<include name="woden*.jar"/>
<include name="wsdl4j*.jar"/>
<include name="xerces*.jar"/>
<include name="xalan*.jar"/>
<include name="xml-apis*.jar"/>
<include name="XmlSchema*.jar"/>
<include name="neethi*.jar"/>
<include name="backport-util-concurrent*.jar"/>
<include name="commons-httpclient*.jar"/>
<include name="commons-codec*.jar"/>
<include name="commons-fileupload*.jar"/>
<include name="httpcore*.jar"/>
<include name="org.wso2.carbon.core*.jar"/>
<include name="org.wso2.carbon.utils*.jar"/>
<include name="jibx*.jar"/>
<include name="axis2-jibx*.jar"/>
<include name="rampart-policy*.jar"/>
<include name="rampart-core*.jar"/>
<include name="wss4j*.jar"/>
<include name="bcel*.jar"/>
<include name="hibernate*.jar"/>
<include name="derby*.jar"/>
<include name="abdera*.jar"/>
<include name="org.wso2.carbon.registry.core*.jar"/>
<include name="*.jar"/><!-- used by the g-reg ws client sample-->
<include name="org.wso2.carbon.registry.admin.api*.jar"/><!-- used for g-reg JMX API-->
<include name="org.wso2.carbon.authenticator.proxy*.jar"/> <!-- used by the g-reg ws client sample-->
<include name="org.wso2.carbon.authenticator.stub*.jar"/> <!-- used by the g-reg ws client sample-->
<include name="org.wso2.carbon.user.core*.jar"/>
<include name="opensaml*.jar"/>
<include name="xmlbeans*.jar"/>
<include name="geronimo-*.jar"/>
<include name="ehcache*.jar"/> <!-- The following 4 jars required in using Embedded Registry. -->
<include name="commons-pool*.jar"/>
<include name="commons-dbcp*.jar"/>
<include name="commons-io*.jar"/>
<include name="compass*.jar"/>
<include name="org.wso2.carbon.rm*.jar"/>
<include name="rampart-trust*.jar"/>
<include name="*.jar"/>
<include name="org.wso2.carbon.addressing*.jar"/>
<include name="org.wso2.carbon.xfer*.jar"/>
<include name="org.wso2.carbon.mex*.jar"/>
<include name="savan-core*.jar"/>
<include name="xkms*.jar"/>
<include name="derby*.jar"/> <!-- This is required by WSAS DS Sample. Please don't remove -->
<include name="org.wso2.carbon.discovery.core*.jar"/>
<include name="org.osgi.core*.jar"/><!-- used by the g-reg jcr api-->
<include name="javax.jcr*.jar"/><!-- used by the g-reg ws jcr api-->
<include name="org.wso2.carbon.registry.jcr*.jar"/><!-- used by the g-reg ws jcr api-->
<include name="org.wso2.carbon.dataservices.core*.jar"/> <!-- Required by DSS for custom validators etc.. -->
<include name="org.wso2.carbon.governance.api*.jar"/>
<include name="org.wso2.carbon.registry.extensions*.jar"/>
<include name="jettison*.jar"/><!-- used by the JSON sample client in appserver -->
<include name="org.wso2.carbon.user.api*.jar"/>
<include name="org.wso2.carbon.registry.api*.jar"/>
<include name="org.wso2.carbon.base*.jar"/>
<include name="org.wso2.carbon.logging*.jar"/>
<include name="org.wso2.securevault*.jar"/> <!-- used by the G-reg jcr sample-->
<include name="org.wso2.pwprovider*.jar"/>
<include name="org.wso2.carbon.rule.core*.jar"/>
<include name="cxf-bundle*.jar"/><!-- used by the JAX-RS and JAX-WS sample cliets in appserver -->
<include name="spring.framework*.jar"/><!-- used by the JAX-RS and JAX-WS sample clients in appserver -->
<include name="*.jar"/><!-- used by the JAX-RS sample client in appserver -->
<!-- Copy policy xml files-->
<mkdir dir="${tempdir}"/>
<unzip dest="${tempdir}">
<fileset dir="${carbon.home}/../components/plugins/">
<include name="*.jar"/>
<delete dir="${tempdir}"/>
<!-- End Copy policy xml files-->
<unzip dest="${lib}">
<fileset dir="${carbon.home}/../components/plugins/">
<!--<include name="org.wso2.carbon.stax.*.jar"/>-->
<include name="org.wso2.carbon.utils*.jar"/>
<include name="h2_*.jar"/>
<copy todir="${lib}" overwrite="false">
<fileset dir="${carbon.home}/../lib">
<include name="commons-*.jar"/>
<include name="backport-util-concurrent-*.jar"/>
<move todir="${lib}">
<fileset dir="${lib}"/>
<mapper type="regexp" from="(.*).wso2v(.*)" to="\1-wso2v\2" />
<mapper type="regexp" from="(.*).SNAPSHOT(.*)" to="\1-SNAPSHOT\2" />
<delete dir="${lib}/META-INF"/>
<delete dir="${lib}/org"/>
<delete dir="${lib}/com"/>
<delete dir="${lib}/javax"/>
<target name="createWorker" description="Removes front end components from the server runtime">
<input message="You are about to delete all the front-end components from the server runtime. Do you really want to proceed?" addproperty="deleteJars" validargs="y,n" defaultvalue="n" />
<condition property="isApproved">
<isset property="deleteJars" />
<equals arg1="${deleteJars}" arg2="y" />
<antcall target="deleteUI" />
<!--remove the Frontend related jars from the plugins directory-->
<target name="deleteUI" if="isApproved">
<echo>Removing UI related jars located in : ${carbon.home}/repository/components/plugins</echo>
<delete includeEmptyDirs="true">
<fileset dir="${carbon.home}/../components/plugins/">
<include name="org.wso2.carbon.*ui_*" />
<include name="org.wso2.carbon.*stub_*" />
<include name="org.wso2.stratos.*ui_*" />
<include name="org.wso2.stratos.*stub_*" />
<include name="org.jaggeryjs.*ui_*" />
<include name="org.jaggeryjs.*stub_*" />
<include name="*" />
<include name="org.wso2.*styles_*" />
<include name="org.wso2.carbon.authenticator.proxy_*" />
<exclude name="*"/>
<!--create language bundles in dropins folder-->
<taskdef uri="antlib:net.sf.antcontrib"
<property name="" value="${carbon.home}/resources"/>
<property name="" value="${carbon.home}/dropins"/>
<property name="temp.dir" value="../temp"/>
<property name="last.dir" value="i18n"/>
<target name="localize" description="creating fragment bundles">
<available file="${}" type="dir" />
<echo message="Directory exists" />
<ac:for param="file">
<dirset dir="${}" includes="*"/>
<ac:var name="basename" unset="true"/>
<basename file="@{file}" property="basename"/>
<echo message="step1 = ${basename}"/>
<ac:var name="" unset="true" />
<ac:var name="fragmentHost.version" unset="true" />
<ac:propertyregex property="" input="${basename}" regexp="(.*)_(.*)" select="\1" />
<ac:propertyregex property="fragmentHost.version" input="${basename}" regexp="(.*)_(.*)" select="\2" />
