n this session, we'll simplify the complexities of configuring and troubleshooting mutual TLS (mTLS) within Alfresco environments. Attendees will gain practical insights into certificate management, trust validation, and common challenges encountered during configuration.
We'll showcase and provide custom tools for troubleshooting during the session. These tools can be used with ZIP, Ansible, Docker and Kubernetes deployments.
Event description available in https://hub.alfresco.com/t5/news-announcements/ttl-157-troubleshooting-made-easy-deciphering-alfresco-s-mtls/ba-p/319735/jump-to/first-unread-message
This presentation is part of the Oracle Cloud Native Developer Hackathon 2020. It describes how to setup and configure a test account for deploying functions to the OCI cloud using the OCI CLI and fnproject cli.
This document provides an overview of the Alfresco content management platform, including its architecture, development model, and features. Alfresco is an open source enterprise content management system that can manage files and metadata. It provides versioning, security, and a workflow engine. Developers can build custom applications using its APIs, Spring framework, and web script capabilities.
The document discusses considerations for planning an Alfresco installation, including components, technology stack, subsystems, extensions, sizing, installation process, validation, and administration. It also provides a use case example for installing Alfresco for a crop trust organization, outlining their requirements and customizations needed. The key factors to evaluate before installing Alfresco are components, technology requirements, subsystems to configure, potential extensions, appropriate sizing, validation steps, and administrative tasks.
Stups.io - an Open Source Cloud Framework for AWSJan Löffler
STUPS.io is an open source cloud framework for AWS that provides maximum developer freedom while enabling near-real-time audit compliance for applications. It utilizes isolated AWS accounts with Docker deployment, managed SSH access, and immutable infrastructure to give development teams autonomy while ensuring security and compliance.
Building Content-Rich Java Apps in the Cloud with the Alfresco APIJeff Potts
This presentation, originally delivered at JavaOne on October 2, 2012, talks about why you should use Alfresco instead of rolling your own content repository and discusses the new public Alfresco API for writing content apps that persist content to Alfresco in the Cloud.
Get hands-on with security features and best practices to protect your containerized services. Learn to push and verify signed images with Docker Content Trust, and collaborate with delegation roles. Intermediate to advanced level Docker experience recommended, participants will be building and pushing with Docker during the workshop.
Led By Docker Security Experts:
Riyaz Faizullabhoy
David Lawrence
Viktor Stanchev
Experience Level: Intermediate to advanced level Docker experience recommended
A set of Tips & Tricks in the resolution of the typical problems that you can find and the reason of them when you work with FIWARE IoT Agents and FIWARE Orion Context Broker
This presentation is part of the Oracle Cloud Native Developer Hackathon 2020. It describes how to setup and configure a test account for deploying functions to the OCI cloud using the OCI CLI and fnproject cli.
This document provides an overview of the Alfresco content management platform, including its architecture, development model, and features. Alfresco is an open source enterprise content management system that can manage files and metadata. It provides versioning, security, and a workflow engine. Developers can build custom applications using its APIs, Spring framework, and web script capabilities.
The document discusses considerations for planning an Alfresco installation, including components, technology stack, subsystems, extensions, sizing, installation process, validation, and administration. It also provides a use case example for installing Alfresco for a crop trust organization, outlining their requirements and customizations needed. The key factors to evaluate before installing Alfresco are components, technology requirements, subsystems to configure, potential extensions, appropriate sizing, validation steps, and administrative tasks.
Stups.io - an Open Source Cloud Framework for AWSJan Löffler
STUPS.io is an open source cloud framework for AWS that provides maximum developer freedom while enabling near-real-time audit compliance for applications. It utilizes isolated AWS accounts with Docker deployment, managed SSH access, and immutable infrastructure to give development teams autonomy while ensuring security and compliance.
Building Content-Rich Java Apps in the Cloud with the Alfresco APIJeff Potts
This presentation, originally delivered at JavaOne on October 2, 2012, talks about why you should use Alfresco instead of rolling your own content repository and discusses the new public Alfresco API for writing content apps that persist content to Alfresco in the Cloud.
Get hands-on with security features and best practices to protect your containerized services. Learn to push and verify signed images with Docker Content Trust, and collaborate with delegation roles. Intermediate to advanced level Docker experience recommended, participants will be building and pushing with Docker during the workshop.
