Boa tarde pessoal.

Estou com um problema pelo menos para mim bem complexo, dado que não estou conseguindo solucionado.

Utilizo o Openfire a anos instalado em um servidor Linux CentOS6.X com bano de dados Oracle.

Sempre funcionou 100%. Estou utilizando a versão 3.9.3 do Openfire e a versão 11g do Oracle.

Não utilizou o Openfire integrado com AD, pois não me sinto seguro em ativar esse recurso.

A alguns meses, o sistema começou a apresentar problema de Cache Roster.

Realizei várias pesquisas na internet e não encontrei nada que pudesse me ajudar.

Passaram mais alguma semanas, o sistema parou de registrar o log das conversar, utilizo o Monitoring Service para este tipo de serviço.

Após muita pesquisa, consegui solucionar o problema de gravação dos histórico de conversar, onde para este, removi o plugin Monitoring Service e reinstalei novamente. POrém o problema do Cache Roster não foi solucionado.

Sendo assim resolvi fazer a atualização do Openfire para a versão 3.10.0-1.

Antes de realizar a atualização, realizei o BackUp das contas de usuário em um arquivo XML.

Durante o processo de instalação, o sistema faz as perguntas básicas de configuração do sistema, como idioma, armazenamento dos usuários, banco de dados e por fim a senha atual do usuário Admin e a nova senha.

Ao informar a senha atual do usuário admin, o sistema mencionava que a senha estava inválida, então para confirmar, restaurei o backup da VM que estava instalado o Openfire e um outro computador e consegui acessar normalmente o Painel de Administração.

Sendo assim, deletei a máquina que havia tentado atualizar, fiz um novo backup da produção e tentei fazer o upgrade novamente, agora aplicando todas as versões novas do Openfire, sendo 3.10.1, 3.10.2, 3.10.3 e por fim a 4.0.2.

Mesmo assim não consegui passar da tela de senha do usuário admin conforme descrevi a cima.

Realizei várias pesquisas na internet e tentei utilizar todas as dicas que encontrei, mas nenhuma dive sucesso.

Fiz a alteração do arquivo openfire.xml, removi o conteúdo da tabela PASSWOREMCRIPTY da tabela ofUser do banco de dados, adicionei uma senha temporária sem criptografia para o usuário admin direto no banco de dados, mas não tive sucesso.

Após todos esses testes, resolvi criar uma nova máquina com a versão 4.0.2 do Openfire e instalar tudo do zero, aproveitando as informações do banco de dados.

A instalação da nova versão foi um sucesso e bem rápida, porem até essa nova instalação fiquei barrado no caso do usuário Admin, ou seja, não consegui prosseguir.

Editei o arquivo XML para verificar a senha do usuário Admin (pois ele descriptografa a senha e armazena ela lá), consultei a senha e esta é a mesma que estou digitando.

Anexei o print da tela de instalação para mostrar a mensagem de erro.

Alguém poderia por favor me enviar alguma dica ou me ajudar a solucionar esse problema. Tenho mais de 250 usuários ativos e estou com uma lista de 20 usuários para serem cadastrados e não consigo realizar o procedimento pois não consigo acessar a console de administração.

Desde já agradeço a colaboração de todos.

Att.

Rogério

I currently have an Openfire Server running on a Windows Server 2008R2 box using PHP/IIS/MySQL. Users authenticate using LDAP.  The system was up and running perfectly for 2 days.  After the reboot no one can authenticate.  This would include both from clients and the Admin panel.

I see the following error in info.log:

org.jivesoftware.openfire.net.SASLAuthentication - User Login Failed. PLAIN authentication failed for:********

This happened once before and I had to reinstall. I would really like to avoid that especially if it means I have to reconfigure the entire system again.

Thanks for reading.

Good Evening and thanks for reading.

I have a new install of Openfire on a Windows 2008R2 Server running IIS7, PHP, and MySQL. The initial install went flawlessly including the AD portion of the installation. Openfire recognized my groups specified in the ldap.groupSearchFilter and populated the list with pretty much every user in the domain. Which I understood is working as intended.  However, when I go to modify the ldap.searchFilter settings it doesn't pair down the number of users to match the filter.  All the users from the initial install are still listed in the users section.

