10g: Bug with XML\Jazn Security
For days I've been trying to get my migrated apps (from 9.0.3.1) to run with the internal JDev OC4J using JAZN security. I've been able to deploy to the packaged OC4J just fine, yet whenever I run it internally, it's never accepted my username and password.
I just now found that JDev added a...
<jazn provider="XML" location="[AppName]-jazn-data.xml" default-realm="jazn.com"/>
to my App-oc4j-app.xml. I'm guessing this is for the Current Workspace settings, which is fine... however, for the Global settings, JDev never looks into system9.0.5.0.0.1375 \ oc4j-config for the global jazn-data.xml file when you run your app. (It will obfuscate passwords and everything, just won't look up your credentials)
To fix the problem, I ended up copying my global jazn-data.xml file to my app's main directory (where App-oc4j-app.xml exists) from the system directory, then changing the location of the jazn provider in the App-oc4j-app.xml file to jazn-data.xml. (I suppose I could have just changed the location to point to the System directory as well).
Anyways, figured this might help someone.
I have the same problem. My app works fine with Stand alone OC4J. I tried to migrate my app into 10g Env.
But I had the problem the JAZN Authentication. I tried all solutions, it still failed. I decided to create
very simple EJB project to test Embedded OC4J debugging.
I create a simple Test Workspace and testEJB project.
I followed the steps to create a simple TestSesssionEJB with one method: insert.
I right clicked on the TestSesssionEJB to generate New Sample EJB Client, named TestSessionEJBClient.
1) To start the debug EJB, I right cliked the TestSesssionEJB and selected Degug TestSesssionEJB.
2) Embedded OC4J Server started fine.
3) I ran TestSessionEJBClient I got javax.naming.AuthenticationException
javax.naming.NamingException: Lookup error: javax.naming.AuthenticationException: Invalid username/password for current-workspace-app (admin); nested exception is:
javax.naming.AuthenticationException: Invalid username/password for current-workspace-app (admin). Root exception is javax.naming.AuthenticationException: Invalid username/password for current-workspace-app (admin)
at com.evermind.server.rmi.RMIConnection.connect(RMIConnection.java:2298)
at com.evermind.server.rmi.RMIConnection.connect(RMIConnection.java:2129)
at com.evermind.server.rmi.RMIConnection.lookup(RMIConnection.java:1665)
at com.evermind.server.rmi.RMIServer.lookup(RMIServer.java:680)
at com.evermind.server.rmi.RMIContext.lookup(RMIContext.java:134)
at javax.naming.InitialContext.lookup(InitialContext.java:347)
at test.TestSessionEJBClient.main(TestSessionEJBClient.java:17)
Here is TestSessionEJBClient generated by JDeveloper
package test;
import javax.naming.Context;
import javax.naming.InitialContext;
import javax.rmi.PortableRemoteObject;
import test.TestSessionEJB;
import test.TestSessionEJBHome;
import javax.naming.NamingException;
public class TestSessionEJBClient
public static void main(String [] args)
TestSessionEJBClient testSessionEJBClient = new TestSessionEJBClient();
try
Context context = getInitialContext();
TestSessionEJBHome testSessionEJBHome = (TestSessionEJBHome)PortableRemoteObject.narrow(context.lookup("TestSessionEJB"), TestSessionEJBHome.class);
TestSessionEJB testSessionEJB;
// Use one of the create() methods below to create a new instance
testSessionEJB = testSessionEJBHome.create();
// Call any of the Remote methods below to access the EJB
// testSessionEJB.insertClob( );
catch(Throwable ex)
ex.printStackTrace();
private static Context getInitialContext() throws NamingException
// Get InitialContext for Embedded OC4J.
// The embedded server must be running for lookups to succeed.
return new InitialContext();
Test-oc4j-app.xml content
<?xml version = '1.0' encoding = 'windows-1252'?>
<!DOCTYPE orion-application PUBLIC "-//Evermind//DTD J2EE Application runtime 1.2//EN" "http://xmlns.oracle.com/ias/dtds/orion-application.dtd">
<orion-application>
<ejb-module path="file:/C:/jdev905WorkSpaces/testEJB/classes/"/>
<library path="C:\jdev905WorkSpaces\testEJB\classes">jdev-generated</library>
<library path="C:\Tools\oracle\jdev905\jdev\system9.0.5.0.1349\oc4j-config\.client">jdev-generated</library>
<library path="C:\Tools\oracle\jdev905\lib\xmlparserv2.jar">jdev-generated</library>
<library path="C:\Tools\oracle\jdev905\lib\xmlcomp.jar">jdev-generated</library>
<log>
<file path="Test-oc4j-app.log"/>
</log>
<jazn provider="XML" location="Test-jazn-data.xml" default-realm="jazn.com"/>
<data-sources path="Test-data-sources.xml"/>
</orion-application>
Test-jazn-data.xml content
<jazn-data>
<jazn-realm>
<realm>
<name>jazn.com</name>
<users>
<user>
<name>jdevuser</name>
<credentials>!jdevuser</credentials>
</user>
</users>
<roles>
<role>
<name>jdevrole</name>
</role>
</roles>
</realm>
</jazn-realm>
</jazn-data>
.../system9.0.5.0.1349\oc4j-config/server.xml
<application-server application-directory="applications" deployment-directory="application-deployments" connector-directory="connectors" transaction-log="log/transaction.state" recovery-procedure="ignore" taskmanager-granularity="5000" taskmanager-interval="5000" auto-unpack-applications="true">
<rmi-config path="./rmi.xml"/>
<sep-config path="./internal-settings.xml"/>
<!-- JMS-server config link, uncomment to activate the JMS service -->
<jms-config path="./jms.xml"/>
<log>
<file path="log/server.log"/>
</log>
<java-compiler name="ojc" in-process="false" bindir="C:\Tools\oracle\jdev905\jdev\bin\"/>
<global-application name="default" path="application.xml"/>
<application name="bc4j" path="C:\Tools\oracle\jdev905\jdev\system9.0.5.0.1349\oc4j-config\applications\bc4j.ear"/>
<application name="larcis" path="C:\larcis3\jdev905\larcis3-oc4j-app.xml"/>
<application name="current-workspace-app" path="C:\jdev905WorkSpaces\Test-oc4j-app.xml"/>
<global-web-app-config path="global-web-application.xml"/>
<!-- <web-site path="./secure-web-site.xml" /> -->
<web-site default="true" path="./default-web-site.xml"/>
<!-- Compiler, activate this to specify an alternative compiler such
as jikes for EJB/JSP compiling. -->
<!-- <compiler executable="jikes" classpath="/myjdkdir/jre/lib/rt.jar" /> -->
</application-server>
I think this is a bug in XML/JAZN that Tim mentioned in the first post.
I also tried the solution suggested by Tim. But it still did not work.
Any one have another suggestion?
Similar Messages
-
Interconnect 10g problem with XML which has mixed contents
I'm having problem to receive a XML message which contains PCDATA and other child element Mixed. Here is the sample DTD. I'm able to create the CV and AV by importing this DTD. But at runtime, if the inbound XML contains PCDATA and other element mixed, it throws error. Any help/ workaround will be appreciated.
<!ELEMENT VIEW_TRAN_M3 (#PCDATA | PERSON_ID | MP_CODE | STARTDATE | ENDDATE)* >
<!ELEMENT PERSON_ID ( #PCDATA ) >
<!ELEMENT MP_CODE ( #PCDATA ) >
<!ELEMENT STARTDATE ( #PCDATA ) >
<!ELEMENT ENDDATE ( #PCDATA ) >
Sample XML:
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE MEALPLAN>
<VIEW_TRAN_M3>
ABC123
<PERSON_ID>12345</PERSON_ID>
<MP_CODE>1</MP_CODE>
</VIEW_TRAN_M3>
Thx
SaumitraPatch Number: 4901802 will fix this problem. Please look at SR Number 4960460.992 for more details.
-
JAAS/JAZN: LDAPLoginModule doesn't work with servlet RunAs() security mode
Just thought I'd post this here too, in case any developers actually read this list or in case someone else has run into a similar issue or has any ideas...