Led By Docker Security Experts:
Riyaz Faizullabhoy
David Lawrence
Viktor Stanchev
Experience Level: Intermediate to advanced level Docker experience recommended
A set of Tips & Tricks in the resolution of the typical problems that you can find and the reason of them when you work with FIWARE IoT Agents and FIWARE Orion Context Broker
[AzureCamp 24 Juin 2014] Des services en frontal par Benjamin Guinebertière e...Microsoft Technet France
This document discusses an API management platform and portal that provides tools and services for both developers and administrators. It includes features such as self-registration, subscriptions, documentation, issue tracking, analytics reporting, security controls, caching, throttling, and transformations. The platform uses technologies such as Nginx, Varnish, and Azure API apps to proxy and manage APIs. It encourages attendees of a Microsoft Azure event to sign up for a hands-on session to learn more.
Alfresco Summit 2013 Presentation by Jared Ottley and Will Abson. Discuss how the Alfresco for Salesforce Integration works; How to get and install the integration; Challenges; ideas for for future releases.
This session will provide a guide to Alfresco truststores and keystores. Several live examples will be shown, including the replacement of existing cryptographic stores or certificates. Additionally, a troubleshooting configuration guide for mTLS communication will be provided.
DEF CON 24 - workshop - Craig Young - brainwashing embedded systemsFelipe Prado
Firmware analysis often involves searching firmware images for known file headers and file systems like SquashFS to extract contained files. Automated binary analysis tools like binwalk can help extract files from images. HTTP interfaces are common targets for security testing since they are often exposed without authentication. Testing may uncover vulnerabilities like XSS, CSRF, SQLi or command injection. Wireless interfaces also require testing to check for issues like weak encryption or exposure of credentials in cleartext.
(ARC401) Cloud First: New Architecture for New InfrastructureAmazon Web Services
What do companies with internal platforms have to change to succeed in the cloud? The five pillars at the heart of IT solutions in the cloud are automation, fault tolerance, horizontal scalability, security, and cost-effectiveness. This talk discusses tools that facilitate the development and automate the deployment of secure, highly available microservices. The tools were developed using AWS CloudFormation, AWS SDKs, AWS CLI, Amazon RDS, and various open-source software such as Docker. The talk provides concrete examples of how these tools can help developers and architects move from beginning/intermediate AWS practitioners to cloud deployment experts.
How to migrate from Alfresco Search Services to Alfresco SearchEnterpriseAngel Borroy López
Presentation on how to move from the Alfresco Search Services product based in Apache Solr to the new Alfresco Search Enterprise integrated with Elasticsearch and Amazon Opensearch.
Running Docker in Development & Production (#ndcoslo 2015)Ben Hall
The document discusses running Docker in development and production. It covers:
- Using Docker containers to run individual services like Elasticsearch or web applications
- Creating Dockerfiles to build custom images
- Linking containers together and using environment variables for service discovery
- Scaling with Docker Compose, load balancing with Nginx, and service discovery with Consul
- Clustering containers together using Docker Swarm for high availability
TTL Alfresco Product Security and Best Practices 2017Toni de la Fuente
Slide deck used during Tech Talk Live #110 in October 2017. Phil Meadows and myself discussed about Alfresco products security and I went through Alfresco CS security best practices.
GOTO Copenhagen - Radical Agility with Autonomous Teams and Microservices in ...Jan Löffler
What we've built at Zalando is complex. Supporting – profitably – a publicly traded ecommerce company that does business in 15 diverse European markets, with more than 16 million active users who all speak different languages, use different payment methods, prefer different shipping methods, and have different product tastes, has required nonstop innovation. Until recently we've focused on building a unified, comprehensive retail system, quickly, that solves just our problems. But to truly fight against complexity--particularly the accidental complexity that slows down our development process--we have adopted a microservices architecture. And when it comes to DevOps, we’ve gone a step beyond the "You build it, you run it" motto--working in autonomous teams with DevOps treated as a "first-class entity.”
In this talk, Jan Löffler (Head of Platform Engineering) will share Zalando's experience implementing “Radical Agility” from a DevOps perspective. “Radical Agility” is the Zalando technology team’s multi-pronged approach to managing the complexity that results from building an architecture of massive size. Jan will focus on how microservices enable Zalando’s engineers to move faster and build systems that scale, at scale, and avoid dependencies. He will show how microservices, in conjunction with a cloud infrastructure, support teams as they try strive for autonomy. Finally, he will draw upon his experiences to show how this all works in practice, and discuss what is organizationally and architecturally necessary to make DevOps a top priority for all members of your tech organization.
Azure Bootcamp 2016 - Docker Orchestration on Azure with RancherKarim Vaes
This document discusses Docker orchestration on Azure using Rancher. It begins with an introduction to Docker concepts like containers, images and the Docker workflow. It then demonstrates deploying a Rancher server on Azure, adding nodes, upgrading a sample application, enabling cross-region networking, auto-scaling services, and using a Docker volume plugin to connect to Azure File Storage for persistent storage. The document includes code samples and step-by-step demonstrations of these Rancher and Docker capabilities on Azure.
