Applet forcing users to re-authenticate

I have an applet that accesses a secure servlet using the URL object. The applet is inside a secure web application deployed in JBoss. When I load any pages without applets, everything works fine (if it is my first load, I will be forced to authenticate myself as expected).
The problem is when I try to access an html page that renders an applet via the object tag (using plug-in version 1.4). A new dialog box pops up with a picture of Duke on it and titled "Enter Network Password". It forces the user to re-authenticate themselves.
Is there any way I can suppress this dialog in my applet? Obviously the user shouldn't have to login twice. I have seen similar people posting a similar complaint in other forums (excuse the long link): http://search.java.sun.com/search/java/index.jsp?qp=&nh=10&qt=%2Bapplet+%2B%22enter+network+password%22&col=java&col=jdc&col=wireless&col=javaforums&col=javabugs&col=industry&col=solmark&col=codedrop&x=17&y=6
but the only response I saw of any help was that it was a bug, but was fixed in version 1.3.1 of the plugin. Well I'm using 1.4 version and it still doesn't work for me.
Any suggestions?
Andrew

Suggest investigating whether the proposed workaround involving enablement of Anonymous access/authentication defeats authentication before implementing it. My tests in a similar environment have shown that the workaround appears to defeat authentication. Makes sense as there is a reason Sun is addressing the issue (jdc bug #s 4518282, 4656979).
These tests can be tricky...Eg. IE likes to remember u/ps, etc. & you may need to close all IE sessions & "delete temp files / delete all offline content" between client tests.
Prior to this test we had only Basic Auth enabled for both external/SSL access & separately internal/LAN non-ssl dirs. Since you cannot use proprietary/MS-only auth prots, only Basic Auth with req. SSL encrypts u/p.
Anyway, here's what I did in a test environ:
1) Create new user account as target user (non-guest) for Anonymous access. Assign non-blank password (tried pass sync on & off - no diff).
2) Enable anonymous access using the new user account. Leave Basic Auth enabled too (just those two enabled).
3) Roam around & try to access the app from rebooted/cache-deleted client boxes.... Found that you are never asked for the password of the anonymous user (no surprise, that's what anonymous means & is for:)
4) As this apparently defeated authentication, rolled back test environs to prior state & am awaiting "mantis" release which might fix this properly.
Didn't really need to test this but had the time... The regression bug (from 1.3.1 -> 1.4.1) of having 2nd logon for SSL-protected basic auth sites is a big disappointment, but is attributed to incorp/use of JSSE HTTPS/SSL in plug-in instead of using browser's API. Perhaps the mantis fix implements code to query/use credentials known/cached within the browser?
Good luck,
Chris

Similar Messages

  • RE: Force user to re-login if the application is idle for awhile!

    Hi,
    I a similar thing a little while ago for an application written in a 4gl (not Forte) running
    windows 95 clients. I ended up dropping out to "C" and using the SDK to install
    hooks which monitored certain mouse and keyboard events to the application.
    It ended up being less than 10 lines of code in the end whereas when I tried
    to do it within the 4gl it was looked like wholesale changes to lots of code.
    This option fell down when the user was reading their help file or updating
    a word document so we added a pop-up which came up at the front of all applications
    on the PC giving the user a further minute to respond so as not to annoy the genuine
    user who was still "there" but doing something else.
    I have not had the chance to try this in Forte yet but it should be possible.
    If you think this might be an option for you I will try and cobble together an
    example.
    Dalton
    ===============================================================
    Dalton Cranston 45 Castle St.,
    GO5 Ltd Reading. RG1 7SN
    E-mail: [email protected] United Kingdom
    URL: www.go5.com Phone: +44 (0)1189 589 555
    Fax: +44 (0)1189 587 467
    -----Original Message-----
    From: Lu Wang X1 [SMTP:[email protected]]
    Sent: 13 February 1998 17:45
    To: [email protected]
    Subject: Force user to re-login if the application is idle for a while!
    Hi;
    For some security reasons, it requires our Forte application to force user to
    re-log into the application if the user doesn't use this application for 10
    minutes. The problem and difficulty to us is that how to determine there is no
    activity going on for this application on the client's PC.
    Any thought and ideas will be greatly appreciated!
    Lu Wang
    Eli Lilly and Company
    [email protected]
    (317)276-5776

