User Usage

User Usage Information

#!/bin/bash
 
#
# noodle_datamanager_add.sh
#
 
set -e
 
U=$1
P=$2
F=$3
D=$4
 
SERVER="https://domain.tld"
COOKIE=noodle_cookie.tmp
 
if [ "$D" == "" ] ; then
	echo NO >&2
	exit 1
fi
if [ -f $COOKIE ] ; then
	echo "already running"
	exit 2;
fi
TMP=$(mktemp)
wget -q "$SERVER/HandleLogin.po" --post-data="user_name=$U&user_password=$P" --keep-session-cookies --save-cookies $COOKIE -O /dev/null
wget -q "$SERVER/datamanager/MainWindow.po"  --load-cookies $COOKIE -O "$TMP"
CSRF=$(< "$TMP" perl -pe 's/(<)/\n$1/g' | grep CSRF | perl -pe 's/^.*value="//g;s/".*$//g')
rm "$TMP"
wget -q "$SERVER/datamanager/HandleMainWindow.po" --post-data="CSRF=$CSRF&folder=$F&val5440=$D" --load-cookies $COOKIE -O /dev/null

#!/bin/bash
 
#
# noodle_datamanager_report_get.sh
#
 
set -e
 
U=$1
P=$2
F=$3
R=$4
 
SITE="https://domain.tld"
COOKIE=noodle_cookie.tmp
 
if [ "$R" == "" ] ; then
    echo NO >&2
    exit 1
fi
if [ -f $COOKIE ] ; then
    echo "already running"
    exit 2;
fi
wget -q "$SITE/HandleLogin.po" --post-data="user_name=$U&user_password=$P" --keep-session-cookies --save-cookies $COOKIE -O /dev/null
wget -q "$SITE/datamanager/ReportView.po?folder=$F&reportHandle=$R&itemsPerPage=99" --load-cookies $COOKIE -O -
rm $COOKIE

An overview of the Noodle API per version can be obtained with the following commands;

  • JavaScript> top.noodle.evalURL("/media/noodle.debug.js", function(){console.log(top.noodle.debug.api(top.noodle));}, []);
    • User App content is dynamically loaded so open whatever application you are interested in before looking up its JavaScript.
  • HTTP> 7z l jar/Noodle.*lan.jar | grep -P "Handle.*\.class" | grep presentation | perl -pe 's/.*presentation\///g;s/class/po/g'
  • AJAX> 7z l jar/Noodle.*lan.jar | grep -P "Handle.*.class" | grep presentation | perl -pe 's/.* //g' | grep AJAX | while read PO ; do echo "$PO" | perl -pe 's/.*presentation\///g;s/class/po/g'; 7z e -so jar/Noodle.*lan.jar "$PO" | strings | grep -iP "(none|read|post|modify|route|admin|sys)_" | perl -pe 's/\t//g;s/^/\t/g'; done
  • SQL> SELECT table_name FROM information_schema.tables where table_schema = 'public';

Details on using each object should be obtained from the Web Browser (or \d table for PostgreSQL) 

