Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • Feb 01 17:06

    albogdano on master

    fixed minor logback configurati… (compare)

  • Feb 01 17:05

    albogdano on master

    fixed minor logback configurati… (compare)

  • Jan 17 03:15
    snyk-bot opened #197
  • Jan 17 03:15

    albogdano on snyk-upgrade-197524d3cc6d88fd7885656246fb9bbe

    (compare)

  • Jan 17 03:15

    albogdano on snyk-upgrade-197524d3cc6d88fd7885656246fb9bbe

    fix: upgrade ch.qos.logback:log… (compare)

  • Jan 16 22:17
    albogdano opened #196
  • Jan 16 22:17

    albogdano on snyk-upgrade-c65b70ef889a98b1c687103e477689fe

    fix: upgrade org.glassfish.jers… (compare)

  • Jan 16 22:17

    albogdano on snyk-upgrade-c65b70ef889a98b1c687103e477689fe

    (compare)

  • Jan 15 18:03

    albogdano on master

    [maven-release-plugin] prepare … (compare)

  • Jan 15 18:03

    albogdano on v1.48.0

    (compare)

  • Jan 15 18:03

    albogdano on master

    javadoc [maven-release-plugin] prepare … (compare)

  • Jan 15 17:44

    albogdano on master

    updated dependencies fixed deprecations updated dependencies and 2 more (compare)

  • Jan 12 22:22
    albogdano opened #195
  • Jan 12 22:22

    albogdano on snyk-upgrade-91fca50903fac6134169e4e731869aaf

    fix: upgrade org.glassfish.jers… (compare)

  • Jan 12 22:22

    albogdano on snyk-upgrade-91fca50903fac6134169e4e731869aaf

    (compare)

  • Jan 12 22:22
    albogdano opened #194
  • Jan 12 22:22

    albogdano on snyk-upgrade-9ac21fad7ff2c26235bef48175d7fd06

    (compare)

  • Jan 12 22:22

    albogdano on snyk-upgrade-9ac21fad7ff2c26235bef48175d7fd06

    fix: upgrade io.dropwizard.metr… (compare)

  • Jan 12 08:13

    albogdano on snyk-upgrade-19947937ef40291b776e09dd7f18dc5a

    (compare)

  • Jan 12 08:13
    albogdano closed #190
Alex Bogdanovski
@albogdano
@admin82_gitlab Azure AD can be used as the only identity provider in Scoold and you can disable password auth altogether. All profile data will be pulled from Azure then.
Rob Bell
@admin82_gitlab
And Scoold would authenticate with Para as the given Azure AD user, or there needs to be some other configuration of communication between Scoold and Para? Apologies, I'm a bit confused here
Alex Bogdanovski
@albogdano
@admin82_gitlab Scoold sends users to Azure for authentication, then Azure returns the request to Para where it is handled and finally Para redirects back to Scoold. Each Para app can have its own individual OAuth2 settings. Para handles all authentication requests.
truthmed1a
@truthmed1a
your stuff seems amazing!
Alex Bogdanovski
@albogdano
@truthmed1a Hey, thank you!
Lakshman
@lsornana
Hi. I'm trying configure Para to connect to Amazon DynamoDB instead of the DynamoDB on the localhost. In the Para documentation it says that setting para.env to production will try to connect to the real AWS DynamoDB service. But no where in the documentation I can find what properties to how to setup Para to connect to the AWS DynamoDB service. Can someone help point me on where to find the details or how to go about setting it up? Thank you.
Alex Bogdanovski
@albogdano
@lsornana Para uses the official AWS SDK so you can pass access key and secret through the environment variables or system properties. see the docs on AWS
Lakshman
@lsornana

Thanks @albogdano. So that would be adding the AWS access key and secret into credentials file under the .aws folder right? But what I still don't understand is how to tell Para to use the AWS DynamoDB service instead of using the DynamoDB on the localhost. For example to setup Para to use MongoDB we would be setting the following properties in the application.conf file in the Para server:
⁃ para.dao = "MongoDBDAO"
⁃ para.mongodb.uri = ""
⁃ para.mongodb.host = ""
⁃ para.mongodb.port = ""
⁃ para.mongodb.database = ""
⁃ para.mongodb.user = ""
⁃ para.mongodb.password = ""

Is there a similiar properties we have to set in the application.conf so that Para connected to AWS DynamoDB?

Alex Bogdanovski
@albogdano
@lsornana try setting para.env = "production"
Lakshman
@lsornana
Hi @albogdano. I've already done that setting in the application.conf file and also set the AWS access key/secret. Not sure what I'm doing wrong here to get it to use the AWS DynamoDB. Here is my output when I run Para.
Aug 25 15:18:18 ip-10-0-11-24 java[12319]:      / __ \/ __` / ___/ __` /
Aug 25 15:18:18 ip-10-0-11-24 java[12319]:     / /_/ / /_/ / /  / /_/ /
Aug 25 15:18:18 ip-10-0-11-24 java[12319]:    / .___/\__,_/_/   \__,_/  v1.46.1
Aug 25 15:18:18 ip-10-0-11-24 java[12319]:   /_/
Aug 25 15:18:18 ip-10-0-11-24 java[12319]: 2022-08-25 15:18:18 [INFO ] --- Para.initialize() [production] ---
Aug 25 15:18:18 ip-10-0-11-24 java[12319]: 2022-08-25 15:18:18 [INFO ] Loaded new DAO, Search and Cache implementations - H2DAO, LuceneSearch and CaffeineCache.
Aug 25 15:18:21 ip-10-0-11-24 java[12319]: 2022-08-25 15:18:21 [INFO ] Server is healthy.
Aug 25 15:18:21 ip-10-0-11-24 java[12319]: 2022-08-25 15:18:21 [INFO ] Found root app 'para' and 1 existing child app(s).
Aug 25 15:18:22 ip-10-0-11-24 java[12319]: 2022-08-25 15:18:22 [INFO ] Starting ParaServer using Java 11.0.16 on ip-10-0-11-24 with PID 12319 (/etc/para/para-jar-1.46.1.jar started by root in /etc/para)
Aug 25 15:18:22 ip-10-0-11-24 java[12319]: 2022-08-25 15:18:22 [INFO ] The following 1 profile is active: "production"
Alex Bogdanovski
@albogdano
@lsornana set para.dao = "AWSDynamoDAO"
Lakshman
@lsornana