I'm having a problem where whenever I use Oracle 10gAS's LDAPLoginModule at the same time as RunAs() mode OC4J crashes.
Application is UIX/Struts for the view layer and ADF BC for the model layer. It is being developed in JDeveloper 10g (10.1.2.0.0) and deployed on 10gAS (10.1.2.0.0)
I am using JAAS (JAZN) for authentication. I am using a custom JAAS LoginModule for the app: "oracle.security.jazn.login.module.LDAPLoginModule". Instructions for using the module are documented in the OC4J Security Guide, Chapter 9 "Configuring External LDAP
Providers":
http://download-east.oracle.com/docs/cd/B14099_07/web.1012/b14013/ldap3rdparty.h
tm#sthref500
This is working fine - I can successfully authenticate against my LDAP server.
In order to retrieve security credentials (i.e. the Subject) while in the Model later, I am running the servlet in doAs() mode, also known as "runas-mode". This is documented in Chapter 4:
http://download-east.oracle.com/docs/cd/B14099_07/web.1012/b14013/genconfig.htm#
sthref322
This works great - when I authenticate against the local XML file I can successfully run the application and retrieve the Subject and Principals.
The problem is that whenever I try to use both of these at the same time the application will not run. I have attached a trace with JAAS/JAZN debug messages enabled.
It appears to be failing in the process of creating the BC Application Module. Apparently when it creates a new thread to monitor the application module pool, in the process of establishing JAAS permissions for the new thread it attempts to retrieve the REALM from the oracle.security.jazn.realm.LDAPPrincipal object -- which is an unsupported function when the Principal was generated by an LDAPLoginModule. For some reason this error crashes the entire process.
You can see a trace of my program here:
http://www.asugroup.com/jazn-errorlog.txt
This should be simple to reproduce by simply creating an ADF BC application, modifying orion-web.xml so that the servlet is in runas-mode, and modifying $ORACLE_HOME/j2ee/home/config/jazn-data.xml to use the LDAPLoginModule.
All I can figure is that it must be a "bug" (or unsupported functionality) in 10gAS. WHY in the world is 10g failing on the getRealm() function of a Principal that it setup itself? Any suggestions or help would be appreciated. The only solution I can think of at this point is to throw Oracle's LoginModule implementation right out the window and write my own... although I don't even know if that will work yet.
Jeremyok, so i know that this isn't metalink... but i'm pretty sure this is either a "bug" or "unsupported feature" -- although now that i've looked a bit deeper i'm guessing it has something to do with the "role.mapping.dynamic" flag too. (Haven't tested it yet but I think it might work fine if I put the roles in the local XML file.)
Anyway, if anyone's interested, here's detailed steps so you - YES YOU! - can reproduce the problem yourself if the desire grips you. :)
I put this together for the TAR but figured there's some useful information in here (e.g. the debugging stuff) so it might be helpful for someone in the future to post it here too.
1. Open or create any ADF BC project in JDeveloper. It can be ANY project as long as it uses ADF BC for the MODEL layer.
2. Add orion-web.xml to the VIEW project if it's not already there.
2a) Right click on orion-web.xml and select Properties
2b) In the "JAZN" section, select the checkbox "Run as Mode"
3. Edit web.xml to require authorization to run the app.
3a) Right click on web.xml and select Properties
3b) Under the "security roles" section add the name of an group you're a member of on the LDAP server. Only include the relative name of the group - not the full LDAP distinguished name. Also, convert the name to lowercase.
3c) Under "security constraints" add a new constraint.
3d) In the constraint, make a new resource collection called "everything" and add the URL pattern "/".
3e) In the constraint, go to the authorization tab and select your LDAP group name.
3f) Go to the "Login Configuration" section of web.xml and choose HTTP Basic Authentication. Leave the realm blank.
4. Add orion-application.xml to the project if it's not already there. Configure the "JAZN" tag as follows:
<jazn provider="XML">
<property name="role.mapping.dynamic" value="true" />
</jazn>
3. Deploy the application to Oracle 10g Application Server.
4. On the application server, edit the file $ORACLE_HOME/j2ee/home/config/jazn-data.xml
4a) In the section jazn-data/jazn-loginconfig add a new "application" section for your application. See below for example.
4b) Make sure the "name" of your application matches the deployment name in your EAR file for the project you deployed.
5. I recommend enabling JAZN debugging. See below for instructions on that.
6. Restart OC4J if you already haven't - to make sure it rereads the config, then try to run your application.
SAMPLE JAZN-DATA.XML (CUSTOMIZE FOR YOUR LDAP SERVER)
<jazn-data>
<jazn-loginconfig>
<application>
<name>your_j2ee_deployed_application_name</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.LDAPLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>oracle.security.jaas.ldap.provider.url</name>
<value>ldap://10.1.1.7:389</value>
</option>
<option>
<name>oracle.security.jaas.ldap.provider.user</name>
<value>cn=stoneware,ou=stoneware,ou=okemos,ou=mi,ou=et,o=ou1</value>
</option>
<option>
<name>oracle.security.jaas.ldap.provider.credential</name>
<value>!yourpassword</value>
</option>
<option>
<name>oracle.security.jaas.ldap.provider.type</name>
<value>other</value>
</option>
<option>
<name>oracle.security.jaas.ldap.user.searchbase</name>
<value>o=ou1</value>
</option>
<option>
<name>oracle.security.jaas.ldap.user.searchscope</name>
<value>subtree</value>
</option>
<option>
<name>oracle.security.jaas.ldap.user.name.attribute</name>
<value>cn</value>
</option>
<option>
<name>oracle.security.jaas.ldap.user.object.class</name>
<value>inetOrgPerson</value>
</option>
<option>
<name>oracle.security.jaas.ldap.role.searchbase</name>
<value>o=ou1</value>
</option>
<option>
<name>oracle.security.jaas.ldap.role.searchscope</name>
<value>subtree</value>
</option>
<option>
<name>oracle.security.jaas.ldap.role.name.attribute</name>
<value>cn</value>
</option>
<option>
<name>oracle.security.jaas.ldap.role.object.class</name>
<value>groupOfNames</value>
</option>
<option>
<name>oracle.security.jaas.ldap.membership.searchscope</name>
<value>direct</value>
</option>
<option>
<name>oracle.security.jaas.ldap.member.attribute</name>
<value>member</value>
</option>
</options>
</login-module>
</login-modules>
</application>
</jazn-loginconfig>
</jazn-data>
for Sun Java System Application Server and Microsoft Active Directory examples see:
http://download-east.oracle.com/docs/cd/B14099_07/web.1012/b14013/ldap3rdparty.htm#sthref500
ENABLING JAZN DEBUGGING MESSAGES ON ORACLE 10G APPLICATION SERVER
1. Login to Enterprise Manager 10g Application Server Control
2. If you are part of a farm you will get a list of instances. Select the instance your app is deployed on.
3. In the "System Components" section of the home page, click on your OC4J instance (default name is "home").
4. In the OC4J home, click on the "Administration" tab.
5. Select "Server Properties" from the Instance Properties section.
6. In the Command Line Options section, there is an option called "Java Options".
7. At the end of the "Java Options", append the text "-Djazn.debug.log.enable=true"
8. When prompted, restart the OC4J instance.
Debug information is captured by OPMN and stored in a log file. The log file can be found in the directory $ORACLE_HOME/opmn/logs
The default name (if your instance name is "home") is "OC4J~home~default_island~1" -
JAAS, jazn.xml, & oracle.security.jazn.config
I have a swing application using LDAP to authenticate users that will typically be launched via Java Web Start, thus the application is deploy using a jar file.
I can run this application from JDev or from the command-line when the jazn.xml file is located in the root (start-in) directory.
Unfortunately, when the jazn.xml file is only in the jar file (as it would be when launched via JWS) the application cannot find it and throws an exception:
oracle.security.jazn.JAZNInitException: d:\path\.\jazn-data.xml (The system cannot find the file specified).
I found some documentation that indicates that I can specify the path to the jazn.xml file with
System.setProperty("oracle.security.jazn.config", "path/to/jazn/xml/file");
If I set it to a relative path without the filename on the end (ex. "./my/path" or "my/path") I get the above exception.