JavaScript

string = about
object = cbc
	object = myParent
	object = delayedDomTimer
	boolean = delayedDomRunning
	object = pendingDomActions
	number = pendingDomSkipps
	string = LiveNotSupported
	number = scrollBarThickness
	function = css2rules
	function = stopProp
	function = getScrollBarThickness
	function = style
	function = browserSupportsConcurrentConnections
	function = frameDoc
	function = win2Iframe
	function = firstElementChild
	function = docFrame
	function = xss
	function = getCSSRulesByName
	function = getFirstCSSRuleByName
	function = addCss
	function = hasProperty
	function = objectIsEmpty
	function = docHead
	function = addJS
	function = delayedDom
	function = addDelayedDom
	function = removeDelayedDom
	function = getType
	function = event2Doc
	function = node2Doc
	function = getKeyNum
	function = getIE8Event
	function = getEvent
	function = getTarget
	function = newArray
	function = combineTextNodes
	function = newMap
	function = insertAfter
	function = getOwnerWindow
	function = pageSize
	function = windowSize
	function = getScroll
	function = getScrollMaxY
	function = iframesSize
	function = removeConsole
	function = addEventListener
	function = removeEventListener
	function = wasEnter
	function = iFrameXML
	function = iFrameAnswer
	function = selectToVisibleOption
	function = realPosition
	function = getElementsByClassName
	function = getElementsByClassNameHelper
	function = fireEvent
	function = node2Iframe
	function = realPositionTop
	function = betterThanIE
function = debug
object = ajax
	object = myParent
	object = LastModified
	boolean = ignoreMasquerading
	boolean = shouldTrace
	function = toJSON
	function = getLastModified
	function = getRequestor
	function = validAnswer
	function = validAnswerHelper
	function = localError
	function = local
	function = upload
	function = uploadLocal
	function = post
	function = get
	function = socket
	function = makePostable
	function = dummy
	function = isErr
	function = checkResult
	function = isOK
	function = handleOK
	function = reload
	function = stringToXML
	function = XMLToString
object = core
	object = myParent
	object = listeners
		function = 0
		function = 1
	boolean = shouldTick
	number = serverSocketTick
	object = serverSocket
		number = UNSENT
		number = OPENED
		number = HEADERS_RECEIVED
		number = LOADING
		number = DONE
		function = onreadystatechange
		number = readyState
		number = timeout
		boolean = withCredentials
		object = upload
			object = onloadstart
			object = onprogress
			object = onabort
			object = onerror
			object = onload
			object = ontimeout
			object = onloadend
			function = addEventListener
			function = removeEventListener
			function = dispatchEvent
		string = responseURL
		number = status
		string = statusText
		string = responseType
		string = response
		string = responseText
		object = responseXML
		function = open
		function = setRequestHeader
		function = send
		function = abort
		function = getResponseHeader
		function = getAllResponseHeaders
		function = overrideMimeType
		object = onloadstart
		object = onprogress
		object = onabort
		object = onerror
		object = onload
		object = ontimeout
		object = onloadend
		function = addEventListener
		function = removeEventListener
		function = dispatchEvent
	string = lastComTime
	number = lastClientComTime
	string = baseUrl
	string = currentFolderRights
	boolean = logout_on_error
	number = tickInterval
	number = socketInterval
	boolean = loggedOut
	number = tnw
	object = logoutActions
	boolean = reportListenerErrors
	boolean = throwListenerErrors
	string = title
	object = CSRF
	function = trace
	function = cssCheck
	function = cssCheckH
	function = hashChange
	function = checkSearch
	function = unload
	function = addLogoutAction
	function = removeLogoutAction
	function = logout
	function = getTitle
	function = isTopNav
	function = tick
	function = closeSocket
	function = openSocket
	function = addListener
	function = removeListener
	function = handleServerCommand
	function = evalString
	function = handleEvalURL
	function = expandIFrame
	function = reExpandIFrame
object = common
	object = myParent
	number = MAX_RECURSION
	boolean = SHIFT
	object = lastSearchWindow
	boolean = shouldSuggest
	boolean = colourCoding
	object = suggestCache
	object = suggestionElement
	object = suggestionLast
	object = suggestionQueue
	string = titleMouseOverVar
	object = titleMouseOutElement
	number = maxFileSize
	string = editor
	number = toastTime
	function = copyToClip
	function = contans
	function = subscribe
	function = subscribeHelper
	function = edit
	function = placeSubMenu
	function = doQSort
	function = chooseUser
	function = chooseUserC
	function = chooseUserH
	function = selectTab
	function = objKeys
	function = objLength
	function = get
	function = filterURL
	object = ri
		boolean = showSrc
		function = all
		function = show
		function = showH
		function = add
		function = sv
		function = clean
		function = hide
		function = enter
		function = match
		function = keyup
		function = keydown
		function = insert
		function = insertH
		function = paste
		function = select
		function = setCursor
	function = hide
	function = show
	function = innerHTMLInc
	function = addId
	function = addIdToEleArray
	function = removeIdFromEleArray
	function = rmId
	function = addClassNameArrayToEleArray
	function = removeClassNameArrayFromEleArray
	function = exists
	function = isNotEmpty
	function = id2suffix
	function = id2handle
	function = suggest
	function = suggestHelper
	function = showSuggestions
	function = blurSuggestion
	function = blurSuggestion_helper
	function = suggestionSelected
	function = hideSuggestion
	function = suggestSelect
	function = suggestOver
	function = suggestUp
	function = suggestDown
	function = suggestInject
	function = suggestMove
	function = isChildOfWith
	function = isChildOf
	function = actOnIds
	function = actOnIds_hide
	function = comment
	function = commentHelper
	function = commentHelperAction
	function = removeComment
	function = removeCommentHelper
	function = removeAttachment
	function = removeAttachmentHelper
	function = addTitleMouseOverTo
	function = titleMouseOverUnset
	function = titleMouseOverSet
	function = titleMouseOverGet
	function = titleMobile
	function = titleMouseOver
	function = getOrMakeId
	function = titleMouseOut
	function = titleMouseOutHelper
	function = titleMouseOverBlack
	function = titleMouseOutBlack
	function = searchFolder
	function = toggleSearchFolder
	function = get2post
	function = get2form
	function = get2formH
	function = exportFolder
	function = isIE
	function = isSafari
	function = isFireFox
	function = isChrome
	function = getHandles
	function = paste
	function = copy
	function = print
	function = cut
