book

Liberty in IBM CICS: Deploying and Managing Java EE Applications

Name: Liberty in IBM CICS: Deploying and Managing Java EE Applications
ISBN: 9780738442167

by Phil Wakelin, Carlos Donatucci, Jonathan Lawrence, Mitch Johnson, Michael Jones, Tito Paiva

January 2018

Intermediate to advanced

266 pages

7h 31m

English

IBM Redbooks

Read now

Unlock full access

Front cover
Notices
Trademarks
Preface
AuthorsNow you can become a published author, too!Comments welcomeStay connected to IBM Redbooks
Chapter 1. Installation and configuration
1.1 Getting your CICS region ready1.2 zFS file system configuration1.2.1 zFS configuration files1.2.2 Autoconfiguration1.2.3 zFS structure1.2.4 zFS output files1.2.5 zFS file permissions1.2.6 zFS file encodings and editing tools1.3 Setting up a Liberty JVM Server1.3.1 JVM profile1.3.2 Tailoring the JVM profile1.3.3 Liberty specific options1.3.4 IBM Language Environment runtime options1.3.5 Creating a JVMSERVER resource1.4 Tailoring server.xml1.4.1 Adding Liberty features1.4.2 Include files1.4.3 Configuring the HTTP and HTTPS endpoints1.4.4 CICS bundle deployed applications1.4.5 Default web application1.4.6 Liberty transaction log files1.4.7 Sample server.xml file1.4.8 Welcome page
Chapter 2. Deploying a web application
2.1 Building the restapp sample2.1.1 Obtaining the sample code2.1.2 Creating the Eclipse projects2.2 Deploying a web application to Liberty2.2.1 Deployment by using Liberty dropins2.2.2 Deployment as an application element in server.xml2.2.3 Deployment in a CICS bundle2.2.4 Comparison of the deployment options2.3 Advanced deployment options2.3.1 Shared libraries2.3.2 Global libraries2.3.3 Deploying a prebuilt Java archive in a CICS bundle2.3.4 Pausing and resuming a server
Chapter 3. Link to Liberty
3.1 Overview3.1.1 Prerequisites3.1.2 How it works3.2 Link to Liberty sample application3.2.1 Building the sample application3.2.2 Sample application3.2.3 Deploying the sample3.2.4 Running the sample3.2.5 Manual program definition3.2.6 Updating a Link to Liberty program3.3 Qualities of service3.3.1 Transactions3.3.2 Exception and abend processing3.3.3 Security3.3.4 Summary
Chapter 4. Connecting to Db2 by using JDBC
4.1 JDBC overview4.1.1 JDBC drivers4.1.2 Data sources4.1.3 Static and dynamic SQL4.2 Installing the JDBC Employee application4.2.1 Liberty features4.2.2 Data source definition4.2.3 CICS resources4.3 Using JDBC type 2 connectivity4.3.1 Configuring CICS resources4.3.2 Configuring server.xml4.3.3 Binding the plan4.3.4 Running the application4.4 Using JDBC type 4 connectivity4.4.1 Configuring CICS resources4.4.2 Configuring server.xml4.4.3 Running the application4.4.4 Container managed security4.5 Transactional support with JDBC4.6 Tracing JDBC
Chapter 5. Connecting to IBM MQ by using JMS
5.1 Introduction to JMS5.1.1 Java Message Service5.1.2 Message Driven Beans5.1.3 Java Naming and Directory Interface5.1.4 Connection pooling5.2 JMS sample application5.2.1 Modifying the JMS sample application5.2.2 Deploying the JMS sample application5.2.3 Configuring Liberty for the JMS sample application5.2.4 Describing the JMS updates to the JVM server profile5.3 Required CICS resources5.3.1 BUNDLE resources5.3.2 URIMAP resource5.3.3 Transaction resources5.4 Required IBM MQ resources5.4.1 Configuring IBM MQ Explorer5.4.2 Defining the queues5.5 Testing the sample applications5.5.1 Testing the MQJMSDemo application5.5.2 Testing the MySimpleMDB application5.5.3 Use of the Execution Diagnostic Facility5.6 Security5.6.1 RACF resources5.6.2 JMS security scenarios5.6.3 Summary5.7 Transport Layer Security5.7.1 RACF resources5.7.2 TLS debugging hints and tips
Chapter 6. Configuring Transport Layer Security support
6.1 JSSE and JCE6.1.1 Updating the JCE policy files6.2 TLS server authentication by using a Java keystore6.3 TLS server authentication by using a RACF key ring6.4 TLS client authentication6.5 Hints and tips when using TLS6.5.1 Tracing TLS6.5.2 Enforcing TLS for web applications6.5.3 HTTP persistent connections6.5.4 TLS session timeout6.5.5 Controlling the TLS version6.5.6 Controlling the cipher suite6.5.7 Restricting weak algorithms6.6 Using cryptographic hardware with JSSE6.6.1 Cryptographic hardware6.6.2 Cryptographic software6.6.3 Configuring TLS to use the cryptographic coprocessors6.6.4 Monitoring cryptographic hardware
Chapter 7. Securing web applications
7.1 Overview7.2 z/OS security configuration for Liberty JVM servers7.2.1 Starting the angel process7.2.2 Setting up access to the angel process7.2.3 Profile prefix and required SAF profiles7.3 Configuring a Liberty security registry7.3.1 Configuring a basic user registry7.3.2 Configuring a SAF registry7.3.3 Configuring an LDAP registry7.4 Authentication scenarios7.4.1 Basic authentication with a SAF registry7.4.2 Basic authentication by using LDAP credentials7.4.3 Form-based login7.4.4 Certificate-based client authentication7.5 Authorization scenarios7.5.1 URL-specific authorization by using EJBROLEs7.5.2 Programmatic role authorization by using EJBROLEs7.5.3 CICS transaction security with URIMAPs7.6 Configuring SSO by using Lightweight Third-Party Authentication7.6.1 Configuring LTPA7.6.2 Disabling SSO in Liberty7.6.3 Requiring TLS when using SSO7.7 JSON client code with cookie printer

