Perl 6 - the future is here, just unevenly distributed

IRC log for #openam, 2017-04-11

| Channels | #openam index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
01:48 ilbot3 joined #openam
01:48 Topic for #openam is now Chat about the OpenAM project - https://backstage.forgerock.com/#/downloads - OpenAM 13.5.0 is out! OpenAM 12.0.4 is out! Channel logs at: http://irclog.perlgeek.de/openam/today
05:16 aldaris joined #openam
05:59 aldaris joined #openam
07:22 aldaris joined #openam
07:42 Topic for #openam is now Chat about the OpenAM project - https://forgerock.github.io - Channel logs at: http://irclog.perlgeek.de/openam/today
08:40 KermitTheFragger joined #openam
09:42 aldaris Good morning everyone
09:45 asyd morning aldaris
10:24 FireBurn|Work joined #openam
10:30 FireBurn|Work When building OpenDJ for OpenAM should I be using the 3.0.0 tag or the 3.0.0-OPENAMp3 tag?
10:30 aldaris 3.0.0 by all means
10:30 aldaris do NOT build OPENAMp3 tag :)
10:31 aldaris it's ancient old
10:31 aldaris and it was only used to build opendj-ldap-sdk
10:31 aldaris which later got reversioned to 2.6.x
10:37 FireBurn|Work I seme to get one thing working, and something else breaks
10:37 FireBurn|Work ssoadm now fully working, but after I configure I can't logon
10:38 aldaris tomcat 8.5 + default cookie domains?
10:38 FireBurn|Work WebSphere 8.5.5.10
10:38 FireBurn|Work "AuthId JWT Signature not valid"
10:38 asyd \o/
10:39 FireBurn|Work I've changed the default cookie
10:39 FireBurn|Work I tried cherry-picking the fix for https://bugster.forgerock.org/jira/browse/OPENAM-8269 but then I couldn't even get the logon page to appear :'(
10:44 FireBurn|Work Are there any other websphere tricks that are missing from the docs? Deleting those jars certainly wasn't documented anywhere
10:48 FireBurn|Work Hmm, master is two commits ahead of the 3.0.0 tag
10:49 FireBurn|Work I'm pretty sure I was using master before, could those two fixes be what's causing the issue when setting up OpenAM?
11:00 aldaris joined #openam
11:01 aldaris unlikely IMO
11:02 MegaMatt joined #openam
11:03 aldaris the JWT issue only happened for multierver deployments IIRC
11:04 aldaris could it be that you had an old authId JWT lying around?
11:04 FireBurn|Work What do you mean by lying around?
11:05 FireBurn|Work And what do you mean by multiserver?
11:05 FireBurn|Work I'm running in a cluster
11:05 aldaris that issue would only happen if you are starting authentication on one server and continue on the other
11:07 FireBurn|Work I use the configurator tool to setup each instance, then run ssoadm with a list-servers at the end of the process
11:07 FireBurn|Work Could that be causing my issue?
11:07 FireBurn|Work If so how do I work around it?
11:09 aldaris not sure how ssoadm would be related to a login issue on the server
11:10 aldaris you would need to backport 8269, then recompile, and then reinstall OpenAM, because the change affects service schema
11:58 aldaris joined #openam
12:41 gbuxton1 joined #openam
12:44 aldaris joined #openam
13:07 FireBurn|Work Ah that'll be why it didn't work last time...
13:07 FireBurn|Work @256_BIT_RANDOM_SECURE@ doesn't exist changing it for @128_BIT_RANDOM_SECURE@
13:24 gbuxton1 left #openam
13:24 FireBurn|Work So when setting up OpenAM should the cookie domain be .domain.com or server.domain.com?
13:25 asyd agent or only saml?
13:25 FireBurn|Work Hmm
13:25 FireBurn|Work The initial setup
13:25 MegaMatt I’d go with .domain.com
13:27 asyd FireBurn|Work: i mean, if you want to use openam agents, using server.domain.com will be a really bad idea :)
13:27 FireBurn|Work I'll be using webagents
13:27 FireBurn|Work So what's OPENAM-1945 about then?
14:21 FireBurn|Work Should the OpenDJ backend type be je or pdb?
14:21 MegaMatt je don’t use pdb
14:28 FireBurn|Work Weird
14:28 FireBurn|Work Remember I said the scripted from scratch version didn't work correctly
14:28 FireBurn|Work It seems the only difference is the version that doesn't work emits a --backend je where the one that does work doesn't
14:28 FireBurn|Work https://pastebin.com/1VkP5T4K
14:59 FireBurn|Work Red herring
14:59 FireBurn|Work Diffing the working and not working snmp
14:59 FireBurn|Work wars rather
14:59 FireBurn|Work the not wokring one seems to have snmp missing
15:15 aldaris joined #openam
15:35 aldaris joined #openam
15:40 FireBurnUK joined #openam
17:02 gbuxton1 joined #openam
17:03 gbuxton1 left #openam
18:09 KermitTheFragger joined #openam
18:40 aldaris joined #openam
18:54 aldaris joined #openam
23:30 auke- joined #openam

| Channels | #openam index | Today | | Search | Google Search | Plain-Text | summary