	function = handlePostCut
	function = rename
	function = toggle
	function = isOnlyIframes
	function = isOnlyIframesH
	function = updateCache
	function = handleUpdateCache
	function = handleUpdateCacheHelper
	function = cleanTextForTitle
	function = navigate
	function = hideHint
	function = showHint
	function = currentFolder
	function = currentFolderFor
	function = hasCSS
	function = getCSSOn
	function = ensureCSS
	function = hideId
	function = showId
	function = button
	function = mouseOver
	function = mouseOut
	function = mouseOutHelper
	function = checkEnter
	function = uploadButtonShowAttachments
	function = uploadButtonClickFile
	function = sizeOK
	function = checkAttach
	function = fileuploadbutton
	function = addInlineUserMessage
	function = inlineUserMessageExists
	object = renameTitle
		function = show
		function = hide
		function = inlineRename
		function = inlineRenameHelperKeypress
		function = inlineRenameReset
		function = inlineRenameHelper
		function = postRename
	object = editTheme
		object = eleId
		object = eleName
		object = eleEve
		function = editThemeHlpr
		function = editThemeHlprWrpr
		function = edit
	function = format
	function = imagePopup
	function = getAllIFrames
	function = getAllIFramesRecursion
	object = checkboxSlider
		string = dataOnTitle
		string = dataOffTitle
		function = checkboxSliderAll
		function = createCheckboxSlider
		function = setDataTitle
	object = db
		function = indexedDB
		function = set
		function = get
		function = setM
		function = getM
		function = list
	object = item
		object = myParent
		string = cid
		object = selected
		object = oid
		function = showMenu
		function = hideIf
		function = filterByFolder
		function = filterByItem
		function = filterHelper
		function = hideMenu
		function = getFolder
		function = history
		function = share
		function = copy
		function = selectHelper
		function = select
		function = selectItems
		function = getSelectClass
		function = deselect
		function = cut
		function = remove
		function = removeHelper
		function = rename
		function = route
		function = notify
		function = replace
		function = approvals
		function = metadata
		function = message
		function = edit
		function = quote
		function = workflow
		function = download
		function = print
		function = checkout
		function = unlock
		function = complete
		function = toggleComments
		function = toggleAttachments
		function = attach
		function = handleAttach
		function = showTags
		function = handleShowTags
		function = tag
		function = handleTag
		function = old_info
		function = answer
		function = viewed
	string = CSRF
boolean = isIsolated
function = evalURL
function = error
function = headWindow
function = navWindow
function = mainFrame
function = mainDoc
function = mainWindow
function = perPage
function = perPageH
function = perPageH2
function = init
object = quicklinks
	object = myParent
	function = getWindow
	function = refresh
object = user
	object = myParent
	function = getID
	function = getLogin
	function = getName
	function = getTimeFormat
	function = getDateFormat
	function = get
object = popup
	number = popup_looping
	number = popup_start_size
	object = popup_reload_url
	function = launch
	function = resize_helper_reset
	function = resize
	function = resize_retry
	function = resize_helper
	function = small_screen_helper
	function = popupOnReload
	function = handlePopupOnReload
	function = hideListener
	function = hide
	function = getFrame
	function = clonepopup
	function = showPopupBlanket
	function = hidePopupBlanket
	function = init
	object = drag
		number = offsetX
		number = offsetY
		object = dragFuncs
		object = popBlanketPreviousShow
		function = mouseDown
		function = mouseUp
		function = mouseMove
		function = addFunc
		function = removeFunc
object = messages
	object = myParent
	function = alert
	function = confirm
	function = get
	function = getmsg
	object = m
		string = NO
		string = NOTAUTH
		string = NO_FIELD
		string = NO_FIELD_SELECTED
		string = REFUSED
		string = SERVFAIL
		string = YES
		string = YXDOMAIN
		string = atleast_one_name
		string = bad_type
		string = can_route_documents_only
		string = cant_delete_admin
		string = cant_disable_admin
		string = cannot_edit_search
		string = cannot_route_folders
		string = choose_file
		string = choose_folder_remove
		string = confirm_apply_routes
		string = confirm_custom
		string = confirm_delete
		string = confirm_delete_folders
		string = confirm_delete_item
		string = confirm_delete_licenses
		string = confirm_delete_link
		string = confirm_delete_section
		string = confirm_headline
		string = confirm_intra_name_over
		string = confirm_mismatch
		string = confirm_no_message
		string = confirm_no_message_subject
		string = confirm_no_subject
		string = confirm_pass
		string = confirm_remove_application
		string = confirm_remove_autologin
		string = couldnt_enable_quota
		string = custom_all_data_lost
		string = custom_field_exists
		string = custom_fields_delete
		string = custom_fields_rename
		string = dict_reset
		string = disk_quota
		string = document_routing_error
		string = domain_in_database
		string = domain_in_dns
		string = duplicate_name_exists
		string = duplicate_names
		string = duplicate_users
		string = edit_contacts_email
		string = edit_users_email
		string = element_used_in_report
		string = element_used_in_title
		string = email_failed
		string = email_selected
		string = email_subject_empty
		string = empty_dataconnector_list
		string = empty_datamanager_list
		string = empty_location_name
		string = end_year_invalid
		string = enter_area_code
		string = enter_calendarName_field
		string = enter_email
		string = enter_event_title
		string = enter_field_name
		string = enter_file_title
		string = enter_filter_name
		string = enter_group_name
		string = enter_intra_name
		string = enter_location_field
		string = enter_name
		string = enter_name_field
		string = enter_password
		string = enter_pattern
		string = enter_phone
		string = error_communicating
		string = error_updating_key
		string = expiry_date
		string = export
		string = field_exist
		string = field_selected
		string = field_size
		string = file_title
		string = folder_already_added
		string = folder_name_value
		string = four_digit
		string = from_date_larger
		string = from_email_needed
		string = group_name
		string = groupname_exists
		string = import
		string = info_before_saving
		string = info_before_updating
		string = invalid_area_code
		string = invalid_c_code
		string = invalid_comp_email
		string = invalid_day
		string = invalid_disk_quota
		string = invalid_domain
		string = invalid_email
		string = invalid_fax
		string = invalid_frequency
		string = invalid_hexa
		string = invalid_month
