====== Alfresco hacks ======

===== Security best practices and tips ====

   * configure all ports beyond 1024
   * avoid default password (admin, db, jmx)
   * change default certificates and keys in SOLR
      * use keytool or you own certificates
      * installRoot/alf_data/solr/CreateSSLKeystores.txt
   * Set permission for configuration files, content store, indexing and logs

   chown -R alfresco:alfresco installRoot/
   chmod -R 600 installRoot
===== Proxying =====

TODO

===== Switch off Tomcat application server =====

TODO

===== Mobile APP (url redirections) =====
Alfresco 4.x

Problem:
<code>
The server is available through internal url : http://myalfresco:8080/alfresco
The server is available through external url : http://www.mycompany.com/alfresco
</code>
See: https://issues.alfresco.com/jira/browse/MOBILE-42?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel

create **''<tomcat>/shared/classes/META-INF/spring-webscripts-config-custom.xml''** containing
<code>
<alfresco-config>
   
   <config evaluator="string-compare" condition="Server">
      <server>
         <scheme>http</scheme>
         <hostname>your-pulic-host</hostname>
         <port>your-port</port>
         <path>alfresco</path>
      </server>
   </config>
   
</alfresco-config> 
</code>

and make sure you have string " **''shared.loader=${catalina.base}/shared/classes''** " in file **''<tomcat>/conf/catalina.properties''**