Microservices
Updated On 24 March 2024 |
Min(s) read
AWS Configuration
Below are the properties executed in install-aws.sh or install-aws-postgresql.
| PROPERTY | DEFAULT VALUE | TO BE UPDATED AS | DESCRIPTION |
|---|---|---|---|
| AWS_ACCESS_KEY_ID | Developer's credentials | AWS Account Access Id | |
| AWS_SECRET_ACCESS_KEY | Developer's credentials | AWS Account Secret Key | |
| AWS_REGION | Developer's credentials | AWS Account Region | |
| DEPLOYMENT_ENVIRONMENT | As required | If multiple instances of MS need to be deployed in the same region, then this property needs to be set [Should use only lower case letters in-order to comply with AWS resources naming convention] | |
| Ex: if the property is set as 'dev', the bucket name will be 'dev-ms-party-package'. | |||
| S3_BUCKET_ID | ms-party-package | As required | S3 bucket is an object storage service. |
| The application JAR file will be copied into the s3 bucket. | |||
| temn_entitlement_service_enabled | FALSE | As required | Enable/Disable the entitlement service. |
| If the property is enabled, the roles and permissions needed for the authentication will be taken from the entitlement microservices. | |||
| CLOUDWATCH | ms-party-cloudwatchinvoke | As required | Ping services will be created for each lambda function with the provided name. |
| temn_msf_security_authz_enabled | false | true or false | Enable/Disable the XACML policy authorization. |
| XACML policy authorization is used to configure security policies and access rights to information for APIs. | |||
| PDP_CONFIG | classpath:xacml/pdp-config.xml | As required | Mapping the PDP-callback configuration file available in the classpath. |
| XAML Config file path needs to be set in the property. | |||
| PDP_RESOURCE_TYPE | API | As required | The value that is set in the XAML config file needs to be provided. |
| Resource type is used to identify the policy set in the XAML config. | |||
| PDP_RESOURCE_MANAGER | PARTY | As required | The value that is set in the XAML config file needs to be provided. |
| Resource Manager is used to identify the policy set in the XAML config. | |||
| ms_security_tokencheck_enabled | Y | Y or N | Enable/Disable the JWT validation. By default, JWT token check is enabled. |
| JWT validation is used to validate the custom and mandatory claims from the provided token. | |||
| ID_TOKEN_SIGNED | true | true or false | Enable/Disable JWT signature validation. By default, signature validation is enabled, Set it to 'false', if the validation is not required. |
| JWT signature validates the public and private key from the given JWT token | |||
| JWT_TOKEN_ISSUER | Fabric | Issue value present in XACML Policy file | Identifies the issuer of the authentication token. |
| JWT_TOKEN_PRINCIPAL_CLAIM | sub | Value should match with JWT token used | Indicates the claim in which the user principal is provided. |
| JWT_TOKEN_PUBLIC_KEY | Base 64 encoded public key | Indicates Base64 encoded public key content that can be directly loaded as a public key certificate. | |
| SCHEMA_REGISTRY_URL | http://localhost:8081 | As required | URL of the schema registry which is used to get the schema of the Backoffice(Transact) applications like CUSTOMER, CUSTOMER.REL.GROUP etc. |
| KINESIS_NAME | table-update | As required | Kinesis stream is mapped in the DES to get the application records from the T24. |
| Kinesis stream is used as a streaming application between microservice and transact. |
In this topic