Re: Pull users from LDAP

2017-07-31 Thread Andrea Patricelli 

Hi,

this morning I made a test with AD connector 1.3.2. I successfully 
pulled 600+ users without experiencing any pagination cookie exception.


Best regards,
Andrea


Il 29/07/2017 01:00, justin.isenhour ha scritto:

Francesco,

I am using the the AD connector (net.tirasa.connid.bundles.ad) v1.3.2 to
connect to Microsoft Active Directory.  Below is the configuration.

*Connector*
[{"key":"6a9a654d-5b02-4089-9a65-4d5b028089d2","location":"file:/usr/share/tomcat/v8/SYNCOPEDEV/appconfigs/dev/bundles/","connectorName":"net.tirasa.connid.bundles.ad.ADConnector","bundleName":"net.tirasa.connid.bundles.ad","version":"1.3.2","displayName":"conn-ad-compass","connRequestTimeout":10,"poolConf":{"maxObjects":null,"minIdle":null,"maxIdle":null,"maxWait":null,"minEvictableIdleTimeMillis":null},"conf":[{"schema":{"name":"credentials","displayName":"Principal
password","helpMessage":"Insert password for
administrator","type":"org.identityconnectors.common.security.GuardedString","required":false,"order":6,"confidential":true,"defaultValues":[]},"overridable":false,"values":["_r4+s"]},{"schema":{"name":"ssl","displayName":"SSL","helpMessage":"User
SSL to perform password
provisioning","type":"boolean","required":false,"order":1,"confidential":false,"defaultValues":[true]},"overridable":false,"values":["false"]},{"schema":{"name":"groupSearchFilter","displayName":"Custom
group search filter","helpMessage":"Custom group search
filter","type":"java.lang.String","required":false,"order":11,"confidential":false,"defaultValues":[]},"overridable":false,"values":[]},{"schema":{"name":"pwdUpdateOnly","displayName":"Permit
password update only","helpMessage":"Specify TRUE if you want to permit
password update only: create/delete operation will be denied while other
attributes update requests will be
ignored.","type":"boolean","required":true,"order":17,"confidential":false,"defaultValues":[false]},"overridable":false,"values":[false]},{"schema":{"name":"retrieveDeletedUser","displayName":"Retrieve
deleted users","helpMessage":"Specify TRUE to retrieve deleted users also.
The default is
\"true\".","type":"boolean","required":false,"order":2,"confidential":false,"defaultValues":[true]},"overridable":false,"values":[true]},{"schema":{"name":"port","displayName":"Server
port","helpMessage":"Insert port. The default is
636.","type":"int","required":false,"order":2,"confidential":false,"defaultValues":[636]},"overridable":false,"values":["389"]},{"schema":{"name":"groupOwnerReferenceAttribute","displayName":"Group
owner reference attribute","helpMessage":"Group attribute name referencing
(by DN) the
owner","type":"java.lang.String","required":false,"order":15,"confidential":false,"defaultValues":["managedBy"]},"overridable":false,"values":["managedBy"]},{"schema":{"name":"defaultGroupContainer","displayName":"Default
group container","helpMessage":"Default group container to be used in case
of entry DN is not
provided","type":"java.lang.String","required":false,"order":8,"confidential":false,"defaultValues":[]},"overridable":false,"values":[]},{"schema":{"name":"defaultPeopleContainer","displayName":"Default
people container","helpMessage":"Default people container to be used in case
of entry DN is not
provided","type":"java.lang.String","required":false,"order":7,"confidential":false,"defaultValues":[]},"overridable":false,"values":[]},{"schema":{"name":"userBaseContexts","displayName":"Base
contexts for user entry searches","helpMessage":"DN of context to be used as
starting point for user entry
searches","type":"[Ljava.lang.String;","required":false,"order":13,"confidential":false,"defaultValues":[]},"overridable":false,"values":["ou=Accounts,dc=NA,dc=CompassGroup,dc=Corp"]},{"schema":{"name":"failover","displayName":"Failover","helpMessage":"Failover
host:port","type":"[Ljava.lang.String;","required":false,"order":4,"confidential":false,"defaultValues":[]},"overridable":false,"values":[]},{"schema":{"name":"startSyncFromToday","displayName":"Null
token is the latest","helpMessage":"Reset null token value to the latest
(sync with null token will not return any result). The default is
\"true\".","type":"boolean","required":false,"order":16,"confidential":false,"defaultValues":[true]},"overridable":false,"values":[true]},{"schema":{"name":"groupSearchScope","displayName":"Group
search scope","helpMessage":"Choose object, onlevel or
subtree","type":"java.lang.String","required":false,"order":10,"confidential":false,"defaultValues":["subtree"]},"overridable":false,"values":["subtree"]},{"schema":{"name":"objectClassesToSynchronize","displayName":"Object
classes to synchronize","helpMessage":"Specify object classes to identify
entry to
synchronize","type":"[Ljava.lang.String;","required":false,"order":24,"confidential":false,"defaultValues":["user"]},"overridable":false,"values":["user"]},{"schema":{"name":"membershipsInOr","displayName":"Verify
memberships in OR","helpMessage":"Specify TRUE if you want to verify
memberships using OR

