Adding a role thru oim API
Hi Experts,
I am getting role from object form and the user will be added to this role once the provisioning is completed to a resource.
If I want to pass this role to child form and then trigger corresponding addroletask in schedule task using Oracle API, please let me know the process and steps that I have to take care. If you have any sample code just for my reference, plz post it here.
Here is the Code which you can refer. Change it per your requirement
process Key = ORC_KEY
long formKey = formInstanceIntf
.getProcessFormDefinitionKey(processKey);
int formVersion = formInstanceIntf
.getProcessFormVersion(processKey);
tcResultSet childTable = formInstanceIntf
.getChildFormDefinition(formKey, formVersion);
long childDefKey = 0L;
for (int i = 0; i < childTable.getRowCount(); i++) {
childTable.goToRow(i);
if (childTable.getStringValue(
"Structure Utility.Table Name").equalsIgnoreCase(
"UD_ADSTDPRO")) {
childDefKey = childTable
.getLongValue("Structure Utility.Child Tables.Child Key");
break;
tcResultSet childData = formInstanceIntf
.getProcessFormChildData(childDefKey, processKey);
//if want to remove the value
for (int j = 0; j < childData.getRowCount(); j++) {
childData.goToRow(j);
long childPrimaryKey = childData
.getLongValue("UD_ADSTDPRO_KEY");
formInstanceIntf.removeProcessFormChildData(
childDefKey, childPrimaryKey);
//if want to add a value
HashMap proxyMap = new HashMap();
proxyMap.put("UD_ADSTDPRO_PROXY_ADDRESS", SAMPLE VALUE);
formInstanceIntf.addProcessFormChildData(childDefKey,
processKey, proxyMap);
Similar Messages
-
Create AD account by adding a Role in oim 11g R2
Hi everyone,
When I add a role to user in OIM, AD account of this user is created in AD machine after 10 minutes.
Why this delay occurs and how can I solve?
Thanks.
Best regards.Check the frequency of "Evaluate User Policies" Sch task. It should be 10 minutes.
Change it 2-3 minutes. -
Error - Addition of Batch wise GRPO thru DI API
Dear All,
I am facing the error "Can not release the item with selection of Batch/Serial" while adding the GRPO thru DI API.
When I add only 1 line in GRPO with Batch Details thru coding,GRPO added successfully. But when there are more than 1 line then i get the above mentioned error.
Edited by: anuj singh on May 7, 2011 11:31 AMPlease show us your code, it's difficult to know the exact cause without seeing it.
-
11g R2: Role creation using API
I am trying to create a role using OIM API RoleManager
RoleManager roleService = oimClient.getService(RoleManager.class);
Role roleObj = new oracle.iam.identity.rolemgmt.vo.Role("");
roleObj.setAttribute("Role Name","SampleTestRole");
roleObj.setAttribute("Role Display Name","Sample Test Role");
roleObj.setAttribute("Role Description","Sample Test Role");
System.out.print(roleService.create(roleObj));
System.out.print("Role has been created.... ");
I am getting the following exception:
oracle.iam.identity.exception.RoleCreateException: Orchestration process with id 14915, failed with error message null.
at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:237)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:348)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:259)
at oracle.iam.identity.rolemgmt.api.RoleManager_ogut7n_RoleManagerRemoteImpl_1036_WLStub.createx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
at $Proxy2.createx(Unknown Source)
at oracle.iam.identity.rolemgmt.api.RoleManagerDelegate.create(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at Thor.API.Base.SecurityInvocationHandler$1.run(SecurityInvocationHandler.java:68)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.security.Security.runAs(Security.java:41)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(weblogicLoginSession.java:52)
at Thor.API.Base.SecurityInvocationHandler.invoke(SecurityInvocationHandler.java:79)Tried as suggested in the link posted but still getting the same exception.
Role managerRole=new Role("powerUser");
managerRole.setName("powerUser");
managerRole.setDisplayName("powerUser");
oracle.iam.identity.exception.RoleCreateException: Orchestration process with id 14930, failed with error message null.
at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:237)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:348)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:259)
at oracle.iam.identity.rolemgmt.api.RoleManager_ogut7n_RoleManagerRemoteImpl_1036_WLStub.createx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
at $Proxy4.createx(Unknown Source)
at oracle.iam.identity.rolemgmt.api.RoleManagerDelegate.create(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at Thor.API.Base.SecurityInvocationHandler$1.run(SecurityInvocationHandler.java:68)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.security.Security.runAs(Security.java:41)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(weblogicLoginSession.java:52)
at Thor.API.Base.SecurityInvocationHandler.invoke(SecurityInvocationHandler.java:79)
at $Proxy5.create(Unknown Source) -
Error in oim Role creation using Role Manager Service API from Standalone Java client
Hi,
Facing the following error when trying to create Role using Role Manager Service API from a standalone java client .
Tried with the solution of changing ,
Login into the Web Logic Admin Console --> Servers --> OIM Server --> Protocols --> Modify the Maximum Message from 100000000 to 1000000000, but still the problem persists.
