인증서 만료일자 조회
openssl s_client -connect url:port | openssl x509 -noout -dates
'IT > 기타' 카테고리의 다른 글
| [OAUTH2] 페이스북(facebook) OAuthCallbackListener 샘플 (0) | 2020.10.14 |
|---|---|
| [SAML Test] 4. Service Provider 생성 및 테스트 (0) | 2020.09.07 |
| [SAML Test] 3. Setup our Identity Provider (Docker환경에 설치) (0) | 2020.09.07 |
| [SAML Test] 1. Setup a Single Sign On SAML Test Environment with Docker and NodeJS (0) | 2020.09.07 |
| [SAML Test] 2. CentOS 8 nvm을 이용한 node.js 설치 (0) | 2020.09.07 |
[CA Gateway] Audit 로그 조회
# audit list 조회 ========================
select
hex(a.goid) goid,
g.name node,
date_format(from_unixtime(a.time / 1000), '%Y-%m-%d %H:%i:%s.%f') time,
a.audit_level serverity,
a.name service,
a.message,
a.ip_address client_ip,
uncompress(b.request_zipxml) request, -- 옵션 사용중인 경우만
uncompress(b.response_zipxml) response -- 옵션 사용중인 경우만
from
audit_main a
left outer join audit_message b on a.goid = b.goid
join cluster_info g on a.nodeid = g.nodeid
where
b.service_goid is not null -- 시스템,admin 로그 제외
and a.time > unix_timestamp('2022-02-17 11:38:57.274')*1000 -- 시작일시
and a.time < unix_timestamp('2022-02-17 11:48:57.274')*1000 -- 종료일시
-- and a.audit_level = 'WARNING'
-- and a.name like '%/openbanking/%' --api명
order by a.time desc;
# audit detail 조회 ========================
select
date_format(from_unixtime(a.time/1000),'%Y-%m-%d %H:%i:%s.%f') time,
a.message_id code,
case when b.position=1 then 'WARNING' else 'INFO' end Serverity,
b.value
from
audit_detail a
join audit_detail_params b on a.goid=b.audit_detail_goid
where hex(a.audit_goid)='85562EE4D72AA5EE2516C0D43F86EEFE' -- audit_main goid
order by a.time desc;
'IT > CA Gateway' 카테고리의 다른 글
| [CA Gateway] Revision History 조회 (0) | 2022.03.15 |
|---|
[CA Gateway] Revision History 조회
select a.name, b.version, date_format(from_unixtime(b.time/1000),'%Y-%m-%d %H:%i:%s.%f') time
from policy a left outer join policy_version b
on a.goid = b.policy_goid
where a.name like '%API명'
order by b.version desc
'IT > CA Gateway' 카테고리의 다른 글
| [CA Gateway] Audit 로그 조회 (0) | 2022.03.15 |
|---|
[OAUTH2] 페이스북(facebook) OAuthCallbackListener 샘플
- Access Token 요청 (graph.facebook.com/oauth/access_token)
- 사용자 게시물 피드 조회 : /{user-id}/feed (graph.facebook.com/v2.5/me/feed)
| package com.example; | |
| import java.io.BufferedReader; | |
| import java.io.IOException; | |
| import java.io.InputStreamReader; | |
| import java.io.Reader; | |
| import java.net.URLEncoder; | |
| import java.nio.charset.StandardCharsets; | |
| import java.util.ArrayList; | |
| import java.util.List; | |
| import javax.servlet.ServletException; | |
| import javax.servlet.http.HttpServlet; | |
| import javax.servlet.http.HttpServletRequest; | |
| import javax.servlet.http.HttpServletResponse; | |
| import org.apache.commons.codec.binary.Base64; | |
| import org.apache.http.HttpEntity; | |
| import org.apache.http.HttpResponse; | |
| import org.apache.http.NameValuePair; | |
| import org.apache.http.client.entity.UrlEncodedFormEntity; | |
| import org.apache.http.client.methods.HttpPost; | |
| import org.apache.http.impl.client.CloseableHttpClient; | |
| import org.apache.http.impl.client.HttpClients; | |
| import org.apache.http.message.BasicNameValuePair; | |
| import org.apache.http.util.EntityUtils; | |
| import org.json.JSONObject; | |
