From e1e6d7b2c50543c760bd00e6e62f8c4d272dd7b1 Mon Sep 17 00:00:00 2001 From: Paul Minasian Date: Thu, 7 Apr 2016 14:38:04 +0200 Subject: [PATCH 1/9] add Java Cryptography Extension local policy jar --- .../oracle_jre/lib/security/local_policy.jar | Bin 0 -> 3035 bytes 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 resources/oracle_jre/lib/security/local_policy.jar diff --git a/resources/oracle_jre/lib/security/local_policy.jar b/resources/oracle_jre/lib/security/local_policy.jar new file mode 100644 index 0000000000000000000000000000000000000000..1c58939bf396afd6ff44a56f4578aed3d2ddf80a GIT binary patch literal 3035 zcmaJ@2{e@JA0FEn%cN^8*;Uqyv4-vqGc?3ZnQJTIj=`8*V~;LEg(QP8GBeqtXf!F3 zEo)>Q6xrftNh(6rP{{me?m0K~zvuqGbH4L_=RNQ9zTb16-}^jhBoD6`00aU7o;Z;# z06R*IJwA?bfNNQwu+%;dKVfZ&uy=qSx5V|rZDV0#ypz8Qu&}Ap596*oh>D8%{Y10# zO@f=G;lgjrRBm*Xt9_hD*8lm@uoKn5xUL=)H}p*StOlCTYqq-b(U67bwIa*d5{9~B zPWrT_Fll(th}gS7s#Bucd))HIKN!3g?T`+QrBV`WA8Cz6;P9Yh0#-xT8ORybFJPNy z{xO@^$~oGLK58ZJ;jmm7k_8=;lu!M=dRfqkKI^|PwdDY|ZUS*Cc`V}cl)mZas8$%& z!vE;Nmg;N!ymGosjHxdsT*Z{oP*?6>xU~_L@nLWZ+-z$qxP0e&;|w1f$q#Z&Y`{;k z2@v4|0MOqlYWXjUZ0+C{CV@qs=20OZeX}FNyV@B*Sp#*=Se!y6@Ba8PdM_66pxCt&ZocdEOb^Fh~TdTY4IL1 zjTUkB<>^&71*MP+y)IYjamSVlXtX^t8Y3gx!!$AiiUU-g?F{{i2eONoq1INhTaD#~ zb%s?LbBog0!1FS*(Z(7PZ~dtvX##EC*Bq9DT$tB~un%kXp@<8G4v{s{5@T9!7O-%# z9RPW&I?gbTJDT-L4OuRBQSh+M)f5=%JVq4MS=$OBEFrZ)Cn; zSpL-z2~7sY1E|+lL)})>#xbzh*4h!& zi|XrUAdN`6*SOU^BqUaY!w_k9fnf&MAa4&D80c_$==1PEUaKh%3wIp47z`GrO#^*+ ztgpz#Z6=9kguu!Xd|wfX%9O9+z~oQxWd*IAdEI;Dc&od0-C4;`s8cEWy|3twDlf$Q)SMRSo6^F-krJsxH z^Y)2piinU|YpF`eF=Na)Yj&?(n!2+HVfrG|bIUq|6Bbcb<9SXWOMZXXn=(3AIn~}1 z>e!MMl;?NGaXiX^b>d*(T4?=gqsJ7ol+->+qg5$`Fd2~fbi+ad^F1ulhW zC(Ad9L>Bz~5I?Y7(NrO6UsA_F+pw1KMBzF_R#jU3C^RwzK1IKK@yM~$6vPu49j?TD zo>iHV_01IZIq4LM$+SegpvQI#zkmtyI?sT;WNv3%6}9hQNwWLgWseO0lw>Ej(hM)o z%FatlFCjCfgwK+Xno9=XDWwD!IR}2a+?szb8NZS&ujM7WO!d=}MK6`mzmy=M8~Cw{ zx6OWOVGBeA5G1FRrY9&IZ}0~IRcKiRoCU%-1K_do=65qHZ3{3ukI*SgMJstyF6O=w zKJ8a=wJfQ}Q}(Q?d$}v^*BM^*r8SLSkwYgtWrA&Q#RTg1QkNUunFsGbsLY=1iILAe z^FenraOTtHMLZuNpaJha?!T(u|KWuJB(-eS1C!r$>y4oax^j{?fp_h2Zrvzu!dbzL z6?M351^YxZ^Y=&(kL7DAuH#h(YF5X^uvQ)5(S_h9l1@THhLL z#bzo7RgopgSB)Vrsp21eqt0=={ML3fdQq8*i?}&-a`}KF#|NNMO zoaVG!a8Ty>t-T6-z+Qxmv7BP?F_B9B27CTO&6oBMnvrxmU1l(GIUZ4#{SC4r zeR)E4uTQ_V5!@6D1(Tq4D>;!tRJfp}6W-luk{@>*i*~{vatGSQ>FXEhH2s{cEaDqw z7NBpkihpXDGN0n&zf!w?WK=J~x|K=rQOTRu9`(I($f$nPU(r<^=pz!|htL65TmL$IRm=E2wu*1y-hioed(m)%XFW7#jbi;S6C%=g z{BVe$?V@x@^5(07HhEo~tAcl^S(N1YiT9_&ADHL%Ik8mpzM@d2-)ysDyf+D3cjq7N zM?8$Swz@rd52}`zTjRY^P-#?yAI`m-vlhLYRxm9SLmrTu+wu>fnlarM^2D1<>?XK4 zw=MkWs}&7C0AQYfr@bAL+MNId0KD4?V5`)SNBV$B-yc-Zl*sKoXb{R zhA!#p?{}xKd6ef={5G8kIo*?Oh{_hQ7r({hZg*rBq2lLR`b~aZR-@=5nvS#_Jbb%lFUL*rb-ui4>;M>9vrmFITi#^Bc?6A-!2h;y6NfxOkp4Q1)c{rgG{9cpY@&VC=(Y`KO8w41`%ZPf_dDS3_sz zw&J-TRDlFr&&S%PB_54zW084QD%|bQBT971w}~MW*9kd7 zZ=P`p-C!nJrI^#KKiP;gmN)g*4TBS#LxPVV>FieE2!YTd_LPh5*M)z3HW#-TU^_|f z3{V^??5=;ym1yKP0w-wgOa!