The configuration for EBF Files server is stored in the configuration file:
/etc/sysconfig/files-server.properties
Parameters include:
- Setup of LDAP variables for user access
- Setup of database connection
For LDAP/Active Directory edit the values from this file to match your portal administration requirements. This directory contains the Admin Portal users who are allowed to administrate corresponding clients and user directories belonging to those clients.
$ sudo vi systemctl /etc/sysconfig/files-server.properties
By default, MariaDB packages were added during the installation of the appliance. To use them, add the following lines to files-server.properties before the LDAP configuration:
##### THIS FILE PROVIDES USEFUL DEFAULTS USED IN EVERY ENVIRONMENT ##### # COMMON server.port=9090 app.name=EBF Files info.api.version=3 # the time in seconds the authetication token is valid. when token expires, user has to login again com.ebf.tokenTTL=3600 ##### FILE LOGGING ##### enableFileLogging=true ##### LOAD BALANCER ##### com.ebf.usingLoadBalancer=false ##### LDAP ##### # LDAP Type. Can be: ActiveDirectory, Domino, OpenDS, OpenLDAP or NovellEDirectory com.ebf.ldap.ldapType=OpenDS # when querying for groups, should group members be resolved recursively (in addition to direct user members)? # for some LDAP implementations, this comes with a high performance impact depending on group size com.ebf.ldap.server=localhost com.ebf.ldap.port=8636 com.ebf.ldap.viaSSL=false com.ebf.ldap.enableCascadedMembershipLookup=true # users and groups outside of the baseDN are ignored com.ebf.ldap.baseDN=dc=files,dc=ebf,dc=de # This com.ebf.ldap.username is used when querying LDAP # Use this username (or the email associated with that account) to log in for the first time # Then you can add LDAP groups to the SuperAdmin role and use users from that group to login com.ebf.ldap.username=cn=admin,dc=files,dc=ebf,dc=de com.ebf.ldap.password=myPassword ##### DATABASE ##### # Keep the connection alive if idle for a long time (needed in production) spring.datasource.tomcat.test-while-idle=true spring.datasource.tomcat.validation-query=SELECT 1 ##### DATABASE - MariaDB >= 10.1.40 ##### #spring.datasource.driver-class-name=org.mariadb.jdbc.Driver #spring.jpa.properties.hibernate.dialect=org.hibernate.dialect.MariaDB10Dialect #spring.datasource.url=jdbc:mariadb://localhost/files #spring.datasource.username= #spring.datasource.password= ##### DATABASE - MSSQL >= 2012 ##### #spring.datasource.driver-class-name=net.sourceforge.jtds.jdbc.Driver #spring.jpa.properties.hibernate.dialect=org.hibernate.dialect.SQLServer2012Dialect #spring.datasource.url=jdbc:jtds:sqlserver://localhost/files #spring.datasource.username= #spring.datasource.password= ##### DATABASE - MySQL >= 5.5 ##### #spring.datasource.driver-class-name=com.mysql.cj.jdbc.Driver #spring.jpa.properties.hibernate.dialect=org.hibernate.dialect.MySQL8Dialect #spring.datasource.url=jdbc:mysql://localhost:3306/files?serverTimezone=Europe/Berlin #spring.datasource.username= #spring.datasource.password= ##### LOGS ##### logging.level.ROOT=INFO logging.level.de.ebf=INFO logging.level.com.ebf=INFO logging.level.de.ebf.files.backend.LoggingFilter=DEBUG logging.level.com.hierynomus.smbj=WARN logging.level.org.apache.http=WARN logging.level.org.apache.http.headers=WARN logging.level.org.springframework.boot.autoconfigure.security.AuthenticationManagerConfiguration=INFO ##### DO NOT MODIFY AFTER THIS LINE #### # base path for Spring data rest repositories spring.data.rest.return-body-on-create=true spring.data.rest.return-body-on-update=true # apply lightweight schema changes automatically spring.jpa.hibernate.ddl-auto=update spring.jpa.open-in-view=true # Upload size limit spring.servlet.multipart.max-file-size=100MB spring.servlet.multipart.max-request-size=100MB # Max http header size in bytes spring.server.max-http-header-size=1048576 # always show colors in terminal output spring.output.ansi.enabled=ALWAYS # spring boot actuator info endpoint management.health.defaults.enabled=true management.health.db.enabled=true management.endpoints.health.sensitive=false management.endpoints.health.show-details=always
To enable SSL uncomment and update properties in region ######SSL######:
##### SSL ##### # Additional HTTP port #server.http.port= # Settings to open SSL port #server.ssl.enabled=true #server.ssl.key-store=file: (key file path) #server.ssl.key-store-type= #server.ssl.key-alias= #server.ssl.key-store-password=
To disable saving logs into file enter (by default = true):
enableFileLogging=false
After adjusting the LDAP and database connection, the EBF Files service can be activated on the appliance:
$ systemctl enable files-server
The service can then be started:
$ systemctl start files-server
The server logs can be found on the appliance in the folder:
/var/log/files-server/logs
The service status can be retrieved with the following command:
$ systemctl status files-server
Admin portal ports
To enable the EBF Files Server Admin portal configure the firewall within the EBF Files appliance. The port which was designated for the EBF Files Admin Portal according to the configuration must be released:
$ sudo firewall-cmd --zone=public --add-port=9090/tcp –-permanent $ sudo firewall-cmd --reload
EBF Files Server Admin Portal is now reachable via port 9090.