Deploying Microservice Client Extensions to Liferay PaaS

In most cases, you can deploy client extensions with Liferay PaaS similarly to self-hosted instances.

Deploy frontend, configuration, and batch client extensions with this procedure:

1. Place your client extension project folder in your PaaS Liferay workspace’s client-extensions/ folder (liferay/configs/[ENV]/client-extensions/).

2. Create a new build of the Liferay service and deploy it to your environment.

The client extension is added as part of the Liferay Docker image, and it works on its own within Liferay.

However, microservice client extensions require more work to deploy to Liferay PaaS. Here, you’ll learn about the process and walk through it with Liferay’s sample workspace.

Deploying Microservice Client Extensions

Requires Liferay workspace 10.0.0+

Here is the general procedure for using microservice client extensions in Liferay PaaS:

1. Prepare Your Liferay Workspace

2. Configure Required Environment Variables in LCP.json

   Additional environment variables are required to ensure that Liferay DXP can communicate with your microservice, which runs in a separate Cloud container. See the tables here for a complete list.

3. Deploy the Client Extension to Liferay DXP

   Microservice client extension projects must include a client extension to authenticate with Liferay (such as an OAuth user agent client extension). This step deploys that as a configuration on Liferay DXP’s side.

4. Deploy the Microservice to Your Cloud Environment

   This step deploys the microservice as a separate service, running in its own container outside of Liferay.

5. Update the OAuth 2.0 Profile

   An OAuth 2.0 profile is created automatically when you deploy the client extension to Liferay DXP, but you must update the network configuration to work with your microservice.

6. Update the Microservice’s Environment Variables

   This step adds the environment variables required for deployment. You must have already deployed your client extensions to confirm the values for these final variables.

Most of these steps are exclusive to microservice client extensions because of their unique requirements for communicating securely in the Cloud network.

Try it yourself with a microservice using an OAuth user agent client extension. This example uses the Liferay sample workspace’s Spring Boot microservice.

Prepare Your Liferay Workspace

If you don’t have it, download the Liferay sample workspace:

curl -o com.liferay.sample.workspace-latest.zip https://repository.liferay.com/nexus/service/local/artifact/maven/content\?r\=liferay-public-releases\&g\=com.liferay.workspace\&a\=com.liferay.sample.workspace\&\v\=LATEST\&p\=zip

This .zip file includes a workspace with a variety of sample client extensions, including the two needed for this example:

• liferay-sample-etc-spring-boot, the microservice client extension project. It also contains an OAuth user agent client extension for authentication.

• liferay-sample-custom-element-2, a frontend client extension with a custom widget. You’ll use this client extension to retrieve data from the microservice in Liferay and demonstrate the successful connection between them.

Unzip the workspace and copy the client-extensions/ folder into your PaaS project repository’s liferay/configs/[ENV]/ folder. Merge it with the existing client extensions folder if you already have one.

Configure Required Environment Variables

Before you build and deploy the microservice, add some environment variables to configure it for communication with Liferay.

1. In the copied client-extensions/liferay-sample-etc-spring-boot/ folder, open the LCP.json file.

2. In the env block, add new environment variables with these values:

   COM_LIFERAY_LXC_DXP_DOMAINS: Your website’s domain. (If you haven’t configured a custom domain for your UAT Liferay instance, the value resembles webserver-mysite-uat.lfr.cloud).

   COM_LIFERAY_LXC_DXP_MAIN_DOMAIN: Your website’s domain.

   COM_LIFERAY_LXC_DXP_SERVER_PROTOCOL: https

   LIFERAY_OAUTH_APPLICATION_EXTERNAL_REFERENCE_CODES: liferay-sample-etc-spring-boot-oauth-application-user-agent

   These environment variables are all required for any microservice client extension in Liferay PaaS.

3. Add all of the additional environment variables required to authenticate with an OAuth user agent client extension, except for [ERC]_OAUTH2_USER_AGENT_AUDIENCE and [ERC]_OAUTH2_USER_AGENT_CLIENT_ID (which are better to configure after you’ve deployed it).

   Replace [ERC] in each environment variable name with LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT. You can use the example values listed in the table for this example, because the routes and scopes won’t change.

   "env": {
       "COM_LIFERAY_LXC_DXP_DOMAINS": "webserver-customereducation-uat.lfr.cloud",
       "COM_LIFERAY_LXC_DXP_MAIN_DOMAIN": "webserver-customereducation-uat.lfr.cloud",
       "COM_LIFERAY_LXC_DXP_SERVER_PROTOCOL": "https",
       "LIFERAY_OAUTH_APPLICATION_EXTERNAL_REFERENCE_CODES": "liferay-sample-etc-spring-boot-oauth-application-user-agent",
       "LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_AUTHORIZATION_URI": "/o/oauth2/authorize",
       "LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_INTROSPECTION_URI": "/o/oauth2/introspect",
       "LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_JWKS_URI": "/o/oauth2/jwks",
       "LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_REDIRECT_URIS": "/o/oauth2/redirect",
       "LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_TOKEN_URI": "/o/oauth2/token",
       "LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_USER_AGENT_SCOPES": "Liferay.Headless.Admin.Workflow.everything"
   },
   

   Tip

   You can also deploy your client extension LUFFA to a local (self-hosted) Liferay instance to see the default values for these variables. Deploy the client extension with ../../gradlew clean deploy, then examine the contents of each of the routes contained in the instance’s routes/default/liferay-sample-etc-spring-boot/ folder.

