Eventhough NSFDB2 is virtually dead...
... someone still keep downloading my presentation from DominoPoint Day 2 . Amazing!
P.S.
And Elvis and MJ are still alive too ;-)
IBM, Lotus Notes and Domino, Sametime, Quickplace/Quickr and more...
... someone still keep downloading my presentation from DominoPoint Day 2 . Amazing!
Author Cristian D'Aloisio at 12:41 PM 0 Comments Permanent link
Tags:
DB2,
LotusDomino,
nsfdb2
Following the post I made some time ago, Alessandro sent me an update about his own tests: Alessandro, thanks for sharing it with us .
*****
Hi, after a lot of testing, a lot of reading IBM documentation and a lot of sleepless nights on the matter described in my post above, I come to do some tests on the Portlet Factory (it retrieved the WSDL without problems after putting the certificate in the /lib/securitycacert file) and I got a hunch: "Does the domino client have a cacert file in his JVM?"
This morning I looked into the JVM directory and I found it in \CLIENTDIR\jvm\lib\security, so, using the ikeyman.exe program in \CLIENTDIR\jvm\bin I added the certificate (in binary format) to the repository and I tried to import the WSDL in my database: I was required to accept the cross certification and after that it was imported: a piece of cake!
Please not that I'was trying to import a WSDL to obtain Lotus Script Code (NOT JAVA)!
Well, I think that this is a little bug in the client architecture because this it happens only with certificate that are issued by a NOT TRUSTED authority (with a trusted authority it works as documented (with the cross-certification only)). I think that when the certificate is not trusted something goes wrong in the code and it looks for it in the cacerts too and, obviously, it cannot find the certificate... so it raises an error!
I hope that this can be useful!
Alessandro Bignami
Domino developer at ZEL S.r.L.
Author Cristian D'Aloisio at 9:15 PM 0 Comments Permanent link
Tags:
HTTPS,
LS,
WebServices
Every now and then I take a look to Web Service implementation in Domino Designer, especially since Designer allows us to develop Web Service Providers using LotusScript or Java.
I don't know if Web Services are or will be successfully, but for sure I like the big picture surrounding them.
Some times ago I tried to consume a Web Service from Jajah voip company: first I tried using LS, but later I had to use Java to overcome LS limitations about name length limits.
Unfortunately even with Java I found problems because the Web Service had to be consumed over a SSL channel (HTTPS) but the remote web server certificate was a self-certified one, so my script simply crashed because the certificate was not trustable... I could not find an easy way to trust/import the that web server certificate.
I gave up with it and decided to use MS Soap client via COM object in a LS agent, successfully. Shame... ;-)
Today I tried for the first time to have a look back to the subject, so on VMware box I installed a brand-new Domino 8.5.1 server with a running self-certified web server certificate.
After that, I published a "calculator" Web Service with just a SUM() function available, just using a LS class.
On the "client" side, I used Designer 8.5.1 to consume that "remote" web service:
WebServiceEngineFault
faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.generalException
faultSubcode:
faultString: Error connecting to 'ced75temp.ciemme.loc' on port '443', SSL invalid certificate, may need to cross-certify.
faultActor:
faultNode:
faultDetail:
Error connecting to 'ced75temp.ciemme.loc' on port '443', SSL invalid certificate, may need to cross-certify.
at lotus.domino.axis.InternalFault.makeFault(Unknown Source)
at lotus.domino.axis.transport.http.HTTPSender.invoke(Unknown Source) .......
Author Cristian D'Aloisio at 1:15 AM 1 Comments Permanent link
Tags:
HTTPS,
Java,
LotusDesigner,
LotusDomino,
LS,
SSL,
WebServices
...Gregg saves your day!
SnTT - Administrator ID Has Expired
Thanks Gregg.
Author Cristian D'Aloisio at 12:01 PM 0 Comments Permanent link
Tags:
administrator,
LotusDomino,
LotusNotes
It was useful for me (so far), take a look to this add-on:
Vacuum Places Improved
I also took a look to the add-on comment stating to enable "compact databases" option for Firefox inside the CCleaner utility.
Author Cristian D'Aloisio at 5:10 PM 0 Comments Permanent link
Tags:
Firefox,
optimization