Apex 4.01 bug with security policy

Similar Messages

• Documentation bug- -Djava.security.policy==weblogic.policy?

  All,
  According to the documentation, an example of invoking weblogic server
  from the command line for JDK1.2 is as follows:
  JDK 1.2 (Java 2) example
  $ java -ms64m -mx64m -classpath c:/weblogic/classes/boot
  -Dweblogic.class.path=c:/weblogic/classes;
  c:/weblogic/license;c:/weblogic/lib/weblogicaux.jar;
  c:/weblogic/myserver/serverclasses
  -Djava.security.manager
  -Djava.security.policy==c:/weblogic/weblogic.policy
  weblogic.Server
  Is the property
  -Djava.security.policy==C:/weblogic/weblogic.policy
  correct in that there are 2 equals signs? Should this be rather:
  -Djava.security.policy=C:/weblogic/weblogic.policy?
  It seems as if either works, I just wanted to clarify, as I've noticed
  our startup scripts use the former and not the latter.
  Thanks,
  Ben

  Hi Ben,
  the doc is correct, there is a semantic difference between '==' and '=',
  check
  http://java.sun.com/j2se/1.3/docs/guide/security/spec/security-spec.doc3
  .html for details.
  Daniel
  -----Ursprüngliche Nachricht-----
  Von: Benjamin D. Engelsma [mailto:bengelsm@NO_SPAM.gfs.com]
  Bereitgestellt: Mittwoch, 4. April 2001 16:30
  Bereitgestellt in: environment
  Unterhaltung: Documentation bug->
  -Djava.security.policy==weblogic.policy?
  Betreff: Documentation bug-> -Djava.security.policy==weblogic.policy?
  All,
  According to the documentation, an example of invoking weblogic server
  from the command line for JDK1.2 is as follows:
  JDK 1.2 (Java 2) example
  $ java -ms64m -mx64m -classpath c:/weblogic/classes/boot
  -Dweblogic.class.path=c:/weblogic/classes;
  c:/weblogic/license;c:/weblogic/lib/weblogicaux.jar;
  c:/weblogic/myserver/serverclasses
  -Djava.security.manager
  -Djava.security.policy==c:/weblogic/weblogic.policy
  weblogic.Server
  Is the property
  -Djava.security.policy==C:/weblogic/weblogic.policy
  correct in that there are 2 equals signs? Should this be rather:
  -Djava.security.policy=C:/weblogic/weblogic.policy?
  It seems as if either works, I just wanted to clarify, as I've noticed
  our startup scripts use the former and not the latter.
  Thanks,
  Ben

• APEX 4.2 bug with mobile page submit action

  Hi,
  I am using the APEX 4.2 mobile theme which has a "Select List" page item and where the "Page Action when Value Changed" is set to "Submit Page". The submit works when the values are in pull down but when the values come from popup window then it does not.
  Thanks, Timo

  Hi Timo,
  thanks for letting us know. It's a known issue (bug# 14680379) on our Known Issues List at http://www.oracle.com/technetwork/developer-tools/apex/application-express/apex-42-known-issues-1863578.html
  Regards
  Patrick
  My Blog: http://www.inside-oracle-apex.com
  APEX Plug-Ins: http://apex.oracle.com/plugins
  Twitter: http://www.twitter.com/patrickwolf

• Testing Security policy attached web service

  Hi,
  I am facing a scenario where I need to test our web service ( which has security policy annotation ) in the similar way how the ( external ) customer would do , i.e with security policy attached. So is there any way to test this scenario..?
  though there are some SSSP envts to enable this security policy to the soap requests, we want to test in all envts irrespective of oracle infrastructure ( as the customer does).
  Thanks,
  Praveen S K

  We do most of our external testing of this type using soapUI. This allows us to sign/encrypt messages or provide a username/token. This also allows the creation of repeatable test suites with validations built into them.
  Thanks,
  Adam DesJardin

