By default, Valtimo includes the Camunda webapps, including the cockpit.
This is accessible by using the path /camunda/app/ on the domain where Valtimo is hosted.
e.g. http://example.valtimo.com/camunda/app/
The Camunda webapps use the default Camunda authentication mechanism. This means they cannot be accessed by keycloak users. Credentials can be configured in the default way Camunda provides when using Spring.
In order to create an admin user the following application configuration should be set:
camunda.bpm.admin-user:
id: admin # or another username of choice
password: # enter a newly generated password hereNote: The id (username) is unique. If you want to change the password, you can do it via the Camunda web interface: Dashboard => Users => Account
See the camunda documentation for more configuration properties.
The Camunda webapps are available in a separate path (/camunda/*) from the other Valtimo APIs (/api/*). These paths
are by default not accessible and will respond with http status 403. Access to these paths is by can be configured with
a property that allows whitelisted hosts:
valtimo:
security:
whitelist:
hosts:
- localhost
- 0:0:0:0:0:0:0:1
- 123.123.123.123
- my.office.comTo remove the Camunda webapps from Valtimo altogether the
org.camunda.bpm.springboot:camunda-bpm-spring-boot-starter-webapp:7.14.0 dependency can be excluded. This is a
dependency in the Valtimo core module.