<ac:var name="ExportPackage" unset="true" />
<ac:var name="FragmentHost" unset="true" />
<ac:var name="FragmentHostVersion" unset="true" />
<ac:var name="BundleSymbolicName" unset="true" />
<ac:var name="src.dir" unset="true" />
<property name="ExportPackage" value="${}"/>
<property name="FragmentHost" value="${}"/>
<property name="FragmentHostVersion" value="${fragmentHost.version}"/>
<property name="BundleSymbolicName" value="${}.languageBundle_${fragmentHost.version}"/>
<property name="src.dir" value="${}/${basename}"/>
<mkdir dir="${}"/>
<mkdir dir="${temp.dir}"/>
<ac:propertyregex property="propB" input="${ExportPackage}" regexp="\." replace="/" global="true" override="true" />
<echo message="step2 = ${propB}"/>
<ac:var name="dest.dir" unset="true" />
<property name="dest.dir" value="${temp.dir}\${ExportPackage}\${propB}\${last.dir}"/>
<mkdir dir="${dest.dir}"/>
<echo message="step3 = ${src.dir}"/>
<copy todir="${dest.dir}">
<fileset dir="${src.dir}"/>
<echo message="step4"/>
<jar destfile="${}/${BundleSymbolicName}.jar" basedir="${temp.dir}\${ExportPackage}">
<attribute name="Manifest-Version" value="1.0"/>
<attribute name="Build-Jdk" value="1.6.0_22"/>
<attribute name="Bundle-Description" value="Localized Bundle"/>
<attribute name="Bundle-Name" value="i18n Localized Bundle"/>
<attribute name="Bundle-SymbolicName" value="${BundleSymbolicName}"/>
<attribute name="Bundle-Vendor" value="Apache Software Foundation"/>
<attribute name="Bundle-Version" value="${FragmentHostVersion}"/>
<attribute name="Carbon-Component" value="UIBundle"/>
<attribute name="Export-Package" value="${ExportPackage}"/>
<attribute name="Fragment-Host" value="${FragmentHost}"/>
<echo message="step5"/>
<delete dir="${temp.dir}"/>
<fail message="Resource directory does not Exists at CARBON_HOME.Please refer the section 8 of the README.txt file for more details."/>
@echo off
REM ---------------------------------------------------------------------------
REM Copyright 2005-2009 WSO2, Inc.
REM Licensed under the Apache License, Version 2.0 (the "License");
REM you may not use this file except in compliance with the License.
REM You may obtain a copy of the License at
REM Unless required by applicable law or agreed to in writing, software
REM distributed under the License is distributed on an "AS IS" BASIS,
REM See the License for the specific language governing permissions and
REM limitations under the License.
rem ---------------------------------------------------------------------------
rem Main Script for WSO2 Carbon
rem Environment Variable Prequisites
rem CARBON_HOME Home of CARBON installation. If not set I will try
rem to figure it out.
rem JAVA_HOME Must point at your Java Development Kit installation.
rem JAVA_OPTS (Optional) Java runtime options used when the commands
rem is executed.
rem ---------------------------------------------------------------------------
rem ----- if JAVA_HOME is not set we're not happy ------------------------------
if "%JAVA_HOME%" == "" goto noJavaHome
if not exist "%JAVA_HOME%\bin\java.exe" goto noJavaHome
set CARBON_DUMP_HOME=%~sdp0..
SET curDirectory=%cd%
SET curDrive=%cd:~0,1%
SET wsasDrive=%CARBON_DUMP_HOME:~0,1%
if not "%curDrive%" == "%wsasDrive%" %wsasDrive%:
goto processInputs
echo "You must set the JAVA_HOME variable before running CARBON."
goto end
rem ----- Process the input command -------------------------------------------
set PID=
rem Slurp the command line arguments. This loop allows for an unlimited number
rem of arguments (up to the command line limit, anyway).
if ""%1""=="""" goto invalidUsage
if ""%1""==""-carbonHome"" goto setupCarbonHome
if ""%1""==""--carbonHome"" goto setupCarbonHome
if ""%1""==""carbonHome"" goto setupCarbonHome
if ""%1""==""-pid"" goto setupPID
if ""%1""==""--pid"" goto setupPID
if ""%1""==""pid"" goto setupPID
if "%CARBON_HOME%"=="" goto invalidUsage
if "%PID%"=="" goto invalidUsage
goto startCollectingData
rem ----- setupCarbonHome-------------------------------------------------------
if "%CARBON_HOME%"=="" goto invalidUsage
goto checkPID
rem ----- setupPID-------------------------------------------------------
set PID=%1
if "%PID%"=="" goto invalidUsage
goto checkCarbonHome
echo Start Collectiong data
SET DATE_TIME=%date:~-4,4%-%date:~-10,2%-%date:~-7,2%_%time:~0,2%-%time:~3,2%
echo %DATE_TIME%
set OS_INFO=%OUTPUT_DIR%\osinfo
set JAVA_INFO=%OUTPUT_DIR%\javainfo
set REPO_DIR=%OUTPUT_DIR%\repository
if exist %OUTPUT_ROOT_DIR% rd /q/s %OUTPUT_ROOT_DIR%
mkdir %OUTPUT_DIR%
mkdir %OS_INFO%
mkdir %REPO_DIR%
mkdir %REPO_DIR%\logs
mkdir %REPO_DIR%\conf
mkdir %REPO_DIR%\database
echo carbondump.bat##Generating the java memory dump...
jmap -dump:format=b,file=%MEMORY_DUMP_DIR%\java_heap_memory_dump.jmap %PID%
jmap -histo %PID% > %MEMORY_DUMP_DIR%\java_heap_histogram.txt
REM jmap -finalizerinfo %PID% > %MEMORY_DUMP_DIR%\objects_awaiting_finalization.txt
REM jmap -heap %PID% >> %MEMORY_DUMP_DIR%\java_heap_summary.txt
REM jmap -permstat %PID% >> %MEMORY_DUMP_DIR%\java_permgen_statistics.txt
echo carbondump.bat##Generating the thread dump...
jstack %PID% > %OUTPUT_DIR%\thread_dump.txt
echo carbondump.bat##Capturing system configuration information...
systeminfo > %OS_INFO%\system_information.txt
echo carbondump.bat##Capturing information about the network connection and IP information...
ipconfig /all > %OS_INFO%\network_connection_information.txt
echo carbondump.bat##Capturing information on active TCP connections, ports on which the computer is listening...
netstat -a -o > %OS_INFO%\activec_connections.txt
echo carbondump.bat##Capturing information list of running tasks...
tasklist /v > %OS_INFO%\running_tasks_list.txt
echo carbondump.bat##Directory structure...
echo Use the command "type directory_structure.txt" to view the content properly > %OUTPUT_DIR%\directory_structure.txt
tree >> %OUTPUT_DIR%\directory_structure.txt
echo carbondump.bat##Capturing OS Environment Variables...
set > %OS_INFO%\os_env_variables.txt
REM echo "\ the checksums of all the files in the CARBON_HOME directory..."