If I set it to a relative path with the filename (ex. "./my/path/jazn.xml" or "my/path/jazn.xml") it works.
What I can't figure out is how to tell it that it is in a jar file that is in my classpath. It doesn't find it from the path examples above. I've tried things like "client.jar/jazn.xml", "d:/my/path/client.jar/jazn.xml", and a host of other things with the jazn.xml filename on the end.
Oddly enough, when I set it to "d:/my/path/client.jar" I get a different exception:
Caused by: oracle.security.jazn.JAZNInitException: no protocol: "ldap://hostname.com:389">
at oracle.security.jazn.spi.xml.FSXMLStore.<init>(FSXMLStore.java:128)
... 59 more
Caused by: java.net.MalformedURLException: no protocol: "ldap://hostname.com:389">
at java.net.URL.<init>(URL.java:537)
at java.net.URL.<init>(URL.java:434)
at java.net.URL.<init>(URL.java:383)
So it seems like it read the file but parsed it incorrectly. Any ideas?Thanks for the reply Yvonne. Sorry I haven't updated this after my testing. I think you're close to correct.
I did some more testing and figured out that any time the protocol is included in a path (protocol://d:/my/path/client.jar) that jazn does not understand. When the referenced file (jazn.xml) is in a jar file, it includes the protocol in the path. For example the path to the jazn.xml file (the value that the java.security.auth.policy property needs to be set to) would be jar:file://my/path/client.jar!/my/path/jazn.xml
I think the oracle.security.jazn.spi.PolicyProvider (the value of the java.security.auth.policy.provider property) causes the jazn.xml file to be read. That class is, I think, what fails to find that file because it doesn't understand when the protocol (jar:file:) is included in the path to the file. That's my guess anyway.
I did figure out a work around and it goes like this:
1. create a new jazn.xml file
File tmp = new File ("jazn.xml");
2. and set it to be deleted on exit
tmp.deleteOnExit();
3. get a ByteArrayInputStream for the jazn.xml file and read it out of the jar file.
4. then write the stream to the tmp file
5. then set the system property
System.setProperty("java.security.auth.policy", tmp.toURL().getPath());
It is kind of a pain since I have to check to see if the property I'm setting is "jazn.xml", but it seems to work.
I think the oracle.security.jazn.spi.PolicyProvider problem is a defect, which I'll report on meta-link.
tcoker -
JDev EA1 Error with JAZN/Security Roles/Authentication
I have a current JSF application created under JDev 10.1.3 Preview which runs fine, but under JDev EA1 it crashes.
The application has a JAZN definition with a realm and user defined. The user is also tied to a security role.
In the web.xml I have a security role defined and security constraints. I also have the security-role-mappings in the orion-application.xml for deployment which uses OID to authenticate.
This all works fine in JDev 10.1.3 preview.
When I run the application in JDev EA1, the login dialog does not appear and the application crashes because it can't authenticate who is using the application. I have deleted and recreated the Jazn user and security roles under EA1.
I have noticed that JDev is now reporting the "<security-constraint>" tag in web.xml is an error now.
Any ideas on what's wrong?
ThanksWe're using SSO, so we haven't written our own login handler. The orion-application.xml has the "<jazn-web-app auth-method="SSO"/>" tag in it. We let SSO handle the login. You can write your own login handler if you wanted to. I think there's several threads about doing it. We wanted to try and use SSO and not have to write the piece to do the login.
orion-application.xml:
<jazn provider="LDAP"
location="ldap://my.company.com:<port number>"
default-realm="my_realm_here">
<jazn-web-app auth-method="SSO"/>
</jazn>
The way we approached it, we have a User and Visit object. The User object just holds some data:
public class User implements Serializable
private String userid;
private String name;
private String email;
private Date loginTime;
The faces-config.xml is like this:
<!--========User Bean=========-->
<managed-bean>
<managed-bean-name>user</managed-bean-name>
<managed-bean-class>com.mycompany.User</managed-bean-class>
<managed-bean-scope>session</managed-bean-scope>
<managed-property>
<property-name>queryService</property-name>
<value>#{queryservicebean}</value>
</managed-property>
</managed-bean>
We're using Spring to inject the "queryservicebean". You may not need this section. We're having to grab data from a database table. So you can probably skip that "<managed-property>" section.
The section I think you are really asking about is the ViewHandler. You probably need to look at extending the ViewHandler to populate your user object.
public class AuthenticatingViewHandler extends ViewHandler{...}
You will probably need to look at adding code in the createView and restoreView methods.
Something like:
public class AuthenticatingViewHandler extends ViewHandler
private final ViewHandler _base;
public AuthenticatingAurepViewHandler(ViewHandler base)
_base = base;
public UIViewRoot createView(FacesContext facesContext, String viewId)
viewId = loadUser(facesContext,viewId);
return _base.createView(facesContext, viewId);
} //END createView(FacesContext facesContext, String viewId)
public UIViewRoot restoreView(FacesContext facesContext, String viewId)
viewId = loadUser(facesContext,viewId);
return _base.restoreView(facesContext,viewId);
} //END restoreView(FacesContext facesContext, String viewId)
--Then "loadUser" would populate your User object:
public String loadUser(FacesContext facesContext, String viewId)
String userId = facesContext.getExternalContext().getRemoteUser();
User user = (User) JSFUtils.getManagedBean(ViewConstants.USER);
-- Set the userid from OID in your User object
user.setUserid(userId);
-- Note: You may need to do some parsing on your user id string from OID.
-- Do more stuff here, may switch to a differnt viewId if needed, like an error page.
return viewId;
} // END loadUser(FacesContext facesContext, String viewId)
} //END AuthenticatingViewHandler
The "JSFUtils.getManagedBean" uses the valuebinding to get the User bean from the FacesContext. We also carry a boolean isUserLoaded in the User object so we're not executing the loadUser code each time a view is rendered. The Visit object just has a navigation trace and other things of interest to us, so you may not care about it.
A lot of this is from Adam Wiener's post on Sun's JSF forum. I think there's a couple of ways to approach this, with our requirements this works out better. If anybody else has any suggestions, it would be great to hear about them.
As always, hope it helps out with what you are doing and thanks for the chocolate. -
Compliance of Oracle 10g R2 with Windows XP SP2
Hello everybody
I am representing my company for making a decision of deploying appropriate versions for Oracle and Windows.
The vendor suggested Oracle 9 on Windows Server 2003, whereas we opted for deploying Oracle 10g R2 with Windows XP SP2.
According to the vendor
XP is not a true 'server' product and therefore does not provide many server functions and may have restrictions on numbers of users that can connect.
If the vendor's notion is correct, would anyone explain the limitations/restrictions of our solution.One of the first problems that you will encounter, inbound connections limit in Windows XP:
http://support.microsoft.com/kb/314882
Memory allocations are handled differently between Windows 2003 and XP (paged pool, non-paged pool, file system caching, etc.):
http://msdn2.microsoft.com/en-us/library/aa366778.aspx
In some cases the memory allocation differences can cause XP to display errors indicating "unable to allocate memory from the paged pool" or the non-paged pool, when Windows 2003 would otherwise continue functioning without problem. Windows 2003 offers a registry change to work around this problem:
http://support.microsoft.com/kb/312362
Microsoft will stop making Windows XP available for resale in June 2008, except on extremely light-weight computers, and update support will end before update support ends for Windows 2003.
There are typically differences in the hardware that ships with a computer loaded with Windows XP and one that ships with Windows 2003. You will have a hard time finding a computer with Windows XP that ships with redundant power supplies, dual backplanes, SCSI RAID 10 support, dual network interfaces, built-in system/diagnostics, etc.
While Windows 2003 is the server equivalent of Windows XP, there are many features in Windows 2003 that are not available in Windows XP. XP is designed to be rebooted frequently (shut down every night, or reboot once a week or once a month) and is geared toward foreground application performance. Windows Server 2003 is designed to be rebooted infrequently (apply security updates, recover from rare system fatal bugs) and is geared toward providing good background application performance (the Oracle database instance would be a background application).
