Learning XPages

A Legacy Notes Developer's journey into madness.
Devin Olson Tags Admin Administration AJAX applicationScope Articles Beans blank string test buttons Career CentOS Certificates Client Collection Command-Line Comparable interface Conference Conferences Connect CSJS Custom Controls DD-WRT DDE Dell Design and Tools Enterprise content management design elements Development Development Domino Domino API eclipse Ehnahced Log EL EL End engage Events Exception Expertise false assumptions Firmware Formula Graph Hack HCL Humbled IBM IBM Connect IBM Domino IBMChampion Intuition Iterator Java Java Javascript JSF keySet() Linux Lotus Lotusphere LotusScript Map Match Memory MWLUG Namespaces Netgear News Notes Notes Client Object ODA OpenNTF OpenNTF API OpenNTF XPages SDK Orlando OSX Overload Overloading Package Explorer Personal Plugin Development Programming Recycle Refresh RegEx RegExp Regular Expression requestScope Router Sametime scope scoped variables Search Serialization Session Session MWLUG Sessions sessionScope show Slides soliloquies solutions SSJS SSL SSLHandshakeException String Strings Stunned Tech Technical Theory toolbar Tools travel Traveler TreeSet Utilities Validation values Verse viewScope VOP Windows Workarounds Workspace XAgent XML XPages XPages Multiline Edit Box @Formula	Learning XPages IBM Domino HCL Linux CentOS Tech Installing and Configuring Domino 10.0.1 on CentOS 7 (Crosspost from Spanky’s Place) Devin Olson May 1 2019 04:32:58 PM Just in time for Engage! Although sadly I won't be there Since the official release of IBM Domino 10.0.1, I have been "chomping at the bit" wanting to release a set of instructions on how to install it on a Linux machine. Domino 10 is by far the easiest and most hassle-free version I have ever installed on a Linux machine. I have written an instructional document entitled Installing and Configuring Domino 10.0.1 on CentOS 7 Enterprise Linux. I hope it helps alleviate some of the fear and confusion with regards to using Linux as your Domino server platform. The document is aimed at YellowHeads (having some experience with Domino installations on Windows) who are thinking about stepping into the world of Linux. Even though it is aimed specifically at CentOS 7, the instructions *should* work for any RHEL or Debian-based (with some changes to handle DEB vs. RPM) linux version -although I must point out that the only supported Linux distributions are RHEL 7 and SLES 12. Hope this helps! -Devin Comments [0] Domino SSL Certificates Exception SSLHandshakeException Importing an SSL Certificate Authority into the JVM Devin Olson May 7 2018 09:45:16 AM This issue is documented in IBM Technote Importing an SSL Certificate Authority into the JVM Issue Java code running on a Domino server (or from within a Notes client) can reach out and pull in information (such as with a REST API, or an HTTP GET) from an outside source. Due to the Notes/Domino security model, all of these communications must occur over an encrypted (HTTPS / SSL) channel. Normally this is not a problem, however there are occasions when the Domino JVM does not recognize the Certificate Authority in use at the outside source. When this happens, the connection handshake fails, and returns an exception similar to: HTTP JVM: javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: No trusted certificate found. The way to correct this is to import the appropriate Certificate Authority into the cacerts database. This is NOT to be confused with the "Certificates" view in the Domino Directory -they are entirely different things. There are a few things that need to be pointed out about this Technote (reproduced below). The Notes Client and the Domino Server have different instances of the cacerts database. Certificate Authority files need to be imported into the appropriate instance, based on from where the code will run (Notes Client vs. Domino Server). When importing the certificates, simply importing the top-level certificate may not be enough. I recommend that you import the intermediate certificates as well, simply to alleviate any headaches. ALWAYS make a backup of the cacerts database before you start this process. If you somehow corrupt the file and you have no backup, ALL JVM connections from your Domino server to external sources will fail. This is a catastrophic event in a production environment. The filepaths specified in the Technote (and below) are not