How to use authid with rwservlet via WebLogic Thin Client
1. Using J2EE Thin Client for WebLogic (WL) to submit interactive requests for Oracle Reports (App Server 10g) running on another server without SSO.
2. After starting basic Infrastructure, we start rwserver in batch mode (no other mid-tier components are used).
3. It appears that the cgicmd.dat file in the Thin Client conf directory on the WL server controls the DB access with the key:connect string info it has.
4. We had been allowing the testers to come in via the web through a SunOne (iPlanet/Netscape) web server instance, which in turn connects to the WL server running the Thin Client instance.
5. We noticed that anyone could run rwservlet to view report status with the showjobs command via a URL through the same mechanism as point #4 above, and were concerned about security of the reports - "bad".
6. Then someone realized the showmap command could also be specified, and thus see the DB connect string (Id/pw/SID) - "worse".
I researched securing Reports, and read through the white paper, "Securing Oracle9i Reports", and although it discusses security without using SSO, all it says is "users accessing a secured instance of Oracle9iAS Reports Services will be challenged to identify themselves by the Reports Servlet, using its own authentication mechanism (as with Reports6i)", but I can find no explanation of how that works, nor how it would work with the WL Thin Client.
Questions:
1. How are the Id's/passwords set up under AS 10g "as with Reports6i" in this environment going through the WL Thin Client?
2. Is there anything else that needs to be done to secure the created reports, and the connect string info (i.e. using authid with rwservlet?showjob, and not allowing the rwservlet?showmap to be executed at all)?
TIA,
ROC
the JDBC Developer's Guide (11gR2)
gives an example in chapter 9 under "JDBC Thin Driver Support for Encryption and Integrity", sub- "Setting Encryption and Integrity Parameters in Java"
from Oracle SQL Devloper, without redirecting the client to use the OCI/thick driver, choose, new database connection, connection type Advanced. add the entry from the example noted above to the Custom JDBC URL form.
for example:
Properties prop = new Properties();
prop.setProperty(OracleConnection.CONNECTION_PROPERTY_THIN_NET_ENCRYPTION_LEVEL,"REQUIRED");
prop.setProperty(OracleConnection.CONNECTION_PROPERTY_THIN_NET_ENCRYPTION_TYPES,"(AES128)");
OracleDataSource ods = new OracleDataSource(); ods.setProperties(prop); ods.setURL(jdbc:oracle:thin:@(DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST=xxxx)(PORT=1521)))(CONNECT_DATA=(SERVICE_NAME=xxxx)(INSTANCE_NAME=xxxx))));
Connection conn = ods.getConnection();
strange side note!, we could not get this to encrypt unless the sqlnet.ora file included the SQLNET.ENCRYPTION_SERVER=required. if this was set to default(accepted), and even though the jdbc thin client properties set to required, the network traffic was still clear text.
good luck
Similar Messages
-
Using SBO with Wyse Winterm S30 Thin Clients
I have a customer who is using Microsoft Terminal Services via Wyse Winterm S30 Thin cllents to access SBO over a VPN. We are experiencing excessive rolling (redisplay) when screens are refreshed. The problem is compounded if a Marketing Document contains multiple Text lines. We have two terminal servers, each with about 12 thin clients connected.
I would appreciate feedback from anyone with experience of using thin clients, regardless of brand.Hi,
Thin clients normally have a low memory allocation on the video card (8mb to 16MB) so this can be a problem. Check to see if you can change this in the BIOS on the WYSE. If not connect at 256 Colours to reduce this. If you have pictures linked to products then their resolution will not be good but for SAP itself the difference is small. Also rename the SAPSS.AVI to .old if you have not already done so so that the splash screen does not come up when logging in.
In my multimedia testing on thin clients, unrelated to SBO, I found that both memory and processor power made a huge difference, which is contrary to thin client manufacturer claims. As an example I used a 200MHz/64MB TC for a flash application and sound was about 3 seconds behind the image and the image update would skip 3 to 5 frames when updating. Moving to a 800Mhz/128MB TC The frame refresh rate was almost perfect and the sound was only about 0.5 seconds behind. I would therefore test on a more powerful thin client to see if it improves performance.
