490x250xapache-logo.jpg.pagespeed.ic.d4kqxrw8Rx

The mod_vhost_alias offers a powerful way to map URL and file locations.

Do you remember in school, when you had an user account on the school’s server and each student could host a website out of his home’s www folder ?

Well, the school admin was using Apache’s mod_userdir to map urls such as school.com/student/index.html to /school/server/student/www.

I decided I wanted to do something similar on my dev setup except that, instead of having several users, I have several projets.

So, let’s say I have my computer setup to know that *.sam.net is my local machine and I have several project in /Users/sam/webdev

I want

  • dev1.sam.net >> /Users/sam/webdev/dev1
  • dev2.sam.net >> /Users/sam/webdev/dev3
  • dev3.sam.net >> /Users/sam/specialdev3

I can now create two Virtual Hosts instead of three.

In the first one, I will setup the dev3 mapping as it is an exception.

In the second one (should be loaded last by Apache) I’ll add :

1
2
3
4
5
<VirtualHost *:80>
ServerAlias *.adssoft.fr
UseCanonicalName Off
VirtualDocumentRoot /Users/sam/%1
</VirtualHost>

Test your config and restart Apache

1
2
apachectl configtest
sudo apachectl restart
Got it working thanks to the help from this post

myapps

After four years of intense use, I decided to renew my iMac this year, when the new great looking, super slim, incredibly fast, shiny new iMac 27 arrived, I decided to not carry all my stuff over at once but take the time to reinstall what I used the most and leave most of my data on the previous iMac. I knew it would take time but I thought maybe I could clean up some of my data in the process.

As I launched Safari to download some of the bare necessities, I thought I could keep track of these things I was installing.

So here it goes (in no logical order)

Settings :

  • Translucent menu bar setting (I disable it)
  • Finder settings (list view, remove the your files thing
  • Mail accounts
  • Calendar accounts
  • setting up iCloud / login in App Store / login in iTunes
  • iTerm settings / vi settings / zsh / .zshrc
  • Source Code Pro Fonts (from Adobe) and importing my fonts from the other mac
  • Importing the iTunes library
  • Importing the iPhoto library
  • Importing the iMovie projects

Apps :

  • Google Chrome
  • Dropbox
  • 1Password + chrome plugin
  • Evernote
  • Opus Domini (and retrieving my todo list from iCloud)
  • Alfred (enter licence for powepack, add plugins I use which are in Dropbox)
  • Firefox + Firebug + Web developer
  • iTerm2
  • Skype
  • XCode and the Command Line Tools / SVN / Git
  • Copy my Workspace folder and setup my apache hosts and config
  • MySql (import the dumps of all my databases)
  • MacPorts : sudo port install aria2 …
  • Homebrew : brew install wget git ntfs-3g …
  • Sublime Text / Package Control / Soda Theme / Get my plugins and settings from Dropbox
  • Sequel pro
  • VLC
  • Handbrake
  • Spotify
  • Xtra finder
  • Growl
  • Fluid
  • Mou
  • Pocket
  • The Unarchiver

— and —

  • Lightroom (I was just offered the v4)
  • Microsoft Office
  • Adobe Creative Suite (my CS4 dates but it’s good enough)
  • Code Box
  • iBank
  • Geek Tools 3 (my geeklets are in Dropbox)
  • Virtual Box
  • Cyberduck
  • Teleport
  • Reeder

It took about two weeks to get all these apps installed but it took more than three months to carry my files and stuff over. Importing from the other mac would have been a lot faster for sure … though my system would already be dirty by now 😉

As for the list, I am surprised how geekish it is (mac ports / brew / etc) and, ultimately, how short it is … my previous system was so packed with apps I didn’t seem to know about anymore.