If you are unfamilar with Windows Server 2003, take a look at the books "Microsoft Windows Server 2003 Administrator's Companion" by Microsoft Press and "Mastering Windows Server 2003" by Sybex. Compare what you find in those books with what you might find in Microsoft's Windows XP Resource Kit book.
Charles Hooper
IT Manager/Oracle DBA
K&M Machine-Fabricating, Inc. -
Jdev 10g: missing TemplateApplication.xml
Hi,
Just tried jdev 10g - when starting up have two messages:
1) Missing application.xml template file <jdev_home>\mywork\config\TemplateApplication.xml
2)Missing LRAD MMD folder <jdev_home>\mywork\config\jrad
What is it - a welcome type message or something I should take care about?
Thanks everybody.
AnatoliyHi,
dialogs are not opened by a GET request, which is what container managed authorization looks at. It basically bypasses this kind of security, which means that developers should check manually on teh command component that launches teh dialog if the authenticated user is allowed to do this. Also note that the default JSfnavigation is by postback which means you have to set all navigation to use the redirect flag to make it work with container managed security
Frank -
BPEL invocation securely from client using JAZN security not working.
HI,
We are trying to invoke the BPEL process securely from the client application using JAZN security settings, this is not working, with any credentilas or with out providing the security credentilas BPEL invocation is happening. Need the solution for this security credentials while invoking the BPEL process.
Please provide the update at the earliest. Thanks in advance. Your quick update is greatly appreciated.Hi James,
Thanks for the update.
Please find the attached docs.
Bpel.xml:
<?xml version = '1.0' encoding = 'UTF-8'?>
<BPELSuitcase>
<BPELProcess id="HelloWorld" src="HelloWorld.bpel">
<partnerLinkBindings>
<partnerLinkBinding name="client">
<property name="wsdlLocation">HelloWorld.wsdl</property>
</partnerLinkBinding>
</partnerLinkBindings>
<configurations>
<property name="role">oc4j-administrators</property>
</configurations>
</BPELProcess>
</BPELSuitcase>
orion-application.xml: folder location: C:\product1\10.1.3.1\OracleAS_1\j2ee\home\applications\orabpel\META-INF\orion-application.xml
<?xml version="1.0"?>
<orion-application xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/orion-application-10_0.xsd"
schema-major-version="10"
schema-minor-version="0" component-classification="internal-BPEL">
<connectors path="./oc4j-connectors.xml"/>
<ejb-module remote="false" path="ejb_ob_engine.jar" />
<ejb-module remote="false" path="ejb_services.jar" />
<web-module id="httpbinding" path="httpbinding.war" />
<web-module id="admin_war" path="admin_war" />
<web-module id="startup_war" path="startup_war" />
<web-module id="console_war" path="console_war" />
<persistence path="persistence" />
<principals path="principals.xml" />
<jazn provider="XML" location="../../config/system-jazn-data.xml" jaas-mode="doAsPrivileged">
<!-- <jazn-web-app auth-method="CUSTOM_AUTH"/> -->
</jazn>
<imported-shared-libraries>
<inherited-shared-libraries/>
<import-shared-library name="oracle.bpel.common" parent="api" />
<import-shared-library name="oracle.ws.client" parent="oracle.ws.jaxrpc" version="10.1.3" />
<import-shared-library name="oracle.ws.jaxrpc" />
<import-shared-library name="oracle.toplink" />
<import-shared-library name="oracle.ws.testpage" />
</imported-shared-libraries>
<log>
<file path="application.log" />
</log>
<namespace-access>
<read-access>
<namespace-resource root="">
<security-role-mapping name="oc4j-administrators">
<group name="oc4j-administrators" />
</security-role-mapping>
</namespace-resource>
</read-access>
<write-access>
<namespace-resource root="">
<security-role-mapping name="oc4j-administrators">
<group name="oc4j-administrators" />
</security-role-mapping>
</namespace-resource>
</write-access>
</namespace-access>
<security-role-mapping name="PUBLIC">
<group name="{{PUBLIC}}" />
</security-role-mapping>
</orion-application>
web.xml file: C:\product1\10.1.3.1\OracleAS_1\j2ee\home\applications\orabpel\startup\WEB-INF\web.xml
<?xml version="1.0" ?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app id="StartupWebApp_Id">
<!--servlet id="BPEL_Axis_Servlet_Id">
<servlet-name>BPEL_Axis_Servlet</servlet-name>
<display-name>BPEL Axis Servlet</display-name>
<servlet-class>com.collaxa.cube.ws.soap.axis.BPELAxisServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet-->
<servlet id="BPEL_OC4J_Servlet_Id">
<servlet-name>BPEL_OC4J_Servlet</servlet-name>
<display-name>BPEL OC4J JAX/RPC Servlet</display-name>
<description>BPEL endpoint Provider Port via oc4j jax/rpc</description>
<servlet-class>com.collaxa.cube.ws.soap.oc4j.BPELOC4JServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet id="LoaderServlet_Id">
<servlet-name>cxloader</servlet-name>
<servlet-class>com.collaxa.cube.admin.CXLoaderServlet</servlet-class>
<load-on-startup>3</load-on-startup>
</servlet>
<!--servlet-mapping id="BPEL_Axis_Servlet_Mapping_id">
<servlet-name>BPEL_Axis_Servlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping-->
<servlet-mapping id="BPEL_OC4J_Servlet_Mapping_Id">
<servlet-name>BPEL_OC4J_Servlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>Default Domain Pages</web-resource-name>
<description>These pages are only accessible by authenticated users.</description>
<url-pattern>*orabpel/default/HelloWorld/v2010_05_02__62961</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>oc4j-administrators</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>jazn.com</realm-name>
</login-config>
<security-role>
<description>BPEL Admins</description>
<role-name>oc4j-administrators</role-name>
</security-role>
<distributable/>
<resource-ref id="ResRef_BPELContainerDataSource_Id">
<res-ref-name>jdbc/BPELServerDataSource</res-ref-name>
<res-type>javax.sql.DataSource</res-type>
<res-auth>Container</res-auth>
</resource-ref>
<!--ejb-local-ref id="EjbRef_AdaptorManager_Id">
<ejb-ref-name>ejb/local/AdaptorManagerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IAdaptorManagerLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IAdaptorManagerLocalBean</local>
<ejb-link>AdaptorManagerBean</ejb-link>
</ejb-local-ref>
-->
<ejb-ref id="EjbRef_CubeFinder_Id">
<ejb-ref-name>ejb/collaxa/system/CubeFinderBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<home>com.collaxa.cube.engine.ejb.interfaces.ICubeFinderBeanHome</home>
<remote>com.collaxa.cube.engine.ejb.interfaces.ICubeFinderBean</remote>
</ejb-ref>
<ejb-ref id="EjbRef_Dispatcher_Id">
<ejb-ref-name>ejb/collaxa/system/DispatcherBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<home>com.collaxa.cube.engine.ejb.interfaces.IDispatcherBeanHome</home>
<remote>com.collaxa.cube.engine.ejb.interfaces.IDispatcherBean</remote>
</ejb-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/CubeEngineLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.ICubeEngineLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.ICubeEngineLocalBean</local>
<ejb-link>CubeEngineBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/ProcessManagerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.oracle.bpel.client.ejb.interfaces.IBPELProcessManagerLocalBeanHome</local-home>
<local>com.oracle.bpel.client.ejb.interfaces.IBPELProcessManagerLocalBean</local>
<ejb-link>ProcessManagerBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/CubeDeliveryLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.ICubeDeliveryLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.ICubeDeliveryLocalBean</local>
<ejb-link>CubeDeliveryBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/KeyGeneratorLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IKeyGeneratorLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IKeyGeneratorLocalBean</local>
<ejb-link>KeyGeneratorBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/MessageLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IMessageLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IMessageLocalBean</local>
<ejb-link>MessageBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/ServerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.oracle.bpel.client.ejb.interfaces.IServerLocalBeanHome</local-home>
<local>com.oracle.bpel.client.ejb.interfaces.IServerLocalBean</local>
<ejb-link>ServerBean</ejb-link>
</ejb-local-ref>
</web-app>
jazn.xml : C:\product1\10.1.3.1\OracleAS_1\j2ee\home\config
<?xml version = '1.0' encoding = 'UTF-8' standalone = 'yes'?>
<jazn xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-10_0.xsd" schema-major-version="10" schema-minor-version="0" provider="XML" location="./system-jazn-data.xml" default-realm="jazn.com" persistence="ALL">
<property name="custom.sso.url.login" value="/jsso/SSOLogin"/>
<property name="custom.sso.key.alias" value="{AES-128}dpvTz49oIQWnM1gZfdpZ1w=="/>
<property name="idm.token.asserter.class" value="oracle.security.jazn.sso.SSOCookieTokenAsserter"/>
