Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » scout » HTTPS with Scout
HTTPS with Scout [message #1137513] Mon, 14 October 2013 10:47 Go to next message
Boy D'Poy is currently offline Boy D'Poy
Messages: 56
Registered: October 2011
Member
Hi everyone!

Watching the pic at http://tools.bsiag.com/scoutbook/3.9/latest/html/Introduction/figures/bsi_crm_web.png under https://services.bsiag.com/bsicrm/web (I'm not registerd!), we can see that that Scout application is run under HTTPS.

My questions are:

1/ How to configure the RAP server on a Scout application to have that behaviour?

2/ Scanning the loging form at https://services.bsiag.com/bsicrm/web, j_security_check, j_username, j_password of the Servlet API are used. How do we use them in a Scout application? Shall we combine them with the org.eclipse.equinox.http.registry.servlets extension? If true, how?

3/ How is it possible to hide or encrypt the packages and classes names that appears in the browser address bar when we switch nodes?

Thanks!


Once You Go Scout, You Never Come Out!

[Updated on: Mon, 14 October 2013 10:48]

Report message to a moderator

Re: HTTPS with Scout [message #1138822 is a reply to message #1137513] Tue, 15 October 2013 06:56 Go to previous messageGo to next message
Jeremie Bresson is currently offline Jeremie Bresson
Messages: 676
Registered: October 2011
Senior Member
Boy D'Poy wrote on Mon, 14 October 2013 16:47

1/ How to configure the RAP server on a Scout application to have that behavior?


Isn't this a application server configuration?

Boy D'Poy wrote on Mon, 14 October 2013 16:47

2/ Scanning the loging form at (...) j_security_check, j_username, j_password of the Servlet API are used. How do we use them in a Scout application? Shall we combine them with the org.eclipse.equinox.http.registry.servlets extension? If true, how?


This is something that was asked before...
For example here: Authentication with RAP.

We should document it... I am missing time and know-how to do it.

Boy D'Poy wrote on Mon, 14 October 2013 16:47

3/ How is it possible to hide or encrypt the packages and classes names that appears in the browser address bar when we switch nodes?


From what I understood, you can control the displayed URL with bookmarks...


I hope it helps... (I cannot develop much on these topics, because I never had to do something with RAP).

.

[Updated on: Tue, 15 October 2013 06:58]

Report message to a moderator

Re: HTTPS with Scout [message #1142193 is a reply to message #1138822] Thu, 17 October 2013 09:05 Go to previous messageGo to next message
Boy D'Poy is currently offline Boy D'Poy
Messages: 56
Registered: October 2011
Member
Thank You for your reply,

The 2nd point is Ok for me, I'll soon investigate the 3rd one,
but for the 1st, i'm not very sure that it got to be solved within an application server config, as we don't necessarily need one to run or deploy the RAP client, since it embeddes jetty.


I tried so to add the jetty config parameters as here http://www.eclipsezone.com/eclipse/forums/t88098.html , as this :

#
org.osgi.service.http.port=8082
org.osgi.service.http.port.secure=8083
org.eclipse.equinox.http.jetty.http.port=8088
org.eclipse.equinox.http.jetty.http.port.secure=8089
#
org.eclipse.equinox.http.jetty.http.enabled=true
org.eclipse.equinox.http.jetty.https.enabled=true
#
org.eclipse.equinox.http.jetty.ssl.enabled=true
org.eclipse.equinox.http.jetty.ssl.password=password
org.eclipse.equinox.http.jetty.ssl.keypassword=keypassword
org.eclipse.equinox.http.jetty.ssl.needclientauth=true
org.eclipse.equinox.http.jetty.ssl.wantclientauth=true
#


(with a generated .keystore file under my home directory)

.

at runtime, the Rap server starts with this log concerning Jetty

2013-10-17 09:52:00.680:INFO:oejs.Server:jetty-8.1.10.v20130312
2013-10-17 09:52:00.791:INFO:oejs.AbstractConnector:Started SelectChannelConnector@0.0.0.0:8088
2013-10-17 09:52:00.986:INFO:oejus.SslContextFactory:Enabled Protocols [SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2] of [SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2]
2013-10-17 09:52:01.000:INFO:oejs.AbstractConnector:Started SslSocketConnector@0.0.0.0:8083


(it seems to have no errors)

and the browser returns the login page for http://localhost:8088/ [OK]
but nothing for : https://localhost:8089/ [ERR_CONNECTION_REFUSED]
also nothing for : https://localhost:8088/ [ERR_SSL_PROTOCOL_ERROR]

I think to be near the goal, can I get some help [from those who're accustomed to RAP server]?


