Post installation

To finalize the installation you will need to applys the tasks below.

Disable Web Portal logs

Edit /opt/likpi/webroot/js/config/server.config.json and update section below to disable Likpi Web Portal log browser console:

"log": {
        "enabled" : false,
        "pattern" :"%d{yyyy-MM-dd HH:mm:ss,SSS} %-5p - %m%n"

Secure the files access

With administrator user:

$ sudo chmod 600 /opt/likpi/security/rsa_2048_priv.pem
$ sudo chmod 644 /opt/likpi/security/rsa_2048_pub.pem
$ sudo chmod -R 700 /opt/likpi/conf

Copy rsa_2048_pub.pem to webroot/security

$ cp /opt/likpi/security/rsa_2048_pub.pem /opt/likpi/webroot/security

Configure Nginx

Basic configuration for testing

Edit the file /etc/nginx/sites-available/default and add these entries with the support of your Linux administrator:

server {
        listen 35080 default_server;
        listen [::]:35080 default_server;
        root /opt/likpi/webroot;
        server_name _;
        index index.html;
        location / {
                try_files $uri $uri/ =404;
        }
}

SSL connection

Edit the file /etc/nginx/sites-available/default and add these entries with the support of your Linux administrator:

server {
    # Listen on port 80 for HTTP (redirect to HTTPS)
    listen 80;
    server_name _;

    # Redirect all HTTP requests to HTTPS
    return 301 https://$host$request_uri;
}

server {
        listen 443 default_server;
        listen [::]:443 default_server;

        server_name _;
        ssl on;

        # SSL certificate and key paths
        ssl_certificate /opt/likpi/security/selfsigned.crt;
        ssl_certificate_key /opt/likpi/security/selfsigned.key;

        # Enable SSL protocols and ciphers
        ssl_protocols TLSv1.2 TLSv1.3;
        ssl_ciphers HIGH:!aNULL:!MD5;
        ssl_session_cache shared:SSL:50m;
        ssl_prefer_server_ciphers on;

        # Root directory for the site
        root /opt/likpi/webroot;
        index index.html;

        # Serve the default index file
        location / {
            try_files $uri $uri/ =404;
    }
}

Note

The SSL configuration example above can be adapted to your context.

Warning

For secure connection, you need to configure and adapt /opt/likpi/conf/likpi-coremanager.json, /opt/likpi/webroot/js/config/server.config.json files and /opt/likpi/bin/likpi-wsgateway files. Pleas review Configuration section.