357 Lotus blogs updated hourly. Who will post next? Home | Downloads | Events | Pods | Blogs | Search | myPL | About 
 
Latest 7 Posts
Foundation of Software Development
Fri, Sep 12th 2014 138
Flow, Rules, Complexity and Simplicity in Workflow
Wed, Sep 3rd 2014 158
Rethinking the MimeDocument data source
Mon, Sep 1st 2014 192
Bikepad SmartPhone mount review
Mon, Sep 1st 2014 109
Long Term Storage and Retention
Thu, Aug 14th 2014 161
Time stamped encrypted archives
Wed, Aug 13th 2014 164
Designing a REST API for eMail
Sat, Aug 9th 2014 266
Top 10
Domino Development - Back to Basics - Part 5: Finding data - Collections and Search
Thu, Jan 2nd 2014 1273
Let's ditch IBM Notes and Domino
Thu, May 29th 2014 785
You want to move to Domino? You need a plan!
Thu, Apr 17th 2014 556
MongoDB to switch to IBM storage backend
Tue, Apr 1st 2014 529
CRM > Sales Tracking
Sun, May 5th 2013 466
Domino Design Pattern: Secret documents
Thu, Apr 17th 2014 459
Documents vs eMails
Fri, Jul 4th 2014 412
CKEditor and Mustache become friends
Tue, Apr 8th 2014 367
SmartCloud Notes little agent helper
Wed, Apr 16th 2014 347
Lotus de la Mancha
Wed, Apr 9th 2014 343


OAuth, HTTP and file size limitations
Stephan H Wissel    

In the brave new world of social file sharing HTTP(s) has won. From the humble webDAV specification to Sharepoint, IBM Connections, Dropbox, UbuntuOne or the emerging industry standard CMIS all use HTTPs to access files on the backends. Since HTTP(s) is the first thing that is available when a network connection is possible and quite often (especially in public hotspots) the only thing available, this success isn't surprising
The more venerable protocols like CIFS (a.k.a. SMB), NFS or SSHFS didn't stand a chance since (rightly?) security experts block them on the corporate firewalls to prevent data leakages.
A lot of times the HTTP integration uses basic authentication, that is hazardous on HTTP, but OK on HTTPs. However providing applications with username and password makes it an update nightmare. Therefore OAuth became rapidly popular. But every fix for a problem comes with its own challenges. The challenge here is OAuth session expiry. While this is hardly an issue getting your latest tweets (140 char transmit in less that 30sec if if you only have 10 Byte/sec), is is an issue for large files.
An open bug in UbuntuOne explains it nicely: "OAuth headers used to check the validity of the request contain the timestamp of the request to prevent reply attacks .... for requests taking less than 15 minutes (the default for oauth in updown). ". If 15 min is the default you need a lot of bandwidth depending on your file size:
  • 9 kb/sec for 1 MB
  • 217 kb/sec for 25MB
  • 870 kb/sec for 100 MB
(That's effective bandwidth, not advertised one). Of course: you don't want to wait 15 minutes for a file, so your real bandwidth requirement might be actually much higher. And that's also the reason why online access to file sharing is nothing more than a band-aid, sync is the way to go.

---------------------
http://feedproxy.google.com/~r/Wisselnet/~3/IOM1pQf-VQU/SHWL-8UL7TB
May 23, 2012
91 hits



Recent Blog Posts
138


Foundation of Software Development
Fri, Sep 12th 2014 6:13a   Stephan H Wissel
When you learn cooking, there are a few basic skills that need to be in place before you can get started: cutting, measuring, stiring and understanding of temperature's impact on food items. These skills are independent from what you want to cook: western, Chinese, Indian, Korean or Space Food. The same applies to software development. Interestingly we try to delegate these skills to ui designers, architects, project managers analyst or infrastructure owners. To be a good developer, you don't [read] Keywords: ibm development wiki
158


Flow, Rules, Complexity and Simplicity in Workflow
Wed, Sep 3rd 2014 6:13a   Stephan H Wissel
When I make the claim "Most workflows are simple", in return I'm hit with bewildered looks and the assertion: "No, ours are quite complex". My little provocation is quite deliberate, since it serves as an opening gambit to discuss the relation between flow, rules and lookups. All workflows begin rather simple. I'll take a travel approval workflow as a sample (resemblance of workflows of existing companies would be pure coincidence). The explanation is simple: "You request approval from [read] Keywords: google
192


