B2B login from External Site

Similar Messages

• Passing values to APEX items from external site

  All,
  Is it possible to pass values to APEX page items from an external web site?
  For example, I have an external web site where users type in a username and password into fields. When they click the 'log-in' button in the external site, I would like to have those values passed to the APEX log-in page. If possible, I would like to have the APEX log-in occur 'invisibly' and the user taken directly to the home page of the app. If that's not possible, it would be nice to simply have the 'user name' and 'password' fields filled in on the APEX side.
  I'm using APEX 3.0.
  Thanks in advance for any help!
  Alex

  Hello Alex,
  >> Is it possible to pass values to APEX page items from an external web site?
  The general answer is yes. You can use the f?p syntax to set the value of any APEX item - http://download-uk.oracle.com/docs/cd/B32472_01/doc/appdev.300/b32471/concept.htm#sthref185 .
  In your specific example, the main question should be is it wise? The mere fact that you are using a login process suggests you have something to protect in your application. The f?p syntax uses a plain text for the items’ value, which means that the user name and password will be completely exposed.
  Regards,
  Arie.

• JAAS requiring re-authentication when returning from external site.

  Our Struts web application uses another application for some of its functionality. When the authenticated user clicks on the link, a cookie is set with some user info and the user is redirected to the external site. The user interacts with the external site and then the site redirects the user back to our site (to a previously unvisited, secure action). Unfortunately, the user is being prompted to authenticate again, even though they have already done so. The strange part is that this behaviour only exists the first time a new browser is opened (both IE and Mozilla). Subsequent visits to the site (after properly logging out, and logging back in) do not cause this problem. The other strange part is that when the user returns to the site and is prompted to authenticate, the login module that we are using logs a message that it is checking the user info against the allowed roles, and the user does, in fact, already exist.

  Nevermind. This was a stupid mistake on my part. I was accessing the site from localhost but the external site was returning to the actual URL. My bad.

• Security with HTML from External Site

  I am building an application that pulls HTML content from an external site (RSS feed) and placing that content into my Flex application.  The content of this HTML is controlled by another developer at another company.
  After pulling back the HTML I am setting it as the htmlText attribute for an <mx:Text> box.
  Is this safe?  Since I don't control the source HTML content I'm concerned about the content having cross-site scripting attacks in it.  Links or things that execute arbitrary javascript onclick.  Is there any way to ensure that the HTML coming back can't be used to execute any JavaScript or ActionScript?
  Thanks,
  ..Jordan
  Jordan | Yodlee Product Management
  Launch your Flex-based financial app in the Yodlee FinApp Store - http://www.finappstore.com

  I have come up with a two-part solution which I think solves my problem.
  1) Flex automatically removed all intrinsic elements from the HTML:
      <mx:String id="inputString">
           <![CDATA[
           <a href="#" onclick="alert('hi');">Onclick alert</a><br/>
           <script>alert("Your text in the alert function.");</script>
           ]]>
       </mx:String>
       <mx:Text id="inputText" height="100%" width="100%" htmlText="{inputString}">
  The value of inputText.htmlText is the following (notice there is on “onclick” event as Flex automatically cleans out intrinsic events:
  <TEXTFORMAT LEADING="2"><P ALIGN="LEFT"><FONT FACE="Verdana" SIZE="10" COLOR="#0B333C" LETTERSPACING="0" KERNING="0"></FONT></P></TEXTFORMAT><TEXTFORMAT LEADING="2"><P ALIGN="LEFT"><FONT FACE="Verdana" SIZE="10" COLOR="#0B333C" LETTERSPACING="0" KERNING="0">        <A HREF="#" TARGET="">Onclick alert</A></FONT></P></TEXTFORMAT><TEXTFORMAT LEADING="2"><P ALIGN="LEFT"><FONT FACE="Verdana" SIZE="10" COLOR="#0B333C" LETTERSPACING="0" KERNING="0"></FONT></P></TEXTFORMAT><TEXTFORMAT LEADING="2"><P ALIGN="LEFT"><FONT FACE="Verdana" SIZE="10" COLOR="#0B333C" LETTERSPACING="0" KERNING="0">        alert(&quot;Your text in the alert function.&quot;);</FONT></P></TEXTFORMAT><TEXTFORMAT LEADING="2"><P ALIGN="LEFT"><FONT FACE="Verdana" SIZE="10" COLOR="#0B333C" LETTERSPACING="0" KERNING="0">        </FONT></P></TEXTFORMAT>
  2) So all I need to do is remove the "bad" links which is done like so:
  public function makeSafeContent(content:String):String {
  var safeContentStr:String = content;
  var myPattern:RegExp = /javascript/gi;
  safeContentStr = safeContentStr.replace(myPattern,"<span>javascript</span>");
  myPattern = /asfunction/gi;
  safeContentStr = safeContentStr.replace(myPattern,"<span>asfunction</span>");
  myPattern = /event/gi;
  safeContentStr = safeContentStr.replace(myPattern,"<span>event</span>");
  myPattern = /vbscript/gi;
  safeContentStr = safeContentStr.replace(myPattern,"<span>vbscript</span>");
  return(safeContentStr);
  Jordan | Yodlee Product Management
  Launch your Flex-based financial app in the Yodlee FinApp Store - http://www.finappstore.com

