[11:32:39 CDT(-0500)] <athena> gah i forgot to actually go into sonatype and release the resource server
[11:32:40 CDT(-0500)] <athena> woops.
[11:32:47 CDT(-0500)] <EricDalquist>
[11:33:10 CDT(-0500)] <athena> fail
[12:05:14 CDT(-0500)] <EricDalquist> athena1: do you get errors in the Maven console in eclipse about the maven-processor-plugin?
[12:05:20 CDT(-0500)] <EricDalquist> when working on uP trunk?
[12:05:44 CDT(-0500)] <athena1> hmm, i haven't seen any
[12:05:49 CDT(-0500)] <athena1> doesn't mean they're not there, i suppose
[12:05:56 CDT(-0500)] <EricDalquist>
[12:05:56 CDT(-0500)] <athena1> i only have the up-war module imported
[12:05:59 CDT(-0500)] <EricDalquist> yeah
[12:06:04 CDT(-0500)] <EricDalquist> that's all I'm working on as well
[12:06:17 CDT(-0500)] <EricDalquist> m2eclipse is failing to build the jpa metamodel for me
[12:06:21 CDT(-0500)] <athena1>
[12:06:41 CDT(-0500)] * EricDalquist is having a rough work week ... feel like there are more config/project issues than coding right now
[12:06:50 CDT(-0500)] <athena1> yeah :/ sounds like it
[12:06:56 CDT(-0500)] <athena1> i'm just having a slow work week
[12:07:03 CDT(-0500)] <athena1> trying to prod myself through accomplishing things bit by bit
[12:12:02 CDT(-0500)] <athena1> oh so what did we agree on for the user files?
[12:12:16 CDT(-0500)] <athena1> do we want to use things like "first-name" or use attribute names that correspond to ldap?
[12:12:22 CDT(-0500)] <EricDalquist> oh
[12:12:28 CDT(-0500)] <EricDalquist> um ... personally I don't care
[12:12:32 CDT(-0500)] <athena1> lol
[12:12:34 CDT(-0500)] <athena1> well
[12:12:55 CDT(-0500)] <athena1> permission, etc. mapping will be easier if they match up to ldap - though we could always accomplish that by just mapping first-name -> given, etc.
[12:13:12 CDT(-0500)] <EricDalquist> sounds good to me
[12:13:14 CDT(-0500)] <athena1> ok
[12:13:25 CDT(-0500)] <athena1> and we need and upgrade script anyway, so that can map to the new attribute names?
[12:13:32 CDT(-0500)] <EricDalquist> yup
[12:13:35 CDT(-0500)] <athena1> ok
[12:13:40 CDT(-0500)] <athena1> should be able to get that cleaned up
[12:13:47 CDT(-0500)] <EricDalquist> there is already an XSL doc that does the upgrade
[12:13:52 CDT(-0500)] <athena1> any thoughts about what the default permissions on viewing users and attributes should be?
[12:14:04 CDT(-0500)] <EricDalquist> hrm
[12:14:11 CDT(-0500)] <EricDalquist> probably not be able to view anything
[12:14:18 CDT(-0500)] <EricDalquist> since we're mostly higher ed
[12:14:28 CDT(-0500)] <athena1> yeah, dunno - makes it really hard to actually demo the quickstart though
[12:14:30 CDT(-0500)] <EricDalquist> and we have all the concerns about students being found
[12:14:33 CDT(-0500)] <EricDalquist> right
[12:14:50 CDT(-0500)] <athena1> what if we had it set to view some basic info if you're logged in? and nothing for guests
[12:15:03 CDT(-0500)] <athena1> since that'd also demo how the permissions work
[12:15:16 CDT(-0500)] <EricDalquist> yeah ...