REM check fciv is exit or not
where fciv > temp.txt
if errorlevel==1 goto noFCIV
set /p _fciv=< temp.txt
if not exist %_fciv% goto noFCIV
fciv %CARBON_HOME% -r -md5 > %OUTPUT_DIR%\checksum_values.txt
goto endmd5
echo File Checksum Integrity Verifier(FCIV) doesn't exist in class path
goto endmd5
del temp.txt
REM ##TODO out all the carbon info to a single file, java, vesion, os version, carbon version
REM echo "Product"'\t\t\t'": "`cat $CARBON_HOME/bin/version.txt` > $OUTPUT_DIR/carbon_server_info.txt
REM echo "WSO2 Carbon Framework"'\t'": "`cat $CARBON_HOME/bin/wso2carbon-version.txt` >> $OUTPUT_DIR/carbon_server_info.txt
REM echo "Carbon Home"'\t\t'": "`echo $CARBON_HOME` >> $OUTPUT_DIR/carbon_server_info.txt
REM echo "Operating System Info"'\t'": "`uname -a` >> $OUTPUT_DIR/carbon_server_info.txt
REM echo "Java Home"'\t\t'": "`echo $JAVA_HOME` >> $OUTPUT_DIR/carbon_server_info.txt
REM java -version 2> $OUTPUT_DIR/temp_java_version.txt
REM echo "Java Version"'\t\t'": "`cat $OUTPUT_DIR/temp_java_version.txt | grep -h "java version" | mawk '{print $3}'` >> $OUTPUT_DIR/carbon_server_info.txt
REM echo "Java VM"'\t\t\t'": "`cat $OUTPUT_DIR/temp_java_version.txt | grep -h "Java HotSpot"` >> $OUTPUT_DIR/carbon_server_info.txt
REM rm -rf $OUTPUT_DIR/temp_java_version.txt
echo carbondump.bat##Copying log files...
copy %CARBON_HOME%\repository\logs\ %REPO_DIR%\logs
echo carbondump.bat##Copying conf files...
copy %CARBON_HOME%\conf\ %REPO_DIR%\conf
echo carbondump.bat##Copying database...
copy %CARBON_HOME%\repository\database\ %REPO_DIR%\database
echo carbondump.bat##Compressing the carbondump...
jar cvf %CARBON_DUMP_HOME%\carbondump_%DATE_TIME%.jar carbondump_%DATE_TIME%
rename carbondump_%DATE_TIME%.jar
echo carbondump: %CARBON_DUMP_HOME%\
cd %curDirectory%
goto end
echo Usage: carbondump.bat [-carbonHome path] [-pid of the carbon instance]
echo e.g. carbondump.bat -carbonHome C:\user\wso2carbon-3.2.0\ -pid 5151
# ----------------------------------------------------------------------------
# Copyright 2005-2009 WSO2, Inc.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# See the License for the specific language governing permissions and
# limitations under the License.
# ----------------------------------------------------------------------------
# Environment Variable Prequisites
# JAVA_HOME Must point at your Java Development Kit installation.
# JAVA_OPTS (Optional) Java runtime options used when the commands
# is executed.
# NOTE: Borrowed generously from Apache Tomcat startup scripts.
# -----------------------------------------------------------------------------
# OS specific support. $var _must_ be set to either true or false.
case "`uname`" in
CYGWIN*) cygwin=true;;
MINGW*) mingw=true;;
OS400*) os400=true;;
Darwin*) darwin=true
if [ -z "$JAVA_VERSION" ] ; then
echo "Using Java version: $JAVA_VERSION"
if [ -z "$JAVA_HOME" ] ; then
# resolve links - $0 may be a softlink
while [ -h "$PRG" ]; do
ls=`ls -ld "$PRG"`
link=`expr "$ls" : '.*-> \(.*\)$'`
if expr "$link" : '.*/.*' > /dev/null; then
PRG=`dirname "$PRG"`/"$link"
# Get standard environment variables
PRGDIR=`dirname "$PRG"`
CARBON_DUMP_HOME=`cd "$PRGDIR/.." ; pwd`
# For Cygwin, ensure paths are in UNIX format before anything is touched
if $cygwin; then
[ -n "$JAVA_HOME" ] && JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
# For OS400
if $os400; then
# Set job priority to standard for interactive (interactive - 6) by using
# the interactive priority - 6, the helper threads that respond to requests
# will be running at the same priority as interactive jobs.
COMMAND='chgjob job('$JOBNAME') runpty(6)'
system $COMMAND
# Enable multi threading
# For Migwn, ensure paths are in UNIX format before anything is touched
if $mingw ; then
[ -n "$JAVA_HOME" ] &&
JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
if [ -z "$JAVACMD" ] ; then
if [ -n "$JAVA_HOME" ] ; then
if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
# IBM's JDK on AIX uses strange locations for the executables
if [ ! -x "$JAVACMD" ] ; then
echo "Error: JAVA_HOME is not defined correctly."
exit 1
# if JAVA_HOME is not set we're not happy
if [ -z "$JAVA_HOME" ]; then
echo "You must set the JAVA_HOME variable."
exit 1
# ----- Process the input command ----------------------------------------------
for c in $*
if [ "$c" = "--carbonHome" ] || [ "$c" = "-carbonHome" ] || [ "$c" = "carbonHome" ]; then
elif [ "$TEMP" = "--carbonHome" ]; then
if [ -z "$CARBON_HOME" ]; then
elif [ "$c" = "--pid" ] || [ "$c" = "-pid" ] || [ "$c" = "pid" ]; then
elif [ "$TEMP" = "--pid" ]; then
if [ -z "$PID" ]; then
if [ -z "$CARBON_HOME" ] || [ -z "$PID" ] ; then
echo "Usage: [-carbonHome path] [-pid of the carbon instance]"
echo " e.g. -carbonHome /home/user/wso2carbon-3.0.0/ -pid 5151"
exit 1
#time stamp that we are going to use for this execution.