 

We live in an awesome place in the country and love every minute of it, the only possible drawback being that our Internet bandwidth is not what it used to be 😉 .
We can’t complain though, even Netflix works, but downloading big files (such as a linux dristrib) is almost impossible.
Eventually, we realized a download manager could help us out but I could’t find anything cool for OS X until I stumbled on aria2 : a command-line download manager. How geekish !


1
2
sudo port install aria2
aria2c http://www.linuxmint.com/edition.php?id=120

Too easy !

Warning : personal life and rant in this post, keep reading at your own risk.

I open Zite once a day and flip through the latest Programming, Movies and Tech news.
This evening – again – I captured a glimpse of an article title something like “Steve Jobs was right: the iPad killed the notebook”.
I am a mac user and an admirer of Steve Jobs but I can’t see the point of such title. Even had Steve Jobs claim the iPad had killed the notebook and that turned out right, I doubt he cares for the applause now. RIP. Second, Apple sells notebooks, too and I’m sure they hope that Notebooks are anything but dead. Actually, when I travel to Paris for work, I am surrounded by people who play on their phones, sometimes read on their iPad and often work on their notebooks.
This is actually why I love Zite, I see what the tech world has to gloat about and I pocket links to valuable articles.

Moving forward, this evening, even though I’d love to go pass out, I try and dedicate a moment to fix my neighbour’s computer.
It is a brand new Sony Vaio notebook with Windows 8. (See, notebooks are still being bought) and it works just fine.
So why should I fix it ?
Because when my neighbour starts it, it says : “Your computer does noto have an antivirus, it is at risk”.
My neighbour is like many Windows users out there, she is not tech savvy but rather worried when it comes to computers. Worried it might break down for obscures reasons leaving her without facebook and MSN access (well, Skype, as it is now).
And like many developers out there, I am always buried under a stack of computers people need me to “fix”.
And therefore, this evening, I am about to protect this little notebook’s life by trying and installing Windows Security Essentials on it.
As I discovered it, this was to be difficult. Windows Security Essentials is not for W8, I must simply use Windows Defender. Simple, right ? WRONG –> RANT !

1/ Dear Microsoft, it took ten years for my neighbour to buy a first notebook, get DSL, go online, open an hotmail account, use outlook, and gather friends on facebook.
I’m sure it took her at least 20 minutes to find out the “Turn Off” was in the “Start” menu but, hey, she got used to it, her friends got used to it, it was “computers” and they all dealt with it.
Now, seriously, why did you change everything ?

2/ Microsoft, can’t you decide how you want your OS to run ? Should it be this weird full screen square interface (let’s call it WFSSI) or should it be my usual Windows 7 desktop ? Switching from one to the other with the Windows and ESC key is just weird.
My neighbour’s email was all over the place. She had them open in the WFSSI and also in a Firefox tab and also in an IE tab and I’m sure she would also have them in Outlook. So how should it be ?
How is it exactly that I access my apps from the desktop ? Oh yeah, I click on Windows Key + C and then start typing it. I’m sure my neighbour will think of typing “winword” to write a letter.
It’s just weird and feels like the decision to break away was not even fully made. It’s a mix of two worlds.

3/ Did you run some kinda of championship at Microsoft’s to elect the engineer who came up with the most hidden place for the new location of the turn off button ? Or did you simply invest in electricity production for the next 5 years ? How do you expect my neighbour to turn off her computer ? Why would she even think of clicking on her name in the top right corner of the WFSSI ? That is providing she find out to get back to the WFSSI in the first place.

But Microsoft is not all to blame here, they are good things in this OS. This laptop runs fast, the app search is actually not far from a launcher or a spotlight geeks love on OS X or Linux.

4/ Dear Sony, why do you install crappy software on your pretty looking hardware ? Why do you install TWO (!) McAfee software which can only protect your notebook for 30 days WHEN WINDOWS 8 SHIPS WITH an antivirus / malware detector software, unlimited and for free ? Do you think of the embarrassment / pain / fear / trouble / waste of time / annoyance / … you are causing to your users ? After 30 days, their shiny notebooks “Maintenance Center” status turn to orange (and later to red) because their computer is not protected.

