LDN - Luminis Developer Network

Well, our team is charged to figure out Sharepoint Workflow, and use MOSS to build workflows for the campus. The bad news is that 3.0 is so bleeding edge, it hurts!

We have the following CPIP connectors working that we developed in house. Many of the GCF connectors call a simple java class for hashing credentials (similar to what Blackboard connector does). We also have some custom channel integration with dynamic (realtime) data from external systems, sort of like webservices, or wsrp consumers. I got a lot of interest about some of these at Summit 2007, and would like to know if people are interested in them. A few of them are already posted in my blog, and also my colleague: Chris Carey, but others are not yet posted.

Here is a way to get a Generic CPIP connector on Luminis to work with EZProxy MD5 ticket.

I have been trying to connect Luminis and EZProxy via a built-in CPIP connector in ezproxy for over a month, but we were not able to get it working. We worked directly with usefulutilities, and made sure the SSL certs were right, the configuration was right, but no matter what we tried, it kept failing. The fact that it was not working, and the fact that the connector actually resides on EZProxy was not making me feel comfortable. After all, the credentials were being sent to someone else's cpip connector...

We are using SAF and are authenticating users to AD via .NET ADSI component. Luminis is on Solaris. .NET component is on a AD domain webserver. When the user fails to login to AD via .NET component, the error message in cp.log has the contents of the SOAP call to the .net webservice. The problem is sometimes users mistype their userid, or miss a password by a character, and the failed credentials are logged to cp.log. This is a security problem, especially when sending cp.log to SCT support, or anyone else.

Here's a script to get rid of passwords inside cp.log, before sending the log to anyone. This is only applicable to those who use SAF, .NET component, and have basic authentication enabled on the webserver with the .NET component.

Recently, we had to change about 20,000 student accounts on our network from legacy format (old_userid), to Banner generated spriden ID's (new_userid). When I contacted Luminis Support, we were told that there's no tool to change the accounts in luminis, and the only way to change the account, is to create a new one, and delete the old one. The problem with this approach is that any customization to uPortal layouts, or cpip connector passwords, INB pins, self service credentials etc, etc, will be recreated. Of course, those are just a few of the potential problems. I've heard that Luminis developers are working on a tool that will have a capability to rename user IDs in the future, however, we had to the change on January 1st.

Hi Everyone. A month or so ago, I wrote a CPIP connector for HORDE IMP. However, this is not production worthy. For some reason, when the user logs out of horde, and then tries to cpip back in, horde complains about an expired session. The interesting part is that this only happens with Firefox browsers. IE works everytime.

If someone is interested in getting this fixed and working, please do so. I only ask that you tell me the fixes/improvements, please. Also, I modified the email.car xsl transformation to point to horde CPIP, but it's hard coded to our implementation. If anyone is interested in that too, let me know.

Blackboard has changed the authentication mechanism in the latest version of Blackboard 6.3, also known as AppPack3. In Blackboard version 6.2 authentication was using POST. In AppPack3, authentication is using GET. Therefore, the CPIP connector from Luminis will break when you upgrade Blackboard to AppPack3.

Attached are the CPIP operations for the Blackboard Connector. This has been sucessfully tested on Blackboard version 6.3.1.505-ServicePack1. Please note: this file has deauthentication disabled (commented out).

Dmitriy Bond