Exception in thread "main" org.omg.CORBA.BAD_PARAM: vmcid: 0x0 minor code: 0 completed: No
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source)
at java.lang.reflect.Constructor.newInstance(Unknown Source)
at java.lang.Class.newInstance0(Unknown Source)
at java.lang.Class.newInstance(Unknown Source)
at com.sun.corba.se.impl.protocol.giopmsgheaders.MessageBase.getSystemException(Unknown Source)
at com.sun.corba.se.impl.protocol.giopmsgheaders.ReplyMessage_1_2.getSystemException(Unknown Source)
at com.sun.corba.se.impl.protocol.CorbaMessageMediatorImpl.getSystemExceptionReply(Unknown Source)
at com.sun.corba.se.impl.protocol.CorbaClientRequestDispatcherImpl.processResponse(Unknown Source)
at com.sun.corba.se.impl.protocol.CorbaClientRequestDispatcherImpl.marshalingComplete(Unknown Source)
at com.sun.corba.se.impl.protocol.CorbaClientDelegateImpl.invoke(Unknown Source)
at org.omg.CORBA.portable.ObjectImpl._invoke(Unknown Source)
at com.sun.org.omg.SendingContext._CodeBaseStub.meta(Unknown Source)
at com.sun.corba.se.impl.encoding.CachedCodeBase.meta(Unknown Source)
at com.sun.corba.se.impl.io.IIOPInputStream.getOrderedDescriptions(Unknown Source)
at com.sun.corba.se.impl.io.IIOPInputStream.inputObjectUsingFVD(Unknown Source)
at com.sun.corba.se.impl.io.IIOPInputStream.simpleReadObject(Unknown Source)
at com.sun.corba.se.impl.io.ValueHandlerImpl.readValueInternal(Unknown Source)
at com.sun.corba.se.impl.io.ValueHandlerImpl.readValue(Unknown Source)
at com.sun.corba.se.impl.encoding.CDRInputStream_1_0.read_value(Unknown Source)
at com.sun.corba.se.impl.encoding.CDRInputStream.read_value(Unknown Source)
at oracle.iam.identity.rolemgmt.api._RoleManager_ogut7n_RoleManagerRemoteRIntf_Stub.createx(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
at $Proxy2.createx(Unknown Source)
at oracle.iam.identity.rolemgmt.api.RoleManagerDelegate.create(Unknown Source)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at Thor.API.Base.SecurityInvocationHandler$1.run(SecurityInvocationHandler.java:68)
at weblogic.security.subject.SubjectProxy.doAs(SubjectProxy.java:64)
at weblogic.security.subject.SubjectManager.runAs(SubjectManager.java:262)
at weblogic.security.Security.runAs(Security.java:48)
at Thor.API.Security.LoginHandler.weblogicLoginSession.runAs(weblogicLoginSession.java:52)
at Thor.API.Base.SecurityInvocationHandler.invoke(SecurityInvocationHandler.java:79)
at $Proxy3.create(Unknown Source)
at com.idm.role.CreateRole.createRole(CreateRole.java:113)
at com.idm.role.CreateRole.main(CreateRole.java:167)
Thanks In AdvanceHi , I have used OIM 11g R2.
Please find below the code we have used,
package com.idm.role;
import java.util.HashMap;
import java.util.HashSet;
import java.util.Hashtable;
import java.util.Iterator;
import java.util.Set;
import java.util.logging.Logger;
import javax.security.auth.login.LoginException;
import oracle.iam.identity.exception.NoSuchRoleException;
import oracle.iam.identity.exception.RoleAlreadyExistsException;
import oracle.iam.identity.exception.RoleCreateException;
import oracle.iam.identity.exception.RoleLookupException;
import oracle.iam.identity.exception.RoleModifyException;
import oracle.iam.identity.exception.SearchKeyNotUniqueException;
import oracle.iam.identity.exception.ValidationFailedException;
import oracle.iam.identity.rolemgmt.api.RoleManager;
import oracle.iam.identity.rolemgmt.api.RoleManagerConstants;
import oracle.iam.identity.rolemgmt.vo.Role;
import oracle.iam.platform.OIMClient;
import oracle.iam.platform.authz.exception.AccessDeniedException;
public class CreateRole {
private final static Logger LOGGER = Logger.getLogger(CreateRole.class .getName());
OIMClient oimClient = null;
public OIMClient connectToOIM() {
LOGGER.info("In connectToOIM ");
Hashtable env = new Hashtable();
env.put(OIMClient.JAVA_NAMING_FACTORY_INITIAL,
"weblogic.jndi.WLInitialContextFactory");
env.put(OIMClient.JAVA_NAMING_PROVIDER_URL,
"t3://V-hydidm1.itig.co.in:14000");
System.setProperty("java.security.auth.login.config",
"F:\\Projects\\IDM\\Team\\Env_setup\\OIM_Setup\\designconsole\\config\\authwl.conf");
System.setProperty("java.security.policy",
"F:\\Projects\\IDM\\Team\\Env_setup\\OIM_Setup\\designconsole\\config\\xl.policy");
System.setProperty("OIM.AppServerType", "wls");
System.setProperty("APPSERVER_TYPE", "wls");
System.setProperty("weblogic.Name", "oim_server1");
oimClient = new OIMClient(env);
try {
oimClient.login("xelsysadm", "Passw0rd".toCharArray());
} catch (LoginException e) {
e.printStackTrace();
System.out.println("Connected");
return oimClient;
public void readRoleMetadata() {
LOGGER.info("in readRoleMetadata ");
RoleManager roleManagerService = oimClient
.getService(RoleManager.class);
try {
Role roleVo = roleManagerService.getDetails(
RoleManagerConstants.ROLE_DISPLAY_NAME, "API Role1", null);
Set attributeNameSet = roleVo.getAttributeNames();
Iterator it = attributeNameSet.iterator();