		string = invalid_number
		string = invalid_number_users
		string = invalid_occurrences
		string = invalid_user
		string = ip_invalid
		string = label_is_empty
		string = license_expired
		string = license_required
		string = links_retitled
		string = logging_first_time
		string = mailserver_no_set
		string = mandatory_fields
		string = maximum_is_empty
		string = minimum_is_empty
		string = minimum_pass
		string = must_have_content_subject
		string = must_have_title
		string = name_custom_field
		string = name_empty
		string = no_container_name
		string = no_custom_fields_delete
		string = no_custom_fields_rename
		string = no_days_selected
		string = no_file
		string = no_folder
		string = no_folder_checked
		string = no_item_selected
		string = no_link_selected
		string = no_memo_body
		string = no_memo_subject
		string = no_message
		string = no_name
		string = no_new_container_name
		string = no_new_link_name
		string = no_option_selected
		string = no_report_fields
		string = no_report_name
		string = no_response
		string = no_route_selected
		string = no_search_criteria
		string = no_space
		string = no_time
		string = no_whatsnew
		string = null_name
		string = numbers_only
		string = pass_no_match
		string = pass_retype
		string = password_required
		string = past_memo
		string = please_relogin
		string = poll_bad_expiry
		string = poll_bad_year
		string = poll_more_options
		string = poll_name_question
		string = portlet_no_application
		string = portlet_no_value
		string = ptr_record
		string = quota_full
		string = really_want_delete
		string = released_from_dns
		string = remove_attachments
		string = remove_autologin
		string = remove_custom_field
		string = input_required
		string = select_layout_add
		string = select_one_link_only
		string = select_portlet_add
		string = select_portlet_delete
		string = select_portlet_edit
		string = select_portlet_move
		string = select_remove
		string = select_rename
		string = select_route
		string = site_email
		string = some_not_copied
		string = some_not_cut
		string = some_not_deleted
		string = start_greater_than_end
		string = start_time_greater
		string = start_year_invalid
		string = sure_delete_messages
		string = textarea_size
		string = time_out
		string = timezone_out_of_date
		string = type_old_pass
		string = type_pass
		string = use_number
		string = username_required
		string = valid_email
		string = value_must_be_numeric
		string = version_deleted
		string = wrong_content_type
		string = Su
		string = Mo
		string = Tu
		string = We
		string = Th
		string = Fr
		string = Sa
		string = January
		string = February
		string = March
		string = April
		string = May
		string = June
		string = July
		string = August
		string = September
		string = October
		string = November
		string = December
		string = Sunday
		string = Monday
		string = Tuesday
		string = Wednesday
		string = Thursday
		string = Friday
		string = Saturday
object = browser
	object = clicked
	string = idToSet
	string = homeURL
	string = bURL
	boolean = showAll
	string = homeFolderHandle
	boolean = rootOpen
	string = openFolders
	string = pending
	function = mOvr
	function = mOut
	function = mClick
	function = refresh
	function = getRootNodes
	function = showsubFolders
	function = addFolders
	function = linkWrapperMouseLeave
	function = linkWrapperMouseEnter
	function = resizeFrame
	function = rememberToOpen
	function = rememberToOpenH
	function = forgetToOpen
	function = forgetToOpenH
	function = openSubFolders
	function = openSubFoldersW
	function = openSubFoldersH
	function = doMenuLink
	function = ie8fix
	function = init
	function = init2
object = feed
	object = myParent
	object = moretext
	object = folder
	boolean = clickToShow
	boolean = isModify
	function = like
	function = like_handler
	function = more
	function = isOffScreen
	function = push
	function = postShow
	function = show
	function = append
	function = showShowMore
	function = init
boolean = $
object = section
	number = slideTime
object = im
	object = myParent
	object = alertUser
	boolean = soundON
	object = flashTitleTimer
	boolean = IMBoxIsOpen
	object = audioElement
	boolean = isDisabled
	string = onlineUsers
	number = messageCount
	boolean = loaded
	boolean = shouldNotify
	function = searchLink
	function = imUser
	function = showH
	function = imUser_helper
	function = videoToggleUser
	function = videoToggle
	function = offline
	function = getMessageNumber
	function = setMessageNumber
	function = disableIM
	function = flashTitle
	function = flashTitleHelper
	function = reloadIMBox
	function = push
	function = notifyBlur
	function = notifyFocus
	function = notify
	function = appendMessageHelper
	function = resetAudioElement
	function = addMessages
	function = closeIMBox
	function = openIMBox
	function = selectUserHelper
	function = selectUser
	function = selectUserHelper2
	function = appendTextToTitle
	function = selectUserHelper3
	function = turnSoundON
	function = turnSoundOFF
	function = setOnlineUsers
	function = setOnlineUsersHelper
	function = getDoc
	function = postInit
	function = emoji
	function = emojiHide
	function = emojiShow
	function = init
object = av
	undefined = myParent
	number = selectedVideo
	boolean = bossMode
	object = local
		object = stream
		object = video
		object = interval
		boolean = weInitiaited
		object = theBoss
	object = remoteConnections
	object = video_config
		object = mandatory
			number = maxWidth
		object = optional
			object = 0
				number = frameRate
	object = config
		object = iceServers
			object = 0
				object = urls
					string = 0
	function = start
	function = translate
	function = time
	function = endRequest
	function = getLocalUser
	function = sendStop
	function = stopOne
	function = stop
	function = requestRecevedOnBehalfOfBoss
	function = requestReceved
	function = hideButtons
	function = hideButtonsH
	function = showButtonsH
	function = showButtons
	function = canInvite
	function = getMainVideo
	function = stepAsideTitle
	function = stepAsideH
	function = stepAside
	function = answerReceved
	function = on_resize
	function = on_success
	function = on_error
	function = on_signalingStateChanged
	function = iceCandidateType
	function = isUsableIce
	function = addIceCandidates
	function = on_iceCandidate
	function = on_addIceCandidateSuccess
	function = syncMembers
	function = handleSyncMembers
	function = focus
	function = focusNext
	function = on_addStream
	function = on_removeStream
	function = on_ended
	function = on_offerCreated
	function = on_offerReady
	function = on_offerAccepted
	function = on_remoteDescriptionSet
	function = on_remoteDescriptionCreated
	function = on_answerCreated
	function = on_answerReady
	function = push
	function = pushH