necessarily correct, and will vary by installation. Normal (default) installation locations are listed below. Be advised that the Technote explains to use the Windows version of IKEYMAN. I have found this in testing to be correct. Windows NOTES: C:\Program Files (x86)\IBM\Notes\jvm\bin\IKEYMAN.exe NOTES: C:\Program Files (x86)\IBM\Notes\jvm\lib\security\cacerts DOMINO: C:\Program Files (x86)\IBM\Notes\jvm\bin\IKEYMAN.exe DOMINO: C:\Program Files (x86)\IBM\Notes\jvm\lib\security\cacerts Linux NOTES /opt/ibm/notes/90010/linux/jvm/bin/ikeyman NOTES /opt/ibm/notes/90010/linux/jvm/lib/security/cacerts DOMINO /opt/ibm/domino/notes/90010/linux/jvm/bin/ikeyman DOMINO /opt/ibm/domino/notes/90010/linux/jvm/lib/security/cacerts Technote Problem A Java application running on a Domino server connecting over SSL to another server may require having the SSL certificate authority of the other server imported into its JVM. Symptom When a Java application running on a Domino server connects over SSL to another server, but does not have that server's trusted root certificates, an error may occur. One example of such an error is: HTTP JVM: javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: No trusted certificate found Cause The trusted root certificates that signed the remote server's SSL certificate must be also be trusted by the Domino server's JVM if a Java application is making an SSL connection. Resolving the problem To add the trusted root certificates to a Domino server JVM follow these steps: A. Obtain the Certificate to be Imported Each browser displays certificates in different ways, but they are usually quite similar. On the browser's URL bar, there is usually a zone that you can click on to display SSL certificate information. For example, you may see a padlock in the status bar, and clicking on the padlock opens the certificate information. Once the certificate information is open, click on the "Certification Path" information. There normally will be a way to export each of the signing certificates (trusted roots). Export the certifiers in the "Base-64 encoded X.509 (.CER)" format. The exported file in this format will be an ASCII text file that has "BEGIN CERTIFICATE" and "END CERTIFICATE" lines at the top and bottom. Once you have exported the certificates that signed the remote server's SSL certificate you can then import them into the JVM. B. Import the SSL certifier into the JVM. If Domino is on a UNIX server, perform these steps on a Windows workstation, and then move the cacerts to the server after the import is completed. Import the SSL Certificate into the JVM using these steps: 1. Open a command prompt as Administrator and change directory to C:\Lotus\Domino\jvm\bin. 2. Run the batch file "IKEYMAN.exe" (a Java application will load). 3. Click "Key Database File" then "Open". 4. Browse to C:\Lotus\Domino\jvm\lib\security\cacerts. Note, you will have to view "All Files" to locate cacerts. 5. Supply the default password of "changeit". Note, consult your administrator if you receive an error pertaining to the password. 6. Select "Signer Certificates" in the drop-down menu. 7. Click "Add" 8. Select "Browse" and locate the .CER file you copied. 9. Click "OK" and enter a descriptive label. 10. On the Domino console issue the command "restart task http". Comments [0] Notes Domino engage conferences travel Engage 2018: I will be presenting in Rotterdam in May. Devin Olson April 9 2018 06:40:46 AM I am very humbled and excited to be presenting in two different sessions at engage 2018 this year. I am especially humbled to be sharing the stage with Mr. Red, Mr Pink, and Mr. Yellow. I am so looking forward to attending engage with my fellow team members at Red Pill Now Comments [0] Domino DDE Workspace Development Taming Domino Designer Devin Olson March 22 2018 05:11:26 AM Once again I found myself searching the interwebs for a document I knew existed. I found it after a bit, and decided I would post it here so that I didn't have to search for it next time. Taming Domino Designer by Nathan T. Freeman. Yes, it is a bit long in tooth, but is VERY relevant if you are doing XPages work. Comments [0] @Formula LotusScript Notes Client Holy Shit Moment: Domino on iOS Devin Olson March 22 2018 03:55:04 AM Alan Lepofsky gives us a very quick demo of HCL's work on surfacing Domino data in iOS. While this is not a true Notes Client, it is nevertheless a holy shit moment for me. Video on