• Ringtones from external sites to itunes?   I did it a year ago, but can't anymore!!!  HELP!!!

  About a year ago I got my iphone, and I had some free ringtones downloaded on my PC.   I did some research, and was able to get those ringtones on my phone.   I had recenlty downloaded some new ringtones from the same external site, and when I went to try and  put them in my itunes I couldn't figure out how and have not been able to find anything to help me.    Can anyone assist?

  Connect & select iPhone in iTunes Sudebar (iTunes > View > Show Sidebar), in Music tap (right pane top), select Sync Music and the music you want on iPhone then click Apply button (bottom right).
  http://support.apple.com/kb/VI72

• User is not able to Login from external supplier, using the WSS (ICH)

  Hi Gurus,
  The user is not able to login to the server externally from url.
  dev_icm is giving below warnings:
  [Thr 11052] IcmWatchDogThread: watchdog started
  [Thr 11309] ** WARNING => HttpPlugInInit: Parameter icm/HTTPS/trust_client_with_issuer or icm/HTTPS/trust_client_with_subject not set  => do
  not trust any intermediary*
  X.509 cert data will be removed from header [http_plg_mt. 720]
  [Thr 11309] =================================================
  [Thr 11309] = SSL Initialization  on  IBM RS/6000 with AIX
  [Thr 11309] =   (700_REL,May  3 2008,mt,ascii-uc,SAP_UC/size_t/void* = 16/64/64)
  [Thr 11309]   profile param "ssl/ssl_lib" = "/usr/sap/SCA/SYS/exe/run/libsapcrypto.o"
             resulting Filename = "/usr/sap/SCA/SYS/exe/run/libsapcrypto.o"
  [Thr 11309] =   found SAPCRYPTOLIB  5.5.5C pl16  (Jun 10 2004) MT-safe
  [Thr 11309] =   current UserID: "scaadm",  env-var USER="scaadm"
  [Thr 11309] =   using SECUDIR=/usr/sap/SCA/DVEBMGS41/sec
  [Thr 11309] =  secudessl_Create_SSL_CTX():  PSE "/usr/sap/SCA/DVEBMGS41/sec/SAPSSLA.pse" not found,
  [Thr 11309] =      using PSE "/usr/sap/SCA/DVEBMGS41/sec/SAPSSLC.pse" as fallback
  [Thr 11309] = Success -- SapCryptoLib SSL ready!
  [Thr 11309] =================================================
  HTTPS (SSL) settings are as below, i think which means that no ssl certifiacts are required.
  icm/HTTPS/verify_client        = 0
  Kindly help urgently.
  regards,
  MJ