DATE_TIME=`date +%F`_`date +%H-%M-%S`
#Checks whether the output directory exists or not.
if [ -d "$OUTPUT_ROOT_DIR" ];
mkdir $OS_INFO
mkdir -p $REPO_DIR/logs
mkdir $REPO_DIR/conf
mkdir $REPO_DIR/database
echo "\ the java memory dump..."
jmap $PID > $MEMORY_DUMP_DIR/shared_object_mappings.txt
jmap -dump:format=b,file=$MEMORY_DUMP_DIR/java_heap_memory_dump.jmap $PID
jmap -histo $PID > $MEMORY_DUMP_DIR/java_heap_histogram.txt
jmap -finalizerinfo $PID > $MEMORY_DUMP_DIR/objects_awaiting_finalization.txt
jmap -heap $PID > $MEMORY_DUMP_DIR/java_heap_summary.txt
jmap -permstat $PID > $MEMORY_DUMP_DIR/java_permgen_statistics.txt
echo "\ the thread dump..."
jstack $PID > $OUTPUT_DIR/thread_dump.txt
echo "\ OS information..."
lsmod > $OS_INFO/os_module_list.txt
cat /proc/meminfo > $OS_INFO/os_meminfo.txt
cat /proc/cpuinfo > $OS_INFO/os_cpuinfo.txt
netstat -tulpn > $OS_INFO/os_open_ports.txt
ifconfig -a > $OS_INFO/os_network_cards.txt
dpkg --list > $OS_INFO/os_installed_software_unix_linux.txt
rpm -qa > $OS_INFO/os_installed_software_redhat_fedora.txt
w > $OS_INFO/os_system_up_time.txt
lsmod | mawk '{print $1}' | xargs modinfo 2>/dev/null > $OS_INFO/os_module_info.txt
echo "\ the list of running task in the system..."
top -b -n1 > $OS_INFO/os_running_tasks.txt
echo "\ OS Environment Variables..."
env > $OS_INFO/os_env_variables.txt
echo "\ the checksums of all the files in the CARBON_HOME directory..."
find $CARBON_HOME -iname "*" -type f | grep -v ./samples | grep -v ./docs | sort | xargs md5sum > $OUTPUT_DIR/checksum_values.txt
##TODO out all the carbon info to a single file, java, vesion, os version, carbon version
echo "Product"'\t\t\t'": "`cat $CARBON_HOME/bin/version.txt` > $OUTPUT_DIR/carbon_server_info.txt
echo "WSO2 Carbon Framework"'\t'": "`cat $CARBON_HOME/bin/wso2carbon-version.txt` >> $OUTPUT_DIR/carbon_server_info.txt
echo "Carbon Home"'\t\t'": "`echo $CARBON_HOME` >> $OUTPUT_DIR/carbon_server_info.txt
echo "Operating System Info"'\t'": "`uname -a` >> $OUTPUT_DIR/carbon_server_info.txt
echo "Java Home"'\t\t'": "`echo $JAVA_HOME` >> $OUTPUT_DIR/carbon_server_info.txt
java -version 2> $OUTPUT_DIR/temp_java_version.txt
echo "Java Version"'\t\t'": "`cat $OUTPUT_DIR/temp_java_version.txt | grep -h "java version" | mawk '{print $3}'` >> $OUTPUT_DIR/carbon_server_info.txt
echo "Java VM"'\t\t\t'": "`cat $OUTPUT_DIR/temp_java_version.txt | grep -h "Java HotSpot"` >> $OUTPUT_DIR/carbon_server_info.txt
rm -rf $OUTPUT_DIR/temp_java_version.txt
echo "\ log files..."
cp -r $CARBON_HOME/repository/logs/* $REPO_DIR/logs
echo "\ conf files..."
cp -r $CARBON_HOME/conf/* $REPO_DIR/conf
echo "\ database..."
cp -r $CARBON_HOME/repository/database/* $REPO_DIR/database
echo "\ a directory listing..."
find $CARBON_HOME -type d | sort | grep -v ./samples | grep -v ./docs > $OUTPUT_DIR/directory_listing.txt
echo "\ the carbondump..."
zip -r $CARBON_DUMP_HOME/carbondump-$ carbondump-$DATE_TIME
echo "\ncarbondump: "$CARBON_DUMP_HOME/carbondump-$"\n"
@echo off
rem ---------------------------------------------------------------------------
rem Script for changing the password of a CARBON user
rem Environment Variable Prequisites
rem JAVA_HOME Must point at your Java Development Kit installation.
rem JAVA_OPTS (Optional) Java runtime options
rem ---------------------------------------------------------------------------
set CURRENT_DIR=%cd%
rem Make sure prerequisite environment variables are set
if not "%JAVA_HOME%" == "" goto gotJavaHome
echo The JAVA_HOME environment variable is not defined
echo This environment variable is needed to run this program
goto end
if not exist "%JAVA_HOME%\bin\java.exe" goto noJavaHome
goto okJavaHome
echo The JAVA_HOME environment variable is not defined correctly
echo This environment variable is needed to run this program
echo NB: JAVA_HOME should point to a JDK/JRE
goto end
set CURRENT_DIR = %cd%
rem check the CARBON_HOME environment variable
if not "%CARBON_HOME%" == "" goto gotHome
if exist "%CARBON_HOME\bin\version.txt" goto okHome
rem guess the home. Jump one directory up to check if that is the home
cd ..
set CARBON_HOME=%cd%
if not exist "%CARBON_HOME%\bin\version.txt" goto pathError
SET curDrive=%cd:~0,1%
SET wsasDrive=%CARBON_HOME:~0,1%
if not "%curDrive%" == "%wsasDrive%" %wsasDrive%:
goto okHome
set CARBON_HOME=%~dp0..
if exist "%CARBON_HOME%\bin\version.txt" goto okHome
echo The CARBON_HOME environment variable is not defined correctly
echo This environment variable is needed to run this program
goto end
setlocal EnableDelayedExpansion
rem loop through the libs and add them to the class path
call ant -buildfile "%CARBON_HOME%"\bin\build.xml
FOR %%C in ("%CARBON_HOME%\wso2\lib\*.jar") DO set CARBON_CLASSPATH=!CARBON_CLASSPATH!;./wso2/lib/%%~nC%%~xC
FOR %%C in ("%CARBON_HOME%\wso2\lib\api*.jar") DO set CARBON_CLASSPATH=!CARBON_CLASSPATH!;./wso2/lib/api/%%~nC%%~xC
FOR %%C in ("%CARBON_HOME%\repository\lib\*.jar") DO set CARBON_CLASSPATH=!CARBON_CLASSPATH!;./repository/lib/%%~nC%%~xC
set CARBON_CLASSPATH=.\lib\patches;.\conf;%CARBON_CLASSPATH%
rem ----- Execute The Requested Command ---------------------------------------
set _RUNJAVA="%JAVA_HOME%\bin\java"
%_RUNJAVA% %JAVA_OPTS% -cp "%CARBON_CLASSPATH%" org.wso2.carbon.core.util.PasswordUpdater %*
if not "%curDrive%" == "%wsasDrive%" %curDrive%:
# ----------------------------------------------------------------------------
# Copyright 2005,2006 WSO2, Inc.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# See the License for the specific language governing permissions and
# limitations under the License.
# -----------------------------------------------------------------------------
# Environment Variable Prequisites
# CARBON_HOME Home of CARBON installation. If not set I will try
# to figure it out.
# JAVA_HOME Must point at your Java Development Kit installation.
# NOTE: Borrowed generously from Apache Tomcat startup scripts.
# if JAVA_HOME is not set we're not happy
if [ -z "$JAVA_HOME" ]; then
echo "You must set the JAVA_HOME variable before running chpasswd."
