If upgrading from or have had exposure to a previous version, here are some of the highlights that were introduced in version 6.
The following are a list of major new features since version 5.0
The console server and universal appliance have been consolidated into a single deployment. Only one installation will be shipped. If a feature is not desired from the deployment it can be deleted.
A console file can now be renamed (configuration, rule set etc.), by giving it a new name and saving it.
A new rules wizard now helps to build an initial collection of rule sets and a matching configuration based on collected test data.
The console itself is now protected with OctopusV8 and in addition it is now possible to add new features to the console itself as custom functions. An example showing how to maintain an IP address block list and how to add additional password rules is included in the default deployment.
Any built in forwarding proxy (forwarder) can now be configured from the console instead of using the web.xml file. This configuration is performed at server level.
The server now ships with a built in forwarding proxy and web proxy deployed by default. Both the appliance and web proxy are available from the local host only unless configured otherwise.
The addition of a web proxy allows for easy initial testing of rules for any given website without any additional installation. To test rules against any site anywhere, simply configure the browser used to access the web proxy of the built in forwarding proxy.
It is now possible to redirect an incoming request to a different server or host, based on the virtual host
The ability to redirect the virtual host of the incoming request now allows the installation of the built in forwarding proxy on the same server as the site being protected. This requires port changes to the existing application, but is otherwise transparent.
It is now possible to create an alias for a given database name. This allows stock rules to be written using a generic database name that can be aliased using the configuration.
It is now possible to set database pool size limits, pool full conditions and other database level parameters.
The console now contains a security audit log that contains an audit trail for all major changes to administrative items.
Extension and user roles are now automatically backed up when changes occur and can be restored using the normal restore features.
Two new user types have been added: Super User and User Administrator. Super users can perform all administrative functions except user maintenance. User administrators can only perform user maintenance. This change was made to facilitate workflow inside large organizations.
It is now possible to set a performance monitoring level in the configuration (Input Source). The options are to just collect transaction counts, collect transaction counts and timings (giving individual rule delays) or collect transaction counts, timing and individual URI response times. A comprehensive reporting framework has been added to analyze the results.
It is now possible to automatically document the entire extent of a configuration deployed to a given server. Documentation includes server information, configuration settings, rule sets, data files, content files, JDBC driver settings and more.
The demo console can now be configured and restructured to one of four different production scenarios directly from with the console itself. Many settings can also be changed without requiring a restart.
The following is a list of new/changed environments supported since version 5.0.
From version 6, non-Jetty installations are no longer supported. The server must be deployed using Jetty. To most users this is a transparent issue and does not affect functionality in any way.
This feature allows a single OctopusV8 configuration to be deployed to more than one server on the same piece of hardware. The rules engine detects the conflict and does an automatic resolution by selecting an alternate management port and moving its home folder to a sub-directory below the main home folder.
As of version 6, there will only be one download and installation image covering all OctopusV8 installation variations. The Universal appliance and feed server equivalents can be created using this one image.
The built in proxy (formerly Universal Appliance) now ships as an extension (BIP Runtime) allowing the entire proxy to be updated using the update server.
JNDI data sources can now be used to access databases defined within the target application server's JNDI name space.
Custom logging (other than System Out) is now supported. Logging options include system out logging, file logging and logging through Apache commons logging (which supports Log4J, Avalon LogKit and basic JDK 1.4 logging).