    Hi Rick,
    Thanks for the Reply.
    When they are doing some action with RF id system gave DUMP - ITS_TEMPLATE_NOT_FOUND.
    With this is there any efect on Table locking.
    We got the dump on the ITS screen where as at the same time in back end ECC system TABLE data is using.
    Thanks
    Naresh

  • How to force user to enter supplier/customer name in captial letters in R12

    Dear all,
    Could anyone pls advise how to force user to enter supplier/customer name in captial letters in R12? Can I do it using OA framework personalization?
    HY

    Pl post exact versions of OS and EBS.
    The ability to do this exists in forms (professional user interface) using forms personalization, but does not exist in the OAF (self-service) interface, AFAIK. See related MOS Doc 399892.1 (Is It Possible To Restrict Employee Name Entry To All Upper Case in the PUI And SSHR ?) for some details.
    Pl confirm by opening an SR with Support.
    HTH
    Srini

  • Forcing user to enter values at table level

    Hi,
    I have created a table ztest. How to force user to enter the values for certain fields in the table which are not keys, similar to not null in RDBMS. selecting the initial values filed in SE11 populates with some default value, but it doesnt force the user to enter the value.
    Regards,
    Raghu

    Hi,
    Just check out transaction code SE54 for events.
    Go in SE54.
    Give your table name.
    Go in Environment --> Events.
    Here add the Event '01' i.e. Before saving the data.
    Give the name for event eg 'BEFORE_SAVE'.
    Click on Editor to create an include program.
    In the include program write
    form before_save.
      data: f_index like sy-tabix. "Index to note the lines
      loop at total.
        if <action> = 'N' or <action> = 'U'.
          read table extract with key <vim_xtotal_key>.
          if sy-subrc eq 0.
            f_index = sy-tabix.
          else.
            clear f_index.
          endif.
          "(make desired changes to the line TOTAL)
          "End of Modification.
          modify total.
          check f_index gt 0.
          extract = total.
          modify extract index f_index.
        endif.
      endloop.
      sy-subrc = 0.
    endform.
    Note here in field symbol 'Total' your workarea will be their. You can make necessary checks here.
    Or else you can go for making a custom transaction for your requirement.
    Regards,
    Nitin
    *Mark all helpful answers

  • Force user to connect to specific Persistent Chat server

    We plan to have 2 persistent chat servers in a single pool that will span 2 sites.
    1 Persistent Chat server in Site A
    1 Persistent Chat server in Site B
    Is there a way to force users in Site A to connect to the Persistent Chat server in Site A and for users in Site B to connect to the Site B Persistent Chat server?

    That is possible.
    For example, you have on DNS server DC01 in site A, and you only have a DNS A record point to the IP address of persistent chat server in site A, then you use DC01 as the DNS server for users in site A.
    You have on DNS server DC02 in site B, and you only have a DNS A record point to the IP address of persistent chat server in site B, then you use DC02 as the DNS server for users in site B.
    But it is not recommended. If one persistent server is down, users in one site won’t have group chat feature.
    Lisa Zheng
    TechNet Community Support

  • How to make an applet load user-defined package?

    How to have an applet load user-defined package?
    I have packages in their own directories, and the applet compiles and links with them, by use of CLASSPATH env variable. But when it comes time to run, it ignores that and does not know where the classes (in the packages) are.
    If I don't use packages and put all code in one directory, runs fine. If I use an application, I can link with and load my packages.
    I know applets can't use things like CLASSPATH for security reasons, but still, they should be able to be compiled out of several packages, why do I have to put all code together??

    OK, for reference for future newbies, here's the answer:
    use CODEBASE attribute in your html file (if on Windows server, don't use drive letter but relative path to .html file, Unix style, and put all your .class files beneath that, for example, in your .html file
    <applet
    CODEBASE="..\class
    and then have package bar Bar.class file, in ..\class\bar

  • Force user to enter text if checks YES check box

    I have created a form with YES and NO check boxes.  If user checks YES, they need to provide written reason.  Is there a way to "force" user to enter text into text box if they check the YES check box?
    Thanks,
    Toyro