Here is what I am using for the ldap.searchFilter:

(objectCategory=organizationalPerson)(memberOf=CN=AParticularGroup,OU=GROUPS,DC= MYDOMAIN,DC=local)

I also tried:

(&(objectClass=organizationalPerson)(|(memberOf=CN=AParticularGroupA,OU=GROUPS,D C=MYDOMAIN,DC=local)(memberOf=CN=AParticularGroupB,OU=GROUPS,DC=MYDOMAIN,DC=loca l)))

Neither filter updated the users list accordingly.

Thanks for reading. Hopefully this is something simple to remedy.

Disclaimer: i'm not a developer, but as this question pops quite often and i have to dig for the recent conversation to provide a link or repeat everything again, i thought this could be useful to have such document and bookmark it for future references.

Background:

Some systems like Apple's Messages or Google Hangouts support syncing of incoming and outgoing messages between a few connected clients with the same username.

Openfire is a XMPP standards compliant server, so mostly it has features (XEPs) provided by XMPP standard (xmpp.org). Custom features can be added, but they shouldn't interfere with the standards. So, sometimes there is no way to add something to Openfire as this would make it a non-standard server.

Message Carbons:

XMPP has a XEP covering synchronization of the outgoing and incoming messages between several clients logged in with the same username (XEP-0280: Message Carbons). This protocol is still in an experimental state, so no servers or clients are obligated to support it. Both server and a client must support this.

Starting with Openfire 3.9.2 version the server has a support for this protocol: [OF-758] Add support for XEP-0280 "Message Carbons" - Jive Software Open Source

There is also a support for this in the Smack library (starting with 3.4.0 version), which various clients are based on (e.g. Spark): [SMACK-529] Add support for XEP-0280 "Message Carbons" - Jive Software Open Source

Spark doesn't have support for this as it is using the older Smack version and even if Smack is updated to 3.4.0 it still would probably need additional work to make it work in Spark. Here's a ticket for this [SPARK-1585] Add support for XEP-0280 "Message Carbons" - Jive Software Open Source Nobody is working on it as Spark currently has no active developers.

Here's a list of clients that are known to support Message Carbons. Feel free to extend this list:

• Yaxim (Android - freeware)
• Conversations (Android - commercial)
• Gajim (Linux, BSD, Windows - freeware) (note: in my test not always worked reliably, but this may be my testing environment fault)

Note: this only works when both (or more) clients are online. If client1 sends a message, but client2 was offline during that moment, client2 won't have this sent message in his history. There is no history synchronization like in Google Hangouts.

Message Archiving and Message Archive Management:

There are also two XEPs covering history storing on the server and history synchronization between devices. Older and more broad XEP-0136: Message Archiving and still in experimental state XEP-0313: Message Archive Management. There is no full support for this in IgniteRealtime projects (as far as i know), but Monitoring Service has some support for this, also Openfire has an initial support. Smack doesn't have MAM support yet. When implemented, this will allow to have history storage and full synchronization a'la Hangouts/iMessage style.

Related tickets in the tracker:

[OF-1113] Improve, broaden, and update support for XEP-0136 and XEP-0313 - IgniteRealtime JIRA

[SMACK-435] Add support for XEP-0136 Archive Messaging - IgniteRealtime JIRA

[SMACK-625] Add support for XEP-313: Message Archive Management - IgniteRealtime JIRA

Spark doesn't have support for MAM or older XEP-0136. As it still relies on the older Smack version, it won't have support for this even when Smack implements it. Spark needs a competent developer to update it to the latest Smack. Xabber has an option to store history on the server. Most probably it can also retrieve it from the server.

Route.all-resources setting (old partial workaround):

Openfire has an option to create a system property route.all-resources and set it to value true. This setting makes Openfire send a copy of an incoming message to every connected client with a same username, different resources (in xmpp a client can only be logged with a same username simultaneously if every connection is using a different resource, e.g. user@server/resource1 and user@server/resource2) and the same highest priority. But the server sends copies of messages to a bare JID (full JID: user@server/resource; bare JID: user@server). Usually clients send replies with a full JID and XMPP standards require that server should always send a message to one resource only, if a message has been sent to a full JID. This way usually only a first message is received by all connected clients, but as one of them starts replying, then the conversation only goes through that client.

This setting hasn't been intended for full message synchronization and shouldn't be used for that. Message Carbons or MAM is the way to go.

I really don't want File Transfers to be sent encrypted.

They fail:

Is it simply a matter of a checkbox in OpenFire to deselect this option?