  this is SCM system.
  SSL CA's are set.
  what should be value of the parameters?
  icm/HTTPS/trust_ client_with_ issuer or
  icm/HTTPS/trust_ client_with_ subject
  http and https ssl conections are correctly set.
  I think the SAPSSLA. pse" not found, is not the problem as the parameter icm/HTTPS/verify_ client = 0 is set, it means that no ssl certifiacts are required.
  problem is coming when the system is being accessed from externally using other secure domain name.
  the system is being accessed ok from web urs which is internal, but not external.
  for example in strust tcode  the domain name is *abc.com, which is running fine when accessing the system internally.
  but when the user is accessing this sytem from other secure login from *xyz.com, which is also the same companys domain, then the user not able to login, its showing errir.

• Proxy login from externally authenticated user

  Hi Experts,
  I created an externally authenticated user in database. And can login without password with below syntax.
  SQL> connect / @TESTDB
  Connected.
  SQL> show user;
  USER is "SCOTT"
  This scott user has a proxy permission to another DBuser PROXY_USER.
  I got the syntax but that works only from Database OS.
  sqlplus [proxy_user]/
  SQL*Plus: Release 11.1.0.6.0 Production on Mon Nov 15 16:28:47 2010
  Copyright (c) 1982, 2010, Oracle. All rights reserved.
  Connected to:
  Oracle Database 11g Release 11.1.0.6.0 - 64bit Production
  I can connect as externally authenticated user from windows CLIENT running on Release 10.2.0.1.0
  SQL> connect / @TESTDB
  Connected.
  But the above mentioned Proxy connectivity syntax fails with below from CLIENT
  SQL> connect [proxy_user]/ @TESTDB
  SP2-0306: Invalid option.
  Usage: CONN[ECT] [logon] [AS {SYSDBA|SYSOPER}]
  where <logon> ::= <username>[<password>][@<connect_identifier>] | /
  But the same syntax works from Database OS!
  I can login from TOAD but can't login from SQLDEVELOPER or SQLPLUS
  My sqldeveloper version is:
  Version 2.1.1.64
  Build MAIN-64.45
  and sqlplus is:
  SQL*Plus: Release 10.2.0.1.0
  Any idea?
  Thanks.
  Edited by: Nadvi on Nov 18, 2010 3:09 PM

  Hi Nadvi
  If you get SQLPLUS working SQLDeveloper (thick jdbc/oci/instant client) is certainly worth trying.
  I am not sure what is the issue with your setup the proxy usecases I am familiar with are:
  Through the SQLDeveloper ui
  There are two ways of doing proxy logins:
  where p1 is proxy user and c1 is proxy client:
  1/single session method (if no 2nd password or distinguished name required)
  on main connection popup
  user: p1[c1]
  password: p1
  2/Two session method
  Main Connection popup
  user: p1
  password p1
  popup connection authentication
  proxy client: c1
  none or password or distinguished name
  -Turloch
  SQLDeveloper Team

• Failed Logins from external addresses

  Hi,I recently started a trial GFI/MaxFocus RMM software. It high-lighted a couple of servers getting numerous failed logins. One of these, a 2008 R2 64 bit server, is getting between 4 and 5,000 failed logins daily. The login attempts originate from IP addresses in numerous European countries and the US, and on varying ports.The server sits behind a SonicWall TZ 205. It would be useless to block IP addresses as the login attempts are from constantly changing sources. There is a branch office that makes terminal connections to this server, and the GFI software is using some port or ports for its service. The server gets Windows updates periodically. Those are the only services I am aware that require communication of this server with the outside world.I can specifically allow ports required by these services with the outside at the...
  This topic first appeared in the Spiceworks Community

  You should adapt the menu.lst of the backed up OS like this:
  # (0) Arch Linux
  title Arch Linux
  root (hd1,0)
  kernel /boot/vmlinuz-linux root=/dev/sdb1 ro
  initrd /boot/initramfs-linux.img
  explanation:
  - Your root should be (hd1,0) because the external disc is the second hard disc (assuming root=/dev/sdb1 is correct).
  - The kernel and initrd line should have /boot, because you don't have a seperate boot partition.
  Also, you didn't adapt your fstab of the backed up hard disk. In particular, you have to remove the entries for /boot, /home and swap. The entry of root file system is also wrong, because you still have the old UUID in it:
  # /etc/fstab: static file system information
  # <file system> <dir> <type> <options> <dump> <pass>
  tmpfs /tmp tmpfs nodev,nosuid 0 0
  /dev/sdb1 / ext4 defaults 0 1
  Finally, I think not following the excludes in the wiki will also cause problems.

