Have you checked if the /api endpoints are enabled in webapplication?

Also have a look and check Security/Audit/View AuditDB for any errors. Same for ApacheLogs, webgateway logs(CSP.log) as well as the messages.log

nice, another option here is to create a scheduled task in IRIS to call this, set the task to be called OnDemand and voila you can trigger a shutdown from SMP.

Hi Philip,

not knowing anything about your deployment or applications hosted by IRIS this will be only very high-level.

There are multiple ways how this can be achieved. 

Essentially the easiest way is to stop/freeze the IRIS instance on your backup mirror in LIVE then, depending on your databse sizes. Either copy the database files over to your test environment, or take afilesystem snapshot and transfer that accross. After start,thaw the backup mirror iris instance.

On the test environment break the mirror. shutdown the instance on your primary test mirror. copy in the databases you transferred (ensure the global mappings are the same), you can choose at this point to not overwrite certain databases you do not want to be refreshed e.g. localsysconfig. start up the iris instance, remove the mirror flag from the database files you just refreshed and then do all post refresh activities. at the end you have to rebuild the TEST mirror though, as per IRIS doco. 

essentially the webgateway/cspgateway relays the non-static portions of your website to Ensemble for processing and serving.

refer to: WebGateway Introduction | InterSystems IRIS Data Platform 2024.1

If you want to secure your web application, rest/soap api's and SMP then you need to do this in IIS/Apache.

Also if you plan to do this work, it would also be a good idea to disable PWS (private web server) and configure the ports served by PWS also to be served by IIS?Apache.

When you do Delegated Auth you add code to ZAUTHENTICATE that validates the request against what you want e.g. you grab userid from the incoming web session, or even content of the get parameters provided and validate it against a global that was mapped via ECP from your primary server, that global could save e.g. client ip and username.
Then you can assign a valid user in ZAUTHENTICATE for the incoming connection, no password needed.

I don't think you can provide object script code via the UI for security reasons.

What you probably need to do is open you production item in Studio/VSCode.

Then overwrite the OnInit() method with something like

Below code is not validated and will not be 100% correct in regard to function specs etc, this is only used for clarification and example:

Method OnInit(.............) as %Status
{
    set ..IpAddress=$get(^ehrIP)
    set status=#super()
    return status
}

Hi Cathrine,

usually, TrakCare as a web application does not directly integrate with a dictation software. Any dictation software is used to fille the appropriate text field in the TrakCare browser window after parsing the dictation.

For more details and for a in depth look i would suggest you get an iService ticket raised so the specialist/development can have a look at it.

Best Regards
Timo

Hi Carl,

easiest way is to save the authorization to a global, have that global mapped via ECP to your child servers.
On the child servers create a ZAUTHENTICATE routine and implement delegated authentication. essentially you use this routine to check on connection open on the child server if the incoming connection is a valid request based on the auth global mapped from your primary server, then allow or deny.

From a SMS point of view this is major hell.
If you are coding you application currently, then rather then checking a database for settings instead of using global mappings, code your application that it checks a "higher-priority global first" then defaults to the global default mapping.

example core config uses ^ %SYS for instance wide config and ^SYS for local namespace config.

In this scenario you would not even need a %ALL namespace global mapping.

Hi Alin,
I can see that you are using cygwin to interact with *nix version of python.
Any reason why you are not using the windows version? 
Best regards
Timo

If you have access to the IRIS instance then you can also use ISCLOG
ref Logging | InterSystems IRIS Data Platform 2024.1
 

Just be aware the data resides in %SYS in ^ISCLOG in the %SYS namespace not in ^%ISCLOG
^%ISCLOG is used to enable the logging though

Without seeing the whole class. I would look at the Fetch method it needs to iterate your temp storage and output each row.

Hi,

try querying the /api/monitor/metrics endpoint and see if that provides you the details you need.

As i never have used SolarWinds i cannot comment on parsing this data for display in SolarWinds

Hi, check the module mappings in the IIS server.

You need to have mappings for csp, cls, cxw going to the ISC plugin/module.

Hi Pravin,

afaik this is not possible.

I would suggest revisiting the design. If you need custom code to be able to extend your production, then include code hooks that will be called if implemented.

e.g.

In your production class include code during processing that checks for classes inheriting froma specific abstract class you also defined and call the respective method. Now any customisation can be done by inheriting from the abstract class and overwriting the respective methods.

So the SSL test actually succeeded, so the port connection works. But instead of a normal http success code it got server unavailable. Is your target server answering correctly?