Hello Ali,
According to the log: "Could not resolve placeholder 'otp.issuer' in value
"${otp.issuer}""
Your `openmeetings.properties` doesn't have the line:
```
otp.issuer=
```
please add it :)
On Fri, 30 Dec 2022 at 00:59, Ali Alhaidary <ali.alhaid...@the5stars.org>
wrote:
> Attached log files of the latest 210 build
>
> Ali
> On 12/29/22 3:46 AM, Maxim Solodovnik wrote:
>
>
>
> from mobile (sorry for typos ;)
>
>
> On Thu, Dec 29, 2022, 01:40 Ali Alhaidary <ali.alhaid...@the5stars.org>
> wrote:
>
>> Yes, I know that these lines were added, as you can see in my previous
>> post, however, I did not change it assuming that the application will
>> perform as usual until we set 2 factor authentication.
>>
>
> Yes, this was the plan :)
> Must be some misunderstanding, I was surprised to see you are asking foe
> values while they were in your mail :)
>
> Is there and keys I should add to the database on build#205 ?
>>
>
> You might add configuration value to the db if you would like to enable OTP
> It is disabled by default
>
> I can't help better without knowing actual error :(
> Please check the log (it always should be the first step :))
>
> Ali
>> On 12/28/22 2:10 PM, Maxim Solodovnik wrote:
>>
>> The following section has been added :)
>>
>>
>> ################## Time-based One Time Password ##################
>> ## Please NOTE these values need to be changed BEFORE users will set-up
>> OTP for themselves
>> ## otherwise they can't login
>>
>> # NOTE Config->application.name will be used if blank
>> otp.issuer=
>> otp.ntp.server=pool.ntp.org
>> ## milliseconds
>> otp.ntp.timeout=3000
>>
>>
>>
>>
>>
>> from mobile (sorry for typos ;)
>>
>>
>> On Wed, Dec 28, 2022, 16:25 Ali Alhaidary <ali.alhaid...@the5stars.org>
>> wrote:
>>
>>> Is it possible just to pint it out please?
>>>
>>> Ali
>>> On 12/27/22 6:53 PM, Maxim Solodovnik wrote:
>>>
>>> I would start with examine the logs
>>>
>>> and will add missing key-value part to openmeetings.properties :)
>>>
>>> On Tue, 27 Dec 2022 at 19:00, Ali Alhaidary <ali.alhaid...@the5stars.org>
>>> wrote:
>>>
>>>> Where and what ? :-)
>>>>
>>>> Ali
>>>> On 12/27/22 8:13 AM, Maxim Solodovnik wrote:
>>>>
>>>> you have to add new values to your config :)
>>>>
>>>> #206 is at demo-next
>>>> seems to work as expected :)
>>>>
>>>> On Tue, 27 Dec 2022 at 10:37, Ali Alhaidary <
>>>> ali.alhaid...@the5stars.org> wrote:
>>>>
>>>>> No, I did not change anything in openmeetings.properties as we want to
>>>>> use om as before initially...
>>>>>
>>>>> ################## Time-based One Time Password ##################
>>>>> ## Please NOTE these values need to be changed BEFORE users will
>>>>> set-up OTP for themselves
>>>>> ## otherwise they can't login
>>>>>
>>>>> # NOTE Config->application.name will be used if blank
>>>>> otp.issuer=
>>>>> otp.ntp.server=pool.ntp.org
>>>>> ## milliseconds
>>>>> otp.ntp.timeout=3000
>>>>>
>>>>>
>>>>> On 12/27/22 4:44 AM, Maxim Solodovnik wrote:
>>>>>
>>>>> Anything suspicious in the log?
>>>>> Have you updated openmeetings.properties with "otp" specific values?
>>>>>
>>>>> from mobile (sorry for typos ;)
>>>>>
>>>>>
>>>>> On Mon, Dec 26, 2022, 22:54 Ali Alhaidary <ali.alhaid...@the5stars.org>
>>>>> wrote:
>>>>>
>>>>>> Could not login from moodle plugin, and (HTTP Status 404 – Not Found)
>>>>>> in stand alone app.
>>>>>>
>>>>>> Ali
>>>>>> On 12/26/22 5:18 PM, Ali Alhaidary wrote:
>>>>>>
>>>>>> Seems ok, and translated...
>>>>>>
>>>>>> Ali
>>>>>> On 12/26/22 8:37 AM, Maxim Solodovnik wrote:
>>>>>>
>>>>>> Seems to be implemented
>>>>>> I would appreciate if someone can test this new functionality
>>>>>> (And wording :)))
>>>>>>
>>>>>> On Thu, 22 Dec 2022 at 14:14, Maxim Solodovnik <solomax...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> On Thu, 22 Dec 2022 at 14:01, seba.wag...@gmail.com <
>>>>>>> seba.wag...@gmail.com> wrote:
>>>>>>>
>>>>>>>> Sry I did not have enough time. But it would be a good feature to
>>>>>>>> add.
