<@U06V253M4> I have an “interesting” command box s...
# box-productsd
dougcain
05/03/2023, 12:39 PM@bdw429s I have an “interesting” command box scenario I could do with some guidance on how to proceed with. I am trying to get ACF 2021 using command box to run on AWS fargate - I have been doing this with command box and ACF 2018 for quite a while now. I assumed simply switching the cf engine to ACF 2021 would “just work” with a bit of loading modules etc. and it did - go command box for the win.
I did notice however that the licensing server in ACF 2021 wasn’t enabling the enterprise license we have. After a bunch of investigation and a couple of hours with Adobe on a screen share it seems the license server isn’t getting a UID it needs from its environment. From what Adobe said I think it is assuming its running on an EC2 image and wants the VM’s UID from metatdata . This is not available via fargate as it abstracts all that stuff. Trying adobe’s official ACF 2021 container does seem to work in the same environment although it is much harder to work with compared to command box.
So my guess is the WAR install behaves differently to what ever Adobe do in the “official” image or less likely the command box image is causing the issue. Have you come across this in your travels and any ideas how I could see if there is something command box is doing / blocking / missing that might help debug this?
j
jclausen
05/03/2023, 2:19 PMCommandBox isn’t doing anything that way, as it just deploying the standard Adobe J2E war. It might be that ACF is relying on some Java options to determine if it is in a container and skips that UID check or gets the value from somewhere else. When you start the standard Adobe container, do you see any Java options in the initial startup?
jclausen
05/03/2023, 2:21 PMYou might try adding this JVM argument:
-XX:+UseContainerSupportjclausen
05/03/2023, 2:41 PMSo here are the JVM args Adobe uses in their
jvm.config Copy code
java.args=-server --add-opens=java.rmi/sun.rmi.transport=ALL-UNNAMED --add-opens=java.base/java.nio=ALL-UNNAMED --add-opens=java.base/java.lang=ALL-UNNAMED --add-opens=java.base/sun.util.cldr=ALL-UNNAMED --add-opens=java.base/sun.util.locale.provider=ALL-UNNAMED --add-opens=java.base/java.net=ALL-UNNAMED --add-opens=java.base/java.io=ALL-UNNAMED -Xms256m -Xmx1024m -XX:+UseParallelGC -Djdk.attach.allowAttachSelf=true -Dcoldfusion.home={application.home} -Djava.security.egd=/dev/urandom -Djava.awt.headless=true -Dcoldfusion.rootDir={application.home} -Djava.security.policy={application.home}/lib/coldfusion.policy -Djava.security.auth.policy={application.home}/lib/neo_jaas.policy -Dcoldfusion.classPath={application.home}/lib/updates,{application.home}/lib/,{application.home}/gateway/lib/,{application.home}/wwwroot/WEB-INF/cfform/jars,{application.home}/bin/cf-osgicli.jar -Dcoldfusion.libPath={application.home}/lib -Dorg.apache.coyote.USE_CUSTOM_STATUS_MSG_IN_HEADER=true -Dcoldfusion.jsafe.defaultalgo=FIPS186Random -Dorg.eclipse.jetty.util.log.class=org.eclipse.jetty.util.log.JavaUtilLog -Djava.util.logging.config.file={application.home}/lib/logging.properties -Dtika.config=tika-config.xml -Djava.locale.providers=COMPAT,SPI -Dsun.font.layoutengine=icu -Dcom.sun.media.jai.disableMediaLib=true-Djdk.attach.allowAttachSelf=true-Djava.awt.headless=truejclausen
05/03/2023, 2:42 PMI’m pretty sure the
UseContainerSupportjava.awt.headlessd
dougcain
05/03/2023, 2:51 PMthanks @jclausen i’m just in the process of setting up a “minimum” environment in AWS to test the differences between Adobes container and my commandbox one - slow going though 😞
b
bdw429s
05/03/2023, 5:54 PMHi @dougcain, I have no earthly freaking clue what Adobe is banging on about, lol. I'd need more information on this so-called
UIDbdw429s
05/03/2023, 5:55 PMThe only information I've known Adobe to need to activate is the license key in the
license.propertiesd
dougcain
05/03/2023, 8:21 PMThats what I thought - initially they said it’s a connectivity issue but it’s not - it’s assuming something about the infrastructure it’s running on I think when the license server calls back to Adobe
dougcain
05/04/2023, 1:33 PM@jclausen FYI tried the jvm args - no change to behaviour - will have to see if Adobe can be helpful
j
jclausen
05/04/2023, 1:47 PMIf we knew what
UID☝️ 1
jclausen
05/04/2023, 2:24 PMAlso, their container doesn’t use a J2E deployment. I don’t really see any differences between the license.properties files that jump out at me.
Adobe container:
Copy code
#CF License File
#Tue Mar 14 19:01:58 GMT 2023
vendor=0V\=LUFWP]J(Z^V)[G?G5'C@ \n
installtype=standalone
previous_sn=
appserver=0V\=LUFWP]J(Z^V)[G?G5'C@ \n
company=
sn=Developer
user=
listen=true Copy code
#CF License File
#Tue May 02 20:49:29 UTC 2023
vendor=0V\=LUFWP]J(Z^V)[G?G5'C@ \n
installtype=j2ee
previous_sn=
appserver=0V\=LUFWP]J(Z^V)[G?G5'C@ \n
sn=
lte=1685652569586
listen=trued
dougcain
05/04/2023, 2:28 PMFairly sure the Adobe container detects what it’s running on differently to the WAR somehow as in my tests I can see the Adobe container gets a UID from some where and sends it to the licensing server - the WAR version gets 000000 and sends that which causes the license server to go - no thanks - and evaluation version here we come.
Both running on the same bare infrastructure.
So some weird Adobe logic doing “something” seems to be the issue
j
jclausen
05/04/2023, 2:41 PMIs your license a perpetual or annual license? We use
cfconfig_licensed
dougcain
05/04/2023, 3:04 PMperpetual - think it is just making incorrect assumptions on what its running on which you would think should fail safe but in my case just goes to the evaluation license and you even get an error on the admin screen with a valid serial. Back with Adobe now - spent far too much time trying to track this down already…
2 Views