APEX on XE OC4J - 403 Forbidden

I am trying to login to http://localhost:8888/apex and I get a 403 forbidden error ( http://localhost:8888/apex/wwv_flow.accept is not allowed).
Application.log says "apex: An established connection was aborted by the software in your host machine".
Error on the Apex Listener Admin says: HTTP Status Code: 403 Requested url http://localhost:8888/apex/wwv_flow.accept is not allowed.
Please help.
Thanks,
Rajeev

The current one does not work on XE. A fix is queued up just not quite out yet.
-kris

Similar Messages

Getting a "403 Forbidden" error when I login ..

Hi all ... Well yesterday I did a new installation of Oracle Express Edition 11g DB, which installed fine ... I then installed OC4J, and then finally installed APEX Listener 4.1 ...
Now, when I opened 127.0.0.1:8888/apex/listenerAdmin for the very first time .. I saw a page where I was to configure the connection .. At that point I was unable to get the 'Basic' connection working (I think the error was that the Listener was unable at connect to the database), and so I closed down that page ..
Now, one day later, when I open 127.0.0.1:8888/apex/listenerAdmin, I am asked for some login details ... I don't know what to put here to login .. In fact I have not successfully logged in here even once ..
However, some clues are as follows: Before installing APEX Listener, I defined some new roles and users from the OC4J web interface ... If I try logging in through any of these, I get the '403 Forbidden' error ... Otherwise, if I enter any other random login details, the same login box keeps popping up ..
So anyone know whats the problem here ? ... I suspect that no connect between APEX Listener and the Oracle DB is yet defined, which is why these problems are occuring ...
I tried 'undeploying' APEX listener from the OC4J web interface, and then again 'deploying' it, but the exact same thing is happening ..
Can anyone help me out here ?
EDIT:
I assume maybe I'm supposed to use the APEX_PUBLIC_USER account, which I configured in oracle before installing APEX (as per intructions in Oracle installation guides), but even when I try logging in through APEX_PUBLIC_USER, my login details are not accepted ... Also, I AM able to login into Oracle Database using APEX_PUBLIC_USER, but not in APEX Listener ... And since unlike what I described above, when I enter my APEX_PUBLIC_USER login details, the same login prompt keeps reappearing, meaning the login is not recognised at all ...
Edited by: user7366837 on Sep 9, 2011 3:39 AM

Hi,
Now, when I opened 127.0.0.1:8888/apex/listenerAdmin for the very first time .. I saw a page where I was to configure the connection .. At that point I was unable to get the 'Basic' connection working (I think the error was that the >Listener was unable at connect to the database), and so I closed down that page ..I think the page you actually opened was http://127.0.0.1:8888/apex/listenerConfigure . At least, this is the page for the initial configuration. You can call it again until you've configured the database successful for the first time.
Now, one day later, when I open 127.0.0.1:8888/apex/listenerAdmin, I am asked for some login details ... I don't know what to put here to login .. In fact I have not successfully logged in here even once ..The admin page needs the credentials you've configured on your OC4J.
However, some clues are as follows: Before installing APEX Listener, I defined some new roles and users from the OC4J web interface ... If I try logging in through any of these, I get the '403 Forbidden' error ...... which you seem to have done, but probably you've some typo in there. Please note that you have to use the exact role names as described in the installation manual. A common problem is that users don't care about case sensitivity... This would fit to the symptom: You have a correct username/password combination, so the basic authentication is done, but the user is not authorized to call listenerAdmin because he doesn't have the appropriate role.
-Udo

