I m learning cbsecurity and keep coming across the following cfml #box-products

I'm learning cbsecurity and keep coming across the...

ryan

03/30/2022, 6:21 PM

I'm learning cbsecurity and keep coming across the following error.

Copy code

invalid component definition, can't find component [cbsecurity.interceptors.Security]

F:\code\web\sites\api\coldbox\system\core\util\Util.cfc: line 413
411: arguments.md = (
412: isObject( arguments.component ) ? getMetadata( arguments.component ) : getComponentMetadata(
413: arguments.component
414: )
415: );

called from F:\code\web\sites\api\coldbox\system\ioc\config\Mapping.cfc: line 521

I have fwreinited coldbox multiple times. I verified that the cbsecurity.interceptors.Security.cfc exists in the cbsecurity module. Is there something I might be missing somewhere?

ryan

03/30/2022, 6:35 PM

@wil-shiftinsert thanks, I will check that shortly.

ryan

03/30/2022, 6:38 PM

@wil-shiftinsert I believe it is referring to the interceptor within the cbsecurity module.

wil-shiftinsert

03/30/2022, 7:02 PM

Yes, on initialization of the module the cbsecurity interceptor is loaded. Bu on init the cbsecurity mapping should already be present

ryan

03/30/2022, 7:02 PM

ok, thank you. I will look into the mapping.

wil-shiftinsert

03/30/2022, 7:04 PM

Are you trying to map some model in wirebox which has a cbsecurity dependency?

ryan

03/30/2022, 7:50 PM

not that I am aware of

ryan

03/30/2022, 7:51 PM

this is an example that I grabbed so maybe there is something in it already out of whack, possibly

Patrick

03/30/2022, 8:01 PM

can you share more of your stack error; not sure if there is more that can be discovered

ryan

03/30/2022, 8:12 PM

Here is more of the stack error:

Copy code

F:\code\web\sites\fadometer-api\coldbox\system\core\util\Util.cfc: line 413
called from F:\code\web\sites\fadometer-api\coldbox\system\ioc\config\Mapping.cfc: line 521
called from F:\code\web\sites\fadometer-api\coldbox\system\ioc\config\Mapping.cfc: line 532
called from F:\code\web\sites\fadometer-api\coldbox\system\ioc\Injector.cfc: line 508
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\InterceptorService.cfc: line 427
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\InterceptorService.cfc: line 418
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\InterceptorService.cfc: line 338
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\InterceptorService.cfc: line 158
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\InterceptorService.cfc: line 160
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\InterceptorService.cfc: line 112
called from F:\code\web\sites\fadometer-api\coldbox\system\web\services\LoaderService.cfc: line 70
called from F:\code\web\sites\fadometer-api\coldbox\system\Bootstrap.cfc: line 111
called from F:\code\web\sites\fadometer-api\Application.cfc: line 27

Patrick

03/30/2022, 10:26 PM

Hmm yea doesnt really explain much more; do you have a specific tutorial or example code you are trying to follow? Or is there only specific times this is throwing?

Patrick

03/30/2022, 10:27 PM

there are numerous approaches to using and configuring this; Wil is actually who helped me a ton on using this!

ryan

03/31/2022, 4:09 PM

I found a couple of resources as examples. The one giving me trouble is the following and I just noticed modified code in Application.cfc when attempting to troubleshoot an issue related to Lucee. I'm taking that back out now and testing, but here is the following link to it. https://github.com/irvirv/cbsecurity_template.git One of the examples works out of the box after pulling it from https://github.com/wpdebruin/cbsecurity_demo

ryan

03/31/2022, 4:11 PM

Yeah, my environment for that first link works now. Sorry about that. However, as I am learning this, would you guys mind if reach out to either of you if I have questions? My focus on this is to learn cbSecurity, cbAuth, JWT, and BCrypt so that I can set it up for creating a Coldbox API.

ryan

03/31/2022, 4:15 PM

I would like to learn the rule-based handler, but I am familiar with a sort of home-grown version of using

secured

annotations, so maybe that might be best to learn first.

wil-shiftinsert

03/31/2022, 4:16 PM

yes, the wpdebruin repo is mine 🙂 . Did you ever see my blogposts on cbsecurity at https://shiftinsert.nl/tag/cbsecurity/ ? I think I have most of it covered in the cbsecurity(1/2 and 3) posts

ryan

03/31/2022, 4:18 PM

oh nice! I sure did! I read through it all. It has been a couple of weeks now and getting back to this, so my mind is a bit fuzzy and will probably have to go over it, again. I truly appreciate your work and effort in making the blogs about setting this all up. Thank you, Wil.

ryan

03/31/2022, 4:18 PM

Would you blog about this work just the same for an API setup?

wil-shiftinsert

03/31/2022, 4:20 PM

Most of my work was on api development, so yes. You should probably use jwt for that, not sure if I have everything covered in my posts.

wil-shiftinsert

03/31/2022, 4:21 PM

My sample code is a bit simplistic, but should show you the concepts. I’ve used most of it, including jwt. If you are just starting I would advise the annotation version first. Once you have this running it is quite easy to change to rules, which are a bit more flexible. You just have to be careful about your rules order

wil-shiftinsert

03/31/2022, 4:24 PM

Actually I was planning on one or more blog posts including a sample repo, but this time with a full database model with users, roles, permissions, jwt and some bcrypt. But I didn’t have time yet

wil-shiftinsert

03/31/2022, 4:28 PM

Feel free to ask if you have any questions, But be advised I am in a quite different time zone six hours ahead of yours. So dinner time here right now 🙂.

wil-shiftinsert

03/31/2022, 4:30 PM

If you want to learn cbsecurity I would advise to start simple. New project, some simple handlers where you can sprinkle some cbsecurity annotations

ryan

03/31/2022, 5:03 PM

Thank you very much for your advise, Wil! I will start with annotations. Previously, I created APIs with Brad Wood's interceptor for the

secured

annotations. I still love using it and built a more robust API around it, but I think it would be best to continue learning these new modules (new to me, but I know it's been around a while Lol) so that there is a bit more of a standard or conventional practice instead a home-grown one. Thank you, again, and look forward to getting this nailed down. 🙂

Patrick

03/31/2022, 7:32 PM

Feel free to reach out to me as well, when I get time I try to help out around here. I have several apps that utilize various approaches of cbsecurity including jwt etc.

👍🏼 1

ryan

04/04/2022, 12:04 PM

Thanks, guys! I started reading Wil's tutorials last night, again. Looks like things are making sense. I pulled the demo from github as a comparison while making one from scratch based from the tutorial. I stopped in the middle of the JWT tutorial and will pick it back up tonight.

👍🏻 1

4 Views

Open in Slack

Previous Next