Once You Go Scout, You Never Come Out!
Re: HTTPS with Scout [message #1142199 is a reply to message #1138822] Thu, 17 October 2013 09:08 Go to previous messageGo to next message
Boy D'Poy is currently offline Boy D'Poy
Messages: 56
Registered: October 2011
Member
Thank You for your reply,

The 2nd point is Ok for me, I'll soon investigate the 3rd one,
but for the 1st, i'm not very sure that it got to be solved within an application server config, as we don't necessarily need one to run or deploy the RAP client, since it embeddes jetty.


I tried so to add the jetty config parameters as here http://www.eclipsezone.com/eclipse/forums/t88098.html , as this :

#
org.osgi.service.http.port=8082
org.osgi.service.http.port.secure=8083
org.eclipse.equinox.http.jetty.http.port=8088
org.eclipse.equinox.http.jetty.http.port.secure=8089
#
org.eclipse.equinox.http.jetty.http.enabled=true
org.eclipse.equinox.http.jetty.https.enabled=true
#
org.eclipse.equinox.http.jetty.ssl.enabled=true
org.eclipse.equinox.http.jetty.ssl.password=password
org.eclipse.equinox.http.jetty.ssl.keypassword=keypassword
org.eclipse.equinox.http.jetty.ssl.needclientauth=true
org.eclipse.equinox.http.jetty.ssl.wantclientauth=true
#


(with a generated .keystore file under my home directory)

.

at runtime, the Rap server starts with this log concerning Jetty

2013-10-17 09:52:00.680:INFO:oejs.Server:jetty-8.1.10.v20130312
2013-10-17 09:52:00.791:INFO:oejs.AbstractConnector:Started SelectChannelConnector@0.0.0.0:8088
2013-10-17 09:52:00.986:INFO:oejus.SslContextFactory:Enabled Protocols [SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2] of [SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2]
2013-10-17 09:52:01.000:INFO:oejs.AbstractConnector:Started SslSocketConnector@0.0.0.0:8083


(it seems to have no errors)

and the browser returns the login page for http://localhost:8088/ [OK]
but nothing for : https://localhost:8089/ [ERR_CONNECTION_REFUSED]
also nothing for : https://localhost:8088/ [ERR_SSL_PROTOCOL_ERROR]

I think to be near the goal, can I get some help [from those who're accustomed to RAP server]?


Once You Go Scout, You Never Come Out!
Re: HTTPS with Scout [message #1142322 is a reply to message #1142193] Thu, 17 October 2013 10:49 Go to previous message
Jeremie Bresson is currently offline Jeremie Bresson
Messages: 676
Registered: October 2011
Senior Member
Boy D'Poy wrote on Thu, 17 October 2013 15:05
but for the 1st, i'm not very sure that it got to be solved within an application server config, as we don't necessarily need one to run or deploy the RAP client, since it embeddes jetty.


In the setup I know, we build a war for the RAP server and deploy it on an application Server (like Tomcat). This is the same approach as for the server (Servlet Bridge).

It is highly possible that you can achieve something similar with Jetty. It is a good approach to refer to the Jetty user manual or Jetty forum to find a solution. Let us know how if it is working with Scout.


Boy D'Poy wrote on Thu, 17 October 2013 15:05

I think to be near the goal, can I get some help [from those who're accustomed to RAP server]?


I will try to ask people who might help you... But as I said, in the cases I know, Jetty is only used as development platform (to start the server from the Eclipse Workspace).
Previous Topic:AbstractSqlLookupService cancels transaction on PostgresSQL 9.2
Next Topic:Keyboard controlling a scout application
Goto Forum:
  


Current Time: Sat Aug 30 18:29:33 EDT 2014

Powered by FUDForum. Page generated in 0.01791 seconds