<property name="idm.token.collector.class" value="oracle.security.jazn.sso.SSOCookieTokenCollector"/>
<property name="idm.token.type" value="HTTP_COOKIE"/>
<property name="idm.token.collector.cookie.1" value="ORA_OC4J_SSO"/>
<property name="custom.sso.url.logout" value="/jsso/SSOLogout"/>
<property name="idm.authentication.name" value="JavaSSO"/>
</jazn>
system-jazn-data.xml
<?xml version="1.0" encoding="UTF-8" standalone='yes'?>
<jazn-data
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-data-10_0.xsd"
schema-major-version="10"
schema-minor-version="0"
>
<!-- JAZN Realm Data -->
<jazn-realm>
<realm>
<name>jazn.com</name>
<users>
<user>
<name>Bharani</name>
<guid>99116C7155E211DFBFB59D7811B59628</guid>
<credentials>{903}26NFSvxAeBAo3nBkbvJ/e2BCD+actZzi</credentials>
</user>
</users>
<role>
<name>oc4j-administrators</name>
<display-name>OC4J Admin Role</display-name>
<description>Administrative role for OC4J</description>
<guid>8A00C8701A0511DFBF99734349FF0592</guid>
<members>
<member>
<type>user</type>
<name>oc4jadmin</name>
</member>
</members>
</role>
</roles>
</realm>
</jazn-realm>
<!-- JACC Repository Data -->
<jacc-repository>
</jacc-repository>
<jazn-policy>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/oc4j-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$modifyrealmmetadata</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.policy.RoleAdminPermission$jazn.com/*$</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.RoleAdminPermission</class>
<name>jazn.com/*</name>
</permission>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>modifyrealmmetadata</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>createrealm</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>dropuser</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>droprealm</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>subject.propagation</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/ascontrol_admin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$modifyrealmmetadata</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.policy.RoleAdminPermission$jazn.com/*$</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.RoleAdminPermission</class>
<name>jazn.com/*</name>
</permission>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>modifyrealmmetadata</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>createrealm</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>dropuser</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>droprealm</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>subject.propagation</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/oc4j-app-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/users</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>user</type>
<class>oracle.security.jazn.spi.xml.XMLRealmUser</class>
<name>jazn.com/anonymous</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/BPMSystemAdmin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.collaxa.security.ServerPermission</class>
<name>server</name>
<actions>all</actions>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/BPMDefaultDomainAdmin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.collaxa.security.DomainPermission</class>
<name>default</name>
<actions>all</actions>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>bpel_users</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<class>sun.security.acl.PrincipalImpl</class>
<name>oc4j-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>java.lang.RuntimePermission</class>
<name>setContextClassLoader</name>
</permission>
</permissions>
</grant>
</jazn-policy>
<!-- Login Module Data -->
<jazn-loginconfig>
<application>
<name>oracle.security.jazn.oc4j.CertificateAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.X509LoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.tools.Admintool</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.RealmLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.WebCoreIDSSOAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.coreid.CoreIDLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>coreid.name.attribute</name>
<value>your credential mapping variable name</value>
</option>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
<option>
<name>coreid.resource.operation</name>
<value>your oreid resource operation</value>
</option>
<option>
<name>coreid.resource.type</name>
<value>your coreid resource type</value>
</option>
<option>
<name>coreid.name.header</name>
<value>your http header name variable</value>
</option>
<option>
<name>coreid.resource.name</name>
<value>your coreid resource name</value>
</option>
<option>
<name>coreid.password.attribute</name>
<value>your password authentication variable</value>
</option>
<option>
<name>coreid.password.header</name>
<value>your http header password variable</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.wss.jaas.SAMLAuthManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.saml.SAMLLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>issuer.name.1</name>
<value>www.oracle.com</value>
</option>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.DigestAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.digest.DigestLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.JAZNUserManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.RealmLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.wss.jaas.JAASAuthManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.WSSLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
</jazn-loginconfig>
<jazn-permission-classes>
</jazn-permission-classes>
</jazn-data>
It is huge to check all these files, but for reference providing all the files for checking the security details.
Thanks for your help... -
I have a MacBook Pro 5,4 running OSX 10.6.8 and Safari 5.1.10. A website i like has a known bug with 5.1.10 and recommends I install a newer version of Safari or use Firefox or Chrome. Just looking for advice on the best approach. Thanks!
Unfortunately, Safari cannot be updated past 5.1.10 on a Mac running v10.6.8.
So, the options are to upgrade to a newer OS X or use Firefox or Chrome.
Be aware, Apple no longer support Snow Leopard v10.6 > www.ibtimes.com/apple-kills-snow-leopard-os-x-106-no-longer-receives-security-u pdates-1558393
See if your Mac can run v10.9 Mavericks > OS X Mavericks: System Requirements
If so, you can download and install Mavericks for free from the App Store.
Read prior to upgrading > Upgrading to 10.7 and above, don't forget Rosetta! | Apple Support Communities -
Invoke a business service base in a WSDL with customer WS-Security Policy
Customer write a Web service (Refer to the attachment file “HTTPS_PartyServicePortType.WSDL”)which declare a WS-Security Policy and apply this it to WS binding ,How can I generate a business service base in this WSDL and invoke it successfully?
When create a business service in OSB, we get a error with below messages
[[OSB Kernel:398133]The service is based on WSDL with Web Services Security Policies that are not natively supported by Oracle Service Bus. Please select OWSM Policies - From OWSM Policy Store option and attach equivalent OWSM security policy. For the Business Service, either you can add the necessary client policies manually by clicking Add button or you can let Oracle Service Bus automatically pick and add compatible client policies by clicking Add Compatible button.
After enhanced the OSB domain with OWSM extension, we found the OOTB OWSM defined cannot support the HttpsToken and OSB cannot support below WS-Policy defined in OWSM, refer to http://docs.oracle.com/cd/E21764_01/doc.1111/e15866/owsm.htm#OSBDV1681
51.2.8.1 Unsupported Assertion
• binding-permission-authorization
• http-security
• OptimizedMimeSerialization (MTOM)
• RMAssertion (Reliable Messaging)
• sca-component-authorization
• sca-component-permission-authorization
• UsingAddressing
• wss-saml-token-bearer-over-ssl (Authentication)
it means that we cannot generate a web service with customer WS-security Policy
The WS-Security Policy is shown as below:
<wsp:Policy wsu:Id="WSHttpBinding_IPartyServicePortType_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:TransportToken>
<wsp:Policy>
<sp:HttpsToken RequireClientCertificate="false"/>
</wsp:Policy>
</sp:TransportToken>
<sp:AlgorithmSuite>
<wsp:Policy><sp:Basic256/></wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout>
</wsp:Policy>
</sp:TransportBinding>
<wsaw:UsingAddressing/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
BestRegards!
SimonHi
According to
http://e-docs.bea.com/wls/docs90/webserv/annotations.html#1050414
If you are going to publish the policy file in the Web Service archive, the policy XML file must be located in either the META-INF/policies or WEB-INF/policies directory of the EJB JAR file (for EJB implemented Web Services) or WAR file (for Java class implemented Web Services), respectively.
Can you make sure the policy file is in there?