• Invoke a business service base in a WSDL with customer WS-Security Policy

  Customer write a Web service (Refer to the attachment file “HTTPS_PartyServicePortType.WSDL”)which declare a WS-Security Policy and apply this it to WS binding ,How can I generate a business service base in this WSDL and invoke it successfully?
  When create a business service in OSB, we get a error with below messages
  [[OSB Kernel:398133]The service is based on WSDL with Web Services Security Policies that are not natively supported by Oracle Service Bus. Please select OWSM Policies - From OWSM Policy Store option and attach equivalent OWSM security policy. For the Business Service, either you can add the necessary client policies manually by clicking Add button or you can let Oracle Service Bus automatically pick and add compatible client policies by clicking Add Compatible button.
  After enhanced the OSB domain with OWSM extension, we found the OOTB OWSM defined cannot support the HttpsToken and OSB cannot support below WS-Policy defined in OWSM, refer to http://docs.oracle.com/cd/E21764_01/doc.1111/e15866/owsm.htm#OSBDV1681
  51.2.8.1 Unsupported Assertion
  •     binding-permission-authorization
  •     http-security
  •     OptimizedMimeSerialization (MTOM)
  •     RMAssertion (Reliable Messaging)
  •     sca-component-authorization
  •     sca-component-permission-authorization
  •     UsingAddressing
  •     wss-saml-token-bearer-over-ssl (Authentication)
  it means that we cannot generate a web service with customer WS-security Policy
  The WS-Security Policy is shown as below:
  <wsp:Policy wsu:Id="WSHttpBinding_IPartyServicePortType_policy">
  <wsp:ExactlyOne>
  <wsp:All>
  <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
  <wsp:Policy>
  <sp:TransportToken>
  <wsp:Policy>
  <sp:HttpsToken RequireClientCertificate="false"/>
  </wsp:Policy>
  </sp:TransportToken>
  <sp:AlgorithmSuite>
  <wsp:Policy><sp:Basic256/></wsp:Policy>
  </sp:AlgorithmSuite>
  <sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout>
  </wsp:Policy>
  </sp:TransportBinding>
  <wsaw:UsingAddressing/>
  </wsp:All>
  </wsp:ExactlyOne>
  </wsp:Policy>
  BestRegards!
  Simon

  Hi
  According to
  http://e-docs.bea.com/wls/docs90/webserv/annotations.html#1050414
  If you are going to publish the policy file in the Web Service archive, the policy XML file must be located in either the META-INF/policies or WEB-INF/policies directory of the EJB JAR file (for EJB implemented Web Services) or WAR file (for Java class implemented Web Services), respectively.
  Can you make sure the policy file is in there?
  Also there is a sample from the developer at http://dev2dev.bea.com/blog/jlee/archive/2005/09/how_to_use_anno.html
  Vimala-

• What is wrong with AS (Security policy)

  In my opinion there are several huge flaws in AS2.0.
  Currently the security policy (which is FUBAR) is causing me a lot
  of grief.
  I'm trying to do a simple login over https with the swf
  running from within a projector, but it seems totally impossible,
  despite all promises with cross-domain files and everything.
  Is there anybody around here that has successfully been able
  to login over https from another domain (not on a http page)?
  Any solution, the uglier the better will be greatly
  appreciated.

  On this page:
  http://livedocs.adobe.com/flash/mx2004/main_7_2/wwhelp/wwhimpl/common/html/wwhelp.htm?cont ext=Flash_MX_2004&file=00001097.html
  there is a short snippet:
  "If the SWF file you are downloading comes from a HTTPS
  server, but the SWF file loading it is on an HTTP server, you need
  to add the secure="false" attribute to the
  <allow-access-from> tag, as shown in the following code:
  <allow-access-from domain="www.foo.com" secure="false"
  />"
  This made me really happy, until I tested it out . As we a
  lot of things from MacroMedia documentation does not match provided
  functionality.
  Given that the documenatation was is correct the follwoing
  code should work.
  System.security.loadPolicyFile("
  http://somedomain.com/secure/crossdomain.xml");
  this.createEmptyMovieClip("tester_mc", 1);
  tester_mc.loadMovie("https://somedomain.com/secure/test.swf");
  Given that the corssdomain file looks like this:
  <cross-domain-policy>
  <allow-access-from domain="*" secure="false"/>
  </cross-domain-policy>
  I'm so puzzled I'm seriously considering jumping out of the
  window...

• Trouble with Content Security Policy (CSP)

  In the latest Firefox 33 there seem to be an issue with Content Security Policy (CSP) and how it handles url that are url encoded.
  For instance when some CSP directive is set to like https://mywebsite.com/application/do;jsessiond=1234 - it will get URL encoded so the ; gets replaced by %3B.
  In Firefox 32 and earlier this worked, but not in this new solution.