while (it.hasNext()) {
System.out.println("Attribute Name :: " + it.next());
// roleVo.setAttribute("ADentitlements", "Security Admin access");
String adEntitlements = "" + roleVo.getAttribute("ADentitlements");
System.out.println("AD Entitlements :: " + adEntitlements);
System.out.println("DB Entitlements :: " + ""
+ roleVo.getAttribute("DBEntitlements"));
System.out.println("Unix Entitlements :: " + ""
+ roleVo.getAttribute("UnixWindows"));
System.out.println("VPN :: " + "" + roleVo.getAttribute("VPN"));
} catch (SearchKeyNotUniqueException e) {
e.printStackTrace();
} catch (NoSuchRoleException e) {
e.printStackTrace();
} catch (RoleLookupException e) {
e.printStackTrace();
} catch (AccessDeniedException e) {
e.printStackTrace();
public void createRole() {
LOGGER.info(" in Create role ");
RoleManager roleManagerService = oimClient
.getService(RoleManager.class);
HashMap<String, Object> roleCreationAttrMap = new HashMap<String, Object>();
roleCreationAttrMap.put(RoleManagerConstants.ROLE_NAME, "API Role1");
roleCreationAttrMap.put(RoleManagerConstants.ROLE_DESCRIPTION,
"This Role is created using API Role1");
roleCreationAttrMap.put(RoleManagerConstants.ROLE_DISPLAY_NAME,
"API Role1");
roleCreationAttrMap.put("ADentitlements", "API Role1 AD Entitlements");
roleCreationAttrMap.put("DBEntitlements", "API Role1 DB Entitlements");
roleCreationAttrMap.put("VPN", "No");
roleCreationAttrMap.put("UnixWindows", "API Role1 Unix Entitlements");
Role roleVo = new Role(roleCreationAttrMap);
try {
System.out.println(" Before Create role *********************************************");
roleManagerService.create(roleVo);
System.out.println("Role Created .. ");
} catch (ValidationFailedException e) {
e.printStackTrace();
} catch (RoleAlreadyExistsException e) {
e.printStackTrace();
} catch (RoleCreateException e) {
e.printStackTrace();
} catch (AccessDeniedException e) {
e.printStackTrace();
public void modifyRole() {
LOGGER.info(" in modifyRole ");
RoleManager roleManagerService = oimClient
.getService(RoleManager.class);
Role roleVo;
try {
roleVo = roleManagerService.getDetails(
RoleManagerConstants.ROLE_DISPLAY_NAME, "API Role1", null);
String roleKey = roleVo.getEntityId();
HashMap<String, Object> roleCreationAttrMap = new HashMap<String, Object>();
roleCreationAttrMap.put("ADentitlements",
"Updated API Role1 AD Entitlements");
Set roleKeySet = new HashSet<String>();
roleKeySet.add(roleKey);
Role roleVoNew = new Role(roleCreationAttrMap);
roleManagerService.modify(roleKeySet, roleVoNew);
System.out.println("Role Modified ..");
} catch (SearchKeyNotUniqueException e) {
e.printStackTrace();
} catch (NoSuchRoleException e) {
e.printStackTrace();
} catch (RoleLookupException e) {
e.printStackTrace();
} catch (AccessDeniedException e) {
e.printStackTrace();
} catch (ValidationFailedException e) {
e.printStackTrace();
} catch (RoleModifyException e) {
e.printStackTrace();
public static void main(String args[]) {
CreateRole miscObj = new CreateRole();
miscObj.connectToOIM();
miscObj.createRole();
//miscObj.readRoleMetadata();
Thanks In Advance . -
Raising Request using OIM ApI's in oim 11g R2
Hi all
I trying to raise a request using OIM API in R2. I have written a sample code and it is throwing me the below error....
Exception in thread "main" java.lang.NullPointerException
* at oracle.iam.ui.custom.updateuser.<init>(updateuser.java:76)*
* at oracle.iam.ui.custom.updateuser.main(updateuser.java:118)*
Please take a look at my code....
RequestEntityAttribute rea = null;
rea.setName("Modify User Profile");//This is the place where i am getting the error...
System.out.println("I am Here3");
rea.setAction(RequestEntityAttribute.ACTION.Modify);
List<RequestEntityAttribute> lrea = new ArrayList<RequestEntityAttribute>();
lrea.add(rea);
RequestEntity re = null;
re.setEntityData(lrea);
List<RequestEntity> reqentity = new ArrayList<RequestEntity>();
reqentity.add(re);
RequestData requestData = null;
requestData.setJustification("I need this Role");
requestData.setTargetEntities(reqentity);
String str = null;
try {
str = _service.submitRequest(requestData);
} catch (InvalidRequestException e) {
} catch (InvalidRequestDataException e) {
} catch (RequestServiceException e) {
} catch (BulkBeneficiariesAddException e) {
} catch (BulkEntitiesAddException e) {
Thanks in Advancelook at below link
Creating a Request via OIM 11g API
http://www.pathmaker-group.com/querying-oracle-iam-requests/ -
Error while initializing OIM API in 11G
I am trying to deploy a webservice exposing some of the OIM API's in 11G[11.1.1.5]. I am using the OIMClient API to initialize the API's. The following code works fine when I run with in the eclipse but doesnt work when it is deployed on the weblogic server[10.3.5]. This is a standalone server where no other web app is deployed. Has anyone faced this issue before. Any pointers on this would be helpful. Thnaks in advance.