The S30 is a 400MHz (rated @ 533 on performance by AMD). Try a 1GHz TC with the maximum Video memory you can find.
We are currently using VXL Itona 800Mhz/128MB and do not experience too much rolling but we are using 256 colours.
Hope this helps. -
How to use Terminal with KeySpan USB serial adaptor cable?
I own a KeySpan model USA-19HS to use with our MacBookPro when working on clients networking equipment that require serial communication. I have used ZTerm with excellent luck, but it costs, and is yet another application that I dont really want. I would like to know if any one out there has exacing instructions on how to use Terminal with this adaptor. If I could write a file that had, say, the couple most common settings (9600-8-n-1, 57600-8-n-1, et cetera) that I could simply click on, to open a new Terminal window with those settings, then simply close that, and open a new window (apple+n) in order to get back to a default settings terminal window. All feedback is most appreciated.
Thanks so much, Jason SjobeckHi, Jason. Welcome to the Discussions.
You wrote: "All feedback is most appreciated."OK.
1. Have you considered discussing this with Keyspan Support?
2. Have you read the section "OSX has Terminal.app - why do I need ZTerm?" on the ZTerm Home Page? That seems to explain why one needs an app like ZTerm.
3. A quick search of Keyspan's FAQ for your product and terminal doesn't yield much more than how to find the serial ports using Terminal.
Likewise, this Google search also yields little, and variants of that search of such weren't particularly help either.
It appears your inquiry seems to be a somewhat esoteric topic.
4. Apparently, ZTerm X is a bit long in the tooth and there's no Universal Binary for it. It sounds, however, like you've tried it running on your MBP under Rosetta, yes?
5. In researching alternatives to ZTerm for you, I note the followng:• The comment from "Reverb" on this page suggests C-Kermit or Kermit as a free alternative.
• This tip on Mac OS X Hints cites Minicom as another option.6. You may want to try your question on the Unix Discussion.
Good luck!
Dr. Smoke
Author: Troubleshooting Mac® OS X -
I need to get the number of lines in internal table, which would
be easy, using DESCRIBE TABLE itab LINES lines. But the problem
is, that I get the name of this internal table in the field of
another internal table, so I have to use the name of internal
table as variable, but I don't know how to use variables with
DESCRIBE TABLE (or if this is possible).Hi,
REPORT ZPRUEBA782 .
define two tables with diferent structures.
data: begin of table1 occurs 0,
registro type i,
end of table1.
data: begin of table2 occurs 0,
registro type i,
repid like sy-repid,
end of table2.
data: rows type i.
start-of-selection.
fill them with data
do 1000 times.
table1-registro = sy-tabix.
append table1.
enddo.
do 1757 times.
table2-registro = sy-tabix.
table2-repid = sy-repid.
append table2.
enddo.
call a form that receives as input the table and returns the number
of rows as output.
perform howmanyrows tables table2 changing rows.
break-point. "evaluate the number of rows
perform howmanyrows tables table1 changing rows.
break-point. "evaluate the number of rows
end-of-selection.
form howmanyrows tables itable changing rows.
rows = 0.
loop at itable.
add 1 to rows.
endloop.
endform.
You can try it if you don't find a better solution.
Cheers,
Chaitanya. -
How to Use Gmail With Apple's Mail?
Answer:
Now Itis not a Problem, Please go to this link and know how to solve this problem, Ihave configuir this in my mac pro. Have enjoy.
http://picturemuseum.blogspot.com/2011/08/how-to-use-gmail-with-apple-mail.html
http://mobilesuggestion.blogspot.com/2011/08/how-to-use-gmail-with-apples-mail.h tmlI notice that it's possible to have sticky posts in these forums. See
http://forum.java.sun.com/forum.jspa?forumID=534
the Concurrency forum for an example. Posting a link to the FAQ in a sticky post might reduce the number of FAQs asked here by maybe 1%? Or posts like this one might do well as a sticky? -
How to use Count with Date Parameters
Hello,
I am having issues using the Count() function in conjunction with date parameters.
This is a Siebel report and in my report I have 2 date parameters(From Date, To Date). In a nutshell I am basically trying to count Opportunities that has a start date within the given date period. However I don't see a reasonable way to put my date parameters within the Count() function. The reason being is that I need to have a huge chunk of code to convert the dates into a common format that can be compared, and it won't even fit within the code block in my rtf template. I am not even sure how to put multiple conditional statements inside a Count() function since all the examples I have seen are very simple.
