Google Git
Sign in
apache / ofbiz / 1bcaad0272d9c2537756cfe3b12515600ca0b6fc^! / .
commit1bcaad0272d9c2537756cfe3b12515600ca0b6fc[log] [tgz]
authorJacques Le Roux <jleroux@apache.org>Thu Jan 12 10:15:57 2017 +0000
committerJacques Le Roux <jleroux@apache.org>Thu Jan 12 10:15:57 2017 +0000
tree07ef9b2406602518803e10a2a250cff9de356ea9
parentf4aaf8705501f7e307fa766a6be9f21d21b2f77b [diff]
No functional change, just documentation in README.MD
Adds a note for JDBC drivers
Move the Security section below the Quick start section

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/trunk@1778413 13f79535-47bb-0310-9956-ffa450edef68

diff --git a/README.md b/README.md
index 99bba22..6723256 100644
--- a/README.md
+++ b/README.md

@@ -44,15 +44,11 @@
 This command will prepare OFBiz for Eclipse with the correct classpath and settings 
 by creating the.classpath and .project files.
 
-Security
--------------------
-
-You can trust the OFBiz Project Management Committee members and committers do their best to keep OFBiz secure from external exploits, and fix vulnerabilities as soon as they are known. Despite these efforts, if ever you find and want to report a security issue, please report at: security @ ofbiz.apache.org, before disclosing them in a public forum.
-
->_Note_: Be sure to read this Wiki page if ever you plan to use RMI, JNDI, JMX or Spring and maybe other Java classes OFBiz does not use Out Of The Box (OOTB): [The infamous Java serialization vulnerability](https://cwiki.apache.org/confluence/display/OFBIZ/The+infamous+Java+serialization+vulnerability)
-
-You can find more information about security in OFBiz at [Keeping OFBiz secure](https://cwiki.apache.org/confluence/display/OFBIZ/Keeping+OFBiz+secure) 
-
+>_Note_: if you want to use an external DBMS, instead of the embedded Derby, you will need a JDBC driver.
+The only thing you need to do is add a dependency in build.gradle to the MySQL/PostgreSQL/whatever JDBC driver.
+Search in Jcenter for the database driver suitable for the database installed on your production system.
+For example, under the dependencies section you can add something like this for mysql: `runtime 'mysql:mysql-connector-java:5.1.36'`
+Of course you need to make sure the connector is compatible with _your_ version of the database installed!
 
 Quick start
 -----------
@@ -94,6 +90,16 @@
 (Apache Derby) and embedded application server components such as
 Apache Tomcat®, Apache Geronimo (transaction manager), etc.
 
+Security
+-------------------
+
+You can trust the OFBiz Project Management Committee members and committers do their best to keep OFBiz secure from external exploits, and fix vulnerabilities as soon as they are known. Despite these efforts, if ever you find and want to report a security issue, please report at: security @ ofbiz.apache.org, before disclosing them in a public forum.
+
+>_Note_: Be sure to read this Wiki page if ever you plan to use RMI, JNDI, JMX or Spring and maybe other Java classes OFBiz does not use Out Of The Box (OOTB): [The infamous Java serialization vulnerability](https://cwiki.apache.org/confluence/display/OFBIZ/The+infamous+Java+serialization+vulnerability)
+
+You can find more information about security in OFBiz at [Keeping OFBiz secure](https://cwiki.apache.org/confluence/display/OFBIZ/Keeping+OFBiz+secure) 
+
+
 * * * * * * * * * * * *
 
 Build system syntax