System.setProperty("java.security.auth.login.config", "./authwl.conf");
Hashtable<String, String> env = new Hashtable<String, String>();
env.put(OIMClient.JAVA_NAMING_PROVIDER_URL, providerURL);
env.put(OIMClient.JAVA_NAMING_FACTORY_INITIAL, OIMClient.WLS_CONTEXT_FACTORY);
oimClient = new OIMClient(env);
oimClient.login(userName, password.toCharArray());
The exception is :
java.lang.IllegalArgumentException: No Configuration was registered that can handle the configuration named xellerate
java.lang.IllegalArgumentException: No Configuration was registered that can handle the configuration named xellerate
at com.bea.common.security.jdkutils.JAASConfiguration.getAppConfigurationEntry(JAASConfiguration.java:130)
at javax.security.auth.login.LoginContext.init(LoginContext.java:243)
at javax.security.auth.login.LoginContext.<init>(LoginContext.java:403)
at Thor.API.Security.LoginHandler.weblogicLoginHandler.login(weblogicLoginHandler.java:58)
at oracle.iam.platform.OIMClient.login(OIMClient.java:134)
at oracle.iam.platform.OIMClient.login(OIMClient.java:129)
at au.com.suncorp.oim.custom.spml.SuncorpOIMOperations.getInitializedOIMClient(SuncorpOIMOperations.java:113)
at com.suncorp.test.oim.custom.spml.OIMWebServiceSoapBindingImpl.identitySearchByName(OIMWebServiceSoapBindingImpl.java:41)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.apache.axis.providers.java.RPCProvider.invokeMethod(RPCProvider.java:397)
at org.apache.axis.providers.java.RPCProvider.processMessage(RPCProvider.java:186)
at org.apache.axis.providers.java.JavaProvider.invoke(JavaProvider.java:323)
at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
at org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:454)
at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
at org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:699)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
at org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:327)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:183)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3717)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Edited by: vindla on 16-Feb-2012 01:10
Edited by: vindla on 16-Feb-2012 01:141) please ensure that the war file which you deploy in WLS is pointing to the authwl.conf file on the machine hosting the war.
2) apart from that make sure you have the following jars added to the calss path or added to the lib folder of the war.
commons-logging-1.1.1.jar;
oimclient.jar;
spring.jar
try removing extra libraries and jars from the war file. it sometimes give errors.
i have done exactly the same thing and it works fine.
rest it looks fine
======code snippet====
System.setProperty("java.security.auth.login.config","/path/authwl.conf");
System.setProperty("OIM.AppServerType", "weblogic");
env.put(Context.INITIAL_CONTEXT_FACTORY, "weblogic.jndi.WLInitialContextFactory");
env.put(Context.PROVIDER_URL, "t3://host:14000/oim");
try {
oimClient.login("xelsysadm", "password");
} catch (LoginException e) {
e.printStackTrace();
OIMClient oimClient = new OIMClient(env); -
Hi
can anyone help me in creatig a form and assigning it to a resource object.
please tell what all should i mention in the map which is to be passed to createForm() method.
Thank youHi all
what attributes i need to to map to create a from using OIM API
createForm Method?
I have tried with this but did not work:The form is getting created , i.e I am seeing an entry in DB.
At the same time I am aslo getting an exception which is whown below:
formMap.put("Structure Utility.Table Name", "SAM");
formMap.put("Structure Utility.Description", "TESTING API USAGE FOR FORM");
The Exceptions I get are :
Thor.API.Exceptions.tcInvalidNameException
at com.thortech.xl.ejb.beansimpl.tcFormDefinitionOperationsBean.createForm(Unknown Source)
at com.thortech.xl.ejb.beansimpl.tcFormDefinitionOperationsBean.createForm(Unknown Source)
at com.thortech.xl.ejb.beans.tcFormDefinitionOperationsSession.createForm(Unknown Source)
09:05:13,772 ERROR [DATABASE] Class/Method: tcDataBase/writeStatement encounter
some problems: ORA-02089: COMMIT is not allowed in a subordinate session
java.sql.SQLException: ORA-02089: COMMIT is not allowed in a subordinate session
09:05:13,819 ERROR [ADAPTERS] Event: Adding Columns to SDC. has encountered an error.
09:05:13,819 ERROR [SERVER] Class/Method: tcDataObj/runEvent Error :EVT Fatal Rejection Occured
09:05:13,819 ERROR [APIS] Class/Method: tcFormDefinitionOperationsBean/createForm encounter some problems: maoErrors:Error Adding Column.
How can i resolve this?
When and where can I view the form that I have created?
