Pages

Subscribe:

Ads 468x60px

Featured Posts

Tuesday, September 30, 2014

WSO2 Carbon kernel 4.3.0 Alpha is Released!!!

Hi Folks,

WSO2 Carbon team is pleased announce the alpha release of the Carbon kernel 4.3.0.

WSO2 Carbon redefines middleware by providing an integrated and componentized middleware platform that adapts to the specific needs of any enterprise IT project - on premise or in the cloud. 100% open source and standards-based, WSO2 Carbon enables developers to rapidly orchestrate business processes, compose applications and develop services using WSO2 Developer Studio and a broad range of business and technical services that integrate with legacy, packaged and SaaS applications.

WSO2 Carbon kernel, the lean, modular, OSGi-based platform, is the base of the WSO2 Carbon platform. It is a composable server architecture which inherits modularity and dynamism from OSGi framework. WSO2 Carbon kernel can be considered as a framework for server development. All the WSO2 products are composed as a collection reusable components running on this kernel. These products/components inherits all the core services provided by Carbon kernel such as Registry/repository, User management, Transports, Caching, Clustering, Logging, Deployment related features.

You can download the alpha pack from the following location.

How to Contribute 

What's New In This Release
  • Simplified logging story with pluggable log provider support.
  • Upgraded versions of Hazelcast, Log4j, BouncyCastle.
  • Improved Composite application support.

Key Features
  • Composable Server Architecture - Provides a modular, light-weight, OSGi-based server development framework.
  • Carbon Application(CApp) deployment support.
  • Multi-Profile Support for Carbon Platform - This enable a single product to run on multiple modes/profiles.
  • Carbon + Tomcat JNDI Context - Provide ability to access both carbon level and tomcat level JNDI resources to applications using a single JNDI context.
  • Distributed Caching and Clustering functionality - Carbon kernel provides a distributed cache and clustering implementation which is based on Hazelcast- a group communication framework
  • Pluggable Transports Framework - This is based on Axis2 transports module.
  • Registry/Repository API- Provide core registry/repository API for component developers.
  • User Management API  - Provides a basic user management API for component developers.
  • Logging - Carbon kernel supports both Java logging as well as Log4j. Logs from both these sources will be aggregated to a single output
  • Pluggable artifact deployer framework - Kernel can be extended to deploy any kind of artifacts such as Web services, Web apps, Business processes, Proxy services, User stores etc.
  • Deployment Synchronization - Provides synchronization of deployed artifacts across a product cluster.
  • Ghost Deployment - Provides a lazy loading mechanism for deployed artifacts

  • Multi-tenancy support - The roots of the multi-tenancy in Carbon platform lies in the Carbon kernel. This feature includes tenant level isolation as well as lazy loading of tenants.


  • Fixed Issues

    Known Issues

    Contact us

    WSO2 Carbon developers can be contacted via the mailing lists:

    Thank for you interest in WSO2 Carbon Kernel

    --The WSO2 Carbon Team--

    Tuesday, September 9, 2014

    Enable Java Security Manager for WSO2 Products

    Hi everyone, in this post we are going to explore on how to enable java security manager for WSO2 products. For this we need to sign all the jars using the jarsigner program. For the learning purpose I will use the wso2carbon.jks java key store file, which ships default with WSO2 products.
    Special thanks goes to Sanjaya Ratnaweera who generously gave me the script files.. :)

    I am going to use the WSO2 Application Server 5.2.1 for the demonstrate purpose. 

    First of all download the WSO2AS 5.2.1 from the link provided above. Then extract it to your local machine. I assume that for this particular example the pack is being extracted to /home/aruna folder. Change the paths according to your environment.
    Make sure you are using java 1.6 version to sign the patches, since for 1.7 the packs may not be start.

    You can find the default java key store file in the /wso2as-5.2.1/repository/resources/security/wso2carbon.jks
    Then you have to sign the pack using the following command. (sign-packs.sh file is attached in the below scripts.zip file)

    ./sign-packs.sh /home/aruna/wso2as-5.2.1
    

    Then you have to sign the patch folders inside the pack.
    ./sign-patches.sh /home/aruna/wso2as-5.2.1/repository/components/patches/patch0001
    
    ./sign-patches.sh /home/aruna/wso2as-5.2.1/repository/components/patches/patch0002
    
    ./sign-patches.sh /home/aruna/wso2as-5.2.1/repository/components/patches/patch0003
    

    Then you have to enable the security manager in the wso2server.sh file. Just replace the provided wso2server.sh file with the wso2as-5.2.1/bin/wso2server.sh file.

    These are the only added lines apart from the original wso2server.sh file.

    -Djava.security.manager=org.wso2.carbon.bootstrap.CarbonSecurityManager \
    -Djava.security.policy=$CARBON_HOME/repository/conf/sec.policy \
    -Drestricted.packages=sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,org.wso2.carbon. \
    -Ddenied.system.properties=javax.net.ssl.trustStore,javax.net.ssl.trustStorePassword,denied.system.properties \
    

    That's it you have signed all the jars and enabled Java Security Manager for WSO2AS 5.2.1 :)

    For more security permissions, open the /wso2as-5.2.1/repository/conf/sec.policy file to change the policies you want.

    Download the script files from this link