Daily Log for #alfresco IRC Channel

Alfresco discussion and collaboration. Stick around a few hours after asking a question.

Official support for Enterprise subscribers: support.alfresco.com.

Joining the Channel:

Join in the conversation by getting an IRC client and connecting to #alfresco at Freenode. Our you can use the IRC web chat.

More information about the channel is in the wiki.

Getting Help

More help is available in this list of resources.

Daily Log for #alfresco

2019-07-25 06:50:08 GMT <alfresco-discord> <sumit> Thanks @dgradecak @hi-ko @MorganP for your responses. My comments are below:

2019-07-25 07:04:32 GMT <alfresco-discord> <dgradecak> @MorganP didn't he say this: "users not gets searched by non-admin user while admin is able to search all the user"

2019-07-25 07:05:58 GMT <alfresco-discord> <dgradecak> Angel explained that very well on his blog and personnaly I saw the same behavior, although not through CSV import. but that csv is one part of the problem

2019-07-25 07:06:53 GMT <alfresco-discord> <dgradecak> so his admin user probably has "EN" locale set in his broswer, while other users probably have something else and the search issue is there

2019-07-25 07:07:26 GMT <alfresco-discord> <MorganP> As an Admin, I always have a normal account as well

2019-07-25 07:07:35 GMT <alfresco-discord> <MorganP> to test such things

2019-07-25 07:07:54 GMT <alfresco-discord> <MorganP> I don't know it's not very clear

2019-07-25 07:09:08 GMT <alfresco-discord> <MorganP> it is not very common for a single user to have a different browser setting. Either there are several users in this case or it's not related to Solr

2019-07-25 07:09:20 GMT <alfresco-discord> <dgradecak> ok

2019-07-25 07:09:23 GMT <alfresco-discord> <MorganP> I mean not related to localization

2019-07-25 08:34:43 GMT <alfresco-discord> <sumit> @dgradecak I have also tried this user searching in the same browser (firefox/chrome) first by admin and then by some non-admin but some csv users can't be searched. So can locale be different or specific to user if we are accessing in same browser.

2019-07-25 08:38:26 GMT <alfresco-discord> <MorganP> No the browser is defining which local is used by a user

2019-07-25 08:38:46 GMT <angelborroy> I’m late in this conversation…

2019-07-25 08:38:51 GMT <alfresco-discord> <MorganP> There are some addons/extensions to change that but you need to install these so you would probably know if there is some

2019-07-25 08:38:54 GMT <angelborroy> … but you’re right

2019-07-25 08:39:16 GMT <angelborroy> If you are searching from the same browser with different users, it should not be a locale problem

2019-07-25 08:39:45 GMT <alfresco-discord> <sumit> @hi-ko I have compared the properties for users which is able to search by non-admin and another which is not through node browser. but both looks same. In my solr4 configs shared.properties file is not activated. only sample file there.

2019-07-25 08:40:21 GMT <alfresco-discord> <MorganP> If I'm not wrong, the locale issue is only for Solr6

2019-07-25 08:40:48 GMT <alfresco-discord> <MorganP> In Solr4, it was the default setting so the issue for locale shouldn't be there in Solr4, which would confirm it's not that

2019-07-25 08:41:08 GMT <angelborroy> Right, SOLR 4 is shipped with cross locale by default

2019-07-25 08:49:12 GMT <alfresco-discord> <sumit> @MorganP Yes, it looks a problem created by commas(") user entries in csv. I have tried like this csv in alfresco out-of-the box instance ( no customizations/add-on) theree times. On csv uploading it was showing Processing... continuously and not displayed screen with the list of created users or already exists after user create. While if csv has all user entries with commas(") it returned back with

2019-07-25 08:49:13 GMT <alfresco-discord> the status like user created or already exists. but in commas entry case also all users are created.

2019-07-25 08:50:13 GMT <alfresco-discord> <sumit> Now if the CSV has no user entry with commas(") all users are able to search by non-admin.

2019-07-25 08:50:41 GMT <alfresco-discord> <MorganP> Commas is this: ,

2019-07-25 08:51:05 GMT <alfresco-discord> <MorganP> it's what separated the different "columns/fields" in a CSV file

2019-07-25 08:51:10 GMT <alfresco-discord> <MorganP> Comma Separated Values

2019-07-25 08:51:33 GMT <alfresco-discord> <sumit> But if any user is with commas (") then all 3 user not get searched by non-admin. while admin can search all 3.

2019-07-25 08:51:35 GMT <alfresco-discord> <sumit> user1@email.com,User,1,user1@email.com user2""@email.com",User,"2""","user2""@email.com" user3@email.com,User,3,user3@email.com

2019-07-25 08:53:05 GMT <alfresco-discord> <sumit> This is inverted comma (") case.

2019-07-25 08:53:39 GMT <alfresco-discord> <sumit> comma(,) separtes values, that is fine.

2019-07-25 08:56:30 GMT <alfresco-discord> <sumit> In my production the users was around 2600 with around 15 users with ("). and from this list some users are able to search by non-admin and some users not. it's not like that no one user is not getting search.

2019-07-25 09:18:31 GMT <hi-ko> sumit: could you please either activat shared properties file with identifier definition for useName or set this in your core definition and then reindex at least the use node. I guess your problems relate to the stemming/stop words done by solr which should not take place for identifiers

2019-07-25 09:41:23 GMT <alfresco-discord> <sumit> Ok @hi-ko. Let me try and share you the result.

2019-07-25 09:42:36 GMT <alfresco-discord> <dgradecak> on my side search by username is not the problem and it is correctly configured. Actually I was referencing to search by name/lastname not username

2019-07-25 09:43:51 GMT <alfresco-discord> <dgradecak> and it was SOLR locale of course, that is why @sumit 's issue associated me to the same problem

2019-07-25 09:46:03 GMT <alfresco-discord> <sumit> @hi-ko I am just guessing that if solr stops some words then those users should not be search by admin also .

2019-07-25 09:46:38 GMT <alfresco-discord> <sumit> and some are getting search from non-admin also.

2019-07-25 09:51:53 GMT <alfresco-discord> <sumit> @dgradecak If it is SOLR locale then what are steps you took to resolve this. I will try that also. actually serious problem came for me in my production because out of 2600 I found around 27 users not getting search by non-admin. This number may increase as I can't check every user. If I delete that user and recreated it manually and not without an " csv then these users start to search by non-admin.

2019-07-25 09:52:55 GMT <alfresco-discord> <dgradecak> @sumit as others said, if you are running solr4 you should not be impacted by that locale issue

2019-07-25 09:53:32 GMT <alfresco-discord> <sumit> We have put a lot of permissions to these users and made site members also added in a lot of groups. so we recreate them to fix this then a lot of manual work we have to take. also not sure how much such users from 2600.

2019-07-25 09:53:34 GMT <alfresco-discord> <dgradecak> alfresco 6 ships with solr6 or Alfresco search services actually, and that locale issue impacts that version

2019-07-25 09:54:38 GMT <alfresco-discord> <sumit> this 2600 csv was having around 15 user entries having commas(") like user2""@email.com",User,"2""","user2""@email.com". which created this isse.

2019-07-25 09:54:55 GMT <alfresco-discord> <dgradecak> if you pin pinted that your issue are those characters, than have a post processing of your CSV files. that would be the best advice or have a custom importer on the alfresco side

2019-07-25 09:55:55 GMT <alfresco-discord> <dgradecak> wouldn't be much work importing those users via a cusom spring boot application and using alfresco REST api, depends on your alf version also

2019-07-25 09:55:56 GMT <alfresco-discord> <sumit> I am using alfresco 5.2 community with solr4 on linux server.

2019-07-25 09:56:12 GMT <alfresco-discord> <dgradecak> 5.2 onwards is ok with the public rest apis

2019-07-25 09:56:54 GMT <alfresco-discord> <dgradecak> other guys might have a better idea, but now after all the info I suspect your issue is not with solr like I understood earlier

2019-07-25 10:04:28 GMT <alfresco-discord> <dgradecak> @sumit here you have it for solr 6 https://github.com/aborroy/search-services-cross-locale

2019-07-25 10:04:29 GMT <alfbot> Title:GitHub - aborroy/search-services-cross-locale: Alfresco Search Services deployment for Cross Locale users (at github.com)

2019-07-25 10:05:00 GMT <alfresco-discord> <dgradecak> although this guy does not look that young anymore 😉

2019-07-25 10:05:10 GMT <alfresco-discord> <dgradecak> it is a CGI 😉

2019-07-25 10:05:43 GMT <angelborroy> Who are calling you “CGI”, man? :-P

2019-07-25 10:06:11 GMT <angelborroy> btw, @dgradecak did you see that?

2019-07-25 10:06:12 GMT <angelborroy> https://twitter.com/AngelBorroy/status/1154325467320725506?s=20

2019-07-25 10:06:41 GMT <angelborroy> It’s the right scenario to add your template generator as a new Transformation Service!

2019-07-25 10:06:48 GMT <alfresco-discord> <dgradecak> opa .. I will check that

2019-07-25 10:06:59 GMT <alfresco-discord> <dgradecak> great indeed

2019-07-25 10:07:37 GMT <alfresco-discord> <dgradecak> I made some video of the "UI" although the UI is not yet in community need to remove my "enterprise" features from it somehow

2019-07-25 10:07:41 GMT <angelborroy> Well, probably requiring ActiveMQ for real in Community it’s not great news for someone

2019-07-25 10:08:06 GMT <alfresco-discord> <dgradecak> let me know your opinion 😉 https://www.youtube.com/playlist?list=PLZ_nwi-ZRplgy3u9t6XGhzbVY44GRj4KQ

2019-07-25 10:09:00 GMT <alfresco-discord> <dgradecak> hmmmm ... are you talking about some german guys? but indeed amq will complicate our "simple" deployments

2019-07-25 10:10:29 GMT <angelborroy> The videos are great, but I’m missing your voice instead of that chilly music in the background

2019-07-25 10:10:46 GMT <alfresco-discord> <dgradecak> you would not say it is great if my voice was there 😉

2019-07-25 10:11:18 GMT <angelborroy> I tried this approach

2019-07-25 10:11:19 GMT <angelborroy> https://www.youtube.com/watch?v=UqQPQWthab0

2019-07-25 10:11:29 GMT <angelborroy> No voice but subtitles

2019-07-25 10:12:24 GMT <alfresco-discord> <dgradecak> indeed, I already had that remark for the 3 minutes video at least

2019-07-25 10:12:31 GMT <alfresco-discord> <dgradecak> will need to do some training about that 😉

2019-07-25 10:12:46 GMT <alfresco-discord> <dgradecak> which software are you using?

2019-07-25 10:13:06 GMT <angelborroy> iMovie

2019-07-25 10:13:10 GMT <angelborroy> You know I’m a Mac guy

2019-07-25 10:13:17 GMT <alfresco-discord> <dgradecak> arf 😉

2019-07-25 10:13:23 GMT <angelborroy> It’s pretty simple, despite the result is not that good

2019-07-25 10:14:00 GMT <alfresco-discord> <dgradecak> I did my stuff with OBS studio, a free tool. powerful but a bit complicated to understand when begining

2019-07-25 10:14:16 GMT <angelborroy> I’m using OBS also for the recording

2019-07-25 10:14:25 GMT <angelborroy> After that I’m using iMovie for the subtitles

2019-07-25 10:14:56 GMT <alfresco-discord> <dgradecak> aha I see, I was also trying the subtitle with other software. but good to know that you do the same

2019-07-25 10:17:04 GMT <alfresco-discord> <dgradecak> I wonder how this transformation stuff will evolve. I was discussing about having a remote transformer for community but was missing a "REST interface" so we can build one

2019-07-25 10:17:23 GMT <angelborroy> Sure

2019-07-25 10:17:28 GMT <alfresco-discord> <dgradecak> is the jodconverter going to be removed from cummunity at the end as they announced it?

2019-07-25 10:17:34 GMT <angelborroy> From 6.2 you can build your own transformation server

2019-07-25 10:17:59 GMT <alfresco-discord> <PJ> Does anybody knows how to configure a multiple selection in APS 1.9 using a select list or typeahead component?

2019-07-25 10:18:00 GMT <angelborroy> JodConverter is inside one of this Transformation Engines

2019-07-25 10:18:06 GMT <alfresco-discord> <PJ> We can't use checkboxes

2019-07-25 10:18:58 GMT <alfresco-discord> <dgradecak> indeed, for pdf in my templating engine I use the same jodconverter with spring boot

2019-07-25 10:19:44 GMT <alfresco-discord> <dgradecak> will have a look probably this week at 6.2 and trnasformation. But will be a good discussion point with you and afaust. I just do not want to spend time developing something if it will be part of community somehow

2019-07-25 10:20:06 GMT <alfresco-discord> <dgradecak> even if I will check this with my templating solution of course

2019-07-25 10:32:18 GMT <AFaust> Ahh frak... the darn QuickShare service can also create one of those dummy "System" cm:person objects due to bad coding (getPerson(String) call instead of getPerson(String, false)) - it can even implicitly re-create deleted people that way...

2019-07-25 10:33:10 GMT <AFaust> angelborroy: Can you organise an internal Alfresco workshops about "Alfresco APIs that are really, really bad and should be factored out everywhere"...

2019-07-25 10:41:49 GMT <angelborroy> I don’t think so

2019-07-25 10:41:51 GMT <angelborroy> But I can try

2019-07-25 10:54:40 GMT <hi-ko> sumit: so it is "just" a misbehavior of the csv user upload webscript which somehow parses quotes/commas not the way you expect. The question I now have is: why could an admin find that user and a normal user not? What are the differences on the user nodes? If you find out these differences it should be very simple to create a javascript in JS console interating over all users and fix the wrong/missing properties.

2019-07-25 11:02:05 GMT <hi-ko> sumit: we never use that csv upload. beside the fact that I would always prefer to not create users in the alfresco internal store rather than syncing with an AD/samba4/LDAP we write just simple javascripts which read data from files stored in the repo or uploaded to a custom webscript. I don't know if the user CSV upload webscript works idempotent which should allow to fix your CSV data and upload the file again but you can still write your own script to

2019-07-25 11:02:05 GMT <hi-ko> iterate over the lines and alfresco unser nodes.

2019-07-25 11:36:39 GMT <alfresco-discord> <sumit> @hi-ko Sharing you the result that this not worked. "could you please either activat shared properties file with identifier definition for useName or set this in your core definition and then reindex at least the use node"

2019-07-25 11:50:00 GMT <alfresco-discord> <sumit> User-search-by-non-admin

2019-07-25 11:50:00 GMT <alfresco-discord> <sumit> https://cdn.discordapp.com/attachments/451644531323174914/603916854536175626/user-search-by-non-admin.png

2019-07-25 11:50:24 GMT <alfresco-discord> <sumit> User-not-search-by-non-admin

2019-07-25 11:50:24 GMT <alfresco-discord> <sumit> https://cdn.discordapp.com/attachments/451644531323174914/603916954419462144/user-not-search-by-non-admin.png

2019-07-25 11:51:07 GMT <alfresco-discord> <sumit> Above are the node browser properties for both the user which can be and can not be search by non-admin and it looks same.