| public class OAuthCallbackListener extends HttpServlet { | |
| private static final long serialVersionUID = 1L; | |
| protected void doGet(HttpServletRequest request, HttpServletResponse response) | |
| throws ServletException, IOException { | |
| // Detect the presence of an authorization code | |
| String authorizationCode = request.getParameter("code"); | |
| if (authorizationCode != null && authorizationCode.length() > 0) { | |
| final String TOKEN_ENDPOINT = "https://graph.facebook.com/oauth/access_token"; | |
| final String GRANT_TYPE = "authorization_code"; | |
| final String REDIRECT_URI = "https://www.test.com:8443/callback"; | |
| final String CLIENT_ID = "CLIENT_ID"; | |
| final String CLIENT_SECRET = "CLIENT_SECRET"; | |
| HttpPost httpPost = new HttpPost(TOKEN_ENDPOINT | |
| + "?grant_type=" + URLEncoder.encode(GRANT_TYPE, StandardCharsets.UTF_8.name()) | |
| + "&code=" + URLEncoder.encode(authorizationCode, StandardCharsets.UTF_8.name()) | |
| + "&redirect_uri=" + URLEncoder.encode(REDIRECT_URI, StandardCharsets.UTF_8.name()) | |
| + "&client_id=" + URLEncoder.encode(CLIENT_ID, StandardCharsets.UTF_8.name())); | |
| String clientCredentials = CLIENT_ID + ":" + CLIENT_SECRET; | |
| String encodedClientCredentials = new String(Base64.encodeBase64(clientCredentials.getBytes())); | |
| httpPost.setHeader("Authorization", "Basic " + encodedClientCredentials); | |
| CloseableHttpClient httpClient = HttpClients.createDefault(); | |
| HttpResponse httpResponse = httpClient.execute(httpPost); | |
| HttpEntity entity = httpResponse.getEntity(); | |
| String line = EntityUtils.toString(entity, "UTF-8"); | |
| JSONObject jObject = new JSONObject(line); | |
| String accessToken = jObject.getString("access_token"); | |
| System.out.println("accessToken: " + accessToken); | |
| String requestUrl = "https://graph.facebook.com/v2.5/me/feed?limit=25"; | |
| httpClient = HttpClients.createDefault(); | |
| httpPost = new HttpPost(requestUrl); | |
| httpPost.addHeader("Authorization", "Bearer " + accessToken); | |
| List<NameValuePair> urlParameters = new ArrayList<NameValuePair>(); | |
| urlParameters.add(new BasicNameValuePair("method", "get")); | |
| httpPost.setEntity(new UrlEncodedFormEntity(urlParameters)); | |
| httpResponse = httpClient.execute(httpPost); | |
| BufferedReader bufferedReader = new BufferedReader(new InputStreamReader(httpResponse.getEntity().getContent())); | |
| String feedJson = bufferedReader.readLine(); | |
| System.out.println("data: " + feedJson); | |
| httpClient.close(); | |
| } else { | |
| } | |
| } | |
| } |
'IT > 기타' 카테고리의 다른 글
| 인증서 만료일자 조회 (0) | 2022.05.19 |
|---|---|
| [SAML Test] 4. Service Provider 생성 및 테스트 (0) | 2020.09.07 |
| [SAML Test] 3. Setup our Identity Provider (Docker환경에 설치) (0) | 2020.09.07 |
| [SAML Test] 1. Setup a Single Sign On SAML Test Environment with Docker and NodeJS (0) | 2020.09.07 |
| [SAML Test] 2. CentOS 8 nvm을 이용한 node.js 설치 (0) | 2020.09.07 |
메이븐(Maven)에서 톰캣 SSL(HTTPS) 설정
- keystore 생성
- pom.xml 파일 tomcat plugin 수정 (httpsPort, keystoreFile)
<build>
<finalName>example</finalName>
<plugins>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-war-plugin</artifactId>
<version>2.5</version>
</plugin>
<plugin>
<groupId>org.apache.tomcat.maven</groupId>
<artifactId>tomcat7-maven-plugin</artifactId>
