To install an AWE-based application just deploy it on an application server, like Apache Tomcat, Wildfly (old JBoss) or IBM WebSphere
There are several settings which can be defined onto the application server to optimize the access time between client browser and server and between server and databases:
Server compression reduces the size of packages sent to client browser by compressing them in GZIP, which can be uncompressed by all modern browsers.
To activate this setting (in Tomcat) use the following attributes on server.xml file:
A datasource is a server-managed connection pool which speeds up the database access. Connection in Apache Tomcat has two steps:
server.xml: Define the database connection
context.xml: Define the server endpoint to allow access to the datasource
Note: These optimization settings are only for Apache Tomcat. Wildfly and WebSphere have their own settings to enable server compression and datasoures
We recommend to follow these steps to improve application server security.
- Follow OWASP security recommendations for Apache Tomcat https://www.owasp.org/index.php/Securing_tomcat
- Configure HTTPS connection in Tomcat https://tomcat.apache.org/tomcat-8.0-doc/ssl-howto.html. You may need paid SSL certificates (or certificates issued by your CA).
- Enable extended access logs. Edit server.xml file and add check if the following code is enabled inside host tag:
- Enable clickjacking protection (only for Tomcat version 8 or greater). : web.xml: Uncomment the following code
And add the following code just after the uncommented section:
- If HTTPS is enabled, add a rule to redirect HTTP requests to HTTPS. On web.xml file add the following code at the end of web-app tag (add it inside web-app tag):