xwiki-devs

xwiki-devs@xwiki.org

9400 discussions

by Philippe Marzouk

Hi all, I wanted to take advantage of an ldap server for user authentication but as others already encountered there was no support for SSL and I needed it. I attach a patch which add support for SSL connections to the ldap server. To activate the SSL layer, I added a new configuration parameter in xwiki.cfg (xwiki.authentication.ldap.ssl) which has to be set to 1. Of course the ldap port has to be changed too (to 636). In order for the SSL connection to be established, the CA certificate which delivered the SSL certificate of the ldap server must be added to the trust store of the JSSE extension. >From the Sun JSSE documentation: The search order for the locating the trust store is: 1) <java-home>/lib/security/jssecacerts, then 2) <java-home>/lib/security/cacerts If the file jssecacerts exists, then cacerts is not consulted. So in order to make it work you have to create a trust store named jssecacerts with the following command and place it in the suitable directory of the JRE or JDK used by your container: keytool -import -trustcacerts -alias ca -file cacert.crt -keystore jssecacerts (answer yes when asked if you want to trust the certificate) I read on the web the default password for cacerts is 'changeit' so I used that, I didn't try yet with another password for the trust store. I believe if the SSL certificate of the ldap server is self signed you need to import it instead of the CA but I did not try. The patch makes use of com.sun.net.ssl.internal.ssl.Provider as the hard coded security provided, it should maybe be put as a parameter for people not running Sun JVMs. I'm a newbie to xwiki so don't hesitate to critize the patch or give me feedback. Philippe

17 years, 9 months

XWiki and Acegi SSO and CAS

by Jean Vence

I am looking to use XWiki with Acegi SSO and CAS. Has anyone done this and if not can anyone provide information and level of difficulty in doing this? Many Thanks, Jean

17 years, 9 months

[Proposal] New xwiki-applications directory in SVN

by Vincent Massol

Hi, I'd like to define a location in SVN where we can put XWiki applications (i.e. sets of xwiki pages). For example I'd like to put the Selenium application I wrote in there. I've been thinking about where best to put these and here's my proposal: * Create a xwiki-applications directory (with trunk/, branches/ and tags/) in svn.forge.objectweb.org/svnroot/xwiki * Have the following directory structure: xwiki-applications/trunk/ |_ wikis/ |_ default/ |_ applications/ |_ panels/ |_ selenium/ |_ blog/ |_ calendar/ |_ ... * The default/ module will depend on several applications like panels, blog, calendar, etc. * All modules in xwiki-applications all produce a XAR when built * We move the current xwiki/xwiki/trunk/wikis/** to xwiki- applications/trunk/wikis/** * There's already a xwiki-apps/ director y in SVN (for agilepm and gelc). I'm proposing to rename it to xwiki-extensions/ and to move agilepm to a sandbox. I'm proposing to create a sandbox for applications in xwiki-applications/trunk/sandbox and move agilepm in there. Let me know if you're ok with this. For jeremi and everyone workong on gelc, it shouldn't have much impact apart from the fact that you'll need to copy any uncommitted changes in the new directory (but that's a single copy - Simply make sure you don't copy the .svn files and you should be good - I have done that several times and it's very easy actually). Note: The reason this is urgent is that I need to commit the selenium application in order to start writing more functional tests and to formalize how we do our functional tests. We need that ASAP for 1.0. Thanks -Vincent ___________________________________________________________________________ Yahoo! Mail r�invente le mail ! D�couvrez le nouveau Yahoo! Mail et son interface r�volutionnaire. http://fr.mail.yahoo.com

17 years, 9 months

Clean URLs - Anyone knows why we have /bin/ in XWiki URLs?

by Vincent Massol

Hi, Some user (Jerome Lacoste) has commented to me that XWiki URLs are a bit too complex and should be simplified and cleaned as much as possible. I agree with him. Take for example: http://www.xwiki.org/xwiki/bin/view/Main/WebHome Wouldn't it be nice is this was simplified to http://www.xwiki.org/ Main/WebHome? This would mean view is the action by default. I guess we could have: http://www.xwiki.org/Main/WebHome?action="view| edit|..." with view being the default. The /xwiki/ part will be able to be removed once we fix the jira issue about removing the hardcoding about it. That leaves the /bin/ path. I'm not sure why it's there and what it's doing. I can see some hardcoded /testbin/ in the code but I thin this is probably some leftover that we should remove (or do differently). So what's the reason for /bin/? Thanks -Vincent ___________________________________________________________________________ Yahoo! Mail r�invente le mail ! D�couvrez le nouveau Yahoo! Mail et son interface r�volutionnaire. http://fr.mail.yahoo.com