AWS re:Invent 2016: Service Integration Delivery and Automation Using Amazon ...Amazon Web Services
Through a combination of Amazon ECS and open source technologies, customers are able to build portable CI/CD pipelines on AWS. As container based deployments become more complex, they require additional rigging for integration. In this session, we show how popular Apache products like Kakfa, Storm, and Zookeeper are being deployed on top of Amazon ECS. We hear from HERE, a provider of mapping data, technologies, and services to the automotive, consumer, and enterprise sectors about an approach that leverages Consul from Hashicorp and Amazon ECS clusters for short-cycle deployments and tag-based environment promotion.
Slides form Config Management Camp, looking at how you can take a collaborative GitFlow approach to Terraform using Remote State, Modules and Dynamically Generated Credentials using Vault
Slide deck from an Alfresco Webinar which can be viewed at http://blogs.alfresco.com/wp/webcasts/2009/05/alfresco-webcast-a-developers-guide-1-capabilities-architecture-optaros/
This presentation discusses what Alfresco is an options for working with Alfresco from a developer perspective.
The document introduces OpenFaaS, an open source serverless framework that allows users to easily create and deploy serverless functions. It discusses how OpenFaaS works with containers and can run on any infrastructure, provides examples of common use cases for serverless functions, and outlines how to write, build, deploy and invoke functions using OpenFaaS. The document also previews some of OpenFaaS' upcoming features and provides recommendations for where users can learn more.
DevOps is a set of practices that automates the processes between software development and IT teams, in order that they can build, test, and release software faster and more reliably.
This document provides steps to install and configure mod_ssl on CentOS/Fedora/Redhat to enable HTTPS on the Apache web server. It describes generating a self-signed certificate, editing the ssl.conf and httpd.conf configuration files to specify the certificate details and enable SSL, and restarting the Apache server to apply the changes.
Orchestrating Docker with Terraform and Consul by Mitchell Hashimoto Docker, Inc.
Terraform is a tool for building and safely iterating on infrastructure, while Consul provides service discovery, monitoring and orchestration. In this talk we discuss using Terraform and Consul together to build a Docker-based Service Oriented Architecture at scale. We use Consul to provide the runtime control plane for the datacenter, and Terraform is used to modify the underlying infrastructure to allow for elastic scalability.
[AzureCamp 24 Juin 2014] Des services en frontal par Benjamin Guinebertière e...Microsoft Technet France
This document discusses an API management platform and portal that provides tools and services for both developers and administrators. It includes features such as self-registration, subscriptions, documentation, issue tracking, analytics reporting, security controls, caching, throttling, and transformations. The platform uses technologies such as Nginx, Varnish, and Azure API apps to proxy and manage APIs. It encourages attendees of a Microsoft Azure event to sign up for a hands-on session to learn more.
Alfresco Summit 2013 Presentation by Jared Ottley and Will Abson. Discuss how the Alfresco for Salesforce Integration works; How to get and install the integration; Challenges; ideas for for future releases.
This session will provide a guide to Alfresco truststores and keystores. Several live examples will be shown, including the replacement of existing cryptographic stores or certificates. Additionally, a troubleshooting configuration guide for mTLS communication will be provided.
DEF CON 24 - workshop - Craig Young - brainwashing embedded systemsFelipe Prado
Firmware analysis often involves searching firmware images for known file headers and file systems like SquashFS to extract contained files. Automated binary analysis tools like binwalk can help extract files from images. HTTP interfaces are common targets for security testing since they are often exposed without authentication. Testing may uncover vulnerabilities like XSS, CSRF, SQLi or command injection. Wireless interfaces also require testing to check for issues like weak encryption or exposure of credentials in cleartext.
(ARC401) Cloud First: New Architecture for New InfrastructureAmazon Web Services
What do companies with internal platforms have to change to succeed in the cloud? The five pillars at the heart of IT solutions in the cloud are automation, fault tolerance, horizontal scalability, security, and cost-effectiveness. This talk discusses tools that facilitate the development and automate the deployment of secure, highly available microservices. The tools were developed using AWS CloudFormation, AWS SDKs, AWS CLI, Amazon RDS, and various open-source software such as Docker. The talk provides concrete examples of how these tools can help developers and architects move from beginning/intermediate AWS practitioners to cloud deployment experts.