5/ Yes, I understand business, if McAfee pays you to install their software hoping to grab customers, can you at least make it simple to remove said software ? I mean, when disentailing McAfee, I’d want Windows Defender to work right away.

6/ I suppose Sony is not to blame here but McAfee is the culprit. Yes, after removing McAfee (if you ever stumble on the Control Panel in the new interface) you’ll realize that Windows Defender is still de-activated. You must Google your trouble to find the McAfee removal tool, run it and reboot (how dare you ask me to reboot, I can’t even find the shutdown anyway) and now Windows Defender is rolling.

7/ After doing nothing but REMOVING things, this computer runs better than when she bought it. Tomorrow, my neighbour will feel so safe carrying it back to her house with its little green flag in the task bar.

That’s a class act, guys. Good job.

If you are wondering what’s happening to the PC notebook market, don’t turn your heads to the iTouch devices and co. Just take a look at what you are shipping. My neighbour is 65 years old and she’s telling me : “don’t buy a sony” , “my son says I’d be better of with that iPad thing”, “oh, I see you use Apple”. She couldn’t care less for the tablet vs notebook debate, the Mac or PC thing, she just wanted to go on mail.live.com. You care to help her out ?

Never mind, I’ll run a Linux Mint install party in my backyard next week.

Install node.js and npm

Thanks to this great post by Florian Kubis, this was quicly taken care of

You need XCode and macports installed


1
2
3
4
5
6
7
8
9
10
# Install Node
sudo port install nodejs
# Check it works with
node -v
# Allow your user to write to /opt/local
sudo chmod -R g+w /opt/local/
# Install NPM
curl http://npmjs.org/install.sh | sh
# Check it works
npm -v

Install JS Hint


1
2
# Install JS Hiint using NPM
npm install -g jshint

Adding JS Hint to Sublime

This is detailed on JS Hint Git Hub page and goes like this

  • Launch Sublime
  • Launch the Package Control > Install Package
  • Select JS Hint

Run JS Hint on a JS File

  • With an opened JS file in sublime, press Ctrl + J


I use Dropbox to sync, among other things, many of my application and profile settings (.bashrc files for example or Sublime Text preferences). I wanted to synchronize these same files with my Debian server even though it does not have a graphical interface installed. Good news, it’s possible. Yes, Dropbox rocks !

How to

  1. Download the Dropbox package (select the right download : 32 or 64 bits). In my case, it was 64bits, so I ran
    1
    wget -O dropbox.tar.gz "http://www.dropbox.com/download/?plat=lnx.x86_64"
  2. Extract the package
    1
    tar -xvzf dropbox.tar.gz
  3. Run dropbox
    1
    ~/.dropbox-dist/dropboxd
  4. Now, it gets funny, you need to go through the login and authorization process of your new client. Leave this shell open and running, it should display : This client is not linked to any account… Please visit https://www.dropbox.com/cli_link?host_id=7d44a557aa58f285f2da0x67334d02c1 to link this machine.
  5. Open another shell
  6. Using linx, browse to the URL given in the message above
  7. Enter your login and password in the fields and submit
  8. On the next page, scroll a little bit and re-confirm your password
  9. That’s it, your client is connected and will synchronize.
  10. A dropbox folder will be cerated in /home/
  11. Now, you migh want your dropbox client to start automatically… you will need to download this file into /etc/init.d/dropbox.
  12. Edit the third line of the script to enter your linux username
  13. Start the service with /etc/init.d/dropbox

That should be it. Great work by the Dropbox team to even consider a solution for windowless setups.