Cheers,

OpenFire  v3.9.3

Mac OSX 10.7.5.latest
MiniMac 8GB Ram

iChat Clients on 10.7.5 to 10.11

I am trying to upgrade a local OF to version 4.0.1 (and hazelcast 2.2) but during startup I sometime get this NPE:

2016.01.28 09:46:41 INFO  [ClusterManager events dispatcher]: com.hazelcast.partition.InternalPartitionService - [169.254.80.80]:5701 [openfire] [3.5.1] Initializing cluster partition table first arrangement...
2016.01.28 09:46:41 WARN  [ClusterManager events dispatcher]: org.jivesoftware.openfire.cluster.ClusterManager - Null value is not allowed!
java.lang.NullPointerException: Null value is not allowed!  at com.hazelcast.util.Preconditions.checkNotNull(Preconditions.java:41)  at com.hazelcast.map.impl.proxy.MapProxySupport.putAllInternal(MapProxySupport.java:862)  at com.hazelcast.map.impl.proxy.MapProxyImpl.putAll(MapProxyImpl.java:309)  at org.jivesoftware.openfire.plugin.util.cache.ClusteredCache.putAll(ClusteredCache.java:129)  at org.jivesoftware.util.cache.CacheFactory.joinedCluster(CacheFactory.java:738)  at org.jivesoftware.openfire.cluster.ClusterManager$2.run(ClusterManager.java:95)

After some trial-and-error I discovered that this happens only when restarting my OF with active clients on it, the clients reconnects before OF hits this exception and I managed to catch this my debugger:

And there are some values from a cache named 'Locked Out Accounts' that has cached some NULL values and is causing the NPE later on.

If all clients are started after OF has initialized the clustering, this exception is not happening.

Regards

Lars

Hello everyone. I am having an issue with our Windows based Openfire server. I am posting this up because I have read thru the suggested solutions for this issue, but they have not worked.

We are using a Windows Server 2008 R2 Vitual machine. 64Bit OS and 4 GB of memory.

We have Openfire 4.0.1 installed and running on this machine. But it keeps crashing and eating up the CPU for some reason. When I log into the admin page. I noticed that the Java Memory is almost maxed out.

I have created the openfired.vmoptions ad openfire-service.vmoptions files. But it does not seem to help. May I have misread how to apply those files. For that reason I am hoping for some help here. Thanks

So Openfire seems to be eating like 99.4% of its memory allocation.

We are running openfire on a server '03 64bit machine that has 16gigs of ram. 64 bit version of Java.

we have the openfire-service.vmoptions file set with values

-Xms1536m

-Xmx1536m 

1.5G

I can't get past this value. I've tried setting them to 2048 etc and the service just will not start.

I've gone in and set the Java memory parameter itself to 3gigs to give some over head and tried adjusting the options file again to no avail.

Any ideas? I was under the impression that with a 64 bit OS and JRE i could give it as much memory as i want?

Hi,

Is there any idea to  optimize performance for openfire 4.0.1?

I've got 800+ users, and 50+ groups shared for all users in the Roster.

Every morning when 300+ offline users log on, some user cannot log on before they tried several times.

I'v changed ulimit -n to 65535 on the Openfire server,

and add “ -Djava.nio.channels.spi.SelectorProvider=sun.nio.ch.EPollSelectorProvider” to OPENFIRE_OPTS in /etc/init.d/openfire.

also changed sysctl: net.ipv4.ip_local_port_range = 1024 65000

It seems useless.

This is some info:

Openfire:4.0.1

OS: RHEL6 x86_64

Java:1.8.0_45 Oracle Corporation -- Java HotSpot(TM) 64-Bit Server VM

Java Memory: 1127.00 MB of 54613.50 MB (2.1%) used

Thanks a lot!

I have Openfire installed on a Windows 2008 server and am using Spark as the IM client.

I've created multiple chat rooms for my clients to use.  My problem is that some of the rooms are duplicating the conversations.  What is said is one room is copied into another as though the person were posting in the other room.

Due to the nature of the chat rooms, several of them were given names that are similar, but I don't see why this should make a difference.

I'm planning on recreating the rooms and give them different names which aren't so close, but I suspect that won't solve the issue.

Any suggestions would be greatly appreciated.

Thanks!