How to migrate from Alfresco Search Services to Alfresco SearchEnterpriseAngel Borroy López
Presentation on how to move from the Alfresco Search Services product based in Apache Solr to the new Alfresco Search Enterprise integrated with Elasticsearch and Amazon Opensearch.
Running Docker in Development & Production (#ndcoslo 2015)Ben Hall
The document discusses running Docker in development and production. It covers:
- Using Docker containers to run individual services like Elasticsearch or web applications
- Creating Dockerfiles to build custom images
- Linking containers together and using environment variables for service discovery
- Scaling with Docker Compose, load balancing with Nginx, and service discovery with Consul
- Clustering containers together using Docker Swarm for high availability
TTL Alfresco Product Security and Best Practices 2017Toni de la Fuente
Slide deck used during Tech Talk Live #110 in October 2017. Phil Meadows and myself discussed about Alfresco products security and I went through Alfresco CS security best practices.
GOTO Copenhagen - Radical Agility with Autonomous Teams and Microservices in ...Jan Löffler
What we've built at Zalando is complex. Supporting – profitably – a publicly traded ecommerce company that does business in 15 diverse European markets, with more than 16 million active users who all speak different languages, use different payment methods, prefer different shipping methods, and have different product tastes, has required nonstop innovation. Until recently we've focused on building a unified, comprehensive retail system, quickly, that solves just our problems. But to truly fight against complexity--particularly the accidental complexity that slows down our development process--we have adopted a microservices architecture. And when it comes to DevOps, we’ve gone a step beyond the "You build it, you run it" motto--working in autonomous teams with DevOps treated as a "first-class entity.”
In this talk, Jan Löffler (Head of Platform Engineering) will share Zalando's experience implementing “Radical Agility” from a DevOps perspective. “Radical Agility” is the Zalando technology team’s multi-pronged approach to managing the complexity that results from building an architecture of massive size. Jan will focus on how microservices enable Zalando’s engineers to move faster and build systems that scale, at scale, and avoid dependencies. He will show how microservices, in conjunction with a cloud infrastructure, support teams as they try strive for autonomy. Finally, he will draw upon his experiences to show how this all works in practice, and discuss what is organizationally and architecturally necessary to make DevOps a top priority for all members of your tech organization.
Azure Bootcamp 2016 - Docker Orchestration on Azure with RancherKarim Vaes
This document discusses Docker orchestration on Azure using Rancher. It begins with an introduction to Docker concepts like containers, images and the Docker workflow. It then demonstrates deploying a Rancher server on Azure, adding nodes, upgrading a sample application, enabling cross-region networking, auto-scaling services, and using a Docker volume plugin to connect to Azure File Storage for persistent storage. The document includes code samples and step-by-step demonstrations of these Rancher and Docker capabilities on Azure.
AWS re:Invent 2016: Service Integration Delivery and Automation Using Amazon ...Amazon Web Services
Through a combination of Amazon ECS and open source technologies, customers are able to build portable CI/CD pipelines on AWS. As container based deployments become more complex, they require additional rigging for integration. In this session, we show how popular Apache products like Kakfa, Storm, and Zookeeper are being deployed on top of Amazon ECS. We hear from HERE, a provider of mapping data, technologies, and services to the automotive, consumer, and enterprise sectors about an approach that leverages Consul from Hashicorp and Amazon ECS clusters for short-cycle deployments and tag-based environment promotion.
Slides form Config Management Camp, looking at how you can take a collaborative GitFlow approach to Terraform using Remote State, Modules and Dynamically Generated Credentials using Vault
Slide deck from an Alfresco Webinar which can be viewed at http://blogs.alfresco.com/wp/webcasts/2009/05/alfresco-webcast-a-developers-guide-1-capabilities-architecture-optaros/
This presentation discusses what Alfresco is an options for working with Alfresco from a developer perspective.
The document introduces OpenFaaS, an open source serverless framework that allows users to easily create and deploy serverless functions. It discusses how OpenFaaS works with containers and can run on any infrastructure, provides examples of common use cases for serverless functions, and outlines how to write, build, deploy and invoke functions using OpenFaaS. The document also previews some of OpenFaaS' upcoming features and provides recommendations for where users can learn more.
DevOps is a set of practices that automates the processes between software development and IT teams, in order that they can build, test, and release software faster and more reliably.
This document provides steps to install and configure mod_ssl on CentOS/Fedora/Redhat to enable HTTPS on the Apache web server. It describes generating a self-signed certificate, editing the ssl.conf and httpd.conf configuration files to specify the certificate details and enable SSL, and restarting the Apache server to apply the changes.
Orchestrating Docker with Terraform and Consul by Mitchell Hashimoto Docker, Inc.
