Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

Valid from Datafari 4.4 up to Datafari 4. ??

Use this only for specific use cases. This option is not recommended.

Datafari is launched by default in HTTPS ie to access to Datafari the url is : https://IP_DATAFARI:443/Datafari

The certificate is autosigned and you can easily replace it by a “real” one. For rare cases, you might want to launch Datafari into HTTP and not HTTPS (you already have a reverse proxy in front of your Datafari installation, you do not have real certificates and you do not want that your users see the warning in their browser about autosigned certificate).

The process is :

  1. Backup the configuration in place for Apache proxy :

    mv /opt/datafari/apache/sites-available/tomcat.conf /opt/datafari/apache/sites-available/tomcat.bkp
  2. Copy the configuration for HTTP :

    cp /opt/datafari/bin/deployUtils/docker/tomcat.conf /opt/datafari/apache/sites-available/
  3. Apply the new configuration :

    apachectl restart


Valid from 4.0 to 4.2

The documentation below is valid from Datafari v4.0.0 to 4.2


To disable the SSL protocol in Datafari, follow these steps:

  1. Execute the following command:

    /opt/datafari/solr/server/scripts/cloud-scripts/zkcli.sh -zkhost localhost:2181 -cmd clusterprop -name urlScheme -val http
  2. Stop Datafari

  3. Edit the file /opt/datafari/tomcat/webapps/Datafari/WEB-INF/web.xml and comment these lines:

    <!-- Force HTTPS on All Datafari -->
       <security-constraint>
         <web-resource-collection>
             <web-resource-name>Datafari</web-resource-name>
             <url-pattern>/*</url-pattern>
         </web-resource-collection>
         <user-data-constraint>
             <transport-guarantee>CONFIDENTIAL</transport-guarantee>
         </user-data-constraint>
       </security-constraint>


  4. Edit the file /opt/datafari/solr/bin/solr.in.sh and comment these lines (put a '#' in front of them):

    SOLR_SSL_KEY_STORE=${DATAFARI_HOME}/ssl-keystore/datafari-keystore.jks
    SOLR_SSL_KEY_STORE_PASSWORD=DataFariAdmin
    SOLR_SSL_TRUST_STORE=${DATAFARI_HOME}/ssl-keystore/datafari-keystore.jks
    SOLR_SSL_TRUST_STORE_PASSWORD=DataFariAdmin
    SOLR_SSL_NEED_CLIENT_AUTH=false
    SOLR_SSL_WANT_CLIENT_AUTH=false
  5. Edit the file /opt/datafari/tomcat/conf/solr.properties and set the parameter SOLRPROTOCOL to 'http':

    SOLRPROTOCOL=http


  6. Edit the file /opt/datafari/tomcat/conf/datafari.properties and set the parameter SOLRHOSTS to 'localhost:2181':

    SOLRHOSTS=localhost:2181
  7. Edit the file /opt/datafari/elk/kibana/config/kibana.yml and comment the following lines:

    server.ssl.enabled: true
    server.ssl.certificate: /opt/datafari/ssl-keystore/datafari-cert.pem
    server.ssl.key: /opt/datafari/ssl-keystore/datafari-key.pem
  8. Start Datafari

  9. Go to the admin interface, Statistics/ELK configuration and change the Kibana URI parameter to use http instead of https: http://127.0.0.1:5601/app/kibana

  • No labels