paule12345
Participant
paule12345
Participant
Activity
‎Sep 05, 2024
09:10 AM
1 Upvote
Is there an ETA on when Adobe is releasing a CF 2021 Update 15 installer that doesn't delete previously installed packages?
... View more
‎May 09, 2024
08:54 AM
When you installed the font in Windows, did you install it for "all users"? If the CF Service is running as another user, that might be an issue? What happens when you open the PDF in Adobe Reader - does it display any messages about missing fonts?
... View more
‎Oct 14, 2023
09:03 PM
Thanks for the cfstart tip, Charlie. Ran windows updates on Windows 2019 server today, restarted the machine and the CF 2021 (Update 10) service would not restart. Nothing written to the coldfusion-error.log. Ran cfstart from the command line and it mentioned an access violation error in the java runtime environment. Oddly enough a reinstall of JDK 11.0.20 fixed the problem.
... View more
‎Jul 19, 2023
12:12 PM
1 Upvote
FWIW, I got an email notification from the Adobe security mailing list at 1:47 PM ET today (July 19)
... View more
‎Jan 17, 2023
07:34 PM
I remember struggling with this many years ago, but you can reference an external CSS file inside the cfdocument tag. IIRC the key was to use @Import in the HTML to reference it. cfdocument is limited to a subset of CSS2 and newer CSS3 stuff won't work. <style>
@import url(https://yourserver.com/css/yourcsslayout.css);
</style>
... View more
‎May 09, 2022
11:55 AM
If you want to go the Duo route, using their Duo Web SDK, there's a CFC for that here: https://github.com/duosecurity/duo_coldfusion Duo Web SDK implementation steps: https://duo.com/docs/duoweb-v2 It's been a few years, but I was successful in getting Duo to work with our CF logins without too much trouble...
... View more
‎Mar 04, 2022
10:05 AM
1 Upvote
We switched to using the cfx_http5 tag for that particular vendor's API. Forced TLS 1.2 with the ssl="5" parameter on the tag.
... View more
‎Dec 16, 2021
01:32 PM
FYI in regards to version 2.15, I just received this notice from our datacenter provider: "... an additional vulnerability has been identified in the previously released fix for CVE-2021-44228. This new vulnerability impacts Apache Log4j 2.15.0 and has been identified as CVE-2021-45046. If exploited, this vulnerability could result in a denial of service (DOS) attack. This vulnerability has been addressed in Log4j version 2.16.0."
... View more
‎Dec 15, 2021
02:25 PM
We updated to 2.16 last night on our CF2018 Enterprise and CF2021 Enterprise instances (IIS 10) and have been running all day without issues. Many thanks to the advice posted here!
... View more
‎Nov 09, 2021
01:07 PM
Try forcing TLS1.2 in your CF install's JVM arguments. Add these flags: -Djdk.tls.client.protocols=TLSv1.2
-Dhttps.protocols=TLSv1.2 Earlier this year we had a problem with CFHTTP failing to connect to an external vendor's API who had added support for TLS1.3, and setting those flags fixed it for us.
... View more
‎Oct 21, 2021
02:04 PM
1 Upvote
Another headscratcher was this note in the technote: "If you've created a mapping of the cf_scripts folder, you must copy the contents of the downloaded zip into CF_SCRIPTS/scrips/ajax folder to download the ajax package." I think they mean to say if you've created a copy of CF_SCRIPTS folder elsewhere on your server, you need to copy the updated CF_SCRIPTS files from C:\ColdFusion2021\cfusion\wwwroot\cf_scripts over to that location. There are no "cf_scripts" files in the "downloaded zip"
... View more
‎Oct 21, 2021
01:47 PM
1 Upvote
I went through the CF2021 update 2 today and indeed found it convoluted. First, the automated updater in CF Admin didn't work (it never works, in my experience, but I gave it a shot anyway). I run the CF service under a different user account, perhaps that's why the automated updater never works for me. It was unable to stop the CF service and properly apply the update. The update log showed files/folders unable to be moved/deleted, yada yada. So back to the old tried and true update from the command line... The technote mentions : "Update "packagesurl" in cfusion/lib/neo_updates.xml of cfusion and all its child instances to point to <InstallerReposityUnzippedPath>/bundles/bundlesdependency.json present inside the downloaded folder" I did not understand the point of updating the neo_updates.xml since it seems to tell the CF admin *automated* installer where to find packages, but since we're doing manual updates, what's the point of that? I skipped that step. Once I manually got the coldfusion service terminated, I ran the JAR from the command line and everything seems to have updated ok. Then, updated the connector just in case. Does CF 2021 update 2 require an additional patch for the Query of Queries bug that CF 2018 update 12 has?