<version>2.2</version>
<configuration>
<port>8080</port>
<httpsPort>8443</httpsPort>
<keystoreFile>c:/test.keystore</keystoreFile>
<path>/</path>
<contextReloadable>true</contextReloadable>
<systemProperties>
<JAVA_OPTS>-Xms512m -Xmx512m --XX:MaxPermSize=256m</JAVA_OPTS>
</systemProperties>
</configuration>
</plugin>
</plugins>
</build>
'IT > Was' 카테고리의 다른 글
| 톰캣 불필요한웹메서드 제거 (0) | 2020.07.14 |
|---|---|
| [Tomcat]도커(Docker)에서 톰캣 설치 (0) | 2020.06.11 |
| Jboss AS 7 서버로깅설정 (0) | 2014.03.24 |
| JBoss AS 7 설치 (0) | 2014.03.07 |
| 웹로직 64비트 설치 (0) | 2014.02.10 |
grep . /etc/*-release
cat /etc/*-release | uniq
grep . /etc/issue*
rpm -qa *-release 레드햇 계열
'IT > Linux' 카테고리의 다른 글
| 패스워드 변경 주기 삭제 (0) | 2020.08.12 |
|---|---|
| CentOS 8 다운로드 (0) | 2020.06.08 |
| yum : command not found (Redhat) (0) | 2020.06.08 |
| /bin/sh^M: bad interpreter: No such file or directory 오류 발생 시 (0) | 2020.06.03 |
[SAML Test] 4. Service Provider 생성 및 테스트
1. Service Provider 생성
https://medium.com/disney-streaming/setup-a-single-sign-on-saml-test-environment-with-docker-and-nodejs-c53fc1a984c9
2. Service Provider 로그인
- http://localhost:4300/login
- IdP 로그인 화면으로 이동됨
- 성공
- metadata
'IT > 기타' 카테고리의 다른 글
| 인증서 만료일자 조회 (0) | 2022.05.19 |
|---|---|
| [OAUTH2] 페이스북(facebook) OAuthCallbackListener 샘플 (0) | 2020.10.14 |
| [SAML Test] 3. Setup our Identity Provider (Docker환경에 설치) (0) | 2020.09.07 |
| [SAML Test] 1. Setup a Single Sign On SAML Test Environment with Docker and NodeJS (0) | 2020.09.07 |
| [SAML Test] 2. CentOS 8 nvm을 이용한 node.js 설치 (0) | 2020.09.07 |
[SAML Test] 3. Setup our Identity Provider (Docker환경에 설치)
1. docker 이미지 다운로드
- docker pull kristophjunge/test-saml-idp (hub.docker.com/r/kristophjunge/test-saml-idp/)
[root@localhost ~]# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
3f1c9f57495f kristophjunge/test-saml-idp "docker-php-entrypoi 45 minutes ago Up 45 minutes 80/tcp, 0.0.0.0:48080->8080/tcp, 0.0.0.0:48443->8443/tcp testsamlidp_idp2. docker 실행
[root@localhost ~]#docker run --name=testsamlidp_idp \
-p 48080:8080 \
-p 48443:8443 \
-e SIMPLESAMLPHP_SP_ENTITY_ID=http://app.example.com \
-e SIMPLESAMLPHP_SP_ASSERTION_CONSUMER_SERVICE=http://192.168.31.100:4300/login/callback \
-e SIMPLESAMLPHP_SP_SINGLE_LOGOUT_SERVICE=http://localhost/simplesaml/module.php/saml/sp/saml2-logout.php/test-sp \
-d kristophjunge/test-saml-idp[root@localhost ~]# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
3f1c9f57495f kristophjunge/test-saml-idp "docker-php-entrypoi 45 minutes ago Up 45 minutes 80/tcp, 0.0.0.0:48080->8080/tcp, 0.0.0.0:48443->8443/tcp testsamlidp_idp1. IdP 접속
- http://localhost:포트/simplesaml
- Authentication 탭 클릭
- Test configured authentication sources 클릭
- example-userpass 클릭
- 아래 디폴트 계정으로 로그인
| 1 | user1 | user1pass | group1 | user1@example.com |
| 2 | user2 | user2pass | group2 | user2@example.com |
| 3 | admin | secret |
'IT > 기타' 카테고리의 다른 글
| [OAUTH2] 페이스북(facebook) OAuthCallbackListener 샘플 (0) | 2020.10.14 |
|---|---|
| [SAML Test] 4. Service Provider 생성 및 테스트 (0) | 2020.09.07 |
| [SAML Test] 1. Setup a Single Sign On SAML Test Environment with Docker and NodeJS (0) | 2020.09.07 |
| [SAML Test] 2. CentOS 8 nvm을 이용한 node.js 설치 (0) | 2020.09.07 |
| Jira API token 생성 (Issue does not exist or you do not have permission to see it) (0) | 2020.06.23 |
