Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

DNG: OpenSocial-Gadget is not loaded. CRJAZ5037E

Questions
Tags
Users
Badges
Ulrich Simon
(1514) Jul 26 '21, 3:27 a.m.

I have created an OpenSocial-Gadget, copied it into  .\JazzTeamServer\server\liberty\servers\clm\dropins\war\extensions and added it to a WidgetCatalog.xml file. I referenced this file in the Advanced Properties of DNG and adapted server.xml to enable dropins. I did this on 2 installation of DNG 7.0.2.

In both installations, the new Gadget is shown in the selection view to add a widget to a dashboard and I can add the gadget to my Minidashboard. In one installation, the gadget is loaded and is working.
On the other installation, the gadget is not loaded but error CRJAZ5037E appears. There is no error message in the Browser Console. I am able to retrieve the Gadget-xml-File in a browser directly on the Jazz-Server. I cannot find any message in any log file.

0 votes

4 answers
3,945 views
0 votes

Accepted answer

Permanent link
Ian Barnard
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER (2.4k714) Jul 26 '21, 3:58 a.m.

ELM 7.0.2 iFix004, ELM 7.0.1 iFix009, CLM 6.0.6.1 iFix018, and CLM 6.0.6 iFix022 (and later) have increased level of security on OpenSocial widgets; see https://www.ibm.com/support/pages/node/6466981 for how to change settings on the server to allow the widgets to work.


Ulrich Simon selected this answer as the correct answer

3 votes

Comments
Bartosz Chrabski
Jul 26 '21, 4:02 a.m.

 Yes, that is true.

3 other answers

Permanent link
Bartosz Chrabski
(3.4k22949) edited
Jul 26 '21, 3:37 a.m.

 Ulrich,


Please go to rm/admin and selected Advanced Properties.

Search for com.ibm.team.repository.service.opensocial.gadgetprovider.OpenSocialGadgetProviderRestService

Next change value of External resources allowance list to *.

It will solve your problem.

Bartek

2 votes

Comments
Ian Barnard
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER Jul 26 '21, 3:59 a.m.

The change in behaviour was made to decrease SSRF vulnerability, but using * will bypass this - you should use specific URLs.

Bartosz Chrabski
Jul 26 '21, 4:02 a.m.

True 

Permanent link
Manju Gowda
(37110) Dec 08 '22, 7:17 a.m.

instead of rm/admin, go to jts/admin. This is for 702

0 votes

Permanent link
Ragavendhren Balasubramanain
(111) edited
Jan 03, 6:20 a.m.
I'm curious about the necessity of whitelisting for Cloud Trail. It seems that the Cloud Trail version lacks access to extension URL whitelisting options. I'm also wondering if there's a way to test custom widgets in Cloud Trail. Any insights or guidance on these aspects would be greatly appreciated!


I get this error while adding a simple hello world widget.
The OpenSocial gadget was not loaded.ID CRJAZ5037E
The application cannot reach the gadget. The gadget might have been removed from its host server.
Remove the gadget from your dashboard and add it again, being sure to use the correct address. If the problem still exists, the host server cannot be reached and no resolution exists.

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 10,935
× 7,494
× 1,324

Question asked: Jul 26 '21, 3:27 a.m.

Question was seen: 3,945 times

Last updated: Jan 03, 6:20 a.m.

Confirmation Cancel Confirm