Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
    Kleber Rocha
    @klinux
    Yes, it make sense, but it's only for discovery purpose, I tryied mysql but I discovery later that installation only support mysql 8, the sqlalchmy was broken with mysql 5.7
    Mike Schwartz
    @nynymike
    SQLalchemy is needed for Gluu?
    Kleber Rocha
    @klinux
    @nynymike I believe that container gluu-persistence uses sqlalchemy to load all schemes in database.
    Mike Schwartz
    @nynymike
    If there is a deployment error, feel free to open an issue on Github
    it should deploy ok...
    Kleber Rocha
    @klinux
    @nynymike the envorcents here in openbanking brazil is using janssen or gluu server 4.2, do you know about that?
    efforts
    Mohammad Abudayyeh
    @moabu
    @klinux there is no way that will work. Openbanking features do jot exist in gluu 4.2. They do in janssen as the base image is the same as gluu 5.0.0 openbankong distribution but janssen repos dont support installation of the openbanking distribution.
    Kleber Rocha
    @klinux
    @moabu thank you
    Mike Schwartz
    @nynymike
    Gluu has an Open Banking distro of the Janssen bits. It is open source. You can read the docs here: https://www.gluu.org/docs/openbanking/1.0.0/
    Kleber Rocha
    @klinux
    @nynymike yes I know, I'm running this version here to validate, do you know how we can implement mtls_endpoint_aliases in openid configuration, we not pass in the openid test becaouse this parameter is necessary.
    Kleber Rocha
    @klinux
    it's possible to configure mtls_endpoint_aliases
    ?
    Mike Schwartz
    @nynymike
    We have a feature request for this right now
    JanssenProject/jans-auth-server#136
    Kleber Rocha
    @klinux
    Hello guys, I'm trying openid tests here, when we set the mtls_endpoint_aliases, the openid tests try to use token_endpoint inside mtls_endpoint_aliases, but jans server get this error:
    Caused by: io.jans.as.model.exception.InvalidJwtException: Invalid audience: [https://matls-auth...
    there some way to fix that?
    if (audience != null && (audience.contains(appConfiguration.getIssuer()) || audience.contains(tokenUrl) || audience.contains(cibaAuthUrl))) the code only look to some types of urls
    Mike Schwartz
    @nynymike
    Gluu provides commercial support on a Janssen distribution for open banking.
    Kleber Rocha
    @klinux
    we already in touch with Davin, we are only try tests to learn janseen distribution
    we are running gluu distribution in our tests
    JoseMiguel
    @smeerkahoven

    hey, I'm setting up my local env with jans and all is running pretty well. But running tests, I can't pass AuthorizeRestWebServiceHttpTest in requestAuthorizationAccessToken . I'm having this message. java.lang.AssertionError: The access token is null expected object to not be null. Debugging I'm checking that 

    ddQueryStringParam(queryStringBuilder, AuthorizeRequestParam.ACCESS_TOKEN, accessToken);

    accessToken is always null. Is there some configuration that is needed to be added to database or configuration files to set this value ?

    1 reply
    zigaNetis
    @zigaNetis

    Hello, I have a bit of a starter question in regards to setting up a new jans-auth server. I have installed jans rpm package on my virtual ubuntu machine. And everything auto-magically happened and was setup, but now I'm having trouble, how to configure certain things, where is jans installed etc.

    There might be a doc on github, which I haven't discovered yet, but would really appreciate, if anybody can help me with that :)

