ADF Security : identity store : tables in a SQL database

Similar Messages

• Dynamic table pulled from SQL database, Need to Search

  My table results are not static, they are pulled into a
  dynamic table from a SQL database. Each table displays 10 records
  with an option at the bottom to display additional records
  (next/previous), for my query. I also have an option set up to
  allow users to click for a detail view of a record in the table. If
  the table data was static, I would be able to set up a search
  option and a results page for it, but I'm dealing with dynamic data
  on an .ASP page. I'd like to set up a search box to limit the
  records displayed in the table. I haven't found any code samples
  that are designed for dynamic data.
  Here is a copy of the code from my table.

  Hi,
  I think the code on this URL will get you the solution
  http://www.asp.happycodings.com/Array/code3.html
  Cheers,
  ~Maneet

• What datatype should i use to store imaq image in sql database?

  Hi there i am thinking of saving the imaq image into database for retrieval in my website so that it's like a stream but i don't like what datatype does labview store the image as.

  You have two options for storing images in a relational database:
  A.  Don't put it in a database.  Store it as a file, and store the pointer int he DB (as mentioned above).
  B.  Store it as a blob datatype.  See here for more info.

• How to get the value from a label and store it in an sql database?

  I have tried all kinds of different ways and I always get the error that it is not a member of string or whatever data type I try.
  Try
  scoringlbl.Text.Validate()
  scoreinglbl.Text.HighScoresBindingSource.EndEdit()
  scoringlbl.Text.HighScoresTableAdapter.Update(Me.ScoresDataSet.HighScores)
  MsgBox("Update successful")
  Catch ex As Exception
  MsgBox("Update failed")
  End Try

  I know nothing about data binding, but maybe this works, or at least point you in the right direction:
  Try
  scoringlbl.Validate()
  HighScoresBindingSource.EndEdit()
  HighScoresTableAdapter.Update(ScoresDataSet.HighScores)
  MsgBox("Update successful")
  Catch ex As Exception
  MsgBox("Update failed")
  End Try
  Armin

• ADF Security & DB roles

  Adding on behalf of one of my colleague.
  ADF Security.
  Currently we have roles as database objetcs. These roles are assigned to different users.
  We need to populate these roles as Application Roles in ADF Security.
  Please let us know is there any suggestion available for this.
  Best Regards,
  Lokanath

  fyi
  Frank Nimphius wrote:
  ... 1. roles in a table
  In this case use SQL Authenticator in WLS ...Be wary when using ADF Security (OPSS) with a SQLAuthenticator.
  This is feedback I got in SR 3-4124753004 :
  "If the you want to use DB as the identity store, then the supported way is to buy OVD server license and configure DB adapter in OVD and then configure an OVD authenticator in Weblogic. SQLAuthenticator will not be used as identity store. And, we do not recommend to use LibOVD for DB identity store. OVD server is the recommended and supported way."
  related bugs are :
  - bug 13876651, "FMW CONTROL SHOULD NOT ALLOW MANAGING USERS GROUPS FROM SQL AUTHENTICATOR"
  - enhancement request 12864498, "OPSS : ADDMEMBERSTOAPPLICATIONROLE : THE SEARCH FOR ROLE FAILED"
  related forum threads are :
  - "ADF Security : identity store : tables in a SQL database"
  - "OPSS : addMembersToApplicationRole : The search for role failed"
  regards
  Jan Vervecken

• Best way Of providing user authentication using ADF security...