exit 1
# OS specific support. $var _must_ be set to either true or false.
case "`uname`" in
CYGWIN*) cygwin=true;;
OS400*) os400=true;;
# resolve links - $0 may be a softlink
while [ -h "$PRG" ]; do
ls=`ls -ld "$PRG"`
link=`expr "$ls" : '.*-> \(.*\)$'`
if expr "$link" : '.*/.*' > /dev/null; then
PRG=`dirname "$PRG"`/"$link"
# Get standard environment variables
PRGDIR=`dirname "$PRG"`
# Only set CARBON_HOME if not already set
[ -z "$CARBON_HOME" ] && CARBON_HOME=`cd "$PRGDIR/.." ; pwd`
# For Cygwin, ensure paths are in UNIX format before anything is touched
if $cygwin; then
[ -n "$JAVA_HOME" ] && JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
[ -n "$CARBON_HOME" ] && CARBON_HOME=`cygpath --unix "$CARBON_HOME"`
[ -n "$CLASSPATH" ] && CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
# For OS400
if $os400; then
# Set job priority to standard for interactive (interactive - 6) by using
# the interactive priority - 6, the helper threads that respond to requests
# will be running at the same priority as interactive jobs.
COMMAND='chgjob job('$JOBNAME') runpty(6)'
system $COMMAND
# Enable multi threading
ant -buildfile "$CARBON_HOME"/bin/build.xml
# update classpath
for f in "$CARBON_HOME"/wso2/lib/*.jar
for g in "$CARBON_HOME"/repository/lib/*.jar
for h in "$CARBON_HOME"/wso2/lib/api/*.jar
# For Cygwin, switch paths to Windows format before running java
if $cygwin; then
JAVA_HOME=`cygpath --absolute --windows "$JAVA_HOME"`
CARBON_HOME=`cygpath --absolute --windows "$CARBON_HOME"`
CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
JAVA_ENDORSED_DIRS=`cygpath --path --windows "$JAVA_ENDORSED_DIRS"`
# ----- Execute The Requested Command -----------------------------------------
$JAVA_HOME/bin/java -cp "$CARBON_CLASSPATH" org.wso2.carbon.core.util.PasswordUpdater $*
@echo off
REM Copyright 2005-2009 WSO2, Inc. (
REM Licensed to the Apache Software Foundation (ASF) under one
REM or more contributor license agreements. See the NOTICE file
REM distributed with this work for additional information
REM regarding copyright ownership. The ASF licenses this file
REM to you under the Apache License, Version 2.0 (the
REM "License"); you may not use this file except in compliance
REM with the License. You may obtain a copy of the License at
REM Unless required by applicable law or agreed to in writing,
REM software distributed under the License is distributed on an
REM KIND, either express or implied. See the License for the
REM specific language governing permissions and limitations
REM under the License.
rem ---------------------------------------------------------------------------
rem Startup script for the ciphertool
rem Environment Variable Prerequisites
rem CARBON_HOME Must point at your CARBON directory
rem JAVA_HOME Must point at your Java Development Kit installation.
rem JAVA_OPTS (Optional) Java runtime options
rem ---------------------------------------------------------------------------
rem Make sure prerequisite environment variables are set
if not "%JAVA_HOME%" == "" goto gotJavaHome
echo The JAVA_HOME environment variable is not defined
echo This environment variable is needed to run this program
goto end
if not exist "%JAVA_HOME%\bin\java.exe" goto noJavaHome
goto okJavaHome
echo The JAVA_HOME environment variable is not defined correctly
echo This environment variable is needed to run this program
echo NB: JAVA_HOME should point to a JDK/JRE
goto end
rem check the CARBON_HOME environment variable
set CURRENT_DIR=%cd%
if not "%CARBON_HOME%" == "" goto gotHome
if exist "%CARBON_HOME%\bin\ciphertool.bat" goto okHome
rem guess the home. Jump one directory up to check if that is the home
cd ..
set CARBON_HOME=%cd%
if exist "%CARBON_HOME%\bin\ciphertool.bat" goto okHome
rem set CARBON_HOME=%~sdp0..
set CARBON_HOME=%~sdp0..
if exist "%CARBON_HOME%\bin\ciphertool.bat" goto okHome
echo The CARBON_HOME environment variable is not defined correctly
echo This environment variable is needed to run this program
goto end
rem set the classes
setlocal EnableDelayedExpansion
rem loop through the libs and add them to the class path
call ant -buildfile "%CARBON_HOME%\bin\build.xml" -q
FOR %%c in ("%CARBON_HOME%\wso2\lib\*.jar") DO set CARBON_CLASSPATH=!CARBON_CLASSPATH!;".\wso2\lib\%%~nc%%~xc"
FOR %%C in ("%CARBON_HOME%\repository\lib\*.jar") DO set CARBON_CLASSPATH=!CARBON_CLASSPATH!;".\repository\lib\%%~nC%%~xC"
rem ----- Execute The Requested Command ---------------------------------------
set _RUNJAVA="%JAVA_HOME%\bin\java"
%_RUNJAVA% %JAVA_OPTS% -Dcarbon.home="%CARBON_HOME%" -cp "%CARBON_CLASSPATH%" org.wso2.ciphertool.CipherTool %*
# ----------------------------------------------------------------------------
# Copyright 2005-2009 WSO2, Inc. (
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# See the License for the specific language governing permissions and
# limitations under the License.
# -----------------------------------------------------------------------------
# ciphertool script for generating stub, skeleton and other required classes
# Environment Variable Prequisites
# CARBON_HOME Home of CARBON installation. If not set I will try
# to figure it out.
# JAVA_HOME Must point at your Java Development Kit installation.
# NOTE: Borrowed generously from Apache Tomcat startup scripts.
# if JAVA_HOME is not set we're not happy
if [ -z "$JAVA_HOME" ]; then
echo "You must set the JAVA_HOME variable before running CARBON."
