Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
  • Mar 04 21:27
    krystofNovotny opened #28
  • Mar 01 16:27
    pavelhoral labeled #91
  • Mar 01 16:27
    pavelhoral opened #91
  • Feb 24 16:05
    krystofNovotny opened #90
  • Feb 17 14:55

    pavelhoral on master

    Fix OpenICF provisioner activit… (compare)

  • Feb 13 12:33

    pavelhoral on master

    Fix incorrect REST call on role… (compare)

  • Feb 12 09:47
    karelmaxa closed #88
  • Feb 12 09:45

    pavelhoral on master

    Upgrade activiti (#88). (compare)

  • Feb 12 09:45
    pavelhoral closed #89
  • Feb 11 20:48
    karelmaxa synchronize #89
  • Feb 11 16:14
    karelmaxa synchronize #89
  • Feb 11 15:58

    pavelhoral on master

    Fix identifier encoding to use … (compare)

  • Feb 11 12:12
    karelmaxa opened #89
  • Feb 11 12:03
    karelmaxa edited #88
  • Feb 11 12:03
    karelmaxa opened #88
  • Feb 10 13:23

    pavelhoral on master

    Update dependencies to better s… (compare)

  • Feb 09 11:26
    krystofNovotny opened #27
  • Feb 05 15:50
    pavelhoral edited #85
  • Feb 05 15:49
    pavelhoral edited #85
  • Feb 05 15:05

    pavelhoral on master

    Update jodaTime from `2.10.1` t… Introduce jaxb dependency to en… Update assertj from `3.11.1` to… and 12 more (compare)

Pavel Horal
@pavelhoral
The certificate is pretty fresh there (one week).
Alessandro Zucchelli
@AleZucchelli93_twitter
Thanks a lot Pavel :)
Have a good day
Mike Schwartz
@nynymike
Hi guys
The SSL certificate on wrensecurity.org expired on 8/20
My browser won't let me navigate there :-)
I hope Wren Security is still active.
Using the "Open Identity Platform" is not a viable option for us
We can't sell a Russian product to the US gov't.
We'll have to go back to building our own binary
Pavel Horal
@pavelhoral
We are still active. Will fix the certificate tomorrow and make sure it is being renewed automatically. Thank you.
Mike Schwartz
@nynymike
awesome!
Martin Čížek
@martincizek
Hey @nynymike! Quite embarrassing, appreciate you've reported it!
The certificates are actually renewed and provisioned automatically, so I've had it checked. The issue was surprisingly too long uptime of the http service, causing it to use old memory-cached cert for a month after its replacement on disk.
We've changed the provisioning to force config reloads.
Mike Schwartz
@nynymike
No worries Martin. Thanks for fixing it.
Hasan
@hasanakgoz
Hi All
I'm looking for OpenDJ RestAPI document for community edition
Hasan
@hasanakgoz
I wondered What is difference version/build for wrensecurity and Open Identity Platform ?
same development path or not?
Martin Čížek
@martincizek
Hi @hasanakgoz, the two forks have the same origin, but different maintainers / developers. That's why the future development path is going to be generally different. Still, they can use our patches and we can use their patches, it's open source. :) Btw. former OpenDJ has been renamed to Wren:DS under Wren.
sigegcp
@sigegcp
Hi all
sigegcp
@sigegcp

I'm trying to compile from source Wren IDM.

[INFO] BUILD FAILURE
[INFO] ------------------------------------------------------------------------
[INFO] Total time: 02:33 min
[INFO] Finished at: 2021-02-11T12:18:00+01:00
[INFO] ------------------------------------------------------------------------
[ERROR] Failed to execute goal org.apache.maven.plugins:maven-compiler-plugin:3.8.0:compile (default-compile) on project openidm-system: Compilation failure
[ERROR] No compiler is provided in this environment. Perhaps you are running on a JRE rather than a JDK?
[ERROR]
[ERROR] -> [Help 1]
[ERROR]
[ERROR] To see the full stack trace of the errors, re-run Maven with the -e switch.
[ERROR] Re-run Maven using the -X switch to enable full debug logging.
[ERROR]
[ERROR] For more information about the errors and possible solutions, please read the following articles:
[ERROR] [Help 1] http://cwiki.apache.org/confluence/display/MAVEN/MojoFailureException
[ERROR]
[ERROR] After correcting the problems, you can resume the build with the command
[ERROR] mvn <args> -rf :openidm-system