    Hi Jodi,
    Yes, it has to be saved as a dynamic PDF.
    Additionally, there are some name mismatches in your form so the script was failing. My script defined page 1 as 'page1' while your form defined page 1 as 'Page1'. I renamed your form page 1 to 'page1' and the script worked fine.
    I would recommend enabling the debugger in Acrobat for form developement. See Edit > Preferences and enable the following:
    I added an additional button with some script on the button 'click' event.
    The purpose is to intervene in the submission process, in your case submitting by email. With a single submit button the email dialogue fires regardless of failed form validation. By introducing a second button you can do form validation before enabling submission. The attached form has a visible button called 'submitBtn' and your original 'Submit By Email' button which is declared as 'invisible'. My 'submitBtn' is labelled 'Submit By Email'. When the button is clicked is does form validation. If validation succeeds, I call form1.page1.Button1.execEvent("click"); to submit to the email address attached to 'Button1'.
    Take a look and see if it fits your requirements.
    Steve

  • Login problem in that the radius server is not configured. And the local user does not authenticate

    When trying to login, the message appears "No radius server configured" and the local user does not authenticate. How do I access without rebooting the Switch 6500 with CatOS.

    Hi PK.
    Thanks for your Attention. You know how to insert a line configuration via SNMP RW  "set radius server 10.112.15.21 auth-port 1645 primary"?
    I believe this way or can I work around the problem.

  • Forcing users to select existing properties in New User Request form

    Hi,
    We have just started using Service Manager and Orchestrator.  So far we have successfully managed to create user accounts using orchestrator and service manager.  Now we want to start forcing users to utilise the information we already have in
    our existing Active Directory environment.
    So for example, in the new user request form we want users to select an existing "office" using the attributes already in Active Directory as opposed to allowing them to type in an office and potentially accidentally misspelling the office name.
     What we would like to see is a unique list of offices and a user to select  
    How can this be achieved?  Any help would be greatly appreciated.
    Thanks

    Well, if you don't want to create a list manually, create a sealed management pack that defines the root of the new enumerator. Then create a workflow that will pull all users from AD, build the list of the locations used in AD and update the child enumerators
    if required.
    Cheers,
    Marat
    Site: www.scutils.com 
    Twitter: LinkedIn:
    Graveyard:

  • User trying to authenticate from invalid location

    Hi,
    I have reciently attmepted to upgrade our 5508 DMZ WLC to 7.6.100.0 from 7.2.x - we are using Cisco NAC Guest Server version 2.0.3 for web portal authentication.
    Upon completing the upgrade to the WLC guest users were not able to authenticate and I was seeing the following log message on the NAC server.
    _SYSTEM_ ( - 10.3.240.10) User trying to authenticate from invalid location: [email protected] 2709 05-Mar-2014 18:30:58
    I have seen CSCsq86376 but we are using the IP Address as the attribute.
    Has any one else run into this problem before or could perhaps point me in the right diretion of potential configuraiton to change/further trouble shooting?
    Thank you in advance.

    Hi,
    Any customer that has the calling-station-id attribute on their controller set to MAC address will not pass any authentications, change the attribute to use the IP address instead of the MAC address and then try.

  • FB50 - force user to add attachment

    Hi,
    Is there a way to force user to add attachment in FB50 before allow user to post the entry? In other words, the FB50 entry should not be post into SAP if user did not attach any document. Please advice. Thanks.

    Hi
    Please refer the below link
    Email Billing document as PDF Attachment while saving from VF01/02
    http://www.whypad.com/posts/sap-attach-documents-to-a-journal-entry/45/
    hope this will help you
    regards
    Praveen P C
    Edited by: Praveen Chirakkel on Apr 13, 2011 6:06 AM

  • Force users to view multiple items before moving on

    In it's most basic form this is what I need to do.
    I'll have three boxes.  When the user clicks box A another box will appear containing a descrption of box A.  When the user clicks box B, description box A will need to disappear and description box B will appear, etc.  I think I know how to handle this portion using advanced actions, but is there a way to force users to view all 3 boxes before they can advance to the next slide?  I think it should be able to be done in advanced actions but I'm not sure how to write something like that.