  It may be that it needs a header application/x-www-form-urlencoded is this included in your url request as well as charset UTF-8?
  If you select a different encoding via web dev [https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/encodeURI]
  This sounds like what it did before? [http://www.justarrangingbits.org/firefox-magic-decoding-address-bar/index.html]

• Problem with granting permissions in the security policy file

  Hi,
  I have a security policy file. I am granting permissions to some files. Now even if I have given permissions explicitly it doesnt taking it and gives error. My code snippet is as follows:
  grant codeBase "file:${jboss.server.home.dir}/deploy/jboss-ws4ee.sar/-"{
       permission java.security.AllPermission;
  The stack-trace for the same is as follows:
  11:09:49,518 ERROR [MainDeployer] Could not initialise deployment: file:/C:/Java/jboss-4.0.2/server/all/deploy/jboss-ws4ee.sar/jboss-ws4ee.war
  java.security.AccessControlException: access denied (java.io.FilePermission C:\Java\jboss-4.0.2\server\all\tmp\deploy\tmp17221jboss-ws4ee.war read)
       at java.security.AccessControlContext.checkPermission(AccessControlContext.java:269)
       at java.security.AccessController.checkPermission(AccessController.java:401)
       at java.lang.SecurityManager.checkPermission(SecurityManager.java:524)
       at java.lang.SecurityManager.checkRead(SecurityManager.java:863)
       at java.io.File.lastModified(File.java:771)
       at org.jboss.deployment.MainDeployer.init(MainDeployer.java:866)
       at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:765)
       at org.jboss.deployment.MainDeployer.addDeployer(MainDeployer.java:360)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:324)
       at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:141)
       at org.jboss.mx.server.Invocation.dispatch(Invocation.java:80)
       at org.jboss.mx.interceptor.AbstractInterceptor.invoke(AbstractInterceptor.java:121)
       at org.jboss.mx.server.Invocation.invoke(Invocation.java:74)
       at org.jboss.mx.interceptor.ModelMBeanOperationInterceptor.invoke(ModelMBeanOperationInterceptor.java:127)
       at org.jboss.mx.server.Invocation.invoke(Invocation.java:74)
       at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:249)
       at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:644)
       at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
       at $Proxy37.addDeployer(Unknown Source)
       at org.jboss.deployment.SubDeployerSupport.startService(SubDeployerSupport.java:111)
       at org.jboss.web.AbstractWebContainer.startService(AbstractWebContainer.java:600)
       at org.jboss.web.tomcat.tc5.Tomcat5.startService(Tomcat5.java:409)
       at org.jboss.system.ServiceMBeanSupport.jbossInternalStart(ServiceMBeanSupport.java:272)
       at org.jboss.system.ServiceMBeanSupport.jbossInternalLifecycle(ServiceMBeanSupport.java:222)
       at sun.reflect.GeneratedMethodAccessor11.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:324)
       at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:141)
       at org.jboss.mx.server.Invocation.dispatch(Invocation.java:80)
       at org.jboss.mx.server.Invocation.invoke(Invocation.java:72)
       at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:249)
       at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:644)
       at org.jboss.system.ServiceController$ServiceProxy.invoke(ServiceController.java:897)
       at $Proxy0.start(Unknown Source)
       at org.jboss.system.ServiceController.start(ServiceController.java:418)
       at org.jboss.system.ServiceController.start(ServiceController.java:440)
       at sun.reflect.GeneratedMethodAccessor9.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:324)
       at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:141)
       at org.jboss.mx.server.Invocation.dispatch(Invocation.java:80)
       at org.jboss.mx.server.Invocation.invoke(Invocation.java:72)
       at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:249)
       at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:644)
       at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
       at $Proxy4.start(Unknown Source)
       at org.jboss.deployment.SARDeployer.start(SARDeployer.java:273)
       at org.jboss.deployment.MainDeployer.start(MainDeployer.java:964)
       at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:775)
       at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:738)
       at sun.reflect.GeneratedMethodAccessor19.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:324)
       at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:141)
       at org.jboss.mx.server.Invocation.dispatch(Invocation.java:80)
       at org.jboss.mx.interceptor.AbstractInterceptor.invoke(AbstractInterceptor.java:121)
       at org.jboss.mx.server.Invocation.invoke(Invocation.java:74)
       at org.jboss.mx.interceptor.ModelMBeanOperationInterceptor.invoke(ModelMBeanOperationInterceptor.java:127)
       at org.jboss.mx.server.Invocation.invoke(Invocation.java:74)
       at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:249)
       at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:644)
       at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
       at $Proxy8.deploy(Unknown Source)
       at org.jboss.deployment.scanner.URLDeploymentScanner.deploy
  Here I am giving all permission which in turn encapsulate FilePermission also. So this should work. But why it is bypassing this permission?
  Any clues?!
  Thanks.
  Jahnvi

