Discussion:
[whispersystems] Issue about TS server connecting
Shi Jian
2015-03-31 05:56:38 UTC
Permalink
Hello,
I am from China. I am using your amazing TextSecure App. I would like to setup a TS server for basic test and learning since
The GCM is forbidden in our place. I download the latest TS server code and make some services can be null which are not necessary for
My test and basic use(twillo,gcm,s3) and add some items according to the errors information when I try to run the server. I add directory,push
messageStrore sections to let the TS Server run. Could you have a look my local.yml file in attachment for a check?

Now I am trying to connect the my customized server in the my WIN7 32bit PC from a handset. Following ways I tried:

1. Change the PUSH_URL to my localhost:8080 in Release.java

2. I notice the SSLContext is using a certificate from whisper.store in raw directory. So I keep the ENFORCE_SSL as true. But the

getConnection() in PushServiceSocket throws IOexception 403 response code. It seems the server deny my access.

3. I try to access the Server from Explorer by URL(http://localhost:8080/v2/keys) to test. But It will pop up a window to request

User and password
I didn't find the area to set certificate or user ,password for jetty in TS server. So I would like to know how can I turn off the security check
In Server or where I can check the certificate ,user ,password in TS server side?

Thanks
Best Regards






________________________________
This message and any attachments are intended solely for the addressees and may contain confidential information. Any unauthorized use or disclosure, either whole or partial, is prohibited.
E-mails are susceptible to alteration. Our company shall not be liable for the message if altered, changed or falsified. If you are not the intended recipient of this message, please delete it and notify the sender.
Although all reasonable efforts have been made to keep this transmission free from viruses, the sender will not be liable for damages caused by a transmitted virus.
Markus Törnqvist
2015-03-31 06:54:36 UTC
Permalink
On Tue, Mar 31, 2015 at 05:56:38AM +0000, Shi Jian wrote:

Not a WhisperSystems dev, take this with a grain of salt ;)
Post by Shi Jian
I am from China. I am using your amazing TextSecure App. I would
like to setup a TS server for basic test and learning since
The GCM is forbidden in our place. I download the latest TS server code and
May I ask how you're running the app without GCM?
Post by Shi Jian
make some services can be null which are not necessary for My test and basic
use(twillo,gcm,s3) and add some items according to the errors information
when I try to run the server. I add directory,push
messageStrore sections to let the TS Server run. Could you have a look my
local.yml file in attachment for a check?
There is no attachment. I have a thread similar to your question at
http://support.whispersystems.org/customer/en/portal/questions/11572881-how-to-get-started-with-client-development-

You may want to use http://paste.debian.net/ or somesuch service to share
your local.yml.
Post by Shi Jian
Now I am trying to connect the my customized server in the my WIN7 32bit PC
[list.snip]

Unfortunately I got nothing on those. I'll see if I can figure something out
when I'm home. Can't say exactly when, but if you get a breakthrough before me,
could you please share it? :)

Cheers!
--
mjt
Jani Monoses
2015-03-31 06:58:52 UTC
Permalink
Hello,

For client develoopment I am using this container which starts up a server
along with its dependencies:
https://github.com/janimo/textsecure-docker
Post by Markus Törnqvist
Not a WhisperSystems dev, take this with a grain of salt ;)
Post by Shi Jian
I am from China. I am using your amazing TextSecure App. I would
like to setup a TS server for basic test and learning since
The GCM is forbidden in our place. I download the latest TS server code
and
May I ask how you're running the app without GCM?
Post by Shi Jian
make some services can be null which are not necessary for My test and
basic
Post by Shi Jian
use(twillo,gcm,s3) and add some items according to the errors
information
Post by Shi Jian
when I try to run the server. I add directory,push
messageStrore sections to let the TS Server run. Could you have a look my
local.yml file in attachment for a check?
There is no attachment. I have a thread similar to your question at
http://support.whispersystems.org/customer/en/portal/questions/11572881-how-to-get-started-with-client-development-
You may want to use http://paste.debian.net/ or somesuch service to share
your local.yml.
Post by Shi Jian
Now I am trying to connect the my customized server in the my WIN7 32bit
PC
[list.snip]
Unfortunately I got nothing on those. I'll see if I can figure something out
when I'm home. Can't say exactly when, but if you get a breakthrough before me,
could you please share it? :)
Cheers!
--
mjt
Markus Törnqvist
2015-03-31 07:09:44 UTC
Permalink
Post by Shi Jian
Hello,
For client develoopment I am using this container which starts up a server
https://github.com/janimo/textsecure-docker
A quick thanks from me! Obviously didn't get to run that yet, but I
didn't know that https://github.com/WhisperSystems/PushServer
exited even, much less that it's a dependency.