17 years, 9 months

org.suigeneris.jrcs.rcs and IntelliJ IDEA

by Gilles Serasset

Hi all, As I'm working on xwiki code using IntelliJ IDEA, I saw that the directive: import org.suigeneris.jrcs.rcs.Version; that is in XWikiDocument.java (and maybe others) raised an error from the IDE (can't resolve symbol). It compiles correctly though, even with the IDEA compiler (i.e. not using the ant tasks). I tried detaching and reattaching the .jar file that defines this class but it still is not readable by IntelliJ for a mysterious reason... Any idea ? I created a page for documenting the setup of xwiki build on IDEA, I'll complete it if I finally got a workaround for this... Regards, GIlles, -- Gilles Sérasset GETA-CLIPS-IMAG (UJF, INPG & CNRS) BP 53 - F-38041 Grenoble Cedex 9 Phone: +33 4 76 51 43 80 Fax: +33 4 76 44 66 75

17 years, 9 months

Re: [xwiki-commits] r2123 - in xwiki/trunk/core/src/main/java/com/xpn/xwiki: . web

by Vincent Massol

Hi Jeremi, We also need a JIRA issue for this... Thanks -Vincent On Feb 14, 2007, at 1:03 PM, Jeremi Joslin wrote: > Author: jeremi > Date: 2007-02-14 13:03:27 +0100 (Wed, 14 Feb 2007) > New Revision: 2123 > > Added: > xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiDebugGWTURLFactory.java > Modified: > xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWikiContext.java > xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiURLFactoryServiceImpl.java > Log: > add the XWikiContext.MODE_GWT_DEBUG > > Modified: xwiki/trunk/core/src/main/java/com/xpn/xwiki/ > XWikiContext.java > =================================================================== > --- xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWikiContext.java > 2007-02-14 12:00:17 UTC (rev 2122) > +++ xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWikiContext.java > 2007-02-14 12:03:27 UTC (rev 2123) > @@ -43,6 +43,7 @@ > public static final int MODE_ATOM = 3; > public static final int MODE_PDF = 4; > public static final int MODE_GWT = 5; > + public static final int MODE_GWT_DEBUG = 6; > > private boolean finished = false; > private XWiki wiki; > > Added: xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiDebugGWTURLFactory.java > =================================================================== > --- xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiDebugGWTURLFactory.java 2007-02-14 12:00:17 UTC (rev 2122) > +++ xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiDebugGWTURLFactory.java 2007-02-14 12:03:27 UTC (rev 2123) > @@ -0,0 +1,33 @@ > +package com.xpn.xwiki.web; > + > +import com.xpn.xwiki.XWikiContext; > + > +import java.net.URL; > +import java.net.MalformedURLException; > + > +/** > + * Created by IntelliJ IDEA. > + * User: jerem > + * Date: Jan 18, 2007 > + * Time: 3:14:06 PM > + * To change this template use File | Settings | File Templates. > + */ > +public class XWikiDebugGWTURLFactory extends XWikiServletURLFactory{ > + > + > + public void init(XWikiContext context) { > + URL url = context.getURL(); > + > + servletPath = "/xwiki/"; > + > + actionPath = "bin/"; > + > + try { > + serverURL = new URL(url.getProtocol(), url.getHost(), > 1025, "/"); > + } catch (MalformedURLException e) { > + // This can't happen > + } > + } > + > +} > + > > Modified: xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiURLFactoryServiceImpl.java > =================================================================== > --- xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiURLFactoryServiceImpl.java 2007-02-14 12:00:17 UTC (rev 2122) > +++ xwiki/trunk/core/src/main/java/com/xpn/xwiki/web/ > XWikiURLFactoryServiceImpl.java 2007-02-14 12:03:27 UTC (rev 2123) > @@ -49,7 +49,8 @@ > register(xwiki, XWikiContext.MODE_SERVLET, > XWikiServletURLFactory.class, "xwiki.urlfactory.servletclass"); > register(xwiki, XWikiContext.MODE_PORTLET, > XWikiPortletURLFactory.class, "xwiki.urlfactory.portletclass"); > register(xwiki, XWikiContext.MODE_PDF, > PdfURLFactory.class, "xwiki.urlfactory.pdfclass"); > - register(xwiki, XWikiContext.MODE_GWT, > XWikiServletURLFactory.class, "xwiki.urlfactory.servletclass"); > + register(xwiki, XWikiContext.MODE_GWT, > XWikiServletURLFactory.class, "xwiki.urlfactory.servletclass"); > + register(xwiki, XWikiContext.MODE_GWT_DEBUG, > XWikiDebugGWTURLFactory.class, "xwiki.urlfactory.servletclass"); > } > > protected void register(XWiki xwiki, int mode, Class > defaultImpl, String propertyName) > ___________________________________________________________________________ Yahoo! Mail r�invente le mail ! D�couvrez le nouveau Yahoo! Mail et son interface r�volutionnaire. http://fr.mail.yahoo.com

