In Memoriam: Tai'lahr

OpenUru.org, along with the rest of the Mystonline community, is mourning the loss of Tai'lahr on October 16th, 2019.

Rest in Peace, friend.

Difference between revisions of "Foundry Certificate Installation"

From OpenUru
Jump to navigation Jump to search
Line 43: Line 43:
  
 
=== TortoiseHg 2.0.x (Mercurial) ===
 
=== TortoiseHg 2.0.x (Mercurial) ===
Open the TortoiseHg Workbench, and open the ''ProjectName'' repository at https://foundry.openuru.org/hg/ProjectName. You will probably see an error message at the bottom of the window indicating that the command was aborted - ignore this. In the middle section, under "Remote Repository", there is a drop-down to select the protocol (keep it "https"), and then click on the padlock icon. A popup titled "Security: foundry.openuru.org" will appear. Select "Verify with stored host fingerprint (good)", then click the "Query" button to obtain the certificate signature from foundry.openuru.org. This will fill in the field with the fingerprint data which should match the example given below. Fill in your User Authentication information (only Username and Password are required and are the same as your JIRA account details) and click "Save". Now your pull/push operations should succeed. You can verify the command has succeeded by selecting "View -> Show Output Log" to show the output from the underlying Mercurial commands; they should always announce a successful completion.
+
Open the TortoiseHg Workbench, and open the ''ProjectName'' repository at https://foundry.openuru.org/hg/ProjectName (replace ''ProjectName'' with the real project name - see the [http://www.openuru.org/pages/Development.php Development menu] page). You will probably see an error message at the bottom of the window indicating that the command was aborted - ignore this. In the middle section, under "Remote Repository", there is a drop-down to select the protocol (keep it "https"), and then click on the padlock icon. A popup titled "Security: foundry.openuru.org" will appear. Select "Verify with stored host fingerprint (good)", then click the "Query" button to obtain the certificate signature from foundry.openuru.org. This will fill in the field with the fingerprint data which should match the example given below. Fill in your User Authentication information (only Username and Password are required and are the same as your JIRA account details) and click "Save". Now your pull/push operations should succeed. You can verify the command has succeeded by selecting "View -> Show Output Log" to show the output from the underlying Mercurial commands; they should always announce a successful completion.
  
  

Revision as of 15:24, 25 March 2011

This page contains draft content
The content of this page is a "work-in-progress" and is subject to change. Do not place undue reliance on the completeness or accuracy of the material presented here!

The OpenUru Foundry tools such as JIRA bugtracking use SSL (Secure Sockets Layer) to encrypt transactions and to give confidence that you are connected to the correct server. Currently, this is a "self-signed" certificate and not one that has been validated by the main certificate authorities, so most browsers will display a warning when you navigate to one of the Foundry pages.

You can avoid these warnings by installing the certificate in your browser's certificate store. This can be done when you first visit the foundry, but the methods vary greatly across browsers. It is perhaps easier to manually install the certificate before visting the Foundry. The certificate will also need to be installed in repository tools (Mercurial or Subversion) if you intend using SSL to access the Foundry repositories.

The instructions given here relate to the Windows versions of the applications.

Obtaining the Certificate

(For manual installation into applications not listed below)

Download a copy of the certificate using this link: Foundry Certificate

Browser Installation

Please read the instructions so you know what to do before clicking on the link to the certificate, or right click the link and open it in a new tab or window.

Firefox

Click on the following link: Foundry Certificate A popup will appear titled "Downloading Certificate". Mark the check box for "Trust this CA to identify web sites" then click "OK" (you may wish to click "View" to check the certificate details first). The certificate is now installed, and when visiting the Foundry you should see the padlock symbol at the bottom right of your browser: hovering the mouse pointer over this should show "Authenticated by OpenUru.org"

Note: Firefox 3.6.0 contains a bug which may cause loss of data when using JIRA - users should upgrade their Firefox installation to 3.6.2 or later.