Chapter 8. Logging and monitoring
8.1 Message and log files8.1.1 CICS logs8.1.2 Java logs8.1.3 Liberty server logs8.1.4 JVM server trace output8.2 Monitoring tools8.2.1 CICS statistics records8.2.2 CICS performance records8.2.3 CICS Performance Analyzer8.2.4 CICS Explorer8.2.5 IBM Health Center8.2.6 IBM Application Metrics for Java8.2.7 Runaway tasks8.2.8 CICS policies
Chapter 9. Port sharing and cloning regions
9.1 Sharing ports9.1.1 Using WLMHEALTH9.2 Cloning regions9.2.1 Sharing application definitions9.2.2 Sharing SSL configuration9.2.3 Sharing feature configuration9.2.4 Sharing LTPA keys
Back cover

Overview

Abstract

This IBM® Redbooks® publication is intended for IBM CICS® system programmers and IBM Z architects. It describes how to deploy and manage Java EE 7 web-based applications in an IBM CICS Liberty JVM server and access data on IBM Db2® for IBM z/OS® and IBM MQ for z/OS sub systems.

In this book, we describe the key steps to create and install a Liberty JVM server within a CICS region. We then describe how to best use the different deployment techniques for Java EE applications and the specific considerations when deploying applications that use JDBC, JMS, and the new CICS link to Liberty API.

Finally, we describe how to secure web applications in CICS Liberty, including transport-level security and request authentication and authorization by using IBM RACF® and LDAP registries. Information is also provided about how to build a high availability infrastructure and how to use the logging and monitoring functions that are available in the CICS Liberty environment.

This book is based on IBM CICS Transaction Server (CICS TS) V5.4 that uses the embedded IBM WebSphere® Application Server Liberty technology. It is also applicable to CICS TS V5.3 with the fixes for the continuous delivery APAR PI77502 applied. Sample applications are used throughout this publication and are freely available for download from the IBM CICSDev GitHub organization along with detailed deployment instructions.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9780738442167Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills