From ddebdef0b4f0451f6b481776f40d8c6fb13e0e9d Mon Sep 17 00:00:00 2001
From: Fabio Erculiani <lxnay@sabayon.org>
Date: Fri, 29 Oct 2010 14:37:27 +0200
Subject: [PATCH] [remaster/mcs] more jboss config work

---
 .../mcs/mailware-jboss-conf/jboss-log4j.xml   | 323 ++++++++++++++++++
 .../login-config.xml.aggregation.babel        | 102 ++++++
 remaster/mcs/scripts/mcs-ldapinit.pl          | 201 +++++++++++
 .../remaster_mcs_inner_chroot_script_after.sh |   9 +-
 4 files changed, 634 insertions(+), 1 deletion(-)
 create mode 100644 remaster/mcs/mailware-jboss-conf/jboss-log4j.xml
 create mode 100644 remaster/mcs/mailware-jboss-conf/login-config.xml.aggregation.babel
 create mode 100644 remaster/mcs/scripts/mcs-ldapinit.pl

diff --git a/remaster/mcs/mailware-jboss-conf/jboss-log4j.xml b/remaster/mcs/mailware-jboss-conf/jboss-log4j.xml
new file mode 100644
index 0000000..9346044
--- /dev/null
+++ b/remaster/mcs/mailware-jboss-conf/jboss-log4j.xml
@@ -0,0 +1,323 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE log4j:configuration SYSTEM "log4j.dtd">
+
+<!-- ===================================================================== -->
+<!--                                                                       -->
+<!--  Log4j Configuration                                                  -->
+<!--                                                                       -->
+<!-- ===================================================================== -->
+
+<!-- $Id: jboss-log4j.xml 75507 2008-07-08 20:15:07Z stan.silvert@jboss.com $ -->
+
+<!--
+   | For more configuration infromation and examples see the Jakarta Log4j
+   | owebsite: http://jakarta.apache.org/log4j
+ -->
+
+<log4j:configuration xmlns:log4j="http://jakarta.apache.org/log4j/" debug="true">
+
+   <!-- ================================= -->
+   <!-- Preserve messages in a local file -->
+   <!-- ================================= -->
+
+   <!-- A time/date based rolling appender -->
+   <appender name="FILE" class="org.jboss.logging.appender.DailyRollingFileAppender">
+      <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+      <param name="File" value="${jboss.server.log.dir}/server.log"/>
+      <param name="Append" value="false"/>
+
+      <!-- Rollover at midnight each day -->
+      <param name="DatePattern" value="'.'yyyy-MM-dd"/>
+
+      <!-- Rollover at the top of each hour
+      <param name="DatePattern" value="'.'yyyy-MM-dd-HH"/>
+      -->
+
+      <layout class="org.apache.log4j.PatternLayout">
+         <!-- The default pattern: Date Priority [Category] Message\n -->
+         <param name="ConversionPattern" value="%d %-5p [%c] %m%n"/>
+
+         <!-- The full pattern: Date MS Priority [Category] (Thread:NDC) Message\n
+         <param name="ConversionPattern" value="%d %-5r %-5p [%c] (%t:%x) %m%n"/>
+          -->
+      </layout>
+   </appender>
+
+   <!-- A size based file rolling appender
+   <appender name="FILE" class="org.jboss.logging.appender.RollingFileAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <param name="File" value="${jboss.server.log.dir}/server.log"/>
+     <param name="Append" value="false"/>
+     <param name="MaxFileSize" value="500KB"/>
+     <param name="MaxBackupIndex" value="1"/>
+
+     <layout class="org.apache.log4j.PatternLayout">
+       <param name="ConversionPattern" value="%d %-5p [%c] %m%n"/>
+     </layout>	    
+   </appender>
+   -->
+
+   <!-- ============================== -->
+   <!-- Append messages to the console -->
+   <!-- ============================== -->
+
+   <appender name="CONSOLE" class="org.apache.log4j.ConsoleAppender">
+      <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+      <param name="Target" value="System.out"/>
+      <param name="Threshold" value="TRACE"/>
+
+      <layout class="org.apache.log4j.PatternLayout">
+         <!-- The default pattern: Date Priority [Category] Message\n -->
+         <param name="ConversionPattern" value="%d{ABSOLUTE} %-5p [%c{1}] %m%n"/>
+      </layout>
+   </appender>
+  
+   <!-- ====================== -->
+   <!-- More Appender examples -->
+   <!-- ====================== -->
+
+   <!-- Buffer events and log them asynchronously
+   <appender name="ASYNC" class="org.apache.log4j.AsyncAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <appender-ref ref="FILE"/>
+     <appender-ref ref="CONSOLE"/>
+     <appender-ref ref="SMTP"/>
+   </appender>
+   -->
+
+   <!-- EMail events to an administrator
+   <appender name="SMTP" class="org.apache.log4j.net.SMTPAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <param name="Threshold" value="ERROR"/>
+     <param name="To" value="admin@myhost.domain.com"/>
+     <param name="From" value="nobody@myhost.domain.com"/>
+     <param name="Subject" value="JBoss Sever Errors"/>
+     <param name="SMTPHost" value="localhost"/>
+     <param name="BufferSize" value="10"/>
+     <layout class="org.apache.log4j.PatternLayout">
+       <param name="ConversionPattern" value="[%d{ABSOLUTE},%c{1}] %m%n"/>
+     </layout>
+   </appender>
+   -->
+
+   <!-- Syslog events
+   <appender name="SYSLOG" class="org.apache.log4j.net.SyslogAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <param name="Facility" value="LOCAL7"/>
+     <param name="FacilityPrinting" value="true"/>
+     <param name="SyslogHost" value="localhost"/>
+     <layout class="org.apache.log4j.PatternLayout">
+       <param name="ConversionPattern" value="[%d{ABSOLUTE},%c{1}] %m%n"/>
+     </layout>
+   </appender>
+   -->
+
+   <!-- Log events to JMS (requires a topic to be created)
+   <appender name="JMS" class="org.apache.log4j.net.JMSAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <param name="Threshold" value="ERROR"/>
+     <param name="TopicConnectionFactoryBindingName" value="java:/ConnectionFactory"/>
+     <param name="TopicBindingName" value="topic/MyErrorsTopic"/>
+   </appender>
+   -->
+
+   <!-- Log events through SNMP
+   <appender name="TRAP_LOG" class="org.apache.log4j.ext.SNMPTrapAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <param name="ImplementationClassName" value="org.apache.log4j.ext.JoeSNMPTrapSender"/>
+     <param name="ManagementHost" value="127.0.0.1"/>
+     <param name="ManagementHostTrapListenPort" value="162"/>
+     <param name="EnterpriseOID" value="1.3.6.1.4.1.24.0"/>
+     <param name="LocalIPAddress" value="127.0.0.1"/>
+     <param name="LocalTrapSendPort" value="161"/>
+     <param name="GenericTrapType" value="6"/>
+     <param name="SpecificTrapType" value="12345678"/>
+     <param name="CommunityString" value="public"/>
+     <param name="ForwardStackTraceWithTrap" value="true"/>
+     <param name="Threshold" value="DEBUG"/>
+     <param name="ApplicationTrapOID" value="1.3.6.1.4.1.24.12.10.22.64"/>
+     <layout class="org.apache.log4j.PatternLayout">
+            <param name="ConversionPattern" value="%d,%p,[%t],[%c],%m%n"/>
+     </layout>
+   </appender>
+   -->
+
+   <!--  Emit events as JMX notifications
+   <appender name="JMX" class="org.jboss.monitor.services.JMXNotificationAppender">
+      <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+      
+      <param name="Threshold" value="WARN"/>
+      <param name="ObjectName" value="jboss.system:service=Logging,type=JMXNotificationAppender"/>
+      
+      <layout class="org.apache.log4j.PatternLayout">
+         <param name="ConversionPattern" value="%d %-5p [%c] %m"/>
+      </layout>
+   </appender>
+   -->
+   
+   <!-- ================ -->
+   <!-- Limit categories -->
+   <!-- ================ -->
+
+   <!-- Limit the org.apache category to INFO as its DEBUG is verbose -->
+   <category name="org.apache">
+      <priority value="INFO"/>
+   </category>
+
+   <!--category name="it.babel">
+      <priority value="TRACE"/>
+   </category>
+   -->
+   <category name="org.bedework">
+      <priority value="INFO"/>
+   </category>
+
+   <!-- Limit the jacorb category to WARN as its INFO is verbose -->
+   <category name="jacorb">
+      <priority value="WARN"/>
+   </category>
+   
+   <!-- Limit the org.jgroups category to WARN as its INFO is verbose -->
+   <category name="org.jgroups">
+      <priority value="WARN"/>
+   </category>
+   
+   <!-- Limit the org.quartz category to INFO as its DEBUG is verbose -->
+   <category name="org.quartz">
+      <priority value="INFO"/>
+   </category>
+
+   <!-- Limit JSF logging to DEBUG.  FINER and FINEST will not be logged -->
+   <category name="javax.enterprise.resource.webcontainer.jsf">
+      <priority value="DEBUG" />
+   </category>
+                
+   <!-- Limit JBoss categories -->
+   <category name="org.jboss">
+      <priority value="DEBUG"/>
+   </category>
+   <category name="org.hibernate">
+      <priority value="INFO"/>
+   </category>
+   <category name="com.arjuna">
+      <priority value="INFO"/>
+   </category>
+   <category name="net.fortuna">
+      <priority value="WARN"/>
+   </category>
+
+
+   <!-- Limit the JSR77 categories -->
+   <category name="org.jboss.management">
+      <priority value="INFO"/>
+   </category>
+
+   <!-- Show the evolution of the DataSource pool in the logs [inUse/Available/Max]
+   <category name="org.jboss.resource.connectionmanager.JBossManagedConnectionPool">
+     <priority value="TRACE"/>
+   </category>
+   -->
+   
+   <!-- Limit the org.jboss.serial (jboss-serialization) to INFO as its DEBUG is verbose -->
+   <category name="org.jboss.serial">
+      <priority value="INFO"/>
+   </category>
+   
+   <!-- Decrease the priority threshold for the org.jboss.varia category
+   <category name="org.jboss.varia">
+     <priority value="DEBUG"/>
+   </category>
+   -->
+
+   <!-- Enable JBossWS message tracing
+   <category name="org.jboss.ws.core.MessageTrace">
+    <priority value="TRACE"/>
+   </category>
+   -->
+
+   <!--
+      | An example of enabling the custom TRACE level priority that is used
+      | by the JBoss internals to diagnose low level details. This example
+      | turns on TRACE level msgs for the org.jboss.ejb.plugins package and its
+      | subpackages. This will produce A LOT of logging output.
+      |
+      | Note: since jboss AS 4.2.x, the trace level is supported natively by
+      | log4j, so although the custom org.jboss.logging.XLevel priority will
+      | still work, there is no need to use it. The two examples that follow
+      | will both enable trace logging.
+   <category name="org.jboss.system">
+     <priority value="TRACE" class="org.jboss.logging.XLevel"/>
+   </category>
+   <category name="org.jboss.ejb.plugins">
+     <priority value="TRACE"/>
+   </category>
+   -->
+  
+   <!--
+       | Logs these events to SNMP:
+           - server starts/stops
+           - cluster evolution (node death/startup)
+           - When an EJB archive is deployed (and associated verified messages)
+           - When an EAR archive is deployed
+      	 
+   <category name="org.jboss.system.server.Server">
+     <priority value="INFO" />
+     <appender-ref ref="TRAP_LOG"/>
+   </category>
+  
+   <category name="org.jboss.ha.framework.interfaces.HAPartition.lifecycle">
+     <priority value="INFO" />
+     <appender-ref ref="TRAP_LOG"/>
+   </category>
+
+   <category name="org.jboss.deployment.MainDeployer">
+     <priority value="ERROR" />
+     <appender-ref ref="TRAP_LOG"/>
+   </category>
+   
+   <category name="org.jboss.ejb.EJBDeployer">
+     <priority value="INFO" />
+     <appender-ref ref="TRAP_LOG"/>
+   </category>
+   
+   <category name="org.jboss.deployment.EARDeployer">
+     <priority value="INFO" />
+     <appender-ref ref="TRAP_LOG"/>
+   </category>
+   -->
+
+   <!-- Clustering logging -->
+   <!-- Uncomment the following to redirect the org.jgroups and
+      org.jboss.ha categories to a cluster.log file.
+
+   <appender name="CLUSTER" class="org.jboss.logging.appender.RollingFileAppender">
+     <errorHandler class="org.jboss.logging.util.OnlyOnceErrorHandler"/>
+     <param name="File" value="${jboss.server.log.dir}/cluster.log"/>
+     <param name="Append" value="false"/>
+     <param name="MaxFileSize" value="500KB"/>
+     <param name="MaxBackupIndex" value="1"/>
+
+     <layout class="org.apache.log4j.PatternLayout">
+       <param name="ConversionPattern" value="%d %-5p [%c] %m%n"/>
+     </layout>
+   </appender>
+   <category name="org.jgroups">
+     <priority value="DEBUG" />
+     <appender-ref ref="CLUSTER"/>
+   </category>
+   <category name="org.jboss.ha">
+     <priority value="DEBUG" />
+     <appender-ref ref="CLUSTER"/>
+   </category>
+   -->
+   
+   <!-- ======================= -->
+   <!-- Setup the Root category -->
+   <!-- ======================= -->
+
+   <root>
+      <appender-ref ref="CONSOLE"/>
+      <appender-ref ref="FILE"/>
+   </root>
+
+</log4j:configuration>
diff --git a/remaster/mcs/mailware-jboss-conf/login-config.xml.aggregation.babel b/remaster/mcs/mailware-jboss-conf/login-config.xml.aggregation.babel
new file mode 100644
index 0000000..2936c86
--- /dev/null
+++ b/remaster/mcs/mailware-jboss-conf/login-config.xml.aggregation.babel
@@ -0,0 +1,102 @@
+
+    <application-policy name="ucaldav-security-domain">
+      <authentication>
+         <login-module code="it.babel.security.auth.spi.LdapLoginModule" flag="required" >
+                        <module-option name="java.naming.provider.url">ldap://localhost:389/dc=babel,dc=it</module-option>
+                        <module-option name="it.babel.security.ldap.basedn">dc=babel,dc=it</module-option>
+                        <module-option name="java.naming.security.principal"></module-option>
+                        <module-option name="java.naming.security.credentials"></module-option>
+                        <module-option name="it.babel.security.ldap.sa.role.cn">cn=sa role</module-option>
+                        <module-option name="it.babel.security.ldap.ca.role.cn">cn=admin role</module-option>
+                        <module-option name="it.babel.security.ldap.checkpasswordexpiration">true</module-option>
+                        <module-option name="it.babel.security.ldap.passwordexpirationattribute">passwordExpirationTime</module-option>
+                </login-module>
+      </authentication>
+    </application-policy>
+
+    <application-policy name="caladmin-security-domain">
+        <authentication>
+            <login-module code="org.jboss.security.auth.spi.LdapLoginModule"
+                          flag="required">
+                <module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option>
+                <module-option name="java.naming.provider.url">ldap://localhost:389/</module-option>
+		<module-option name="java.naming.security.authentication">simple</module-option>
+                <module-option name="principalDNPrefix">uid=</module-option>
+                <module-option name="principalDNSuffix">,ou=People,dc=babel,dc=it</module-option>
+                <module-option name="rolesCtxDN">ou=Groups,dc=babel,dc=it</module-option>
+                <module-option name="uidAttributeID">uniqueMember</module-option>
+                <module-option name="matchOnUserDN">true</module-option>
+                <module-option name="roleAttributeID">cn</module-option>
+                <module-option name="roleAttributeIsDN">false</module-option>
+            </login-module>
+        </authentication>
+    </application-policy>
+
+    <application-policy name="mcs-security-domain">
+       <authentication>
+                <login-module code="it.babel.security.auth.spi.IMAPLoginModule" flag="required">
+                        <module-option name="mail.store.protocol">imap</module-option>
+                        <module-option name="mail.imap.host">localhost</module-option>
+                        <module-option name="mail.imap.port">143</module-option>
+                        <module-option name="jaasimap.imap.useproxyauth">false</module-option>
+                        <module-option name="jaasimap.imap.adminuser"></module-option>
+                        <module-option name="jaasimap.imap.adminpassword"></module-option>
+                        <module-option name="mail.imap.secure">false</module-option>
+                </login-module>
+
+                <login-module code="it.babel.security.auth.spi.LdapLoginModule" flag="required" >
+                        <module-option name="java.naming.provider.url">ldap://localhost:389/dc=babel,dc=it</module-option>
+                        <module-option name="it.babel.security.ldap.basedn">dc=babel,dc=it</module-option>
+                        <module-option name="java.naming.security.principal"></module-option>
+                        <module-option name="java.naming.security.credentials"></module-option>
+                        <module-option name="it.babel.security.ldap.sa.role.cn">cn=sa role</module-option>
+                        <module-option name="it.babel.security.ldap.ca.role.cn">cn=admin role</module-option>
+                        <module-option name="it.babel.security.ldap.checkpasswordexpiration">true</module-option>
+                        <module-option name="it.babel.security.ldap.passwordexpirationattribute">passwordExpirationTime</module-option>
+                        <module-option name="com.sun.jndi.ldap.connect.pool.prefsize">10</module-option>
+                        <module-option name="com.sun.jndi.ldap.connect.pool.maxsize">20</module-option>
+                        <module-option name="com.sun.jndi.ldap.connect.pool.timeout">300000</module-option>
+                </login-module>
+        </authentication>
+
+    </application-policy>
+<!--WebMail 4.3 -->
+
+<!--MailwareWebmail -->
+<application-policy name="JaasImap">
+        <authentication>
+                <login-module code="it.babel.jaasimap.module.IMAPLoginModule" flag="required">
+                        <module-option name="mail.store.protocol">imap</module-option>
+                        <module-option name="mail.imap.host">localhost</module-option>
+                        <!--DOVECOT <module-option name="mail.imap.port">10143</module-option>-->
+                        <module-option name="mail.imap.port">143</module-option>
+                        <module-option name="jaasimap.imap.useproxyauth">false</module-option>
+                        <module-option name="jaasimap.imap.adminuser"></module-option>
+                        <module-option name="jaasimap.imap.adminpassword"></module-option>
+                        <module-option name="mail.imap.secure">true</module-option>
+                        <module-option name="mail.imap.socketFactory.class">javax.net.ssl.SSLSocketFactory</module-option>
+                        <module-option name="mail.imap.socketFactory.fallback">false</module-option>
+                        <module-option name="mail.imap.socketFactory.port">993</module-option>
+                </login-module>
+        </authentication>
+ </application-policy>
+
+<!-- -->
+        <!--PV MailWare-Manager -->
+
+        <application-policy name="mcs-manager-security-domain">
+        <authentication>
+                <login-module code="it.babel.security.auth.spi.LdapLoginModule" flag="required" >
+                        <module-option name="java.naming.provider.url">ldap://localhost:389/dc=babel,dc=it</module-option>
+                        <module-option name="it.babel.security.ldap.basedn">dc=babel,dc=it</module-option>
+                        <module-option name="java.naming.security.principal"></module-option>
+                        <module-option name="java.naming.security.credentials"></module-option>
+                        <module-option name="it.babel.security.ldap.sa.role.cn">cn=sa role</module-option>
+                        <module-option name="it.babel.security.ldap.ca.role.cn">cn=admin role</module-option>
+                        <module-option name="it.babel.security.ldap.checkpasswordexpiration">true</module-option>
+                        <module-option name="it.babel.security.ldap.passwordexpirationattribute">passwordExpirationTime</module-option>
+                </login-module>
+        </authentication>
+        </application-policy>
+
+</policy>
diff --git a/remaster/mcs/scripts/mcs-ldapinit.pl b/remaster/mcs/scripts/mcs-ldapinit.pl
new file mode 100644
index 0000000..9d4acb2
--- /dev/null
+++ b/remaster/mcs/scripts/mcs-ldapinit.pl
@@ -0,0 +1,201 @@
+#!/usr/bin/perl
+# author rgiannetto@babel.it, rpolli@babel.it
+#
+# create the ldif file used to initialize Fedora Directory Server 
+# with Mailware Collaboration Suite
+#
+# specify by command line the following arguments:
+#  first administator domain (ex. babel.it )
+#  dn          (the base dn ex. $dn)
+#  username	- the username of the SA
+#  password	- the password of the SA
+#  aisle	- the name of the mail aisle 
+use Getopt::Std;
+our %opt;
+our $domain, $dn, $user, $password, $isola, $addressbooks, $mailAlternateAddress;
+
+my $numArgs = $#ARGV + 1;
+
+if($numArgs < 10) {
+	printf(STDERR "Usage: mcs-ldapinit.pl -d [dominio] -b [basedn] -s [sa user] -p [sa password] -a [aisle name] [-B addressbook basedn ] [-f output file]]\n");
+ printf(STDERR "
+  specify by command line the following arguments:
+  -d first administator domain (ex. babel.it )
+  -b dn          (the base dn ex. $dn)
+  -s username     - the username of the SA