HTTP

HandleCache.po
usermanager/HandleAddCustomField.po
usermanager/HandleImportUsers.po
usermanager/HandleUserCopy.po
usermanager/HandleAJAX.po
usermanager/HandleUserDetails.po
usermanager/HandleUserList.po
usermanager/HandleTemplateUserList.po
usermanager/HandleTemplateWhatsNewSummary.po
usermanager/HandleExportUsers.po
usermanager/HandleTemplateEditorAndLanguage.po
usermanager/HandleWorkGroupSettings.po
usermanager/HandleUserSettingsView.po
usermanager/HandleRenameCustomFields.po
usermanager/HandleExpertiseSettings.po
emailmanager/HandleSettingsAccountInfo.po
emailmanager/HandleFolderDelete.po
emailmanager/HandleEditFilter.po
emailmanager/HandleFolderRename.po
emailmanager/HandleAction.po
emailmanager/HandleAddEmailFolder.po
emailmanager/HandleNewFilter.po
emailmanager/HandleFilterList.po
links/HandleMainWindow.po
links/HandleLinksAJAX.po
links/ie/HandleGetItems.po
HandleCreateNewApp.po
HandleItemAJAX.po
HandlePackJarFile.po
HandleViewNotifications.po
HandleForgotPassword.po
HandleAccessFolderFrame.po
HandleCreateNotificationMessage.po
HandleRouteItems.po
HandleRO.po
HandleCoworkers.po
HandlePO.po
HandlePeopleSettings.po
questions/ie/HandleSave.po
questions/HandleAJAX.po
workflow/HandleFlow.po
calendar/HandleDayView.po
calendar/HandleScheduleDayView.po
calendar/HandleAJAX.po
calendar/HandleLocationSettings.po
calendar/HandleEventView.po
calendar/HandleSettingsView.po
calendar/HandleAddEventType.po
calendar/HandleImportICal.po
calendar/HandleWeekView.po
calendar/HandleSubscribeICal.po
calendar/HandleEditLocation.po
calendar/HandleBirthdays.po
mergedcalendar/HandleMainWindow.po
mergedcalendar/HandleEditCalendar.po
mergedcalendar/HandleCalendarLegend.po
mergedcalendar/HandleSettingsView.po
bbgroupmgr/HandleMainWindow.po
bbgroupmgr/HandleTopicNew.po
HandleSettingsView.po
sections/HandlePortletSettings.po
sections/HandleRename.po
sections/ie/HandleSave.po
sections/ie/HandleLoad.po
sections/HandleAJAX.po
sections/HandleConfigurePortlet.po
sections/HandleFolderView.po
sections/HandleCompanyHeadline.po
sections/HandleConfigurePoll.po
sections/HandleSectionHeadline.po
sections/HandleLayoutSettings.po
images/HandleMainWindow.po
images/ie/HandleGetItems.po
images/HandleAJAX.po
images/HandleDnD.po
images/HandleEditImage.po
HandleSaveBiography.po
HandleSiteExport.po
HandleFolderExport.po
HandleAccessListFrame.po
HandleAccessUserPermissions.po
tasks/HandleAJAX.po
tasks/HandleDueDate.po
tasks/HandleExport.po
tasks/HandleImport.po
HandleAutoNotificationsView.po
HandleSSL.po
ErrorHandler.po
statistics/HandleMainWindow.po
statistics/HandleStatCSVs.po
statistics/HandleClear.po
bulletinboard/HandleMainWindow.po
bulletinboard/ie/HandleSave.po
bulletinboard/ie/HandleLoad.po
bulletinboard/HandleEditWindow.po
bulletinboard/HandleSubjectView.po
HandleSiteImport.po
HandleNotificationListFrame.po
memos/HandleAJAX.po
memos/HandleMemoDetails.po
memos/HandleMemoList.po
HandleAccessGroupPermissions.po
wave/HandleWave.po
datamanager/HandleMainWindow.po
datamanager/HandleRichTextProperties.po
datamanager/HandleHyperlinkProperties.po
datamanager/HandleTextAreaProperties.po
datamanager/HandleDisplayReports.po
datamanager/HandleEmailProperties.po
datamanager/HandleNumericFieldProperties.po
datamanager/HandleReportList.po
datamanager/HandleViewRecordPage.po
datamanager/ie/HandleSave.po
datamanager/ie/HandleLoad.po
datamanager/HandleImageProperties.po
datamanager/HandleAJAX.po
datamanager/HandleCurrencyProperties.po
datamanager/HandleTitleDesigner.po
datamanager/HandleDropDownProperties.po
datamanager/HandleCheckboxProperties.po
datamanager/HandleRenameAttribute.po
datamanager/HandleTimeFieldProperties.po
datamanager/HandleUserListProperties.po
datamanager/HandleReportDesigner.po
datamanager/HandleSequenceProperties.po
datamanager/HandleReportExport.po
datamanager/HandleManageFolder.po
datamanager/HandleDataConnectorProperties.po
datamanager/HandleImport.po
datamanager/HandleDisplayAllResults.po
datamanager/HandleDateFieldProperties.po
datamanager/HandleSectionProperties.po
datamanager/HandleTextFieldProperties.po
datamanager/HandleFormDesigner.po
datamanager/HandleRadioButtonProperties.po
datamanager/HandleSelectElements.po
datamanager/HandleAddPrefix.po
mobile/HandleAJAX.po
mobile/HandleInfoMobile.po
settings/HandleSelectNewIcon.po
settings/HandleDictionarySettings.po
settings/HandleIconUpload.po
settings/HandleIconSettings.po
settings/HandleLicenseSettings.po
settings/HandleGeneralSettings.po
HandleRegister.po
HandleUpgrade.po
HandleLogin.po
groupmanager/HandleGroupMemberList.po
groupmanager/HandleRenameGroups.po
groupmanager/HandleGroupAddMember.po
groupmanager/HandleGroupList.po
groupmanager/HandleGroupAdd.po
HandleListerPO.po
HandleAddNote.po
preload/HandlePreload.po
HandleErrorPage.po
HandleChangePassword.po
components/ie/HandleLoadWords.po
components/ie/HandleAJAXError.po
components/ie/HandleAJAX.po
components/ie/HandleBrowse.po
components/ie/HandleIMAJAX.po
components/ie/IntraEditorHandler.po
components/ie/HandleAddWord.po
components/HandlerPO.po
HandleRouteEdit.po
fckeditor/HandleClipBoard.po
fckeditor/HandleRename.po
fckeditor/HandleSave.po
preferences/HandleSubscriptionSummary.po
preferences/HandleEditorAndLanguage.po
preferences/HandleWhatsNewSummary.po
preferences/HandleWorkGroupSettings.po
preferences/HandleGeneralSettings.po
preferences/HandleExpertiseSettings.po
HandleEmailNotification.po
HandleTFA.po
email/HandleComposeEmail.po
email/HandleUpdateContact.po
email/ie/HandleSelectNames.po
email/ie/HandleDeleteContact.po
email/ie/HandleGetItems.po
email/ie/HandleSaveContact.po
email/ie/HandleLoadData.po
email/ie/HandleSendEmail.po
email/HandleCheckMail.po
email/HandleSelectRecepients.po
email/HandleNewAddressBook.po
email/HandleMailboxView.po
email/HandleAttachFile.po
HandleAccessRightsView.po
contacts/HandleContactSettingsView.po
contacts/HandleAddCustomField.po
contacts/HandleAddGroup.po
contacts/ie/HandleGetItems.po
contacts/HandleViewGroups.po
contacts/HandleEditContact.po
contacts/HandleViewContacts.po
contacts/HandleRenameCustomFields.po
contacts/HandleAddGroupMember.po
HandleGetZip.po
HandleDeletedItemsView.po
documents/HandleMainWindow.po
documents/HandleViewDocumentToolbar.po
documents/HandleDocumentSettings.po
documents/ie/HandleSave.po
documents/ie/HandleUnlock.po
documents/ie/HandleLoad.po
documents/ie/HandleGetItems.po
documents/HandleAJAX.po
documents/HandleDnD.po
documents/HandleEditDocument.po
documents/HandleMainWindowContents.po
blog/ie/HandleSave.po
blog/ie/HandleLoad.po
blog/ie/HandleGetItems.po
blog/HandleAJAX.po
blog/HandleSettings.po
blog/HandleBlogMain.po
HandleAttachFile.po
HandleRoutesView.po
HandleQuickLinkSettings.po
applications/HandleMediaIcons.po
applications/HandleIcons.po
applications/HandleRemoveApplication.po
applications/HandleAvailability.po
applications/HandleImport.po
launcher/HandleUserSettings.po
launcher/HandleSettings.po
launcher/HandleDelete.po