Re: Notification page crashes in Console UI after e-mail config

2017-07-31 Thread Francesco Chicchiriccò 

Hi Martin,
FYI the mail debugging feature is now fully enabled in 2.0.5-SNAPSHOT, 
and the upgraded documentation


https://ci.apache.org/projects/syncope/2_0_X/reference-guide.html#e-mail-configuration

now features a couple of working samples.

Please note that with 2.0.4, while making STARTTLS work is possible (but 
not trivial), mail debugging is not.


Regards.

On 28/07/2017 15:12, Böhmer, Martin wrote:


Hi Francesco,

Thanks for your feedback. I created an issues as requested:

https://issues.apache.org/jira/browse/SYNCOPE-1180

Regarding the documentation, I am still missing the information that I 
would like to see in there. So I am kinda unable to contribute.


Regards,

Martin

*Von:*Francesco Chicchiriccò [mailto:ilgro...@apache.org]
*Gesendet:* Donnerstag, 27. Juli 2017 11:16
*An:* user@syncope.apache.org
*Betreff:* Re: AW: Notification page crashes in Console UI after 
e-mail config


On 21/07/2017 11:23, Böhmer, Martin wrote:

Hi Francesco,

I finally had the chance to give Syncope 2.0.4 a try on a fresh
machine as you suggested. Good news: I do not have any issues with
the notification page any more.


That's great to hear :-)


However, notifications are not working due to the email
configuration. I found the documentation in the reference guide
lacks of important details.

https://syncope.apache.org/docs/reference-guide.html#e-mail-configuration

1.The reference guide only names the properties. This is fine for
user, host, etc., but the protocol needs some explanation. I you
have never worked with JavaMail, you’re lost. It would be really
helpful to have a link from the Syncope mail properties to the
JavaMail properties (if this link exists). Or just give examples
for SMTP with STARTSSL (there is no flag for enabling StartSSL!?)
and SMTPS scenarios.


Feel free to open a PR for improving the docs; in particular

https://github.com/apache/syncope/blob/2_0_X/src/main/asciidoc/reference-guide/workingwithapachesyncope/systemadministration/emailconfiguration.adoc

If you would like to go along this way, please first take a look at

http://syncope.apache.org/contributing.html

and send an ICLA as specified, thanks!


2.Where to find the promised debug output when mailDebug is set to
true? I restarted tomcat and created a notification task. There is
no info on “handshake, authentication, delivery and disconnection”
in catalina.out or core.log or console.log


This would need some investigation: would you mind opening an issue on 
JIRA? Thanks.


Regards.


--
Francesco Chicchiriccò

Tirasa - Open Source Excellence
http://www.tirasa.net/

Member at The Apache Software Foundation
Syncope, Cocoon, Olingo, CXF, OpenJPA, PonyMail
http://home.apache.org/~ilgrosso/