mjustin

Habarisoft released new versions of the native STOMP client libraries for Delphi / Object Pascal for integration with popular open source message brokers: Habari STOMP Client for ActiveMQ 8.4 – tested with Apache ActiveMQ 5.18.3 Habari STOMP Client for Artemis 8.4 – tested with Apache ActiveMQ Artemis 2.31.0 Habari STOMP Client for OpenMQ 8.4 – tested with Eclipse OpenMQ 6.4.0 Habari STOMP Client for RabbitMQ 8.4 – tested with RabbitMQ 3.12.7 and 3.13.0-rc.1 Release notes: https://www.habarisoft.com/release_notes.html

Habarisoft released new versions of the native STOMP client libraries for Delphi / Object Pascal for integration with popular open source message brokers: Habari STOMP Client for ActiveMQ 8.5 – tested with Apache ActiveMQ 5.18.3 and 6.0.0 Habari STOMP Client for Artemis 8.5 – tested with Apache ActiveMQ Artemis 2.31.2 Habari STOMP Client for OpenMQ 8.5 – tested with Eclipse OpenMQ 6.4.0 Habari STOMP Client for RabbitMQ 8.5 – tested with RabbitMQ 3.12.10 and 3.13.0-rc.2 Release notes: https://www.habarisoft.com/release_notes.html

Could you attach/upload the last version of your code? This would make it easier to reproduce the issue and to create a bug report for it.

The Content-Type header value looks suspicious: application%2Fjson RESTListResGroupResponse.JSONValue maybe is empty because the content type is not the expected one, application/json As can be seen in the screen shot, all other slashes are not encoded as #2F. If the request header Content-Type is not required, just remove it from the request setup and try if this helps.

Sorry for my mistake, I mistook a post of a different user as being from you. If the postman call succeeds, I'd check every single HTTP element and modify the Delphi request to be the same. Postman shows all headers and payloads. One header, which is frequently said to be causing errors, is the User-Agent. So I'd check and use the same header that Postman uses.

Did you check https://learn.microsoft.com/en-us/graph/api/user-get?view=graph-rest-1.0&tabs=http#permissions? A potential reasons for the 401 is the missing scope User.ReadAll. You wrote that you use Application type. For the Application permission type, the table says that the "Least privileged permission" is User.Read.All, however, yor code uses User.Read: RESTTokenRequest.Params.AddItem('scope', 'openid profile offline_access Mail.Read Mail.Send User.Read', TRestRequestParameterKind.pkREQUESTBODY); Also, for testing user profile access, there is no need to include the scopes profile, offline_access, Mail.Read and Mail.Send. Try this: RESTTokenRequest.Params.AddItem('scope', 'openid User.ReadAll', TRestRequestParameterKind.pkREQUESTBODY); The API documentation also explains that with Application permission type, only the admin can consent. Calling the API endpoint https://graph.microsoft.com/v1.0/me may return the admin user profile only. If you need the user profile of other users, use the HTTP request described in https://learn.microsoft.com/en-us/graph/api/user-get?view=graph-rest-1.0&tabs=http#http-request /users/{id | userPrincipalName} Hope this helps

Does the server run out of resources? What does netstat say about client connections? Does the server cleanup (remove) stale connections?

With Indy, the recommended way to send a message to a specific client is to assign an unique client id to new connections in the OnConnect method of the server. The server application then can use the client id to limit the message to one (or some) of the connected clients. Technically, the client id would be a property in a subclass of the TIdContext class, and this class must be "registered" with the Indy TCP server. There are plenty of articles on the web covering this technique.

The 2023.02 release adds new adapters for mORMot 1 and 2, in addition to the Internet Direct (Indy) and Synapse (r266) adapters. This release contains: Habari STOMP Client for ActiveMQ 8.0 - tested with Apache ActiveMQ 5.17.3 - https://activemq.apache.org/ Habari STOMP Client for Artemis 8.0 - tested with Apache ActiveMQ Artemis 2.28.0 - https://activemq.apache.org/components/artemis/ Habari STOMP Client for OpenMQ 8.0 - tested with Eclipse OpenMQ 6.3.0 and 6.4.0-SNAPSHOT - https://github.com/eclipse-ee4j/openmq Habari STOMP Client for RabbitMQ 8.0 - tested with RabbitMQ 3.10.17 and 3.11.8 - https://www.rabbitmq.com/ Release 8.0 brings minor breaking changes, please check the included "Getting Started" documentation (PDF). Release notes: Full release notes can be found at: https://www.habarisoft.com/release_notes.html Home page, demo download, full documentation: https://www.habarisoft.com/