[12:15:18 CDT(-0500)] <athena1> guess the good news is that at least it's a lot easier to update permissions in up4
[12:15:22 CDT(-0500)] <EricDalquist> we just need to document well how to disable that
[12:15:24 CDT(-0500)] <athena1> yeah
[12:15:30 CDT(-0500)] <athena1> definitely a good topic for the manual
[12:15:34 CDT(-0500)] <EricDalquist> yup
[12:15:36 CDT(-0500)] <athena1> don't want to be too permissive
[12:15:44 CDT(-0500)] <EricDalquist> also might want to think about the ability to hide specific users
[12:15:50 CDT(-0500)] <athena1> but really we have things in the demo that aren't production security - like allowing non-SSL
[12:15:57 CDT(-0500)] <EricDalquist> like if a user has a FERPA=true attribute
[12:16:03 CDT(-0500)] <EricDalquist> don't show them
[12:16:05 CDT(-0500)] <EricDalquist> type ability
[12:16:05 CDT(-0500)] <athena1> yeah - right now i'd recommend doing that w/ a pags group or something, probably
[12:16:10 CDT(-0500)] <EricDalquist> yup
[12:16:24 CDT(-0500)] <athena1> what i did w/ the conference app was to create a pags group based on the includeInDirectory attribute
[12:16:27 CDT(-0500)] <athena1> seems to work pretty wel
[12:16:31 CDT(-0500)] <athena1> good use case to document
[12:16:35 CDT(-0500)] <EricDalquist> yup
[12:16:43 CDT(-0500)] <EricDalquist> could even build that into the example if we had time
[12:16:48 CDT(-0500)] <EricDalquist> create two student demo accounts
[12:16:48 CDT(-0500)] <athena1> yeah
[12:16:54 CDT(-0500)] <EricDalquist> once that has a ferpa flag
[12:17:00 CDT(-0500)] <athena1> yeah
[12:17:01 CDT(-0500)] <EricDalquist> and have them hidden by that group
[12:17:17 CDT(-0500)] <athena1> definitely some weirdness with caching when that flag gets updated
[12:17:35 CDT(-0500)] <athena1> wound up writing an aspect that dropped the groups, permissions, and entity caches whenever an account was updated
[12:18:17 CDT(-0500)] <athena1> have to admit part of me is glad the RC is delayed so i can get caught up
[12:18:22 CDT(-0500)] <EricDalquist>
[12:19:19 CDT(-0500)] <athena1> want the RC out
[12:19:26 CDT(-0500)] <athena1> but hey, maybe it'll be a better quality RC
[12:19:35 CDT(-0500)] <EricDalquist> yup
[12:19:56 CDT(-0500)] <athena1> going to put the japanese language file in, fix some bugs
[12:19:58 CDT(-0500)] <athena1> should be good
[14:48:30 CDT(-0500)] <athena1> ergh
[14:48:38 CDT(-0500)] <athena1> so EricDalquist i figured out why some of the permissions portlet stuff is broken
[14:48:58 CDT(-0500)] <athena1> javascript is properly escaping ampersands in URLs
[14:49:02 CDT(-0500)] <athena1> and the portal doesn't like that
[14:49:28 CDT(-0500)] <EricDalquist> ah
[14:49:30 CDT(-0500)] <EricDalquist> yeah
[14:49:31 CDT(-0500)] <athena1> so either we need to get the portal to work with both escaped and unescaped ampersands, or i need to update our JS logic to do a manual replace on ampersands to unescape them :/
[14:49:34 CDT(-0500)] <EricDalquist> so these are portlet urls right?
[14:49:37 CDT(-0500)] <athena1> yeah
[14:49:49 CDT(-0500)] <EricDalquist> there is a new flag on the portlet url tag in 2.0
[14:49:54 CDT(-0500)] <athena1> ooh
[14:49:59 CDT(-0500)] <EricDalquist> where you can tell it to not escape the url it generates
[14:50:08 CDT(-0500)] <athena1> interesting
[14:50:11 CDT(-0500)] <athena1> i'll try that out
[14:50:12 CDT(-0500)] <EricDalquist> this is the one non-backwards compatible feature of portlet 2.0
[14:50:27 CDT(-0500)] <athena1> gotcha
[14:50:29 CDT(-0500)] <EricDalquist> in 1.0 portlet URLs were written out unescaped (at least by pluto, the spec didnt' say how)
[14:50:30 CDT(-0500)] <athena1> good to know
[14:50:37 CDT(-0500)] <EricDalquist> in 2.0 it says that they have to be escaped
[14:50:46 CDT(-0500)] <EricDalquist> there is a portlet.xml level property you can set to disable URL escaping
[14:50:51 CDT(-0500)] <athena1> well, it'd be much better to escape them
[14:50:55 CDT(-0500)] <athena1> but it seems like that doesn't actually work?
[14:50:57 CDT(-0500)] <EricDalquist> but really you should only be using the flag for JS
[14:51:00 CDT(-0500)] <EricDalquist> it should
[14:51:08 CDT(-0500)] <EricDalquist> I fixed a few other things with that flag recently
[14:51:25 CDT(-0500)] <EricDalquist> which jsp is this in?
[14:51:42 CDT(-0500)] <athena1> oh hm - so maybe they're gettinging double-escaped by js or something?
[14:51:49 CDT(-0500)] <athena1> permissionLookupResult.jsp
[14:51:56 CDT(-0500)] <EricDalquist> yes
[14:52:00 CDT(-0500)] <athena1> ah gotcha
[14:52:01 CDT(-0500)] <athena1> ok, thanks
[14:52:03 CDT(-0500)] <athena1> that makes sense now
[14:52:03 CDT(-0500)] <EricDalquist> fluid escapes the URLs for you
[14:52:17 CDT(-0500)] <EricDalquist> so you have to disable escaping on portlet URLs to be used in JS
[14:52:35 CDT(-0500)] <athena1> yeah, that makes sense
General
Content
Integrations