It is the first time I use openfire, so I don't know much about it. Today, I chaged the wifi then my pc's IP address was changed. So I configure the IP address through the Admin Console. When I restart the Openfire in Eclipse, I can't login Admin Console. But I can login admin account through Spark use the new IP,  How can I solve the problem?

the console :

15:55:26,324  WARN LoginLimitManager:113 - Failed admin console login attempt by admin from 127.0.0.1

15:55:29,908  WARN LoginLimitManager:113 - Failed admin console login attempt by admin from 127.0.0.1

15:55:31,158  WARN LoginLimitManager:113 - Failed admin console login attempt by admin from 127.0.0.1

the openfire.xml file:

<?xml version="1.0" encoding="UTF-8"?>

<!--

    This file stores bootstrap properties needed by Openfire.

    Property names must be in the format: "prop.name.is.blah=value"

    That will be stored as:

        <prop>

            <name>

                <is>

                    <blah>value</blah>

                </is>

            </name>

        </prop>

    Most properties are stored in the Openfire database. A

    property viewer and editor is included in the admin console.

-->

<!-- root element, all properties must be under this element -->

<jive>

  <adminConsole>

    <!-- Disable either port by setting the value to -1 --> 

    <port>9090</port> 

    <securePort>9091</securePort>

  </adminConsole> 

  <locale>zh_CN</@locale> 

  <!-- Network settings. By default, Openfire will bind to all network interfaces.

      Alternatively, you can specify a specific network interfaces that the server

      will listen on. For example, 127.0.0.1. This setting is generally only useful

       on multi-homed servers. --> 

  <!--

    <network>

        <interface></interface>

    </network>

    --> 

  <!-- SPDY  Protocol is npn.

    (note: npn does not work with Java 8)

    add -Xbootclasspath/p:/OPENFIRE_HOME/lib/npn-boot.jar to .vmoptions file    --> 

  <!--

    <spdy>

    <protocol>npn</protocol>

    </spdy>

    --> 

  <!-- XEP-0198 properties --> 

  <stream>

    <management>

      <!-- Whether stream management is offered to clients by server. --> 

      <active>true</active> 

      <!-- Number of stanzas sent to client before a stream management

    acknowledgement request is made. --> 

      <requestFrequency>5</requestFrequency>

    </management>

  </stream> 

  <connectionProvider>

    <className>org.jivesoftware.database.DefaultConnectionProvider</className>

  </connectionProvider> 

  <database>

    <defaultProvider>

      <driver>com.mysql.jdbc.Driver</driver> 

      <serverURL>jdbc:mysql://localhost:3306/openfire?rewriteBatchedStatements=true&a mp;amp;useUnicode=true&amp;amp;characterEncoding=utf8</serverURL> 

      <username encrypted="true">a3dcfb072bcbfd322891c9532d04307ca9d94e08007164cf</username> 

      <password encrypted="true">4fed36ca38bb0d5c6b4450c30dd69538051eb3aab970e0fe</password> 

      <testSQL>select 1</testSQL> 

      <testBeforeUse>false</testBeforeUse> 

      <testAfterUse>false</testAfterUse> 

      <minConnections>5</minConnections> 

      <maxConnections>25</maxConnections> 

      <connectionTimeout>1.0</connectionTimeout>

    </defaultProvider>

  </database> 

  <setup>true</setup>

</jive>

Hi there everybody,

I used Openfire before and installed it again for my own company. As and usual, i've purchased SSL certificate. I've installed Openfire with MySQL database as backend. I've imported SSL to keystore. After that i've opened OF admin and go to SSL. There i see strange picture. See attached file.

If i delete DSA certificate all my clients won't connect at all. If i keep DSA - Spark connects ok, but all rest clients tell me that certificate is self-signed. And they see certificate with internal host name (ubuntu), but not real SSL with FQDN.

Clients like Adium, Pidgin and QIP tells me also self signed SSL.

Help me fix this issue and go to production. It's really important for me and my small company.

Hi,

How can I increase the Openfire server VCard and Rostre cache size? (I set up the AD pics and many users has no pic and many has.)

Many Thanks.

Hey guys.

I was asked by users of a conference room to be warned via Spark messages even when not in the room at that moment.

I imagine like a WhatsApp, to send a message to the group all are informed of the new message.

Is there a way to do this in OpenFire?

I am using the OpenFire 4.0.2 installed on Windows 2008 R2 and customers Spark 2.6.2.

Thanks a lot for the help.

Hi

I have been struggling for a week now to get a SSL certificate installed in Openfire.

Numerous guides on the internet have not helped at all.

Even after the certificate shows in the trustedstore, I have no way to import it via the web interface.

Importing and displaying via terminal also does not show up in the web interface.