Habari STOMP Client libraries release 2023.08 Habarisoft released new versions of its native STOMP client libraries for Delphi / Object Pascal for integration with popular open source message brokers: Habari STOMP Client for ActiveMQ 8.3 – tested with Apache ActiveMQ 5.18.2 Habari STOMP Client for Artemis 8.3 – tested with Apache ActiveMQ Artemis 2.30.0 Habari STOMP Client for OpenMQ 8.3 – tested with Eclipse OpenMQ 6.4.0 Habari STOMP Client for RabbitMQ 8.3 – tested with RabbitMQ 3.11.20, 3.12.2, 3.13.0-beta.3 Release notes: https://www.habarisoft.com/release_notes.html

Does marsRequest.RemoteIP contain an empty string, or an unexpected value? And do the other fields of marsRequest contain sensible (non-default) values?

It is a very simple POST method request to a HTTPS address and with a JSON body. A small example how this can be done with Indy (included in Delphi) is here: https://mikejustin.wordpress.com/2015/03/14/indy-10-6-https-post/ Line 16 defines the body of the message. Replace it with your required JSON string. Line 21 send the message, change the server address to your destination server. It requires the OpenSSL DLLs which can be downloaded from https://github.com/IndySockets/OpenSSL-Binaries

ScroogeXHTML for Object Pascal is a library which supports a subset of the Rich Text Format (RTF) standard. It converts RTF to HTML5 and XHTML standalone documents, or to fragments which can be embedded in other documents. ScroogeXHTML is compatible with Delphi 2009+ and Free Pascal 3.2.0. Home page, Getting Started PDF, and demo download: https://www.scroogexhtml.com/object_pascal.html API online: https://www.habarisoft.com/scroogexhtml/8.3/docs/api/

ScroogeXHTML for Object Pascal 8.4 released ScroogeXHTML for Object Pascal is a library which supports a subset of the Rich Text Format (RTF) standard. It converts RTF to HTML5 and XHTML stand-alone documents, or to fragments which can be embedded in other documents. The library is compatible with Delphi 2009+ and Free Pascal 3.2.0. The 8.4 release fixes some minor issues. Full release notes are at https://www.habarisoft.com/scroogexhtml/8.4/docs/api/version.html Home page, Getting Started PDF, and demo download: https://www.scroogexhtml.com/object_pascal.html API online: https://www.habarisoft.com/scroogexhtml/8.4/docs/api/

Habari STOMP Client libraries release 2023.06 Habarisoft released new versions of its native STOMP client libraries for Delphi / Object Pascal for integration with popular open source message brokers: Habari STOMP Client for ActiveMQ 8.2 – tested with Apache ActiveMQ 5.18.0 Habari STOMP Client for Artemis 8.2 – tested with Apache ActiveMQ Artemis 2.28.0 Habari STOMP Client for OpenMQ 8.2 – tested with Eclipse OpenMQ 6.4.0 Habari STOMP Client for RabbitMQ 8.2 – tested with RabbitMQ 3.12.0 This version contains a new decoder for STOMP header lines.

Apache ActiveMQ supports MQTT (and other protocols) and discovery: https://activemq.apache.org/discovery With Delphi: https://mikejustin.wordpress.com/2021/08/14/discover-activemq-brokers-with-delphi-xe4-and-indy-10-6/

Whether the credentials will be saved (or updated) in the browser app is typically a user choice, presented after the login data is entered. Unless this feature is disabled completely. Can you give more information about environment / use case / functional requirements?

The Daraja HTTP Server Framework is a free open source library for Object Pascal (Free Pascal 3,1.0 or Delphi 2009+), based on the stand-alone HTTP server component in Internet Direct (Indy). With the 2.5-SNAPSHOT release, most code is now single-source and more readable, there are no "IFDEF FPC" branches anymore to use the Free Pascal fgl generics library. All DUnit / FPCUnit - based tests run successfully. The full 2.5-SNAPSHOT source and demo code is available at GitHub. Demo applications cover - for example - OAuth 2.0 and Twitter Bootstrap. More information - GitHub: https://github.com/michaelJustin/daraja-framework - API documentation: http://michaeljustin.github.io/daraja-framework/ - Wiki: https://github.com/michaelJustin/daraja-framework/wiki - Features and FAQ: https://www.habarisoft.com/daraja_framework.html