|T4zlO%pWlqV^xs-zCjv)*JNf14Z@cyg>{25d$p_?20@+U# Lo19~UoUi`@yDZ_Z literal 0 HcmV?d00001 From 179838aa39a804f210882f876c7ec5d495196f4a Mon Sep 17 00:00:00 2001 From: Paul Minasian Date: Thu, 7 Apr 2016 14:49:58 +0200 Subject: [PATCH 2/9] add Java Cryptography Extension local policy jar to open_jdk_jre --- .../open_jdk_jre/lib/security/local_policy.jar | Bin 0 -> 3035 bytes 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 resources/open_jdk_jre/lib/security/local_policy.jar diff --git a/resources/open_jdk_jre/lib/security/local_policy.jar b/resources/open_jdk_jre/lib/security/local_policy.jar new file mode 100644 index 0000000000000000000000000000000000000000..1c58939bf396afd6ff44a56f4578aed3d2ddf80a GIT binary patch literal 3035 zcmaJ@2{e@JA0FEn%cN^8*;Uqyv4-vqGc?3ZnQJTIj=`8*V~;LEg(QP8GBeqtXf!F3 zEo)>Q6xrftNh(6rP{{me?m0K~zvuqGbH4L_=RNQ9zTb16-}^jhBoD6`00aU7o;Z;# z06R*IJwA?bfNNQwu+%;dKVfZ&uy=qSx5V|rZDV0#ypz8Qu&}Ap596*oh>D8%{Y10# zO@f=G;lgjrRBm*Xt9_hD*8lm@uoKn5xUL=)H}p*StOlCTYqq-b(U67bwIa*d5{9~B zPWrT_Fll(th}gS7s#Bucd))HIKN!3g?T`+QrBV`WA8Cz6;P9Yh0#-xT8ORybFJPNy z{xO@^$~oGLK58ZJ;jmm7k_8=;lu!M=dRfqkKI^|PwdDY|ZUS*Cc`V}cl)mZas8$%& z!vE;Nmg;N!ymGosjHxdsT*Z{oP*?6>xU~_L@nLWZ+-z$qxP0e&;|w1f$q#Z&Y`{;k z2@v4|0MOqlYWXjUZ0+C{CV@qs=20OZeX}FNyV@B*Sp#*=Se!y6@Ba8PdM_66pxCt&ZocdEOb^Fh~TdTY4IL1 zjTUkB<>^&71*MP+y)IYjamSVlXtX^t8Y3gx!!$AiiUU-g?F{{i2eONoq1INhTaD#~ zb%s?LbBog0!1FS*(Z(7PZ~dtvX##EC*Bq9DT$tB~un%kXp@<8G4v{s{5@T9!7O-%# z9RPW&I?gbTJDT-L4OuRBQSh+M)f5=%JVq4MS=$OBEFrZ)Cn; zSpL-z2~7sY1E|+lL)})>#xbzh*4h!& zi|XrUAdN`6*SOU^BqUaY!w_k9fnf&MAa4&D80c_$==1PEUaKh%3wIp47z`GrO#^*+ ztgpz#Z6=9kguu!Xd|wfX%9O9+z~oQxWd*IAdEI;Dc&od0-C4;`s8cEWy|3twDlf$Q)SMRSo6^F-krJsxH z^Y)2piinU|YpF`eF=Na)Yj&?(n!2+HVfrG|bIUq|6Bbcb<9SXWOMZXXn=(3AIn~}1 z>e!MMl;?NGaXiX^b>d*(T4?=gqsJ7ol+->+qg5$`Fd2~fbi+ad^F1ulhW zC(Ad9L>Bz~5I?Y7(NrO6UsA_F+pw1KMBzF_R#jU3C^RwzK1IKK@yM~$6vPu49j?TD zo>iHV_01IZIq4LM$+SegpvQI#zkmtyI?sT;WNv3%6}9hQNwWLgWseO0lw>Ej(hM)o z%FatlFCjCfgwK+Xno9=XDWwD!IR}2a+?szb8NZS&ujM7WO!d=}MK6`mzmy=M8~Cw{ zx6OWOVGBeA5G1FRrY9&IZ}0~IRcKiRoCU%-1K_do=65qHZ3{3ukI*SgMJstyF6O=w zKJ8a=wJfQ}Q}(Q?d$}v^*BM^*r8SLSkwYgtWrA&Q#RTg1QkNUunFsGbsLY=1iILAe z^FenraOTtHMLZuNpaJha?!T(u|KWuJB(-eS1C!r$>y4oax^j{?fp_h2Zrvzu!dbzL z6?M351^YxZ^Y=&(kL7DAuH#h(YF5X^uvQ)5(S_h9l1@THhLL z#bzo7RgopgSB)Vrsp21eqt0=={ML3fdQq8*i?}&-a`}KF#|NNMO zoaVG!a8Ty>t-T6-z+Qxmv7BP?F_B9B27CTO&6oBMnvrxmU1l(GIUZ4#{SC4r zeR)E4uTQ_V5!@6D1(Tq4D>;!tRJfp}6W-luk{@>*i*~{vatGSQ>FXEhH2s{cEaDqw z7NBpkihpXDGN0n&zf!w?WK=J~x|K=rQOTRu9`(I($f$nPU(r<^=pz!|htL65TmL$IRm=E2wu*1y-hioed(m)%XFW7#jbi;S6C%=g z{BVe$?V@x@^5(07HhEo~tAcl^S(N1YiT9_&ADHL%Ik8mpzM@d2-)ysDyf+D3cjq7N zM?8$Swz@rd52}`zTjRY^P-#?yAI`m-vlhLYRxm9SLmrTu+wu>fnlarM^2D1<>?XK4 zw=MkWs}&7C0AQYfr@bAL+MNId0KD4?V5`)SNBV$B-yc-Zl*sKoXb{R zhA!#p?