Now you’re ready to deploy your client extensions to Liferay.

Build and Deploy the Client Extensions with Liferay DXP

The Liferay workspace in your PaaS repository’s liferay/ folder automatically builds and deploys the code in it, including your client extensions.

Next, create and deploy a new build with your Spring Boot and custom element client extensions so they are available in Liferay DXP.

1. From the root folder of your repository, create a new branch and commit the change.

   git checkout -b client-extensions
   

   git add .
   

   git commit -m "Deploy client extensions to Liferay DXP."
   

2. Push the change up to create a build.

   git push origin client-extensions
   

   After a delay, the new build is created. The client extensions are deployed automatically to the Liferay service container’s osgi/client-extensions/ folder.

3. In the Liferay Cloud console, navigate to the Builds page.

4. Click Actions () → Deploy build to…

   

5. Select your production environment from the Select environment drop-down menu.

6. Click the checkboxes acknowledging the impact of the change.

7. Click Deploy build.

After a delay, your Liferay service redeploys with both a new custom widget to place on pages (called Liferay Sample Custom Element 2) and an OAuth 2.0 configuration for the microservice.

Deploy the Microservice to Your Cloud Environment

Now Liferay DXP has the necessary configurations deployed, but the Spring Boot microservice isn’t running yet. The microservice must run as a separate service, in its own container.

1. In the Liferay sample workspace, navigate back to the client-extensions/liferay-sample-etc-spring-boot/ folder.

2. Build the client extension.

   ../../gradlew clean build
   

   The client extension builds into a LUFFA in the dist/ folder.

3. Deploy the client extension LUFFA with the LCP tool.

   lcp deploy --extension dist/liferay-sample-etc-spring-boot.zip
   

   The tool may prompt you to use your browser to authenticate with Liferay Cloud if you haven’t already.

4. When prompted, select your UAT environment from the list.

After a delay, the client extension appears as its own service in your UAT environment. It can’t connect to Liferay DXP yet, though, because you must authenticate it with OAuth 2.0.

Update the OAuth 2.0 Profile

An OAuth 2.0 profile is created automatically in Liferay, but it still has some placeholder values meant for local testing that you must adjust.

Check Your Microservice’s Network Information

First, check your microservice’s URL and port information in the Cloud network.

1. In the Cloud console, navigate to your UAT environment.

2. Click Network from the menu on the left.

   The Network page shows the network information to access each service with HTTPs.

3. Copy the values from the client extension service’s Address and Target Port fields, as well as the second number in the Port field (which is used for HTTPS connections). Make a note of them separately to use later.

   

Update the OAuth 2.0 Profile’s Network Information

1. Log into your UAT Liferay instance as an administrator.

2. Click Applications () → Control Panel → OAuth 2 Administration.

3. Click the Liferay Sample Etc Spring Boot OAuth Application User Agent profile.

   

4. Update the Website URL field with your microservice’s URL you copied previously. Remove any trailing slash and append a colon and the value you copied for the HTTPS port, like this example:

   https://liferaysampleetcspringboot-customereducation-uat.lfr.cloud:443
   

5. In the Callback URIs field, replace localhost in the existing string with your Liferay instance’s URL (not including https://), like this example:

   https://www.mysite.com@port-with-colon@/o/oauth2/redirect
   

6. At the bottom of the page, click Save.

Now your OAuth 2.0 profile has the correct network information. Now you must only configure the last couple of environment variables for your client extension service.

Update Environment Variables

1. While you’re still on your OAuth 2.0 profile’s page, copy the Client ID value at the top.

   

2. Go back to the Liferay Cloud console and navigate to your UAT environment.

3. Click Services → the liferaysampleeetcspringboot service.

4. On the service’s environment variables page, add two new environment variables using the values you copied previously:

   LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_USER_AGENT_AUDIENCE: https://[Your Liferay domain]:[Target port]

   LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT_OAUTH2_USER_AGENT_CLIENT_ID: [Client ID]

   

5. Click Save changes.

6. Click the Actions menu at the top of the screen () → Restart service.

The service restarts, and it can connect successfully with the Liferay service.

Test the Connection with Your Custom Element

Now you’re ready to test the connection with the custom element you deployed to Liferay.

1. Navigate and log into your UAT Liferay instance.

2. On your site’s home page, click Edit () at the top of the page.

3. From the Fragments and Widgets menu on the left side of the screen, click Widgets.

4. Drag the Liferay Sample Custom Element 2 widget onto the page.

   

5. Click Publish at the top of the page.

The page publishes and the custom widget loads a message with a joke. The joke message is retrieved from your microservice client extension, running in a separate container from Liferay.

Environment Variables Reference

All Microservice Client Extensions

These environment variables are required for all microservice client extensions.

OAuth Headless Server Client Extensions

These environment variables are required for any microservice client extensions that authenticate using an OAuth headless server client extension.

Replace ERC in each variable name with your OAuth headless server client extension’s external reference code converted to upper case and with all dashes removed (e.g., LIFERAYSAMPLEETCCRONOAUTHAPPLICATIONHEADLESSSERVER).

OAuth User Agent Client Extensions

These environment variables are required for any microservice client extensions that authenticate using an OAuth user agent client extension.

Replace ERC in each variable name with your OAuth headless server client extension’s external reference code converted to upper case and with all dashes removed (e.g., LIFERAYSAMPLEETCSPRINGBOOTOAUTHAPPLICATIONUSERAGENT).

Related Topics

• Integrating Microservices
• Using a Microservice Client Extension