Jump to content


  • Content Count

  • Joined

  • Last visited

Community Reputation

1 Neutral

About taylorsharpe

  • Rank

Profile Information

  • Gender
  • Location
    Dallas, Texas
  • Interests
    Full time FileMaker Developer and the local FMPUG Chapter Coordinator. Outside FileMaker, I like to snowboard and bike ride and hike and tennis. Volunteer with the English Speaking Union and the Apple Corps of Dallas and local church.

Contact Methods

  • Website URL
  • Skype
  1. TMS Software, LLC, introduces its new FileMaker Admin Console application for FileMaker Version 18, making use of the Admin API, FMSADMIN calls, and the Data API. It is released to the FileMaker community at no cost. Why would someone want to use this software when FileMaker has a perfectly good web Admin console? Here are several reasons. By getting the same information in a FileMaker solution, developers can use the information in conjunction with other FileMaker solutions. The web Admin Console does not allow you to turn off the automatic 7 daily preserved backups. The web Admin Console no longer generates CSR requests for FileMaker Server. For FileMaker Server on OS X 10.14, Mojave, it will restart your web httpserver service after a reboot which has been known to be a common failure resulting in WebDirect and Web Admin Console not working except locally. Log files can only be downloaded from the web Admin Console, they cannot be viewed and updated immediately like in this solution. This solution lets you run a script, not a scheduled script, directly from the solution on demand. Certain monitoring stats are available to you like database size or amount of bandwidth executed for each data API call. From a FM solution you can easily open and close, schedules, backups, and message or disconnect users. This solution is highly customizeable and the web Admin Console is not. The software can be downloaded by going to https://www.tms.us and then clicking on the "Contact Us" button in the top right. A Web Page with instructions is available at https://www.tms.us/FileMaker/AdminAPI.html. Note this replaces the Admin API app for FM 17 and it is not backwards compatible because the Admin API is different in version 18. Full functional use requires installation of the Base Elements on FMPA and FMS. This has only been tested on FMS 18 and OS X 10.14.
  2. This is a good topic for discussion. APIs are our friends. But like any technology, if we don't understand them and plan for the security implementation, we can really mess up. I hope this is a healthy discussions of ways to utilize APIs while taking into account appropriate security controls. I also don't want people to be afraid to use APIs because they open a powerful word of additional functionality to FileMaker. But they are just like FileMaker... you wouldn't create a FM database with no security. It is the same with APIs. The big take away I hope people have from this is that the FM security does not handle security for API functionality outside of FM. We are used to a strong robust FM integrated security for our solutions. But using APIs gets into areas beyond which FM security and encryption is in control. And each API technology is different and has a different set of vulnerabilities and security controls. This gets back to do you have a security plan for your solutions? And does the security plan address each of these technologies.
  3. As a FileMaker developer, I work with a lot of small to medium sized companies that say security is important, but really don't want to spend more FM development time on it. Most think things are good enough and few have ever had any security problems, which is good. However, complacency isn't good enough in the security world. And what I have to remind most of these smaller companies is that when they claim they have never had a security breach, usually that means they are unaware of a security breach. Most of them do not even have the tools or wherewithall to realize they have been penetrated until there is some external consequence such as credit cards numbers are stolen and getting used. While I offer, not many of my clients want to pay for a security plan to document controls, disaster recovery, etc. I'm making more of a sales pitch and some are, but it is surprising that it is harder for me to sell a security and disaster recovery plan than it is further module development. In the FM discussions, several of us have been talking about using FM scripting for Two Factor authentication. It is at best a light version of it because it is not at the security layer, but it functions and verifies Persistent IDs. Others have talked about biometrics such as the iPhones finger print for authentication or maybe facial recognition. There has been talk about the NEM ID used by the Danish government for all citizens and how to integrate it into FM. There are quite a few frontiers of security that it would be nice too see FileMaker advance into. I'm hoping FM 15 has some advancements in security.
