Versions Compared

Old Version 6

changes.mady.by.user Annegret Bernhardt

Saved on

compared with

New Version 7

changes.mady.by.user Annegret Bernhardt

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from space WINSTALLATION and version 7

Most of the settings can be used as delivered. However, it is necessary to configure some of the settings before you are able to use the platform services. The services are configured via the Settings tab in the detail view of each Node.js service. The configuration is provided as a JSON object.

Tip

Once you have configured the necessary settings, the URL for your Scheer PAS Administration is composed as follows: https://scheer-solutions.com:3443/auth/e2e/app/admin

The login credentials for the default admin user are

Login platform.admin
PasswordSch33rBP44$
Note
titleImportant Note

Change the password of the default admin user during your first login in the Scheer PAS Administration. Further information can be found on page Administrator Login.

Mandatory Settings

You have to adapt the following settings:

file-storage


SettingTypeDescriptionDefault
filesdestinationStringDirectory containing stored files.

mailer-service


SettingTypeDescriptionDefault
mailer-servicesenderStringThe sender of sent mails.Scheer PAS<pas@your-organization.com>
replyTo StringThe reply-To field of sent mails.noreply@your-organization.com
trustedDomains String[]Whitelist of domains the mailer-service is allowed to send mails to. ["your-organization.com"]
transport ObjectConnection details of the mail sending server. Details see below.{}
transportMails are sent by Nodemailers SMTP transport module. The options defined in section transport are forwarded to that module. Further options can be looked up in the Nodemailer SMTP transport documentation.
portNumberThe port of the SMTP server.25 or 465
hostStringThe hostname or IP of the SMTP server.localhost
secureBooleanIndicates if SSL is to be used.false
ignoreTLSBooleanIgnore server support for STARTTLS.false
requireTLSBooleanForces the mailer-service to use STARTTLS.false
nameStringThe name of the SMTP client.Hostname or IP address of machine running mailer-service.
lmtpBooleanForces usage of LMTP.false
authObjectAuthentication credentials for mail sending server. Details see below.
authuserStringUser to authenticate.
passStringPassword to authenticate.

service-repository


SettingTypeDescriptionDefault
service-repository mongoDbUrl StringThe URL of the database caching the service configurations maintained by the service-repository. mongodb://localhost:27017/one-platform

authenticator-service

The UI component of Scheer PAS Process Mining uses SSL for the client-server communication. All the client-server communication is handled by the authenticator-service. Therefore, the authenticator-service needs an SSL certificate and its private key. Using the BRIDGE, it is possible to manage the BRIDGE Certificate (for more information about the BRIDGE Certificate see BRIDGE Documentation > Managing the E2E Bridge Certificate). We recommend to use that certificate in the authenticator-service configuration.


SettingTypeDescriptionDefault
serverportNumberThe port providing access to all configured services and apps.3443
ssl  key  StringPath to the SSL private key./opt/e2e_bridge_data/proxies/conf/<node instance name>_key.pem
certStringPath to the SSL certificate./opt/e2e_bridge_data/proxies/conf/<node instance name>_cert.pem

Optional Settings

You may change the settings listed below, if you wish to adapt them to your environment:

Settings Applicable for all Services


SettingTypeDescriptionDefault
service-repositoryhostnameStringThe host providing the service-repository.localhost
port StringThe port of the service-repository.3017
protocol StringThe protocol of the service-repository.ws
reconnection BooleanSpecify, if this service shall try to reconnect the service-repository in case of connectivity loss.true
requiredServices ObjectSpecify the services required by the service-repository.{}
<service name> hostname StringThe host providing this service.localhost
port StringThe port of this service.
protocol StringThe protocol of this service.ws
requiredServices StringSpecify the services required by this service.{}

authenticator-service


SettingTypeDescriptionDefault
server publicAccess Number
3080
sslObjectPaths to the SSL files. Details see below.
sslcaStringPath to the certificate of the certificate authority.
redishostStringThe host name of the Session Storage.
portNumberThe port of the Session Storage.
passwordString

app favicon StringPath to the favicon for Login Page./app/favicon.ico
whitelist ObjectList with paths which don't need specific permissions for access.{"/favicon.ico":null,
"/manifest.json":null}
auth ObjectRoute settings for authentication.{"route":"/auth",
"static":"/app/auth"}
error ObjectRoute settings for errors.{"route":""/error",
"static":"/app/error"}
token ObjectRoute settings for authentication via route.{"route":"/token"}
bodyparserObjectSettings for the JSON body parser. Details see below.
pwforgottenObjectSettings for the Reset Password feature. Details see below.
bodyparserjsonObjectBodyparser settings.{"limit":"50mb"}
pwforgotten


routeStringRoute for Reset Password feature.*pwd/
expiresInMinutesNumberThe duration in minutes a password forgotten token is valid.15
appStringThe route of the userself-app.
pageStringThe hash suffix to use for password reset mail links./#/password-reset
io transports String[ ]

[websocket,

polling]

auth algorithm StringAlgorithm used to generate the secret key for user tokens.

HS512

expiresInMinutes NumberSession expiration time.240

services

Anchor
tenant
tenant

tenantStringThe tenant name.e2e
userService ObjectDetails see below.
userSelfServiceObjectDetails see below.
whitelist String[]List with paths not needing specific permissions for access.
services Object

Defines a mapping of client routes to the corresponding services:

  • The key is the client route (e.g. app/user-admin)
  • The value is an object holding the specific settings.

Details see below.


userService urlStringThe URL to the user-service.ws://localhost:3008
userSelfService urlStringThe URL to the userself-service.ws://localhost:4002
services <route>  targetStringThe URL to the service handling the requests from this route.
rewritesObject

A key-value mapping defining the HTML tags (keys) and HTML attributes (value), where the route part of the app URL is to be set.