  grant codeBase
  "file:${jboss.server.home.dir}/deploy/jboss-ws4ee.sar/-"{That's not a codebase, it's a specification for a FilePermission. A codebase is a list of one or more directories or JAR files expressed as URLs.

• Application error while using security.policy feature

  I am learning Java by reading http://java.sun.com/docs/books/tutorial/
  While studying the "Security/Quick Tour of Controlling Applications" part I compile GetProps.java example:
  import java.lang.*;
  import java.security.*;
  class GetProps {
  public static void main(String[] args) {
  String s;
  try {
  System.out.println("About to get os.name property value");
  s = System.getProperty("os.name", "not specified");
  System.out.println(" The name of your operating system is: " + s);
  System.out.println("About to get java.version property value");
  s = System.getProperty("java.version", "not specified");
  System.out.println(" The version of the JVM you are running is: " + s);
  System.out.println("About to get user.home property value");
  s = System.getProperty("user.home", "not specified");
  System.out.println(" Your user home directory is: " + s);
  System.out.println("About to get java.home property value");
  s = System.getProperty("java.home", "not specified");
  System.out.println(" Your JRE installation directory is: " + s);
  } catch (Exception e) {
  System.err.println("Caught exception " + e.toString());
  When I run it without security manger it prints all the property as it has to:
  E:\Test>java -jar GetProps.jar
  About to get os.name property value
  The name of your operating system is: Windows XP
  About to get java.version property value
  The version of the JVM you are running is: 1.6.0_03
  About to get user.home property value
  Your user home directory is: C:\Documents and Settings\mikhail
  About to get java.home property value
  Your JRE installation directory is: C:\Program Files\Java\jdk1.6.0_03\jre
  When I run it with security manager it prints the first two properties only and throws AccessControlException on user.home property as it has to either:
  E:\Test>java -Djava.security.manager -jar GetProps.jar
  About to get os.name property value
  The name of your operating system is: Windows XP
  About to get java.version property value
  The version of the JVM you are running is: 1.6.0_03
  About to get user.home property value
  Caught exception java.security.AccessControlException: access denied (java.util.PropertyPermission user.home read)
  But when I run it with security manager and security policy allowing access to user.home and java.home properties it nevertheless throws AccessControlException, in spite of that mypolicy file grants access to these properties:
  E:\Test>java -Djava.security.manager -Djava.security.policy=mypolicy -jar GetProps.jar
  About to get os.name property value
  The name of your operating system is: Windows XP
  About to get java.version property value
  The version of the JVM you are running is: 1.6.0_03
  About to get user.home property value
  Caught exception java.security.AccessControlException: access denied (java.util.PropertyPermission user.home read)
  Here is content of mypolicy file which I created by using policytool utility:
  grant codeBase "file:/E:/Test/" {
  permission java.util.PropertyPermission "java.home", "read";
  permission java.util.PropertyPermission "user.home", "read";
  My system:
  MS WindowsXP Professional, Servis Pack 2
  Sun SE JDK 1.6.0_03
  What am I doing wrong?
  Thank you, Mikhail.

  The last two days have been frustrating. The error above also appeared when I was trying to view one of the relationships in one of my entities.
  What seems to have been happening is Designer showed a relationship existing after it had been deleted. This seems to be a bug in Designer. These rouge links can be deleted in the RON (although if you try to look at their details the RON will crash with the error in original query). After this cleanup everything worked like clockwork.
  Hannah Fraser