>>>>>>>>
>>>>>>>> Also a good message we can share around enhancing OpenMeetings
>>>>>>>> security. Relevant for many education/public environments.
>>>>>>>>
>>>>>>>
>>>>>>> I agree :))
>>>>>>> Will update JIRA/demo-next when will have something working :)
>>>>>>>
>>>>>>>
>>>>>>>>
>>>>>>>> Thx
>>>>>>>> Seb
>>>>>>>>
>>>>>>>> Sebastian Wagner
>>>>>>>> Director Arrakeen Solutions, OM-Hosting.com
>>>>>>>> http://arrakeen-solutions.co.nz/
>>>>>>>> https://om-hosting.com - Cloud & Server Hosting for HTML5
>>>>>>>> Video-Conferencing OpenMeetings
>>>>>>>>
>>>>>>>> <https://www.youracclaim.com/badges/da4e8828-743d-4968-af6f-49033f10d60a/public_url>
>>>>>>>> <https://www.youracclaim.com/badges/b7e709c6-aa87-4b02-9faf-099038475e36/public_url>
>>>>>>>>
>>>>>>>>
>>>>>>>> On Thu, 22 Dec 2022 at 18:37, Maxim Solodovnik <
>>>>>>>> solomax...@gmail.com> wrote:
>>>>>>>>
>>>>>>>>> https://issues.apache.org/jira/browse/OPENMEETINGS-2755
>>>>>>>>>
>>>>>>>>> will try to implement it :)
>>>>>>>>>
>>>>>>>>> On Wed, 3 Aug 2022 at 13:45, Ali Alhaidary <
>>>>>>>>> ali.alhaid...@the5stars.org> wrote:
>>>>>>>>>
>>>>>>>>>> +1
>>>>>>>>>>
>>>>>>>>>> Yes, why not...
>>>>>>>>>>
>>>>>>>>>> Ali
>>>>>>>>>> On 8/3/22 8:34 AM, Maxim Solodovnik wrote:
>>>>>>>>>>
>>>>>>>>>> we already have BSD 3-clause:
>>>>>>>>>> https://github.com/apache/openmeetings/blob/master/LICENSE#L2479
>>>>>>>>>> will need to add one line only :)
>>>>>>>>>>
>>>>>>>>>> On Wed, 3 Aug 2022 at 12:25, seba.wag...@gmail.com <
>>>>>>>>>> seba.wag...@gmail.com> wrote:
>>>>>>>>>>
>>>>>>>>>>> There seem to be a few options for Google using Java
>>>>>>>>>>> E.g. https://github.com/wstrange/GoogleAuth
>>>>>>>>>>>
>>>>>>>>>>> I don't quite see in that lib how it generates the QR code for
>>>>>>>>>>> scanning but there should be a way :)
>>>>>>>>>>>
>>>>>>>>>>> The BSD license would require us to add a copy left into our
>>>>>>>>>>> License file, but in general it would be compatible imho.
>>>>>>>>>>>
>>>>>>>>>>> Thanks
>>>>>>>>>>> Seb
>>>>>>>>>>>
>>>>>>>>>>> Sebastian Wagner
>>>>>>>>>>> Director Arrakeen Solutions, OM-Hosting.com
>>>>>>>>>>> http://arrakeen-solutions.co.nz/
>>>>>>>>>>> https://om-hosting.com - Cloud & Server Hosting for HTML5
>>>>>>>>>>> Video-Conferencing OpenMeetings
>>>>>>>>>>>
>>>>>>>>>>> <https://www.youracclaim.com/badges/da4e8828-743d-4968-af6f-49033f10d60a/public_url>
>>>>>>>>>>> <https://www.youracclaim.com/badges/b7e709c6-aa87-4b02-9faf-099038475e36/public_url>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> On Wed, 3 Aug 2022 at 16:12, Maxim Solodovnik <
>>>>>>>>>>> solomax...@gmail.com> wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Hello Seb,
>>>>>>>>>>>>
>>>>>>>>>>>> Sorry for a late response, I'm on vacation :)
>>>>>>>>>>>>
>>>>>>>>>>>> I would
>>>>>>>>>>>> +1 this feature :)
>>>>>>>>>>>>
>>>>>>>>>>>> The problems we'll need to solve
>>>>>>>>>>>> - add 2fa mechanisms other than email (not sure if apps like
>>>>>>>>>>>> "Google authenticator" has open source API :(, we can use telegram
>>>>>>>>>>>> API ....)