403 Forbidden error calling PL/SQL Procedure from URL

I am getting a 403 Forbidden browser error when calling a PL/SQL procedure from the URL, as in this:
http://<server.port>/apex/SCHEMA.procedure_name/f?p_param1=394&p_param2=2, etc
We are upgrading from HTMLDB 2.0 to APEX 4.0.2. I do not believe the upgrade has anything to do with it, c/o the upgraded app works fine in another APE 4.0.2 environment.
The upgrade is to new machines, new DB and new app server, Oracle Web Tier, Oracle HTTP server deployment.
The dads.conf entries are fine, all standard:
Alias /i/ "/apexd01/app/oracle/product/http/Oracle_WT1/ohs/images/"
Alias /c/ "/apexd01/app/oracle/product/http/Oracle_WT1/ohs/custom_htmldb/"
<Location /pls/apexd>
Order deny,allow
PlsqlDocumentPath docs
AllowOverride None
PlsqlDocumentProcedure wwv_flow_file_mgr.process_download
PlsqlDatabaseConnectString dbserver.us.com:1521:SERVER.US.COM ServiceNameFormat
PlsqlNLSLanguage AMERICAN_AMERICA.AL32UTF8
PlsqlAuthenticationMode Basic
SetHandler pls_handler
PlsqlDocumentTablename wwv_flow_file_objects$
PlsqlDatabaseUsername APEX_PUBLIC_USER
PlsqlDefaultPage apex
PlsqlDatabasePassword apexpwd
PlsqlRequestValidationFunction wwv_flow_epg_include_modules.authorize
Allow from all
</Location>
The GRANT EXECUTE ON procedure TO PUBLIC is there.
A call to the same procedure via a process in an APEX page works fine - the procedure is OK.
The call from javascript, which sets up the call from the URL, is the one that fails with the 403 Forbidden error.
The same app works fine in another APEX 4.0.2 environment, so I know it is not the JS; It has to be some configuration setting in this environment.
I do NOT have access to the app server.
I have asked that they compare the httpd.conf, and all underlying conf files, to check for differences.
In order for me to be more specific, and hopefully speed up the troubleshooting process, can anyone suggest what other settings to look at?
Thank you - Karen

Hello,
Good catch, but the difference in URL is in fact the difference in my env to theirs. My typo in not correcting my example to match the dads.conf entry of /pls/apexd. My env uses /apex/. Just saves on my typing.
As an update, I asked the DBA to double-check, and yes, the www_flow_epg_include_mod_local function IS there.
www_flow_epg_include_mod_local is an APEX function.
So now we are trying adding procedures to it. I'll let you know if it works.
My previous question remains - why would I need to do this in one env, and not another,
given that the DB GRANTs are there.
Is there a particular app server setting that wil block execution of PL/SL procedures from the URL?
My guess is, there is some difference in configuration settings for the app server, somewhere in the httpd.conf chain.
Since I do not have access to those files, I cannot do a diff myself, as I would have if I the issue was on my machine.
I am in a situation where I can suggest what to do, but that's it. I agree, it's hard to troubleshoot in this situation.
I am being asked "what setting do I need to change?" without the benefit of access to what is there,so I am doing the best I can, without diverting from my work for a deep-dive refresher session on httpd.conf settings.
So, if anyone is aware of some setting that would block execution of a PL/SQL proc from the URL, please let me know,
and of course, if adding a proc to www_flow_epg_include_mod_local works, I'll be happy. Just still curious.
Thank you - K

HTTP Server Error - 403 Forbidden

Hi all
i was checking the performance of my application server, in HTTP Server (AS instance, not infrastructure instance)
HTTP Server error rate is high, drilling down if found that i have an unusual number of 403 - Forbidden errors.
In the access.log of http server i found the following:
10.42.40.73 - - [05/Apr/2006:15:13:43 +0100] "OPTIONS /cotacoes/ HTTP/1.1" 403 119 10.42.48.237
10.42.40.73 - - [05/Apr/2006:15:13:43 +0100] "OPTIONS /cotacoes/ HTTP/1.1" 403 119 10.42.48.237
10.42.40.73 - - [05/Apr/2006:15:13:43 +0100] "OPTIONS /cotacoes/ HTTP/1.1" 403 119 10.42.48.237
10.42.40.73 - - [05/Apr/2006:15:13:43 +0100] "OPTIONS /cotacoes/ HTTP/1.1" 403 119 10.42.48.237
10.42.40.73 - - [05/Apr/2006:15:13:43 +0100] "OPTIONS /cotacoes/ HTTP/1.1" 403 119 10.42.48.237
10.42.40.73 - - [05/Apr/2006:15:13:43 +0100] "OPTIONS /cotacoes/ HTTP/1.1" 403 119 10.42.48.237
10.42.47.237 is the ip of the Application Server
/cotacoes is the path to an application that is deployed in OC4J ( this application is built with B4CJ framework)
i have asked the programming team to find the piece of code that was generating an OPTIONS request to the server, they could not find any reference to an OPTIONS request in all application code.
Is it some configuration in OC4J container ? or some option in BC4J ??
my environment:
Oracle Application Server 9.0.4
Hp proliant dl580 server
Windows 2003 enterprise server
Best Regards
Rui Madaleno

I spoke again to my local Nokia dealer and they say the problem is in my Exchange user.
My IT people say that my user is exactly the same as the rest of the people in the company…
Can anyone think of a solution???

