Application Integrator and SSO by SAPLOGONTICKET

Similar Messages

• Browser back button not working with ADF Application integrated with SSO

  I have integrated an adf application with Oracle SSO Authentication. Application is running fine.
  Though, while navigating between pages, using browser back button , it is not redirecting the url properly
  Should Redirect it to : http://<hostname>:<port>/<contex-root>/<servlet>/<id>
  Presently Redirecting it to :http://<hostname>:<port>/<contex-root>
  As, directory browsing is not allowed, there is Error 403--Forbidden .
  Can anybody tell what changes needs to be made to make browser back button work.

  In some of the documentation I have read, they have mentioned that using the back button in a browser doesn't work too well with any JSF type of application (not just ADF and Jdeveloper apps).
  http://docs.oracle.com/cd/E15051_01/web.1111/b31974/web_form.htm#CFHHJGJH
  Instead, they suggest using buttons on the form.
  There is a video on using navigation between forms that may be of value: http://www.youtube.com/watch?v=bsPtmRID5XI&feature=plcp
  Stuart
  Edited by: Stuart Fleming on Sep 11, 2012 5:30 AM

• How to implement app integration and sso on nw04

  Hi,
  I'm migrating several EP5 applications to the nw04 platform which integrate 3rd party applications via single sign on (SSO).
  My first attempt was to follow the "Application Integrator" howto which provides an example par file that is supposed to integrate the yahoo email web site.
  After uploading the example par file (which only consists of a portalapp.xml file) followed the steps and created a 'system' template and object. However when it came to mapping the alias my newly created system object did not appear in the drop down list...
  I then tried to create a system object using an SAP par file "com.sap.portal.httpconnectivity.urlsystem"
  that did appear in the dropdown list for the alias mapping.  
  Then I created an iView based on
  "com.siemens.pct.eps.smv._._.parf.usermapping.Authenticator"
  but on execution i got the error:
  Could not connect to system yahoo_alias_01 with
  URL
  Please contact your system administrator
  The last attempt was to create an iView based on
  "com.sap.portal.appintegrator.sap.Generic"
  but on execution i got:
  An exception occurred while processing a request for :
  iView : N/A
  Component Name : N/A
  Unknown Logon Method & # 39;null& # 39; for system & # 39;yahoo_alias_01& # 39;.
  I looked both in the system object and in the iview on how to specify the logon method...
  Since integrating third party applications would seem a standard task - in a way as webservices are. I'm assuming that I'm missing something trival. Is the howto i used outdated ? I couldn't find anything more recent and on help.sap.com all i found on usermapping is how to prgramatically access mapped date - that did work.
  Any pointers on how to solve this would be greatly appreciated.
  cheers
  michael

  Hi Michael,
  as referred by Lashmi's url, if you follow step by step it is pretty straight forward (look at chapter 4.8) I have set-up both Yahoo (user mapping) and xMII systems (sso & user mapping)and it works perfectly fine.  When creating an iView from par, using the appintegrator.sap, have you choosen Generic?  This will sound redundant, but, have you done:
  new Iview from par --> com.sap.portal.appintegrator.sap --> Generic?  (Am sure if you have com... sap.generic bit in your txt).
  I did encounter similar errors, and this was due to the system definition and logon method being used.  I used UIPDW logon method, but I amsure you already tried that.
  The errors you are having are with yahoo and/or also with other systems?
  What are the values in your system def?  And in your iView?
  I am not sure this will help you, but just wanted to clarify that yes, it is straight forward and should be working.
  Cheers
  Jean-Michel

• Timeouts of applications integrated with SSO

  Hi,
  We integrated two applications with 10gAS SSO (using SSO SDK), but we have one problem. The timeouts of the applications are different. One of them is 2h and the other one is 15 minutes. The timeout should be counted form the last access time of either of the applications.
  Has anybody had a similar situation? If yes, how did you handle it?
  I am thinking about using a domain cookie that would contain the last access time to the applications. I will have to reset the timestamp in the cookie with each application call...
  But maybe there is a better way to do that?
  Thanks,
  Dmitry

  can you plase check if note Subject: (How To Get Custom Portal Page After Click ''Logout'' Hyperlink )
  Note:312126.1
  work for your issue
  fadi

• Integrating Application Express with SSO

  Hi,
  What's the difference between integrating Apex with SSO as a partner application, and integrating it as an external application. Are there any benefits / drawbacks to either? and in what situation would you use one or the other?
  Thanks,
  Lee