Terraform is a tool for building and safely iterating on infrastructure, while Consul provides service discovery, monitoring and orchestration. In this talk we discuss using Terraform and Consul together to build a Docker-based Service Oriented Architecture at scale. We use Consul to provide the runtime control plane for the datacenter, and Terraform is used to modify the underlying infrastructure to allow for elastic scalability.
Similaire à Alfresco TTL#157 - Troubleshooting Made Easy: Deciphering Alfresco mTLS Configuration (20)
Using Generative AI and Content Service Platforms togetherAngel Borroy López
Slides for FOSDEM 2024 session: https://fosdem.org/2024/schedule/event/fosdem-2024-1858-using-generative-ai-and-content-service-platforms-together/
Describes a framework that provides GenAI operations for documents using a REST API. LLMs are stored locally, so no data is sent away.
It also includes a sample integration with a Content Service Platform (Alfresco), to enhance documents and pictures context information.
Session recording is available in https://ftp.fau.de/fosdem/2024/h2213/fosdem-2024-1858-using-generative-ai-and-content-service-platforms-together.av1.webm
Enhancing Document-Centric Features with On-Premise Generative AI for Alfresc...Angel Borroy López
Oractical guide on integrating Alfresco Community with On-Premise Generative AI.
This session outlines the steps to enhance both existing and new content, demonstrating features such as classification, summarization, translation, and prompting. But this framework allows you to include additional features.
Source code is available in https://github.com/aborroy/alfresco-genai
This presentation describes different methods to produce Alfresco Docker Assets for Docker Compose deployment.
From the previous methods (based in Python, Yeoman and Docker) to the Docker Init with Templates approach.
The recent launch of the Docker Init command has significantly simplified the process of generating Dockerfiles and Docker Compose templates for containerized applications. This presentation aims to explore the evolution of Docker deployment resources generation process, comparing its approach prior to the Docker Init command release and discussing the way forward. Before the introduction of the Docker Init command, I've been delivering some projects like the "alfresco-docker-installer"[1], which provides custom scripts and configurations to streamline the process of deploying Alfresco in Docker containers. These kinds of projects use tools like Yeoman or raw Python. There are some differences between a Docker Template for a technology (Go, Python, Node or Rust) and a Docker Template for a product (like Alfresco) that may be covered when generating automatic deployment resources. This presentation will delve into the methodologies employed before the Docker Init command:
Custom Dockerfile Extension
Compose Template for a complete product deployment, including a set of services like the database, content repository, search engine, or web application
Configuration Management, including techniques such as environment variable injection, externalized configuration files, and configuration overrides
Following the release of the Docker Init command, this presentation will provide insights into the possibilities and advantages it brings to complex products Docker deployment process. A PoC of a Docker Plugin, including this product-oriented approach for docker init, will be demoed live. >> Note that the Open Source Alfresco product is used only to explain the concepts of building a Docker Compose generator with a real example.
This deck includes a description of the Transform Service available for Alfresco 7.4.0.
Secure configuration sample, relying on mTLS, is also discussed.
This presentation describes how to use Podman to replace Docker in the Alfresco 7.4.0 development process.
Alfresco platform is built using containerization technology. Alfresco can utilize containerization platforms like Podman, which provide the necessary tools and infrastructure to create, manage, and run containers.
Podman is presented as an alternative to Docker. Both Docker and Podman can be used effectively for Alfresco development. So consider your familiarity with the tools, preferred workflow, ecosystem support, security requirements, and any specific performance considerations to make the best choice for your Alfresco development needs.
CSP: Evolución de servicios de código abierto en un mundo Cloud NativeAngel Borroy López
Presentación realizada en Openexpo Europe 2023:
https://openexpoeurope.com/es/session/cuando-hyland-encontro-a-alfresco-evolucion-de-servicios-de-codigo-abierto-en-un-mundo-cloud-native/
Presenta una visión evolutiva de las plataformas de gestión documental: ECM, CSP y Cloud Native.
Incluye información relevante de los productos Alfresco, Nuxeo y Hyland Experience.
This presentation describes how to use the BPM Engine included with Alfresco ACS repository.
All the different APIs are covered: Workflow Console UI, REST API and Java API.
Support material for the blog post available in https://hub.alfresco.com/t5/alfresco-content-services-blog/alfresco-7-3-upgrading-to-transform-core-3-0-0/ba-p/315364
This presentation describes the differences between Alfresco Transform Engine and Alfresco Transform Core 3.0.0.
Deployment, configuration and extension topics for Transform Core are covered.