2019-07-25 13:13:05 GMT <alfresco-discord> <monica> Hello everyone.. I need a help

2019-07-25 13:13:07 GMT <alfresco-discord> <monica> I am trying to figure out which policy should be used to create behaviour which should trigger when we update or delete permissions of user on a document or folder in manage permissions option , I have done the same thing on site for site members , when any user is removed from the site a behaviour triggers OnDeleteChildAssociation and bind it with TYPE_AUTHORITY_CONTAINER and ASSOC_MEMBER , but could

2019-07-25 13:13:08 GMT <alfresco-discord> not find anyway to do the same on folder or document.

2019-07-25 13:29:46 GMT <AFaust> monica: There is no documented / official type of policy you can use for such a use case, e.g. reacting to permission assignments / removals.

2019-07-25 13:31:01 GMT <AFaust> Technically, since some 5.2.x version, there are PermissionServicePolicies (https://github.com/Alfresco/alfresco-repository/blob/master/src/main/java/org/alfresco/repo/security/permissions/PermissionServicePolicies.java), but they are not marked as @AlfrescoPublicApi and should generally not be relied upon.

2019-07-25 13:31:02 GMT <alfbot> Title:alfresco-repository/PermissionServicePolicies.java at master · Alfresco/alfresco-repository · GitHub (at github.com)

2019-07-25 13:31:19 GMT <AFaust> Also, their behaviour is partially inconsistent with the more commen, well supported behaviours.

2019-07-25 13:31:49 GMT <AFaust> e.g. you cannot bind on aspects, only type binds will be respected

2019-07-25 13:32:52 GMT <AFaust> Some of those behaviours don't even respect the real node type, and always fire on the sys:base type

2019-07-25 13:33:17 GMT <AFaust> ^^ the policies related to permission inheritance are affected by this

2019-07-25 13:33:44 GMT <AFaust> angelborroy: Do you know who cpopa is (Alfresco engineer)?

2019-07-25 13:34:11 GMT <AFaust> Full name is Constantin Popa...

2019-07-25 13:35:30 GMT <AFaust> That person needs to be congratulated for this "achievement" of barely useable, hugely inconsistent, non-official policies. And whoever reviewed + approved this...

2019-07-25 13:37:29 GMT <angelborroy> I don’t know this guy, but I think he’s working in the Repo Team

2019-07-25 13:38:56 GMT <AFaust> To be expected of someone doing a commit to alfresco-repository project...

2019-07-25 13:39:49 GMT <angelborroy> Well… many people is commiting alfresco-repository

2019-07-25 13:39:51 GMT <angelborroy> Even me

2019-07-25 13:40:33 GMT <AFaust> Haven't seen a lof of him though that I can remember. Maybe it was one of his first commits and he just wasn't trained / taught about some core principles of Alfresco behaviours at that time (from various impressions Alfresco onboarding leaves some things to be desired)

2019-07-25 13:48:53 GMT <alfresco-discord> <monica> Thanks for your help AFaust

2019-07-25 14:29:42 GMT <alfresco-discord> <dgradecak> AFaust: do you mean we will get more "incosistencies" sine angelborroy is commiting code to the repo? 😉

2019-07-25 14:30:22 GMT <AFaust> Well, since angelborroy has been involved with Alfresco for a quite a while, I don't expect too many mistakes because the onboarding did not cover essential basics...

2019-07-25 14:31:05 GMT <AFaust> And so far he has asked for feedback / comments on some of his work, so maybe we can catch his "inconsistencies" before they make it into the product...

2019-07-25 14:31:17 GMT <alfresco-discord> <dgradecak> was kidding a bit 😉

2019-07-25 14:31:24 GMT <AFaust> Same here...

2019-07-25 14:32:16 GMT <alfresco-discord> <dgradecak> what is the status of your share oauth inetgration?