I'm sure this will get me going until the next problems ;)
--
mjt
Jani Monoses
2015-03-31 07:17:39 UTC
Permalink
Post by Markus Törnqvist
Post by Shi Jian
Hello,
For client develoopment I am using this container which starts up a server
https://github.com/janimo/textsecure-docker
A quick thanks from me! Obviously didn't get to run that yet, but I
didn't know that https://github.com/WhisperSystems/PushServer
exited even, much less that it's a dependency.
It has been split off a few months ago.
I have 3 small commits on top of the server code to help with development
and running a local websocket/http-only server with no phone verification.
https://github.com/janimo/TextSecure-Server
BTW the docker container is ephemeral, I did not set up persistence for
postrgres so if you restart the container you'll need to reregister the
clients.

Jani
Post by Markus Törnqvist
I'm sure this will get me going until the next problems ;)
--
mjt
Markus Törnqvist
2015-03-31 07:26:23 UTC
Permalink
Post by Jani Monoses
I have 3 small commits on top of the server code to help with development
and running a local websocket/http-only server with no phone verification.
https://github.com/janimo/TextSecure-Server
Love it! Could the rate limiting be a config option?

Did not even notice websockets are hard-coded to be off.
Why is that?

This stuff could/should end up in a pull request :)
Post by Jani Monoses
BTW the docker container is ephemeral, I did not set up persistence for
postrgres so if you restart the container you'll need to reregister the
clients.
I never found a use-case for docker in my work, or hobbies, until now.
I might actually consider setting it up for me!
--
mjt
Jani Monoses
2015-03-31 07:32:40 UTC
Permalink
Post by Markus Törnqvist
Post by Jani Monoses
I have 3 small commits on top of the server code to help with development
and running a local websocket/http-only server with no phone verification.
https://github.com/janimo/TextSecure-Server
Love it! Could the rate limiting be a config option?
Probably, but turning it off does not make sense in production.

Did not even notice websockets are hard-coded to be off.
Post by Markus Törnqvist
Why is that?
Experimental AFAIK, no real-world users yet. I am glad the code exists for
it and can be enabled :)
Post by Markus Törnqvist
This stuff could/should end up in a pull request :)
Post by Jani Monoses
BTW the docker container is ephemeral, I did not set up persistence for
postrgres so if you restart the container you'll need to reregister the
clients.
I never found a use-case for docker in my work, or hobbies, until now.
I might actually consider setting it up for me!
Markus Törnqvist
2015-03-31 07:41:15 UTC
Permalink
Post by Jani Monoses
Post by Markus Törnqvist
Love it! Could the rate limiting be a config option?
Probably, but turning it off does not make sense in production.
Sure, but there are unsupported platforms, like Jolla my favorite
and Windows Phones. Lowering the bar for new developers is a
good idea. As are sane production defaults.
Post by Jani Monoses
Did not even notice websockets are hard-coded to be off.
Post by Markus Törnqvist
Why is that?
Experimental AFAIK, no real-world users yet. I am glad the code exists for
it and can be enabled :)
Sure, but .. whatever.. Yes, it can be enabled.

Thanks!
--
mjt
Jeff R
2015-03-31 08:07:43 UTC
Permalink
What about Windows Phone and Jolla are unsupported? Do you simply mean there is currently no client for them? Or do you mean something about TS's server implementation would prevent Windows Phone support?

-----Original Message-----
From: "Markus Törnqvist" <***@nysv.org>
Sent: ‎3/‎31/‎2015 13:11
To: "Jani Monoses" <***@gmail.com>
Cc: "Shi Jian" <***@gemalto.com>; "***@lists.riseup.net" <***@lists.riseup.net>
Subject: Re: [whispersystems] Issue about TS server connecting
Post by Jani Monoses
Post by Markus Törnqvist
Love it! Could the rate limiting be a config option?
Probably, but turning it off does not make sense in production.
Sure, but there are unsupported platforms, like Jolla my favorite
and Windows Phones. Lowering the bar for new developers is a
good idea. As are sane production defaults.
Post by Jani Monoses
Did not even notice websockets are hard-coded to be off.
Post by Markus Törnqvist
Why is that?
Experimental AFAIK, no real-world users yet. I am glad the code exists for
it and can be enabled :)
Sure, but .. whatever.. Yes, it can be enabled.