Practical information for Alfresco integration with AOS (Sharepoint Protocol), Google Drive, Microsoft 365, ONLYOFFICE and Collabora Online.
Additionally ADW support for ONLYOFFICE is provided by https://github.com/atolcd/adf-onlyoffice-extension#installation
Este documento proporciona recursos para aprender Docker, incluyendo documentación, libros, videos de YouTube y la comunidad Docker. Explica cómo instalar Docker en Windows, Mac y Linux, y cubre herramientas como Docker Desktop y Docker Hub. También describe los planes de suscripción disponibles para Docker.
This document summarizes a presentation about Alfresco Search Services 2.0. Key points include:
- Solr was updated to remove the custom content store and leverage more built-in Solr features like replication and backups. This improved performance and reduced disk usage.
- New date fields were added that break dates down into individual components like year, month, day, etc. to enable more granular search queries.
- Asynchronous maintenance actions were introduced to schedule and retry tasks like reindexing, purging, and fixing index issues in the background.
- Security was enhanced with support for mutual TLS and storing passwords in JVM properties instead of plain text files. Performance tracking and indexing controls
This document discusses reindexing large repositories in Alfresco. It covers the Alfresco SOLR architecture, the indexing process, scenarios that require reindexing, alternatives for deployment during reindexing to minimize downtime, monitoring and profiling tools, and future improvements planned for Search Services 2.0 to optimize indexing performance. Benchmark results are presented showing improvements that reduced reindexing time for 1.2 billion documents from 21 days to 10 days.
Artificia Intellicence and XPath Extension FunctionsOctavian Nadolu
The purpose of this presentation is to provide an overview of how you can use AI from XSLT, XQuery, Schematron, or XML Refactoring operations, the potential benefits of using AI, and some of the challenges we face.
Malibou Pitch Deck For Its €3M Seed Roundsjcobrien
French start-up Malibou raised a €3 million Seed Round to develop its payroll and human resources
management platform for VSEs and SMEs. The financing round was led by investors Breega, Y Combinator, and FCVC.
Measures in SQL (SIGMOD 2024, Santiago, Chile)Julian Hyde
SQL has attained widespread adoption, but Business Intelligence tools still use their own higher level languages based upon a multidimensional paradigm. Composable calculations are what is missing from SQL, and we propose a new kind of column, called a measure, that attaches a calculation to a table. Like regular tables, tables with measures are composable and closed when used in queries.
SQL-with-measures has the power, conciseness and reusability of multidimensional languages but retains SQL semantics. Measure invocations can be expanded in place to simple, clear SQL.
To define the evaluation semantics for measures, we introduce context-sensitive expressions (a way to evaluate multidimensional expressions that is consistent with existing SQL semantics), a concept called evaluation context, and several operations for setting and modifying the evaluation context.
A talk at SIGMOD, June 9–15, 2024, Santiago, Chile
Authors: Julian Hyde (Google) and John Fremlin (Google)
https://doi.org/10.1145/3626246.3653374
UI5con 2024 - Keynote: Latest News about UI5 and it’s EcosystemPeter Muessig
Learn about the latest innovations in and around OpenUI5/SAPUI5: UI5 Tooling, UI5 linter, UI5 Web Components, Web Components Integration, UI5 2.x, UI5 GenAI.
Recording:
https://www.youtube.com/live/MSdGLG2zLy8?si=INxBHTqkwHhxV5Ta&t=0
SMS API Integration in Saudi Arabia| Best SMS API ServiceYara Milbes
Discover the benefits and implementation of SMS API integration in the UAE and Middle East. This comprehensive guide covers the importance of SMS messaging APIs, the advantages of bulk SMS APIs, and real-world case studies. Learn how CEQUENS, a leader in communication solutions, can help your business enhance customer engagement and streamline operations with innovative CPaaS, reliable SMS APIs, and omnichannel solutions, including WhatsApp Business. Perfect for businesses seeking to optimize their communication strategies in the digital age.
E-commerce Development Services- Hornet DynamicsHornet Dynamics
For any business hoping to succeed in the digital age, having a strong online presence is crucial. We offer Ecommerce Development Services that are customized according to your business requirements and client preferences, enabling you to create a dynamic, safe, and user-friendly online store.
Transform Your Communication with Cloud-Based IVR SolutionsTheSMSPoint
Discover the power of Cloud-Based IVR Solutions to streamline communication processes. Embrace scalability and cost-efficiency while enhancing customer experiences with features like automated call routing and voice recognition. Accessible from anywhere, these solutions integrate seamlessly with existing systems, providing real-time analytics for continuous improvement. Revolutionize your communication strategy today with Cloud-Based IVR Solutions. Learn more at: https://thesmspoint.com/channel/cloud-telephony
Everything You Need to Know About X-Sign: The eSign Functionality of XfilesPr...XfilesPro
Wondering how X-Sign gained popularity in a quick time span? This eSign functionality of XfilesPro DocuPrime has many advancements to offer for Salesforce users. Explore them now!