Also there is a sample from the developer at http://dev2dev.bea.com/blog/jlee/archive/2005/09/how_to_use_anno.html
Vimala- -
Creating AIR/Web Apps. with XML & E4X using AS3
Needing tips using AS3 with XML/E4X to make my project work over the server:
1) Here I'm having trouble trying to create a component with a 'GOOGLE MAP' with the user being able to input their location for directions with once submitting the get directions button that it generates the directions in the datagrid automatically.
2) Including a 'DATAGRID' for customers to be able to retain their info in a datagrid that has been updated by office personnel from an 'AIR APPLICATION' with a XML file that holds the customers info
/**the Component*/
<?xml version="1.0" encoding="utf-8"?>
<mx:Application xmlns:mx="http://www.adobe.com/2006/mxml" layout="absolute" xmlns:s="library://ns.adobe.com/flex/spark" width="1400" backgroundColor="#666666" xmlns:mx2="library://ns.adobe.com/flex/mx" creationComplete="initApp(event)">
<mx:Style source="map_1.css"/>
<mx:XML id="customer_info.xml" source="Assets/customer_info.xml" />
<mx:Script>
<![CDATA[
/**Google Map Code API:http://code.google.com/apis/maps/documentation/flash/tutorial-flexbuilder.html#DeclaringMa ps_&
_http://www.adobe.com/devnet/flex/articles/googlemaps_api.html */
import com.google.maps.LatLng;
import com.google.maps.Map;
import com.google.maps.MapEvent;
import com.google.maps.MapType;
private function onMapReady(event:Event):void {
this.map.setCenter(new LatLng(31.683952973286058, -97.09904551506042), 14, MapType.NORMAL_MAP_TYPE);
click="processForm(event);"
private function processForm(event:Event):void { trace(from.text + " " + to.text); }
[Bindable]
public var directionsSteps:ArrayCollection = new ArrayCollection();
dataProvider="{directionsSteps}"
var directions:Directions = new Directions(); directions.addEventListener(DirectionsEvent.DIRECTIONS_SUCCESS, onDirectionsSuccess);
directions.addEventListener(DirectionsEvent.DIRECTIONS_FAILURE, onDirectionsFail);directions.load("from: " + from.text + " to: " + to.text);
Alert.show("Status:" + event.directions.status);
map.clearOverlays(); var directions:Directions = event.directions; var directionsPolyline:IPolyline = directions.createPolyline(); map.addOverlay(directionsPolyline);
var directionsBounds:LatLngBounds = directionsPolyline.getLatLngBounds(); map.setCenter(directionsBounds.getCenter()); map.setZoom(map.getBoundsZoomLevel(directionsBounds));
var startLatLng:LatLng = dir.getRoute(0).getStep(0).latLng;
var endLatLng:LatLng = dir.getRoute(directions.numRoutes-1).endLatLng; map.addOverlay(new Marker(startLatLng)); map.addOverlay(new Marker(endLatLng));
for (var r:Number = 0 ; r < directions.numRoutes; r++ ) { var route:Route = directions.getRoute(r); for (var s:Number = 0 ; s < route.numSteps; s++ )
{ var step:Step = route.getStep(s); directionsSteps.addItem(step);
directionsSteps.removeAll();
itemClick="onGridClick(event)"
privatefunction onGridClick(event:Event):void { var latLng:LatLng = directionsGrid.selectedItem.latLng;
var opts:InfoWindowOptions = new InfoWindowOptions(); opts.contentHTML = directionsGrid.selectedItem.descriptionHtml; map.openInfoWindow(latLng, opts);
var ServerPath:String = "http://www.sometext.com/";
var ServerPage:String = serverPath + "getCountries";
dataProvider="{directionsSteps}"
var directions:Directions = new Directions(); directions.addEventListener(DirectionsEvent.DIRECTIONS_SUCCESS, onDirectionsSuccess); directions.addEventListener(DirectionsEvent.DIRECTIONS_FAILURE, onDirectionsFail);
directions.load("from: " + from.text + " to: " + to.text);
Alert.show("Status:" + event.directions.status);
map.clearOverlays(); var directions:Directions = event.directions; var directionsPolyline:IPolyline = directions.createPolyline();
map.addOverlay(directionsPolyline);
var directionsBounds:LatLngBounds = directionsPolyline.getLatLngBounds(); map.setCenter(directionsBounds.getCenter());
map.setZoom(map.getBoundsZoomLevel(directionsBounds));
var startLatLng:LatLng = dir.getRoute(0).getStep(0).latLng; var endLatLng:LatLng = dir.getRoute(directions.numRoutes-1).endLatLng; map.addOverlay(new Marker(startLatLng));
map.addOverlay(new Marker(endLatLng));
for (var r:Number = 0 ; r < directions.numRoutes; r++ ) { var route:Route = directions.getRoute(r); for (var s:Number = 0 ; s < route.numSteps; s++ )
{ var step:Step = route.getStep(s); directionsSteps.addItem(step); } }
directionsSteps.removeAll();
itemClick="onGridClick(event)"
import flash.events.IOErrorEvent;
import flash.events.SecurityErrorEvent;
var sender:URLLoader;
var sendPage:URLRequest;
var sendVars:URLVariables;
initApp;
function initApp:void {
var ServerPath:String = "http://localhost/silverfoxcc/";
var url:String = serverPath + "login.aspx";
sender = new URLLoader();
sendPage = new URLRequest(url);
sendPage.method = URLRequest.POST;
sendvars = new URLVariables();
SUBMIT.btn.addEventListener(MouseEvent.CLICK, clickHandler);
sender.addEventListener(Event.COMPLETE, completeHandler);
sender.addEventListener(IOErrorEvent.SECURITY_ERROR, securityErrorhandler);
function clickhandler(e:MouseEvent:void{
var suppSUBMIT:String = username_txt.text;
var suppRESET:String = reset_txt.text;
if (suppSUBMIT.length > 0 && suppRESET.length > 0) {
message_txt.text = "";
sendVars.submit = suppSUBMIT;
sendVars.reset = suppRESET;
sendPage.data = sendVars;
sender.load(sendPage);
else{
message_txt.text ="You must enter a last name and customer identification before clicking the submit button."