  Hi, I have one more question related to this.
  We are currently considering implementing the following:
  We are designing a system where the majority of users will have read only access to data. The read only users will NOT have to sign into the system in order to use the system at this privilege level. Other users will have to sign in and once they have done so will then be able to edit and access other functions of the system that are not available to regular read only users. Login links will be available on a number of different screens and once logged in they will be returned to the screen from which they logged in.
  We understand that we can use SSO or even Apex's own authentication to acheive this.
  There is also another system built using portal, forms and SSO. Once a user signs into the portal there is a main menu where various links to different applications are available/hidden depending on the OID groups that the user is a part of.
  Ideally we want to be able to provide a link from the portal system to the apex system from the portal main menu. If a user is signed into the portal then they should be able to enter the apex system without the requirement to sign in again, assuming that they have edit privileges for the apex system. However if the user is signed into the portal but they do not have edit privileges we want to be able to display the apex system in read only mode as we would for anybody else who is not an edit user complete with login links.
  Would this be possible using SSO bearing in mind that we do not want to have to create users for the read only users?
  Any help would be greatly appreciated.
  Thanks,
  Lee

• Integrating Oracle EBS and ApEx Aplication with Responsibilities and SSO.

  Good day all.
  I am looking forward from getting somebody 's help, the trouble I am facing is described below:
  a) I am currently working on SSO with EBS. I mean, my users can connect and work perfectly.
  b) ApEx is Configured as Application Partner with SSO, and the application we built (it's call PR-Auto)
  is working good under SSO platform. I mean I am able to login using TEST user and password TEST in
  both applications (EBS and PR-Auto).
  c) The thing is that I need to call PR-Auto from one responsibility in EBS;
  Following my setup for the responsibility:
  - I have created a function:
  Name: APEX_FA_PR
  Properties:
  Function type: SSWA plsql
  Web HTML :apps.apex_launcher.launch_fa_pr
  Web Host agent: pls/apex
  - I have created a menu, application and responsibility using the function APEX_FA_PR.
  - I have create launcher package:
  create or replace package apex_launcher is
  procedure launch_fa_pr;
  end apex_launcher;
  create or replace package body apex_launcher as
  procedure launch_fa_pr as
  begin
  /** 110 Is ID of PR-Auto, my app **/
  /** 5 is my home page **/
  f(p=>'110:5');
  end;
  end apex_launcher;
  d) New responsibility shows on EBS menu page.
  e) Click on responsibility, and the page shows 'redirecting to login server for authentication', but
  nothing happens, page goes blank with this url:
  http://fahorromex37.fahorro.com.mx:8004/pls/apex/wwv_flow_custom_auth_sso.process_success?urlc=v1.2~42
  03F9A8A1D696097BEA96499E6B6845E80C14A56DF724C3FFF879578FC734C5E1DEEA9129A4117E62A3676A409528E8EB927AA55
  0EA7B208C34F5A3FDB4472679EDE448F8971966BE9BADD22207FE90BDBA2800E6529F3967A18DEC76DCC17DE21D96A65CA2C424
  319F159CC78ED78E8B99F69F1BA8297A1EECF6AD137A6C3896E1C4E8D5F93874A9A08887D3F95058D33F667D7B785FF0A065B53
  891B8B393DFD24530BD0720150F05DE63F0CD5AFD86F0267BAF4C9CAE8C5AA693B4E488B3776BF43450FD412167B402C962BABE
  A54707043AFA6FBB168B29EDB3BE120FFE0C30683D53283B036E781ABF1A5F7374ADF83463D57D2EE958765B0501CE2B0F4E3DF
  24845A54A1CF02526FA39EF60644ED5A0D9D2A05EBFAD3BD01007D0817135989A4B97D68C92C6E2BA767CFDB0AF188054024BB1
  EFFA7DEC8699BBA7485A349D87BA1C15475927E52110DF56FCC3FD560D2CBBA1C0D7D9D3ADFCDB975CD2
  the address of my application pr-auto is http://fahorromex37.fahorro.com.mx:8004/pls/apex/f?p=110
  f) DBA teams follow instructions from the following documentation
  "Integrating Oracle E-Business Suite Release 11i with Oracle Internet Directory and Oracle Single Sign-On"
  and "Note 261914.1 Integrating Oracle E-Business Suite Release 11i with Oracle Internet Directory and
  Oracle Single Sign-On"
  g) We are using:
  DB: Oracle9i Enterprise Edition Release 9.2.0.6.0 - Production
  SO: Linux 2.6.9-42.ELsmp
  ApEx: 3.0.1.00.07
  Any help will be greatly appreciated.
  J.O.