Youtube: https://www.youtube.com/watch?v=5veoCliQcNQ&feature=share Comments [0] Java Domino Recycle Object Memory Updated incinerate() Devin Olson February 27 2018 11:35:42 AM Back in August of 2013 I originally posted Nate and Tim's Excellent Recycle. Granted, if you are coding in XPages the OpenNTF Domino API has pretty much made the need for this method irrelevant (as the ODA's first goal is to eliminate the "ham-fisted Exception handling in the lotus.domino API"). HOWEVER, if you are doing non-XPages Domino Java code then this recycle method is still relevant. I had a need to enhance this method to handle Map and Collection values. I present to you this enhanced code, in the hopes that it helps ease your pain when developing Java code in Notes and Domino. Hope this helps! /** * Recycles Domino Objects without throwing an exception * * @author Nathan T. Freeman, Tim Tripcony, Devin S. Olson * * @param dominoObjects * Domino Objects to be recycled. * * @see http://learningxpages.com/blog.nsf/dx/02272018023541PMDOLQYV.htm / @SuppressWarnings("unchecked") public* static void incinerate(final Object... objects) { if (null == objects) { return; } try { for (final Object object : objects) { if (object != null) { if (object instanceof Base) { // normal recycle ((Base) object).recycle(); } else if (object instanceof Map) { // incinerate all keys and values final Set entries = ((Map) object).entrySet(); for (final Map.Entry entry : entries) { incinerate(entry.getKey(), entry.getValue()); } } else if (object instanceof Collection) { // incinerate every element in the collection final Iterator i = ((Collection) object).iterator(); while (i.hasNext()) { final Object element = i.next(); incinerate(element); } } else if (object.getClass().isArray()) { // incinerate every element in the array final Object[] objectsArray = (Object[]) object; for (final Object element : objectsArray) { incinerate(element); } } } } } catch (final NotesException recycleSucks) { // optionally log exception (why bother?) } } Comments [0] IBMChampion IBM Champion 2018 Devin Olson January 12 2018 06:01:24 AM I have been officially notified that I have been named an IBM Champion for 2018. I am honored and humbled to be a part of this group of amazing and brilliant people. Thank you all. Comments [0] OpenNTF Ehnahced Log LotusScript OpenNTF Release: Enhanced Log version 2017.12.26 Devin Olson December 26 2017 10:43:26 AM I have released the latest version of Enhanced Log on OpenNTF. Latest release includes additional collections support libraries, better cache and memory management, smaller library footprint, better commented code, and some additional logging features such as including links with extended content and profiled logging capability. Comments [0] Windows Admin Tech How to enable the hidden Windows 10 Administrator Account Devin Olson December 20 2017 01:56:39 PM ENABLE: net user administrator /active:yes from an elevated command prompt. DISABLE: net user administrator /active:no from an elevated command prompt. I posted this because I got tired of having to web search (google, bing, whatever) for it and every single result was filled with clickbait ads and a ton of tracking happy horseshit. My website has none of that crap, and never will. Comments [0] Notes Domino Still Relevant after all these years Devin Olson November 28 2017 06:40:55 AM #thanksIBM #ibmchampion Comments [2]	Feeds Content Feed Comment Feed Links XPages Controls Formula Engine Domino API XPages plugin REST Service Recent Entries Installing and Configurin Importing an SSL Certific Engage 2018: I will be pr Taming Domino Designer Holy Shit Moment: Domino Recent Comments I want to be an IBM Champ Still Relevant after all Still Relevant after all IBM Connect 2017 DEV–1533 Daddy’s got a brand Archives May 2019 (1) May 2018 (1) April 2018 (1) March 2018 (2) February 2018 (1) January 2018 (1) December 2017 (2) November 2017 (1) August 2017 (2) July 2017 (1) April 2017 (1) December 2016 (1) November 2016 (1) October 2016 (1) August 2016 (2) July 2016 (3) February 2016 (1) January 2016 (2) November 2015 (1) July 2015 (1) June 2015 (1) March 2015 (1) February 2015 (1) January 2015 (1) November 2014 (2) May 2014 (1) April 2014 (1) December 2013 (1) October 2013 (1) September 2013 (1) August 2013 (1) July 2013 (1) June 2013 (1) April 2013 (4) March 2013 (1) January 2013 (1) December 2012 (1) November 2012 (1) October 2012 (3) August 2012 (6)