2019-07-25 14:34:30 GMT <AFaust> Working on it at the moment. Currently trying to get an additional button in login form to work which enables "lazy login" redirect after I did the "forced auth redirect" on Monday.

2019-07-25 14:35:17 GMT <AFaust> Also had to work around some inaccessible code in Alfresco (SlingshotLoginController) in a secondary filter, so the user would have their group memberships loaded after Keycloak login

2019-07-25 14:36:10 GMT <AFaust> When the login form works, the only thing missing is handling logout and some of the Keycloak-specific admin URLs / operations (e.g. backchannel logout)

2019-07-25 14:39:26 GMT <AFaust> If possible, I'd like to put that into my customers test environment this evening (even without Keycloak admin URLs / operations)

2019-07-25 14:52:43 GMT <alfresco-discord> <dgradecak> Sounds you made good progress

2019-07-25 14:52:57 GMT <alfresco-discord> <dgradecak> Will it be part of ootb or so?

2019-07-25 14:56:20 GMT <AFaust> Well, initially I will publish it as an Acosix module under Apache license. I will then contact John Iball and team who where looking for providing such a feature out-of-the-box, but from whom I haven't heard anything since our initial emails in March / April...

2019-07-25 14:57:44 GMT <AFaust> I assume I will continue to provide this module in any case, since it can be installed to retrofit support on Alfresco 6.0 and 6.1, so people don't have to upgrade to 6.2/7.0 only for that feature.

2019-07-25 14:59:05 GMT <AFaust> I am also considering a forked / separate Authentication subsystem on the Repository tier, since the default Identity Service one is just a bit too minimal. E.g. I'd like to support Admin Console on Repository to be authenticated via Keycloak, which currently is not supported (basically only support for ReST API, since the subsystem relies on client always providing bearer token)

2019-07-25 15:25:05 GMT <alfresco-discord> <dgradecak> that would be a full auth system indeed

2019-07-25 15:25:11 GMT <alfresco-discord> <dgradecak> well, finger crossed

2019-07-25 15:29:22 GMT <alfresco-discord> <dgradecak> I am a bit late with my work but next week I will make myself a bit more familiar with the "new" transformations, since in 6.2CE seems things are changing

2019-07-25 15:29:28 GMT <alfresco-discord> <dgradecak> I guess you saw Angel's post

2019-07-25 15:30:27 GMT <AFaust> Yeah.

2019-07-25 15:31:18 GMT <AFaust> One thing I already plan on doing with that is to plan/build a module to backport support to 6.0/6.1 CE

2019-07-25 15:33:16 GMT <alfresco-discord> <dgradecak> well, I am not sure how it is done under the hood yet

2019-07-25 15:33:41 GMT <alfresco-discord> <dgradecak> but as angelborroy said, it is a good fit for the templating

2019-07-25 15:33:53 GMT <alfresco-discord> <dgradecak> so will try with that too

2019-07-25 15:38:06 GMT <AFaust> Argh. A form action can apparently not be a URL which already has some URL query parameters in it. Those are simply stripped out when submitting the form for my Keycloak redirect....

2019-07-25 15:43:47 GMT <AFaust> ..well, looks like I'll have to split the already generated redirect URL, put all the parameters inside hidden inputs, so that the browser can then re-assemble the redirect. All thanks to the HTML 5 spec...

2019-07-25 15:44:17 GMT <AFaust> (or I could just use an <a> instead of a button, but then it would not look like the regular login button)

2019-07-25 18:20:18 GMT <hi-ko> sumit: please check also the corresponding cm:person object (not the usr:user). If I think there is and issue if the person (which you query for in the people search) requires emails, first name, last name to be shown in Share UI

2019-07-25 18:24:31 GMT *** xkahn_ is now known as xkahn

End of Daily Log

The other logs are at http://esplins.org/hash_alfresco