| Time |
S |
Nick |
Message |
| 01:32 |
|
|
axfelix joined #dvn |
| 03:54 |
|
|
axfelix joined #dvn |
| 04:31 |
|
|
garnett joined #dvn |
| 06:50 |
|
|
bencomp joined #dvn |
| 09:55 |
|
pdurbin |
bencomp: did you see this? http://irclog.iq.harvard.edu/dvn/2014-03-31#i_7748 |
| 11:20 |
|
bencomp |
pdurbin: yes, I did. They work (but I could only check this morning) |
| 11:52 |
|
pdurbin |
bencomp: great. also. I was getting "invalid ssl cert" errors on redmine but this should be fixed now |
| 11:55 |
|
bencomp |
pdurbin: haven't noticed any - or don't remember |
| 11:55 |
|
pdurbin |
:) |
| 11:57 |
|
pdurbin |
bencomp: so... about shibboleth... you're trying to add your "DVN-with-OIOSAML-hack" to 3.6.2? you said something about this yesterday |
| 11:57 |
|
bencomp |
yes |
| 11:57 |
|
bencomp |
well, the "-with-OIOSAML-hack" to 3.6.2. |
| 11:58 |
|
pdurbin |
so, about that... |
| 11:58 |
|
pdurbin |
bencomp: see how it says "rewrite our code from the ground up" on this blog post? Major Dataverse Release Coming Soon (Goodbye 3.6.x; Hello 4.0!) http://thedata.org/blog/major-dataverse-release-coming-spring-2014 |
| 12:00 |
|
bencomp |
pdurbin: when is 4 ready? :) |
| 12:00 |
|
pdurbin |
bencomp: excellent question! :) |
| 12:00 |
|
pdurbin |
we get asked that a lot |
| 12:01 |
|
bencomp |
we're in a bit of a rush to get the most recent version running - with federated login via SAML |
| 12:02 |
|
pdurbin |
I see. Makes sense |
| 12:02 |
|
pdurbin |
bencomp: will you be in a rush to upgrade to 4.0 when it comes out? |
| 12:08 |
|
bencomp |
pdurbin: it'll be balancing enhanced security, changes in functionality (current service excludes visualisations and stats), changes in management |
| 12:08 |
|
bencomp |
we're a kind of nation-wide network |
| 12:08 |
|
pdurbin |
right, hence the name: dataverse.nl |
| 12:09 |
|
bencomp |
that, and contracts + SLAs |
| 12:09 |
|
pdurbin |
bencomp: well, I have some reservations about using OIOSAML. For example, I filed this related bug against the Shibboleth project (OIOSAML is built on OpenSAML): [#OSJ-54] Investigate use of standard JAXP - Shibboleth JIRA - https://issues.shibboleth.net/jira/browse/OSJ-54 |
| 12:14 |
|
pdurbin |
using Xerces instead of JAXP is giving me problems like this: error on redeploy: DTD factory class org.apache.xerces.impl.dv.dtd.DTDDVFactoryImpl does not extend from DTDDVFactory · Issue #1 · pdurbin/oiosaml_on_glassfish - https://github.com/pdurbin/oiosaml_on_glassfish/issues/1 |
| 12:14 |
|
pdurbin |
bencomp: there's a related ticket about this: https://help.hmdc.harvard.edu/Ticket/Display.html?id=165457 |
| 12:15 |
|
bencomp |
pdurbin: we prefer Shibboleth, but got OIOSAML with dataverse.nl. We're investigating re-hacking… - but that is why we are interested in Shibboleth support :) |
| 12:16 |
|
bencomp |
pdurbin: are you available for a skype call in a bit? |
| 12:16 |
|
pdurbin |
bencomp: ok, so you do not necessarily want to stay with OIOSAML. You're open to the idea of using mod_shib with Apache in front of a Dataverse installation, for example? |
| 12:17 |
|