    Nothing to apologize for. 
    the action looks good to me. 
    So your button is showing the language image, the language close button, then hiding some other things.  The expression you have is right.
    Your hide_languageDefinition adv action does the hide for the img_language.  Instead of a 'standard action' you need a conditional action similar to your show_FDCPA_nextButton action you have above.
    In that conditional screen where it says "untitled" you can have the action do several things.  You'll need it to hide your img_language and the btn_languageClose like you have already.  Since you want it to do the show/hide no matter what you can set it like this:
    Action Type:  Conditional action
    Action Name:  hide_languageDefintion
    If:
    (choose literal from the drop down)
    Type a 1 in the text field
    (choose 'is equal to' from the drop down)
    (choose literal from the next drop down)
    type a 1 in the text field.
    You're saying "if 1=1, then do the actions below"  1 is always going to equal 1 so it's always going to run the actions.
    Under actions put all your show/hide statements like you have above in hide_languageDefition
    I suggest changing that 'untitled' name to something that makes sense to you. 
    Click on the next 'untitled' tab and add the conditional if/then statement like you have above in show_FDCPA_nextButton.
    Find your languageClose button, and set it to run this advanced action.
    What the action will do now is runs the hide actions you have.  Then it looks at each variable to see if it is greater or equal to 1.  if they're all true, then it shows the next button.
    hope that makes sense; i can't attach screen shots from work, i apologize I can't help more.
    As for variables, this recorded session might help you:  http://www.adobe.com/cfusion/event/index.cfm?event=register_no_session&id=1891451&loc=en_u s
    picture a variable as a container.. a jar.  That jar has a label and you can write anything you want on it (the name of the variable).  That jar can contain 'stuff.'  numbers, words, whatever you want to put in it.  You can also manipulate what's in there with different functions of captivate.  So let's say in your case I want to track if a learner clicks a button.
    So I have my jar, and when the learner clicks a button I take a piece of blank paper, write a "1" on the paper and put it back in the jar.  If they click that button again, I take out that paper, see a '1' on it, and I add 1 to it, and write '2' on the paper (this is your expression above 'btn_abussive_harassing_language = btn_abussive_harassing_language + 1').
    When I'm closing the image, I pull out the jar, and look at the paper.  If the paper has a 1 or higher written on it, I show the next button (after checking all 3 jars, that is). 
    That's the quick version of what variables are and how they work, I hope that helps.

  • Can we use applets as user interfaces with sockets, RMI and J2EE

    Dear Sir or Madam,
    Since I am a TA for software architecture class, some one ask me the following question: I think the answer is "No" based on the document on http://java.sun.com/sfaq/
    How I answer the quesions? Looking forward your help!!!
    1.You may have 2 applets and 2 html files. One applet with one html file may stay at a client PC and run on this PC, and the other applet with the other html file may stay at a server PC and run on this PC. In this case, all the applets are run locally.
    2.Could applets works with sockets, RMI and J2EE?
    3.Can we use applets as user interfaces with sockets, RMI and J2EE?
    Thank you very much!
    Best regards,
    Jing

    The scenario you paint doesn't quite make sense. The "server PC" wouldn't be running an applet, normally, since applets are by definition in a web browser page, and most likely involve user interaction, and "server processes" generally are done without user interaction.
    The security rules around applets are that -- by default -- applets can connect with sockets ONLY to the server from whence the applet was loaded. RMI uses sockets (J2EE is too broad a spec) and hence RMI calls would also be limited to the server from whence the applet was loaded. Within that limitation, an applet could open all the sockets it wants, so long as they are all on the server from whence the applet was loaded.
    If you want two applets on two different systems to communicate with each other, the simplest way is to have them rendevous through a server process on the server(s) from whence each applet was loaded. Maybe it's PC-a <-> server-a <-> server-b <-> PC-b ...? Or maybe PC-a and PC-b both are talking to the same server.
    The limitation is rooted in the security subsystem. You can specify a policy file and override anything in the security subsystem. That does mean signing the applet and then cajoling the user into agreeing to grant greater levels of security than the default. In such a case you can open sockets more broadly and then PC-a could talk directly to PC-b without going through any servers.
    - David

  • Select List with Submit refreshes page to top force users to scroll down

    Hello All,
    I have Dependent Select List where this functionality driving select list submit values to a subsequent select list.
    The "Select List with Submit" refreshes page where the unintended by-product is page refresh, which returns to top of page and therefore force users to scroll back down.
    In other words: I have a long form page where I have a Dependent Select List. So when you change the value of the 1st select list it refreshes the 2nd. This is all fine, but when the refresh occurs, the Form-focus returns to the top of page. This makes the users scroll back down to the lower end of the Form where they left off. This would make usability problems for users.
    Anyway we can make the Form return where to the area(Item or Region) where the user was during the selection of the Select List?
    Thanks in advance,
    Konstantine