Thank you -
Transaction Management - OIM API
We wanted to know how to handle transaction from OIMClient, when we make OIM API call.
eg:
from a java client, we invoke create organization and provision resource to that organization.
i.e we end up calling two OIM api calls
1)
organizationManager.create(organizationObj);
2)
tcOrganizationOperationsIntf.provisionObject(orgKey,resourceKey);
Now, if 2nd one fails, then transaction should be rolled back and organization create should be rolled back. we wanted single unit of work to be achieved.
how can this be achieved?
how do we control transaction from OIMClient/API?
public String createOrganization(OrganizationVO ovo) {
String result = "";
OrganizationManager omgr = null; // OIMClient API
Organization org = null; // OIMClient API
try {
omgr=ULMServiceLocator.getInstance().getOrganizationManager();
org = new Organization();
org.setAttribute("Organization Name", ovo.getOrgName());
org.setAttribute("Organization Customer Type", ovo.getOrgType());
result = omgr.create(org);
tcUtilityFactory ioutilityFactory = ULMServiceLocator.getInstance().getcUtilityFactory();
//TODO
tcOrganizationOperationsIntf utilityFactory1 = (tcOrganizationOperationsIntf) ioutilityFactory
.getUtility("Thor.API.Operations.tcOrganizationOperationsIntf");
long l1 = utilityFactory1.provisionObject(Long.parseLong(result),
123l);
} catch (oracle.jrf.UnknownPlatformException e) {
e.printStackTrace();
} catch (Exception e) {
// TODO Auto-generated catch block
e.printStackTrace();
return result;Hi Abhay,
<b>If there is another way to add a record to Main table and Lookup/Qualified/Hierarchy table simultaneously then there is no need of Transaction.</b>
There are no direct methods currently(as of MDM 5.5SP3) available in MDM API.
You have to build your own logic to implement.
Regarding the Transaction management, I guess you are talking aboout two phase commit scenarios. I would say you can achieve this using EJB's in which u write the business logic (In this case the MDM API code).
For Example:
Adding a record to Main table,
Let say 2 fields
1. Free text field.
Its straight forward method, use A2iFiled object and assign some value to it.
2. Lookup field.
For this.
First get the Record id for the value, which you are trying to add, from the lookup table.
If the lookup table does not find the value in the table, it return zero or some negative value(which I am not sure).
Based on the return value you can add the value into the lookup table and then into the main table.
Just putting a sample scenario. Hope this helps.
Thanks and regards
Subbu -
Create new schedule task using OIM API
Hello,
Steps for setting up eclipse :
1)Create a new JAVA project.
2)Right click on your newly created JAVA project & select properties.
3)In Properties window select JavaBuildPath & select libraries tab.
4)Click on AddExternalJar's button & add jar files from lib,ext folders of OIM client installation.
5)Click OK.
CODE<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<package oimscheduler;
import java.util.HashMap;
import java.util.Hashtable;
import javax.naming.Context;
import Thor.API.Operations.tcUserOperationsIntf;
import Thor.API.Exceptions.tcAPIException;
import Thor.API.Exceptions.tcChallengeNotSetException;
import Thor.API.Exceptions.tcLoginAttemptsExceededException;
import Thor.API.Exceptions.tcPasswordResetAttemptsExceededException;
import Thor.API.Exceptions.tcUserAccountDisabledException;
import Thor.API.Exceptions.tcUserAccountInvalidException;
import Thor.API.Exceptions.tcUserAlreadyLoggedInException;
import Thor.API.tcUtilityFactory;
import com.thortech.xl.scheduler.tasks.SchedulerBaseTask;
import com.thortech.xl.util.config.ConfigurationClient;
public class Scheduler extends SchedulerBaseTask
tcUtilityFactory ioUtilityFactory = null;
@Override
protected void execute()
try
System.out.println("Executing Scheduler.....");
createConnection();
createUser();
System.out.println("Back In execute fn !!!");
catch(Exception e)
System.out.println("Error In execute : "+e.toString());
public void createConnection()
try
System.setProperty("XL.HomeDir","D:\\Oracle\\OIM\\xellerate");
System.setProperty("java.security.policy","D:\\Oracle\\OIM\\xellerate\\config\\xl.policy");
System.setProperty("java.security.auth.login.config","D:\\Oracle\\OIM\\xellerate\\config\\authwl.conf");
System.setProperty("java.naming.provider.url","t3://localhost:7001 ");
System.out.println("Setting Configurations .....");
System.out.println("Starting .....");
ConfigurationClient.ComplexSetting config =
ConfigurationClient.getComplexSettingByPath("Discovery.CoreServer");
System.out.println("Login...");
Hashtable env = config.getAllSettings();
env.put(Context.INITIAL_CONTEXT_FACTORY,"weblogic.jndi.WLInitialContextFactory");
env.put("java.naming.provider.url","t3://localhost:7001");
ioUtilityFactory = new tcUtilityFactory(env,"xelsysadm","abcd1234");
catch(tcAPIException ae)
System.out.println("Error In createConnection:tcAPIException "+ae.toString());
catch(tcChallengeNotSetException cnse)
System.out.println("Error In createConnection:tcChallengeNotSetException "+cnse.toString());
catch(tcLoginAttemptsExceededException laee)
System.out.println("Error In createConnection:tcLoginAttemptsExceededException "+laee.toString());
catch(tcPasswordResetAttemptsExceededException praee)
System.out.println("Error In createConnection:tcPasswordResetAttemptsExceededException "+praee.toString());
catch(tcUserAccountDisabledException uade)
System.out.println("Error In createConnection:tcUserAccountDisabledException "+uade.toString());
catch(tcUserAccountInvalidException uaie)
System.out.println("Error In createConnection:tcUserAccountInvalidException "+uaie.toString());
catch(tcUserAlreadyLoggedInException uale)
System.out.println("Error In createConnection:tcUserAlreadyLoggedInException "+uale.toString());
catch(Exception e)
System.out.println("Error In createConnection:Exception "+e.toString());
public void createUser()
System.out.println("<<< In createUser Fn >>>");
try
tcUserOperationsIntf moUserUtility = (tcUserOperationsIntf)ioUtilityFactory.getUtility("Thor.API.Operations.tcUserOperationsIntf");
HashMap user = new HashMap();
user.put("Users.User ID","OIM-API-SCH");
user.put("Users.First Name","Oracle-SCH");
user.put("Users.Middle Name","JAVA-SCH");
user.put("Users.Last Name","SUN-SCH");
user.put("Organizations.Key","1");
user.put("Users.Role","Full-Time");
user.put("Users.Xellerate Type","End-User");
user.put("Users.Password","password");
long l = moUserUtility.createUser(user);
System.out.println("CreatingUser Done.....");
catch(tcAPIException ae)
System.out.println("Error In createUser:tcAPIException "+ae.toString());
catch(Exception e)
System.out.println("Error In createUser:Exception "+e.toString());
After writing above code ,we have to create jar file.