bencomp |
YES |
| 12:17 |
|
pdurbin |
heh |
| 12:17 |
|
pdurbin |
we've been trying to avoid introducing a dependency on Apache but maybe we should reconsider this |
| 12:18 |
|
bencomp |
Glassfish's http+shibboleth support is limited, I was told |
| 12:18 |
|
pdurbin |
well, as I understand it, glassfish doesn't support shibboleth at all. that's why you have to add opensaml/oiosaml |
| 12:19 |
|
pdurbin |
bencomp: have you seen this doc of mine where I explain the options I've investigated? https://docs.google.com/document/d/1y2axfd_ScmXVICFlV8AuPDdp5xHwTag54pUpVefzs5g/edit?usp=sharing |
| 12:19 |
|
bencomp |
no, I haven't |
| 12:19 |
|
pdurbin |
1. OpenAM, 2. OIOSAML, 3. mod_shib, 4, writing our own solution |
| 12:20 |
|
pdurbin |
bencomp: it would be great if you could read through that before we do a skype call |
| 12:20 |
|
bencomp |
I'll do that and get back to you |
| 12:20 |
|
pdurbin |
bencomp: awesome. thanks! |
| 13:18 |
|
pdurbin |
bencomp: oh, I'd be happy to give you permission to comment on that google doc if you want |
| 15:59 |
|
|
axfelix joined #dvn |
| 16:06 |
|
bencomp |
pdurbin: thanks, for offering me commenting rights, but for now I only have one: could you add the date of publication? :) |
| 16:07 |
|
bencomp |
are you available for a skype call tomorrow European pm? |
| 16:10 |
|
pdurbin |
bencomp: it's ~6pm for you right now? you seem to be 6 hours ahead of me. it's ~noon here |
| 16:11 |
|
bencomp |
correct, I'm having my dinner between office time and ultimate frisbee practice time :) |
| 16:11 |
|
pdurbin |
been a while since I played ultimate. my wife and i were on a co-ed team |
| 16:12 |
|
bencomp |
people easily think they're too old to play... |
| 16:13 |
|
pdurbin |
or too busy with kids. some day they'll be old enough |
| 16:13 |
|
bencomp |
:) |
| 16:13 |
|
|
ijstokes joined #dvn |
| 16:14 |
|
pdurbin |
bencomp: what time were you thinking? |
| 16:18 |
|
bencomp |
pdurbin: 9am your timezone = 15h here, would that fit? |
| 16:19 |
|
pdurbin |
bencomp: sounds good. should we invite any others? such as https://lists.iq.harvard.edu/mailman/roster/dvn-auth |
| 16:22 |
|
bencomp |
I would like to bring my two colleagues doing the hard(er) work, but I'm interested in hearing other opninions too |
| 16:24 |
|
pdurbin |
bencomp: instead of starting with a Skype call... what if you posted your thoughts to that "dvn-auth" list? Then we could follow up with a call... |
| 16:24 |
|
pdurbin |
it would be a good way to get opinions |
| 16:28 |
|
bencomp |
it would be, wouldn't it |
| 16:28 |
|
bencomp |
:) |
| 16:28 |
|
pdurbin |
'“Why wasn't I consulted,” which I abbreviate as WWIC, is the fundamental question of the web.' -- http://www.ftrain.com/wwic.html :) |
| 16:29 |
|
axfelix |
I love paul ford :) |
| 16:29 |
|
pdurbin |
hell yeah |
| 16:29 |
|
pdurbin |
I tweeted at him once that he sounds like someone I know... but I don't know who |
| 16:31 |
|
pdurbin |
axfelix: http://www.ftrain.com/robot_exclusion_protocol.html |
| 16:31 |
|
axfelix |
2002, wow |
| 16:31 |
|
axfelix |