  Many Thanks Daniel for your prompt reply.
  Tried to understand the white Paper and your thread but I am still facing problem,although able to Call ApEX page but now i
  want to pass th e session Id where I am stuck.
  MY three functions:
  CREATE OR REPLACE FUNCTION SYMAPEX.apex_authorise (
  p_username IN VARCHAR2
  , p_password IN VARCHAR2) RETURN BOOLEAN
  AS
  BEGIN
  IF apex_validate_hash (p_username, p_password) THEN RETURN TRUE;
  END IF;
  RETURN (FND_WEB_SEC.validate_login@VCSDEV2_QA (p_username, p_password) = 'Y');
  END apex_authorise;
  CREATE OR REPLACE FUNCTION SYMAPEX.apex_generate_hash (
  p_string IN VARCHAR2
  , p_offset IN NUMBER DEFAULT 0) RETURN VARCHAR2
  IS
  BEGIN
  IF p_string IS NULL THEN RETURN NULL;
  END IF;
  RETURN RAWTOHEX(UTL_RAW.cast_to_raw(
  DBMS_OBFUSCATION_TOOLKIT.MD5(input_string=>p_string||':'||
  TO_CHAR(SYSDATE-(p_offset/24*60*60),'YYYYMMDD HH24MISS'))));
  END apex_generate_hash;
  CREATE OR REPLACE FUNCTION SYMAPEX.apex_validate_hash (
  p_string IN VARCHAR2
  , p_hash IN VARCHAR2
  , p_delay IN NUMBER DEFAULT 5) RETURN BOOLEAN
  IS
  BEGIN
  FOR i IN 0..p_delay LOOP
  IF p_hash = apex_generate_hash (p_string, i) THEN RETURN TRUE; END IF;
  END LOOP;
  RETURN FALSE;
  END apex_validate_hash;
  MY Launch Procedure:
  CREATE OR REPLACE Package body OAE_PKG1 AS
  PROCEDURE LaunchOAE1 (application IN NUMBER DEFAULT 101
  , page IN NUMBER DEFAULT 111
  , request IN VARCHAR2 DEFAULT NULL
  , item_names IN VARCHAR2 DEFAULT NULL
  , item_values IN VARCHAR2 DEFAULT NULL)
  AS
  BEGIN
  OWA_UTIL.mime_header('text/html', false);
  OWA_COOKIE.send
  (name=>'APEX_APPS_'||application,
  value=>FND_GLOBAL.user_name||':'||apex_generate_hash@QA_VCSDEV2(FND_GLOBAL.user_name),
  domain => '.orvcsd01.symprod',
  path=>'/');
  OWA_UTIL.redirect_url('http://orvcsd01.symprod.com:7780'||'/pls/apex/f?p='||application||':'||page||'::'||request||':::'||ite
  m_names||':'||item_values);
  END LaunchOAE1;
  END OAE_PKG1;
  MY On Load before headre process:
  DECLARE
  c OWA_COOKIE.cookie;
  a wwv_flow_global.vc_arr2;
  BEGIN
  c := OWA_COOKIE.get('APEX_APPS_101');
  a := htmldb_util.string_to_table(c.vals(1));
  :P111_USERNAME := a(1);
  :P111_PASSWORD := a(2);
  IF :P111_PASSWORD IS NOT NULL THEN
  wwv_flow_custom_auth_std.login(
  P_UNAME => :P111_USERNAME,
  P_PASSWORD => :P111_PASSWORD,
  P_SESSION_ID => v('APP_SESSION'),
  P_FLOW_PAGE => :APP_ID||':111');
  END IF;
  END;
  I am doing custom authencitaion and calling apex_authorise function there.
  Although I am able to Call the ApEX and able to validate application server password,but moment i try taking help off cookies
  to pass on my application session details to ApEX so that users would not have to login twice,i am gettign the error.
  Second question:
  Do we have any other methos of passing session to ApEX from Application server other than cookies.
  Please suggest.
  Thanks.
  Ravijeet

