ADF Security integration with Web Logic Security using SQL authenticator

Hi,
I was trying to find a suitable way of handling the following requirements:
1. Administrators should be able to create the roles, groups, users and assign users to roles.
2. User, Roles, Groups should be stored in DB and Users need to be authenticated accordingly.
3. I need to be able to map roles with security permissions on Taskflows, JSF Pages, on UI level using groovy expressions and even at Entities level.
I performed the following tasks:
1. I created back end Security tables, created SQL authenticator as provider and defined the queries in it then I created ADF Application and used JMX APIs to call the SQL authenticator to perform its operations.
2. I defined the roles and respective resource permissions in ADF i.e. Jazn xml file because my requirement no 3 would not be achievable without using ADF security.
Now in this scenario how I can login a user in ADF context and assign roles programmatically that I authenticated from JMX APIs? Or is there any other suitable way to handle these requirements?
Thanks.
-Moeen

Hi Charu,
Thanks for your reply.
Can we programmatically add a user in adfsecuritycontext as a currently logged in user, a user which is not present in jazn.xml file? If yes then can we programmatically assign the roles which are defined in jazn.xml to that specific user?
Moeen

Similar Messages

Integrating Oracle EBS with web services which use SAML authentication

Hi,
I have a requirement to invoke web service using PL/SQL from a Custom Form of EBS.
The web Service is configured to use SAML as authentication mechanism.
Coming to question!
1) How do I make my EBS integrate with a SAML provider preferably (Oracle Identity Federation) ?
2) How do i get the SAML token in my PL/SQL and pass it on to the web service?
Regards
Dharmvir

user1983888 wrote:
Hi ,
We have Oracle EBS R12 (12.1.2) with Oracle Database 11gR2 (11.2.0.2) Database on Linux env.
We want to implement Oracle Database Vault 11gR2. We are referring to Note: Integrating Oracle E-Business Suite Release 12 with Oracle Database Vault 11gR2 [ID 1091083.1].
Do we need to install Oracle Database 11gR2 (s/w only) again on the Oracle Database Server or can we use the existing Oracle EBS Database 11gR2 Home which is already on 11.2?
Regards,
ThiruAs mentioned in the doc "If your E-Business Suite R12 is already integrated with 11gR2 database, you just need to enable Database Vault 11gR2 & register it with the database as per Task 3", so no installation of ORACLE_HOME is required and you just need to "Register Oracle Database Vault".
Thanks,
Hussein

Integration of Web Logic Server with OAM 11g

Hi all
I'm trying to integrate OAM 11g with Web Logic server by following the steps mentioned in below link.
http://download.oracle.com/docs/cd/E14571_01/core.1111/e10043/osso.htm#CHDFIGDC
I placed oamAuthnprovider.jar file in mbean types folder and created a provider named OAMAuthn as per the link to use oam Authenticator.
I deployed a sample application in weblogic server by mentioning the Active directory group name in web.xml and weblogic.xml files as shown below:
web.xml :
<auth-constraint>
<role-name>Administrators</role-name>
</auth-constraint>
<login-config>
<auth-method>BASIC</auth-method>
</login-config>
<security-role>
<description>Authenticated Users</description>
<role-name>Administrators</role-name>
</security-role>
weblogic.xml :
<security-role-assignment>
<principal-name>Administrators</principal-name>
<role-name>Administrators</role-name>
</security-role-assignment>
When i try to acces my application http://<weblogic host>:<port>/<sample application>/<sample welcome.jsp> with the user credentials present in the AD group (Administrators).,i'm getting the Basic pop-up but getting an Error-403 forbidden.
I'm able to access the application if i create a user named Administrator but not with the Users under Administrators group.
can anyone please help me and tell me whether it a valid behaviour or not?
I'm really sorry for my long post.
Thanks & Regads,
Swathi.