Steps To Be Follwed In OIM Design Console
1)Copy jar file in ScheduleTask folder of your OIM server installation.
2)Expand administration tree & select TaskScheduler.
3)Create new task & in class name textfield we have to mention package.classname & mention appropriate values in other textfields & execute it.
4)Check output.We need to override 2 methods while extending from SchedulerBaseTask i.e
init() :- this method is run before execute by the scheduler .
execute() :- is executed by the scheduler.
Revised code :-
package oimscheduler;
import java.util.HashMap;
import Thor.API.Operations.tcUserOperationsIntf;
import Thor.API.Exceptions.tcAPIException;
import com.thortech.xl.scheduler.tasks.SchedulerBaseTask;
public class Scheduler extends SchedulerBaseTask
tcUserOperationsIntf moUserUtility = null;
@Override
public void init()
try
System.out.println("In Init");
moUserUtility = (tcUserOperationsIntf) this.getUtility("Thor.API.Operations.tcUserOperationsIntf");
catch (tcAPIException e)
e.printStackTrace();
protected void execute()
try
System.out.println("Executing Scheduler.....");
createUser();
System.out.println("Back In execute fn !!!");
catch(Exception e)
System.out.println("Error In execute : "+e.toString());
public void createUser()
System.out.println("<<< In createUser Fn >>>");
try
HashMap user = new HashMap();
user.put("Users.User ID","OIM-API-SCH1");
user.put("Users.First Name","Oracle-SCH1");
user.put("Users.Middle Name","JAVA-SCH1");
user.put("Users.Last Name","SUN-SCH1");
user.put("Organizations.Key","1");
user.put("Users.Role","Full-Time");
user.put("Users.Xellerate Type","End-User");
user.put("Users.Password","password");
long l = moUserUtility.createUser(user);
System.out.println("CreatingUser Done.....");
catch(tcAPIException ae)
System.out.println("Error In createUser:tcAPIException "+ae.toString());
catch(Exception e)
System.out.println("Error In createUser:Exception "+e.toString());
Edited by: Rahul Shah on Jul 11, 2011 4:16 AM -
Calling OIM API from a remote system
Hi.
I have OIM 9031 server installed on a computer HostA. And I have multiple copies of the 3rd party java program installed on HostB, HostC and so on.
I need to be able to call some OIM API from that custom java program (for example, receive the list of active users from OIM server).
According to OIM documentation, I can use Remote manager to manage users on non-network awared systems.
But what if I use Remote manager for calling remote OIM API ? Is that possible?
Or are there any easier ways to achieve my goal ?The installer in the AD sync connector is provided because in addition to having the OIM API client, there is a DLL that needs to be installed and registered to capture the plaintext password. It is not necessary to have an installer, but it might be be a convenience if you are deploying to many machines.
Here is some code to get you started:
import Thor.API.tcUtilityFactory;
import com.thortech.xl.util.config.ConfigurationClient;
import java.util.Hashtable;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
public class TcUtilFactory {
Log log = LogFactory.getLog("OIMCLIENT.UTILITY");
private tcUtilityFactory factory = null;
private Hashtable env = null;
public TcUtilFactory() throws Exception {
// you can also set these system properties on the command line
System.setProperty("XL.HomeDir", "/opt/oimclient);
System.setProperty("java.security.policy", "config/xl.policy");
System.setProperty("log4j.configuration", "config/log.properties");
System.setProperty("java.security.auth.login.config", "config/auth.conf");
ConfigurationClient.ComplexSetting configClient = ConfigurationClient
.getComplexSettingByPath("Discovery.CoreServer");
env = configClient.getAllSettings();
try {
factory = new tcUtilityFactory(env, "xlsysadm", "xelsysadm");
} catch (Exception e) {
// handle exceptions thrown by tcUtilityFactory constructor
From here you can write whatever methods you need going against tcUtilityFactory. Also note that you will need many of the jars from your lib directory as well as the properly configured xl.config and other files in the config directory that the design console client uses (I usually just copy them from that install). Last you will need to make sure you have the required jars specific to you app server (the ones you need to copy over during the design console install) -
Enabling a User through OIM API
Hi I am trying to enable a user through OIM API, However the end date is already passed for that user, I am setting up a new end date through the Program (showm below). However the update user is not working (i am not sure).
