TPS-4184 (cumulative patch)
Info | Value |
---|---|
Patch Name | Patch_20200909_TPS-4184_v1 |
Release Date | 2020-09-09 |
Target Verson | 20200909_1-V7.2.1 |
Product affected | IAM |
Introduction
This patch is cumulative. It includes all previous generally available patches for Talend IAM 7.2.1.
NOTE: For information on how to obtain this patch, reach out to your Support contact at Talend.
Fixed issues
This patch contains the following fixes:
- TPS-3326: [7.2.1] Remove hard coded keys used for encryption from sts-tac
- TPS-4184: [7.2.1] TDS - ORA-00904: "SERVERAUTHORIZATIONCODEGRANT_CODE": invalid identifier (TPSVC-14824)
Prerequisites
Consider the following requirements for your system:
- Talend IAM 7.2.1 must be installed.
Installation
- Stop IAM.
- Create a backup directory
$ mkdir -p <backup_dir>
- Copy original
sts.wat
,sts-tac.war
,idp.war
,oidc.war
,syncope.war
,syncope-enduser.war
,syncope-console.war
andscim.war
to backup dirNote: if you made any changes in extracted services apps before don't forget to backup them too.$ cp <TALEND>/iam/apache-tomcat/webapps/sts.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/sts-tac.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/idp.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/oidc.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/scim.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/syncope.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/syncope-enduser.war <backup_dir> $ cp <TALEND>/iam/apache-tomcat/webapps/syncope-console.war <backup_dir>
- Remove original
sts
,sts-tac
,idp
,oidc
,syncope
,syncope-enduser
,syncope-console
andscim
webapp directories$ rm -rf <TALEND>/iam/apache-tomcat/webapps/sts $ rm -rf <TALEND>/iam/apache-tomcat/webapps/sts-tac $ rm -rf <TALEND>/iam/apache-tomcat/webapps/idp $ rm -rf <TALEND>/iam/apache-tomcat/webapps/oidc $ rm -rf <TALEND>/iam/apache-tomcat/webapps/scim $ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope $ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope-enduser $ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope-console
- Copy patched war-s to webapps directory replacing original ones
$ cp sts.war <TALEND>/iam/apache-tomcat/webapps/ $ cp sts-tac.war <TALEND>/iam/apache-tomcat/webapps/ $ cp idp.war <TALEND>/iam/apache-tomcat/webapps/ $ cp oidc.war <TALEND>/iam/apache-tomcat/webapps/ $ cp scim.war <TALEND>/iam/apache-tomcat/webapps/ $ cp syncope.war <TALEND>/iam/apache-tomcat/webapps/syncope $ cp syncope-enduser.war <TALEND>/iam/apache-tomcat/webapps/syncope-enduser $ cp syncope-console.war <TALEND>/iam/apache-tomcat/webapps/syncope-console
- Save
setenv.bat
andsetenv.sh
from<IAM-HOME>/iam/apache-tomcat/bin/
in backup dir$ cp <TALEND>/iam/apache-tomcat/bin/setenv.bat <backup_dir> $ cp <TALEND>/iam/apache-tomcat/bin/setenv.sh <backup_dir>
- Replace
setenv.bat
andsetenv.sh
in<IAM-HOME>/iam/apache-tomcat/bin/
with filesetenv.bat
andsetenv.sh
from patch$ cp setenv.bat <TALEND>/iam/apache-tomcat/bin/ $ cp setenv.sh <TALEND>/iam/apache-tomcat/bin/
- Copy
keys.properties
from patch in<IAM-HOME>/iam/apache-tomcat/conf/
$ cp keys.properties <IAM-HOME>/iam/apache-tomcat/conf/
- Save
<IAM-HOME>/iam/apache-tomcat/conf/iam.properties
$ cp <IAM-HOME>/iam/apache-tomcat/conf/iam.properties <backup_dir>
-
Replace encrypted value with plain text in
<IAM-HOME>/iam/apache-tomcat/conf/iam.properties
. Those values will be encrypted with the new key when starting IAM. -
Start IAM.
Uninstallation
- Stop IAM.
- Remove original
sts
,sts-tac
,idp
,oidc
,syncope
,syncope-enduser
,syncope-console
andscim
webapp directories$ rm -rf <TALEND>/iam/apache-tomcat/webapps/sts $ rm -rf <TALEND>/iam/apache-tomcat/webapps/sts-tac $ rm -rf <TALEND>/iam/apache-tomcat/webapps/idp $ rm -rf <TALEND>/iam/apache-tomcat/webapps/oidc $ rm -rf <TALEND>/iam/apache-tomcat/webapps/scim $ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope $ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope-enduser $ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope-console
- Copy saved
sts.war
,sts-tac.war
,idp.war
,oidc.war
,syncope.war
,syncope-enduser.war
,syncope-console.war
andscim.war
from backup dir$ cp <backup_dir>/sts.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/sts-tac.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/idp.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/oidc.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/scim.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/syncope.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/syncope-enduser.war <TALEND>/iam/apache-tomcat/webapps/ $ cp <backup_dir>/syncope-console.war <TALEND>/iam/apache-tomcat/webapps/
- Replace
setenv.bat
andsetenv.sh
in<IAM-HOME>/iam/apache-tomcat/bin/
with filesetenv.bat
andsetenv.sh
from backup dir$ rm -rf <TALEND>/iam/apache-tomcat/bin/setenv.bat $ rm -rf <TALEND>/iam/apache-tomcat/bin/setenv.sh $ cp <backup_dir>/setenv.sh <TALEND>/iam/apache-tomcat/bin/ $ cp <backup_dir>/setenv.bat <TALEND>/iam/apache-tomcat/bin/
- Remove
keys.properties
from<IAM-HOME>/iam/apache-tomcat/conf/
$ rm <IAM-HOME>/iam/apache-tomcat/conf/keys.properties
- Restore
<IAM-HOME>/iam/apache-tomcat/conf/iam.properties
$ rm -rf <IAM-HOME>/iam/apache-tomcat/conf/iam.properties $ cp <backup_dir>/iam.properties <IAM-HOME>/iam/apache-tomcat/conf/
- Start IAM
Affected files for this patch
The following files are installed by this patch:
- sts.war
- sts-tac.war
- idp.war
- oidc.war
- scim.war
- syncope.war
- syncope-enduser.war
- syncope-console.war
Notes:
When starting IAM, not encrypted password settings (