Internet Explorer

Click on the following link: Foundry Certificate A popup will appear titled "File Download - Security Warning". Click "Open" and the certificate details will be displayed in a new popup wher you can inspect them. On the "General" tab, click "Install Certificate...". When the Certificate Import Wizard appears click "Next>", then on the Certificate Store page select "Automatically select the certificate store based on the type of certificate" and click "Next>" and then "Finish". Another popup will appear titled "Security Warning" and asking "Do you want to install this certificate?" - Click "Yes". You should get a message telling you that the import was successful. Click "OK" on any remaining dialog boxes. The certificate is now installed, and when visiting the Foundry you should see the padlock symbol to the right of the URL bar with a blue background.

Note: If you install the certificate using Internet Explorer as described above, then you should find that the certificate will automatically be trusted by Safari and Chrome browsers on the same machine, since both of these use the Windows Internet Settings.

Google Chrome

Chrome (under Microsoft Windows) uses the same certificate store as Internet Explorer, so the process is very similar: Click on the following link: Foundry Certificate The "Downloads" popup will appear along with another window asking if you want to open or save the file "foundry.crt". Click "Open" and a new popup will appear titled "File Download - Security Warning". Click "Open" and the certificate details will be displayed in a new popup wher you can inspect them. On the "General" tab, click "Install Certificate...". When the Certificate Import Wizard appears click "Next>", then on the Certificate Store page select "Automatically select the certificate store based on the type of certificate" and click "Next>" and then "Finish". Another popup will appear titled "Security Warning" and asking "Do you want to install this certificate?" - Click "Yes". You should get a message telling you that the import was successful. Click "OK" on any remaining dialog boxes. The certificate is now installed, and when visiting the Foundry you should see the padlock symbol to the right of the URL bar.

Apple Safari

On Microsoft Windows, Safari uses the same certificate store as Internet Explorer, so the process is very similar: Click on the following link: Foundry Certificate The "Downloads" popup will appear along with another window asking if you want to open or save the file "foundry.crt". Click "Open" and a new popup will appear titled "File Download - Security Warning". Click "Open" and the certificate details will be displayed in a new popup wher you can inspect them. On the "General" tab, click "Install Certificate...". When the Certificate Import Wizard appears click "Next>", then on the Certificate Store page select "Automatically select the certificate store based on the type of certificate" and click "Next>" and then "Finish". Another popup will appear titled "Security Warning" and asking "Do you want to install this certificate?" - Click "Yes". You should get a message telling you that the import was successful. Click "OK" on any remaining dialog boxes. The certificate is now installed, and when visiting the Foundry you should see the padlock symbol to the right of the URL bar.

Opera

http://assets.openuru.org/wiki/icons/wip_30x30.PNG

Content to be advised.


Repository Installation

TortoiseHg 2.0.x (Mercurial)

Open the TortoiseHg Workbench, and open the ProjectName repository at https://foundry.openuru.org/hg/ProjectName (replace ProjectName with the real project name - see the Development menu page). You will probably see an error message at the bottom of the window indicating that the command was aborted - ignore this. In the middle section, under "Remote Repository", there is a drop-down to select the protocol (keep it "https"), and then click on the padlock icon. A popup titled "Security: foundry.openuru.org" will appear. Select "Verify with stored host fingerprint (good)", then click the "Query" button to obtain the certificate signature from foundry.openuru.org. This will fill in the field with the fingerprint data which should match the example given below. Fill in your User Authentication information (only Username and Password are required and are the same as your JIRA account details) and click "Save". Now your pull/push operations should succeed. You can verify the command has succeeded by selecting "View -> Show Output Log" to show the output from the underlying Mercurial commands; they should always announce a successful completion.


Host Fingerprint:

32:1b:b2:1c:9a:fe:d9:17:b0:78:76:ea:87:68:ad:1a:34:ab:a8:8e

TortoiseSVN (Subversion)

There is no requirement to install the certificate for TortoiseSVN.