Hi,
Obiee11.1.1.5.0/6.0 both version supporting weblogic 10.3.5.0/6.0 both are no issues.
http://blog.whitehorses.nl/2012/02/26/a-few-quick-tips-for-upgrading-ofm-11g-to-patch-set-5/
also refer
http://docs.oracle.com/cd/E23943_01/bi.1111/e16452/bi_plan.htm#BABECJJH
Thanks
Deva

[OSB Kernel:398133]The service is based on WSDL with Web Services Security

Team,
I need to use the wsdl given by external client. When I create a osb business service, I am receiving the below error.
OSB Kernel:398133]The service is based on WSDL with Web Services Security Policies that are not natively supported by Oracle Service Bus. Please select OWSM Policies - From OWSM Policy Store option and attach equivalent OWSM security policy. For the Business Service, either you can add the necessary client policies manually by clicking Add button or you can let Oracle Service Bus automatically pick and add compatible client policies by clicking Add Compatible button. ...
WSDL:
http://personator.melissadata.net/v3/SOAP/ContactVerify
We don't have OWSM set up. Is there any workaround that I can use to connect to this service for OSB?

As a workaround, you can try to remove the Policy definition and reference from the copy you will import in OSB.
I would recommend to add OWSM to your domain. It's a straight forward process.
Regards,
Fabio.

Problem in submit button on adobe form integrated with web dynpro

Hello,
I'm facing prob in triggering web dynpro event onSubmit for Interactive form.
I've created a submit button from web dynpro activex pallete on adobe form (integrated with web dynpro) to send the form as email.
Then in the web dynpro view where this form is embedded i have created an action against onSubmit event and called a method within this.
However, on clicking Submit button this event is not getting triggered.
Please let me know what is lacking in this process?
Thanks.

Hi,
I am also facing the same problem. i have developed a simple scenario under which user have to input his/her details and on submit button it will be updated to database.
I have tried the above solution but after adopting this solution all the editable fields become non-editable.
so the above solution is not working for me could you help me out.
I think ... try this....
When you create the Adobe Form from WebDynpro, you need to follow one step in SFP Transaction or inSE80 transaction. Open the Adobe Form in any one the transaction and now in SAP menu bar "Utilities" in that you will find the "INSERT THE WEBDYNPRO SCRIPT" just click on that one. Then you will see a new Script Object is being created with the name "ContainerFoundation_JS" under the "Variables" in the Heirarchy of the Object Pallete of the Adobe Form.
This step is mandatory to use the SUBMIT Button of the "WebDynpro Native", to trigger the OnSubmit event of the WebDynpro.
Thanks
Edited by: shailendra2sap on Mar 6, 2009 12:24 PM