• Sunone 7 bug with cache helper

  hi,
  I upgrade the server sun one 6.1 to 7 in a sparc solaris 9 cluster few days ago and we had problems running our web application servelts and jsp.
  We got errors connected with the cache helper we desable it in the web-sun.xml file because it did problems before :
  <cache enabled="false"></cache>
  in the server 6.1 the cache was desable and everything work ok. I must remark our web application are in a storage conected to the server by nfs. The server instances is local disk installed in each server. Then the cache is in a local disk, only the servlets and jsp are in the storage engine.
  The sun one 7 ignores the cache def. in the web-sun.xml file and it tries to work with cache causing errors in our application:
  [15/Jan/2008:09:02:23] failure (24363): for host lib-353-1.law.huji.ac.il trying to POST /dataj/controller/students/, service-j2ee reports: ApplicationDispatcher[dataj] PWC1231: Servlet.service() for servlet default threw exc
  eption
  javax.servlet.ServletException: WEB8002: HTTP status code 500
  at com.sun.webserver.connector.nsapi.NSAPIConnector.include(NSAPIConnector.java:540)
  at com.sun.webserver.connector.nsapi.NSAPIConnector.dispatch(NSAPIConnector.java:469)
  at com.sun.webserver.servlets.DefaultServlet.service(DefaultServlet.java:101)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:917)
  at org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:398)
  at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:792)
  at org.apache.catalina.core.ApplicationDispatcher.doInclude(ApplicationDispatcher.java:630)
  at org.apache.catalina.core.ApplicationDispatcher.include(ApplicationDispatcher.java:548)
  at org.apache.jasper.runtime.JspRuntimeLibrary.include(JspRuntimeLibrary.java:984)
  at org.apache.jsp.template_jsp._jspService(Unknown Source)
  at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:80)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:917)
  at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:373)
  at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:464)
  at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:358)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:917)
  at org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:398)
  at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:792)
  at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:472)
  at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:353)
  at com.huji.data.system.RegularDataSystem.gotoSystemPage(RegularDataSystem.java:347)
  at com.huji.data.controller.processRequest(controller.java:274)
  at com.huji.data.controller.doPost(controller.java:71)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:816)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:917)
  at org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:398)
  at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:304)
  at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:185)
  at com.huji.data.ControllerFilter.doFilter(ControllerFilter.java:65)
  at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:217)
  at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:185)
  at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275)
  at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:255)
  at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:188)
  at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:586)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:556)
  at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:187)
  at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:586)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:556)
  at com.sun.webserver.connector.nsapi.NSAPIProcessor.service(NSAPIProcessor.java:160)
  what can we do to avoid this problems ? there is a bug in the sun one 7 we can't desable the cache feature for web applications if we don't wnat it.
  thanks!

