Setting Up One-Way SSL Communication Between Spotfire and the Developer Portal (Optional)

You can set up one-way SSL for the Spotfire server with the asg_portal.properties and TargetOperation.cfg files of the Portal project.

Procedure

  1. Edit the asg_portal.properties file:
    1. Make sure the following URL is an HTTPS URL as in the following example: 
      asg.portal.spotfire.url.prefix=https://spotfire_hostname:spotfire_https_port
  2. Set the value of the asg.portal.spotfire.ssl.property.file.path property to the absolute path to the SSL properties used for the Spotfire server, for example: 
    asg.portal.spotfire.ssl.property.file.path=<absolute-path-to-ssl.properties>
For example:
asg.portal.spotfire.ssl.property.file.path=/opt/tibcoasgconfig/tibco/cfgmgmt/asg/PortalProject/wss/ssl.properties
  3. Add an ssl.properties file to the directory as stated previously.

    The following example shows the ssl.properties file. 

    com.tibco.trinity.runtime.core.provider.identity.trust.enableTrustStoreAccess=true
com.tibco.trinity.runtime.core.provider.identity.trust.trustStoreServiceProvider=class:com.tibco.trinity.runtime.core.provider.credential.keystore
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreLocation=/root/Desktop/AllCerts/SpotfireServerCert.pfx
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStorePassword=password
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreProvider=
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreRefreshInterval=60000
com.tibco.trinity.runtime.core.provider.credential.keystore.keyStoreType=PKCS12
  4. Edit the PortalProject configuration that is located under the TIBCO_CONFIG_HOME directory, and make sure the TargetOperation.cfg file contains a line configuring the HTTPS service for Spotfire, for example: 
    service_Request|HTTPS|||20000,0,0,0|||||||||||/APIXAnalytics|gov-was.na.tibco.com|443|Administrator|!t1seasy|*,{uri_suffix},{query_string}|POST|ssl.properties|trueservice_RequestGet|HTTPS|||20000,0,0,0|||||||||||/APIXAnalytics|gov-was.na.tibco.com|443|Administrator|!t1seasy|*,{uri_suffix},{query_string}|GET|ssl.properties|true
  5. Import the Spotfire certificate into the cacerts keystore that is located in TIBCO_HOME/tibcojre64/1.7.0/lib/security/cacerts directory by using the following command:
    keytool - import -trustcacerts - alias alias_name -file filename - keystore keystore_name

    where:

    alias_name is the name of the SSL alias.

    filename is the name of the certificate file.

    keystore_name is the jre_home\lib\security\cacerts directory.