{}xKd6ef={5G8kIo*?Oh{_hQ7r({hZg*rBq2lLR`b~aZR-@=5nvS#_Jbb%lFUL*rb-ui4>;M>9vrmFITi#^Bc?6A-!2h;y6NfxOkp4Q1)c{rgG{9cpY@&VC=(Y`KO8w41`%ZPf_dDS3_sz zw&J-TRDlFr&&S%PB_54zW084QD%|bQBT971w}~MW*9kd7 zZ=P`p-C!nJrI^#KKiP;gmN)g*4TBS#LxPVV>FieE2!YTd_LPh5*M)z3HW#-TU^_|f z3{V^??5=;ym1yKP0w-wgOa!|T4zlO%pWlqV^xs-zCjv)*JNf14Z@cyg>{25d$p_?20@+U# Lo19~UoUi`@yDZ_Z literal 0 HcmV?d00001 From 49a65408a98d5cc16ea53b2ac24af4158e02be41 Mon Sep 17 00:00:00 2001 From: Paul Minasian Date: Fri, 8 Apr 2016 11:53:16 +0200 Subject: [PATCH 3/9] set DNS caching timeout (TTL) as command line argument. --- config/java_opts.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/config/java_opts.yml b/config/java_opts.yml index f36ef772a2..0a7c3c6f6b 100644 --- a/config/java_opts.yml +++ b/config/java_opts.yml @@ -16,4 +16,4 @@ # JAVA_OPTS configuration --- from_environment: true -java_opts: +java_opts: '-Dsun.net.inetaddr.ttl=60' From 389f40b3b4512086449aafe2bc441e1d7e9e7df9 Mon Sep 17 00:00:00 2001 From: boddapuramdev Date: Wed, 4 May 2016 19:13:42 +0530 Subject: [PATCH 4/9] Update server.xml --- resources/tomcat/conf/server.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resources/tomcat/conf/server.xml b/resources/tomcat/conf/server.xml index ae8d91a3d9..c2ba6afb50 100644 --- a/resources/tomcat/conf/server.xml +++ b/resources/tomcat/conf/server.xml @@ -18,7 +18,7 @@ - + From b2424809c1119f661dd163ee4ffb884c18d3a4bf Mon Sep 17 00:00:00 2001 From: boddapuramdev Date: Wed, 4 May 2016 19:50:28 +0530 Subject: [PATCH 5/9] Update server.xml --- resources/tomcat/conf/server.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resources/tomcat/conf/server.xml b/resources/tomcat/conf/server.xml index c2ba6afb50..a51b9dc5e4 100644 --- a/resources/tomcat/conf/server.xml +++ b/resources/tomcat/conf/server.xml @@ -18,7 +18,7 @@ - + From fb34bb4b70c5cb83abe64b3401dc62e66a90980b Mon Sep 17 00:00:00 2001 From: boddapuramdev Date: Fri, 6 May 2016 12:27:36 +0530 Subject: [PATCH 6/9] Update server.xml Task 200687:Make sure invalid Content-Types do not result in HTML error pages --- resources/tomcat/conf/server.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/resources/tomcat/conf/server.xml b/resources/tomcat/conf/server.xml index a51b9dc5e4..91a4fd791d 100644 --- a/resources/tomcat/conf/server.xml +++ b/resources/tomcat/conf/server.xml @@ -27,6 +27,7 @@ enabled="${access.logging.enabled}"/> + From cf13af63a78d411f5e74ce470f2b5d376420e09b Mon Sep 17 00:00:00 2001 From: ramdevboddapu Date: Thu, 20 Oct 2016 16:14:34 +0530 Subject: [PATCH 7/9] Update newrelic.yml Added new relic configuration for Monitoring CDS API's --- resources/new_relic_agent/newrelic.yml | 76 ++++++++++++++++++-------- 1 file changed, 54 insertions(+), 22 deletions(-) diff --git a/resources/new_relic_agent/newrelic.yml b/resources/new_relic_agent/newrelic.yml index 2123748db4..f02a8cd524 100644 --- a/resources/new_relic_agent/newrelic.yml +++ b/resources/new_relic_agent/newrelic.yml @@ -2,15 +2,18 @@ # Java applications with deep visibility