exit 1
# OS specific support. $var _must_ be set to either true or false.
case "`uname`" in
CYGWIN*) cygwin=true;;
MINGW*) mingw=true;;
OS400*) os400=true;;
Darwin*) darwin=true
if [ -z "$JAVA_VERSION" ] ; then
echo "Using Java version: $JAVA_VERSION"
if [ -z "$JAVA_HOME" ] ; then
# resolve links - $0 may be a softlink
while [ -h "$PRG" ]; do
ls=`ls -ld "$PRG"`
link=`expr "$ls" : '.*-> \(.*\)$'`
if expr "$link" : '.*/.*' > /dev/null; then
PRG=`dirname "$PRG"`/"$link"
# Get standard environment variables
PRGDIR=`dirname "$PRG"`
# Only set CARBON_HOME if not already set
[ -z "$CARBON_HOME" ] && CARBON_HOME=`cd "$PRGDIR/.." ; pwd`
# For Cygwin, ensure paths are in UNIX format before anything is touched
if $cygwin; then
[ -n "$JAVA_HOME" ] && JAVA_HOME=`cygpath --unix "$JAVA_HOME"`
[ -n "$CARBON_HOME" ] && CARBON_HOME=`cygpath --unix "$CARBON_HOME"`
[ -n "$CLASSPATH" ] && CLASSPATH=`cygpath --path --unix "$CLASSPATH"`
# For OS400
if $os400; then
# Set job priority to standard for interactive (interactive - 6) by using
# the interactive priority - 6, the helper threads that respond to requests
# will be running at the same priority as interactive jobs.
COMMAND='chgjob job('$JOBNAME') runpty(6)'
system $COMMAND
# Enable multi threading
# For Migwn, ensure paths are in UNIX format before anything is touched
if $mingw ; then
[ -n "$CARBON_HOME" ] &&
CARBON_HOME="`(cd "$CARBON_HOME"; pwd)`"
[ -n "$JAVA_HOME" ] &&
JAVA_HOME="`(cd "$JAVA_HOME"; pwd)`"
[ -n "$AXIS2_HOME" ] &&
CARBON_HOME="`(cd "$CARBON_HOME"; pwd)`"
# TODO classpath?
# update classpath
for f in "$CARBON_HOME"/wso2/lib/org.wso2.ciphertool*.jar
for h in "$CARBON_HOME"/wso2/components/plugins/*.jar
# For Cygwin, switch paths to Windows format before running java
if $cygwin; then
JAVA_HOME=`cygpath --absolute --windows "$JAVA_HOME"`
CARBON_HOME=`cygpath --absolute --windows "$CARBON_HOME"`
CLASSPATH=`cygpath --path --windows "$CLASSPATH"`
JAVA_ENDORSED_DIRS=`cygpath --path --windows "$JAVA_ENDORSED_DIRS"`
# ----- Execute The Requested Command -----------------------------------------
$JAVA_HOME/bin/java -Dcarbon.home="$CARBON_HOME" -classpath "$CARBON_CLASSPATH" org.wso2.ciphertool.CipherTool $*
<?xml version="1.0" encoding="ISO-8859-1"?>
~ Copyright (c) 2015, WSO2 Inc. ( All Rights Reserved.
~ WSO2 Inc. licenses this file to you under the Apache License,
~ Version 2.0 (the "License"); you may not use this file except
~ in compliance with the License.
~ You may obtain a copy of the License at
~ Unless required by applicable law or agreed to in writing,
~ software distributed under the License is distributed on an
~ KIND, either express or implied. See the License for the
~ specific language governing permissions and limitations
~ under the License.
This is the main server configuration file
${carbon.home} represents the carbon.home system property.
Other system properties can be specified in a similar manner.
<Server xmlns="">
Product Name
machine readable unique key to identify each product
Product Version
Host name or IP address of the machine hosting this server
This is will become part of the End Point Reference of the
services deployed on this server instance.
Host name to be used for the Carbon management console
The URL of the back end server. This is where the admin services are hosted and
will be used by the clients in the front end server.
This is required only for the Front-end server. This is used when seperating BE server from FE server
The URL of the index page. This is where the user will be redirected after signing in to the
carbon server.
<!-- IndexPageURL>/carbon/admin/index.jsp</IndexPageURL-->
For cApp deployment, we have to identify the roles that can be acted by the current server.
The following property is used for that purpose. Any number of roles can be defined here.
Regular expressions can be used in the role.
Ex : <Role>.*</Role> means this server can act any role
<!-- uncommnet this line to subscribe to a bam instance automatically -->
The fully qualified name of the server
Webapp context root of WSO2 Carbon management console.
Proxy context path is a useful parameter to add a proxy path when a Carbon server is fronted by reverse proxy. In addtion
to the proxy host and proxy port this parameter allows you add a path component to external URLs. e.g.
URL of the Carbon server ->
URL of the reverse proxy ->
appserver - proxy context path. This specially required whenever you are generating URLs to displace in
Carbon UI components.
<!-- In-order to get the registry http Port from the back-end when the default http transport is not the same-->
Number of items to be displayed on a management console page. This is used at the
backend server for pagination of various items.
<!-- The endpoint URL of the cloud instance management Web service -->
Ports used by this server
<!-- Ports offset. This entry will set the value of the ports defined below to
the define value + Offset.
e.g. Offset=2 and HTTPS port=9443 will set the effective HTTPS port to 9445
<!-- The JMX Ports -->
<!--The port RMI registry is exposed-->
<!--The port RMI server should be exposed-->
<!-- Embedded LDAP server specific ports -->
<!-- Port which embedded LDAP server runs -->
<!-- Port which KDC (Kerberos Key Distribution Center) server runs -->
Override datasources JNDIproviderPort defined in bps.xml and files
<!--Override receive port of thrift based entitlement service.-->
JNDI Configuration
The fully qualified name of the default initial context factory
The restrictions that are done to various JNDI Contexts in a Multi-tenant environment
Contexts that will be available only to the super-tenant
<!-- <SuperTenantOnly>
</SuperTenantOnly> -->
Contexts that are common to all tenants
<!-- <UrlContext>
</UrlContext> -->
All other contexts not mentioned above will be available on a per-tenant basis
(i.e. will not be shared among tenants)
Property to determine if the server is running an a cloud deployment environment.
This property should only be used to determine deployment specific details that are
applicable only in a cloud deployment, i.e when the server deployed *-as-a-service.
Property to determine whether usage data should be collected for metering purposes
<!-- The Max time a thread should take for execution in seconds -->
A flag to enable or disable Ghost Deployer. By default this is set to false. That is
because the Ghost Deployer works only with the HTTP/S transports. If you are using
other transports, don't enable Ghost Deployer.