>>>>>>>>>>>> - we'll need to move this out of om_user db table (maybe with
>>>>>>>>>>>> activation_hash and *reset-password-hash*
>>>>>>>>>>>>
>>>>>>>>>>>> Need to be investigated and carefully refactored :)
>>>>>>>>>>>>
>>>>>>>>>>>> from mobile (sorry for typos ;)
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> On Wed, Aug 3, 2022, 10:15 seba.wag...@gmail.com <
>>>>>>>>>>>> seba.wag...@gmail.com> wrote:
>>>>>>>>>>>>
>>>>>>>>>>>>> Not many pros or cons in this discussion.
>>>>>>>>>>>>>
>>>>>>>>>>>>> But I think it would be a good option to have available for
>>>>>>>>>>>>> users. As well as a good feature to advertise for. Especially in
>>>>>>>>>>>>> order to
>>>>>>>>>>>>> use OpenMeetings in a Gov/Education environment where compliance
>>>>>>>>>>>>> may
>>>>>>>>>>>>> require to have 2 factor auth for applications in order for using
>>>>>>>>>>>>> it.
>>>>>>>>>>>>>
>>>>>>>>>>>>> So I assume I can create some tickets and get this on the way.
>>>>>>>>>>>>>
>>>>>>>>>>>>> Thanks
>>>>>>>>>>>>> Seb
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> Sebastian Wagner
>>>>>>>>>>>>> Director Arrakeen Solutions, OM-Hosting.com
>>>>>>>>>>>>> http://arrakeen-solutions.co.nz/
>>>>>>>>>>>>> https://om-hosting.com - Cloud & Server Hosting for HTML5
>>>>>>>>>>>>> Video-Conferencing OpenMeetings
>>>>>>>>>>>>>
>>>>>>>>>>>>> <https://www.youracclaim.com/badges/da4e8828-743d-4968-af6f-49033f10d60a/public_url>
>>>>>>>>>>>>> <https://www.youracclaim.com/badges/b7e709c6-aa87-4b02-9faf-099038475e36/public_url>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> On Mon, 1 Aug 2022 at 09:31, seba.wag...@gmail.com <
>>>>>>>>>>>>> seba.wag...@gmail.com> wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> I would like to add a ticket to investigate and look into
>>>>>>>>>>>>>> adding 2 factor authentication to OpenMeetings. As an optional
>>>>>>>>>>>>>> feature,
>>>>>>>>>>>>>> default would be turned off.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> There are various libraries to achieve 2 factor auth. I would
>>>>>>>>>>>>>> probably prefer using the Google Authenticator as a method since
>>>>>>>>>>>>>> it seems
>>>>>>>>>>>>>> the most widely adopted authenticator.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> In terms of turning it on/off I would add 2 flags:
>>>>>>>>>>>>>> - On a per server basis a flag to generally turn 2 factor
>>>>>>>>>>>>>> auth on or off
>>>>>>>>>>>>>> - On a per individual account basis so you can turn 2 factor
>>>>>>>>>>>>>> auth on/off for an individual user
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> This would not affect past installations.
>>>>>>>>>>>>>> This would not affect logging in via Soap/Rest.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> I think this would be a good feature to improve security.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Let me know what you think, and I will add a ticket and look
>>>>>>>>>>>>>> into adding this over the next few weeks.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Thanks
>>>>>>>>>>>>>> Seb
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Sebastian Wagner
>>>>>>>>>>>>>> Director Arrakeen Solutions, OM-Hosting.com
>>>>>>>>>>>>>> http://arrakeen-solutions.co.nz/
>>>>>>>>>>>>>> https://om-hosting.com - Cloud & Server Hosting for HTML5
>>>>>>>>>>>>>> Video-Conferencing OpenMeetings
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> <https://www.youracclaim.com/badges/da4e8828-743d-4968-af6f-49033f10d60a/public_url>
>>>>>>>>>>>>>> <https://www.youracclaim.com/badges/b7e709c6-aa87-4b02-9faf-099038475e36/public_url>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> Best regards,
>>>>>>>>>> Maxim
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Best regards,
>>>>>>>>> Maxim
>>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Best regards,
>>>>>>> Maxim
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> Best regards,
>>>>>> Maxim
>>>>>>
>>>>>>
>>>>
>>>> --
>>>> Best regards,
>>>> Maxim
>>>>
>>>>
>>>
>>> --
>>> Best regards,
>>> Maxim
>>>
>>>
--
Best regards,
Maxim