Owa_custom and 403 Forbidden

In my web application, I am using owa_custom to check and set cookies for authorization. All this is working nicely.
When owa_custom returns false, it redirects to 403 Forbidden and execution stops. Is there a way alter what the 403 pages looks like?
I’ve tried using owa_util.redirect_url() to go to a custom 403 page, the problem is that execution after the redirect continues. Looks like the only way possible to halt execution is to return false out of the owa_custom procedure.
So is it possible to alter the defaut 403 Forbidden page?
Edited by: brian.mcginity on Dec 22, 2009 6:51 PM

As far as I know, that needs to be done on the web server itself - customising the error pages for the various http error codes.
In Apache for example, the httpd.conf file you can configure the http response accompanying an http error code, using the ErrorDocument+ option, as follows (from the Apache version that shipped with the APEX version I'm using):
# Customizable error response (Apache style)
# these come in three flavors
#    1) plain text
#ErrorDocument 500 "The server made a boo boo.
# n.b. the single leading (") marks it as text, it does not get output
#    2) local redirects
#ErrorDocument 404 /missing.html
# to redirect to local URL /missing.html
#ErrorDocument 404 /cgi-bin/missing_handler.pl
# N.B.: You can redirect to a script or a document using server-side-includes.
#    3) external redirects
#ErrorDocument 402 http://some.other_server.com/subscription_info.html
# N.B.: Many of the environment variables associated with the original
# request will *not* be available to such a script.

Forum access (403 Forbidden)

I can't read this forum from my office location. When I try connect to forum I got 403 Forbidden error.
Office IP adress 83.0.150.58.
Can you check why I have this problem.

>
I can't read this forum from my office location. When I try connect to forum I got 403 Forbidden error.
Office IP adress 83.0.150.58.
Can you check why I have this problem.
>
Have you ruled out the problem being with your office firewall or local ISP?
Anyway, the question isn't appropriate for the APEX forum: take it to the +{forum:id=29}+ forum and close this thread and the duplicate threads with the same topic.

When I login to my bank, I get the message: 403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied. Have new MacBook Air with Yosemite. How to solve this problem?

When I try to login to the website of my bank, I get the following error message:
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
I have a new MacBook Air with OS Yosemite installed.
What is the problem and how can I solve it?

Some websites require a special client certficate for access. If you don't have that certficate, you'll have to contact the site operator to find out how to get one.
Sometimes the problem is caused by a web server that is configured to request an optional client certificate. Safari treats the request as mandatory. In that case, other browsers such as Firefox and Chrome may be able to connect to the site, because they ignore the request.
The first time you were prompted for a certificate, you may have clicked through a dialog that requested access to the Apple certificate in your keychain that is used to secure the iMessage service. In that case, you may be able to regain access to the site in Safari by doing as follows.
Back up all data.
Double-click anywhere in the line below on this page to select it:
com.apple.idms.appleid.prd
Copy the selected text to the Clipboard by pressing the key combination command-C.
Launch the Keychain Access application in any of the following ways:
☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
☞ Open LaunchPad. Click Utilities, then Keychain Access in the icon grid.
Paste into the search field in the Keychain Access window by clicking in it and pressing the key combination command-V. An item may appear in the list of keychain items. The Name will begin with string you searched for, and the Kind will be "certificate."
Delete the item by selecting it and pressing the delete key. It will be recreated automatically the next time you launch the Messages or FaceTime application.
The next time you visit a site that prompts for an optional client certificate, cancel out of the prompt. You may have to do this several times before the server stops asking.
Credit for this idea to Christian Braukmueller of SAP.

Error message when trying to sign in to HP ePrint "ajax submit failed: error = 403, forbidden"

HP Photosmart 7525
Windows 7
Ajax submit failed: error = 403, Forbidden
Installed new printer: Photosmart 7525
I am trying to set up my ePrint account and add my printer and it won't let me sign in or create a new account.
Thanks for your help!
Deb
This question was solved.
View Solution.

One can also restart the computer.After it shuts down leave it off for at least a minute and then reattempt access the site once computer is back on and running. I would also check to make sure that Java is up to date and that Adobe Flash is up to date.
I am a former employee of HP...
How do I give Kudos?| How do I mark a post as Solved?