17 years, 9 months

Re: [xwiki-commits] r2122 - xwiki/trunk/core/src/main/java/com/xpn/xwiki/doc

by Vincent Massol

Jeremi, We need a JIRA issue for this. Thanks -Vincent On Feb 14, 2007, at 1:00 PM, Jeremi Joslin wrote: > Author: jeremi > Date: 2007-02-14 13:00:17 +0100 (Wed, 14 Feb 2007) > New Revision: 2122 > > Modified: > xwiki/trunk/core/src/main/java/com/xpn/xwiki/doc/XWikiDocument.java > Log: > add getExternalAttachmentURL > > Modified: xwiki/trunk/core/src/main/java/com/xpn/xwiki/doc/ > XWikiDocument.java > =================================================================== > --- xwiki/trunk/core/src/main/java/com/xpn/xwiki/doc/ > XWikiDocument.java 2007-02-14 11:59:02 UTC (rev 2121) > +++ xwiki/trunk/core/src/main/java/com/xpn/xwiki/doc/ > XWikiDocument.java 2007-02-14 12:00:17 UTC (rev 2122) > @@ -651,6 +651,10 @@ > return context.getURLFactory().getURL(url, context); > } > > + public String getExternalAttachmentURL(String filename, String > action, XWikiContext context) { > + URL url = context.getURLFactory().createAttachmentURL > (filename, getSpace(), getName(), action, null, getDatabase(), > context); > + return url.toString(); > + } > public String getAttachmentURL(String filename, String action, > String querystring, > XWikiContext context) > { > @@ -1026,8 +1030,7 @@ > > public void setObject(String classname, int nb, BaseObject > object) > { > - Vector objects = null; > - objects = getObjects(classname); > + Vector objects = getObjects(classname); > if (objects == null) { > objects = new Vector(); > setObjects(classname, objects); > ___________________________________________________________________________ Yahoo! Mail r�invente le mail ! D�couvrez le nouveau Yahoo! Mail et son interface r�volutionnaire. http://fr.mail.yahoo.com

17 years, 9 months

Re: [xwiki-commits] r2124 - xwiki/trunk/core/src/main/java/com/xpn/xwiki

by Vincent Massol

Hi Jeremi, On Feb 14, 2007, at 1:05 PM, Jeremi Joslin wrote: > Author: jeremi > Date: 2007-02-14 13:05:42 +0100 (Wed, 14 Feb 2007) > New Revision: 2124 > > Modified: > xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWiki.java > Log: > add the XWikiContext.MODE_GWT_DEBUG Is there a JIRA issue associated with this change? Is it for 1.1, for 1.0, for beta 4, 5? Also the commit doesn't correspond to the log message... Is that a mistake? Thanks -Vincent > > Modified: xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWiki.java > =================================================================== > --- xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWiki.java > 2007-02-14 12:03:27 UTC (rev 2123) > +++ xwiki/trunk/core/src/main/java/com/xpn/xwiki/XWiki.java > 2007-02-14 12:05:42 UTC (rev 2124) > @@ -268,7 +268,7 @@ > } else { > xwikicfgis = econtext.getResourceAsStream > (xwikicfg); > if (xwikicfgis == null) { > - if (context.getMode() == > XWikiContext.MODE_GWT) > + if (context.getMode() == > XWikiContext.MODE_GWT || context.getMode() > ==XWikiContext.MODE_GWT_DEBUG) > xwikicfgis = > XWiki.class.getClassLoader > ().getResourceAsStream( > "xwiki-gwt.cfg"); > @@ -5017,4 +5017,10 @@ > { > return ("1".equals(context.getWiki().Param > ("xwiki.store.versioning", "1"))); > } > + > + public String getExternalAttachmentURL(String fullName, String > filename, XWikiContext context) { > + XWikiDocument doc = new XWikiDocument(); > + doc.setFullName(fullName, context); > + return doc.getExternalAttachmentURL(filename, "download", > context); > + } > } > ___________________________________________________________________________ Yahoo! Mail r�invente le mail ! D�couvrez le nouveau Yahoo! Mail et son interface r�volutionnaire. http://fr.mail.yahoo.com

17 years, 9 months

Code freeze for 1.0 beta 4

by Vincent Massol

Hi, I've created a XWIKI_1_0_BETA_4 branch for the b4 release. Work can now start for beta 5 on the 1.0 branch. Thanks -Vincent ___________________________________________________________________________ Yahoo! Mail r�invente le mail ! D�couvrez le nouveau Yahoo! Mail et son interface r�volutionnaire. http://fr.mail.yahoo.com

17 years, 9 months

XWA-22 possible SQL injection with search

by Pablo Oliveira

As Paul, I've stumbled upon this when using a tick (') in the search box at xwiki.org. It appears to be resolved on the dev version, but you really should backport the fix to xwiki.org as it is a serious security threat. Pablo

17 years, 9 months

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

xwiki-devs