Installing SAP Commerce Cloud FSA for Use with FSA Spartacus 1.0

Note: Spartacus 2.x is no longer maintained. Please upgrade to the latest version.

Overview

The following instructions describe how to install and configure SAP Commerce (release 2005, patch 5) with Financial Services Accelerator (release 2008, latest patch) for use with FSA Spartacus storefront. In these instructions, SAP Commerce and Financial Services Accelerator are installed on your local computer, so localhost is used in the browser URLs.

The installation procedure includes steps for installing and using a financial_spa and financial_spa_integrations recipes that make use of the FSA Spartacus Sample Data (financialspastore), but you can use your own sample data or recipe as long as it includes the cmsocccommercewebservicesacceleratorocc extensions and the FSA module. 

Installation and Configuration Instructions

Summary:

Step 1: Setting up SAP Commerce with Financial Services Accelerator

Some of the steps in this procedure are derived from the documentation for installing SAP Commerce using recipes. For more information, see Installing SAP Commerce Using Installer Recipes in the SAP Help Portal.

  1. Unzip the SAP Commerce and Financial Services Accelerator zip archives. Note: Use the SAP Commerce version 2005.5 and the latest patch of Financial Services Accelerator version 2008.

  2. In the ”sap-commerce-folder/installer/recipes” folder, you should be able to see the financial_spa and financial_spa_integrations recipes. Note: The procedure for installing the financial_spa_integrations recipe is exactly the same as for the financial_spa recipe. The financial_spa_integrations recipe is used for installing SAP for Insurance integrations with FSA Storefront.

  3. In financial_spa, the build.gradle file should have the following content:

     apply plugin: 'installer-platform-plugin'
 apply plugin: 'installer-addon2-plugin'

 def pl = platform {
     localProperties {
         property 'storefront.show.debug.info', 'false'
         property 'promotions.legacy.mode', 'true'
     }

     extensions {
         extName 'financialacceleratorstorefront'
         extName 'financialspastore'
         extName 'financialsmartedit'
         extName 'financialwebservices'
         extName 'financialb2bocc'
         extName 'financialbackoffice'
         extName 'financialb2bbackoffice'

         extName 'backofficesolrsearch'
         extName 'configurablebundlebackoffice'
         extName 'solrfacetsearchbackoffice'
         extName 'solrserver'

         extName 'xyformsbackoffice'
         extName 'adaptivesearchsolr'
         extName 'adaptivesearchbackoffice'
         extName 'commerceservicesbackoffice'
         extName 'customersupportbackoffice'


         extName 'assistedservicestorefront'
         extName 'assistedservicewebservices'

         extName 'yacceleratorinitialdata'
         extName 'yacceleratorfulfilmentprocess'
         extName 'yacceleratorstorefront'

         extName 'cmsocc'
         extName 'acceleratorocc'
         extName 'cmswebservices'
         extName 'previewwebservices'
         extName 'smarteditwebservices'
         extName 'cmssmarteditwebservices'
         extName 'permissionswebservices'
         extName 'odata2webservices'
         extName 'smarteditaddon'
         extName 'cmssmartedit'
         extName 'cmsbackoffice'
         extName 'pcmbackoffice'
         extName 'subscriptionbackoffice'
     }

     addons {
         forStoreFronts('yacceleratorstorefront') {
             names('financialacceleratorstorefront', 'assistedservicestorefront', 'smarteditaddon')
             template 'yacceleratorstorefront'
         }
     }
 }

 task setup {
     doLast {
         pl.setup()
     }
 }

 task buildSystem(dependsOn: setup) {
     doLast {
         pl.build()
     }
 }

 task initialize(dependsOn: buildSystem) {
     doLast {
         pl.initialize()
     }
 }

 task start {
     doLast {
         pl.start()
     }
 }

 task startInBackground {
     doLast {
         pl.startInBackground()
     }
 }

 task stopInBackground {
     doLast {
         pl.stopInBackground()
     }
 }

    Note: The FSA Spartacus Sample Data store extension (financialspastore) is already in the list of extensions for both financial_spa and financial_spa_integrations recipes.

  4. Open a terminal or command prompt window inside the “sap-commerce-folder/installer” folder.

  5. Set up the recipe using the following commands.

    For Unix:

     ./install.sh -r financial_spa -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd

    For Windows:

     install.bat -r financial_spa -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd

  6. Initialize the system using the following commands.

    For Unix:

     ./install.sh -r financial_spa -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd initialize

    For Windows:

     install.bat -r financial_spa -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd initialize

  7. Start SAP Commerce with the following command. From the sap-commerce-folder>/installer folder, run the following commands.

    For Unix:

     ./install.sh -r financial_spa -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd start

    For Windows:

     install.bat -r financial_spa -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd start

  8. Verify that SAP Commerce Cloud is working. To do this, you can:

    • Display the Admin Console: https://localhost:9002 or
    • Display the Backoffice: https://localhost:9002/backoffice (note that starting the Backoffice for the first time can take 15-20 seconds).

  9. Verify that the FSA Spartacus versions of the sample store were created:

    • Display the Backoffice or
    • Go to WCMS > Website. You should see the financial sample store.

Step 2: Configuring OCC credentials

FSA Spartacus uses OCC REST API calls to get information from and make changes to the backend. To do this, the backend must be configured with certain credentials.