IIS Server 7.5 403 Forbidden Access Denied Error after submitting login Page

Hi All,
Need help to resolve below error:
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
Getting this error once hitting submit button, here i am entering only user name it should give an alert msg asking for the password.
The application is running on IIS server 7.5 and recently enabled Anonymous Authentication and since then it is giving this error.
But if i am accessing the application locally it means in server machine it is working but from remote system it gives 403 error.
Regards,
Kirti

Hi,
it's difficult to say what exactly is causing without more info on you confiuration.
I'm, from you description, assuming a webpage that was configured for forms authentication. You enabled anonymous authentication and now it no longer works.
Forms authentication relies on webpage logic. In most cases, you cannot replace it 'like that' by another authentication method as the login page contains logic on how to store the usercredentials and/or authorization and were to go after authentication
has finished.
Anonymous authentication relies on the application pool identitiy (or the anonymous user) having RX access to the content. Depending the configurations you made when enabling anonyous authentication, you might aditionnaly need to assign an identity
to the anonymous user and configure ntfs privilges on the content.
Check IIS logs and event logs for information. if you do not succeed to resolve, I would suggets to post on teh iis.net forums and include detailed configuration information.
MCP/MCSA/MCTS/MCITP

BizTalk exposed WCF 403 - Forbidden: Access is denied WCF

Im using BizTalk server 2010.cretaed Certificate in IIS and shared to client the same as a public cert.
Im using httpsTransport with customBinding.followed below url
http://blogs.msdn.com/b/bizintegration1/archive/2011/08/23/exposing-biztalk-orchestration-as-a-wcf-service-over-ssl.aspx
When I try to Browse in BizTalk server with https, im able to browse, but in the client side, they are not able to browse
and they get "403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied." Is there anythng that needs to be set in BizTalk or the settings should be done at the client end?
IIS autehntification mode is anonymous is configued.plz let me know anything to do in biztalk and IIS level
Regards BizTalkWorship

This is because your client has not provided the certificate while browsing the service URL.
If they (client) have installed the certificate in correct folder and then while browsing folder the service, client should provide the certificate through browser.
For Internet Explorer, a pop-up should with all the certificates
installed in their personal store. They need to select the certificate that they already installed in it.
Look into this article (from
On the client side: section onwards) for how to browse the service from IE by providing the certificate.
http://blogs.msdn.com/b/asiatech/archive/2014/02/13/how-to-configure-iis-client-certificate-mapping-authentication-for-iis7.aspx
Note: Above article is just relavant to you from
On the client side: section onwards i.e for instructing your client to use certificate while browsing.
FireFox
You will get an error that says “HTTP Error 403.7 – Forbidden” “The page you are attempting to access requires your browser to have a Secure Sockets Layer (SSL)
client certificate that the Web server recognizes.”
In
FireFox go to Tools –> Options –> Advanced –> Encryption –> View Certificates
Click import and select the certificate with private key file you exported earlier (the .pfx file)
You will need to clear history now or restart browser
Just FYI for installing certifate correctly in client side, if they use Windows (off-course):
MMC, add certificate snap-in for “current user”
Browse to Certificates (Current User) –> Personal –> Certificates
Right click this node and select All Tasks and Import from the popup menu
Follow the steps in the wizard, selecting the public certificate you have shared o client.
Regards,
M.R.Ashwin Prabhu
If this answers your question please mark it accordingly. If this post is helpful, please vote as helpful by clicking the upward arrow mark next to my reply.

Select certificate - 403 Forbidden: Access is denied in Safari

Safari is asking to 'Select Certificate' for a website.
It shows two certificates the old one which expired in Feb last year and the current one which is set to expire in 3011!
Regardless which one you choose it comes back with....
Server Error
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
p.s. This is the current version on Windows Vista and have replicated it on another computer. Have tried uninstalling (and deleteing all Apple's hidden updaters/helpers and all folders in the setting/program files areas). Then re-installed and exactly the same problem comes back.
Tried it on a Mac too with the same problem.
The website is www.amplicon.com and the certificate is issued by 'COMODO CA Limited'

Your right, it works fine from my home. Just tried it on the Mac here. But it was a client that first informed us of the problem and trying it from the office on both Mac and PC Safari fialed but all other browsers were fine.
At the office everything is synced to the network time clock, and I can tell you we would know if the time was wrong...
But as it was fialing on both the Mac and PC versions in the same building it seems like it's not a OS issue, maybe it's our DNS server or something on the windows network that Safari is not dealing with that well, but other browsers seem to have no problems with.
We did change SSL supplier recently, maybe it's only a problem with browsers that have had the old and new certificate running in the browser.
I would just think it was an internal issue, but as it was reported by a regular client it is obviously replicable in more than one location.
Is there any hidden places Safari hides the certificate info that would not get removed when you uninstall Safari? Like in the registry or in windows somewhere, if so is there a way to clear it. Or could it be getting it from a cache somewhere on the network?
It's not really a big issue as we don't have many Safari users, but we do like to make sure Safari is supported and works on the site.

