Showtime
My Blackberry Enterprise Server Push Utility for the Lotus Notes Client, allows you to create Jobs for individual Channel, Message, and Browser Content Pushes, as well as allows you to delete Pushed Channel Icons from defined recipient devices.
Contact Information
Blogger, podcaster, writer, and geek Chris Toohey covers topics from application development to the latest must-have-gadgets.
dominoGuru.com on Facebook
Latest Updates
Products & Applications
Time Tracker
The idea is simple. At the start of your day - upon completion of your first task - create an entry highlighting what you did and whether you feel it was an efficient or inefficient use of your time. Based on several requests, you can also select the priority, apply categories, or even align your time against a project.
For Lotus Notes Client v8.0 and above, you can use the Time Tracker Widget to make this process even easier!
Zephyr
My Configuration-based Rich Text Mail Merge and Emailing Utility, Zephyr allows you to create rich, data-driven emails to support automated workflow - all via Microsoft Word Mail Merge-like architecture. Dear <firstname> allows you to personalize each email message not only to the individual recipient, but also to the individual application workflow event!
xCopy
xCopy is a simple configurable xCopy client for the Lotus Notes client. By creating and defining xCopy Profiles, you can batch process your file backup or remote upload jobs. With the addition of the xCopy sidebar widget, you can easily kick-off these jobs, and modify both the xCopy Profiles and xCopy itself.
Community & Resources
Lotus Technical Information & Education Community
The Lotus Technical Information & Education community is comprised of IBM, business partner, and customer subject matter experts who use product wikis, published articles, white papers, community blogs and the latest in social media to build and share high quality technical content.
OpenNTF.org - Open Source Community for Lotus Notes Domino
OpenNTF is devoted to enabling groups of individuals all over the world to collaborate on IBM Lotus Notes/Domino applications and release them as open source.
developerWorks Lotus : Wikis
Share your deployment experiences and best practices in our wikis and help IBM to create scenarios for successful deployments. Contribute to the community by collaborating on shared content and leverage the shared knowledge from that community.
Coming Soon -- Project Dauth: IBM Lotus Notes Domino Oauth-like Token Authentication Engine
02/02/2010 06:55:53 AM by Chris Toohey
I've mentioned my work recently with Oauth, and while working on SOTU -- my Remote Console Command Utility for IBM Lotus Notes Domino -- I found myself liking the token-based authentication architecture more and more. Now, understanding that most enterprises won't rush to adopt Oauth for fear (and quite frankly lack of understanding) would give them an idea that such an authentication architecture would allow any OpenID-like account access to their systems... I've decided to make an Oauth-like utility for the IBM Lotus Notes Domino Server.
Instead of building an Oauth-like authentication engine into SOTU which -- quite frankly -- could get messy, I'm going to bundle Dauth with the next release of SOTU and keep Dauth as a stand-alone project. This way, you can leverage the solution in any number of Domino HTTP RPC style application. Hell, you could technically use Dauth for any HTTP delivered IBM Lotus Notes Domino Application...
The overall logic architecture will remain the same:
Once authenticated via standard Domino HTTP authentication, the user will request a Dauth token or key. This key, a randomly generated hash, is uniquely bound to the user.
Then in applications that use Dauth, you simply supply your key. I envision the local client applications -- in the case of SOTU, the mobile device application -- you'll store and save your key within the client itself, almost like a remember me function.
On an HTTP Request to the target service, the key is offered as part of the submission. The first action then is to check the Dauth User Library to verify that this is both an active key and to confirm the level of execution rights the correlating user has to the target service.
... and that's pretty much it.
Dauth will allow you to lock out accounts, change keys as needed, and perhaps more should it need any other functionality. I expect to have an example online and ready for eager testing soon, so key interested eyes open for news of the v0.1 BETA release!
|
Unless otherwise stated, this work is licensed under a Creative Commons Attribution-Share Alike 3.0 Unported License. |
Hi Chris,
are you sure, you want to use MD2?
http://en.wikipedia.org/wiki/MD2_%28cryptography%29#Security
@Martin:
You make a good point, but as the token key -- since it won't have any token generation logic behind it or anything -- it could literally be a non-hashed value.
The hash is more there to make the key unique, and I plan on doing something like this:
Running that for me now returns the following:
... which I would use as the key for my mobile device app. See, it's not like that key does anything per se, but the combination of the key and -- well, not really ready to get into that -- should make these secure enough to get the job done.
Hey Chris - This is looking very interesting... Will it allow other OAuth providers (like Google) to authenticate to the application on Domino? This could be huge in enabling customer/end-user applications running on Domino.