  4. I just tried installing Zulu 1.2 on a FMS When I try to publish it, it errors out with the following error: Calendar Publishing Errorjava.sql.SQLException: Could not connect to database at Only received 144 bytes in XML response. Header bytes received: That was the last attempt (out of 5); will not retry. ​I wonder if there will be an update or what is the problem. TAYLOR SHARPE PS: Installed on a Mac OS X 10.10.3
  5. I set up a Zulu system about a year ago and all went well.  I've just done it again, got through setting up XML permissions and setting up extra tables/fields/layouts according to video at  https://www.youtube.com/watch?v=KOYhQ5AoZRM    License is registered and working well it seems.  This is on a FMS 13.0v5 Mac OS X 10.10.2 Mac Mini with SSDs and Zulu reports it is using version 1.357.   All seems to go well until I try to get my iCal calendar to connect.  I put in my CalDav account in with my FileMaker Credentials and I get:  "Your Calendar couldn't be refreshed.  The request for account [account desc.] failed.  Operation:  CalDAVAccountRefreshQueueableOperation".   The video shows an older version of iCal, but it looks like I am putting the correct information in.  I copied the URL from the "Your Calendar has been Published" web page.  I tried turning on SSL.  I tried manually putting in port 8008 or 8443 (SSL) and that didn't work.  I tried logging in with different accounts in that FM server.  I made sure the privilege group allows for XML connections in the FM File.  I've made sure the Admin Console has PHP and XML publishing turned on.   I've turned off the Mac OS Firewall, but can't guarantee the router doesn't have a firewall (will check into that).  But I get authentication error which to me means a connection was tried and failed, ergo no firewall issues with port blocking.   Thanks for any suggestions.  Much appreciated. Â
  6. Thanks Evan.... that makes sense. I took out the GetAsCSS and it works great. I now see how that works. If you had some text in a field formatted with RTF (bold, color, etc.), then that would make it convert to HTML code. But since I am already writing that code, then it doesn't need the GetAsCSS. Much appreciated. You've helped me twice. Maybe I'll get to meet you at Devcon 2014. Hope so. Cheers!
  7. This should be real easy and I can't figure out what I'm doing wrong. I want to send HTML email and every time I send it, i just get the raw html in the message. So here is what I am doing. I first set the HTML equal to a variable $HTML Set Variable [ $HTML; Value:"<!doctype html> <html> <head> <meta charset="UTF-8"> <title>Untitled Document</title> </head> <body> <div align="left"><img src="%5C'>"width="747" height="163" alt=""/> </div> <p align="left"><strong>DRAFT DRAFT DRAFT --- Texas Rail Advocates News Update</strong></p> - - - - - - - - - - - - -<br> <p>Greetings TRA Members and Friends. A lot is happening in the rail world right now and this is our monthly newsletter with the latest information updates.</p> <p>Due to an unusual snow storm in Dallas this past Wednesday, March 4th, our TRA Board Meeting was canceled because our meeting facility closed down. A few of you showed up and our apologies that it was not open and we could not meet. The Board Meeting has been rescheduled to March 11th at the Center for Nonprofit Management, 2900 Live Oak St., Dallas, Texas, 75204, 6:30 PM. This meeting will include the annual election of the President. </p> <p>U.S. House passes Amtrak funding bill. We have the vote tally by Congressional district in Texas. More Representatives voted No than voted Yes.</p> <ul><li><a href="http://www.TexasRailAdvocates.org/viewIt.asp?ati=3&amp;a=1940">www.TexasRailAdvocates.org/viewIt.asp?ati=3&amp;a=1940</a></li></ul> <p>One Texas lawmaker wants to stop high speed rail in its tracks with a House bill filed in the legislature. </p> <ul><li><a href="http://texasrailadvocates.org/viewIt.asp?ati=3&amp;a=1938">www.TexasRailAdvocates.org/viewIt.asp?ati=3&amp;a=1938</a></li></ul> <p>One Texas county judge has formed an anti-bullet train lobbying group</p> <ul><li><a href="http://texasrailadvocates.org/viewIt.asp?ati=3&amp;a=1937">www.TexasRailAdvocates.org/viewIt.asp?ati=3&amp;a=1937</a></li></ul> <p>Heartland Flyer train between Fort Worth and Oklahoma City faces funding shortfall. </p> <ul><li><a href="http://texasrailadvocates.org/viewIt.asp?ati=3&amp;a=1930">www.TexasRailAdvocates.org/viewIt.asp?ati=3&amp;a=1930</a></li></ul> <p>Union Pacific announces Phase 2 of railroad work San Antonio to Houston. </p> <ul><li><a href="http://texasrailadvocates.org/viewIt.asp?ati=3&amp;a=1935">www.TexasRailAdvocates.org/viewIt.asp?ati=3&amp;a=1935</a></li></ul> <p>In our opinion: Consequences for opposing high-speed rail in Texas are many. </p> <ul><li><a href="http://texasrailadvocates.org/viewIt.asp?ati=26&amp;a=1936">www.TexasRailAdvocates.org/viewIt.asp?ati=26&amp;a=1936</a></li></ul> <p>Keep up to date with freight and passenger rail news. Check back frequently to <a href="http://www.TexasRailAdvocates.org">www.TexasRailAdvocates.org</a></p> <p>- - - - - - </p> <p>&nbsp;</p> <p></p> </body> </html> " ] Then I run the script with this script step in it: Set Variable [$Result; Value:EmailConnectSMTP( "SomeSmtpURL.com" ; "UserName" ; "Password" ; "tls=true" ) and EmailCreate( "MyEmail@domain.com" ; "MyEmail@domain.com" ; "Some Subject" ) and EmailSetBody( GetAsCSS( $HTML ); "html" ) and EmailSend and EmailDisconnect] I've tried changing the EmailSetBody by removing the GetAsCSS or having it point to a field instead of a variable, but it never works. It always sends it as plain text email showing up with the raw html in the message. It looks like I have specified the "html" parameter properly. What do you think I have done wrong? Thanks for any assistance. TAYLOR SHARPE PS: Doing this on a Mac running Mac OS X 10.10.2 with FMPA 13.0v5 and Email Plugin 2.11