Test of html5 video on website server get 403 - Forbidden: Access is denied

I have been experimenting with html 5 with help from Wyodor to play videos on any browser and hopefully iphone without using Flash. Had it working on my local browsers but wanted to upload it to my website to test it on IE and iphone. But after uploading it, when I went ot the url, I got the error message . . .
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
I am very neo to html. Really haven't a clue what I'm doing. I'm dangerous in the worst sense of the word. But I am determined that this 60 year old brain is going to conquer this. . .but I need help.
What would be causing this Error? Do you need to see the code to answer that?. . . Cliff

The error usually occurs when the url has no pagename and the folder/directory has no default index.html file in it.
http://www.yourdomain.com/folder/
You can prevent it by using the full URL to the page or renaming the page you want to display to index.html .
See it that helps.
And in Safari, open the Activity window (Command-Option-A) to see what and where the browser is looking for.

Why do I keep getting "403 - Forbidden: Access is denied." with Firefox but not IE?

Having created a search for a word definition via google.com, (http://www.google.com/search?hl=en&source=hp&q=definition+Disbursement&btnG=Google+Search&aq=f&aqi=&aql=&oq= ) 
I selected a couple of the resultant links: 
http://www.google.com/search?hl=en&defl=en&q=define:disbursement&sa=X&ei=I0NFTZqBIMau8QOhnaWuCQ&ved=0CBQQkAE 
http://www.thefreedictionary.com/disbursement 
They resulted in the following: 
Our systems have detected unusual traffic from your computer network. Please try your request again later. Why did this happen? 
This page appears when Google automatically detects requests coming from your computer network which appear to be in violation of the Terms of Service. The block will expire shortly after those requests stop. 
This traffic may have been sent by malicious software, a browser plug-in, or a script that sends automated requests. If you share your network connection, ask your administrator for help — a different computer using the same IP address may be responsible. Learn more 
Sometimes you may see this page if you are using advanced terms that robots are known to use, or sending requests very quickly. 
IP address: 88.97.39.63 
Time: 2011-01-30T10:55:39Z 
URL: http://www.google.com/search?hl=en&defl=en&q=define:disbursement&sa=X&ei=I0NFTZqBIMau8QOhnaWuCQ&ved=0CBQQkAE 
----------####--------- 
Server Error 
403 - Forbidden: Access is denied. 
You do not have permission to view this directory or page using the credentials that you supplied. 
----------#####-------- 
If I run the same routine in IE v8 I can view both pages – no problem? 
Thanks for your assistance

Uninstall and reinstall the software and try again.
Sometimes what occurs is third party software will keep records of what is what on your drive and since you restored from TimeMachine it might have moved things around thus causing the crash.
Also check with the developer that they are updated to work with 10.8.4 as its a recent release.
TimeMachine restores work, it's just they haven't been all that reliable at restoring verses a bootable clones.
Most commonly used backup methods
Also OnyX cache cleaning (free) also has been a heck of a lot more reliable and with more frequent updates.
https://www.macupdate.com/app/mac/11582/onyx
Now our friend Thomas might not have figured out why your restoring + using a cache cleaner, but I do.
IMO your better off using a virtual machine operating system that runs in a window on OS X.
VirtualBox is FREE, and Linux Mint is also FREE and the most newbie friendly to install, includes Flash etc., so it works on sites. When your done surfing, you revert to the last saved "Snapshot" of the guest operating system (Linux) and all your troubles are gone in seconds.
Windows in BootCamp or Virtual Machine?
Keeping Windows in a VM free of malware
I don't have a specific User Tip how to setup Linux in VirtualBox, but will likely do so eventually. It's not hard actually.
Good Luck

Server Error 403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied.

Hi,
I`d like to get your advice on Server Error 403 - Forbidden: Access is denied. I use to visit a webpage with no issues so far but now i getting this error each time i`m trying to get into. Any ideas in how to solve it? A step to step process will be highly appreciated.
Thanks.
PS, I`m using the latest safari 8.0.3 and OS X 10.10.2.

It's an error message from the web server, not from Safari. There's a slight chance that you might be able to clear it as follows.
From the Safari menu bar, select
Safari ▹ Preferences... ▹ Privacy ▹ Remove All Website Data...
and confirm. Test.

403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied

I got this message when trying to checkout from a site store:
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
Any ideas how can I solve it?

Ask the people running the store; that error generally means that you tried to do something they don't allow or something's wrong on their end.
(89086)

APEX on XE OC4J - 403 Forbidden

Similar Messages

Maybe you are looking for