Thanks @albogdano, it worked now. So running the command java -jar -Dconfig.file=./application.conf -Dloader.path=lib para-jar-1.46.1.jar started up just fine and create the table on AWS DynamoDB. However, when I try to run Para again after a system reboot I get the following error:

software.amazon.awssdk.services.dynamodb.model.DynamoDbException: User: arn:aws:sts::xxxxxxxxxxx:assumed-role/iam-role/i-00000000000000 is not authorized to perform: dynamodb:CreateTable on resource: arn:aws:dynamodb:ap-southeast-2:xxxxxxxxxxx:table/para because no identity-based policy allows the dynamodb:CreateTable action (Service: DynamoDb, Status Code: 400, Request ID: E89KFTGEHK95N9LVP8PHHAO68FVV4KQNSO5AEMVJF66Q9ASUAAJG)

The permissions for the IAM User is correct and worked the first time it ran. Is there something else that I'm missing?

Alex Bogdanovski
@albogdano
@lsornana the access keys used don't allow you to create a table apparently. make sure you have the dynamodb:CreateTable permission
Lakshman
@lsornana
Thanks @albogdano
Lakshman
@lsornana

Hi guys - I've got a questions on setting up AWS S3 storage provider for file uploads. I've setup an IAM User with a AWS access key and secret key. For testing purpose I've attached the AmazonS3FullAccess AWS managed policy. Then created a S3 bucket with the default settings (no bucket policy). When I start the Scoold server I get the following warning message:

S3 bucket *S3_BUCKET_NAME* does not exist. Bucket must be created before files can be uploaded.

So next, I tried adding in a bucket policy allowing all S3 operations but restricted to the IAM User I created by specifying the IAM User ARN for the bucket policy Principal. Still got the same error message.

However, when I set the bucket policy Principal as any user is allowed to perform any S3 operations then it works and I'm able to successfully upload files. Basically it works when the S3 bucket is Public which defeats the purpose of using a access key and shared secret.

Not sure what I'm doing wrong here to get S3 working for file uploads and being secure. Anyone that has going through this before, can help take me through the correct way of setting up and using S3 for file uploads. Thank you.

Alex Bogdanovski
@albogdano
@lsornana perhaps you are in a different region than the bucket? try setting scoold.s3_region (note that this is a Scoold Pro only feature). If you set up file storage in Para, that doesn't mean that Scoold will be able to use it out of the box.
Lakshman
@lsornana

Hi @albogdano - I'm definitely in the same region as the bucket and running Scoold Pro v1.50.1. On the Scoold EC2 instance, I've set the AWS access/secret key in the application.conf file and also in the ~/.aws/credentials file. Here is my Scoold file storage configuration that I've used.

# File Storage Configuration
scoold.s3_bucket = "file-storage-bucket-name"
scoold.s3_path = "uploads"
scoold.s3_region = "ap-southeast-2"
scoold.s3_access_key = "AKIAXXXXXXXXXXXXXXXX"
scoold.s3_secret_key = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"

Scoold is only able to find the bucket when it's only set to Public. Which means it's not picking up the access key and secret key from the application.conf or ~/.aws/credentials file.

Alex Bogdanovski
@albogdano
@lsornana are you using Scoold Pro though? File uploads to S3 is a premium feature not available in the open source version of Scoold.
Lakshman
@lsornana
Hi @albogdano - Yes, I'm using Scoold Pro v1.50.1. The file uploads to S3 does work but only when the bucket is set to public.
Alex Bogdanovski
@albogdano
@lsornana I can't reproduce the issue - perhaps there's something wrong with your access keys for S3
Rob Bell
@admin82_gitlab
Hi @albogdano — we're trialling Scoold within our company and we'd need to verify that we can configure Azure AD correctly before we can purchase the Pro version. Are you able to issue us a trial as I understand this feature doesn't exist in the image that's publicly available?
Alex Bogdanovski
@albogdano
@admin82_gitlab LDAP and OAuth 2.0 are available in the open source version of Scoold. SAML is only available in Scoold Pro. You can get started with Azure AD right away using Scoold and keep the same configuration after upgrading to Pro.
nuriguri
@nuriguri
Is there a big performance difference between using mysql (rdb) and mongodb (nosql) for para when about 1000 users are using it at the same time? If there is no big difference, I want to use mysql
And I sent an email requesting documents necessary for purchase a few hours ago. Please check
Alex Bogdanovski
@albogdano
@nuriguri absolutely no difference whatsoever IMHO. Use whichever DB engine works for you.
Clojure Brave
@BraveClojure_twitter
Hi. Is there rest api Swagger for Para? I found official rest api doc for Scoold, but can't find for Para.
Alex Bogdanovski
@albogdano
@BraveClojure_twitter the API documentation for Para is available at paraio.org/docs but not in the Swagger format yet.