+  -p password     - the password of the SA
+  -a aisle        - the name of the mail aisle
+  -B \"db1,db2\" - the databases to create under your server
+  -f filename.ldif - the output file
+
+  EXAMPLE:
+	# mcs-ldapinit.pl babel.it \"$dn\" sa secret node1 -f base.ldif
+	# ldapmodify -a -D \"cn=directory manager\" -W -f base.ldif
+");
+	exit(0);
+}
+getopts('vd:b:s:p:a:B:f:', \%opt);  # options as above. Values in %opts
+$domain = $opt{'d'};
+$dn =$opt{'b'};
+$user = $opt{'s'};
+$password = $opt{'p'};
+$isola = $opt{'a'};
+$addressbooks = $opt{'B'};
+$mailAlternateAddress = $opt{'m'};
+$ldifFileName = $opt{'f'};
+
+if ($opt{'v'}) {
+  print STDERR "parameters $domain\n$dn\n$user\n$password\n$isola\n$addressbooks\n";
+}
+
+sub create_calendar_ldif() {
+  open (FH, ">>$ldifFileName")
+	 or  die("Cannot create $ldifFileName: ".$!);
+
+  printf(FH "dn: uid=caladmin,ou=People,$dn\n");
+  printf(FH "businessCategory: sa\n");
+  printf(FH "userPassword: $password\n");
+  printf(FH "mail: caladmin\n");
+  printf(FH "uid: caladmin\n");
+  printf(FH "givenName: caladmin\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: person\n");
+  printf(FH "objectClass: organizationalPerson\n");
+  printf(FH "objectClass: inetorgperson\n");
+  printf(FH "objectClass: mailrecipient\n");
+  printf(FH "objectClass: babmware\n");
+  printf(FH "objectClass: babmwcompany\n");
+  printf(FH "sn: caladmin\n");
+  printf(FH "cn: caladmin caladmin\n");
+  printf(FH "\n");
+  printf(FH "\n");
+  printf(FH "dn: uid=public-user,ou=People,$dn\n");
+  printf(FH "mail: public-user\n");
+  printf(FH "uid: public-user\n");
+  printf(FH "givenName: public\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: person\n");
+  printf(FH "objectClass: organizationalPerson\n");
+  printf(FH "objectClass: inetorgperson\n");
+  printf(FH "sn: user\n");
+  printf(FH "cn: public user\n");
+  printf(FH "\n");
+  printf(FH "dn: uid=realtime01,ou=People,$dn\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: person\n");
+  printf(FH "objectClass: organizationalPerson\n");
+  printf(FH "objectClass: inetOrgPerson\n");
+  printf(FH "objectClass: babmwcompany\n");
+  printf(FH "mail: realtime01\n");
+  printf(FH "givenName: realtime01\n");
+  printf(FH "uid: realtime01\n");
+  printf(FH "sn: realtime01\n");
+  printf(FH "cn: realtime01\n");
+  printf(FH "businessCategory: sa\n");
+  printf(FH "\n");
+
+  close(FH);
+}
+
+sub create_ldif() {
+  open (FH, ">$ldifFileName")
+	 or  die("Cannot create $ldifFileName: ".$!);
+  printf(FH "# Service Administrators \n");
+  printf(FH "#  the tree of the MCS administration\n");
+  printf(FH "dn: ou=Service Administrators,$dn\n");
+  printf(FH "changetype: add\n");
+  printf(FH "description: Tree containing all Service Administrators\n");
+  printf(FH "ou: Service Administrators\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: organizationalunit\n");
+  printf(FH "\n");
+
+  printf(FH "# The first administrator\n");
+  printf(FH "# $user, Service Administrators, $domain\n");
+  printf(FH "dn: uid=$user,ou=Service Administrators,$dn\n");
+  printf(FH "changetype: add\n");
+  printf(FH "mail: $user\@$domain\n");
+  printf(FH "uid: $user\n");
+  printf(FH "givenName: Service\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: person\n");
+  printf(FH "objectClass: organizationalPerson\n");
+  printf(FH "objectClass: inetorgperson\n");
+  printf(FH "objectClass: babmwcompany\n");
+  printf(FH "sn: Administrator\n");
+  printf(FH "cn: Service Administrator\n");
+  printf(FH "userPassword: $password\n");
+  printf(FH "businessCategory: sa\n");
+  # !!! DOESN'T WORK !!!