• SSO to Web App using Application Integrator - not working (SP15)

  Hi,
  I have created a web app system and generic app integrator iview for my web application (and set up user mapping etc.), following the Application Integrator how-to guide but it does not log me into my web application. I have got the Yahoo example working, and if I use a HTTP System & URL iview for my web application, that also works. Can anyone tell me what the problem could be, or where I should start looking?
  If I use a http sniffer, I can see the correct URL and parameters in the following:
  function requestTargetURL() {
        var theURL = "<b>HTTPS://(myserver)/log-in.htm?op=(####)&pwd=(####)</b>";
        var dsmObj;
        if (hasNestedFrameStructure()) {
          location.replace(theURL);
          dsmObj = parent.EPCM.DSM;
        } else {
          document.body.scroll = "no"; // for IE only
          var theIframe = document.getElementById("iframe_GETRedirect_592312569");
          theIframe.style.visibility = "visible";
          theIframe.src = theURL;
          dsmObj = EPCM.DSM;
          document.title = 'JDS';
      function onloadhandler(){
        setTimeout("requestTargetURL()",1);
  but something else must be happening for it not to work. Can anyone give me any pointers?
  Many thanks
  Jane

  Bit of a weird one: I've found a way to make it work but I'm not sure exactly how... the problem was that the portal was opening my web app URL in an iFrame (which can be seen from the code above). I tested this by just creating a html page with the URL + parameters in an iframe, and it wouldn't log me in (and took over the whole browser). So I guess the problem is with my web app rather than the portal.
  However... I then discovered that if I add my web app address to the Local Intranet security zone in my browser (IE6) settings (before it was in the Trusted Sites zone), it no longer minded being in an iFrame, my test html page worked and so does the portal iview. I cannot find which security setting is causing this - I've tried changing the Trusted Sites to match the Intranet zone settings exactly, but it still doesn't work if my web app address is Trusted opposed to Intranet.
  If anyone has any idea what is causing this behaviour, I'd be very grateful - obviously it isn't a portal issue but I'd still like to find out the cause in case it comes up again in the future.
  Many thanks,
  Jane

• Oracle9iAS R2 - Virtual Hosts with Portal and SSO with OIDDAS application

  Hi!
  I have installed a the machine with name minsk.discover.local. The machine have installed Infrastructure and Portal. The instalation is sucessfull and i work fine. But i have publish Portal to WEB with name intranet.discover.com.br. The Oracle describe:
  1 - Create the virtual hosts in SSO and PORTAL - OK
  2 - run ptlasst to create SSO Partners Applications - OK
  After this steps iwork fine with Portal and SSO, but when i click in portlet to create user to access the application OIDDAS, the Portal redirect to login page of SSO in address mct.com.br, the internal name, when then name not responde in the internet.
  I need a help!!!!
  Marcio Mesti

  I just spoke to the Oracle App server admins, the two servers in question are clustered.
  So my question changes slightly to:
  What is the best way to install and configure a webgate for clustered Oracle App servers with mulitple virtual hosts, that are residing behind a load balancer (Traffic Manager)?
  Thanks,
  Andy

• Issue in Application Module and Enterprise Integration for SAP applications

  Hi,
  When I enabled the Application Module and Enterprise Integration for SAP applications Version 2.60 Patch 2 I am getting error in defect entity and Application Module. Does any one face this issue? Please let me know the solution.
  QC details:  QC 11.0 with patch 7
  I followed the steps given in ALM addin page to install the adapters
  Attached Screen shots of the Error

  Hi
  If you are wanting to know how to configure ESSO to be used to logon to SAP applications then there is a guide in the helpfile of the admin console. Simply do a search for SAP.
  In short ESSO-LM comes with a SAP helper object which needs to be selected on install. To enable the ESSO SAP helper to interact with SAP, the SAP server and the SAPGUI client need to be configured. The details for this are in the helpfile. If you have multiple SAP systems launched from the SAPGUI then this is the best method because it means ESSO can distinguish between the different SAP systems through matching screens
  If you have only one SAP system and you do not want to configure the SAP server then you could use send keys and not use the SAP helper object at all.
  Hope this helps