The Daraja HTTP Server Framework is a free open source library for Object Pascal (Free Pascal 3.2.0 or Delphi 2009+), based on the HTTP server component in Internet Direct (Indy). New: the 2.6-SNAPSHOT includes a first implementation of the Web Filter API, which allows pre- and postprocessing of HTTP requests and responses. Web Filters are useful for example to add logging and auditing, input validation, or authentication. Filters may be composed in filter chains, where the order of filter execution is defined by the order of registration. Web Filter instances may configured through init parameters. Example code In the test example below, the Web Component TExamplePage returns the plain-text response "example", and the filters (TTestFilterA and TTestFilterB) add the texts " (A)" and " (B)" to the response. The client therefore receives the response "example (A) (B)". Code: Pascal [Select][+] procedure TAPIConfigTests.TestTwoFilters; var Server: TdjServer; Context: TdjWebAppContext; begin Server := TdjServer.Create; try Context := TdjWebAppContext.Create('web'); // Context located at http://<server:port>/web/ Context.AddWebComponent(TExamplePage, '*.txt'); // Web Component responds to all requests for txt documents Context.AddWebFilter(TTestFilterA, TExamplePage); // Web Filter A will be processed first and appends " (A)" Context.AddWebFilter(TTestFilterB, TExamplePage); // Web Filter B will be processed second and appends " (B)" Server.Add(Context); Server.Start; CheckGETResponseEquals('example (A) (B)', '/web/test.txt'); finally Server.Free; end; end; Code for the DoFilter method of TTestFilterA: procedure TTestFilterA.DoFilter(Context: TdjServerContext; Request: TdjRequest; Response: TdjResponse; const Chain: IWebFilterChain); begin Chain.DoFilter(Context, Request, Response); // invoke other filters and eventually the Web Component Response.ContentText := Response.ContentText + ' (A)'; end; Full source code, including DUnit and FPCUnit tests, is available at GitHub. The Web Filter API specification is still in development and may still see minor and major changes. More information - GitHub: https://github.com/michaelJustin/daraja-framework - 2.6-SNAPSHOT API documentation: https://michaeljustin.github.io/daraja-framework/2.6-SNAPSHOT/ - Project home page: https://www.habarisoft.com/daraja_framework.html

Habari STOMP Client libraries release 2023.04 Habarisoft released new versions of its native STOMP client libraries for Delphi / Object Pascal for integration with popular open source message brokers: Habari STOMP Client for ActiveMQ 8.1 – tested with Apache ActiveMQ 5.18.0 Habari STOMP Client for Artemis 8.1 – tested with Apache ActiveMQ Artemis 2.28.0 Habari STOMP Client for OpenMQ 8.1 – tested with Eclipse OpenMQ 6.4.0 Habari STOMP Client for RabbitMQ 8.1 – tested with RabbitMQ 3.11.12 This version is mainly a maintenance release and tested with the latest message broker versions. Full release notes can be found at: https://www.habarisoft.com/release_notes.html Home page: https://www.habarisoft.com/

Yes, this would cause more work / administration. But maybe you missed the last part: "The accepted answer describes a different solution, using a 'user cert store. (...)" With this solution, no additional user would be needed. The certificate will reside in a user cert store, and is readable only for the user, inaccessible for other users.. Currenly the client is in Python: > For the client I use python while the server is done with Indy 10 using TIdTCPServer. So if there is Python support for cert stores it should be solvable. Alternatively, with Delphi, other HTTP clients may support reading from cert stores (TNetHTTPClient or others).

A client certificate should be stored in a safe place, which is not even accessible / exportable by the logged in user. Just an idea: using a cert store, the certificate may be installed with private keys marked as not exportable. Reference: How to protect private key for client cert in machine store? Is it acceptable for it to be exportable? https://security.stackexchange.com/q/260614 The accepted answer describes a different solution, using a 'user cert store'. If I understand correctly, other users would not be able to access the certificate and private key.

To clarify: you are looking for protection against malicious clients, and the server is not a concern?

TRestRequest.AddParameter('contentType', 'application/JSON', In the Screenshot cURL snippet, it is 'Content-Type: application/json'. (contentType seems to be wrong)

I have not used it in my programs, but SyncObjs.TEvent seems to be standard practice (and should be available on the Linux platform) Draft code: begin HttpServer := TMyHttpServer.Create; try HttpServer.Start; // now the server is processing requests // wait for terminate signal while MyEvent.WaitFor(MaxInt) <> wrSignaled do; // now terminate HttpServer.Stop; finally HttpServer.Free; end; end; The handler code for the http://webserver:port/stopserver URL would call MyEvent.SetEvent, and this will cause to leave the WaitFor loop.