1
2
wget http://pear.php.net/go-pear.phar
sudo ./go-pear.phar


The installer shows you a list of suggested path (in my case, they were all prefixed with the path to my user’s home directory).
I didn’t agree with the suggested solution. To modify this :
I chose [1] and changed the path prefix to /usr/local/pear and continued installation.
Next, I edited my zshrc (or .bashrc) to update my PATH and include the path to pear.
You can make sure that the path is updated and that pear is found with :

1
2
source ~/.zshrc
which pear

Playing with my brand new ZSH prompt, I needed to get a preview of my terminal colors.

To see the result above, you can :

  • download this script [display_colors.py] and save it locally
  • run it with python /path/to/display_colors.py –terse

When working on your prompt (or any other output you with to colorize), you can pick the color you wish to use from the list.

Run, python /path/to/display.py without the –terse parameter. You will get a long list of colors, here’s a sample :

From this list, we can tell that 31 is the code for a red and 32 for a greenish yellow. Next in the list, we would see 33 for another shade of yellow.

You can eolorize text using the sequence \033[0;31m where 31 is the color you wish to display (here, the red)

For example, we can do

1
echo "colors \033[0;33mYellow \033[1;31mRed \033[0;37mcolors"

Follow up (how to bold, underline)

Bash to ZSH

January 26, 2013 | 1 Comment

A couple of weeks ago, I switched from bash to zsh on my Mac OS X machine, today, I decided it was time to do the same to my linux server running Debian Squeeze. Here is how to switch :
* As root,

1
aptitude install zsh

* run

1
chsh <username>

* Enter your user’s password when prompted
* Enter the name of the shell you wish to use : zsh
* Restart your terminal or SSH session, when you return, you will be running zsh

Overview

The goal of this walk through is to install SimpleSAML twice to work on a SAML authentication between two systes.

We could have an application on one side using SimpleSAML SP and a LDAP, AD, CAS, etc plugged in SimpleSAML configure as an IdP.

Installation of Simple SAML (1)

Download simplesaml.

Untar the package in a folder of your application, for example /var/www/myapp/library/simplesaml

Edit your app’s Virtual Host so that /simplesaml is accessible


1
2
3
4
5
    Alias /simplesaml /Users/samo/Workspace/simplesamlphp/www
    <Directory "/Users/samo/Workspace/simplesamlphp/www">
        Order deny,allow
        Allow from all
    </Directory>

Restart Apache if necessary

Setting Up your SP

Edit SimpleSAML’s config file in config/config.php Set the ‘debug’ to ‘TRUE’ Set an admin password ‘auth.adminpassword’ to the password of your choice Set the ‘secretsalt’ Define ‘technicalcontact_name’ and ‘technicalcontact_email’

Installation of Simple SAML (2)

Untar the simple package again, this time, in another folder for example /var/www/simplesaml

Choose a URL for your IdP for example http://auth.saml.net and add this to your hosts file

Create a virtual host for your IdP, it will look something like


1
2
3
4
5
6
7
8
9
10
11
12
13
<VirtualHost *:80>
    ServerAdmin <your_email>
    ServerName  auth.saml.net
    AddDefaultCharset UTF-8
    DocumentRoot /var/www/simplesaml
    Alias /simplesaml /var/www/simplesaml/www
    <Directory /var/www/simplesaml/www>
        Options Indexes FollowSymlinks multiViews
        AllowOverride None
        Order deny,allow
        allow from all
    </Directory>
</VirtualHost>

Setting Up your IdP

Again, begin by editing the SimpleSAML config file and repeat the steps listed above This time, you must also set ‘enable.saml20-idp’ to ‘true’

Since all this is just for development and test purposes, I setup my IdP to an exampleauth. The login / password will be matched against a plain list of accounts defined in the authources.php file. First, you need to enable the exempleauth module by doing touch /var/www/simplesaml/modules/exampleauth/enable Second, edit your authsources.php file (in the config directory) and create your users based on the following example :