echo $JAVA_HOME
/usr/lib/jvm/jre-1.8.0-openjdk-1.8.0.275.b01-0.el7_9.x86_64

java -version
openjdk version "1.8.0_275"
OpenJDK Runtime Environment (build 1.8.0_275-b01)
OpenJDK 64-Bit Server VM (build 25.275-b01, mixed mode)

Can you help me with error log?

Pavel Horal
@pavelhoral
Hi, you need JDK to compile the project.
Seems like you are setting JAVA_HOME to JRE.
sigegcp
@sigegcp

Not sure if I have JDK.

pwd
/usr/lib/jvm
ls -la
total 12
drwxr-xr-x 3 root root 4096 Jan 22 12:04 .
dr-xr-xr-x. 50 root root 4096 Oct 27 13:55 ..
drwxr-xr-x 3 root root 4096 Dec 16 18:29 java-1.8.0-openjdk-1.8.0.275.b01-0.el7_9.x86_64
lrwxrwxrwx 1 root root 21 Jan 22 12:04 jre -> /etc/alternatives/jre
lrwxrwxrwx 1 root root 27 Jan 22 12:04 jre-1.8.0 -> /etc/alternatives/jre_1.8.0
lrwxrwxrwx 1 root root 35 Jan 22 12:04 jre-1.8.0-openjdk -> /etc/alternatives/jre_1.8.0_openjdk
lrwxrwxrwx 1 root root 51 Jan 22 12:04 jre-1.8.0-openjdk-1.8.0.275.b01-0.el7_9.x86_64 -> java-1.8.0-openjdk-1.8.0.275.b01-0.el7_9.x86_64/jre
lrwxrwxrwx 1 root root 29 Jan 22 12:04 jre-openjdk -> /etc/alternatives/jre_openjdk

Pavel Horal
@pavelhoral
If the folder name starts with jre- then it is not a JDK.
sigegcp
@sigegcp
Ok, thanks. Do I need to remove jre before puttiong jdk or they can coexist both?
Pavel Horal
@pavelhoral
They can coexist... for Maven only JAVA_HOME environment variable is important.
sigegcp
@sigegcp

Thanks. It Worked! I'm coruious... this is the latest version?

6.0.0-SNAPSHOT (revision: 6eda9aa)
Copyright 2010-16 ForgeRock AS.

Pavel Horal
@pavelhoral
It is. We will merge quite a big update to make it buildable with JDK 11+ very soon... don't mind the date in the copyright notice.
sigegcp
@sigegcp

@pavelhoral Great!
I did't introduce myself. My name is Tomislav from Croatia. Working on so called "IAM" we have, but it is (or we only have idendtity module) and now we would like to replace this soultion with IAM.

So in first step we would like to replace IDM then rest of the modules. At the moment I'm trying OpenIDM, but have some problems. As I have understood ForgeRock stopped giving source code at some point (2017?) the project contiued as OpenIdentyPlatform and other fork is Wren right?