Servicegen error with web logic 8.1

hi,
i m getting :
JBServicegenTask:
BUILD FAILED
C:\Documents and Settings\msa6153\jbproject\testwebserviceproj\build.xml:185: Co
uld not create task or type of type: servicegen.
what is getting wrong here ???
The TraderSession example which comes with web logic 8.1 runs fine for servicegen ... this is driving me crazy .. pls help ...
<?xml version="1.0" encoding="UTF-8"?>
<project default="JB_AllServices">
<target name="JBClient1" depends="JBServicegenTask">
<clientgen
ear="C:/Documents and Settings/msa6153/jbproject/testwebserviceproj/TestApp.ear"
warName="WebModule_1.war" serviceName="TestSessionEJB"
packageName="ejb.generated" autotype="true"
clientJar="C:/Documents and Settings/msa6153/jbproject/testwebserviceproj/GeneratedWebServiceClients/TestSessionEJB_client.jar"
overwrite="false" useServerTypes="false"
keepGenerated="true" generateAsyncMethods="false"
saveWsdl="true" j2me="false" useLowerCaseMethodNames="true"
typePackageName="ejb.generated" usePortNameAsMethodName="false">
<classpath>
<pathelement path="C:\Documents and Settings\msa6153\jbproject\testwebserviceproj\classes;D:\bea\weblogic81\server\lib\weblogic_sp.jar;D:\bea\weblogic81\server\lib\weblogic.jar;D:\bea\weblogic81\server\lib\webservices.jar;D:\bea\jdk141_05\jre\lib\charsets.jar;D:\bea\jdk141_05\jre\lib\ext\dnsns.jar;D:\bea\jdk141_05\jre\lib\ext\ldapsec.jar;D:\bea\jdk141_05\jre\lib\ext\localedata.jar;D:\bea\jdk141_05\jre\lib\ext\sunjce_provider.jar;D:\bea\jdk141_05\jre\lib\im\indicim.jar;D:\bea\jdk141_05\jre\lib\jaws.jar;D:\bea\jdk141_05\jre\lib\jce.jar;D:\bea\jdk141_05\jre\lib\jsse.jar;D:\bea\jdk141_05\jre\lib\rt.jar;D:\bea\jdk141_05\jre\lib\sunrsasign.jar;D:\bea\jdk141_05\lib\dt.jar;D:\bea\jdk141_05\lib\htmlconverter.jar;D:\bea\jdk141_05\lib\tools.jar;"/>
</classpath>
</clientgen>
</target>
<target name="JBServicegenTask">
<servicegen
destEar="C:/Documents and Settings/msa6153/jbproject/testwebserviceproj/TestApp.ear"
overwrite="true" warName="WebModule_1.war" keepGenerated="true">
<service
ejbJar="C:/Documents and Settings/msa6153/jbproject/testwebserviceproj/EJBModule_1.jar"
includeEJBs="TestSessionEJB"
serviceName="TestSessionEJB" serviceURI="TestSessionEJB"
targetNamespace="http://ejb" protocol="http"
expandMethods="false" generateTypes="true" style="rpc" useSoap12="false"/>
<classpath>
<pathelement path="C:\Documents and Settings\msa6153\jbproject\testwebserviceproj\classes;D:\bea\weblogic81\server\lib\weblogic_sp.jar;D:\bea\weblogic81\server\lib\weblogic.jar;D:\bea\weblogic81\server\lib\webservices.jar;D:\bea\jdk141_05\jre\lib\charsets.jar;D:\bea\jdk141_05\jre\lib\ext\dnsns.jar;D:\bea\jdk141_05\jre\lib\ext\ldapsec.jar;D:\bea\jdk141_05\jre\lib\ext\localedata.jar;D:\bea\jdk141_05\jre\lib\ext\sunjce_provider.jar;D:\bea\jdk141_05\jre\lib\im\indicim.jar;D:\bea\jdk141_05\jre\lib\jaws.jar;D:\bea\jdk141_05\jre\lib\jce.jar;D:\bea\jdk141_05\jre\lib\jsse.jar;D:\bea\jdk141_05\jre\lib\rt.jar;D:\bea\jdk141_05\jre\lib\sunrsasign.jar;D:\bea\jdk141_05\lib\dt.jar;D:\bea\jdk141_05\lib\htmlconverter.jar;D:\bea\jdk141_05\lib\tools.jar;"/>
</classpath>
</servicegen>
</target>
<target name="JB_AllServices" depends="JBClient1"/>
</project>

I got the same error.My task is to create a webservices for a ordinary java class using servicegen ant taski got the error message
Error:couldnot create the task or type of type:servicegen
I use the following solution that is
<taskdef name="servicegen"
classname="weblogic.webservices.servicegen.serviceGenTask"/>
for this i got one error :the <taskdef> doesnot support the nested "servicegen"element.
please anybody clarify the error and also give the procedure of creating a webservices for a simple java class using servicegen ant task

Issue in using SQL Authentication in child SSIS packages from Parent SSIS package.

I am trying to provide SQL Authentication mode and credentials at parent package and I am using some child pachnages been called from this package.
How can I resolve this to use SQL authentication.
I am using 2008 Version
Thanks
Sreenath
Sreenath G V

Hi Sreenath,
What issue did you encounter when run the parent package? It should work properly if the SQL Server Authentication is already enabled on the target SQL Server instance and the SQL account credentials are input correctly in the child package.
You may encounter issue if you have enabled Package Configurations for the child pages that use SQL Server authentication and selected to expose the UserName and Password for the SQL Server connection. In this situation, the password won’t be exposed to
the package configurations explicitly, hence, the Dtexec utility cannot fetch the password for the connection and fails the package execution. If it is the issue, you have to specify the password for the SQL Server account in the package configurations file.
Regards,
Mike Yin
TechNet Community Support

BPC_MS ver 10 security integration with BusinessObjects BIP

We have a client that has both BPC for MS ver 10 and BIP 4.1. They want to use the BIP tools such as Web Intelligence to report against the BPC data. They also only want the user running the report to see the data they are allowed to see based on the data access profiles in BPC. How can this be done without maintaining security in both BPC and BIP separately?

