Month: August 2009

Using a non self-signed certificate with Lotus Connections

When you deploy Lotus Connections you find out that the login has to be done using SSL and hence you need a SSL certificate. When Lotus Connections is installed a self-signed certificate is generated but you’ll probably want to use a “real” certificate whether this be one signed by a public CA or one signed by a corporate CA. Doing this is quite simple if you only swap out the IBM HTTP Server certificate as this only requires change to httpd.conf and using the ikeyman application.

Although the ikeyman application looks like something from another century it works and does its job. To launch it go to c:websphereappserverprofilesappserver1bin and invoke ikeyman.bat (substitute the path as appropriate). Once this is done follow the documentation to create a new keystore database (KDB format) and create a stash file. Then generate a new key pair and submit the keys for certification at your CA (again follow the documentation). The stash file is used by the web server to open the otherwise encrypted keystore without a password.

When you receive the reply please bear in mind that the certifying certificate must be in the keystore before accepting the reply. For most CA’s this will require you to import a certificate before proceeding. This goes for Equifax as well as Verisign. The easiest way to find these is to surf to your CA and search for “intermediate”.

Once this is done you can import the certificate reply, update httpd.conf, restart IHS and you’re laughing…

LotusScript.doc v2 beta 4

Beta 4 of LotusScript.doc v2 is out – get it here (lsdoc_200beta4.zip). This beta adds additional logging, makes the log output easier to read and fixes an issue where the sub/function parser would receive “empty source code” if the code contained a sub/function where all code was commented out using pings(‘) or %REM sections.

The code has now also been stress tested thanks to databases from Nathan and Julian Buss. These two databases combined have around 300 script libraries!! πŸ™‚

Update: Please remember to adjust the Java heap size. For more information see this post.

Update: If using Notes 7 beta 4 will not work. Please wait for beta 5.

Celebrating Yellow Day – LotusScript.doc v2 beta for download

To celebrate Yellow Day I’m releasing the first public LotusScript.doc v2 beta for download. To get it download the lsdoc_200beta3.zip file, unzip it and create a new database from the template. I’ll soon blog about all the new goodness in version 2 but for now suffice to say there’s a host of stuff. If nothing else you should notice a major increase in performance meaning documenting databases now take a fraction of the time it used it with version 1.

Please note that this is a beta but it should be ready for prime time. It documents my databases just fine. If you do experience anything you deem weird, or dare I say a bug, please report it by e-mail to lekkim [at] lsdoc.org.

Looking forward to hearing you comments. Thanks.

The fine print

LotusScript.doc is now written in Java and to run LotusScript.doc on non-trivial databases you need to allocate more memory to Java than what’s the standard in the Notes client. To do this follow the description below.

  1. Change the maximum possible Java heap size in notes.ini by setting JavaMaxHeapSize=256M to allow for 256 mb of Java heap.
  2. (optional) Change the /jvm/lib/security/java.
    policy and add the two following lines at the bottom of the first “grant” section. For more information see this blog post. This is only required to enable logging and it’s not required.

    // LotusScript.doc
permission java.util.logging.LoggingPermission "control";