Configure Custom Domain in Private Space : CloudHub 2.0

 With CloudHub 2.0, applications are deployed in public spaces or private spaces. Private space isolates the applications deployed, and different network customizations can be done within the private space. Earlier in CloudHub 1.0, DLB used to be configured to balance the incoming load along with configuring the custom/vanity domain instead of using *.cloudhub.io

We can configure vanity/custom domains in the private space, avoiding accessing the applications through the default *.cloudhub.io domain. Configuring the custom domain will require the public certificate and the private key as a prerequisite.

    Generating the self-signed public certificate and the private key

    For simplicity, we will try to create certificates for the wildcard domain. To generate the self-signed public certificate and private key, we will require OpenSSL.

    1. Create a config file as below, name it config.cfg, and change the values as per the domain details.

    [ req ]
    default_bits       = 2048
    distinguished_name = req_distinguished_name
    prompt = no
    [ req_distinguished_name ]
    countryName                 = IN
    stateOrProvinceName         = Punjab
    localityName               = Amritsar
    organizationName           = DecipherMiddleware
    commonName                 = *.domain.com

    2. Run the below command through the terminal. Currently, expiration is set to 3000 days.
    openssl req -newkey rsa:2048 -nodes -keyout deciphermiddleware-in-private.pem -x509 -days 3000 -out deciphermiddleware-in-crt.pem -config config.cfg

    This will generate 2 files: a public certificate and a private key. These 2 files will be used in the later stage.

    Steps: Anypoint Platform

    Let's now log in to the Anypoint Platform.

    1. Go to Runtime Manager and click private spaces.


    2. Select the private space, where the custom/vanity domain needs to be configured. Click on Domains & TLS.

    3. Click on Create TLS Context.

    4. Enter the name for configuration. Upload the public certificate and the private key created in the previous steps. Certificates have been configured to have domains as *.mule.deciphermiddleware.in


    5. Enter the keystore password, if the keystore was encrypted. If you have CA signed certificate upload that as well.


    6. Click on Create TLS Context.

    7. A new TLS context will be created as below.

    Let's configure an application to use the newly configured custom domain.

    8. Open any CloudHub 2.0 application deployed in the Private Space. Go to settings. Click on Ingress, and click on Add Endpoint.

    9. Change the host to the custom host configured. For now, leave the remaining fields as is. Click on Apply Changes. This will deploy the application with a new configuration as defined by the deployment model.


    10. Before using the custom domain, make sure the DNS record with the following values is being configured.
    Record Type CNAME
    Host (or Name) wildcard or wildcard with subdomain (*.mule used in the current example)
    Value (or Content) Private Space default hostname

    Validate if the DNS record is working

    The below command can be used to check if the DNS records are configured properly.
    nslookup <host-of-application>
    If private space static IPs and default hostname are visible as output, then configuration is proper and DNS routing is working as expected.

    Apps can be accessed using the custom/vanity domains.

    References


    Please share your valuable feedback 😊😊😊


    -

    Comments

    Post a Comment

    Popular posts from this blog

    DateTime formatting using xp20:format-dateTime ()

    xs:dateTime Format In XML, we generally use xs:dateTime(xs:xmlns="http://www.w3.org/2001/XMLSchema") data type to store date time data. The generic representation of date time, that is supported by xs:dateTime in xml: YYYY-MM-DDThh:mm:ss[.SSS][Z|(+|-)hh:mm] Example :  2019-09-11T10:16:31.943+05:30 Code Description Example YYYY represents a 4-digit year 2019 MM represents a 2-digit month 09 DD represents 2-digit date 11 hh represents 2-digit hours 10 mm represents minutes in 2-digits 16 ss represents seconds in 2-digits 31 SSS represents milliseconds 943 T represents time separator T Z represents UTC time zone or 0 time zone offset (+|-)hh:mm represents time zone offset +5:30 Few more valid examples : 2019-09-11T21:32:52, 2019-09-11T21:32:52+02:...
    Read more

    Create Delimited String from XML Nodes and Vice Versa in SOA 12c

    A delimited string is a string representation of data separated by a delimiter(e.g. ","). A simple representation of the delimited string will look like. Delimited String Examples Sample-1-- Delimiter as ","        Value1,Value2,Value3   Sample-2-- Delimiter as "|"        Value1|Value2|Value3 If we want to represent the above set of delimited values in the form of an XML document under some root and parent tag. The representation will look like this. XML Example <root xmlns="http://test.com/sample/xml">   <Values>     <value>Value1</value>     <value>Value2</value>     <value>Value3</value>   </Values> </root> Sometimes we may need to convert values coming in delimited string to an xml document or vice versa. Since delimited strin...
    Read more

    Import and Export MDS artifacts in SOA 12c

    Image
    Oracle SOA-MDS (Metadata Store) repository can be used to access artifacts that can be shared among various SOA composites. For example, we have one common schema for a business fault that is consumed by various applications. Instead of having a localized copy of that schema file in each SOA composite, we can have it in a centralized repository (SOA-MDS). Another benefit of using SOA-MDS is that we can change the file at runtime and need not redeploy the complete code. While developing SOA composites, we use SOA design-time repository, later these changes can be synced to the SOA servers. In this article, we will discuss 2 ways to sync the artifacts available in the SOA design-time repository and the SOA servers. Establishing the connection to SOA-MDS in Jdeveloper. Using SOA em console or Fusion Middleware control console. Moving a file between SOA composite to SOA design-time MDS repository Let's assume, we created a businessFault.xsd which wi...
    Read more