• Auto login from other site

  Hi there,
  There are 2 websites with different database connections and login settings,
  which uses both the same database.
  One website is used (among other) to administer the other website, for
  example adding documents etc.
  The login on website2 is on the index.php page, from where the user is send
  to index2.php on a succesfull login.
  Since both sites use the same database, the userdata of website2 can be
  retrevieved as a recordset on a page in website1.
  Is it possible to autologin on website2 through a form in website1, and if
  yes, how can this be done with ADDT?
  Regards,
  Henk

  yes if u have have one user table or two tables which are 100% duplicate copy of each other at any time...
  then u can simply add restrict access server behaviors to all ur pages..
  when a user visits such a restricted page he is greeted with a login screen if heis not already logged in..
  after login he is thrown back to the source page..
  everything should happen transparently without any effort from ur side..
  u need to set up
  user access to web application use the user registration wizard..
  there are help/ tutorials floating around for the same.
  Hope this helps
  mohnkhan
  http://www.mohitech.com

• Display RSS feed from external site on my page

  HI,
  I need to know if it is possible with CFMX7 to grab rss feeds
  from a remote location and just display it on my site?
  How to?

  well, cf8 has a new <cffeed> tag... and though i have
  not ever needed to
  use it (i prefer to create my feeds manually), it is
  *supposed to* make
  creating and consuming (readin) rss and atom feeds a
  breeze... but
  judging by many a blog posts, it is not without bugs...
  google <cffeed>, and check out ray camden's blog at
  coldfusionjedi.com
  for many posts on this tag
  but there is really nothing stopping you from using
  <cfhttp> + <cfxml>
  tags in cf7 to achieve what you want...
  as for porting cf7 apps to cf8 - it is usually painless, but
  depending
  on the complexity of your server/hardware configuration, it
  may require
  close attention to minute details
  just to check if you code runs fine in cf8, there is a code
  analyser
  available in cf admin.
  hth
  Azadi Saryev
  Sabai-dee.com
  http://www.sabai-dee.com/

• Get elements from external sites with rest

  Hello!!!
  I have a site collection in SPO2013 and i would like to read texts from a Drupal site and show it in my SP site. Is possible to do that with REST? if so, how? Is there some tutorial?
  Thanks!!!

  Hello,
  Yes you can create list items inside your SharePoint site using rest api. here is the simple function for your understating,
  // Adding a list item with the metadata provided
  function addListItem(url, listname, metadata, success, failure) {
  // Prepping our update
  var item = $.extend({
  "__metadata": { "type": getListItemType(listname)}
  }, metadata);
  // Executing our add
  $.ajax({
  url: url + "/_api/web/lists/getbytitle('" + listname + "')/items",
  type: "POST",
  contentType: "application/json;odata=verbose",
  data: JSON.stringify(item),
  headers: {
  "Accept": "application/json;odata=verbose",
  "X-RequestDigest": $("#__REQUESTDIGEST").val()
  success: function (data) {
  success(data); // Returns the newly created list item information
  error: function (data) {
  failure(data);
  you can refer to the article below which explains basic CRUD operations using REST api  with simple code  examples:
  http://www.plusconsulting.com/blog/2013/05/crud-on-list-items-using-rest-services-jquery/
  Regards,
  Subhash Reddy.
  subhash reddy

• RSS from external sites

  Is is possible to achieve this... I want to be able to have a page in my iWeb site that will pull RSS feeds from other webpages over the net?
  i.e. My News page
  RSS Apple Hot News
  RSS Engadet
  RSS CNN.com
  and so forth... I'm sure this is a something that would have to be done with outside of iWeb but just looking for a bit more directions with this.
  Thanks to all