Eager loading or lazy loading is a design pattern commonly used in computer programming which
will initialize an object upon creation or load on-demand. In carbon, lazy loading is used to
load tenant when a request is received only. Similarly Eager loading is used to enable load
existing tenants after carbon server starts up. Using this feature, you will be able to include
or exclude tenants which are to be loaded when server startup.
We can enable only one LoadingPolicy at a given time.
1. Tenant Lazy Loading
This is the default behaviour and enabled by default. With this policy, tenants are not loaded at
server startup, but loaded based on-demand (i.e when a request is received for a tenant).
The default tenant idle time is 30 minutes.
2. Tenant Eager Loading
This is by default not enabled. It can be be enabled by un-commenting the <EagerLoading> section.
The eager loading configurations supported are as below. These configurations can be given as the
value for <Include> element with eager loading.
(i)Load all tenants when server startup - *
(ii)Load all tenants except & - *,!,!
(iii)Load only & to be included -,
<!-- <EagerLoading>
Caching related configurations
<!-- Default cache timeout in minutes -->
Axis2 related configurations
Location of the Axis2 Services & Modules repository
This can be a directory in the local file system, or a URL.
1. /home/wso2wsas/repository/ - An absolute path
2. repository - In this case, the path is relative to CARBON_HOME
3. file:///home/wso2wsas/repository/
4. http://wso2wsas/repository/
Deployment update interval in seconds. This is the interval between repository listener
Location of the main Axis2 configuration descriptor file, a.k.a. axis2.xml file
This can be a file on the local file system, or a URL
1. /home/repository/axis2.xml - An absolute path
2. conf/axis2.xml - In this case, the path is relative to CARBON_HOME
3. file:///home/carbon/repository/axis2.xml
4. http://repository/conf/axis2.xml
ServiceGroupContextIdleTime, which will be set in ConfigurationContex
for multiple clients which are going to access the same ServiceGroupContext
Default Value is 30 Sec.
This repository location is used to crete the client side configuration
context used by the server when calling admin services.
<!-- This axis2 xml is used in createing the configuration context by the FE server
calling to BE server -->
<!-- If this parameter is set, the ?wsdl on an admin service will not give the admin service wsdl. -->
<!--WARNING-Use With Care! Uncommenting bellow parameter would expose all AdminServices in HTTP transport.
With HTTP transport your credentials and data routed in public channels are vulnerable for sniffing attacks.
Use bellow parameter ONLY if your communication channels are confirmed to be secured by other means -->
The default user roles which will be created when the server
is started up for the first time.
<Description>Default Administrator Role</Description>
<Description>Default User Role</Description>
Enable following config to allow Emails as usernames.
Security configurations
KeyStore which will be used for encrypting/decrypting passwords
and other sensitive information.
<!-- Keystore file location-->
<!-- Keystore type (JKS/PKCS12 etc.)-->
<!-- Keystore password-->
<!-- Private Key alias-->
<!-- Private Key password-->
System wide trust-store which is used to maintain the certificates of all
the trusted parties.
<!-- trust-store file location -->
<!-- trust-store type (JKS/PKCS12 etc.) -->
<!-- trust-store password -->
The Authenticator configuration to be used at the JVM level. We extend the
| to make it possible to authenticate to given servers and
Below is a sample configuration for a single authenticator. Please note that
all child elements are mandatory. Not having some child elements would lead to
exceptions at runtime.
<!-- <Credential> -->
the pattern that would match a subset of URLs for which this authenticator
would be used
<!-- <Pattern>regularExpression</Pattern> -->
the type of this authenticator. Allowed values are:
1. server
2. proxy
<!-- <Type>proxy</Type> -->
<!-- the username used to log in to server/proxy -->
<!-- <Username>username</Username> -->
<!-- the password used to log in to server/proxy -->
<!-- <Password>password</Password> -->
<!-- </Credential> -->
The Tomcat realm to be used for hosted Web applications. Allowed values are;
1. UserManager
2. Memory
If this is set to 'UserManager', the realm will pick users & roles from the system's
WSO2 User Manager. If it is set to 'memory', the realm will pick users & roles from
<!--Option to disable storing of tokens issued by STS-->
Security token store class name. If this is not set, default class will be
The temporary work directory
House-keeping configuration
true - Start House-keeping thread on server startup
false - Do not start House-keeping thread on server startup.
The user will run it manually as and when he wishes.
The interval in *minutes*, between house-keeping runs
The maximum time in *minutes*, temp files are allowed to live
in the system. Files/directories which were modified more than
"MaxTempFileLifetime" minutes ago will be removed by the
house-keeping task
Configuration for handling different types of file upload & other file uploading related
config parameters.
To map all actions to a particular FileUploadExecutor, use
The total file upload size limit in MB
Processors which process special HTTP GET requests such as ?wsdl, ?policy etc.
In order to plug in a processor to handle a special request, simply add an entry to this
The value of the Item element is the first parameter in the query string(e.g. ?wsdl)
which needs special processing
The value of the Class element is a class which implements
<!-- Deployment Synchronizer Configuration. t Enabled value to true when running with "svn based" dep sync.
In master nodes you need to set both AutoCommit and AutoCheckout to true
and in worker nodes set only AutoCheckout to true.
<!-- Deployment Synchronizer Configuration. Uncomment the following section when running with "registry based" dep sync.
In master nodes you need to set both AutoCommit and AutoCheckout to true
and in worker nodes set only AutoCheckout to true.
<!-- Mediation persistence configurations. Only valid if mediation features are available i.e. ESB -->
Server intializing code, specified as implementation classes of org.wso2.carbon.core.ServerInitializer.
This code will be run when the Carbon server is initialized
Indicates whether the Carbon Servlet is required by the system, and whether it should be
Carbon H2 OSGI Configuration
By default non of the servers start.
name="web" - Start the web server with the H2 Console
name="webPort" - The port (default: 8082)
name="webAllowOthers" - Allow other computers to connect
name="webSSL" - Use encrypted (HTTPS) connections
name="tcp" - Start the TCP server
name="tcpPort" - The port (default: 9092)
name="tcpAllowOthers" - Allow other computers to connect
name="tcpSSL" - Use encrypted (SSL) connections
name="pg" - Start the PG server
name="pgPort" - The port (default: 5435)
name="pgAllowOthers" - Allow other computers to connect
name="trace" - Print additional trace information; for all servers
name="baseDir" - The base directory for H2 databases; for all servers
<property name="web" />
<property name="webPort">8082</property>
<property name="webAllowOthers" />
<property name="webSSL" />
<property name="tcp" />
<property name="tcpPort">9092</property>
<property name="tcpAllowOthers" />
<property name="tcpSSL" />
<property name="pg" />
<property name="pgPort">5435</property>
<property name="pgAllowOthers" />
<property name="trace" />
<property name="baseDir">${carbon.home}</property>
<!--Disabling statistics reporter by default-->
<!-- Enable accessing Admin Console via HTTP -->
<!-- EnableHTTPAdminConsole>true</EnableHTTPAdminConsole -->
Default Feature Repository of WSO2 Carbon.