Anyone have a suggestion on how to use Count() with date parameters?
Thanks.Any chance you can get the date formats in the correct format from siebel?
I don't know Siebel - so I can't help you with that. If you get the correct format it is just
<?count(row[(FromDate>=date) and (date<=ToDate))?>
Otherwise the approach would probably need to use string function to get year/monthd/day from the date
and store it into a varialbe and compare later the same way
<?variable@incontext:from; ....?>
<?variable@incontext:to; ...?>
<?count(row[($from>=date) and (date<=$to))?>
Potentially you can use the date functions such as xdofx:to_date to do the conversion
[http://download.oracle.com/docs/cd/E12844_01/doc/bip.1013/e12187/T421739T481158.htm]
But I am not sure if they are available in your siebel implementation.
Hope that helps -
How to use javap with jar files ?
how to use javap with jar files ?
thanksAs long as the jar is on the class path, your gold. So,
javap -classpath myjar.jar mypackage.MyClass
Chuck -
Help me!! How to use JavaScript with JSP ??
I am using JDeveloper and I created a screen in JSP which uses a bean for database connectivity and retriving info onto the page.
The page has a ListBox where list items are populated from the database.My requirement is
whenever the list is changed the page shuold be refreshed with the selected item info.
I tried to use 'JavaScript' for triggering the event with 'onChange' event of the ListBox.But the event is not getting invoked. I think JavaScript is not working with JSP.
Please help me with how to Use javaScript with JSP or any other alternative where I can meet my requirement.
I have one more question...I have gone through the JSP samples in OTN and I am trying do download the sample 'Travel servlet' which show list of countries...etc
I have also gone through the 'readme' but I don't know how to extract .jar file.
I would be great if you could help me in this.
Thanks!!
Geeta
nullWe have a similar need. We have used Cold Fusion to display data from Our Oracle Database. We have a simple SElect Box in HTML populated with the oracle data. When someone selects say the State of Pennsylvania. then we have an On change event that runs a Javascript to go get all the cities in Pennsylvania.
Proble we are having is that inorder for the Javascript to work , we currently have to send all the valid data.
Do you know of any way to dynamically query the the Oracle database in Javascript -
How to use log4net with C# clients
Hi,
Can anybody please give an example of how to use log4net with C# clients? Foe java clients you can use the
<logging-config>
<destination>log4j</destination>
How do we use it with C# clients? Any example will be appreciated.
Thanks.
-aliAli,
The following is an example on how to define a custom logger (including log4net) in tangosol-coherence-override.xml for coherence .NET client; you need Coherence .NET client 3.7.1 patch 1.
<coherence xmlns="http://schemas.tangosol.com/coherence">
<logging-config>
<destination>common-logger</destination>
<logger-name>log4net</logger-name>
<severity-level>9</severity-level>
<message-format>(thread={thread}): {text}</message-format>
<character-limit>8192</character-limit>
</logging-config>
</coherence>
You also need to configure log4net in app.config. Please see the following web page for more information:
http://netcommon.sourceforge.net/docs/2.0.0/reference/html/ch01.html
-Luk -
How to use assert with wireless toolkit?
Hi,
I am trying to find out how to use assert with wireless toolkit. I have found that I need to pass "-source 1.4" to the java compiler. But I can't find any documentation on how to do it.
I'm using J2ME Wireless Toolkit 2.2.
thanks
LuddeHere's a quote from an article on Java World at http://www.javaworld.com/javaworld/jw-11-2001/jw-1109-assert.html
"To support the new assertion facility in J2SE 1.4, the Java platform adds the keyword assert to the language, an AssertionError class, and a few additional methods to java.lang.ClassLoader."
So I really think it's part of 1.4. -
How to use setSoTimeOut() with socket ??
HI All!
I eagerly need to know how to use setSoTimeOut() with socket (on server side).
