Eclipse Community Forums: EMF » [CDO][NET4J] SSL and negotiator type="challenge"

Home » Modeling » EMF » [CDO][NET4J] SSL and negotiator type="challenge"(SSL and negotiator type="challenge" not working)

[CDO][NET4J] SSL and negotiator type="challenge" [message #1854960]

Tue, 20 September 2022 09:41

Eclipse User

Hello,

i would like to use the ssl acceptor. So I switched my config from:

<acceptor type="tcp" listenAddr="0.0.0.0" port="2036">
 <negotiator type="challenge" description="@config/users"/> 
</acceptor>

<acceptor type="ssl" listenAddr="0.0.0.0" port="443">
 <negotiator type="challenge" description="@config/users"/> 
</acceptor>

SSL is working but the client is not able to connect.

If remove the negotiator everthing is working as it should:
So server side:

<acceptor type="ssl" listenAddr="0.0.0.0" port="443">
</acceptor>

and client:

final String connection = serverdns + ":" + 443;

/* create net4j config */
final IConnector connector = Net4jUtil.getConnector(IPluginContainer.INSTANCE, connectionType, connection);
final CDONet4jSessionConfiguration config = CDONet4jUtil.createNet4jSessionConfiguration();
		config.setConnector(connector);
		config.setRepositoryName(repositoryName);
	session = config.openNet4jSession();

Is working.
But with server side:

<acceptor type="ssl" listenAddr="0.0.0.0" port="443">
 <negotiator type="challenge" description="@config/users"/> 
</acceptor>

and client:

final String connection = serverdns + ":" + 443;

/* create login processor */
		final PasswordCredentialsProvider credentialsProvider = new PasswordCredentialsProvider(user, password);
		loginPostProcessor = new ConnectorCredentialsInjector(connection, credentialsProvider);
		IPluginContainer.INSTANCE.addPostProcessor(loginPostProcessor);

/* create net4j config */
final IConnector connector = Net4jUtil.getConnector(IPluginContainer.INSTANCE, connectionType, connection);
final CDONet4jSessionConfiguration config = CDONet4jUtil.createNet4jSessionConfiguration();
		config.setConnector(connector);
		config.setRepositoryName(repositoryName);
	session = config.openNet4jSession();

It fails.
The same code with tcp acceptor works fine.
Has anyone the same problem? I use ne new version with TLS 1.3 from git.

Alexander

[Updated on: Tue, 20 September 2022 09:45] by Moderator

Re: [CDO][NET4J] SSL and negotiator type="challenge" [message #1854962 is a reply to message #1854960]

Tue, 20 September 2022 12:04

Eclipse User

Hi Alexander,

The Net4j negotiators are not needed with CDO because CDO has its own Diffie/Hellman-based credendials exchange. Just get rid of the <negotiator> element under the <acceptor> element.

Re: [CDO][NET4J] SSL and negotiator type="challenge" [message #1854963 is a reply to message #1854962]

Tue, 20 September 2022 12:14

Eclipse User

Hi Eike,

if I understand you right. I remove the <negotiator> and replace is by

<authenticator type="file" description="@config/users"/>

under repository on the server side.

On the client side I remove the PostProcessor and add to the config.

final var credentialsProvider = new PasswordCredentialsProvider(user, password);
final var config = CDONet4jUtil.createNet4jSessionConfiguration();
config.setConnector(connector);
config.setRepositoryName(repositoryName);
config.setCredentialsProvider(credentialsProvider);

this should use the CDO user authenication

Thank you for your help.

Alexander

Re: [CDO][NET4J] SSL and negotiator type="challenge" [message #1854967 is a reply to message #1854963]

Tue, 20 September 2022 22:46

Eclipse User

Yes, that's it ;-)

Previous Topic:	Create ecore annotation model and use it in another ecore model
Next Topic:	Model not shown properly in Model Explorer

Goto Forum:

-=] Back to Top [=-

Current Time: Wed Jul 09 10:47:02 EDT 2025

.:: Contact :: Home ::.

Breadcrumbs

Sign up to our Newsletter