  1. Open the Hybris Administration Console for your local SAP Commerce Cloud in a web browser at the following address: https://localhost:9002.
  2. Point to the Console tab, then click Impex Import.
  3. Copy-paste the following code into the Import content field.
INSERT_UPDATE OAuthClientDetails;   clientId[unique=true];  resourceIds     ;scope;     authorizedGrantTypes         ;authorities             ;clientSecret    ;registeredRedirectUri
;client-side              ;hybris            ;basic        ;implicit,client_credentials                                     ;ROLE_CLIENT             ;secret          ;http://localhost:9001/authorizationserver/oauth2_implicit_callback;
;mobile_android           ;hybris            ;basic        ;authorization_code,refresh_token,password,client_credentials    ;ROLE_CLIENT             ;secret          ;http://localhost:9001/authorizationserver/oauth2_callback;

Note: The values for the client ID and the password are just samples. You can use different values for your production environments.

  1. Click the Import content button. You have now added a client ID and password to your FSA Spartacus storefront configuration.

You can verify that the OAuth client has been successfully defined by entering the following curl command in a terminal or command prompt window:

curl -k -d "client_id=mobile_android&client_secret=secret&grant_type=client_credentials" -X POST https://localhost:9002/authorizationserver/oauth/token

The curl command sends a POST request for an access token, using the client ID and password that you added to the backend. The command should return something similar to the following:

{
  "access_token" : "550d9a25-87c8-4e76-af21-6174a1e56d5c",
  "token_type" : "bearer",
  "expires_in" : 43199,
  "scope" : "basic openid"
}

Step 3: Configuring CORS

CORS (Cross-Origin Resource Sharing) defines a way for a browser and a server to decide which cross-origin requests for restricted resources can or cannot be allowed. Certain FSA Spartacus functionalities, such as checkout and consent management, may not work properly if the CORS OCC REST API settings are not configured properly in SAP Commerce. You can add these settings using the Hybris Administration Console. Hover your mouse over the Platform tab, click Configuration, then update the CORS settings.

To configure CORS settings for OCC REST APIs, add the following to your SAP Commerce configuration (the local.properties file of your config folder):

corsfilter.commercewebservices.allowedOrigins=http://localhost:4200
corsfilter.commercewebservices.allowedMethods=GET HEAD OPTIONS PATCH PUT POST DELETE
corsfilter.commercewebservices.allowedHeaders=origin content-type accept authorization cache-control x-anonymous-consents x-profile-tag-debug x-consent-reference
corsfilter.commercewebservices.exposedHeaders=x-anonymous-consents

corsfilter.acceleratorservices.allowedOrigins=http://localhost:4200
corsfilter.acceleratorservices.allowedMethods=GET HEAD OPTIONS PATCH PUT POST DELETE
corsfilter.acceleratorservices.allowedHeaders=origin content-type accept authorization cache-control x-anonymous-consents
corsfilter.acceleratorservices.exposedHeaders=x-anonymous-consents

Note: The x-anonymous-consents custom header is included in the above example, but it can be removed if you plan to disable the anonymous consent feature. However, do not remove this header if you do not plan to disable the anonymous consent feature. For more information, see Anonymous Consent.

Step 4: Update system and user credentials (optional)

As you are using SAP Commerce Cloud 2005, you may need to enable users and passwords for certain functionalities to work.

See this help topic for more information.

All Done! You can now start FSA Spartacus! 

After you have configured SAP Commerce to accept OCC REST API calls, you can set up and start your storefront. See Building the FSA Spartacus Storefront Using 1.0 Libraries for more information.

Alternate Method for Setting the SAP Commerce Admin Password

Instead of including the admin password in every install command, you can create a configuration file.

  1. Create a file named custom.properties inside the installer/customconfig folder of your SAP Commerce folder.
  2. Add the following line: initialpassword.admin=Y0urFav0r!tePassw0rd. Replace Y0urFav0r!tePassw0rd with the password you want to use.
  3. Save the file.

Next time you run the recipe install command, the settings inside custom.properties will be used to build the local.properties file and there is no need to include -A local_property:initialpassword.admin=Y0urFav0r!tePassw0rd.

CORS Settings

  • CORS settings are very important for security. We strongly recommend that a professional SAP Commerce Cloud administrator reviews these settings to suit your requirements, as the sample properties should not be used for production servers.
  • CORS (Cross-Origin Resource Sharing) defines a way for a browser and a server to decide which cross-origin requests for restricted resources can or cannot be allowed. Certain Spartacus functionalities, such as checkout and consent management, may not work properly if the CORS OCC REST API settings are not configured properly in SAP Commerce Cloud.
  • You can add these settings using the Hybris Administration Console. Hover your mouse over the Platform tab, click Configuration, then update the CORS settings.
  • For information on Spartacus and CORS settings, see this help topic.
  • Several other Spartacus features also require additional CORS settings. For more information about CORS, see the ycommercewebservices Extension in the SAP Help Portal.

Troubleshooting

Failure at the Payment Step in the Checkout

You may encounter the following error message:

POST http://localhost:4200/acceleratorservices/sop-mock/process 404 (Not Found)

This issue is caused by an incorrect configuration of the sop.post.url property.

Make sure this property is set to sop.post.url=https://localhost:9002/acceleratorservices/sop-mock/process.