I'm implementing Braintree drop-in UI in a Lightning Community. For this purpose I embedded the drop-in UI in a VF page and added that to lightning component inside an iframe. Communication done using the method described here https://developer.salesforce.com/blogs/developer-relations/2017/01/lightning-visualforce-communication.html

When the payment details are submitted I call the component controller method which sends a message to VF page requesting a verified payment method. On success, VF page sends back a message with the generated 'NONCE' key. And I handle this message in lightning component using controller method;
 

requestPaymentMethod : function(component, event, helper) {
        
        var message = 'requestPaymentMethod';
        var vfOrigin = component.get("v.baseUrl");
        var vfWindow = component.find("braintreeFrame").getElement().contentWindow;
        var action = component.get("c.submitPaymentDetails");
        vfWindow.postMessage(message, vfOrigin);
        if(!window.isListenerSet) {
            window.addEventListener("message", $A.getCallback(function(event) {
                if(!vfOrigin) vfOrigin = component.get("v.baseUrl");
                if (event.origin !== vfOrigin) {
                    // Not the expected origin: Reject the message!
                    return;
                }
                var msg = event.data;
                if(msg.type==='verifiedPaymentMethod') {
                    const nonce = msg.id;
                    if(nonce) {
                        helper.submitPayment(component, nonce, action);
                    }
                }
            }), false);
            window.isListenerSet = true;
        }
    }

The helper method calls the apex controller method to charge the verified payment method

submitPayment: function(component, nonce, action){
        console.log('nonce='+nonce);
        console.log(JSON.stringify(this));
        action.setParams({ "paymentMethodId": nonce } );
        action.setCallback(this, function(response){
            var state = response.getState();
            console.log(JSON.stringify(state));
            if (state === 'SUCCESS'){
                var retVal = response.getReturnValue();
                if(retVal==='SETTLING') {
                    var message = 'clearPaymentMethods';
                    var vfOrigin = component.get("v.baseUrl");
                    var vfWindow = component.find("braintreeFrame").getElement().contentWindow;
                    vfWindow.postMessage(message, vfOrigin);
                    this.showPaymentSuccess();
                    this.navigateTo(component);
                    // $A.get('e.force:refreshView').fire();
                }
            } else if (state === 'ERROR' || state === 'INCOMPLETE'){
                let errors = response.getError();
                console.log(JSON.stringify(errors));
                // this.navigateTo(component, errors);
            }
        });
        $A.enqueueAction(action);
    }

This works fine in the first cycle. But if process a second and subsequent transactions without refreshing the browser, calling of the submitPaymentDetails action doesn't return neither a success nor an error. But I can debug that the server method has actually been executed and transaction created.

Any idea why it is behaving this particular way?

P.S. - i'm not a gun JS developer so, I might have made some obvious mistake when connecting callbacks
 

Hello Folks,

Does any of you know whether there is an equivalent implementation of Nimbus JOSE+JWT in Apex? 

What I'm trying to do is port some Java code written using Nimbus JOSE+JWT to generate five part encoded and encrypted JWT to Apex. I think the platform support available JWS, JWT and Crypto classes is limited to achieve this. 

Your input is highly appreciated.

Thanks in advance!
 

Hello Folks,

Does any of you know whether there is an equivalent implementation of Nimbus JOSE+JWT in Apex? 

What I'm trying to do is port some Java code written using Nimbus JOSE+JWT to generate five part encoded and encrypted JWT to Apex. I think the platform support available JWS, JWT and Crypto classes is limited to achieve this. 

Your input is highly appreciated.

Thanks in advance!
 

Hi all,

we are trying to use AngularJS as a community site.
Problem is that the first page is accessible as a guest user.
All remote action calls are public.
At a certain point, the calls must be made protected (via profile and apex class security)

Here we want to use some sort of login via remote actions using Site.Login
But helas, this is not working.
Session id's returned are still for guest users (but login was successful, can be seen in the login history)
Only way to let this work is use the standard login page that somehow sets session id's via cookies?
no idea how to mimic this ??

andries