Map usermap = new HashMap();
usermap.put("Users.User ID", User_id );
Map grpmap = new HashMap();
grpmap.put("Groups.Group Name", Group_Name);
tcResultSet ts = userClient.findUsers(usermap); //find all users
String existing_end_date = ts.getStringValue("Users.End Date");
tcResultSet tg = groupClient.findGroups(grpmap); //find requireq group
long ukey = ts.getLongValue("Users.Key");
long gkey = tg.getLongValue("Groups.Key"); //find group key
// ENABLE THE USER
java.util.Date new_end_date = new java.util.Date(111,1,1);
Calendar cal = Calendar.getInstance();
cal.setTime(new_end_date);
DateFormat dateFormat = new SimpleDateFormat("yyyy-MM-dd hh:mm:ss");
String Str1 = dateFormat.format(cal.getTime());
String Str2 = existing_end_date + " 12:00:00";
System.out.println(User_id+" OLD End Date:" + Str2 + " New End Date: " + Str1);
Map usermap2 = new HashMap();
usermap2.put("Users.User ID", User_id );
usermap2.put("Users.End Date", Str1);
userClient.updateUser(ts,usermap2);
userClient.enableUser(ukey);
I am getting the following error:
U0000018 OLD End Date:2009-09-30 12:00:00 New End Date: 2011-02-01 12:00:00
2/12/2010 15:02:53 oracle.j2ee.rmi.RMIMessages EXCEPTION_ORIGINATES_FROM_THE_REMOTE_SERVER
WARNING: Exception returned by remote server: {0}
Thor.API.Exceptions.tcAPIException: The user cannot be enabled because the end date is passed.
Not sure why it is happening. It looks like the Updateuser is not working, or something else?
Please advise. Thanks in advance.Hi Suren,
thanks for the note.
I found that as soon as I enable the user, I am getting the followimg messages in the opmn logs:
INFO,06 Dec 2010 10:55:41,841,[XELLERATE.JAVACLIENT],System Event Handler: Validating Organization for an User.
INFO,06 Dec 2010 10:55:41,944,[XELLERATE.JAVACLIENT],System Event Handler: Triggering Processes related to User.
INFO,06 Dec 2010 10:55:42,402,[XELLERATE.JAVACLIENT],System Event Handler: Enabling the User
INFO,06 Dec 2010 10:55:42,421,[XELLERATE.JAVACLIENT],System Event Handler: Validating Organization for an User.
INFO,06 Dec 2010 10:55:42,427,[XELLERATE.JAVACLIENT],System Event Handler: Triggering Processes related to User.
INFO,06 Dec 2010 10:55:42,439,[XELLERATE.JAVACLIENT],System Event Handler: Changing application data based on Organization change.
INFO,06 Dec 2010 10:55:42,442,[XELLERATE.JAVACLIENT],System Event Handler: Auto-Group Membership Event.
INFO,06 Dec 2010 10:55:43,715,[XELLERATE.JAVACLIENT],System Event Handler: Evaluating User Policies
So, the access policies are getting evaluated, triggering provisioning processes.
What I am planning to do is, to disable the access policies and try to run the Program.
Because of this issue, my Program is throwing an error (until I looked into the opmn logs, it doesn't make sense).
6/12/2010 10:55:50 oracle.j2ee.rmi.RMIMessages EXCEPTION_ORIGINATES_FROM_THE_REMOTE_SERVER
WARNING: Exception returned by remote server: {0}
Thor.API.Exceptions.tcAPIException: Error occurred enabling Xellerate User instance.
Regards
Vijay Chinnasamy -
OIM API portablity issue with OIM 9.1 / Weblogic 10.3
Hi , We have a existing piece of code which does some User Mutation through OIM API.
[I am not well versed with OIM ]
The code was running fine with Weblogic 8.3 and previous OIM version.
Here is the piece of code.
logger.info("Initializing OIM Params from config location:" oimConfigFileUtil.getOIMConfigBase());+*
+ System.setProperty("XL.HomeDir", oimConfigFileUtil.getOIMConfigBase().getAbsolutePath());+
+ System.setProperty("java.security.auth.login.config", oimConfigFileUtil.getOIMAuthWLFile().getAbsolutePath());+
+ ConfigurationClient.ComplexSetting configClient = ConfigurationClient.getComplexSettingByPath("Discovery.CoreServer");+
+ env = configClient.getAllSettings();+
*+ try {+*
+ oimAccessFactory = new tcUtilityFactory(env, oimConfigFileUtil.getUserID(), oimConfigFileUtil.getPassword());+
I traced all the dependecy's for this piece of code.
If I run this with Weblogic.jar[8.1] it gives me
java.io.InvalidClassException: com.thortech.xl.dataaccess.tcDataSet; local class incompatible: stream classdesc serialVersionUID = -5446056666465114187, local class serialVersionUID = -8857647322544023100*
With the compatablity issue I substituted with weblogic.jar:10.3 , now its giving me all classpath issues.
Can someone layout the exact jars that are required for this to work?
Thanks
VigneshInstalll a Design Console. Copy any files that are required. Then take the class paths that are listed in the classpath and basecp files and put those into your application classpath files.