  Hi,
  I have a web application . I want to implement to ADF security to the application.. What is the best approach of doing this? I have the user information in the database tables along with the roles and other information. I want to these tables for authorization ?
  What is the best approach to do this? It would be great if u could help ..
  I ma using 11g release 2
  Thanks in advance.
  Rakesh

  Hi,
  Thanks for the quick response.
  I have been looking at the post but i found one of the forum post in which the person was saying the SQLAuthentication doesnt work ..
  "Be wary when using ADF Security (OPSS) with a SQLAuthenticator.
  This is feedback I got in SR 3-4124753004 :
  "If the you want to use DB as the identity store, then the supported way is to buy OVD server license and configure DB adapter in OVD and then configure an OVD authenticator in Weblogic. SQLAuthenticator will not be used as identity store. And, we do not recommend to use LibOVD for DB identity store. OVD server is the recommended and supported way."
  related bugs are :
  - bug 13876651, "FMW CONTROL SHOULD NOT ALLOW MANAGING USERS GROUPS FROM SQL AUTHENTICATOR"
  - enhancement request 12864498, "OPSS : ADDMEMBERSTOAPPLICATIONROLE : THE SEARCH FOR ROLE FAILED"
  related forum threads are :
  - "ADF Security : identity store : tables in a SQL database"
  - "OPSS : addMembersToApplicationRole : The search for role failed"
  regards
  Jan Vervecken"
  Is this true?
  Rakesh

• [JDev TP3] : Abou ADF Security ?

  i tryed to develop application that mange several (assignment/task/project) and using adf security that cofigure users and roles from database BUT i have for every task same types of roles For Example:
  i have
  task A ,task B,task C,.....
  for every task i have roles Manager,Technician,User
  note: the task created from application when i need.
  i know the users for every task from DB users table when i create a task, and i know them roles but how to configure the task in ADF security to determine that this user(Whatever role) for this task?
  can i do like this by ADF Security?

  Hi,
  ADF Security operates on the class level, not the data level. A task is an instance of an Entity (which most likely is task). Now the task might be exposed in a table. On this table ADF Security allows you to set Create, Edit, View, etc. privileges based on a role you are in. This however. So if there is a manager role then this manager can perform the oprations on the iterator or action.
  If a task assigns the manager role to a user just for this task, then ADF Security is not fine grained enough. In this case you need to expose a model (e.g. on the task table) that allows to use EL to get the task and the associated roles/role-holder to then implement the security with EL. Note that JAAS does not have instance specific authorization by design
  Frank

• ADF security for authorizaion

  HI All,
  I want to implement ADF security without authentication i.e. Authentication is already done at a another parent website.
  We get the user credentials and role details ,We just want to use the authorization part of adf security for role base check and url checks ,
  How can I implement the same using ADF security only.
  As per my current database structure ,I am storing role and privileges in the database ,but not the user credentials .
  Currently I m using Jdeveloper 11.1.1.4 and weblogic 10.3.4.

  Hi,
  for ADF Security, authentication must be be through Java EE authentication (WLS web based authentication). If you need SSO, configure SSO, but you cannot have authorization only
  Frank

• How to create an SQL Database using LabVIEW??

  Hi all,
  I have been using LabVIEW for quite a long time but now I am doing something which I am totally new to. I have a VI which gives out a table as output. What I am trying to do is, I want to create an SQL databse and save this table in the database and I want to pass the value of this table to the SQL Database once in  every 24 hours. As I dont have any knowledge of My SQL I am totally stuck.
  Can anyone help me by telling me how to do this.?? An example code will be well appreciated.
  Regards,
  Nitz..

  Hi Nitzz,
  what have you done and where do you have problems? Did you make a search here in the forum?
  http://forums.ni.com/t5/forums/searchpage/tab/message?q=create+database#message-list
  Mike

• ADF Security integration with Web Logic Security using SQL authenticator

  Hi,
  I was trying to find a suitable way of handling the following requirements:
  1. Administrators should be able to create the roles, groups, users and assign users to roles.
  2. User, Roles, Groups should be stored in DB and Users need to be authenticated accordingly.
  3. I need to be able to map roles with security permissions on Taskflows, JSF Pages, on UI level using groovy expressions and even at Entities level.
  I performed the following tasks:
  1. I created back end Security tables, created SQL authenticator as provider and defined the queries in it then I created ADF Application and used JMX APIs to call the SQL authenticator to perform its operations.
  2. I defined the roles and respective resource permissions in ADF i.e. Jazn xml file because my requirement no 3 would not be achievable without using ADF security.
  Now in this scenario how I can login a user in ADF context and assign roles programmatically that I authenticated from JMX APIs? Or is there any other suitable way to handle these requirements?
  Thanks.
  -Moeen