E. g. rewrites: {base: "href"} leads to <base href="/<tenant>/<route>"> in the HTML markup of the app.


file-storage


SettingTypeDescriptionDefault
file-storage requiredServices ObjectSpecify the services required by the file-storage.
portStringThe port of this service.3004
filesObjectDetails see below.
filesrouteStringPath of the file-storage upload API./upload
mediumSizeNumberScale factor for medium size image.0.5
smallSizeNumberScale factor for small size image.0.25

mailer-service


SettingTypeDescriptionDefault
mailer-service requiredServices ObjectSpecify the services required by the mailer-service.
portStringThe port of this service.3013
paramPrefix StringPrefix introducing variables in the templates.#
templates Object

Specify the e-mail templates.

Details see below.


templates passwordForgottenTokenMail ObjectDefine settings regarding mails sent to users allowing them to reset their password. Details see below.
passwordForgottenRequest ObjectDefine settings regarding mails sent to the system administrator to reset an account password. Details see below.
defaultTemplate ObjectDetails see below.
userDeactivatedObjectDefine settings regarding mails sent to administrators once a user locked his account. Details see below.
passwordForgottenTokenMail subject StringThe subject of this template. Request: Forgot Password
html StringThe HTML content of this template. The password for the following account is lost: <br/> Name: #login <br/><br/><br/>Please follow the link and change your password.<br> The link expires after #expiretime minutes.<br> #link
passwordForgottenRequest subject StringThe subject of this template. Request: Forgot Password
html StringThe HTML content of this template. The password for the following account is lost: <br/> Name: #login <br/>System: #system <br/><br/>Please reset the password and inform the user.
defaultTemplate subject StringThe subject of this template.#subject
html StringThe HTML content of this template.#content
userDeactivatedsubjectStringThe subject of this template.

Benutzer

deaktiviert

htmlStringThe HTML content of this template.Aufgrund zu vieler fehlgeschlagener Anmeldeversuche wurde folgender Benutzer deaktiviert: <br/> Benutzer-UUID: #login <br/>System: #system

persistence-service


SettingTypeDescriptionDefault
persistence-service requiredServices ObjectSpecify the services required by the persistence-service.
portStringThe port of this service.3001
maxResults NumberMaximum number of documents returned.1000000
mongoDB ObjectDetails see below.
engineMapping Object[]Details see below.
<engines>
Details see below.
mongoDB database StringThe database storing the collections of the user database. Should not be changed.one-platform
hostnameStringThe host providing the MongoDB installation.

mongohost

portNumberThe port of the MongoDB installation.

27017

engine StringThe engine name of this connection.mongoDB
params StringConnection parameters to use when connecting the user database.?bufferMaxEntries=10&poolSize=100
engineMapping   objectType
The collection name that maps to the engine entry.logType
engine
Key for the engine definition that holds connection details.

mongoDB_logs

collection
For BPaaS use only: The collection name without database definition.bpaasLogs
<engines>
Object[]Engines with connection details to be used in the engineMapping.

"mongoDB_logs": {
"hostname": "localhost",
 "port": 27017,
 "engine": "mongoDB",
 "database": "logs"
}

hostnameStringThe host providing the engine.
portNumberThe port of the engine.
engineStringThe key of the engine.
databaseStringThe database storing the collections of the engine.

service-repository


SettingTypeDescriptionDefault
service-repositoryrequiredServicesObjectSpecify the services required by the service-repository.
portStringThe port of this service.3017
jsDoc ObjectDetails see below.
jsDoc route String
/jsdoc
destination String

user-service


SettingTypeDescriptionDefault
user-service requiredServices ObjectSpecify the services required by the user-service.
portStringThe port of this service.3008
validation ObjectDetails see below.
bpaasSystem BooleanSpecifies if the system managed by this user-service is a BPaaS installation.false
exportConfig ObjectDetails see below.
validation password StringSpecify a regular expression, a given user password has to match.^(?=[^\\d_].*?\\d)\\w(\\w|[!@#$%]){7,42}$
loginId StringSpecify a regular expression, a given user name has to match.^([\\w\\.\\-_!])+$|^(?:[a-z0-9!#$%&*+/=?^_`{|}~-]+(?:\\.[a-z0-9!#$%&*+\/=?^_`{|}~-]+)*|\"(?:[\\x01-\\x08\\x0b\\x0c\\x0e-\\x1f\\x21\\x23-\\x5b\\x5d-\\x7f]|\\\\[\\x01-\\x09\\x0b\\x0c\\x0e-\\x7f])*\")@(?:(?:[a-z0-9](?:[a-z0-9-]*[a-z0-9])?\\.)+[a-z0-9](?:[a-z0-9-]*[a-z0-9])?|\\[(?:(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9]))\\.){3}(?:(2(5[0-5]|[0-4][0-9])|1[0-9][0-9]|[1-9]?[0-9])|[a-z0-9-]*[a-z0-9]:(?:[\\x01-\\x08\\x0b\\x0c\\x0e-\\x1f\\x21-\\x5a\\x53-\\x7f]|\\\\[\\x01-\\x09\\x0b\\x0c\\x0e-\\x7f])+)\\])$
exportConfig template StringThe name of the file used as template for exports.adminAppExport.xlsx
namespace StringNamespace grouping the exported files in the file-storage service.userExports
replaceKey StringPlaceholder in the template that is replaced by the exported data.StartDataHere

Otp
Floatingfalse
maxHLevel2

Rp
Rde