AJAX

usermanager/HandleAJAX.po
admin_resetHomeRights
admin_resetSettingRights
admin_resetSubscription
admin_cloneSubscription
admin_resetPass
admin_resetMyPage
admin_resetQuickBar
links/HandleLinksAJAX.po
modify_edit
post_makenew
modify_delete
HandleItemAJAX.po
read_copy
modify_cut
modify_remove
questions/HandleAJAX.po
post_answerQuestion
modify_editAnswer
post_solveQuestion
modify_unSolveQuestion
calendar/HandleAJAX.po
admin_rmOld
sections/HandleAJAX.po
modify_moveTo
modify_moveBefore
read_countUnread
images/HandleAJAX.po
post_addDocuments
post_addZip
post_url
read_link
tasks/HandleAJAX.po
modify_dnd_list
modify_dnd_task
modify_renameTask
modify_renameList
modify_complete
post_addTaskList
post_assignTask
modify_removeTask
modify_userTask
modify_expTask
modify_removeReminder
memos/HandleAJAX.po
post_folder
datamanager/HandleAJAX.po
post_folder
mobile/HandleAJAX.po
read_getPortlet
read_getHeadline
components/ie/HandleAJAXError.po
components/ie/HandleAJAX.po
read_people
admin_resetCss
admin_clearAll
modify_clear
modify_disapprove
modify_approve
modify_verifyTOTP
modify_AddAttachment
modify_RemoveAttachment
modify_RemoveComment
read_listTagsFor
modify_addTag
modify_rmTag
modify_Notify
modify_order
read_copy
modify_cut
modify_delete
modify_FolderDescription
modify_Keywords
modify_expiary
read_cacheHash
read_peopleChart
read_groupMembers
read_expertiseMembers
read_view
read_subscribe
none_saveMyStatus
none_sendMessage
none_viewMessages
none_clearMessages
none_getMessages
none_getMessagesBefore
none_pushSubscribe
none_videoMemberStop
none_videoMemberSync
none_videoMemberRequest
none_videoMemberAnswer
none_suggest
none_countIMs
post_addPortlet
modify_removePortlet
post_finishedEditing
admin_deleteFolder
read_updateUserCache
none_addUserToCoworkers
none_soundON
none_soundOFF
none_searchUsers
none_getUser
modify_rmStatus
post_Comment
read_userInfo
none_rmTagName
none_addTagName
none_mvTagName
admin_reIndex
admin_maintenance
read_feedPart
read_wisdom
read_hist
read_stattotal
read_statshared
read_statlogin
modify_description
modify_rename
components/ie/HandleIMAJAX.po
documents/HandleAJAX.po
read_sfs
read_copyCloud
post_addDocuments
post_pasteCloud
post_addZip
post_folder
modify_lockVersion
modify_unlockVersion
modify_replaceDocuments
modify_revertVersion
modify_rmFolder
modify_cutFolder
modify_rename
modify_removeCloud
modify_cutCloud
admin_merge
admin_subView
admin_subSort
blog/HandleAJAX.po
post_blog

SQL

icons
languages
content_types
sites
applications
users
routes
items
folders
change_history
ratings
index_queue
user_folder_settings
sync_clients
site_fields
folder_settings
site_field_values
licenses
sessions
synchronized_items
app_email_deleted
system_settings
index_table
app_email_accounts
app_email_details
app_email_addresses
main_dictionary
quick_sections
app_calendar_event_types
app_calendar_recurring_events
app_document_list
app_bb_message_details
app_bb_viewed
app_document_versions
keywords
app_contacts
app_image_details
language_keywords
user_access
group_access
syslog
app_calendar_events
groups
group_memberships
user_fields
user_field_values
app_links
user_app_settings
global_app_settings
app_email_filters
app_email_contacts
app_contact_fields
app_contact_field_values
app_contact_groups
app_contact_assignments
whatsnew_links
quick_links
app_headlines
app_mcal_calendars
spelling_dictionary
app_memo_broadcast_times
group_notifications
notification_messages
app_memo_recipients
app_memos
user_notifications
errorlog
app_fm_idcounters
app_fm_columns
app_fm_attributes
app_fm_reports
app_fm_forms
app_fm_field_values
app_fm_binary_field_values
template_user_details
app_fm_item_name_components
app_poll_options
app_polls
app_fm_form_elements
app_portlets
app_portlet_headline_details
app_portal_layouts
app_portlet_attributes
app_calendar_locations
app_cal_event_option_fields
app_poll_option_votes
app_document_view_components
app_cal_event_option_values
app_cal_location_assignments
app_blog
reminder_broadcast_times
user_expertise_types
user_groups
reminders
user_group_members
reminder_recipients
app_status
user_expertise
app_messages
app_wave_members
app_question_lists
app_questions
app_wave_topics
subfolders
app_task_lists
app_waves
app_tasks
app_tags
workflow
app_props
any_change_history
word_hits
workflow_steps
workflow_items
item_priority
tagged_items

