MTFiskal middleware agent TMS
How to Setup IIS and Deploy ASP NET Applications to IIS
TMS - testing stages and deployment
MFB - debugging and corrections2
Clouds and top 10 enterprise architecture trends
Journal of Simon Collison
The Philosophy of Composition (1846) by Edgar Allan Poe
Growing Software Strategies
Development Methodology
Planning
Intentional Software
Software as Literature
Gerald Jay Sussman
Universal methods of reducing complexity
Incremental vs. Radical Innovation
Building a Product Roadmap
Component Deployment
Douglas Crockford: Quality
 
MTFiskal: Deployment Check List
 MFB - APIS/FINA certificates installation


MTFiskal: Deployment Check List
PREREQUISITES:
- Public web address: http://fiskalizacija.telekomcloud.hr/mercur/ OK
- Netapp 6210 storage - Netshare Disk OK
- Setting of virtual directories on IIS to point at Netapp 6210 storage - \\172.26.173.9\ht_interno_eftpos\wwwroot_production\FINA_certificates\
- Setting MTFiskal Paths and FINA configuration parametres

.........................................................................................................
Ove dvije stvari se moraju podesiti da bi MTFiskal modul radio pod željenim userom:
a. Application pool - podesiti Application pool za MTFiskal da se vrti pod userom (Account: etranet_dkovacic@tcloud.local, Pass: Passw0rd)
b. Pristup fizičkom direktoriju
Slike u prilogu
Account: etranet_dkovacic@tcloud.local
Pass: Passw0rd
.........................................................................................................
.........................................................................................................
Ovo je potrebno napraviti vezano za MTFiskal i FileUpload aplikacije.
.........................................................................................................

MTFiskl:
- potrebno je dodati u Computer Certificate Store pod trusted CA root od FINA-e produkcijiski certifikat.
- u web.config datoteci od MTFiskala potrebno je promijeniti URL na FINA web service. Najbolje je otvoriti conifg file od produkcijskog MTFiskala i kopirati URL
- u slučaju da se mijenja putanja do certifikata potrebno ju je također promijeniti u web.config datoteci

FileUpload:
- u slučaju da će path do direktorija biti drugačiji od testnog potrebno je otvoriti web.config datoteku, editirati je i promijeniti path-ove do direktrorija

.........................................................................................................
=============================
Preuzimanje i pohrana RDC CA root certifikata
=============================
http://rdc.fina.hr/CA/RDCca.cer
MTFiskal - potrebno je dodati u Computer Certificate Store pod trusted CA root (Trusted Root Certification Authorities - Certifikates) od FINA-e produkcijiski certifikat.
http://fiskalizacija.codeplex.com/discussions/402086
Prvo treba isprobati ECHO
http://fiskalizacija.telekomcloud.hr/mercur/t8.html

=============================
Preuzimanje RDC CA root certifikata
=============================
RDC CA ROOT certifikat preuzima se s FINA Internet stranica, i oni preporučuju instaliranje kroz Internet preglednik "Internet Explorer". Ovaj video prikazuje upravo to!
http://www.youtube.com/watch?feature=player_embedded&v=nZz5aJivXfw
http://www.tvornica-programa.hr/wip/index.php/wip-poslovni-sustav/wip-upute/item/rdc-ca-root-certifikat-za-produkciju
NAPOMENA: kada sam preuzimanje RDC CA ROOT certifikata, pokušao napraviti sa MS Explorerom, bilo je nekih problema kod otvaranja, dok je sa Google Chromom sve išlo dobro, kao u ovim video-uputama
http://www.youtube.com/watch?feature=player_embedded&v=nZz5aJivXfw
.......................................................

Napomena:
Fina nije validan Certificate Authority (barem ne izvan granica Lijepe naše - time postižu "Finu uštedu"). Ne postoji ispravan certificate chain kojim se s servera s kojeg se vrši potpisivanje može potvrditi da je cis.porezna-uprava.hr taj koji tvrdi da je (i ostvariti SSL vezu s njim), osim ako ti na serveru ne instaliraš verifikacijski root certifikat (produkcijski - RDC CA certifikat) kojim kažeš da vjeruješ Fini.
Iz istog razloga ti i browser javlja da ne može ostvariti sigurnu vezu sa mojcert.fina.hr, dok ne instaliraš taj RDC CA certifikat.

............................................................................................
Pohrana RDC CA root certifikata unutar Windows Certificate Store-a.
............................................................................................
Potrebno je prvo preuzeti file RDCca.cer (RDC CA root certifikat) te ga zatim pohraniti unutar Windows Certificate Store-a.

Adding certificates to the Trusted Root Certification Authorities store for a local computer
Administrators is the minimum group membership required to complete this procedure. To add certificates to the Trusted Root Certification Authorities store for a local computer
Click Start, click Start Search, type mmc, and then press ENTER.
On the File menu, click Add/Remove Snap-in.
Under Available snap-ins, click Certificates,and then click Add.
Under This snap-in will always manage certificates for, click Computer account, and then click Next.
Click Local computer, and click Finish.
If you have no more snap-ins to add to the console, click OK.
In the console tree, double-click Certificates.
Right-click the Trusted Root Certification Authorities store.
Click Import to import the certificates and follow the steps in the Certificate Import Wizard.
[Ctrl] + [Enter] is equivalent to Right-click, which often under Remote Desktop does not work!
http://fiskalizacija.codeplex.com/discussions/402086
...........................................

--------------------------------------------
Kreiranje virtualnog direktorija na IIS-u
---------------------------------------------
1. Potrebno je prvo napraviti rename direktorija na c:\inetpub\wwwroot... jer ne mogu biti dva direktorija sa istim imenom.
2. sa IIS Managera otići na Default web site, desni klik i onda Add Virtual Directory
2.a Preporučam pod physical path staviti path sa \\IP adresa.. umjesto mapiranog X diska.
\\172.26.173.9\ht_interno_eftpos\wwwroot_test\FINA_certificates

2.b Kada se kreira virutalni direktorij kliknuti na njega i sa desne strane na izborniku izabrati.. Advanced settings.

3. Pod Physical Path Credentials unijeti specific usera, ja sam do sada stavljao:
Account: etranet_dkovacic@tcloud.local
Pass: Passw0rd
\\172.26.173.9\ht_interno_eftpos\wwwroot_test\FINA_certificates
etranet_dkovacic@tcloud.local
Passw0rd