Accounting Service management - SSO

By default Accounting Service is configured to expose the following Spring Boot Actuator HTTP(S) endpoints:

  • /actuator - management index page
  • /actuator/info - application info, including version number
  • /actuator/health - health check
  • /actuator/loggers - view and set log levels, setting requires POST

These endpoints can be used in troubleshooting.

In the Windows installation also the actuator shutdown endpoint is exposed in order to stop the Accounting Service running as a Windows service.

  • /actuator/shutdown - requires POST

Actuator endpoint authentication

Actuator endpoints require HTTP Basic authentication. There are two options for the credentials:

  1. Credentials are explicitly set in the win32.config/unix.config file: accounting.actuator.username / accounting.actuator.password
  2. Password is left empty and thus generated during the SSO installation process by the setup script and you can check the values either from

    1. win32.config/unix.config file: accounting.actuator.username / accounting.actuator.password or
    2. config/accounting-install.properties file: spring.security.user.name / spring.security.user.password

See also Accounting Service security and SSO Installation Accounting Service settings.

Changing log level while system is running

You can change the logging level for the Accounting Service or any of its components without restarting the application.  This is standard Spring framework behaviour.

Example of setting com.ubisecure log level to debug by POST
POST /actuator/loggers/com.ubisecure HTTP/1.1
Host: localhost:8084
Content-Type: application/json
Authorization: Basic dXNlcjplNGJjODJkNS05MWY1LTRmN2QtYjI3NS1jMDc4NTllZTYzNDE=
{
    "configuredLevel": "DEBUG"
}

This web page (including any attachments) may contain confidential, proprietary, or privileged information – not for disclosure without authorization from Ubisecure Inc. Copyright © 2022. All Rights Reserved.