-Kevin -
Hi All,
Do we have any OIM API to validate the challenge questions and challenge responses specifically?
I was trying to do reset password functionality using OIM API resetForgottenPassword(). But, for the first time it was resetting the password perfectly then onwards from 2nd time... it is giving an error message as mentioned below.
ERROR,13 Apr 2010 06:16:55,982,[XELLERATE.SERVER],Class/Method: tcUSR/changePasswordForSelf Error :User password cannot be changed.
ERROR,13 Apr 2010 06:16:55,984,[XELLERATE.SERVER],Class/Method: tcUnauthenticatedOperationsBean/resetForgottenPassword encounter some problems: Error occurred while resetting the password.
ERROR,13 Apr 2010 06:16:55,984,[XELLERATE.SERVER],Class/Method: tcUnauthenticatedOperationsBean/resetForgottenPassword encounter some problems: Error occurred while resetting the password.
Thor.API.Exceptions.tcAPIException: Error occurred while resetting the password.
at com.thortech.xl.ejb.beansimpl.tcUnauthenticatedOperationsBean.resetForgottenPassword(Unknown Source)
at com.thortech.xl.ejb.beans.tcUnauthenticatedOperationsSession.resetForgottenPassword(Unknown Source)
at com.thortech.xl.ejb.beans.tcUnauthenticatedOperationsSession_j7uqe_EOImpl.resetForgottenPassword(tcUnauthenticatedOperationsSession_j7uqe_EOImpl.java:77)
at com.thortech.xl.ejb.beans.tcUnauthenticatedOperationsSession_j7uqe_EOImpl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.ServerRequest.sendReceive(ServerRequest.java:174)
Can anybody please help me on thing. Or else please suggest any workaround for this.
Thanks in Advance.
Siva Pokuri.Try fetching the challengequestions based on the user key. Try the following code snippet if it works.
public HashMap getChallengeQuestions(final String userId) {
tcUserOperationsIntf userObj;
final HashMap responseMap = new HashMap();
final HashMap questionAnswersMap = new HashMap();
ArrayList list = null;
try {
final tcUtilityFactory utilFact = AppContext.getUtilityFactory();
userObj = (tcUserOperationsIntf) utilFact
.getUtility("Thor.API.Operations.tcUserOperationsIntf");
final HashMap map = new HashMap();
map.put("Users.User ID", userId);
final tcResultSet usrRS = userObj.findUsers(map);
long userKey = -1;
if (usrRS.getRowCount() > 0) {
userKey = usrRS.getLongValue("Users.Key");
return map;
final tcResultSet rs = userObj.getChallengeValuesForUser(userKey);
final int rowCount = rs.getRowCount();
if (rowCount > 0) {
list = new ArrayList();
for (int i = 0; i < rowCount; i++) {
rs.goToRow(i);
final String question = rs.getStringValue("Users.Password Challenge Question.Question");
final String answer = rs.getStringValue("Users.Password Challenge Question.Answer");
//try validating here with custom logic
list.add(question);
questionAnswersMap.put(question, answer);
} -
I am using OIM 9.1.0.1 as a standalone system.
i want to call OIM API to create user.
I have a created a custom JSP page.
How can i call OIM API to create user in OIM.
Thanks.{color:#000080}You can use the following to invokel OIM APIs from external WebApps:
{color} private static tcUtilityFactory _util = null;
static {
ConfigurationClient.ComplexSetting config = ConfigurationClient
.getComplexSettingByPath("Discovery.CoreServer");
try {
final Hashtable env = config.getAllSettings();
_util = new tcUtilityFactory(env, "xelsysadm", <pwd>);
} catch (Exception e) {
e.printStackTrace();
public Object getObjectReference(String qualifiedObjectName) {
return util == null ? null : (tcUtilityOperationsIntf) util
.getUtility(qualifiedObjectName);
{color:#000080}Create an instance of the above class and invoke 'getObjectReference(...)'{color}
E.g.:
tcUserOperationsInft _usrOpRef = (tcUserOperationsIntf) )new <ClassName>().getObjectReference("Thor.API.Operations.tcUserOperationsIntf");and then invoke any of the methods from user API class
{color:#000080}Hope this helps{color}
Now for creating user, all you have to do is:
Maybe you are looking for
-
How to load a variable from an XML file?
I need to use an XML file so I can update one variable every once in a while. Let's say I want to load Variable "foofie" into a flash movie, and the XML says that "foofie" is 11. What code do I put in my flash file to read what 'var foofie' is from a
-
How do I save a Mac book on a PC?
I bought a Mac-formatted book from the iTunes Store, installed Windows 8.1 Note, converted and opened the book. How do I save the book in my directory for easy access? I don't want to have to go back into iTunes, find it, convert it, and open it ev
-
How to make HIDDEN application ??
Hi, i want to make a local messanger which is to be used only for one way communication i.e from server to client... so i will be having one server running on my computer and on all other client computers there will me a client program ... we could s
-
Hi I created dynamic report on function returning query. Now I have problem with number columns, because columns aligne left. Is it some simple solution to aligne right ? Regards
-
Can the 21.5 inch imac run the new final cut
I am going to be selling my g5 and using part of that money to purchase a 21.5 inchimac, my question is can the new imac run final cut and all its components with no problem. Does it really make a difference which version (graphics card) I get with t