Hi Francois & José Jaimes,
BPC for MS is not integrated in Netweaver platform that's why you didn't find any documentation about real estate.
There aren't relations just with BI you can use Xcelsius dashboard or ODBC to read the cubes but I don't think you will found the files to connect with RE (for BI connections see please 1731626 - Data source connectivity options between BusinessObjects BI tools and BPC).
If you need to insert data in BPC from RE you need to export this data in a flat file and after to Import in BPC through the standard import package using transformation and conversion files, to transfer data from BPC to RE use the standard export package.
Regards
Roberto

ADF application integrating with Oracle Web Cache

Hello,
I am trying to integrated my ADF 11g application with Oracle Web Cache. I used this link http://andrejusb.blogspot.com/2010/06/oracle-webtier-11g-configuration-for.html for it.
I am able to access my ADF application using webcache port 7785.
I created few caching rules in the Oracle Web Cache. And in the popular request section of the Oracle Web cache i see jpg,png and other image files cached.
But the issue is when the application access images like /testapp/test/images/abc.jpg?_adf.ctrl-state=5b0s7lzfo_29 . I created a caching rule with regular expression ^/testapp/test/images/[A-Za-z0-9_]*\.(gif|jpeg|png|jpg)\?_adf\.ctrl-state=[A-Za-z0-9_]*$.
But when i access the popular request in em i don't see the URL given above as cached. The caching reason it specifies as URL contains query string.
I am not sure if i need to do anything additional to cache these URL's as well.
Thanks!
Ram

Yes that works. But my question is how to cache the urls which has querystring. I was trying to give a regular expression to match the url so that the url which contains parameters like _afrLoop which changes with each HTTP request can also be cached.

SOAP Request with Web Service Security

Hi masters of XI,
the Oasis standard for web services security saids that exists three levels of security for web services, at higher level is Encryption, middle level is signature and at lower level is authentication with username and password inside the soap envelope.
I need to do a SOAP Request signed with a X.509 certificate and username and password too in SAP PI 7.0 SP11. I can sign the request with X.509 certificate without problems but i can't authenticate the request with username and password in usernametoken element like saids the Oasis standard
<wsse:Security>
<wsse:UsernameToken>
<wsse:Username>XXXX</wsse:Username>
<wsse:Password>XXXXXXXXX</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
How can we send UserNameToken's elements inside SOAP web service envelope
signing with X.509 certificate also? There are any way to do it in the
receiver agreement or receiver SOAP adapter?
thanks.