  8. Thank you Evan.... I found the specific instructions to fix the fully qualified hostname at: http://support.apple.com/en-us/HT203319 It is now working. Thank you for giving me some direction.
  9. FYI, I tried using the GoDaddy server (smtpout.secureserver.net, port 465, ssl) and it worked other than my HTML ended up as plain text, but that was probably my mistake. I'm still disappointed that the Email plugin doesn't work with the Mac OS X SMTP server when CNS and FileMaker do. Looking forward to figuring it out so I can make use of it. Anyone else connecting the 360Works Email server to a Mac OS X SMTP server over TLS connection?
  10. Hey Laretta... used to seeing you on Technet in the past. Hope all is well. Regarding the post, I only used my name and company, which are publicly available hopefully people will pay attention to the company name (www.TaylorMadeServices.com) if they need a FileMaker developer in the Dallas area <grin>. But the licensing, user IDs and passwords were all removed from my post since that is not appropriate in a public forum. If only we could be anonymous in life, but I think technology has changed things and I expect to loose even more privacy in the future unfortunately.
  11. 360Plugins_FMAdvanced.txt Yes, I am rather certain I am putting the information in correctly. Then again, I am new to this plugin and it could be misunderstanding something obvious and may eat crow about it. But I certainly have no problem getting this to work on CNS, Dacons and FileMaker sending mail functions and only have a problem with 360 Works Email plugin. I am very familiar with running SMTP servers and do this for many servers. So obviously this is an issue with my understanding of this particularly plugin or there is a technical issue because I set this up on machines quite regularly every week. I am attaching the log file (had to change the extension to .txt so it would upload here). Note line 216 is where the failure occurs and it simply says "Invalid Addresses: Taylor@TaylorSharpe.com". This is one of several emails I have tested and they all fail the same way. Below in line 230, the com.sun.mail.smtp.SMTPAddressFailedException says that it needs a fully qualified hostname, of which that email is fully qualified and so was the gmail address I tested too. FYI, I tried adding a dot to the end of the email and simply got an error saying I can't have a dot at the end of the email, which should be obvious. But I was just trying other ways to make sure it was fully qualified. Maybe you'll see something else in the log file I overlooked. Any input is appreciated.
  12. I am using FMPA 13.0v5 with 360Works Email plugin v2.11 on a Mac Pro 10.10.2. Actually, I mostly use the CNS plugin, but since I like some of the other 360Works plugins, I thought I would give this a try. I am running on another machine my Mac Mini Mail Server with SMTP on it, SSL, TLS, and a verified SSL certificate (Comodo). I can connect to this server using port 587 and TLS using both the CNS plugin and FileMaker's Send Mail script step, and both work just fine. When I run it on 360 Email, I keep getting an error saying I have Invalid Addresses that I am trying to send to. To make things simple, I am sending to a single email. Since it didn't like my company email, I tried my gmail one to no avail. I made sure there were no spaces or anything wrong and even ran the IsValidEmail to confirm the email to send was valid. Normally the send email is grouped into one Set Variable script step and I couldn't tell where it was going wrong. So I broke everything down into simple steps: EmailRegister, EmailConnectSMTP, EmailCreate, EmailSetBody, EmailSend and EmailDisconnect. They all return the result of 1 for successful except the EmailSend. It returns a 0 and if I ask the EmailLastError, I get the "An error occurred: Invalid Address: Taylor@TaylorMadeServices.com" (one of several emails I tried). I finally went to the 360Works Email Plugin Examples file and opened it up. I click the connect Advanced connect and turn on StartTLS and put the host name in, my user name and password and press connect. It works. I fill out the "Quick Send" example and press Send and I get the same error that I get when I made my own script. I tried different emails to no avail. I tried the Send HTML email too and it failed also with the same error. I guess I don't have to use this plugin, but wonder what I might be doing wrong since the FileMaker Email script step works and so does the CNS email plugin. The main reason for using the plugin is for HTML support. Any suggestions on what I may be doing wrong or what to try would be appreciated. Thanks. TAYLOR SHARPE Taylor@TaylorMadeServices.com 214-522-5525 EmailRegister("###My License No.###"; "Taylor Made Services") and EmailConnectSMTP( "taylormadeservices.com" ; "###UserName###" ; "###Password###" ; "tls=true" ) and EmailCreate( "taylor@taylormadeservices.com" ; "taylor@taylormadeservices.com" ; "Some Subject Name" ) and // I make sure the from and to are not the same on my tests and that they are valid EmailSetBody( GetAsCSS( $HTML ); "html" ) and EmailSend and EmailDisconnect
