Configuring WebSphere Application Server Liberty profile for MobileFirst Server administration

Configure the Java™ EE security roles of the MobileFirst Server administration and the data source in the server.xml file.

Before you begin

In WebSphere® Application Server Liberty profile, you configure the roles of worklightadmin, worklightdeployer, worklightmonitor, and worklightoperator in the server.xml configuration file of the server.

About this task

To configure the security roles, you must edit the server.xml file. In the <application-bnd> element of each <application> element, create <security-role> elements. Each <security-role> element is for each roles: worklightadmin, worklightdeployer, worklightmonitor, and worklightoperator. Map the roles to the appropriate user group name, in this example: worklightadmingroup, worklightdeployergroup, worklightmonitorgroup, or worklightoperatorgroup. These groups are defined through the <basicRegistry> element. You can customize this element or replace it entirely with an <ldapRegistry> element or a <safRegistry> element.

Then, to maintain good response times with a large number of installed applications, for example with 80 applications, you should configure a connection pool for the administration database.

Procedure

  1. Edit the server.xml file.

    For example:

    <security-role name="worklightadmin">
  <group name="worklightadmingroup"/>
</security-role>
<security-role name="worklightdeployer">
  <group name="worklightdeployergroup"/>
</security-role>
<security-role name="worklightmonitor">
  <group name="worklightmonitorgroup"/>
</security-role>
<security-role name="worklightoperator>
  <group name="worklightoperatorgroup"/>
</security-role>

<basicRegistry id="worklightadmin">
  <user name="admin" password="admin"/>
  <user name="guest" password="guest"/>
  <user name="demo" password="demo"/>
  <group name="worklightadmingroup">
    <member name="guest"/>
    <member name="demo"/>
  </group>
  <group name="worklightdeployergroup">
    <member name="admin" id="admin"/>
  </group>
  <group name="worklightmonitorgroup"/>
  <group name="worklightoperatorgroup"/>
</basicRegistry>
  2. Edit the server.xml file to define the AppCenterPool size. 
    <connectionManager id="AppCenterPool" minPoolSize="10" maxPoolSize="40"/>
  3. In the <dataSource> element, define a reference to the connection manager: 
    <dataSource id="WLADMIN" jndiName="jdbc/WorklightAdminDS" connectionManagerRef="AppCenterPool">
 ...
</dataSource>
Parent topic: Configuring user authentication for MobileFirst Server administration