Need for Speed: Removing speed bumps from your Symfony projects ⚡️Łukasz Chruściel
No one wants their application to drag like a car stuck in the slow lane! Yet it’s all too common to encounter bumpy, pothole-filled solutions that slow the speed of any application. Symfony apps are not an exception.
In this talk, I will take you for a spin around the performance racetrack. We’ll explore common pitfalls - those hidden potholes on your application that can cause unexpected slowdowns. Learn how to spot these performance bumps early, and more importantly, how to navigate around them to keep your application running at top speed.
We will focus in particular on tuning your engine at the application level, making the right adjustments to ensure that your system responds like a well-oiled, high-performance race car.
What to do when you have a perfect model for your software but you are constrained by an imperfect business model?
This talk explores the challenges of bringing modelling rigour to the business and strategy levels, and talking to your non-technical counterparts in the process.
When it is all about ERP solutions, companies typically meet their needs with common ERP solutions like SAP, Oracle, and Microsoft Dynamics. These big players have demonstrated that ERP systems can be either simple or highly comprehensive. This remains true today, but there are new factors to consider, including a promising new contender in the market that’s Odoo. This blog compares Odoo ERP with traditional ERP systems and explains why many companies now see Odoo ERP as the best choice.
What are ERP Systems?
An ERP, or Enterprise Resource Planning, system provides your company with valuable information to help you make better decisions and boost your ROI. You should choose an ERP system based on your company’s specific needs. For instance, if you run a manufacturing or retail business, you will need an ERP system that efficiently manages inventory. A consulting firm, on the other hand, would benefit from an ERP system that enhances daily operations. Similarly, eCommerce stores would select an ERP system tailored to their needs.
Because different businesses have different requirements, ERP system functionalities can vary. Among the various ERP systems available, Odoo ERP is considered one of the best in the ERp market with more than 12 million global users today.
Odoo is an open-source ERP system initially designed for small to medium-sized businesses but now suitable for a wide range of companies. Odoo offers a scalable and configurable point-of-sale management solution and allows you to create customised modules for specific industries. Odoo is gaining more popularity because it is built in a way that allows easy customisation, has a user-friendly interface, and is affordable. Here, you will cover the main differences and get to know why Odoo is gaining attention despite the many other ERP systems available in the market.
WWDC 2024 Keynote Review: For CocoaCoders AustinPatrick Weigel
Overview of WWDC 2024 Keynote Address.
Covers: Apple Intelligence, iOS18, macOS Sequoia, iPadOS, watchOS, visionOS, and Apple TV+.
Understandable dialogue on Apple TV+
On-device app controlling AI.
Access to ChatGPT with a guest appearance by Chief Data Thief Sam Altman!
App Locking! iPhone Mirroring! And a Calculator!!
10. TLS Protocol
TLS Protocol
client
server
TLS Protocol
Use TLSv1.3
• Apache Tomcat, set protocols to TLSv1.3 in Connector.SSLHostConfig
• Jetty, set TLSv1.3 in Java property jdk.tls.client.protocols
• Spring Boot, set TLSv1.3 in SERVER_SSL_ENABLED_PROTOCOLS
Alternatively use TLS 1.2 with ECDHE and AES-GCM
hardcoded
• TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
• TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
When multiple TLS versions are available in the server, the
client will select one
• The default for security handshakes in JDK 17 is TLS 1.3
11. Keystore Type and Certificates
Use Keystore Type PKCS12
• Avoid using non-standard formats like JKS or JCEKS
Certificates
• Algorithm
• RSA, widely supported across different platforms and libraries
• ECDSA, equivalent security with shorter key length, more
performant and efficient for mTLS
• Minimum key length
• 2048 bits for RSA
• 224 bits for EC
• Usage
• Server Authentication – OID 1.3.6.1.5.5.7.3.1
• Client Authentication – OID 1.3.6.1.5.5.7.3.2
