Archiv des Autors: Sven Hasselbach

Migrating OSGi Plugins to standalone applications

I have created an example project for migrating an OSGI-based Spring Boot application into a standalone application (in the „Maven“ branch): https://github.com/hasselbach/domino-springboot/blob/maven/domino-springboot.plugin The application runs in the JVM of the Notes Client, only a user id is required, not a … Weiterlesen

Veröffentlicht unter Java, Migration, REST, Spring, Web | 2 Kommentare

Re: Make sure that the “Names.nsf” cannot be accessed via Internet!

Because my comments are still awaiting moderation (tried two times hours ago, but no luck), I have decided to answer to this post from Milan in my blog: „Yes, it is not good that these passwords are reachable from „outside“, … Weiterlesen

Veröffentlicht unter Security | Verschlagwortet mit , | 1 Kommentar

Exchange API for Java: Allow *all* type of certificates

I had troubles accessing internal Exchange servers using the EWS Java API because of self-signed SSL certificates (and not matching host names), that’s why I created a patch which overrides the existing certificate check and allows all type of SSL … Weiterlesen

Veröffentlicht unter Exchange, Java, Security | Verschlagwortet mit , , , , , | Schreib einen Kommentar

#dominoforever?

 https://www.dictionary.com/browse/forever (Thanks Carsten, I had to laugh out loud!)

Veröffentlicht unter Allgemein | 2 Kommentare

node.js, domino-db & Docker (13): Logging gRPC requests

For logging the gRPC requests you can use nginx as a reverse proxy. gRPC support was added in version 1.13.10. To install it locally on your Domino server (RHEL), open a terminal and do the following: 1. Identify which version … Weiterlesen

Veröffentlicht unter Allgemein | Verschlagwortet mit , | Schreib einen Kommentar

node.js, domino-db & Docker (12): DominoDB and a big NO-NO?

Disclaimer: This is a response on Heiko’s post about his security considerations with the domino-db module. It is good to have such a discussion, and hopefully this discussion will go on. This is my personal view on this topic. If … Weiterlesen

Veröffentlicht unter Security | Verschlagwortet mit , , | 3 Kommentare

node.js, domino-db & Docker (11): Usefull Docker Commands

Building Images docker build -t domino-express . Creates a new docker container named domino-express, using the current folder („.“). Starting / Stopping docker run –name dominoexpress -p 3000:3000 -d -it domino-express Starts the image domino-express, allows access to port 3000 … Weiterlesen

Veröffentlicht unter Docker | Verschlagwortet mit | Schreib einen Kommentar

node.js, domino-db & Docker (10): Protecting Proton Keys

Before we are looking into the details how to setup a non-anynomous connection to Domino’s Proton server, I have an advice for protecting the key files required for the connection. The keys are not password protected, and this is a … Weiterlesen

Veröffentlicht unter Docker, ES6, Java Script, node.js, Security | Verschlagwortet mit , , , , , | 1 Kommentar

node.js, domino-db & Docker (9): Global Configurations

The database configuration should not be changing during the different requests, that’s why it is a good idea to store the configuration in a central place of our express application. There are multiple ways of doing this, e.g. you can … Weiterlesen

Veröffentlicht unter ES6, Java Script, node.js | Verschlagwortet mit , , , | Schreib einen Kommentar

node.js, domino-db & Docker (8): Security

Security is a big topic when developing node.js applications. A simple helper for writing secure code is the eslint-plugin-security plugin. It checks for common mistakes during writing code, for example using the eval statement with external input, or unsafe RegEx … Weiterlesen

Veröffentlicht unter Java Script, node.js, Security | Verschlagwortet mit , | Schreib einen Kommentar