Hi,
thank you very much for your answers.
I have solved the SSL comunication and i can sign with X.509 certificates. My problem is that in the SOAP envelope of resquest signed only travels the X.509 certificate and I need to send the username security token (wsse:UsernameToken) also.
<wsse:Security>
<wsse:UsernameToken>
<wsse:Username>XXXX</wsse:Username>
<wsse:Password>XXXXXXXXX</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
I can't find the solution to do it. The Netweaver documentation says that Netweaver is able to sign SOAP request with X.509 certificates and is able too for using UsernameToken as part of Oasis standard for web service security. In abap stack of NW you can assign a security profile to a web service call for signing the message or authenticate it with username/password inside SOAP envelope, but in java stack of XI i think that there is no way to do it.
This is my Request:
<?xml version="1.0" encoding="utf-8"?>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soapenv:Header>
    <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
      <wsse:BinarySecurityToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="CertId-71968700">MIIHdTCCBl2gAwIBAgIQOq4nmg5zi4NGsIGjPUZVuTANBgkqhkiG9w0BAQUFADCCAT4xCzAJBgNVBAYTAkVTMTswOQYDVQQKEzJBZ...8d4pAJYk=</wsse:BinarySecurityToken>
      <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="Signature-104376803">
        <ds:SignedInfo>
          <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
          <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
          <ds:Reference URI="#id-104309952">
            <ds:Transforms>
              <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            </ds:Transforms>
            <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
            <ds:DigestValue>R6WE9gs+l496jHCgslgALWswEnE=</ds:DigestValue>
          </ds:Reference>
          <ds:Reference URI="#Timestamp-104310599">
            <ds:Transforms>
              <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            </ds:Transforms>
            <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
            <ds:DigestValue>aiCTZ0WwiZQEv8zVmmf8GLu/bYA=</ds:DigestValue>
          </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>YR9Q5oUA6kFFmPYOIOQPTOgTgapMbkmgdlDM/TZJ2CS8ENAntfsnmpEbpUgOPUVMkgaECog0OKvlADHP0HvJtPdm2NJljZNCCgrk3hlmmtkXkRauVuH5KRiHE5NeWT4+Uspp3ashebu0IuOO66zt4Q=</ds:SignatureValue>
        <ds:KeyInfo Id="KeyId-104377209">
          <wsse:SecurityTokenReference xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="STRId-104377346">
            <wsse:Reference URI="#CertId-71968700" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
          </wsse:SecurityTokenReference>
        </ds:KeyInfo>
      </ds:Signature>
      <wsu:Timestamp xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="Timestamp-104310599">
        <wsu:Created>2008-01-16T21:28:44.081Z</wsu:Created>
        <wsu:Expires>2008-01-16T21:33:44.081Z</wsu:Expires>
      </wsu:Timestamp>
    </wsse:Security>
</soapenv:Header>
And this is the request I need:
<?xml version="1.0" encoding="utf-8"?>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soapenv:Header>
    <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" soapenv:mustUnderstand="1">
      <wsse:BinarySecurityToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="CertId-71968700">MIIHdTCCBl2gAwIBAgIQOq4nmg5zi4NGsIGjPUZVuTANBgkqhkiG9w0BAQUFADCCAT4xCzAJBgNVBAYTAkVTMTswOQYDVQQKEzJBZ...8d4pAJYk=</wsse:BinarySecurityToken>
      <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="Signature-104376803">
        <ds:SignedInfo>
          <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
          <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
          <ds:Reference URI="#id-104309952">
            <ds:Transforms>
              <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            </ds:Transforms>
            <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
            <ds:DigestValue>R6WE9gs+l496jHCgslgALWswEnE=</ds:DigestValue>
          </ds:Reference>
          <ds:Reference URI="#Timestamp-104310599">
            <ds:Transforms>
              <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            </ds:Transforms>
            <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
            <ds:DigestValue>aiCTZ0WwiZQEv8zVmmf8GLu/bYA=</ds:DigestValue>
          </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>YR9Q5oUA6kFFmPYOIOQPTOgTgapMbkmgdlDM/TZJ2CS8ENAntfsnmpEbpUgOPUVMkgaECog0OKvlADHP0HvJtPdm2NJljZNCCgrk3hlmmtkXkRauVuH5KRiHE5NeWT4+Uspp3ashebu0IuOO66zt4Q=</ds:SignatureValue>
        <ds:KeyInfo Id="KeyId-104377209">
          <wsse:SecurityTokenReference xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="STRId-104377346">
            <wsse:Reference URI="#CertId-71968700" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
          </wsse:SecurityTokenReference>
        </ds:KeyInfo>
      </ds:Signature>

<wsse:UsernameToken xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="UsernameToken-104312926">
        <wsse:Username>xxxxxxx</wsse:Username>
        <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText"/>
      </wsse:UsernameToken>

<wsu:Timestamp xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" wsu:Id="Timestamp-104310599">
        <wsu:Created>2008-01-16T21:28:44.081Z</wsu:Created>
        <wsu:Expires>2008-01-16T21:33:44.081Z</wsu:Expires>
      </wsu:Timestamp>
    </wsse:Security>
</soapenv:Header>