The following information can be obtained with Wireshark;

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
 [truncated]Authorization: Negotiate YIG...NER
    GSS-API Generic Security Service Application Program Interface
        OID: 1.3.6.1.5.5.2 (SPNEGO - Simple Protected Negotiation)
        Simple Protected Negotiation
            negTokenInit
                mechTypes: 4 items
                    MechType: 1.2.840.48018.1.2.2 (MS KRB5 - Microsoft Kerberos 5)
                    MechType: 1.2.840.113554.1.2.2 (KRB5 - Kerberos 5)
                    MechType: 1.3.6.1.4.1.311.2.2.30 (NEGOEX - SPNEGO Extended Negotiation Security Mechanism)
                    MechType: 1.3.6.1.4.1.311.2.2.10 (NTLMSSP - Microsoft NTLM Security Support Provider)
                mechToken: 6092a864886...
                krb5_blob: 6092a864886...
                    KRB5 OID: 1.2.840.113554.1.2.2 (KRB5 - Kerberos 5)
                    krb5_tok_id: KRB5_AP_REQ (0x0001)
                    Kerberos
                        ap-req
                            pvno: 5
                            msg-type: krb-ap-req (14)
                            Padding: 0
                            ap-options: 20000000 (mutual-required)
                                0... .... = reserved: False
                                .0.. .... = use-session-key: False
                                ..1. .... = mutual-required: True
                            ticket
                                tkt-vno: 5
                                realm: INTRA.NET
                                sname
                                    name-type: kRB5-NT-SRV-INST (2)
                                    sname-string: 2 items
                                        SNameString: HTTP
                                        SNameString: intra.net
                                enc-part
                                    etype: eTYPE-ARCFOUR-HMAC-MD5 (23)
                                    kvno: 2
                                    cipher: 678ed5435c9ec4d6...
                            authenticator
                                etype: eTYPE-ARCFOUR-HMAC-MD5 (23)
                                cipher: 62a133014138848d900d436...

The following information can be obtained with Wireshark or with Noodle DEBUG;

1
https://intranet.onelogin.com/trust/saml2/http-post/sso/699546?SAMLRequest=fVLLbtsw...%2FkD&RelayState=https%3A%2F%2Fintra.net%2FSAML.po

Should be sent to the IdP which before it is deflated and base 64 encoded looks like

1
2
3
4
5
6
7
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="-5abe3a1a-1671d27aa18--8000" Version="2.0" IssueInstant="2018-11-16T15:33:17Z" ProviderName="Noodle" Destination="https://intranet.onelogin.com/trust/saml2/http-post/sso/699546" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" AssertionConsumerServiceURL="https://intra.net/SAML.po">
    <saml:Issuer>Noodle</saml:Issuer>
    <samlp:NameIDPolicy Format="urn:oasis:names:tc:SAML:2.0:nameid-format:encrypted" AllowCreate="true" />
    <samlp:RequestedAuthnContext Comparison="false">
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
    </samlp:RequestedAuthnContext>
</samlp:AuthnRequest>

The IdP should reply with "Content-Type: application/x-www-form-urlencoded" containing "SAMLResponse: PHN...fCg==" which when base 64 decoded looks like