function completeHandler(e:Event):void{
var xmlResponse:XML = XML(e.target.data;
var userMessage:String;
if (xmlResponse.text().toString() == "true") {
userMessage = "Congratulations, information is retrieved"'';
else {
usermessage = "Information to be retrieved failed. Please try again";
message_txt.text =userMessage;
function ioErrorHandler(e:IOErrorEvent):void{
message_txt.text = e.text;
function securityErrorHandler(e:SecurityErrorEvent):void {
message_txt.text = e.text;
/**Foundation for Ed: XML & E4X-Chapter 9: COMMUNICATION WITH THE SERVER*/
import mx.events.FlexEvent;
import xmlUtilities.XMLLoader;
import flash.events.IOErrorEvent;
import flash.events.SecurityErrorEvent
private var serverPath:String = "http://localhost/FOE/";
private function initApp(e:FlexEvent):void {
myXMLLoader = new XMLLoader();
myXMLLoader.addEventListener(Event.COMPLETE, completeHandler);
myXMLLoader.addEventListener(IOErrorEvent.IO_Error, IOErrorHandler);
SUBMIT.btn.addEventListener(MouseEvent.CLICK, clickHandler);
private function completeHandler(e:Event):void{
var userMessage:String;
var response:String =myXMLLoader.response().toString();
if (response:String = myXMLLoader.response().toString();
if (response == true"){
usermessage = "Congratualtions. You were successful";
else{
userMessage = Login failed. Please try again";
message_txt.text = userMessage;
private function clickHandler(e:MouseEvent):void{
var SUBMIT:String = submit_txt.text;
var RESET:String = reset_txt.text;
vars myVars:URLVariables = new URLVariables();
if (username.length > 0 && password.length > 0) {
myVars.SUBMIT = submit;
myVars.CUSTMER ID = customerid;
myXMLLOADER.loafxml("login.aspx, myVars);
else {
message_txt.text = "You must enter a last name and customer id before clicking the submit button"
private function IOErrorHandler(e:IOErrorEvent):void{
message_txt.text = e.text;
private function securityErrorHandler(e:SecurityErrorEvent):void{
message_txt.text = e.text;
/**Foundation for Ed: XML & E4X-Chapter 8: MODIFYING XML CONTENT WITH ACTIONSCRIPT 3.0*/
import mx.events.FlexEvent;
import mx.events.ListEvent;
import mx.collections.XMLListCollection;
import xmlUtilities.MyXMLLoaderHelper;
import mx.events.FlexEvent;
import mx.events.DataGridEvent;
private function initApp(e:Event):void {
/add testing lines here
private var myXMLLoader:MyXMLLoaderHelper;
private function initApp(e:FlexEvent):void {
myXMLLoader = new MyXMLLoaderHelper();
myXMLLoader.addEventListener(Event.COMPLETE, completeHandler);
myXMLLoader.addEventListener("xmlUpdated", xmlUpdatedHandler);
authors_cbo.addEventListener(ListEvent.CHANGE, changeHandler);
addRow_btn.addEventListener(MouseEvent.CLICK, addClickHandler);
delete_btn.addEventListener(MouseEvent.CLICK, deleteClickHandler);
books_dg.addEventListener(DataGridEvent.ITEM_EDIT_END, itemEditEndHandler);
authors_cbo.labelFunction = getFullName;
myXMLLoader.loadXML("Assets/customer_info.xml", "lastname");
private function completeHandler(e:Event):void {
authors_cbo.dataProvider = myXMLLoader.getChildElements("author");
tree_txt.text = myXMLLoader.getXML().toXMLString();
books_dg.dataProvider = myXMLLoader.getBooks(0);
private function getFullName(item:Object):String {
return item.authorFirstName + " " + item.customerLastName;
private function changeHandler(e:Event):void {
books_dg.dataProvider = myXMLLoader.getBooks(e.target.selectedIndex);
private function addClickHandler(e:MouseEvent):void {
var newBookName:String = name_txt.text;
var newPublishYear:String = year_txt.text;
var newBookCost:String = cost_txt.text;
var authorIndex:int = authors_cbo.selectedIndex;
if(newBookName.length > 0 && newPublishYear.length > 0 && newBookCost.length > 0) {
myXMLLoader.addBook(authorIndex, newBookName, newPublishYear, newBookCost);
private function deleteClickHandler(e:MouseEvent):void {
var bookIndex:int = books_dg.selectedIndex;
var authorIndex:int = authors_cbo.selectedIndex;;
if (books_dg.selectedIndex != -1) {
myXMLLoader.deleteBook(authorIndex, bookIndex);
private function itemEditEndHandler(e:DataGridEvent):void {
var authorIndex:int = authors_cbo.selectedIndex;
var dg:DataGrid = e.target as DataGrid;
var field:String = e.dataField;
var row:int = e.rowIndex;
var col:int = e.columnIndex;
var oldVal:String = e.itemRenderer.data[field];
var newVal:String = dg.itemEditorInstance[dg.columns[col].editorDataField];
if (oldVal != newVal) {
myXMLLoader.modifyXMLTree(authorIndex, dg.columns[col].dataField, row, newVal)
private function xmlUpdatedHandler(e:Event):void {
books_dg.dataProvider = myXMLLoader.getBooks(authors_cbo.selectedIndex);
tree_txt.text = myXMLLoader.getXML().toXMLString();
]]>
</mx:Script>
<s:Panel x="9" y="257" width="459" height="383" contentBackgroundColor="#666666" backgroundColor="#666666" chromeColor="#FCF6F6" title="DIRECTIONS TO SILVER FOX COLLISION CENTER:" fontSize="14">
<s:TextInput x="55" y="7" contentBackgroundColor="#030000" height="17" width="392"/>
<mx:Label x="3" y="6" text="FROM:" fontSize="14" color="#FDF9F9"/>
<s:TextInput x="1114" y="637" contentBackgroundColor="#FCF7F7" height="17" width="213"/>
<s:Button x="1337" y="634" label="GET DIRECTIONS" focusColor="#FBFCFD" chromeColor="#666666" color="#FEFEFE" width="141" fontSize="14"/>
<mx:Label x="1088" y="637" text="TO:" fontSize="12" color="#FDFBFB"/>
<s:Button x="295" y="56" label="GET DIRECTIONS" focusColor="#FBFCFD" chromeColor="#666666" color="#FEFEFE" width="157" fontSize="12"/>
<s:TextInput x="55" y="31" contentBackgroundColor="#070000" height="17" width="392"/>
<mx:Label x="25" y="30" text="TO:" fontSize="14" color="#FDFBFB"/>
</s:Panel>
<mx2:DataGrid x="10" y="54" width="458" height="104" color="#666666" contentBackgroundColor="#060000" borderColor="#030000" fontSize="8" focusColor="#666666" chromeColor="#030000" selectionColor="#666666" dropShadowVisible="true" rollOverColor="#FFFFFF">
<mx2:columns>
<mx2:DataGridColumn headerText="LAST NAME:" dataField="col1"/>
<mx2:DataGridColumn headerText="DESIGNATED DUE DATE:" dataField="col2"/>
<mx2:DataGridColumn headerText="STATUS UPDATED:" dataField="col3"/>
<mx2:DataGridColumn headerText="CUSTOMER ID:" dataField="col3"/>
</mx2:columns>
</mx2:DataGrid>
<mx:Text id="directionsSummary" width="100%"/> <mx:DataGrid id="directionsGrid" dataProvider="{directionsSteps}" width="100%" height="100%" sortableColumns="false" />
<mx:Text id="directionsCopyright" width="100%"/>
<mx:HBox> <mx:Label text="From: " width="70"/> <mx:TextInput id="from" text="San Francisco, CA" width="100%"/> </mx:HBox>
<mx:HBox> <mx:Label text="To: " width="70"/> <mx:TextInput id="to" text="Mountain View, CA" width="100%"/> </mx:HBox>
<s:Label x="11" y="38" text="LAST NAME:" color="#FCFBFB" fontSize="14" verticalAlign="top"/>
<s:TextArea x="96" y="32" width="145" height="18" focusColor="#FCFAFA" color="#010000" contentBackgroundColor="#000000" id="message_txt" text="{xmlService.lastResult.toString()}>
<s:Label x="273" y="37" text="CUSTOMER ID;" fontSize="14" color="#FDFBFB"/>
<s:TextInput x="376" y="32" width="89" height="18" focusColor="#FCF9F9" color="#FAF8F8" contentBackgroundColor="#040000"/>
<s:Button x="318" y="212" label="RESET" focusColor="#F8FAFB" color="#FEFBFB" chromeColor="#666666" fontSize="12"/>
<s:Button x="393" y="212" label="SUBMIT" focusColor="#F8F9FA" color="#FFFBFB" chromeColor="#666666" fontSize="12"/>
<s:TextArea x="10" y="160" width="458" height="48" color="#FEF8F8" contentBackgroundColor="#050000"/>
<mx:Panel x="483" y="31" width="750" height="609" layout="absolute" backgroundColor="#666666" borderVisible="true" dropShadowVisible="true" chromeColor="#FDF9F9">
<mx:VBox x="26" y="7" height="559" width="708">
<maps:Map xmlns:maps="com.google.maps.*" id="map" mapevent_mapready="onMapReady(event)" x="500" y="25" width="700" height="550" key="ABQIAAAA9YXHa-b0xqHBMiooUNYUbhRpa9TAnukyOWjhoGl3Y9H2BJoi9xSrm6cnM0lBZ4lCtqRLxKpQK_eb Rg" sensor="true"/>
</mx:VBox>
</mx:Panel>
</mx:Application>
/**the AIR APPLICATION*/
<?xml version="1.0" encoding="utf-8"?>
<s:WindowedApplication xmlns:fx="http://ns.adobe.com/mxml/2009"
xmlns:s="library://ns.adobe.com/flex/spark"
xmlns:mx="library://ns.adobe.com/flex/mx" backgroundColor="#666666" width="854" height="348" creationComplete="initApp(event)">
<s:HTTPService id="customer_info" url="data/customer_info.xml" resultFormat="e4x" result="resultHandler(event)"/>
<mx:Script>
<![CDATA[
/**FLEX 4 Bible: Chapter 24- Managing XML w/ E4X*/
private var xmlData:XML;
private function resultHandler(event:ResultEvent):void
xmlData = event.result as XML:
]]>
</mx:Script>
<fx:Declarations>
<!-- Place non-visual elements (e.g., services, value objects) here -->
</fx:Declarations>
<mx:Image source="@Embed('Assets/logo.png')" x="1" y="0" width="760" height="168"/>
<s:Label x="96" y="126" text="Last Name:
" color="#FFFFFF" fontSize="20" fontFamily="Times New Roman"/>
<s:Label x="13" y="218" text="Designated Due Date:
" fontSize="20" fontFamily="Times New Roman" color="#FBF8F8"/>
<s:Label x="63" y="186" text="Status Updated:
" color="#FCF5F5" fontSize="20" fontFamily="Times New Roman"/>
<s:TextInput x="192" y="125" width="196"/>
<s:TextInput x="193" y="215" width="195"/>
<s:TextInput x="193" y="185" width="195"/>
<s:Label x="80" y="158" text="Customer ID:" color="#FDFCFC" fontSize="20" fontFamily="Times New Roman"/>
<s:TextInput x="192" y="155" width="196"/>
<s:Button x="243" y="241" label="RESET"/>
<s:Button x="317" y="241" label="UPDATE" focusColor="#666666"/>
</s:WindowedApplication>
/**the Customer Information XML*/
<?xml version="1.0" encoding="utf-8"?>
<allNames>
<name namesID="1">
<nameLastName>Ambrose</nameLastName>
<customerids>
<customerid customerID="1">
<customerID>777777</customerID>
</customerid>
</customerids>Hi All,
please note that we found the problem. The problem was that we didn't configure under:
"Configuration-> Security -> Message Security -> SOAP" the voprrect provider to handle the security.