Actually the scenario is that My Server accepts connection and waits for connected client to send data to it. I WANT TO KEEP, IF CLIENT DOENS'T SENDS ANY DATA TO SERVER WITHIN 5 min. THEN SERVER MUST CLOSE THE CONNECTION, BUT IF SERVER RECEIVES STILL A BYTE FROM THE CLIENT WITHIN 5 mins., THE SERVER MUST RESET CHECKING TIME OUT FOR NEXT 5 MINUTES.
How can i do that??
Any help with example will be appreciated!!
Thanx in advanceyou'd have to do something like this:
(this is all assuming you want to read Strings from the socket. setSoTimeout works for any read() call to the InputStream associated with the Socket)
ServerSocket ss = new ServerSocket(myPort);
Socket s = ss.accept();
s.setSoTimeout(5*60*1000); // 5 mins * 60 secs * 1000ms
BufferedReader in = new BufferedReader(new InputStreamReader(s.getInputStream()));
boolean running = true;
while(running)
try
String readIn = in.readLine();
// do whatever you want with the data read
catch(SocketTimeoutException)
running = false;
Now. That's what I think needs to be done. I don't have Java on the machine I'm currently on, so I can't test/verify it, but it goes something like that.
Good luck,
Radish21 -
How to use I18N with a custom validator?
This is my custom validator:
public void validate(FacesContext context, UIComponent component, Object value) throws ValidatorException
Pattern pat=Pattern.compile(".+@.+\\.[a-z]+");
Matcher m= pat.matcher(value.toString());
if(!m.find())
FacesMessage message = new FacesMessage("Not a valid e-mail address");
throw new ValidatorException(message);
}Instead of providing the text "Not a valid e-mai address", I'd like to get the text out of my ApplicationResources property file.
How can I do this?
I know how to use it with the provided validators, but not with own custom ones
Please help me out, thanksI found a solution for this problem, I don't know it's best practice but here it is :
public void validate(FacesContext context, UIComponent component, Object value) throws ValidatorException
String errortext;
Pattern pat=Pattern.compile(".+@.+\\.[a-z]+");
Matcher m= pat.matcher(value.toString());
if(!m.find())
ResourceBundle bundle =
ResourceBundle.getBundle("be.vdab.resources.ApplicationResources", context.getViewRoot().getLocale());
errortext = bundle.getString("erroremail");
FacesMessage message = new FacesMessage(errortext);
throw new ValidatorException(message);
} -
I used the automatic installer for x264.
There were no instructions on how to use it with FCPX or compressor.
Can someone offer a tip?
Thanks
10.6.8
iMac 2009,1Youn can't use it in FCP, only with Compressor. In Compressor make a new QuickTime preset or duplicate an Apple preset and change the codec to x264.
-
Just bought a stylus for taking notes but do not know how to use it with the ipad2? Some special apps required?
Thanks!Take a look at Memo, Penultimate, and Draw Pad to name a few. Several in the app store.But you do need an app that will accept input using a stylus or your finger rather than the keyboard. Several art/drawing programs are available as well.
-
How to use Skype with FaceTime with iMac,iPad & iPhone?
How to use Skype with FaceTime with iMac,iPad & iPhone?
Skype does not interface with FaceTime. You cannot use one to contact a person who is using the other.
Maybe you are looking for
-
Yes Im a lot of a novice so be patient with me lol I am trying to put a 2006 Edition of a weight programme on my laptop, but when I down load it it just comes up in weird script and says cannot operate in Dos mode can anyone help. Thanks
-
ITunes 10.7 - The menus have disappeard and search text is invisible
After I downloaded iTunes 10.7 the menues have disappeared, they are invisible (file, settings etc.), and the text I write in the search box is invisible. Any clues? B
-
Help! My laptop appears to be dead. When I turn it on the lights for hard drive and cd drive blink in unison and cd drive sounds(grinds) during blink. Most importantly the screen remains black and the power button does not turn it off.
-
How to install printer over wireless
We have a Brother printer at work which is connected to the network. It is not possible for me to physically connect to the printer via Ethernet cable, only via wireless. Brother insists that the only way to install/configure the printer drivers is t
-
What is adobe doing about its world wide Reader xi failure?
I have tried every solution offered on this forum to get adobe reader to open and read pdf's again. Funny - but i started having problems shortly after i recieved an email on dec 6 from adobe about the october hacking incident - in that email they sa