  The details about this bug we find here:
  http://docsun.cites.uiuc.edu/sun_docs/C/solaris_9/SUNWadoc/SUNONEAPPSVRERROR/logweb.html#1011284
  the problems exists also in sunone 6.1 sp5 under solaris 9 but we desable the cache and everthing work find. But it's a big bug that the caching cause such problem, i didn't see this problems in our linux/apache/tomcat platforms. We use sunone only in our sparc/solaris machines due to special circunstaces in some applications that they don't work well with apache.
  Details about server:
  SunOS www 5.9 Generic_117171-15 sun4u sparc SUNW,Sun-Fire-V210
  obj.conf
  <Object name="default">
  AuthTrans fn="match-browser" browser="*MSIE*" ssl-unclean-shutdown="true"
  NameTrans fn="assign-name" name="stats-xml" from="(/stats-xml|/stats-xml/*)"
  NameTrans fn="ntrans-j2ee" name="j2ee"
  PathCheck fn="uri-clean"
  PathCheck fn="check-acl" acl="default"
  PathCheck fn="find-pathinfo"
  PathCheck fn="find-index-j2ee"
  PathCheck fn="find-index" index-names="index.html,home.html,index.htm,.index.html,.index.htm"
  PathCheck fn="set-cache-control" control="no-store"
  ObjectType fn="type-j2ee"
  ObjectType fn="type-by-extension"
  ObjectType fn="force-type" type="text/plain"
  ObjectType fn="shtml-hacktype"
  Service type="magnus-internal/jsp" fn="service-j2ee"
  Service fn="shtml_send" type="magnus-internal/parsed-html" method="(GET|HEAD)" opts="noexec"
  Error fn="error-j2ee"
  AddLog fn="flex-log"
  </Object>
  <Object name="x-httpd-php">
  ObjectType fn="force-type" type="magnus-internal/x-httpd-php"
  Service fn="php4_execute"
  </Object>
  <Object name="cgi">
  ObjectType fn="force-type" type="magnus-internal/cgi"
  Service fn="send-cgi" user="$user" group="$group" dir="$dir" chroot="$chroot" nice="$nice"
  </Object>
  <Object name="j2ee">
  ObjectType fn="force-type" type="text/html"
  Service fn="service-j2ee"
  </Object>
  <Object name="es-internal">
  PathCheck fn="check-acl" acl="es-internal"
  </Object>
  <Object name="stats-xml">
  Service fn="stats-xml"
  </Object>
  server.xml
  <file-cache>
  <max-age>120</max-age>
  <max-entries>1024</max-entries>
  <sendfile>true</sendfile>
  <max-heap-file-size>2048</max-heap-file-size>
  <max-heap-space>1048576</max-heap-space>
  <max-mmap-file-size>537600</max-mmap-file-size>
  <max-mmap-space>10485760</max-mmap-space>
  </file-cache>
  <web-app>
  <uri>/dataj</uri>
  <path>/fs/www/w2w7/dataj</path>
  <description>The java based data</description>
  </web-app>
  <jvm>
  <java-home>/home/SunOne7/jdk</java-home>
  <debug>false</debug>
  <server-class-path>/home/SunOne7/lib/webserv-rt.jar:/home/SunOne7/lib/pwc.jar:${java.home}/lib/tools.jar:/home/SunOne7/lib/webserv-jstl.jar:/home/SunOne7/lib/container-auth.jar:/home/SunOne7/lib/jsf-impl.jar:/home/SunOne7/lib/jsf-api.jar:/home/SunOne7/lib/webserv-jwsdp.jar:/home/SunOne7/lib/ktsearch.jar:/home/SunOne7/lib/mail.jar:/home/SunOne7/lib/activation.jar:/home/SunOne7/lib/ant.jar::${java.home}/lib/tools.jar</server-class-path>
  <env-class-path-ignored>true</env-class-path-ignored>
  <jvm-options>-Dorg.xml.sax.parser=org.xml.sax.helpers.XMLReaderAdapter</jvm-options>
  <jvm-options>-Dorg.xml.sax.driver=org.apache.crimson.parser.XMLReaderImpl</jvm-options>
  <jvm-options>-Djava.security.policy=server.policy</jvm-options>
  <jvm-options>-Djava.security.auth.login.config=login.conf</jvm-options>
  <jvm-options>-Xmx256m</jvm-options>
  <jvm-options>-Xrs</jvm-options>
  </jvm>
  <servlet-container>
  <dynamic-reload-interval>5</dynamic-reload-interval>
  <anonymous-role>ANYONE</anonymous-role>
  </servlet-container>
  sun-web.xml
  <session-config>
  <cookie-properties>
  <property name="isSecure" value="true"/>
  </cookie-properties>
  </session-config>
  <cache enabled="false"></cache>
  <class-loader delegate="true"
  extra-class-path="lib/log4j.jar;lib/mysql-connector-java-3.1.13-bin.jar;lib/SSOCommon.jar;lib/SSOClient-dis.jar;lib/activati
  on.jar;lib/jax-qname.jar;lib/jaxb-api.jar;lib/jaxb-impl.jar;lib/jaxb-libs.jar;lib/namespace.jar;lib/ralaxngDatatype.jar;lib/xs
  dlib.jar"/>
  <jsp-config>
  <property name="javaEncoding" value="windows-1255"/>
  <property name="classdebuginfo" value="true">
  <description>Enable debug info compilation in the generated servlet class</description>
  </property>
  <property name="mappedfile" value="true">
  <description>Maintain a one-to-one correspondence between static content and the generated servlet class' java code</des
  cription>
  </property>
  </jsp-config>
  </sun-web-app>

• I have Microsoft Office 2004 on my MacBook (2.4 GHz Intel Core 2 Duo).  It is currently up to date with Microsoft updates.  I am running Mac OS 10.6.8.  I just updated my Mac software with "Security Update 2012-001".  I am now unable to print (Epson NX510

  I have Microsoft Office 2004 on my MacBook (2.4 GHz Intel Core 2 Duo).  It is currently up to date with Microsoft updates.  I am running Mac OS 10.6.8.  I just updated my Mac software with "Security Update 2012-001".  I am now unable to print (Epson NX510 printer) from Excel or Word.  When I click on the Print menu item in Excel, there is a flash in the background like it is trying to open the print window, but nothing else.  I am able to print from other programs like TextEdit, Mail or KakeidaGraph.  As far as I know I have the latest Epson print driver.
  Also, I am also unable to open an existing Excel or Word file from the open menu - both programs lock up and do not respond.  I have to force quit.  After I restart Excel or Word I can open an existing file by double clicking on the file, but if I again try to open another file from the open menu, Excel or Word lock up.
  Any similar problems?