  13. You probably should start off by reading FileMaker's Security guide at http://help.filemaker.com/app/answers/detail/a_id/13291/~/the-filemaker-security-guide I would recommend you use a real server operating system and not Windows 7. I recommend you use FileMaker security encryption that you turn on in the Admin Console to use AES 256 bit cypher to encrypt between the client and server. In FileMaker 13, you can also encrypt at rest if you are worried about physical security (someone breaking in and taking the machine). Security includes a backup plan including off site backups (e.g., in the cloud or maybe at an alternate office location). You'll need a physical security plan such as locking the server room and limiting access to that room to those who need it. You will need to set up privilege groups and assign people to appropriate privileges controlling what tables, layouts and scripting they can access, modify, delete, create, etc. The enterprise method of handling User ID's is to make use of Active Directory on a Windows Server (or Open Directory on a Mac Server) and each person will have a User ID and password. I personally set up many of my new databases using a 2nd factor authentication, usually with email as the 2nd factor. You should have a firewall that opens only the ports necessary. You should only be running the FileMaker service on the server and not other services per FileMaker's recommendations (e.g., don't also use the machine for Active Directory, File Sharing, etc.). If you install a certificate for FileMaker service and turn on security encryption, then Web Direct is very secure. But if you export files from FileMaker to somewhere else, you'll have to develop security accordingly. And if you don't want to worry about Windows viruses and Trojans, you'll have a lot less exposure if you use a Mac OS X Server. The enterprise level of security involves documenting your security plan. The International Standards Organization has a standard, ISO 27001, that steps through how to document security and have minimum security standards and it is a very thorough documentation and involves auditing, etc. Or you can look at the US Governments standard for documenting information database security plans which developed by the National Institute of Standards and Technology (NIST) in their Special Publication 800-53 (current version is revision 4). I think some of the security plans described above are over kill and just document security you have hopefully already implemented. If you follow the FileMaker Security Guide, you'll meet minimum levels good enough for Top Security for the US Government computers. The US Department of Homeland Security maintains a National Vulnerability Database to document all known vulnerabilities to various softwares. I just did a search on FileMaker and there have only been 5 vulnerabilities documented since the year 2000 none since version 5 of FileMaker have been classified as a High vulnerability (the other 4 were all Medium level). Compare this to Oracle that has 2585 vulnerabilities as of today and MySQL has 461 vulnerabilities. Oracle's most recent was just in January and listed as a High vulnerability. MySQL's last High vulnerability was this month (March 2014) and is a SQL injection attack. While I'll never claim FileMaker is invulnerable, it certainly looks to have a lot less security issues than other major database platforms and this database certainly makes FileMaker seem to have a very good security record. In other words, from the security perspective, FileMaker is a good choice.
  14. I had to quit using SafetyNet when going to FMS 13 since the current version, 1.3, is not compatible. Any news on when a new version is coming out? I'm having to use Arq now, but would prefer something specifically for FileMaker. I'm assuming it will support remote container fields and hopefully the Amazon Glacier in addition to the S3. I really look forward to it! TAYLOR SHARPE www.TaylorMadeServices.com
  15. SafetyNet hits a backup size limit of something like 5 Gigs, which is hampering a couple of my clients. Client files sure are growing. Is SafetyNet backing up the RC_Data_FMS files? I'm hoping someday that SafetyNet will be like the FileMaker Progressive Backups (aka Differential backups on SQL boxes) where the original is backed up and only changes are submitted. That would be real nice. Thanks for the plugin!
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.