/ Home » Products » Nuxeo Platform » Deployment

Customize with
Nuxeo • Studio

Download

Nuxeo Platform

Deployment Configurations for the Nuxeo Platform

Open Source Content Management Solution

Deployment Configurations

Click to enlarge Zoom Nuxeo • EP with two repositories
Nuxeo's Open Source Content Management solution offers a variety of deployment configuration options so that it can easily adapt to application requirements and the IT infrastructure.
In addition to supporting a wide range of application servers, databases, directory servers and operating systems, the Nuxeo Platform — because of its flexibility — can be deployed using different strategies for a perfect fit with application and project needs:

  • Single Server. Nuxeo Platform can be deployed on a single machine and application server for small- to medium- sized content management projects.
  • Repository-Level Cluster. An application cluster with multiple instances of Nuxeo Platform can be deployed, with all instances pointing to a central repository (which can also be clustered). This is the most common configuration for large scale initiatives.

In addition, further illustrating the deployment flexibility of the platform, Nuxeo Platform can be bundled into an offline client, leveraging the Eclipse RCP/Equinox technologies. This offline client, for read-only use, includes the exact same components and code that runs on the server side, with an additional plugin for synchronizing the repository and data sources. This is the perfect companion for mobile or remote-access clients, enabling constant and secure access to the content when a network connection is not available.

Administration and Monitoring

Nuxeo Platform offers a powerful combination of tools to ensure proper access to application administrators for efficient monitoring and maintenance.

Nuxeo Shell, a command line interface to Nuxeo Platform, offers administration services, including scheduled commands, a data recovery tool, and a performance test tool.

Monitoring in the Nuxeo Platform is accomplished with the following tools:

  • Log4J, with configurable alert levels and modes
  • JMX Connections
  • Probes, such as Nagios
  • JVM monitoring

Integration in the IT Ecosystem

Click to enlarge Zoom Nuxeo • EP Interoperability

The Nuxeo Platform leverages enterprise-class features to work with existing IT infrastructure applications.

API Access

The Nuxeo Platform provides a rich API structure to allow other applications to easily interact with the platform, even if they are not built on Java technology. The APIs include Java API (local and remote), and WebServices API (REST and SOAP).

Interoperability

The Nuxeo Platform ensures interoperability with other applications and platforms through the use of protocols and industry standards.

  • WebDAV (Web-based Distributed Authoring and Versioning) is a set of extensions to the HTTP protocol which allows users to collaboratively edit and manage files on remote web servers. The Nuxeo Platform includes a WebDAV module allowing access to the repository using WebDAV APIs. The mapping between a managed document and a WebDAV resource is customizable.
  • Microsoft WSS (Windows SharePoint Services). This connector enables access to the Nuxeo Platform as a shared file system through MS Office or the MS Windows Explorer.
  • CMIS (Content Management Interoperability Services) is a standard protocol for ECM repository access. The Nuxeo Platform CMIS server ensures interoperability with other content management applications (third party Web Content Management products, other ECM repositories, portals).

Nuxeo actively participates in the Apache Chemistry project, which provides a CMIS Java API and an SPI model. Apache Chemistry exposes Nuxeo Platform APIs through CMIS and its related extensions.

Security, Access Control and Authentication

Nuxeo takes security and data integrity very seriously by implementing state-of-the-art strategies and features to enable a high level of security and access control at all levels of the platform. Nuxeo's open source content management solutions are widely used in military and highly confidential environments, which confirms the strengths of the platform in this area.

Authentication

Authentication management is fully customizable in the Nuxeo Platform. With the Nuxeo Platform directory abstraction, groups and users can be collected from existing user data repositories (SQL or LDAP). Authentication is available through:

  •  Local SQL directories or remote LDAP, Active Directory or SQL
  •  SSO: authentication can be adapted to all types

It is possible to use several directories at the same time, such as LDAP Enterprise for employees and a local directory for outside collaborators.

Access Control

An advanced and highly configurable access control system fulfills even the most stringent access requirements in highly secure environments. To enable effective configuration of permission management parameters, the Nuxeo Platform offers two native systems:

  •  Permission-based access control, allowing managers to delegate permissions to groups/users on the content hierarchy
  •  Mandatory access control, using security policies to grant/deny access to content based on business rules

These two systems can be combined, enabling a fine-grained, organization-specific definition of access control policies. Applying business rules to content access in addition to user-based permissions lets the system adapt to a wide variety of use cases. For example, a user's permission level gives access to a document, but the document can also have an access level defined by a business rule, so that high-security documents can be protected even if a group of users has permission to access that document.

Security

The Nuxeo Platform offers security at all levels, from repository-level access control checks to defensive strategies at the application level (e.g. XSS counter-measure) to pluggable authentication methods (user/password, client certificates, one-time-password, SSO.) Nuxeo Platform applications can also be secured through HTTPS.

Moreover, the repository (Nuxeo Core) offers a component to enable on-the-fly data encryption of store files to prevent file system-level content attacks.

Export PDF

Customize with
Nuxeo • Studio

Download