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

'example-userpass' => array(
    'exampleauth:UserPass',
    'user1:pwd' => array(
        'uid' => array('user1'),
        'mail' => 'user1@test.com',
        'first_name' => 'User',
        'last_name' => 'One'
    ),
    'user2:pwd' => array(
        'uid' => array('user2'),
        'mail' => 'user2@test.com',
        'first_name' => 'User',
        'last_name' => 'Two'
    )
),

Next, make sure that the content of metadata/saml2-idp-hosted.php is


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
$metadata['__DYNAMIC:1__'] = array(
    /*
     * The hostname of the server (VHOST) that will use this SAML entity.
     *
     * Can be '__DEFAULT__', to use this entry by default.
     */
    'host' => '__DEFAULT__',

    /* X.509 key and certificate. Relative to the cert directory. */
    'privatekey' => 'server.pem',
    'certificate' => 'server.crt',

    /*
     * Authentication source to use. Must be one that is configured in
     * 'config/authsources.php'.
     */
    'auth' => 'example-userpass',

    /* Uncomment the following to use the uri NameFormat on attributes. */
    /*
    'attributes.NameFormat' => 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri',
    'authproc' => array(
        // Convert LDAP names to oids.
        100 => array('class' => 'core:AttributeMap', 'name2oid'),
    ),
    */
);

Connecting the dots

Now, let’s connect SP and IdP together. Browse to your IdP for example : auth.saml.net/simplesaml. Connect using the admin password defined in your configuration Click on the Federation tab You should see a SAML 2.0 IdP Metadata line, click on [show metadata] below and copy the metadata URL which should look something like http://auth.saml.net/simplesaml/saml2/idp/metadata.php

Back to the SP, edit the file config/authsources.php and add the declaration of your IdP based on this code sample :


1
2
3
4
5
6
7
8

'default-sp' => array(
    'saml:SP',
    'entityID'    => 'http://auth.saml.net',
    'idp'         => 'http://auth.saml.net/simplesaml/saml2/idp/metadata.php',
    'ssoPortalUrl'=> 'http://auth.saml.net/simplesaml/saml2/idp/SSOService.php',
),

Back to your browser, copy the content of the box “SimpleSAMLphp flat file format” and paste it in the file metadata/saml20-idp-remote.php of your SP.

Back to the browser, go to your applications’s SimpleSAML setup for example http://myapp.localhost.net/simplesaml. Login using the password defined in the configuration file. Browse to the Federation tab and click on the [show metadata] link for your default-sp/

Copy the content of the “SimpleSAMLphp flat flie format” box and paste it in the IdP metadata/saml20-sp-remote.php file.

Test

That should be all for the setup, now you can test it by browsing to your SP side SimpleSAML for example

http://myapp.localhost.net/simplesaml

Login using the password defined in the admin and click on the authentication tab. Click on the link “Test configured authentication sources” and click on your IdP declaration in the list of authsources. This will perform a test SAML authentication process.

Congratulations !

If it failed, you should check the logs of both your SimpleSAML and try and get help on the SimpleSamlPHP mailing list.

Time to code

Now that everything works between the SP and the IdP it is time to integrate the SAML auth to your application. You can do so by adding code similar to this to your authentication process :


1
2
3
4
require_once('/lib/simplesamlphp/lib/_autoload.php');
SimpleSAML_Configuration::setConfigDir('/lib/simplesaml/config/saml');
$authService = new SimpleSAML_Auth_Simple($selectedIdp);
$authService->requireAuth();

That’s it !


<< Previous PageNext Page >>

  • About Me


    photo of Samantha Halfon Samantha Halfon
    Software Engineer
    blueKiwi software
    Paris, France
    I enjoy playing with my computer(s), listening to Bob Dylan (and related artists) and watching movies (especially if they were directed by Martin Scorsese or John Cassavetes). Sometimes, I play a little guitar... If not doing any of the above, I am either riding a small red bike around Paris, or, making videos. About my videomaking please check out World Wide Angle and its blog.