+  #  printf(FH "mailAlternateAddress: $mailAlternateAddress\n");
+  printf(FH "\n");
+
+  printf(FH "# sa role, $domain\n");
+  printf(FH "dn: cn=sa role,$dn\n");
+  printf(FH "changetype: add\n");
+  printf(FH "nsRoleFilter: (&(businesscategory=sa)(objectclass=inetorgperson)(objectclass=babmwcompany))\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: ldapsubentry\n");
+  printf(FH "objectClass: nsroledefinition\n");
+  printf(FH "objectClass: nscomplexroledefinition\n");
+  printf(FH "objectClass: nsfilteredroledefinition\n");
+  printf(FH "cn: sa role\n");
+  printf(FH "\n");
+
+  printf(FH "# sa role, aci\n");
+  printf(FH "dn: $dn\n");
+  printf(FH "changetype: modify\n");
+  printf(FH "add: aci\n");
+  printf(FH "ACI: (targetattr = \"*\") (version 3.0;acl \"SA administration\";allow (all)(roledn = \"ldap:///cn=SA role,$dn\");)\n");
+  printf(FH "\n");
+
+  printf(FH "# isola-mcs, $domain\n");
+  printf(FH "dn: node=$isola, $dn\n");
+  printf(FH "changetype: add\n");
+  printf(FH "node: $isola\n");
+  printf(FH "objectClass: top\n");
+  printf(FH "objectClass: babmwcompany\n");
+  printf(FH "\n");
+
+  if (defined $addressbooks) {
+	 foreach my $i   (split(/[, ]+/, $addressbooks)) {
+		printf(FH "# Create database and BackendInstance for storing personal contacts\n");
+		printf(FH "dn: cn=Addressbook%s,cn=ldbm database,cn=plugins,cn=config\n", $i);
+		printf(FH "objectclass: extensibleObject\n");
+		printf(FH "objectclass: nsBackendInstance\n");
+		printf(FH "nsslapd-suffix: o=%s\n", $i);
+		printf(FH "\n");
+		printf(FH "dn: cn=\"o=%s\",cn=mapping tree,cn=config\n", $i);
+		printf(FH "objectclass: top\n");
+		printf(FH "objectclass: extensibleObject\n");
+		printf(FH "objectclass: nsMappingTree\n");
+		printf(FH "nsslapd-state: backend\n");
+		printf(FH "nsslapd-backend: Addressbook%s\n", $i);
+		printf(FH "cn: \"o=%s\"\n", $i);
+		printf(FH "\n");
+		printf(FH "dn: o=%s\n",$i);
+		printf(FH "objectclass: top\n");
+		printf(FH "objectclass: organization\n");
+		printf(FH "o: %s\n", $i);
+		printf(FH "\n");
+	 }
+  }
+  close(FH);
+}
+
+sub create_balance() {
+  $addressbooks =~ s/ +//g;
+  my $command = "bash -c './balance.sh $isola:ldap://localhost:389/{$addressbooks}'";
+  print STDERR "executing $command\n" if ($opt{'v'});
+
+  system($command) == 0
+	 or die("Error creating balance.xml");
+}
+
+sub main() {
+  &create_ldif;
+  &create_calendar_ldif;
+ # &create_balance;
+}
+
+&main;
diff --git a/scripts/3rdparty/remaster_mcs_inner_chroot_script_after.sh b/scripts/3rdparty/remaster_mcs_inner_chroot_script_after.sh
index d9a2522..7741b9c 100755
--- a/scripts/3rdparty/remaster_mcs_inner_chroot_script_after.sh
+++ b/scripts/3rdparty/remaster_mcs_inner_chroot_script_after.sh
@@ -91,8 +91,15 @@ chown root:root /usr/sbin/mcs-ldapinit.pl || exit 1
 
 # copy jboss data over
 echo "Copying jboss-bin deploy data over"
-mv /tmp/jboss-deploy/* /opt/jboss-bin-4.2/server/default/deploy/ || exit 1
+cp /tmp/jboss-deploy/* /opt/jboss-bin-4.2/server/default/deploy/ -Rp || exit 1
 chown jboss:jboss /opt/jboss-bin-4.2/server/default/deploy/ -R || exit 1
+rm -r /tmp/jboss-deploy || exit 1
+
+# setup jboss login info
+cat /.mcs/mailware-jboss-conf/login-config.xml.aggregation.babel >> /opt/jboss-bin-4.2/server/default/conf/login-config.xml || exit 1
+chown jboss:jboss /opt/jboss-bin-4.2/server/default/conf/login-config.xml || exit 1
+cp /.mcs/mailware-jboss-conf/jboss-log4j.xml /opt/jboss-bin-4.2/server/default/conf/jboss-log4j.xml || exit 1
+chown jboss:jboss /opt/jboss-bin-4.2/server/default/conf/jboss-log4j.xml || exit 1
 
 # setup 389 schema
 cp /.mcs/389-mailware-schema/* /etc/dirsrv/schema/ || exit 1