The certificate is valid and working... just not on Openfire.

Any help will be greatly appreciated.

What clients Openfire support exept Spark?

Hi, I am trying to setup Openfire 4.0.0 source using Eclipse Mars. I have followed the guide on Openfire SVN + Eclipse 3.3 + Subversive Installation Guide . After using ant build and then following the guide to create the Run configuration, i successfuly managed to run the console at http:localhost:9090 but when i access the URL i get this error
:

HTTP ERROR 404

Problem accessing /login.jsp. Reason:

    /login.jsp

Powered by Jetty://

I have tried searching whole community for answers and tried almost every solution provided but all in vain./

Can you guyz figure out whats causing the issue?

Also the URL turns to http://localhost:9090/login.jsp?url=%2Findex.jsp from http://localhost:9090/login.jsp after entering.

Not sure where to post this but thought I would share in case any others are having the same issue. 

Problem was I could not connect with Spark, constantly gave the error "internal-server-error"

The problem is that the current version of Openfire for Debian/Ubuntu requires JRE 7 or it won't install, however it won't work unless JRE 8 is installed.

The only way to get the server to work correct is to install JRE 7 > install Openfire > install JRE 8

The dependencies in the package need to be updated.

Hi All,

We are using Openfire version 4.0.2  and client Spark version 2.7.6. When we authenticates using user id, it works fine, shows all users status correctly. But with email id as username, authentication gets successful with Spark but not showing correct 'Presence' in openfire admin. Also not able to chat and fetch the user data from open ldap. Please help.

Did the upgrade from 3.9.2 to 3.9.3 and after trying to login to web admin using my LDAP username I get the following error everytime (all browsers):

HTTP ERROR 500

Problem accessing /index.jsp. Reason:     

java.io.IOException

Caused by:

org.apache.commons.httpclient.HttpClientError: java.io.IOException

at org.jivesoftware.openfire.clearspace.SSLProtocolSocketFactory.createSSLContext( SSLProtocolSocketFactory.java:73)

at org.jivesoftware.openfire.clearspace.SSLProtocolSocketFactory.getSSLContext(SSL ProtocolSocketFactory.java:79)

at org.jivesoftware.openfire.clearspace.SSLProtocolSocketFactory.createSocket(SSLP rotocolSocketFactory.java:132)

at org.apache.commons.httpclient.HttpConnection.open(HttpConnection.java:707)

at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethodDir ector.java:387)

at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDirect or.java:171)

at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:397)

at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:323)

at org.jivesoftware.util.HttpClientWithTimeoutFeedFetcher.retrieveFeed(HttpClientW ithTimeoutFeedFetcher.java:169)

at org.jivesoftware.openfire.admin.index_jsp._jspService(index_jsp.java:432)      at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97)      at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)      at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:547)

at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1359)

at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:11 8)

at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:52)

at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1330)

at org.jivesoftware.util.LocaleFilter.doFilter(LocaleFilter.java:74)

at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1330)

at org.jivesoftware.util.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingF ilter.java:50)

at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1330)

at org.jivesoftware.admin.PluginFilter.doFilter(PluginFilter.java:78)

at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1330)

at org.jivesoftware.admin.AuthCheckFilter.doFilter(AuthCheckFilter.java:164)

at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1330)

at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:478)

at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:119)

at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:520)

at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:22 7)

at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:94 1)

at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:409)

at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:186 )

at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:875 )

at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:117)

at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandler Collection.java:250)

at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.jav a:149)

at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:110)       at org.eclipse.jetty.server.Server.handle(Server.java:349)

at org.eclipse.jetty.server.HttpConnection.handleRequest(HttpConnection.java:441)

at org.eclipse.jetty.server.HttpConnection$RequestHandler.headerComplete(HttpConne ction.java:919)

at org.eclipse.jetty.http.HttpParser.parseNext(HttpParser.java:582)      at org.eclipse.jetty.http.HttpParser.parseAvailable(HttpParser.java:218)

at org.eclipse.jetty.server.AsyncHttpConnection.handle(AsyncHttpConnection.java:51 )

at org.eclipse.jetty.io.nio.SelectChannelEndPoint.handle(SelectChannelEndPoint.jav a:586)

at org.eclipse.jetty.io.nio.SelectChannelEndPoint$1.run(SelectChannelEndPoint.java :44)

at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:598 )

at org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:533)

at java.lang.Thread.run(Unknown Source)