    Mike Schwartz
    @nynymike
    Most of the software is installed in /opt
    You can check the installation by going to https://(hostname)/.well-known/openid-configuration
    Configuration is done via REST or try the command line interface (CLI)
    https://github.com/JanssenProject/jans/tree/main/jans-cli
    Mike Schwartz
    @nynymike
    You can also check the various API swagger docs
    https://github.com/JanssenProject/jans/wiki/API-References
    And the wiki itself has some more hints
    https://github.com/JanssenProject/jans/wiki
    We clearly need more howto docs
    zigaNetis
    @zigaNetis
    I see, the documentation was helpful, and I got some additional information from that, but it also just brought more questions :D
    For example: I have forked the project, and wrote some code (testing to see, how I would implement SIOP flow) and now I want to test the code. Do you have unit-tests for these purposes ? Or how would I go about testing and deploying my own changed version of gluu?
    Mike Schwartz
    @nynymike
    This question is sort of related to how to setup your test environment. Maybe @ossdhaval can comment
    Dhaval D
    @ossdhaval
    Unit tests are work in progress. Some of the modules do have unit tests but overall we utilize integration tests extensively to test all the flows.
    You can easily build code locally but running integration tests locally from your workspace is not yet possible. It needs a little bit of instrumentation and we are working on it.
    Dhaval D
    @ossdhaval
    Integration tests will be run automatically by CI (Jenkins) servers automatically once you submit code via a PR.
    So flow is
    1. Write unit tests for new code and test locally
    2. Self review your code -> submit PR and let codeowners review your code
    3. Jenkins will run integration tests and report failures post PR merge
    zigaNetis
    @zigaNetis
    I see, one more question. I've been looking at the code this week, and I have found most of the implementations of OpenID for OP. Does jans support OpenID RP (Relying Party) ? For SIOP, this would need to be implemented server-side. If it already exists on jans, I would appreciate a pointer, where I could find the implementation :) I'll update the issue on github in case there is none, as I believe it would be beneficial for jans to support SIOP RP as well :)
    1 reply
    mihir2780
    @mihir2780

    Hello, I have configured jans setup on ubuntu 20.X on my vmware workstation fulfilling all installation requirements.I am getting this type of error for both of the modules, when I try to access menu driven interface. Any solution on the below problem mentioned?

    root@ub:~# /opt/jans/jans-cli/scim-cli.py
    An Unhandled error raised: (500)
    Reason: Server Error
    HTTP response headers: HTTPHeaderDict({'Date': 'Mon, 09 May 2022 07:24:37 GMT', 'Server': 'Apache/2.4.41 (Ubuntu)', 'X-Xss-Protection': '1; mode=block', 'X-Content-Type-Options': 'nosniff', 'Strict-Transport-Security': 'max-age=31536000; includeSubDomains', 'Expires': 'Thu, 01 Jan 1970 00:00:00 GMT', 'Cache-Control': 'no-store', 'Pragma': 'no-cache', 'Content-Length': '0', 'Set-Cookie': 'X-Correlation-Id=242e84d4-beaa-45e5-9b73-f2b08dd7c5b9; Secure; HttpOnly;HttpOnly', 'Connection': 'close'})

    Error is logged to /opt/jans/jans-cli/error.log
    root@ub:~# /opt/jans/jans-cli/config-cli.py
    An Unhandled error raised: (500)
    Reason: Server Error
    HTTP response headers: HTTPHeaderDict({'Date': 'Mon, 09 May 2022 07:24:47 GMT', 'Server': 'Apache/2.4.41 (Ubuntu)', 'X-Xss-Protection': '1; mode=block', 'X-Content-Type-Options': 'nosniff', 'Strict-Transport-Security': 'max-age=31536000; includeSubDomains', 'Expires': 'Thu, 01 Jan 1970 00:00:00 GMT', 'Cache-Control': 'no-store', 'Pragma': 'no-cache', 'Content-Length': '0', 'Set-Cookie': 'X-Correlation-Id=c0da5066-c184-4a24-9b9d-f30da7d81f86; Secure; HttpOnly;HttpOnly', 'Connection': 'close'})

    Error is logged to /opt/jans/jans-cli/error.log

    Mike Schwartz
    @nynymike
    What does the error log say?
    Mustafa Baser
    @mbaser:matrix.org
    [m]
    Please set debug=true in /root/.config/jans-cli.ini and send complete output
    mihir2780
    @mihir2780
    Hello @nynymike @mbaser:matrix.org , I have mentioned logs and output on the gluu support website.
    joshuyaaa
    @joshuyaaa
    Hi,everyone
    Dhaval D
    @ossdhaval
    Hello @josyaaa :-)
    Alex Pereira Maranhão
    @alexpereiramaranhao
    Hello @yuriyz ! There is some documentation about "CacheProviderType" in the Janssen project? I'm having a problem with the DCR process when I scale jans-auth-server on too many pod instances and I suspect this functionality.
    Mike Schwartz
    @nynymike
    This would probaly be better as a discussion topic on https://github.com/JanssenProject/jans/discussions
    Could you detail what kind of Cache you are using presently?
    And quantify what "too many" means?
    In the topic