keystore KEY
keystore TRUST
…
…
12. Certificate Authority
Self-Signed
• Use Alfresco SSL Generator project, which depends on
OpenSSL for certificate generation
• Use alternative software able to issue certificates
according with the previous recommendations
• Later in this session, smallstep will be used
Public Authority
• Use OpenSSL with Let’s Encrypt, set up a cron job to
re-fetch certificates regularly
• Requires active Internet connection to Alfresco containers
• Use a web hosting provider, like AWS
CA
Self-Signed
Public Authority
18. Repository Configuration (client)
Add environment variables containing passwords
-Dssl-keystore.password=keystore
-Dssl-truststore.password=truststore
Set Alfresco Repository Java Properties
solr.host=localhost
solr.port.ssl=8983
solr.secureComms=https
encryption.ssl.keystore.type=PKCS12
encryption.ssl.keystore.location=/usr/local/tomcat/keystore/ssl.keystore
encryption.ssl.truststore.type=PKCS12
encryption.ssl.truststore.location=/usr/local/tomcat/keystore/ssl.truststore
When using the same password
for keystore and keys, no aliases
setting is required
19. Search Keystores
$ keytool -v -list -keystore keystores/solr/ssl.repo.client.truststore
Alias name: ssl.repo
Owner: CN=Alfresco CA, OU=Alfresco, O=Hyland, L=Cleveland, ST=OH, C=US
Issuer: CN=Alfresco CA, OU=Alfresco, O=Hyland, L=Cleveland, ST=OH, C=US
Alias name: alfresco.ca
Owner: CN=Repository, OU=Alfresco, O=Hyland, ST=OH, C=US
Issuer: CN=Alfresco CA, OU=Alfresco, O=Hyland, L=Cleveland, ST=OH, C=US
$ keytool -v -list -keystore keystores/solr/ssl.repo.client.keystore
Alias name: ssl.repo.client
Owner: CN=Search, OU=Alfresco, O=Hyland, ST=OH, C=US
Issuer: CN=Alfresco CA, OU=Alfresco, O=Hyland, L=Cleveland, ST=OH, C=US
RSA 2048 bits
• Server Authentication
• Client Authentication
21. Search Configuration (client)
Add environment variables containing passwords
-Dssl-keystore.password=keystore
-Dssl-truststore.password=truststore
Set solrcore.properties Java Properties (in each core or in template)
alfresco.host=localhost
alfresco.port=8443
alfresco.secureComms=https
alfresco.encryption.ssl.keystore.location=/opt/alfresco-search-
services/keystore/ssl.repo.client.keystore
alfresco.encryption.ssl.keystore.type=PKCS12
alfresco.encryption.ssl.truststore.location=/opt/alfresco-search-
services/keystore/ssl.repo.client.truststore
alfresco.encryption.ssl.truststore.type=PKCS12
When using the same password
for keystore and keys, no aliases
setting is required
22. Sample deployment with Docker Compose
https://github.com/aborroy/alfresco-mtls-debugging-kit/tree/main/docker
26. Alfresco Search Services
Solr REST API Action
Deploy as plugin
alfresco-http-java-client.jar
solr-http-java-client.jar
config/solr.xml
Source code
https://github.com/aborroy/alfresco-mtls-debugging-
kit/tree/main/addons/solr-http-java-client
App URL
https://localhost:8983/solr/admin/cores?action=HTTP-
CLIENT&coreName=alfresco
Credentials
Client certificate, like browser.p12
27. Command line
Spring Boot command line application
Run as program
$ java -jar target/mtls-conf-app.jar
ERRORS for ENDPOINT:
Current truststore seems to be wrong. It does not include TRUST certificates provided by the endpoint.
ERRORS DETAIL:
sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to
requested target
Source code
https://github.com/aborroy/alfresco-mtls-debugging-kit/tree/main/apps/mtls-conf-app
29. Lab
Use ECC 256 bits certificates for ECDSA with step-ca
• Around 10% faster than RSA 2048 bits for Alfresco mTLS
• Less bandwidth consumption
• Higher security (as RSA 2048 is equivalent to ECC 224)
Source code: https://github.com/aborroy/alfresco-mtls-debugging-kit/tree/main/step-ca
# Start step-ca container, default CA will be created in “step” folder
$ docker compose up
# Install step CLI
$ brew install step
# Get CA password
$ cat step/secrets/password
ZuSJLBo6uRtlvzGe0z1i5ReqU2tpncl19RBUIf5V
30. Lab
# Create a certificate for alfresco, use “keystore” password to protect the key
$ step certificate create alfresco alfresco.crt alfresco.key
--profile leaf --not-after=8760h --bundle --ca step/certs/root_ca.crt
--ca-key step/secrets/root_ca_key
# Create a certificate for solr, use “keystore” password to protect the key
$ step certificate create solr solr.crt solr.key
--profile leaf --not-after=8760h --bundle --ca step/certs/root_ca.crt
--ca-key step/secrets/root_ca_key