  Hi Charu,
  Thanks for your reply.
  Can we programmatically add a user in adfsecuritycontext as a currently logged in user, a user which is not present in jazn.xml file? If yes then can we programmatically assign the roles which are defined in jazn.xml to that specific user?
  Moeen

• Problem with ADF Security / SQL Authenticator after upgrade to 11.1.1.6

  Hi,
  We have an ADF application built with JDeveloper 11.1.1.2 that's been in production for a couple of years. Now we are in the process of upgrading to 11.1.1.6 so I have upgraded WLS and ADF in a test environment and re-deployed the application there. The application uses users and groups from database using SQL Authenticator configured in WLS. This worked fine in the old version but now after the upgrade we can't log in with credentials from the database. I can log in if I add a user to the default authenticator. We didn't touch any of the authenticator settings or security realm configurations during the upgrade. Both authenticators are marked as SUFFICIENT, as they have always been.
  Has something changed in the way SQL Authenticator is used since 11.1.1.2? What could be the problem?
  Regards,
  Joonas

  Answering myself here: after recreating the SQL Authenticator and the ADF Security configuration logins are working again. Don't know where the problem was though.

• How to retrieve ADF security username in PL/SQL?

  I would like to create a database trigger to log the change to a table and would like to catch the username logged in through ADF security setup.
  How do I retrieve this user name (not the database username) in the trigger?
  Thanks,
  Richard

  Richard,
  Welcome to OTN.
  Always mention your jdev and clear usecase (recommended to read this announcement first : https://forums.oracle.com/forums/ann.jspa?annID=56).
  What trigger do you mean? Logged in username for an adf app can be caught using #{securityContext.userName} groovy. You can use this to pass this wherever required. Set this to the place required accordingly, so that you can get it in the trigger.
  -Arun

• How to store Custom principal in Oracle ADF security Framework

  Hi guys, hope somebody will help me out.
  I am facing the following issue, i need to have a custom principal instance after oracle adf security frame work does authenticate and authorize user.
  My custom principal instance should have per say addition attribute, say clientId. I am using Jdeveloper 11.1.2.4 and i setup weblogic to use ReadOnlySQLAuthenticator(it does most of desired functionality).
  As far as i get it, i would have to implement a custom provider to have a chance to implement a custom LoginModule, so i can set it up to use my custom principal, am i right ? and i am not sure how ReadOnlySQLAuthenticatorImpl that i chose in weblogic is bound to
  DBMSAtnLoginModuleImpl (i mean how does it knows what LoginModule should it use) and if i can , how can i make  ReadOnlySQLAuthenticatorImpl  use my custom LoginModule.
  Sorry if i violated forum rules.

  and i am not sure how ReadOnlySQLAuthenticatorImpl that i chose in weblogic is bound to
  DBMSAtnLoginModuleImpl (i mean how does it knows what LoginModule should it use)
  This info is returned by getLoginModuleConfiguration(): AuthenticationProvider (BEA WebLogic Server 10.0 API Reference)
  Dario

• ADF Security against database?

