Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Corrected links that should have been relative instead of absolute.


[10:43:41 CDT(-0500)] <EricDalquist> ok, so the gatewaysso portlet is some code portlet + servlet code that is added to the uPortal web application

[10:43:47 CDT(-0500)] <EricDalquist> there is no additional webapp in tomcat for it

[10:43:54 CDT(-0500)] <b-rock> yes.

[10:44:05 CDT(-0500)] <athena> there is an additional webapp

[10:44:10 CDT(-0500)] <EricDalquist> so then it sees the portal session

[10:44:19 CDT(-0500)] <EricDalquist> portlets and servlets in one webapp share a single session object

[10:44:25 CDT(-0500)] <athena> there are a few jars that are added to uportal, plus adding a servlet

[10:44:30 CDT(-0500)] <EricDalquist> portlets have two scopes for accessing the session

[10:44:30 CDT(-0500)] <athena> and then there's a separate webapp

[10:44:34 CDT(-0500)] <athena> the whole thing is pretty complex

[10:44:42 CDT(-0500)] <EricDalquist> application scope accesses the session just like a normal servlet

[10:44:46 CDT(-0500)] <athena> and should be rewritten as a JSR-286 portlet

[10:44:53 CDT(-0500)] <EricDalquist> portlet scope namespaces session attributes to that portlet's window id

[10:45:13 CDT(-0500)] <EricDalquist> there is NO WAY to access one webapp's session from another webapp though

[10:45:54 CDT(-0500)] <athena> it doesn't really - it has a servlet that spits javascript out of the uportal webapp, i believe

[10:46:10 CDT(-0500)] <athena> i can't remember exactly what the workflow is

[10:46:36 CDT(-0500)] <b-rock> yeah. I'm guessing at the workflow myself but I see that the servlet is called everytime the portlet is rendered.

[10:46:54 CDT(-0500)] <athena> yeah, i believe it's called via ajax

[10:47:10 CDT(-0500)] <b-rock> there appear to be some porltet related data in the servlet session arrtName: 'org.jasig.portal.user.UserInstanceManagerImpl.USER_INSTANCE' .

[10:47:26 CDT(-0500)] <EricDalquist> portal related data you mean?

[10:47:39 CDT(-0500)] <b-rock> yes portal not portlet.

[10:47:59 CDT(-0500)] <b-rock> although there is this. 'org.jasig.portal.portlet.session.PortletSessionExpirationManager.PORTLET_SESSIONS'

[10:48:09 CDT(-0500)] <EricDalquist> since the servlet is part of the uPortal webapp it would have access to the entire uPortal session

[10:48:18 CDT(-0500)] <EricDalquist> uPortal stores a lot of data in the session

[10:48:28 CDT(-0500)] <EricDalquist> but ALL of it is stored and accessed through utilities

[10:48:54 CDT(-0500)] <EricDalquist> bad things will happen if you start poking around with existing portal session attributes (reading from or writing to) without going through the appropriate accessor API

[10:49:21 CDT(-0500)] <EricDalquist> like to get the IUserInstance you should inject IUserInstanceManager into your code

[10:49:29 CDT(-0500)] <EricDalquist> and use: "IUserInstance getUserInstance(HttpServletRequest request)"

[10:49:33 CDT(-0500)] <b-rock> yes. I have done that in the servlet .

[10:49:36 CDT(-0500)] <b-rock> and get the user.

[10:50:15 CDT(-0500)] <b-rock> or rather updated the servlet to use the updated api for the IUserInstance

[10:50:42 CDT(-0500)] <EricDalquist> sounds good

[10:52:17 CDT(-0500)] <b-rock> so in the servlet, the code is trying to get a session attribute that is set as a portlet session attribute in the portlet. I'm not sure how this is working yet.

[10:52:59 CDT(-0500)] <EricDalquist> and the portlet is part of the uPortal webapp?

[10:53:29 CDT(-0500)] <b-rock> no the portlet is its own webapp toro-gateway-portlet.war with its own set of portlets.

[10:54:05 CDT(-0500)] <EricDalquist> then there is no way

[10:54:20 CDT(-0500)] <EricDalquist> one webapp can't see session attributes from another webapp

[10:54:31 CDT(-0500)] <EricDalquist> without seriously unmaintainable trickery

[10:55:41 CDT(-0500)] <b-rock> yeah this is really some interesting code I've got here.

[10:56:39 CDT(-0500)] <EricDalquist> I bet :/

[11:02:55 CDT(-0500)] <athena>

[11:03:33 CDT(-0500)] <athena> it's passing in a key, at which point the servlet either pulls somethign from cache or builds a new one

[11:04:08 CDT(-0500)] <athena> so caching some stuff in the portal's session, but just to save redoing it, and not using the portlet session

[11:04:40 CDT(-0500)] <b-rock> yeah so the evaluator object is the GatewayUserContext object being set in the portlet from what I can tell.

[11:07:55 CDT(-0500)] <athena> don't think it's passing through the session though

[11:10:25 CDT(-0500)] <b-rock> I'm not sure. I see with some added debug that my cache object is empty when the servlet gets called.

[11:13:50 CDT(-0500)] <b-rock> I see.