Thanks!
--
mjt
Markus Törnqvist
2015-03-31 08:09:46 UTC
Permalink
Post by Jeff R
What about Windows Phone and Jolla are unsupported? Do you simply mean there
is currently no client for them? Or do you mean something about TS's server
implementation would prevent Windows Phone support?
Sorry for not being clearer. I mean there is no client.

Although, as was said elsewhere in this thread, websockets are turned off
by default, so there's no knowing about how well they're supported.
--
mjt
Jani Monoses
2015-03-31 08:15:25 UTC
Permalink
Post by Shi Jian
Post by Jeff R
What about Windows Phone and Jolla are unsupported? Do you simply mean
there
Post by Jeff R
is currently no client for them? Or do you mean something about TS's
server
Post by Jeff R
implementation would prevent Windows Phone support?
Sorry for not being clearer. I mean there is no client.
Although, as was said elsewhere in this thread, websockets are turned off
by default, so there's no knowing about how well they're supported.
Actually the webbrowser client uses websockets, and so does my command line
client, and they can talk to the official servers,
so websocket seems to be implemented there (or was at least when I last
tried). It is not on in the source though.

Jani
Jeff R
2015-03-31 08:34:25 UTC
Permalink
Thanks! Are there dev certs available for GCM, Apple, etc for running your own server? Or is the expectation that you get your own certs for testing purposes?

-----Original Message-----
From: "Markus Törnqvist" <***@nysv.org>
Sent: ‎3/‎31/‎2015 13:39
To: "Jeff R" <***@gmail.com>
Cc: "Jani Monoses" <***@gmail.com>; "Shi Jian" <***@gemalto.com>; "***@lists.riseup.net" <***@lists.riseup.net>
Subject: Re: [whispersystems] Issue about TS server connecting
Post by Jeff R
What about Windows Phone and Jolla are unsupported? Do you simply mean there
is currently no client for them? Or do you mean something about TS's server
implementation would prevent Windows Phone support?
Sorry for not being clearer. I mean there is no client.

Although, as was said elsewhere in this thread, websockets are turned off
by default, so there's no knowing about how well they're supported.
--
mjt
Jens B.
2015-03-31 09:22:06 UTC
Permalink
Also the regular client uses WebSockets now too. GCM is only used for
notifying the client of available messages.
Post by Jeff R
Thanks! Are there dev certs available for GCM, Apple, etc for running your
own server? Or is the expectation that you get your own certs for testing
purposes?
------------------------------
Sent: ‎3/‎31/‎2015 13:39
Subject: Re: [whispersystems] Issue about TS server connecting
Post by Jeff R
What about Windows Phone and Jolla are unsupported? Do you simply mean
there
Post by Jeff R
is currently no client for them? Or do you mean something about TS's
server
Post by Jeff R
implementation would prevent Windows Phone support?
Sorry for not being clearer. I mean there is no client.
Although, as was said elsewhere in this thread, websockets are turned off
by default, so there's no knowing about how well they're supported.
--
mjt
Shi Jian
2015-03-31 07:50:30 UTC
Permalink
Hello,
I am not very familiar with what you are talking about . May be your guys go far away from me.
I did following things in my PC.
1.I removed following code in handleSmsRegistrationIntent() of TestSecure APP to skip phone verification. Is it ok?
// accountManager.requestSmsVerificationCode();
//
// setState(new RegistrationState(RegistrationState.STATE_VERIFYING, number));
// String challenge = waitForChallenge();
// accountManager.verifyAccount(challenge, signalingKey, true, registrationId);

2. the state will directly go to STATE_GENERATING_KEYS in RegistrationService.java
But the connection with the Server will give 403 response whatever ENFORCE_SSL is true or flase.
Do you think this is caused by the skip of verification code?

From: Jani Monoses [mailto:***@gmail.com]
Sent: Tuesday, March 31, 2015 3:33 PM
To: Markus Törnqvist
Cc: Shi Jian; ***@lists.riseup.net
Subject: Re: [whispersystems] Issue about TS server connecting
Post by Jani Monoses
I have 3 small commits on top of the server code to help with development
and running a local websocket/http-only server with no phone verification.
https://github.com/janimo/TextSecure-Server
Love it! Could the rate limiting be a config option?

Probably, but turning it off does not make sense in production.

Did not even notice websockets are hard-coded to be off.
Why is that?

Experimental AFAIK, no real-world users yet. I am glad the code exists for it and can be enabled :)

This stuff could/should end up in a pull request :)
Post by Jani Monoses
BTW the docker container is ephemeral, I did not set up persistence for
postrgres so if you restart the container you'll need to reregister the
clients.
I never found a use-case for docker in my work, or hobbies, until now.
I might actually consider setting it up for me!