... View more
‎Sep 10, 2021
09:34 PM
I ran your PDF through the CFPDF tag (CF2018) and it did flatten the PDF minus the signature squiggle. <cfpdf action="write" flatten="yes" source="d:\myserver\FinishedDoc9756.pdf" destination="d:\myserver\finisheddoc_flat.pdf" overwrite="yes">
... View more
‎Sep 10, 2021
09:17 PM
Nevermind, thanks to this forum software when I right clicked on the link it saved the forum HTML and not the document. Doh.
... View more
‎Sep 10, 2021
09:11 PM
This forum software sucks, can't see how to edit my reply, but look at the HTML and it's full of AEM related javascript code. I think you need to look into the AEM Output service I mentioned above, to get you an actual PDF file.
... View more
‎Sep 10, 2021
09:06 PM
Well the first thing I notice is when I right click save to disk, your "pdf" is actually an HTML document with a .pdf extension. Open the "pdf" in notepad and it's HTML text.
... View more
‎Sep 10, 2021
08:41 AM
I'm not familiar with AEM, but taking a quick look at the documentation, I found this regarding the AEM Output service. One of the functions is to create a "non-interactive PDF" which is what I would call a "flattened" PDF. https://experienceleague.adobe.com/docs/experience-manager-64/forms/use-document-services/output-service.html?lang=en I'm wondering if the form-filled PDF's you're generating are being assembled in the client's browser using AEM client-side browser code and not actually assembled and saved to disk on the server? That would explain why the form field data disappears when you try to "flatten", because the server side master document is not actually being updated on the server side. We use the CFPDF tag all the time to form-fill, apply stamps, and flatten the resulting PDF, so I think there's something else going on with the way AEM operates.
... View more
‎Sep 03, 2021
11:31 AM
1 Upvote
You might want to take a look at Ghostscript. We call the ghostscript command line exe from CF to convert PDFs to JPGs, for example.
... View more
‎Apr 11, 2021
07:01 AM
I don't see a reference to TLS versions in the API usage manuals, perhaps you are referring to their mention of *SOAP* 1.1 and *SOAP* 1.2 ? The site is running TLS 1.2 and TLS 1.3 as verified by the testing tools mentioned in this thread (SSLLabs.com, Geekflare, etc) I just gave CURL 7.76 a try with the -verbose option and the log shows that it connects to the site via TLS 1.3 * SSL connection using TLSv1.3 / TLS_CHACHA20_POLY1305_SHA256
... View more
‎Apr 10, 2021
01:52 PM
BKBK, the error you're getting with the CURL test is most likely because the SOAP packet you're submitting is empty, malformed or missing required parameters. The fact that you got a textual error response back from the webservice tells me that CURL is successfully doing a TLS handshake with their server. The problem I'm having here is that CF and/or the underlying JDK is not even able to make that initial TLS handshake unless we force the JDK to use TLSv1.2 only.
... View more
‎Apr 04, 2021
02:13 PM
BKBK, with both TLSv1.3 and TLSv1.2 in the flags as you suggest, the connection fails with the same error as before.
... View more
‎Mar 31, 2021
11:43 AM
Charlie, I added your code to the page and it reports java version 11.0.10
... View more
‎Mar 31, 2021
11:42 AM
Jamo, I'd rather not make the URL public. If there's a way to send it to you privately, let me know.