  Howdy,
  Apparently some are reporting that this causes the older PowerPC (PPC) applications that are supported in 10.6 via 'Rosetta' to crash upon attempting to open/save/print using any dialog box, or fail in other similar ways such as simply not printing or quitting, or freezing/hanging/crashing of the application.
  I have read of some companies that have indeed submitted proper bug reports to Apple, but that is not a guarantee of a bug-fix being issued.
  You might wish to read:
  http://www.macintouch.com/readerreports/snowleopard/index.html#d02feb2012
  If you are unsure if you are still using PowerPC apps, if the application is currently running, look under the 'Activity Monitior' (in Applications -> Utilities), or alternatively you could check in the System Profiler, Applications. Check the column "Type".
  Here is a fairly simple way you can restore you system and restore you applications functionality again, if you don't have a recent clone or good Time Machine backup that you can restore from. If you do, restore from your backup prior to having installed the Security Update 2012-001.
  Time Machine restore: http://support.apple.com/kb/ht1427
  If you are restoring a backup made by a Mac to the same Mac
  With your backup drive connected, start up your Mac from the Lion recovery partition (Command-R at startup) or Mac OS X v10.6 installation disc. Then use the "Restore From Time Machine Backup" utility. Select the backup prior to your issues, and it will be restored back to the state it was in at that time.
  If you can't easily restore from a backup, you can instead do the following:
  - You first start by reinstalling your OS X 10.6.x, this will preserve all your user data, your applications, no worries there.
  - Then install the Mac OS X 10.6.8 Update Combo v1.1 (links provided below)
  - Make sure you're printers are showing up correctly in your system preferences, if not, re-add the printers
  - Then finally, run the Apple Software Update (by pulling down the Apple Menu), and install any and all remaining updates, except do not then re-install the Security Update 2012-001. It is possible that you may have to reboot after installing some of the updates, and you may even need to run it a 2nd time to make sure that you've got all updates, except NOT the Security Update 2012-001.
  Links for 10.6.8 Update Combo v1.1:
  http://support.apple.com/kb/DL1399
  or the link to directly download this 1.09GB combo updater:
  http://support.apple.com/downloads/DL1399/en_US/MacOSXUpdCombo10.6.8.dmg
  Cheers,
  Daniel Feldman
  =======================
    MacMind
    Certified Member of the
    Apple Consultants Network
    Apple Certified (ACHDS)
    E-mail:  [email protected] 
    Phone:   1-408-454-6649
    URL : www.MacMind.com
  =======================

• I have a MacBook Pro 5,4 running OSX 10.6.8 and Safari 5.1.10. A website i like has a known bug with 5.1.10 and recommends I install a newer version of Safari or use Firefox or Chrome. Just looking for advice on the best approach. Thanks!

  I have a MacBook Pro 5,4 running OSX 10.6.8 and Safari 5.1.10. A website i like has a known bug with 5.1.10 and recommends I install a newer version of Safari or use Firefox or Chrome. Just looking for advice on the best approach. Thanks!

  Unfortunately, Safari cannot be updated past 5.1.10 on a Mac running v10.6.8.
  So, the options are to upgrade to a newer OS X or use Firefox or  Chrome.
  Be aware, Apple no longer support Snow Leopard v10.6 >  www.ibtimes.com/apple-kills-snow-leopard-os-x-106-no-longer-receives-security-u pdates-1558393
  See if your Mac can run v10.9 Mavericks >  OS X Mavericks: System Requirements
  If so, you can download and install Mavericks for free from the App Store.
  Read prior to upgrading >   Upgrading to 10.7 and above, don't forget Rosetta! | Apple Support Communities

• How to pass Username from OWSM Security policy in Oracle Apps Adapter .jca file

