Yohanes Mario [dot] com

my online scrapbook of scrambled thoughts

  This content is written in Bahasa Indonesia.

Sudahkah teman-teman UNPAR tahu, tiap mahasiswa di UNPAR sekarang mendapatkan satu google account sesuai dengan email student.unpar.ac.id masing-masing? Google account ini dapat diakses di http://gmail.unpar.ac.id. Di situ teman-teman dapat mengakses gmail, google drive, google calendar, dan beberapa google service lainnya.

Sejak tahu mengenai berita ini, I became obsessed with it. Jadi, singkat cerita, saya mencoba untuk login ke account ini pada handphone android saya, dan gagal. Why? Padahal ini adalah google account, menggunakan fasilitas Single Sign-On unpar (CAS Unpar), dan semestinya saya bisa login menggunakan browser sign-in saat saya mau melakukan login dengan CAS pada android.

Jika teman-teman periksa dengan teliti pada http://www.digicert.com/help/, setelah teman-teman memasukkan alamat "cas.unpar.ac.id" dan scroll terus ke bawah, teman-teman akan menemukan informasi berikut: "The server is not sending the required intermediate certificate.". Untungnya, ada beberapa solusi, paling tidak 2 solusi yang bisa saya pikirkan.

Solusi pertama, BTI harus meng-install intermediate certificate ini pada servernya. Selesailah semua masalah.

Solusi kedua, ini adalah solusi bagi kalian pengguna android yang suka ngoprek gadget kalian, dan berada pada minimal android versi 4.0. Bagi pengguna android versi 2.3 ke bawah, kalian bisa langsung sign in kok, masalah ini cuma ada di 4.0 ke atas. Berikut langkah-langkahnya:

  1. Pertama download file ini: http://www.digicert.com/CACerts/IntermediatesCA3.crt. Copy ke folder utama pada android kalian.
  2. Pada android kalian, buka Settings>Security>Install from storage.
  3. Setelah itu, akan muncul dialog box "Name the certificate", pilih OK.
  4. Jika kalian belum mengaktifkan lock screen security (pattern lock / pin / password) kalian akan diminta untuk mengaktifkan lock screen security tersebut.
  5. Setelah certificate tersebut terinstall, teman-teman dapat melakukan login google account melalui Settings>Add account>Google>Existing>[tombol menu]>Browser sign-in. Setelah itu, silahkan masukkan account student.unpar.ac.id teman-teman berikut passwordnya, dan voila, google account student.unpar.ac.id sudah ter-sync dengan android teman-teman!

Semoga bermanaat, dan selamat ber-google ria!

   Posted in Unpar        Yohanes Mario Chandra        0 Comments

From the first time I deal with web programming, I have been searching for the best SQL input sanitation possible. I have tried to eliminate unwanted characters from the string, and then I try to use Separate Room SQL validation Method (SRS-VM) for absolute security with a little performance drawback.

Overtime, SRS-VM proved to be unusable when it comes to inserting new data set which don't have any reference from the database. SRS-VM need to have a data reference in order to operate, so, that makes creating new blog post impossible.

After several time searching through the net, and attending lecture from my university, I realize that there's one more option which is an absolutely secure method, and doesn't hinder performance as much as SRS-VM. For a long time, there has been a function in PHP which I never realize, called mysql_real_escape_string. This function escapes every special characters in SQL. This basically means that I can enter any character I want without worrying about SQL injection.

Yes, I know. My journey towards finding this simple function is THAT long. That's what happen when we don't use documentation properly.

So, I hope this post help you. Happy blogging!

   Posted in CMS        Yohanes Mario Chandra        0 Comments

Finally, I have the time and the will to upload my OOCMS work to this host! This will ensure easy maintenance and development, while making sure that I wont have to transfer all of the content from one database to another every time I change a version.

Why, because using this OOCMS gives standardization so the database structure will work across versions. To make it short, this iteration is future-proof.

As you can see, I haven't transfer all of the content from my old blog to here, but I will when I have the time. Finally, after some hardwork, I have moved all of the content to this new platform. The comments are not there though, because of the new platform.

If you're interested in my OOCMS work, please go to https://github.com/yohanesmario/oocms.

Happy blogging!

   Posted in CMS        Yohanes Mario Chandra        0 Comments