and low overhead. For more details and additional # configuration options visit https://docs.newrelic.com/docs/java/java-agent-configuration. # +# This configuration file is custom generated for Philips_69 +# # This section is for settings common to all environments. # Do not add anything above this next line. common: &default_settings # ============================== LICENSE KEY =============================== # You must specify the license key associated with your New Relic - # account. This key binds your Agent's data to your account in the - # New Relic service. - license_key: 'your license key' + # account. For example, if your license key is 12345 use this: + # license_key: '12345' + # The key binds your Agent's data to your account in the New Relic service. + license_key: '13719a5de2b75b5aa72343d2df2207196b32f6ef' # Agent Enabled # Use this setting to disable the agent instead of removing it from the startup command. @@ -20,12 +23,13 @@ common: &default_settings # Set the name of your application as you'd like it show up in New Relic. # If enable_auto_app_naming is false, the agent reports all data to this application. # Otherwise, the agent reports only background tasks (transactions for non-web applications) - # to this application. To report data to more than one application + # to this application. To report data to more than one application # (useful for rollup reporting), separate the application names with ";". # For example, to report data to "My Application" and "My Application 2" use this: # app_name: My Application;My Application 2 - # This setting is required. - app_name: My Application + # This setting is required. Up to 3 different application names can be specified. + # The first application name must be unique. + app_name: HSDP_DC_DDR # To enable high security, set this property to true. When in high # security mode, the agent will use SSL and obfuscated SQL. Additionally, @@ -62,7 +66,7 @@ common: &default_settings # Default is 1. log_file_count: 1 - # The maximum number of bytes to write to any one log file. + # The maximum number of kbytes to write to any one log file. # The log_file_count must be set greater than 1. # Default is 0 (no limit). log_limit_in_kbytes: 0 @@ -98,26 +102,26 @@ common: &default_settings #proxy_user: username #proxy_password: password - # Limits the number of lines to capture for each stack trace. + # Limits the number of lines to capture for each stack trace. # Default is 30 max_stack_trace_lines: 30 # Provides the ability to configure the attributes sent to New Relic. These - # attributes can be found in transaction traces, traced errors, Insight's + # attributes can be found in transaction traces, traced errors, Insight's # transaction events, and Insight's page views. attributes: - + # When true, attributes will be sent to New Relic. The default is true. enabled: true - - #A comma separated list of attribute keys whose values should + + #A comma separated list of attribute keys whose values should # be sent to New Relic. #include: - - # A comma separated list of attribute keys whose values should + + # A comma separated list of attribute keys whose values should # not be sent to New Relic. #exclude: - + # Transaction tracer captures deep information about slow # transactions and sends this to the New Relic service once a @@ -163,7 +167,7 @@ common: &default_settings # Default is true. explain_enabled: true - # Threshold for query execution time below which query plans will not + # Threshold for query execution time below which query plans will not # not be captured. Relevant only when `explain_enabled` is true. # Default is 0.5 seconds. explain_threshold: 0.5 @@ -195,16 +199,16 @@ common: &default_settings # this, you must provide any new value as an empty list is ignored. ignore_status_codes: 404 - # Analytics Events are used for Histograms and Percentiles. Unaggregated data is collected - # for each web transaction and sent to the server on harvest. - analytics_events: + # Transaction Events are used for Histograms and Percentiles. Unaggregated data is collected + # for each web transaction and sent to the server on harvest. + transaction_events: - # Set to false to disable analytics events. + # Set to false to disable transaction events. # Default is true. enabled: true # Events are collected up to the configured amount. Afterwards, events are sampled to - # maintain an even distribution across the harvest cycle. Largest value accepted is 10000. + # maintain an even distribution across the harvest cycle. # Default is 2000. Setting to 0 will disable. max_samples_stored: 2000 @@ -229,7 +233,7 @@ common: &default_settings # New Relic Real User Monitoring gives you insight into the performance real users are # experiencing with your website. This is accomplished by measuring the time it takes for # your users' browsers to download and render your web pages by injecting a small amount - # of JavaScript code into the header and footer of each page. + # of JavaScript code into the header and footer of each page. browser_monitoring: # By default the agent automatically inserts API calls in compiled JSPs to @@ -239,6 +243,34 @@ common: &default_settings # Set this attribute to false to turn off this behavior. auto_instrument: true + class_transformer: + # This instrumentation reports the name of the user principal returned from + # HttpServletRequest.getUserPrincipal() when servlets and filters are invoked. + com.newrelic.instrumentation.servlet-user: + enabled: false + + com.newrelic.instrumentation.spring-aop-2: + enabled: false + + # Classes loaded by classloaders in this list will not be instrumented. + # This is a useful optimization for runtimes which use classloaders to + # load dynamic