Rethinking the MimeDocument data source
Mon, Sep 1st 2014 12:13p   Stephan H Wissel
Tim (we miss you) and Jesse had the idea to store beans in Mime documents, which became an OpenNTF project. I love that idea and was musing how to make it more "domino like". In its binary format, a serialized bean can't be used for showing view data, nor can one be sure that it can be transported or deserialized other than through the same class version as the creator (this is why Serialized wants to have a serialid). With a little extra work, that becomes actually quite easy: Enter JAXB. [read] Keywords: domino lotus notes xpages email java linkedin openntf oracle profile xml
109


Bikepad SmartPhone mount review
Mon, Sep 1st 2014 10:12a   Stephan H Wissel
This is my field impression of the Bikepad SmartPhone mount having used it for a few weeks on my Montague Paratrooper pro TL:TRThe Bikepad is a highly functional accessory to keep your phone on your bike fully functional. Is has quality craftsmanship and a sleek design. If I had an editor-refuses-to-give-it-back award to give (I actually paid for it), I would award it. I do cycle for longer durations and some rough spots, so I like to keep a phone in reach. Not at last to keep SWMBO updated. [read] Keywords: iphone wiki
161


Long Term Storage and Retention
Thu, Aug 14th 2014 6:14a   Stephan H Wissel
Not just since Einstein time is relative. For a human brain anything above 3 seconds is long term. In IT this is a little more complex. Once a work artefact is completed, it runs through a legal vetting and it either goes to medium or long term storage. I'll explain the difference in a second. This logical flow manifests itself in multiple ways in concrete implementations: Journaling (both eMail and databases), archival, backups, write-once copies. Quite often all artifacts go to medium term [read] Keywords: domino ibm notes application archive database email office wiki xml
164


Time stamped encrypted archives
Wed, Aug 13th 2014 9:12a   Stephan H Wissel
Developers use Version Control, business users Document management and consultants ZIP files. From time to time I feel the need to safeguard a snapshot in time outside the machine I'm working with. Since "storage out of my control" isn't trustworthy, I encrypt data. This is the script I use: #!/bin/bash ############################################################################ # Saves the given directory (%1) in an SSL encrypted zip file (%2) within # the personalFiles folder. The name [read] Keywords: connections ibm linux network wiki
266


Designing a REST API for eMail
Sat, Aug 9th 2014 11:12a   Stephan H Wissel
Unencumbered by standards designed by committees I'm musing how a REST API would look like. A REST API consists of 3 parts: the URI (~ URL for browser access), the verb and the payload. Since I'm looking at browser only access, the structured data payload format clearly will be JSON with the prose payload delivered in MIME format. I will worry about calendar and social data later on. The verbs in REST are defined by the HTTP standard: , PUT, and DELETE. My base url would be http://localhost [read] Keywords: ibm email wiki




230


Running vert.x with the OpenNTF Domino API
Wed, Aug 6th 2014 1:11p   Stephan H Wissel
In the first part I got vert.x 3.0 running with my local Notes client. The mastered challenges there were 32 Bit Java for the Notes client and the usual adjustment for the path variables. The adoption of the OpenNTF Domino API required a few steps more: Set 2 evironment variables: DYLD_LIBRARY_PATH=/opt/ibm/notes LD_LIBRARY_PATH=/opt/ibm/notes Add the following parameter to your Java command line: -Dnotes.binary=/opt/ibm/notes -Duser.dir=/home/stw/lotus/notes/data -Djava.library.path=/opt/ib [read] Keywords: agent domino ibm lotus notes notes client applications eclipse java openntf
269


Workflow for beginners, Standards, Concepts and Confusion
Thu, Jul 24th 2014 10:12a   Stephan H Wissel
The nature of collaboration is the flow of information. So naturally I get asked about Workflows and its incarnation in IT systems a lot. Many of the question point to a fundamental confusion what Worflow is, and what it isn't. This entry will attempt to clarify concepts and terminology Wikipedia sums it up nicely: "A workflow consists of an orchestrated and repeatable pattern of business activity enabled by the systematic organization of resources into processes that transform materials, pro [read] Keywords: collaboration ibm applications email google openntf soa wiki
256


Warriors of Light
Sun, Jul 20th 2014 11:15a   Stephan H Wissel
Inspired by Paulo Coelho's manual for the Warrior of the Light: Warriors of Light We were born from the stars Descended from the heavens Armed with compassion Determined to end the suffering Subjected to the human condition Battling ignorance with wisdom Laying our lives for the liberation from illusion When you look in the mirror - remember! You are one of us. [read] Keywords:




Created and Maintained by Yancy Lent - About - Blog Submission - Suggestions - Change Log - Blog Widget - Advertising - Mobile Edition