________________________________
This message and any attachments are intended solely for the addressees and may contain confidential information. Any unauthorized use or disclosure, either whole or partial, is prohibited.
E-mails are susceptible to alteration. Our company shall not be liable for the message if altered, changed or falsified. If you are not the intended recipient of this message, please delete it and notify the sender.
Although all reasonable efforts have been made to keep this transmission free from viruses, the sender will not be liable for damages caused by a transmitted virus.
Moxie Marlinspike
2015-03-31 15:57:39 UTC
Permalink
Hey Shi, this mailing list is not a support forum. I'd prefer it if you
posted these types of questions to the support center, or somewhere else.

Thanks,

- moxie
Post by Shi Jian
Hello,
I am from China. I am using your amazing TextSecure App. I
would like to setup a TS server for basic test and learning since
The GCM is forbidden in our place. I download the latest TS server code
and make some services can be null which are not necessary for
My test and basic use(twillo,gcm,s3) and add some items according to
the errors information when I try to run the server. I add directory,push
messageStrore sections to let the TS Server run. Could you have a look
my local.yml file in attachment for a check?
Now I am trying to connect the my customized server in the my
1. Change the PUSH_URL to my localhost:8080 in Release.java
2. I notice the SSLContext is using a certificate from
whisper.store in raw directory. So I keep the ENFORCE_SSL as true. But the
getConnection() in PushServiceSocket throws IOexception 403 response
code. It seems the server deny my access.
3. I try to access the Server from Explorer by
URL(http://localhost:8080/v2/keys) to test. But It will pop up a window
to request
User and password
I didn’t find the area to set certificate or user ,password for
jetty in TS server. So I would like to know how can I turn off the
security check
In Server or where I can check the certificate ,user ,password in TS server side?
Thanks
Best Regards
------------------------------------------------------------------------
This message and any attachments are intended solely for the addressees
and may contain confidential information. Any unauthorized use or
disclosure, either whole or partial, is prohibited.
E-mails are susceptible to alteration. Our company shall not be liable
for the message if altered, changed or falsified. If you are not the
intended recipient of this message, please delete it and notify the sender.
Although all reasonable efforts have been made to keep this transmission
free from viruses, the sender will not be liable for damages caused by a
transmitted virus.
--
http://www.thoughtcrime.org
Seth David Schoen
2015-03-31 16:02:25 UTC
Permalink
Post by Moxie Marlinspike
Hey Shi, this mailing list is not a support forum. I'd prefer it if you
posted these types of questions to the support center, or somewhere else.
Moxie, could you explain more about the intended purposes of this list?
When I first subscribed I had the impression that development-related
questions, including at the level of how to do things with the code
base, were on-topic here, but you've recently told two people that
questions of that sort were "support" issues.
--
Seth Schoen <***@eff.org>
Senior Staff Technologist https://www.eff.org/
Electronic Frontier Foundation https://www.eff.org/join
815 Eddy Street, San Francisco, CA 94109 +1 415 436 9333 x107
Moxie Marlinspike
2015-03-31 16:20:05 UTC
Permalink
Post by Seth David Schoen
Moxie, could you explain more about the intended purposes of this list?
When I first subscribed I had the impression that development-related
questions, including at the level of how to do things with the code
base, were on-topic here, but you've recently told two people that
questions of that sort were "support" issues.
Asking how to setup your own TextSecure server is a support question,
just as asking how to install the TextSecure client would be a support
question. We redirect all support-related queries to the support center.

However, the TextSecure server is also not a supported product -- we
make the source available, but we don't have time to prioritize helping
people with it.

- moxie
--
http://www.thoughtcrime.org
Markus Törnqvist
2015-03-31 17:52:05 UTC
Permalink
Post by Moxie Marlinspike
Asking how to setup your own TextSecure server is a support question,
just as asking how to install the TextSecure client would be a support
question. We redirect all support-related queries to the support center.
I recommend we keep this up at
http://support.whispersystems.org/customer/en/portal/questions/11572881-how-to-get-started-with-client-development-
then. I'll reply there when I have the time to focus on this again. Might
not be much before the weekend.
Post by Moxie Marlinspike
However, the TextSecure server is also not a supported product -- we
make the source available, but we don't have time to prioritize helping
people with it.
Didn't know that. Kinda makes sense. Hopefully you accept pull requests,
cuz there might be some coming that make the server easier to run.

So let's make this work as a community effort!
--
mjt
Loading...