h1. JADE Credential Store
See more information about Credential Store here http://www.sos-berlin.com/mediawiki/index.php/Using_CredentialStore_to_securely_store_authentication,_connection_and_other_parameters
Setup KeePassX DB as Credential Store
Download KeePassX and create kdb file
JADE Credential Store (CS) only support KeePassX DB version 1.0
one can download KeePassX desktop utility from https://www.keepassx.org/downloads/
Setup Credential Store with Password
Step 1: Setup KeePassX DB
- Open the KeePassX utility and create new KeePass DB.
- Assign password to KeePass DB
JADE will use the "password" give during creation process as access password of KeePassX DB.
Setup Credential Store with PPK key
Create Credential Store entries
Create Credential Store entry for FTP server
- Create new group i.e. sos
- create new sub group i.e. server
- create new entry wilms for settings
Create Credential Store entry for SFTP server
JADE profile(s) with Credential Store
Setup global credential Store profile
A profile definition for Server to Server transfer, from a sftp to a ftp server:
[Keepass_DataBase_WithPassword] use_credential_Store = true CredentialStore_FileName = C:\sos-berlin.com\jade\credential-store\keepassX-test.kdb CredentialStore_password = *********
Setup JADE profile for FTP
[ReceiveUsingKeePass]
source_CredentialStore_KeyPath = sos/server/wilma.sos
source_include = Keepass_DataBase_WithPassword
source_dir = /tmp/test/jade/out
source_make_Dirs = true
source_transfer_mode = ascii
target_protocol = local
target_dir = $\{TEMP\}/jade/in
operation = copy
file_spec = \.txt$
transfer_mode = ascii
Setup JADE profile for SFTP
[ReceiveUsingKeePass]
source_CredentialStore_KeyPath = sos/server/8of9.sos
source_include = Keepass_DataBase_WithPassword
source_dir = /tmp/test/jade/out
source_make_Dirs = true
source_transfer_mode = ascii
target_protocol = local
target_dir = $\{TEMP\}/jade/in
operation = copy
file_spec = \.txt$
transfer_mode = ascii
An Example Transfer Profile
A profile definition for Server to Server transfer, from a sftp to a ftp server:
[ftp_server_2_server] ssh_auth_method=password source_user=kb source_password=***** source_ssh_auth_method=password source_host=wilma.sos source_protocol=sftp source_port=22 target_user=test target_password=***** target_host=8of9.sos target_protocol=ftp target_port=21 file_spec=^.*\.txt$ operation=copy
In this example all files with the file name extension ".txt" should be transferred from the server "wilma" via sftp to the server 8of9 by ftp. the folders are not explicitly specified and therefore the "home" folders of the user are selected.
Profile fragments TBD
To make the profile more reusable and readable it is possible to reuse profiles snipets in the way like this:
[wilma]
user=kb
password=*****
ssh_auth_method=password
host=wilma.sos
protocol=sftp
port=22
[8of9]
user=test
password=*****
host=8of9.sos
protocol=ftp
port=21
[globals]
log_filename=$\{TEMP\}/sosftphistory.log
The profiles for wilma and 8of9 are defined only once. They could be used as many time as needed in different transfer profiles. There is a "globals" profile as well.
Define Profiles using the include directive TBD
Now we will specify the transfer profile again:
[ftp_server_2_server] source_include=wilma target_include=8of9 operation=copy file_spec=^.*\.txt$ [ftp_more] target_include=wilma source_include=8of9 operation=move file_spec=^.*\.(txt|pdf|dat)$ source_folder=/outbound/daily target_folder=/inbound/transfer
The "include" parameter will include the named profiles in the order they are defined. In the first example wilma will be included as source and in the second example as target. The "globals" profile is included automatically, no need to specifiy it in an include parameter.
The profiles must be defined in the same settings file.
For infos about the parameters see the parameter documentation on jadeParameterReference.