    HURRAY!! I got it to work perfectly using anchors. I am adding this message to help future ApEx developers.
    I have been searching the Forum for 3 days and have read numerous postings. There was a lot of good discussion on anchors and linking from page to page. But, nothing exactly like my situation.
    Situation: Have a page, PG4, with a button, PG4_BUTTON, that redirects to a different page, PG7. PG4_BUTTON has its 'Display In Region' field set to PG4_REGION. When PG4 is run and the form displays, the PG4_BUTTON is located at the bottom. When the user would click PG4_BUTTON, the user would be taken to PG7. (this is good) The user enters some data in PG7 fields and then clicks a create button, PG7_BUTTON. PG7_BUTTON would submit data. An After Processing, Go To Page, Branch would be activated when this button was pressed and then the user would be returned to a refreshed PG4, at the top. This forces the user each time to have to scroll down to the bottom of PG4 to continue. (this is NOT good)
    Solution: On PG4, I edited the region, PG4_REGION. For the region 'Title' I added an anchor before the actual name. So it looked like this:
    {a name="REGION_TO_RETURN_TO"></a}PG4_REGION
    please note: where I have the curly braces above '{' '}' you need to put < the pointed and '>'
    Next, on PG7, I edited the Branch. On the 'Edit Branch' page, in the 'Action' region, I changed the 'Target type' field from 'Page in this Application' to 'URL'.
    To the 'URL Target' text area field I added this:
    f?p=&APP_ID.:4:&SESSION.::::::#REGION_TO_RETURN_TO
    So, there you have it. If you still need to read other postings, here are a couple of the sites I read:
    Re: Lists that go to items
    Re: URL target on a button.  What is the syntax??
    How to use <a name="top">Hello I'm at the top </a> tags in apex url ?
    Re: anchor or go to item from a branch
    http://www.oracle.com/technology/products/database/application_express/howtos/howto_navigate_in_a_page-1.6.html
    http://www.echoecho.com/htmllinks.htm
    http://www.htmlcodetutorial.com/linking/linking.html
    http://www.w3schools.com/HTML/html_links.asp
    Thanks,
    Maggie

  • How to force users to enter their ID and password ?

    I am considering installing AirPort Extreme at our office. We don't want guests connecting to our network. is there any option/software that will force the guest to enter an ID and password to connect to our network ? This is similar to what happens at the hotels when we try to connect to hotel's network.

    How to force users to enter their ID and password?
    is there any option/software that will force the guest to enter an ID and password to connect to our network ? This is similar to what happens at the hotels when we try to connect to hotel's network.
    The AirPort Extreme does not have the features necessary to create a "splash page" that provides basic information about the company and asks users for their identity and password....like you see at most hotels.
    Basically, with an AirPort Extreme, users would have to scan to look for the name of the wireless network to join, and then enter the password to connect.
    The best that you might be able to achieve with the AirPort Extreme is create a "hidden" network, which would require that users know both the name of the wireless network and password to connect.  However, based on experience, this might be more of a hassle than anything else.
    The bottom line.....Apple really designed the AirPort routers for home use, so that might be the best place for them in most cases.

Maybe you are looking for

  • Menu bar not visible in IE

    i published the website, i was able to view the menu-bar in all the explorers except Internet explorer. please give suggestions for rectifying the problem

  • Box and Size stmt in sapscript

    Hi all a very basic question can anybody plz tell me whatz the difference between box and size stmt in sapscript Thanks in advance

  • How to enable the iscsi in Solaris 10

    Dear All, Kindly help me,How to enable the iscsi in solaris 10,That box already running in solaris 9,Now we installed solaris 10,In that solaris box separate iscsi card in there,How to enable the iscsi card to access the NAS storage. Kindly sent any

  • How to sync the standby database with the primary?

    Hi..We have dataguard setup for our production databases(10.2.0.3). I need one clarification regarding the standby database sync with primary.We identified one of our databases is not in sync with the primary and for longtime the archives are not get

  • Why isn't my phone number an option for imessage?

    I just switched providers with my phone and for some reason, imessage stopped working for me, so I reactivated it and I can't see my phone # as an option, just my email. I tried every single thing possible, nothing worked.