New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Removing PicketLink Quickstarts. Adding git submodule to https://github.com/picketlink/picketlink-quickstarts. #584
Removing PicketLink Quickstarts. Adding git submodule to https://github.com/picketlink/picketlink-quickstarts. #584
Conversation
…t submodule reference.
@pedroigor : Should we close the other picketlink quickstart pulls? |
Yes. We can close all of them. |
@pedroigor : There was feedback for these quickstarts in the separate URLs that were closed. Were those addressed with this pull? Thought I would ask to save time before I go through them all again Also, I navigated to the picketlink-authentication-form quickstart and am not able to run the QS Tools utility. This is the log: [ERROR] The project org.jboss.as.quickstarts:jboss-as-picketlink-authentication-form:7.1.2-SNAPSHOT (/home/sgilda/GitRepos/quickstart-jdf/picketlink-quickstarts/picketlink-authentication-form/pom.xml) has 7 errors Is version 1.0.7.CR9 of the JBoss BOM in Maven Central? |
@sgilda : jboss-bom 1.0.7.CR9 is already available on Maven Central. Can you check it out ? |
@PedroIgo: Just to clarify. The following are new quickstarts that need review:
The rest are existing quickstarts that were just been moved to the extenal repository:
Correct? |
Yes. |
I get a few QS tools BOM errors on picketlink-authentication-recaptcha. There's also an issue with the license in src/main/java/org/jboss/as/quickstarts/picketlink/authentication/recaptcha/jsf/ReCaptchaService.java, |
QS tools checker reports quite a few violations for the picketlink-authorization-idm-ldap quickstart: BomVersionChecker Check and verify if all quickstarts are using the recommended BOM version 2 |
Minor typo: There's a space in the middle of the word "authenticated" in the picketlink-authentication-form/src/main/webapp/protected/private.xhtml, line 21-22:
Other than that, the picketlink-authentication-form quickstart looks good to me. |
In the README for the picketlink-authentication-http-client-cert, I have a couple of suggestions:
I ran into a problem testing this one. I created the certificates as described and configured the server. The server does respond on https://localhost:8443. However, when I "Click here here to access the protected resources." , I get:
I will go back through the certificate steps. I think they could be laid out in steps to make it easier. @pedroigor : I will make some modifications to the README file for this one and send them to you via email. |
@pedroigor : I sent you a modified README.md file for the picketlink-authentication-http-client-cert quickstart.
This didn't happen for me. I am not prompted to import the certificate. It just goes directly to the HTTP Status 403. |
In picketlink-authentication-recaptcha, there is a typo when you access the page. Other than that, this quickstart works great! |
In the picketlink-authorization-idm-ldap quickstart README file, Change line 72 from: To: This quickstart works great! |
sgilda: Two main things were done:
Thanks. |
We going to release 2.5.0.CR2 tomorrow, update the BOMs and send another commit to change the quickstart BOM dependency. |
@pedroigor : I just tried running QS Tools against the updated picketlink-authentication-recaptcha quickstart and get these errors. Any idea what I did wrong? [ERROR] The project org.jboss.as.quickstarts:jboss-as-picketlink-authentication-recaptcha:7.1.2-SNAPSHOT (/home/sgilda/GitRepos/quickstart-jdf/picketlink-quickstarts/picketlink-authentication-recaptcha/pom.xml) has 9 errors |
@pedroigor : The BOMs aren't available yet, so I can't run QS Tools or test the quickstarts, but the other changes look great! Thanks! |
@pedroigor : In the picketlink-authentication-http-client-cert README file, we should add a note telling them to back up the server configuration. It is also misleading and not obvious they can choose between the configuration options. Could you mofify the README as follows: Configure the Server to Use SSLNow that the certificates and keystores are properly configured, you must enable SSL in the server configuration. NOTE - Before you begin:
You can configure the server by running the Configure the HTTPS Connector in the Web Subsystem by Running the JBoss CLI Script |
@pedroigor : I am still getting an HTTP Status 403 - The requested resource requires a valid certificate. when I access 'Click here here to access the protected resources.' https://localhost:8443/jboss-as-picketlink-authentication-http-client-cert/protected/private.jsf I will try once again with a new server. |
@pedroigor: Also, in the picketlink-authentication-http-client-cert README file, could you move the 'System Requirements' and 'Configure Maven' sections up after 'What is it?' and before 'Create the Client Certicates'? |
I created the certificates and imported the client.keystore into Google Chrome.
I click OK, then see: The site's security certificate is not trusted! Any idea what I am doing wrong? |
@pedroigor : Also, when I import the certificate into Firefox, it displays the 'client.cer', not the 'client.keystore'. It says the 'client.cer' is not valid. I choose the 'client.keystory', and I'm not prompted to enter a password. It doesn't appear to do anything and I don't see a new entry in the list. When I access the secured site, I'm prompted with a "Certificate Viewer" dialog that says "Could not verify this certificate for unknown reasons" and lists all the data I entered when I created the certificate (as in my previous comment). I continue and get the same 'HTTP Status 403 - The requested resource requires a valid certificate.' |
These all work now and the instructions are clear. @pmuir: These are ready for code review. |
For the recpatcha one, I'm wondering if we can't bind the recaptcha fields to a CDI bean, and then push that through to Google? This would remove some nasty boilerplate code. Also, can we check we support the RestEasy client api in eap? |
Otherwise these look excellent. No issues I saw. Ready for merge I think @sgilda. |
Mertged! |
No description provided.