Issue with Web Service Security

Dear Forum Members and Readers,
I am a beginner to Web Services, and facing an issue with WS-Security.
My issue seemingly is quite specific to my projects though, It will be great if you can provide me your views.
Context Description:
I am developing a Java Web Service application that is deployed on JBoss Application Server.
This application will communicate with two other applications those are not deployed in same JBoss Application Server.
These 2 applications are third party applications, one is C++ based web services and other is Java based web services.
My application gives a call to Third Party Application1 and receives the response back form it. It then passes this received response to Third Party Application 2.
Issue Description:
I now need to enable https paradigm among these 3 applications. (I need to implement web service security model here)
I started with looking in to JBoss specific WS-Security but found it not suitable in my case, as it requires to configure both the client and server. I have the control over my application but not on other 2 third party applications.
To this extent, I am unable to identify a solution that can address my issue.
Can anybody please provide me with initial thoughts or any reference material that might help me to give this a start.
Any clue will be highly appreciated!
Thanks in advance
Mukul

mukul.object wrote:
Actually, my SOAP messages contains some critical information that needs to be encrypted.You think that its critical information however your third party doesn't. If they would have had same thought they would have enabled the security. As I said earlier, you will have to discuss this with them.
Another solution (however I don't know the viability in your case) could be to deploy one component before each third party service. Your web service will call this new component (Which is installed in their environment i.e. local to third party web service) and new component will forward the request to third party service. Now you can apply security/encryption/decryption between your web service and your component.
I have had a look in to XMLEncrytion using that I can encrypt my SOAP messages but I wonder how would other tools decrypt that.My above comments answers this.
Is there anyway I can encrypt my SOAP messages (without having to customize third party tools) in this scenario ??My above comments answers this.

EBS Security Integration with BI Publisher

Hi All,
I have few questions regarding integration of EBS Security with BIP. I went through the following document Oracle Fusion Middleware Administrator's Guide for Oracle Business Intelligence Publisher.
and have following questions.
-- Upon on logging on into BIP after integration with EBS should I assign the three roles of BI i.e. BI Administrator, BI Author and BI Conusmer to all EBS roles for catalog permission set up.
Below is my requirement. EBS user logging into BIP
a) Set of Users should have to build reports , publish on dashboard etc.
b)Set of users need only view reports i.e. read only.
c) One User should have Admin privileges.
How do I associated above with EBS roles. Should I assign BI roles to EBS roles in EM and give catalog permissions? Any thoughts will be really appreciated.
Thanks
SYK

have you got a response for this? We are having the same issue after following everything as well.

Oracle ADF compatibility with Web logic Server 12c

Is Web logic Server 12c support Oracle ADF. If yes please share details.

ADF is still not officially supported on WLS 12c.
Vijaya

Security Profile with Assignment-level Security limitations

Hi, We are on an R12 installation, and have a security profile based on Organization Hierarchy (With Assignment-Level Security - i.e. 'Restrict on Individual Assignments' checkbox is ticked); this is based on a specific organisation as the 'Top Org' rather than the User's own Assignment.
The profile option "HR: Access Non-Current Employee Data" is set to 'Yes', but the security profile still restricts access to Future-Dated Assignments and Ended Assignments. Is this expected behaviour, and is the only solution to develop a Custom security profile, and is this even feasible (to replicate organisation hierarchy security using SQL in the custom security tab), or would we have to use a different criteria, such as Payroll?
Regards, Chris

Further investigation reveals this is a limitation of the product - within security, the selection criteria which determines which individuals (or assignments) is handled seperately to Assignment-level security (i.e. whether individual assignments are restricted), it is not possible to get around this issue even using custom security, as that does not give one the power to determine how individual assignments are handled. Thus if assignment-level security is implemented, the user cannot see Ended or Future-Dated assignments, even if the profile option "HR: Access Non-Current Employee Data" is set to 'Yes'.
The only workaround we have found for this is to:
a) remove assignment-level security, and
b) ensure that where an employee has multiple assignments that cross security groups, this individual is set up twice, as two separate employees.

BPM work spaces integration with Web-Center work spaces

Hi ,
I have a requirement of Integrating BPM work space with WEB-CENTER SPACES.
Can any one suggest me how to integrate....?
Thanks & Regards
PRAMILA PADAM

Ok, Figured out the issue,
Values in the OAF_AXF_CMD_PARAMS table was not matching with the actual attributes on the OAF pages. The four values
Entity Name, Primary Key, View Object and Attributes are to be entered for each page where we are intending to have the MA button.
Thanks,
Rajiv.

ADF Security integration with Web Logic Security using SQL authenticator

Similar Messages

Maybe you are looking for