classes which the agent would not instrument. + classloader_excludes: + groovy.lang.GroovyClassLoader$InnerLoader, + org.codehaus.groovy.runtime.callsite.CallSiteClassLoader, + com.collaxa.cube.engine.deployment.BPELClassLoader, + org.springframework.data.convert.ClassGeneratingEntityInstantiator$ObjectInstantiatorClassGenerator, + org.mvel2.optimizers.impl.asm.ASMAccessorOptimizer$ContextClassLoader, + gw.internal.gosu.compiler.SingleServingGosuClassLoader, + + # User-configurable custom labels for this agent. Labels are name-value pairs. + # There is a maximum of 64 labels per agent. Names and values are limited to 255 characters. + # Names and values may not contain colons (:) or semicolons (;). + labels: + + # An example label + #label_name: label_value + # Application Environments # ------------------------------------------ From 33c1c6900f1beb076527f75fa2e26d7f6c29dbfd Mon Sep 17 00:00:00 2001 From: ramdevboddapu Date: Thu, 20 Oct 2016 16:44:39 +0530 Subject: [PATCH 8/9] Update newrelic.yml updated enviorements --- resources/new_relic_agent/newrelic.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/resources/new_relic_agent/newrelic.yml b/resources/new_relic_agent/newrelic.yml index f02a8cd524..b28e4cd0a8 100644 --- a/resources/new_relic_agent/newrelic.yml +++ b/resources/new_relic_agent/newrelic.yml @@ -29,7 +29,7 @@ common: &default_settings # app_name: My Application;My Application 2 # This setting is required. Up to 3 different application names can be specified. # The first application name must be unique. - app_name: HSDP_DC_DDR + app_name: HSDP_DC_CDS # To enable high security, set this property to true. When in high # security mode, the agent will use SSL and obfuscated SQL. Additionally, @@ -284,17 +284,17 @@ common: &default_settings # NOTE if your application has other named environments, you should # provide configuration settings for these environments here. -development: +uat: <<: *default_settings - app_name: My Application (Development) + app_name:HSDP_DC_CDS_UAT test: <<: *default_settings - app_name: My Application (Test) + app_name: HSDP_DC_CDS_TEST production: <<: *default_settings staging: <<: *default_settings - app_name: My Application (Staging) + app_name: HSDP_DC_CDS_STG From cf8711a8c652f68c3c261641e0bdab0d50cdff24 Mon Sep 17 00:00:00 2001 From: ramdevboddapu Date: Fri, 21 Oct 2016 17:48:37 +0530 Subject: [PATCH 9/9] Update newrelic.yml Update the app name --- resources/new_relic_agent/newrelic.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/resources/new_relic_agent/newrelic.yml b/resources/new_relic_agent/newrelic.yml index b28e4cd0a8..9c35528a92 100644 --- a/resources/new_relic_agent/newrelic.yml +++ b/resources/new_relic_agent/newrelic.yml @@ -288,7 +288,7 @@ uat: <<: *default_settings app_name:HSDP_DC_CDS_UAT -test: +ddr-api-tst: <<: *default_settings app_name: HSDP_DC_CDS_TEST