  Alfeo,
  Upon visiting your site it has been noticed you do not have the RSS link available in the address bar of your browser.
  Add this tag between the <HEAD> <HEAD/> section of your HTML file to have the RSS subscribe button appear in the address bar of supported browsers.
  <link rel="alternate" type="application/rss+xml" title="RSS" href="http://iWebFAQ.com/rss.xml" />
  Where http://iWebFAQ.com/rss.xml is the URL for your rss file.
  You can have different RSS links in the address bar for different pages. Just repeat the process for your individual html files of your pages and insert the desired RSS feed URL into the code as necessary.

• Populating webi reports with images downloaded live from external sites

  I'm writing applications to create different visualizations of my data, and would like the resulting images to show up in webi reports. Specifically, the application that draws the visualization will be deployed to the same java application server as webi. Users will open a normal webi report which will contain something like an HTML <img href="#myhref" /> tag, where #myhref will be a link to a page in my web application that draws a visualization.; Is such a thing possible, and if so, how? Many thanks, in advance.

  Nevermind... I think I got it. I created a SQL query that would return the URL I wanted (something like SELECT 'http://server/context?param1=' || field1 || '&param2=' || field2 FROM table", and then modified the resulting cell to be read as an Image URL.

• Problems embedding Flash slideshow from external site

  I currently have a photography website with SmugMug where I host most pictures that I want to share online; they have an option that lets you create a Slideshow and allows you to copy the HTML embed code.  So I stuck that into the page HTML, but every time I try previewing it on the web, nothing shows up.  When I use the Validate function, it says the tag "embed" is not used in HTML 4.0, but I don't know if that's the problem or not.  Here's the code provided:
  Any clues as to why it won't work?

  Why can't I get my code to show up?  I'm using the "Insert Raw HTML" icon and get the box, into which I paste it.  Guess I need to look up that FAQ.
  Here it is just plain:
  <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="400" height="400" id="ssidx">
  <param name="movie" value="http://www.cdpayetphotography.com/ria/ShizamSlides-2009073001.swf?AlbumID=9536524&AlbumKey =DLfKT&transparent=true&bgColor=&borderThickness=&borderColor=&useInside=&endPoint=&mainHo st=www.cdpayetphotography.com&VersionNos=2009073001&showLogo=false&width=400&height=400&cl ickToImage=true&captions=true&showThumbs=true&autoStart=true&showSpeed=true&pageStyle=whit e&showButtons=false&randomStart=false&randomize=false&splash=&splashDelay=1000&crossFadeSp eed=350">
  <param name="wmode" value="transparent">
  <param name="allowNetworking" value="all">
  <param name="allowScriptAccess" value="always">
  <embed src="http://www.cdpayetphotography.com/ria/ShizamSlides-2009073001.swf?AlbumID=9536524&AlbumKey =DLfKT&transparent=true&bgColor=&borderThickness=&borderColor=&useInside=&endPoint=&mainHo st=www.cdpayetphotography.com&VersionNos=2009073001&showLogo=false&width=400&height=400&cl ickToImage=true&captions=true&showThumbs=true&autoStart=true&showSpeed=true&pageStyle=whit e&showButtons=false&randomStart=false&randomize=false&splash=&splashDelay=1000&crossFadeSp eed=350" width="400" height="400" wmode="transparent" type="application/x-shockwave-flash" allowScriptAccess="always" allowNetworking="all"  >
  </embed>
  </object>
  Like I mentioned in the first post, Dreamweaver's validation tool said that the "embed" tag is not valid in HTML 4.0.  The page is written in DTD HTML 4.01 Transitional.

• Blank page when trying to go to login from alliance-leicester site

  blank page when trying to login from alliance&leicester site
  == URL of affected sites ==
  http://alliance-leicester.co.uk

  Do you have any addons that may disable scripts?
  Try [[Safe Mode]]