... View more
‎Mar 30, 2021
09:44 PM
The forum software wouldn't let me edit the original post to clarify, so... the debug log is from when the force TLS 1.2 option is *not* enabled and CFHTTP does not connect. CF Admin shows the java version as 11.0.10 Even tried java 15.0.2 to see if that version had a fix, and got the same error. I'll throw out another curious thing, the vendor's server API is an .aspx endpoint which implies Windows Server, which as far as I know does not support TLS 1.3 yet, so perhaps they have a proxy server in front of it.
... View more
‎Mar 30, 2021
05:48 PM
Recently a vendor we work with updated their server to support TLS 1.3 in addition to TLS 1.2 and our CFHTTP calls to their API are now failing with an Errordetail "I/O Exception: www.thevendor.net:443 failed to respond" - Testing from our server to theirs using java (11.0.10) SSLPoke succeeds. - Scanning their API endpoint with the SSLLabs testing tool shows no issues. - Accessing their API endpoint with Chrome browser has no issues. - If I modify our code to use the CFX_HTTP5 custom tag, the connection succeeds. - If I add jvm.config flags to force TLS 1.2, the connection succeeds, specifically: -Djdk.tls.client.protocols=TLSv1.2 -Dhttps.protocols=TLSv1.2 If I enable SSL handshake debugging with the jvm flag -Djavax.net.debug=ssl,handshake,verbose coldfusion-error.log doesn't show an exception but the last few lines show these lines that I don't see in a successful TLS 1.2 connection: javax.net.ssl|DEBUG|E1|ajp-nio-127.0.0.1-8020-exec-4|2021-03-30 19:44:22.918 CDT|SSLCipher.java:1994|KeyLimit write side: algorithm = AES/GCM/NOPADDING:KEYUPDATE countdown value = 137438953472 javax.net.ssl|DEBUG|E1|ajp-nio-127.0.0.1-8020-exec-4|2021-03-30 19:44:22.940 CDT|SSLSocketImpl.java:727|close inbound of SSLSocket javax.net.ssl|DEBUG|E1|ajp-nio-127.0.0.1-8020-exec-4|2021-03-30 19:44:22.941 CDT|SSLSocketImpl.java:761|close outbound of SSLSocket javax.net.ssl|DEBUG|E1|ajp-nio-127.0.0.1-8020-exec-4|2021-03-30 19:44:22.941 CDT|SSLSocketImpl.java:479|duplex close of SSLSocket javax.net.ssl|DEBUG|E1|ajp-nio-127.0.0.1-8020-exec-4|2021-03-30 19:44:22.941 CDT|SSLSocketImpl.java:1587|close the SSL connection (passive) I see the behavior on CF 2016 / 2018 / 2021 with the latest patches, running Java 11.0.10 on Windows Server 2019.
... View more
‎Dec 19, 2020
09:39 AM
BKBK, I tried your code today and the script ran to completion. It did not spawn a duplicate thread after 6 minutes. Something else in our code must be causing it. I'll have to do some more testing with our actual production code.
... View more
‎Dec 18, 2020
10:55 AM
We've observed the same behavior on our CF2016 Enterprise install on Windows 2012. We see CF scripts that take longer than 6 minutes spawn a duplicate thread. I can see it in FusionReactor, at approx 377,000 ms, a duplicate thread will fire up. cfsetting requesttimeout has no effect. Timeout settings in CF admin have no effect. IIS app pool recycling is not causing it. This is not a scheduled task.
... View more
‎Jan 21, 2020
11:09 AM
1 Upvote
Try adding this to the sandbox with RWD permissions. C:/ColdFusion11/cfusion/runtime/work/Catalina/localhost/tmp/- Back in my CF11 days I remember having to explicitly add that to get certain things to work in the sandbox.
... View more
‎Jan 08, 2020
08:11 AM
1 Upvote
I did a quick search for SelectAllEditableRanges, and it seems your perl script is possibly using Microsoft Office Automation to process the document. It's probably trying to execute MS Word and that's where it could be failing. This article may be of use to you: http://shamcf.blogspot.com/2014/08/not-able-to-run-vbscript-using.html
... View more
‎Nov 14, 2019
09:33 AM
You're probably referring to this issue with HTTP/2: https://tracker.adobe.com/#/view/CF-4198446 Seems the solution is to install KB4093120 from Microsoft or disable HTTP/2.
... View more
AdChoices