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="R6229535893ec8f41746de8cd0bb42fe1008d88a7" Version="2.0" IssueInstant="2018-11-16T15:33:18Z" Destination="{recipient}" InResponseTo="-5abe3a1a-1671d27aa18--8000">
    <saml:Issuer>https://app.onelogin.com/saml/metadata/699546</saml:Issuer>
    <samlp:Status>
        <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
    </samlp:Status>
    <saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Version="2.0" ID="pfx95004805-783d-f0ee-f32d-17d50ca7ef90" IssueInstant="2018-11-16T15:33:18Z">
        <saml:Issuer>https://app.onelogin.com/saml/metadata/699546</saml:Issuer>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
                <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
                <ds:Reference URI="#pfx95004805-783d-f0ee-f32d-17d50ca7ef90">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
                    <ds:DigestValue>uCsDHp/wXNnMIz7nkq2D7OF81zY=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>QbDsbkTMULdxYmiV8lu64jUE4BNj7ETQvUhjlgHrbaUKMaUdnluJma8T9jh8WOUEQw+Of/MGP4hMJE18f2XOJJK3X3VQnlggE5z98xjHrP0SugRH+elgQpOVkB9ht685UXtzRF6SVAIwstOGphOgqgGRwrG9fPQpN6DAKr00IOc6ItM7cbhVnA+EA8iHP8WP0n+VZXkdub9Sb/tgVkimih3/7DZPIWi6FpmlsTN88mlxBXJKnslr1Iw0ZLqLjR5dJSFz7SHrkBijirFf/kOydoQeOQrRS+6XzOmXayWCP2hHWXVvr5Ye1GbDZyjKTxMpObc+Lv6nj7llC1Mal2M0cw==</ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>MIIEFzCCAv+gAwIBAgIUUVsi+5GzFHp5EeCzav01iiNyreEwDQYJKoZIhvcNAQEFBQAwWDELMAkGA1UEBhMCVVMxEDAOBgNVBAoMB1ZpYWxlY3QxFTATBgNVBAsMDE9uZUxvZ2luIElkUDEgMB4GA1UEAwwXT25lTG9naW4gQWNjb3VudCAxMDkzNzAwHhcNMTcwNjI1MTYzMjM5WhcNMjIwNjI2MTYzMjM5WjBYMQswCQYDVQQGEwJVUzEQMA4GA1UECgwHVmlhbGVjdDEVMBMGA1UECwwMT25lTG9naW4gSWRQMSAwHgYDVQQDDBdPbmVMb2dpbiBBY2NvdW50IDEwOTM3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMFTuHcxpp8/hhD8BepAo8EI9AT7dACYFfISZo9IEcBMI1af3p/mm+lV9Iz1ZvoFTddIxHQMVe686segtdkg+p/LA+bWETyRv59yDfH8B3avZkbZkXR7lYq+noMMpQwoA3JYDcJGp9Hoh7FHuhCEZZQCGMuUbGaHMTMaMipzPB7AI9Bg6nZpTmDRqzPEd6SzKJHs18W2dZxJA+lDfze2tfyBaAuC2VFqJ3R2NZhZtpUE7IqCG67zv3ItLNk0sDqPEU3/LSIGyT0+fYcVEraBpIMkLp4MQDcihyTWZSVfhdxaOr0Fn4fUV9aTS/a1a5gybK/zat0cs6pJDgBSfoh9xRUCAwEAAaOB2DCB1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQFLDFhCLxjqc6f+cwpm7YnNZH2PTCBlQYDVR0jBIGNMIGKgBQFLDFhCLxjqc6f+cwpm7YnNZH2PaFcpFowWDELMAkGA1UEBhMCVVMxEDAOBgNVBAoMB1ZpYWxlY3QxFTATBgNVBAsMDE9uZUxvZ2luIElkUDEgMB4GA1UEAwwXT25lTG9naW4gQWNjb3VudCAxMDkzNzCCFFFbIvuRsxR6eRHgs2r9NYojcq3hMA4GA1UdDwEB/wQEAwIHgDANBgkqhkiG9w0BAQUFAAOCAQEAG/YWVdBSvyUjpO8s97Z7KPo843putSf0jgiDHtD8FGddNmdRbAwPbzWBnFupZGyPPgogoEoTRqgRalPvV0xP4PmBMJuAYssI+vwqsj9cqr4pXzpqcsGzJct8SeWSvBqbzBbu+OMbSJ5hm3RvbzSjY6nNAHY7gMe0+7V5Cd+0vzGvmSeXFnKgW7HGlP/98gmDf7KpJYmQmFDITMFc0IS0BQb13SWd7FHVchIXukqqUFFpczWx2cwUmNq1TqcGZESA3XEGbtiJ0HoEmSIQA2RLGSgEPSUgMV+UM8MhYf/bQx6VAInizM/10IokZaAQn2fzz0m5uIbf2qSMXBBoYWWWng==</ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml:Subject>
            <saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">tim@intra.net</saml:NameID>
            <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml:SubjectConfirmationData NotOnOrAfter="2018-11-16T15:36:18Z" Recipient="{recipient}" InResponseTo="-5abe3a1a-1671d27aa18--8000" />
            </saml:SubjectConfirmation>
        </saml:Subject>
        <saml:Conditions NotBefore="2018-11-16T15:30:18Z" NotOnOrAfter="2018-11-16T15:36:18Z">
            <saml:AudienceRestriction>
                <saml:Audience>{audience}</saml:Audience>
            </saml:AudienceRestriction>
        </saml:Conditions>
        <saml:AuthnStatement AuthnInstant="2018-11-16T15:33:17Z" SessionNotOnOrAfter="2018-11-17T15:33:18Z" SessionIndex="_c9a77760-cbdb-0136-fc65-0233ce1b6e10">
            <saml:AuthnContext>
                <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
            </saml:AuthnContext>
        </saml:AuthnStatement>
    </saml:Assertion>
</samlp:Response>

 

 

  1. Create a drive key and secret
  2. Put them in "System Tools > Settings > General > Google Drive OAuth"
    1. Note that OAuth requires your Noodle server to be accessed via a public domain
  3. Enable in the "Administration > Properties" of the folder you want to connect.
  4. View the folder and follow the prompts.

Vialect Bug Bounty;

  1. Contact us and let us know you are interested
  2. We will send you an installer or an IP address
  3. Qualification
    • Confine aggressive/damaging testing to the installer/IP we provide
    • Keep your findings confidential until we fix the bug (same day we hope)
    • We pay whenever we make a change as a result of your bug report.
  4. Send us a report with enough information for us to reproduce the bug
  5. We will reward you (You will not be prosecuted)
    • Public credit and thanks
    • Payment (varies by severity of the bug up to $1,000 USD per bug)

We thank VioPoint and All Covered for Testing Noodle.

When something unexpected happens Noodle will ask you what you were doing and email a stack trace to Vialect. Bug reports may also be sent to techsupport@vialect.com. Please use saleshelp@vialect.com for any other inquiries.

Please provide the following to help us reproduce and correct issues faster:

  • Minimal steps to reproduce the issue from scratch. Possibly relevant details:
    • The URL
    • The version of Noodle
    • The version of Web Browser
    • The version of Operating System
    • A username and password
    • An ordered list of buttons/links clicked
    • Sample file/data
  • Expected behavior, possible details:
    • 720p mockup of desired appearance with min and max sample data.
  • Actual behavior, possible details:
    • A full resolution screen shot including address and scroll bars
    • Web Browser console output
    • The source of any warning pages (wrong format, missing parameter)
    • The source of any email
    • A zip of the Noodle/log folder
  • Observe email educate
    • A short descriptive email subject
    • Reply to the email thread only for the the same issue
    • Don't make new threads for the same issue.
    • Avoid requesting thread history review.
    • Do not place legal or print notes in signatures or otherwise bloat them.
    • Use test in favor of images
    • Use attachments not overlays/embeds of images or text
    • Be concise.

Leaving out information leads to Vialect spending less time creating solutions and more time attempting to reproduce issues and linking to this page.