10-30 Oracle Complex Event Processing Administrators Guide security auditor to generate audit records for events with a severity level of WARNING. – wls:error-audit-severity-enabled: If the severity value is set to CUSTOM, setting this child elemnent to true causes the Oracle CEP security auditor to generate audit records for events with a severity level of ERROR. – wls:success-audit-severity-enabled: If the severity value is set to CUSTOM, setting this child elemnent to true causes the Oracle CEP security auditor to generate audit records for events with a severity level of SUCCESS. – wls:failure-audit-severity-enabled: If the severity value is set to CUSTOM, setting this child elemnent to true causes the Oracle CEP security auditor to generate audit records for events with a severity level of FAILURE. 5. Save and close the security.xml file. 6. Restart the Oracle CEP server for the changes to take effect. See Section 1.5.4, Starting and Stopping Oracle CEP Servers .

10.10 Disabling Security

You can disable security entirely on the Oracle CEP server. While this configuration may be appropriate for development environments, Oracle does not recommend disabling security in a production environment. To temporarily disable security, you can run the startwlevs.cmd or startwlevs.sh script with the -disablesecurity argument on the command line. For example: startwlevs.cmd -disablesecurity Note: In some sample domains, the startwlevs.cmd and startwlevs.sh scripts already include a -disablesecurity argument. Executing such a script with -disablesecurity on the command line will fail with an Illegal argument error. 11 Configuring Jetty for Oracle CEP 11-1 11 Configuring Jetty for Oracle CEP This chapter contains information on the following topics: ■ Section 11.1, Overview of Jetty Support in Oracle Complex Event Processing ■ Section 11.2, Configuring a Jetty Server Instance ■ Section 11.3, Example Jetty Configuration

11.1 Overview of Jetty Support in Oracle Complex Event Processing

Oracle CEP supports Jetty see http:www.mortbay.org as Java Web server to deploy HTTP servlets and static resources. Oracle CEP support for Jetty is based on Version 1.2 the OSGi HTTP Service. This API provides ability to dynamically register and unregister http:java.sun.comproductsservletdocs.html objects with the run time and static resources. This specification requires at minimum version 2.1 of the Java Servlet API. Oracle CEP supports the following features for Jetty: ■ Section 11.1.1, Servlets ■ Section 11.1.2, Network IO Integration ■ Section 11.1.3, Thread Pool Integration ■ Section 11.1.4, Jetty Work Managers For details about configuring Jetty, see Section 11.2, Configuring a Jetty Server Instance.

11.1.1 Servlets

In addition to supporting typical synchronous Java servlets, Oracle CEP supports asynchronous servlets. An asynchronous servlet receives a request, gets a thread and performs some work, and finally releases the thread while waiting for those actions to complete before re-acquiring another thread and sending a response.

11.1.2 Network IO Integration

Oracle CEP uses network IO NetIO to configure the port and listen address of Jetty services.