  I am working with JDeveloper 10.1.3.4 on a project which uses adf/bc and adf faces/jsf 1.1; the application is deploying to iAS 10.1.3.4 and is hooked as a mid-tier instance via SSO to an infra iAS instance on another machine.
  How do you change ADF Security to reference a database table to find out settings for page/iterator/attribute security settings?
  Most of the existing code in this environment is Web Pl/sql toolkit and portal work. I am adding ADF apps. They would like to control what the different roles have access to via the database...hence this question.
  Normally with ADF Security you use an editor in JDeveloper which you can access from within the page def file in the structure pane within JDeveloper; I think this changes system-jazn.xml. If you, instead, want these settings to be located within a database table, what do you have to do?
  In my initial research I am thinking somehow I must create an override for ADFPermission.getContext() somehow...but I have not figured out if that is right or not yet.
  It may just be easier to re-invent the wheel: just do things programmatically using Java; but there is a lot of structure inherant in ADF Security that I would be reproducing if I go that route, I think.
  Anybody have any ideas?
  I am continuing to research this issue, but I think this is an unusual use-case; so I am not expecting to find this answer anywhere in particular. Maybe somebody knows this off the top of their head.

  Right, Frank; I mostly meant that it would help me learn more about the subject of J2EE permissions. Vik has pointed me in the direction of the Sun Java Forums for more information on this topic, which I will hopefully get a chance to pursue.
  Thank you for getting back to me. Thank you again, also, for all your work on custom login modules; I have used that work of yours several times professionally. It is just that this client I am working with now is satisfied with their SSO/LDAP setup...they just want to store permissions in the database also.

• JDev11 R.1. ADF Security Authorization

  Hi,
  I would like to know if it might be possible to use authenticatication via RDBMS authentication provider of Weblogic App. Server and ADF Security Authorization together in a JDev 11 application?. I am reading documentation and it says that; 'ADF Security relies on the jazn-data.xml file for the policy store whether you are using the XML-based identity store or the LDAP identity store. One could define roles and its access rights in jazn-data.xml and might expect authentication and isUserInRole services coming from the authentication service without defining users (role members) at design time. Is it or will it be possible in future?
  Best Regards.

  Hi
  I think it is too early and I don't know if they will ever build this. ( because they also have to support other app servers). Is RDBMS authentication provider of Weblogic App. Server a JAAS implementation?
  in TP4 you had a db login module , don't know if this is supported in 11g production.
  jps-config.xml
  <serviceInstance provider="jaas.login.provider" name="testlogin">
  <description>Sample LoginModule</description>
  <property value="oracle.security.jazn.login.module.db.DBTableOraDataSourceLoginModule" name="loginModuleClassName"/>
  <property value="REQUIRED" name="jaas.login.controlFlag"/>
  <property value="ovs_user" name="table"/>
  <property value="jdbc/OVSDS" name="data_source_name"/>
  <property value="role_name" name="groupMembershipGroupFieldName"/>
  <property value="password" name="passwordField"/>
  <property value="ovs_user_role_view" name="groupMembershipTableName"/>
  <property value="role_name" name="usernameField"/>
  <property value="role_name" name="pw_encoding_class"/>
  <property value="oracle.security.jazn.login.module.db.util.DBLoginModuleMD5Encoder" name="groupMembershipGroupFieldName"/>
  </serviceInstance>
  <serviceInstance provider="jaas.login.provider" name="oracledb.loginmodule">
  <property value="true" name="debug"/>
  <property value="true" name="addAllRoles"/>
  <property value="passwd" name="passwordField"/>
  <property value="role_name" name="groupMembershipGroupFieldName"/>
  <property value="jdbc/authschemaDS" name="data_source_name"/>
  <property value="REQUIRED" name="jaas.login.controlFlag"/>
  <property value="application_roles" name="groupMembershipTableName"/>
  <property value="oracle.security.jazn.login.module.db.DBTableOraDataSourceLoginModule" name="loginModuleClassName"/>
  <property value="FINEST" name="log.level"/>
  <property value="username" name="usernameField"/>
  <property value="application_users" name="table"/>
  <property value="username" name="user_pk_column"/>
  <property value="username" name="roles_fk_column"/>
  <property value="tolower" name="casing"/>
  <property value="oracle.security.jazn.login.module.db.util.DBLoginModuleClearTextEncoder" name="pw_encoding_class"/>
  </serviceInstance>
  thanks Edwin
  Edited by: biemond on Oct 19, 2008 10:50 AM