After that was done (extract of domain.xml) the message was understood.
<provider-config class-name="com.sun.identity.agents.jsr196.as9soap.AMServerAuthModule" provider-id="AMServerProvider-UserNameToken-Plain" provider-type="server">
<request-policy auth-source="content"/>
<response-policy auth-source="content"/>
<property name="providername" value="UserNameToken-Plain"/>
</provider-config>unfortunately the next problem occured I will post in a new thread.
Edited by: rankin_ut on Jan 26, 2009 4:43 AM -
Oracle Reports with XML output showing data as asterik character
Hello,
I'm trying to create an Oracle report with xml output. Here is the issue I'm having some of the columns in my report are of datatype number. When I run the report and generate xml file the values for those columns(datatype number) are showing as (*) character, other columns are showing fine. But when I run the report as text output then data is fine. I don't understand why this is happening.
The property of column is Column Type - Database Scalar, Datatype - Number , width 0,-127.
Does the width has to do anything with this?
I'm using Report Builder 6.0.8.11.3, DB version 10g.
Can anyone please help me with the issue I'm having.
ThanksIf the links in your example report1 and report2
follow my format stated earlier
http://machine:port/reports/rwservlet/report=reportnam
e.rdf&destype=cache& paramform=htmlcss&server=<YourReportSe
rverName>&userid=scott/tiger@hrdb&desformat=pdf
This is what I believe
>
so http://machine:port/ is the port where
JBoss is running and
This should be the port that the report server is listening on
>
server=<YourReportServerName> is the name of
my oracle report server
so I call the above link in my current application
and the report would show up
Yes
>
that means (correct me if I am wrong) that my reports
would have to be deployed in OracleAS
Yes
>
I have to try all this yet as till this point I was
trying to run Oracle reports deployed in JBoss...
This may be possible, I am not sure.
>
Oracle J2EE Thin Client?
I am not sure what this is used for in your setup. -
Font bug with SMC (Management console)
I have got a bug with the font in Solaris Management Console, and only with it.
With Xorg, the font are corrected displayed, but with Xsun, there are horible.
I think there a problem with XSun, or with SMC, but I didn't know Xsun.
Thanks.Hello Senthilkumar,
Here are the outputs from the commands. The other ones that I left out (/var/adm/messages and showrev -p) had a lot of output and I wasn't sure what you needed. Please let me know what to post or if you want me to post the whole things.
# more /etc/release
Solaris 8 7/01 s28x_u5wos_08 INTEL
Copyright 2001 Sun Microsystems, Inc. All Rights Reserved.
Assembled 06 June 2001
# java -version
java version "1.2.2"
Solaris VM (build Solaris_JDK_1.2.2_07a, native threads, sunwjit)
Here are the errors that come back when /etc/init.d/init.wbem fails.
Exception in thread "main" java.lang.NoClassDefFoundError: com/sun/management/viperimpl/server/ViperServer
at java.lang.ClassLoader.defineClass0(Native Method)
at java.lang.ClassLoader.defineClass(ClassLoader.java:495)
at java.security.SecureClassLoader.defineClass(SecureClassLoader.java:110)
at java.net.URLClassLoader.defineClass(URLClassLoader.java:252)
at java.net.URLClassLoader.access$1(URLClassLoader.java:218)
at java.net.URLClassLoader$1.run(URLClassLoader.java:199)
at java.security.AccessController.doPrivileged(Native Method)
at java.net.URLClassLoader.findClass(URLClassLoader.java:193)
at java.lang.ClassLoader.loadClass(ClassLoader.java:300)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:290)
at java.lang.ClassLoader.loadClass(ClassLoader.java:256)
at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:316) -
BI Publisher configured with BI Server Security not working for the admins.
Hello Everyone,
I have configured the BI publisher to work with the BI server security. Everything is working well with the exception that all users part of the BI Server "Administrators" group are unable to login and get the following error message (message displayed below). If a user is removed from the "Administrators" group then they are able to access the BI Publisher. As indicated everything else is working for exemple all users part of the 'XMLP_Admin' group all have access to the "ADMIN" tab in BI Publisher. The issue seems to be limited to the users part of the BI Server "Administrators" group.
- Has anyone else ever had this issue?
- Is this a normal behaviour of BI Publisher?
- Or the security groups for the BI Server and BI Publisher conflicting?
Thanks in advance for everyone's help.
Best regards,
FBELL
*********************** Error Message ***************************************
Oracle BI Publisher Enterprise
Reporting Login: Login failed: Please contact administrator for your username/password.
Error Details
Error Codes:
***************************************************************************Thanks Madan for your help.
The group XMLP_Admin was already created and working. The conflict was with security groups outside BI Publisher. What I ended up doing was recreating the principals.xml and security.xml files and rsetting the roles and permissions. Surprisingly that fixed my problem.
Best regards,
FBELL. -
What`s going on with XML Parser version 2.0.2.7?
Hi,
In january, I was told on this forum by Steven Muench to wait version 2.0.2.7 of Oracle XML Parser to correct a textarea bug with <xsl:output method="HTML"... I would like to know what's going on and when should I expect this new version be available to download.
Thanks!It's in testing right now. Will likely still be a couple more weeks before it's out on OTN.
Maybe you are looking for
-
Create Tree from Preordered data
Here is a quick summary of what I'm trying to do: I have a file with formatted like this Does it have legs? Dog Fish and the resulting tree for it should look like this Does it have legs? Dog Fishand I'm trying to write a function th
-
BPM with more than one incoming interface.
Hi experts. My scenario is File --> BPM --> SOAP The BPM is: Fork Step - Necessary branches is set to one. First branch - Async recieve step for Msg1 Interface. Start pro
-
Only a genius may reply Nokia N 70
Few days back i installed d old sis files of 6600 since dan Whenever i connect my mobile with d PC It shows the error msg again & again " PC suite file missing from the mobile" Inspite of installing the latest PC suite my phone is not detected in the
-
Music in my playlist are grayed out and I'm not able to play from the Windows nor my devices
I tried syncing and the songs are bypassed while playing from a playlist. Help!!!
-
How to sum a column in SQL server??
How do I sum a column called 'expenditureamount' in a sql table 'expenditureform', such that I get the total expenditure amount displayed in a text box??