[11:14:22 CDT(-0500)] <athena> this was all written before we even had spring, so the codebase is pretty old

[11:14:26 CDT(-0500)] <b-rock> the version we're using is already heavily customized with encryption for the password

[11:14:44 CDT(-0500)] <athena> well, not heavily customized

[11:14:53 CDT(-0500)] <athena> i wrote that modification, i believe (smile)

[11:15:03 CDT(-0500)] <b-rock> yes you did.

[11:15:26 CDT(-0500)] <athena> so stuff like that encryption code is more modern and could be pulled into a new project

[11:15:35 CDT(-0500)] <athena> a new project that did the things you need to do would be a lot smaller

[11:16:32 CDT(-0500)] <b-rock> yeah. I'm not sure if it would be easier to just try to write this from scratch or port the existing code to its own project and refactor it as a jsr 268 porlet.

[11:17:10 CDT(-0500)] <athena> it'd be easiest to rewrite from scratch, though pulling in select bits or using them for a model

[11:17:24 CDT(-0500)] <athena> an initial project also maybe wouldn't have to do absolutely everythign the current version does

[11:17:28 CDT(-0500)] <athena> could build it back up slowly

[11:17:36 CDT(-0500)] <b-rock> yeah. I agree.

[11:17:45 CDT(-0500)] <athena> i imagine you're only using a subset of hte functionality

[11:18:31 CDT(-0500)] <b-rock> we really just need the links that sso into the external applications. although that seems like probably the biggest chunk?

[11:19:32 CDT(-0500)] <athena> well, the portlet actually has support for some complex stuff like logging into applications that require a number of sequential steps to authenticate

[11:20:01 CDT(-0500)] <athena> if your SSO targets are just simple links you could skip some of that

[11:20:51 CDT(-0500)] <b-rock> yeah. i think all of the targets just have the basic form based auth that take a user name and passsword which is the same as you use to log into the portal

[11:25:23 CDT(-0500)] <athena> yeah, my recommendation would be to create a new portlet, taking what's still relevant from toro, and build up first the limited use case that you actually need

[11:25:38 CDT(-0500)] <athena> which means you could leave out some of the authentication options

[11:25:47 CDT(-0500)] <athena> as well as leave out the database-persisted credentials bit

[11:25:55 CDT(-0500)] <athena> i assume you're only doing password replay

[11:26:15 CDT(-0500)] <athena> the whole thing could be just a single small webapp that uses JSR-286

[11:26:23 CDT(-0500)] <athena> and we could probably get it included in uportal itself

[11:26:28 CDT(-0500)] <athena> make life a lot easier

[11:26:30 CDT(-0500)] <b-rock> I think your right. I'll need to take this back to my PM and see if we can make time to do this. yes we just do the password replay and our creds are encrypted as a user attribute.

[11:26:43 CDT(-0500)] <athena> sounds good (smile)

[11:28:20 CDT(-0500)] <athena> you going to be at the unconference b-rock?

[11:31:48 CDT(-0500)] <b-rock> athena: i"m not sure. i know its coming up and hasn't been dissussed by or mgmt team.

[11:32:00 CDT(-0500)] <b-rock> would be nice to go again.

[11:32:08 CDT(-0500)] <athena> always good to see you (smile)

[11:32:14 CDT(-0500)] <b-rock> you too.

[14:37:01 CDT(-0500)] <b-rock> Hi EricDalquist. I think the portlet spec allows us to redirect to an external site with actionResponse.sendRedirect(url). I'm trying that in a portlet action , but it seems to be ignored and runs the doView again. can I turn that off via configuration?

[14:44:16 CDT(-0500)] <b-rock> ok nm. too many open tabs. I see that this does work.

[15:33:37 CDT(-0500)] <athena> hey EricDalquist - where are we at w/ the portal statistics?

[15:43:33 CDT(-0500)] <EricDalquist> hi athena

[15:43:42 CDT(-0500)] <EricDalquist> event persistence is in master

[15:44:02 CDT(-0500)] <EricDalquist> I'm going to be merging in the cluster locking service either in a few minutes or tonight

[15:44:11 CDT(-0500)] <EricDalquist> and then I'll be working on the aggregation framework tonight

[15:44:23 CDT(-0500)] <EricDalquist> I'll try to get one or two aggregations in place as examples

[15:44:51 CDT(-0500)] <athena> nice (smile)

[15:45:01 CDT(-0500)] <athena> once you have those i think i could start playing with creating a view layer

[15:45:09 CDT(-0500)] <athena> see how it all works

[15:45:15 CDT(-0500)] <EricDalquist> I'm trying to find out the best way to deal with a merge breakage issue

[15:45:42 CDT(-0500)] <EricDalquist> since the events stuff I just merged into master I know will cause my UP-3231 branch to not compile

[15:45:52 CDT(-0500)] <EricDalquist> not sure what the "best" way to deal with that in git is (tongue)

[15:50:04 CDT(-0500)] <EricDalquist> I'll let you know as soon as it is in master so you can start playing with it

[15:50:24 CDT(-0500)] <EricDalquist> Also need to add more events, primarily around the swapper tools and entity CRUD operations

[15:50:33 CDT(-0500)] <athena> sounds good (smile)

[15:50:44 CDT(-0500)] <EricDalquist> ok, off to the bus

[15:50:46 CDT(-0500)] <athena> ttyl

[15:50:48 CDT(-0500)] <EricDalquist> I'll get this merged this evening I hope

[15:50:55 CDT(-0500)] <athena> awesome (smile)