  My BPEL process uses Oracle Applications Adapter. The following is the .jca file for the Adapter.  The Username is initialized statically to "sysadmin" when I created the Adapter.Is it possible to pass in the username from the OWSM Security policy for the username value below? If so how to do? I appreciate your response.
  <adapter-config name="EBSAdapter" adapter="Apps" wsdlLocation="../WSDLs/EBSAdapter.wsdl" xmlns="http://platform.integration.oracle/blocks/adapter/fw/metadata">
    <connection-factory UIConnectionName="EBS1" location="eis/Apps/EBS1" UIConcurrentPgmName="" UIOracleAppType="DBOBJECT"/>
    <endpoint-interaction portType="EBSAdapter_ptt" operation="EBSAdapter">
      <interaction-spec className="oracle.tip.adapter.apps.AppsStoredProcedureInteractionSpec">
        <property name="SchemaName" value="APPS"/>
        <property name="PackageName" value="INTG"/>
        <property name="ProcedureName" value="GET_USER_PROFILE1"/>
        <property name="IRepInternalName" value="PLSQL:INTG:WEBCENTER_GET_USER_PROFILE1"/>
        <property name="Username" value="sysadmin"/>
        <property name="Responsibility" value="System Administrator"/>
      </interaction-spec>
    </endpoint-interaction>
  </adapter-config>

  1. Go to Invoke activity
  2. Click on Properties tab.
  3. click Add
  4. Add this property "jca.apps.Username" and map it with either variable or expression.
  5. Populate variable defined at previous step with some valid username value at runtime.
  hope this helps.
  Regards,
  Karan
  Oracle Fusion Middleware Blog

• Create new Security Policy in UME is not available

  Hello,
  We are on NW CE 7.1 EHP1 and MII 12.1.7 build 47.
  I have MII Super Administrator role, few custom roles and I also have Action "Manage_All" and I am able to perform most of the activities on UME but I don't see any option to create new security policies all I can do is modify the Default Security Policy and save it.
  It never shows me an option to create new security policy and I am not sure what roles or actions I am missing.
  1) Are there any roles or actions that my profile needs to have?
  2) Is it something to do with NW CE version or MII version?
  3) Has something gone wrong or have we missed some configuration while installing NW CE or MII?
  Any suggestions will be of great help
  Thanks,
  Adarsh

  Adarsh,
  I am not a NW UME expert, but I know this issue has nothing to do with MII.  Not sure if you have rights but providing the Administrators Group for the UME database should allow you to do this. 
  I would try posting this thread on the NW UME Forum.  Modifying policies in NW has nothing to do with MII. 
  Just to verify what policies are you trying to change, I am assuming they are in NW UME and not MII, is this correct?  If they are in MII can you be more specific.
  Good luck.

• Apex function apex_util.get_blob with unexpected behavior

  Hi Experts.
  I've been building an Apex search application and hit a snag while testing the apex_util.get_blob download url.  It appears the Download url is only valid in the session that it was generated. Meaning this.  The url in Step 2 below now returns an "500 - Internal Server Error".  But when it was first generated (i.e. select Download link in Apex app, the right click and select Copy Link Location) the same url below worked.  Is there a way to fix this?
  Here are my steps:
  1) Upload a store a document using the Download syntax : DOWNLOAD:GPAP_PROJECT_FILES:FILE_BLOB:ID::FILE_MIMETYPE:FILENAME:UPDATED:FILE_CHARSET:Inline:Download.
  2) with either FF or IE, when I select to cfopy the lijnk, e.g.
  https://apex.oraclecorp.com/pls/apex/apex_util.get_blob?s=101780738579356&a=2853&c=35900184302057347654&p=19&k1=307565788455977950718535285815317923965&k2=&ck=23EE058993C510D8E30A6B23E12431E8&rt=CR
  3) Result:  If I paste this url into another browser window from the "same" session as the file, it works fine.  But if I start a new browser instance/session, and paste the same url a "500 - Internal Server Error" results.  Should this be possible, and if so, can you please share any suggestions?
  Thanks a lot!
  Mike

  Hi Mike,
  Did you consider creating a public procedure to download your file?
  Here is a good blog that tells how to do this:
  http://matthiashoys.wordpress.com/2013/02/22/http-404403-executing-apex-procedure-from-url-with-oracle-11g-xe/
  You basically just create a procedure that generates the blog, and then you give it a grant to public.
  Just remember to do a security check inside the procedure.
  Regards,
  Joni