<RepositoryName>default repository</RepositoryName>
Configure API Management
<!--Uses the embedded API Manager by default. If you want to use an external
API Manager instance to manage APIs, configure below externalAPIManager-->
<!--Uncomment and configure API Gateway and
Publisher URLs to use external API Manager instance-->
<?xml version="1.0" encoding="ISO-8859-1"?>
~ Copyright (c) 2014, WSO2 Inc. ( All Rights Reserved.
~ Licensed under the Apache License, Version 2.0 (the "License");
~ you may not use this file except in compliance with the License.
~ You may obtain a copy of the License at
~ Unless required by applicable law or agreed to in writing, software
~ distributed under the License is distributed on an "AS IS" BASIS,
~ See the License for the specific language governing permissions and
~ limitations under the License.
<ApplicationAuthentication xmlns="">
ProxyMode allows framework to operate in either 'smart' mode
or 'dumb' mode.
smart = both local and federated authentication is supported
dumb = only federated authentication is supported
AuthenticationEndpointURL is location of the web app containing
the authentication related pages
Extensions allow extending the default behaviour of the authentication
AuthenticatorNameMappings allow specifying an authenticator
against a pre-defined alias (which will be used by other components.
E.g. Application Mgt component). This enables the usage of a custom
authenticator in place of an authenticator that gets packed with the
<AuthenticatorNameMapping name="BasicAuthenticator" alias="basic" />
<AuthenticatorNameMapping name="OAuthRequestPathAuthenticator" alias="oauth-bearer" />
<AuthenticatorNameMapping name="BasicAuthRequestPathAuthenticator" alias="basic-auth" />
<AuthenticatorNameMapping name="IWAAuthenticator" alias="iwa" />
<AuthenticatorNameMapping name="SAMLSSOAuthenticator" alias="samlsso" />
<AuthenticatorNameMapping name="OpenIDConnectAuthenticator" alias="openidconnect" />
<AuthenticatorNameMapping name="OpenIDAuthenticator" alias="openid" />
<AuthenticatorNameMapping name="PassiveSTSAuthenticator" alias="passive-sts" />
AuthenticatorConfigs allow specifying various configurations needed
by the authenticators by using any number of \'Parameter\' elements
<AuthenticatorConfig name="CustomAuthenticator" enabled="true" />
<Parameter name="paramName1">paramValue</Parameter>
<Parameter name="paramName2">paramValue</Parameter>
<AuthenticatorConfig name="BasicAuthenticator" enabled="true">
<!--Parameter name="UserNameAttributeClaimUri"></Parameter-->
<!--Parameter name="showAuthFailureReason">true</Parameter-->
<AuthenticatorConfig name="OAuthRequestPathAuthenticator" enabled="true" />
<AuthenticatorConfig name="BasicAuthRequestPathAuthenticator" enabled="true" />
<AuthenticatorConfig name="SAMLSSOAuthenticator" enabled="true">
<!--Parameter name="SignAuth2SAMLUsingSuperTenant">true</Parameter-->
<!--Parameter name="SAML2SSOManager">org.wso2.carbon.identity.application.authenticator.samlsso.manager.DefaultSAML2SSOManager</Parameter-->
<AuthenticatorConfig name="OpenIDConnectAuthenticator" enabled="true">
<!--Parameter name="IDTokenHandler">org.wso2.carbon.identity.application.authenticator.oidc.DefaultIDTokenHandler</Parameter-->
<!--Parameter name="ClaimsRetriever">org.wso2.carbon.identity.application.authenticator.oidc.OIDCUserInfoClaimsRetriever</Parameter-->
<AuthenticatorConfig name="OpenIDAuthenticator" enabled="true">
<Parameter name="LoginPage">/authenticationendpoint/</Parameter>
<Parameter name="TrustStorePath">/repository/resources/security/client-truststore.jks</Parameter>
<Parameter name="TrustStorePassword">wso2carbon</Parameter>
<!--Parameter name="OpenIDManager">org.wso2.carbon.identity.application.authenticator.openid.manager.DefaultOpenIDManager</Parameter>
<Parameter name="AttributesRequestor">org.wso2.carbon.identity.application.authenticator.openid.manager.SampleAttributesRequestor</Parameter-->
<AuthenticatorConfig name="GoogleOIDCAuthenticator" enabled="true">
<Parameter name="GoogleTokenEndpoint"></Parameter>
<Parameter name="GoogleAuthzEndpoint"></Parameter>
<Parameter name="GoogleUserInfoEndpoint"></Parameter>
<AuthenticatorConfig name="MicrosoftWindowsLive" enabled="true">
<Parameter name="AuthTokenEndpoint"></Parameter>
<Parameter name="AuthnEndpoint"></Parameter>
<Parameter name="UserInfoEndpoint"></Parameter>
<AuthenticatorConfig name="FacebookAuthenticator" enabled="true">
<Parameter name="AuthTokenEndpoint"></Parameter>
<Parameter name="AuthnEndpoint"></Parameter>
<Parameter name="UserInfoEndpoint"></Parameter>
<AuthenticatorConfig name="FIDOAuthenticator" enabled="true">
<Parameter name="FidoAuth">/authenticationendpoint/fido-auth.jsp</Parameter>
<AuthenticatorConfig name="YahooOAuth2Authenticator" enabled="true">
<Parameter name="YahooTokenEndpoint"></Parameter>
<Parameter name="YahooOAuthzEndpoint"></Parameter>
<Parameter name="YahooUserInfoEndpoint"></Parameter>
Sequences allow specifying authentication flows for different
registered applications. \'default\' sequence is taken if an
application specific sequence doesn't exist in this file or
in the Application Mgt module.
<!-- Default Sequence. This is mandatory -->
<Sequence appId="default">
<Step order="1">
<Authenticator name="BasicAuthenticator"/>
AuthenticationEndpointQueryParams are the request parameters
that would be sent to the AuthenticationEndpoint.
'action' defines the behaviour: if 'include', only the defined
parameters would be included in the request.
If 'exclude' specified, all the parameters received by the
Authentication Framework would be sent in the request except
the ones specified.
'sessionDataKey', 'type', 'relyingParty', 'sp' and 'authenticators'
parameters will be always sent. They should not be specified here.
<AuthenticationEndpointQueryParams action="exclude">
<AuthenticationEndpointQueryParam name="username"/>
<AuthenticationEndpointQueryParam name="password"/>
<AuthenticationEndpointQueryParam name="SAMLRequest"/>
Reference in new issue