sounds like someone was having some trouble with robots.txt... |
| 16:32 |
|
pdurbin |
heh. I only recently heard of that post |
| 16:35 |
|
pdurbin |
bencomp: so what do you think? are you a writer or a talker? :) |
| 16:37 |
|
bencomp |
pdurbin: I guess I'm more of a thinker… but I would like to seize this opportunity to talk about plans and experiences with SSO |
| 16:39 |
|
bencomp |
although I don't mind introducing myself via email too |
| 16:43 |
|
pdurbin |
bencomp: I'd love to get on the same page with you guys in terms of future plans for Shibboleth |
| 16:43 |
|
bencomp |
same here |
| 16:43 |
|
pdurbin |
bencomp: you're the ones who have already figured it out with OIOSAML. I was trying to follow your lead. |
| 16:44 |
|
bencomp |
well, that wasn't us |
| 16:45 |
|
pdurbin |
who is we kemosabe? ;) |
| 16:51 |
|
pdurbin |
bencomp: I know what you mean. I got the history from Marina from UU. |
| 16:52 |
|
bencomp |
pdurbin: had to look up the reference - according to Wikipedia, you should write "Ke-mo sah-bee" :P |
| 16:52 |
|
pdurbin |
oh |
| 16:52 |
|
pdurbin |
:) |
| 16:53 |
|
bencomp |
did you actually keep the oiosaml branch on GitHub up to date with the develop branch? |
| 16:55 |
|
pdurbin |
bencomp: nope. https://github.com/IQSS/dvn/tree/oiosaml is 12 commits behind. I didn't want to merge it in because it seemed to destabilze glassfish... the whole "org.apache.xerces.impl.dv.dtd.DTDDVFactoryImpl does not extend from DTDDVFactory" thing I linked to earlier: https://github.com/pdurbin/oiosaml_on_glassfish/issues/1 |
| 16:56 |
|
pdurbin |
bencomp: one of the main glassfish guys (Ed Burns) encourage me to post about it here: https://java.net/projects/glassfish/lists/dev/archive/2013-11/message/0 |
| 16:56 |
|
pdurbin |
but no one ever replied :( |
| 16:56 |
|
* pdurbin |
cries |
| 16:57 |
|
pdurbin |
;) |
| 16:58 |
|
bencomp |
yeah, well, DTDs? |
| 16:58 |
|
* bencomp |
ducks |
| 16:58 |
|
bencomp |
I'll finish and send my email to dvn-auth later |
| 16:58 |
|
bencomp |
and read your post in more detail |
| 16:59 |
|
pdurbin |
bencomp: earlier I mentioned a ticket ("#165457: xerces issue after redeploy") from your group. dunno if you've seen it |
| 16:59 |
|
bencomp |
pdurbin: 9am for you tomorrow still okay? |
| 16:59 |
|
pdurbin |
bencomp: sure! |
| 16:59 |
|
bencomp |
cool |
| 17:00 |
|
pdurbin |
bencomp: can you pm me your skype username? |
| 17:00 |
|
bencomp |
yes |
| 17:02 |
|
pdurbin |
got it. thanks |
| 17:14 |
|
|
axfelix joined #dvn |
| 17:26 |
|
|
LyndsySimon joined #dvn |
| 17:33 |
|
|
LyndsySimon joined #dvn |
| 17:41 |
|
|
LyndsySimon joined #dvn |
| 17:52 |
|
|
LyndsySimon joined #dvn |
| 17:58 |
|
|
ijstokes1 joined #dvn |
| 18:02 |
|
|
balo joined #dvn |
| 18:06 |
|
|
LyndsySimon joined #dvn |
| 18:19 |
|
|
LyndsySimon joined #dvn |
| 18:54 |
|
|
LyndsySimon joined #dvn |
| 19:22 |
|
|
LyndsySimon joined #dvn |
| 19:47 |
|
|
axfelix joined #dvn |
| 20:51 |
|
|
LyndsySimon joined #dvn |
| 21:26 |
|
|
axfelix joined #dvn |
| 22:35 |
|
|
axfelix joined #dvn |
| 22:44 |
|
|
axfelix joined #dvn |
| 23:38 |
|
|
bencomp joined #dvn |
