Skip to main content

Re: Glassfish users list mangles text of posts

No replies
Joined: 2008-05-28

Hi David,

I delete them immediately since they are an unreadable mess. I'm sure I'm not the only one. It affects anything posted via the web thats more then 1 line long.

Here's an example from this morning. This post was titled, "Using a client certificate in a HTTPS connection between a GlassFish server and an Android app". As you can see everything is left justified, all blank lines are removed etc. Its like a giant run on sentence to look at. This is one of the 'better' ones I guess you could say. Without the formatting its one giant ad for Tylenol.

But really its not just this post its everything that is submitted via the web forum. Once it is reflected to e-mail its mangled. Anything that is sent to the list via e-mail correctly retains its formatting in both the web forums and the e-mail list.

If you look at the same message in the web forums you would see formatting and spacing and blank lines.

Good luck finding this message on the forums though, the advanced search interface is terrible. The design of the time range constraints ('Created Between' & 'And') leaves one scratching their head as to exactly what format they expect for their input. Simple time/date picker anyone?!

Then there's the search results themselves. How are they ordered? Most relevant first? Oldest first? I can't tell. I want to re-order them but it doesn't look like I can.


Hi there, Like you can see in the title I want to create a web service which
I'm developing with NetBeans 7 and which should run on the integrated
GlassFish 3.1 server. The web service should then be called from an android
app over a SSL secured connection. In the android app I am using the SOAP
library ksoap2 [1] to get this done. After a while I was able to establish a
HTTPS connection whereas the client authenticates himself with a username and
a password. So I was just using the default "file" as the standard-realm on
my GlassFish server. In my android app I therefore had to add a security
header to the SOAP envelope I'm sending which contained the username and
password of the user which I created in the GlassFish Administration Tool.
Everything worked fine and I could reach the WSDL file of my web service with
my browser under the following address. So my
Netbeans Web Application Project has the name STAwebservice_ssl and my web
service is the class in the package
de.stapf.staws.stawebservice Now I want the client rather to use a
certificate than the username/password credentials to authenticate himself.
So I used the following documentations to set this up. [2] [3]
So I expected that when I try to reach the WSDL file with my web brower I
would get some warning from the server because I haven't imported my own
certificate in the browser yet. But instead I was just getting an Error 324
ERR_EMPTY_RESPONSE from the server. There are no exceptions thrown in the
GlassFish console. So I would be glad if someone could take a look at the
configuration steps I took if those where the right ones and if I just set a
wrong path and thats why I am getting nothing from the server or if am
missing something important here. *Configuration Steps* *1.* In the GlassFish
Administration Tool (config -> server-config -> security) I set the
standard-realm to certificate *2.* Under confi -> server-config -> security
-> realms -> certificate, I assigend it to the group User and added the
property Name=clientAuth Value=true *3.* I went to my Web Application Project
in Netbeans , right clicked on the web service (stawebservice) -> Edit Web
Service Attributes and in the Secure Service Section where I chose Transport
Security (SSL) -> Configure, I checked Require Client Certificate *4.* Now I
set all the attributes in the web.xml file of my web application project like
in the tutorial I posted. I guesst it's best if I just post the web.xml file
here . <?xml version="1.0" encoding="UTF-8"?> STAwebservice_ssl
de.stapf.staws.stawebservice.stawebservice User STAwebservice_ssl
/STAwebservice_ssl/stawebservice 30 index.jsp Constraint1 User /* User
CONFIDENTIAL CLIENT-CERT certificate User *5.* Now I thought the next step
would be the mapping of the created security role to a group. Since I had no
sun-web.xml file in my projekt I created a glassfish-web.xml in the WEB-INF
folder to set the mapping and I think its working because before I did that
the glassfish server gave me a warning that there is nothing assigned to the
role User. Anyway, this is how my glassfish-web.xml file looks like <?xml
version="1.0" encoding="UTF-8"?> User EmmanuelSP User STAwebservice_ssl
EmmanuelSP Keep a copy of the generated servlet class' java code. By the way,
what exactly is the tag for? I didnt't really get that. I thought the value
entered here is the Common Name (CN) the client certificate has to have. This
is why I entered EmmanuelSP because thats the CN of my selfsigned certificate
which I imported in cacerts.jks and which wanted to import in the browser to
test the connection. If its not like that, how does the server actually check
if the certificate the client presents is the right one? Does is just take a
look if the same certificate is available in the cacerts.jsk keystore? So
these are the configuration steps I took. Did I miss something? I got a
little bit confused with all the configuration stuff. Thanks to everyone who
read my post, maybe someone can give me a hint. Regards, Emmanuel

On Nov 11, 2012, at 3:34 AM, David Delabassee wrote:

> Hi Noah,
> This is not something easy to fix as we don't control that part of the infrastructure.
> In some case, (some?) formatting goes well when converted to mail. Can you point me to a post that has been screwed?
> Thanks,
> --David
> On 10 Nov 2012, at 22:14, Noah White wrote:
>> This has been mentioned before, many *months* before, but I want to raise it again.
>> Posts made via the web interface to this list lose their formatting when reflected via e-mail. This makes them useless and impacts the quality of communication facilitated here.
>> Please fix this now. It's really an embarrassment that Oracle can't maintain something as simple as a forum/mailing list.
>> Thankfully this logistical challenge in no way reflects the feedback/interaction provided by Oracle technical staff which continues to be very good.
>> -Noah
> --
> David Delabass