Pavel Horal
@pavelhoral
You are quite right.
OpenIdentityPlatform and Wren are two independent forks of the original codebase. OpenIdentityPlatform chose to continue with the original project names, we have decided to change the name just to be on the safe side from the legal point of view.
janadebruyn
@janadebruyn
@sigegcp Hi Tomislav, nice to see our users reaching out, it's useful to receive feedback. I am planning to launch a small survey to gather even more of it. And you are always welcome to drop us a line here with further insights. Thanks.
sigegcp
@sigegcp
@janadebruyn Thanks. Sure I will.
sigegcp
@sigegcp
Is it possible to create custom workflow with multiple degree of verification process? For an example, user requests permission for some resource on some server, user with user manager role needs to verify content of request (is it properly requested - if user requests one resource but choose in IAM different one - mistake correction), second is his superrion - does he needs that resource access, then third person to accept this is asset owner (head of department for that resource) then permission is granted. Every user in workflow can deny or accept request.
Pavel Horal
@pavelhoral
Yes, this is quite a common workflow setup (i.e. manager -> application owner -> role owner). You can add as many approval steps / user tasks as you need.
sigegcp
@sigegcp
Maybe I'm missing something but I don't have Manager tab only Manage.
Pavel Horal
@pavelhoral
Not sure I understand. You can define workflow with multiple user tasks and name them as you like. There is no "Manager" tab.
Karel Maxa
@karelmaxa
I would add that Wren:IDM is using Activiti workflow engine. So you can use Activiti Designer to create complex workflows with multiple user tasks.
There is no built-in workflow designer in the Wren:IDM.
sigegcp
@sigegcp
Thanks, I did not express mysqlf correctly. THe question is where in the app menu can I do that.
sigegcp
@sigegcp

Caused by: org.activiti.engine.ActivitiException: Can't find scripting engine for 'groovy'

cat pom.xml | grep groovy
<groovy.version>2.4.7</groovy.version>
<openicf.groovyconnector.version>1.4.3.0</openicf.groovyconnector.version>
<artifactId>script-groovy</artifactId>
<groupId>org.codehaus.groovy</groupId>
<artifactId>groovy-all</artifactId>
<version>${groovy.version}</version>

How Can I resolve this error?

Karel Maxa
@karelmaxa
This issue has been resolved in WrenSecurity/wrenidm#88. The pull request has been already merged into master.
sigegcp
@sigegcp
Thanks, I have stared from beggining. Compiled again.
[INFO] Wren:IDM - UI - Admin .............................. FAILURE [01:50 min]
dmin: Failed to run task: 'grunt build:dev --target-version=6.0.0-SNAPSHOT' failed. (error code 6) -> [Help 1]
sigegcp
@sigegcp

[ERROR] Failed to execute goal com.github.eirslett:frontend-maven-plugin:0.0.28:grunt (grunt) on project openidm-ui-admin: Failed to run task: 'grunt build:dev --target-version=6.0.0-SNAPSHOT' failed. (error code 6) -> [Help 1]
org.apache.maven.lifecycle.LifecycleExecutionException: Failed to execute goal com.github.eirslett:frontend-maven-plugin:0.0.28:grunt (grunt) on project openidm-ui-admin: Failed to run task

Caused by: org.apache.maven.plugin.MojoFailureException: Failed to run task

Caused by: com.github.eirslett.maven.plugins.frontend.lib.TaskRunnerException: 'grunt build:dev --target-version=6.0.0-SNAPSHOT' failed. (error code 6)

Pavel Horal
@pavelhoral
Not sure what might be the cause here. There must be some additional information somewhere as the quoted maven output just states that grunt build ended with error.
Master is buildable as our CI pipeline shows - https://github.com/WrenSecurity/wrenidm/runs/1919524213
sigegcp
@sigegcp

I was following sample workflow. In step 7:

  • Notice the same form content that was provided by user1, along with "Decision": "Accept".
  • Click "Complete" to finish the task.

When I try to complete the task I got this error:
Caused by: org.activiti.engine.impl.javax.el.PropertyNotFoundException: Cannot resolve identifier 'decision'

sigegcp
@sigegcp
https://bugster.forgerock.org/jira/si/jira.issueviews:issue-html/OPENIDM-14576/OPENIDM-14576.html
sigegcp
@sigegcp

I have uploaded .bar file in sample/workflow directory.

Starting the IDM i have error message:
-> Error while closing command context
org.activiti.bpmn.exceptions.XMLException: Premature end of file.

Unable to deploy activiti bundle
org.activiti.bpmn.exceptions.XMLException: Premature end of file.

Caused by: org.xml.sax.SAXParseException; lineNumber: 1; columnNumber: 1; Premature end of file.

Ia have created bar file inside Eclipse using Activiti as addon.

Pavel Horal
@pavelhoral
Confirmed WrenSecurity/wrenidm#90 - looks like some sample workflows are not working.