• JCo and SSO and my Java application

  Hi all.
  I have java application that running under the Oracle Application Server and connect to SAP using user/password. I want use SSO ticket from SAP Portal for connet to SAP.
  How I can release next "use case":
  1.User connect to SAP Portal.
  2. User click on button (external iView) and start my application in separate browser.
  3. My application read sso ticket from cookies
  4. My application logon to SAP use sso ticket (via JCo)
  Thanks

  Hi Vyacheslav
  If you can elaborate your statement:
  'How I can release next "use case":'
  we are not sure what you wanted to ask
  Bhudev

• Apex Application With Oralce SSO (inbuilt) application integration

  Hi,
  Installed oracle 11g, configured Application Express Release 3.0.
  I developed application in APEX.
  Now I want to authenticate my application with Oracle SSO login.
  Please help me on this.
  Thanks in advance.
  Thanks,
  Surya

  Hello Surya,
  If you follow the instructions here you should be able to connect to your SSO.
  http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
  Peter

• Step By Step Example for Application Integrator for Yahoo or any kind of

  All EP Expert,
  I want to create yahoo or Gmail or any kind of url iView on which I can implement SSO for learning purpose on my Local laptop.
  I have installed EP SP9 on my laptop.
  I go through some blog and some discussion but I am not able to find below files mentioned in those blog.
  1. AppIntegrator.zip file to find two files
  2. com.sap.portal.howtos.webapp.par file
  3. HowToUseAppIntegrator_en.pdf file
  So I am not able to perform step by step instruction as mentioned in blogs.
  Can any one provide me any kind of documents for EP SP9 for Application Intigrator functionality basically I am interested to integrate JAva base application in my portal with SSO but if any one can provide for Yahoo or Gmail for EP SP9 it will be a great help.
  Thanks and waiting for some help on this form all EP experts.
  I will reward full points for right answer.
  Thanks in Advance.
  Ashish.

  Hi Mona,
  Thank you very much for your prompt reply.  I really appreciate if you can provide me exact location from where I can download "Application Integrator" zip file from which I can extract  "com.sap.portal.howtos.webapp.par" file as describe in example PDF file. I tried very hard to find on SDN and "help.sap.com"  but could not find it.
  If you have it with you then please send it to me on my email ID [email protected]
  Or please tell me exact location from where I can download it.
  I give 10 points for this help.
  Thanks in Advance.
  Ashish.

• Application Integration Issue

  We want to enable n users access to our r/3 system using portal. We created a link to access our r/3 logon page by using application integrator with UserID and Pswd Method. However, when a user is clicking on portal link he is shown the r/3 gui sign on screen but with error"Unable to resolve the SSO ticket'
  Please note that we are not using SSO
  Regards
  Mohammed.
  We know how to say thank in SDN

  Hi,
  Have you tried connecting your R/3 without using application integrator,by creating SAP R/3 transaction system?still it shows same error??
  or else try this,
  Logon to your R/3 to which you want to connect,run the transaction
  rz10>choose profile=default>choose extended maintenance mode and click on display, see there the property named SSOloginaccept_ticket=2,as you are not using SSO,set this property to 2,and now try.
  Hope this helps,
  Regards,
  Ameya.

• Can we integrate Lotus quickr into ep 7 using application integrator

  hi gurus,
  can we integrate lotus quickr in to ep 7 (i.e sso) using appliction integrator or do we have any other way to do sso,
  helpful replies are appreciated.
  Thanks & Regards
  K Naveen Kishore

  Hi,
  Tobias , thank you for you reply
  yes it is ,Lotus Quickr is a DMS(document management system) which sits on Lotus Domino server.
  i have done integrating Lotus quickr to ep 7,using application integration,
  what i have done:
  1)uploaded par file,
  2)ceated system template,
  3)created system using template,
  4)then iview using par,
  5)done usermapping
  in iview in the property
  URL Template Fragment for User Mapping : i have given
  Username=<MappedUser>&password=<MappedPassword>
  i took Username and password names from source of the login page of quicke
  document.write("<input id=\"user\" class=\"text\" type=\"text\" name=\"Username\" />");
  document.write("
  <label for=\"password\">""Password:""</label>
  document.write("<input id=\"password\" class=\"text\" type=\"password\" name=\"password\" />
  document.write("
  <input id=\"button\" type=\"submit\" name=\"login\" value=\"""Log In""\" />
  when i cliclk on preview
  finally page is displayed without user logedin, when i tried to login with this page with valid username and password same page is displayed .but when i tried with invalid username and password it is saying invalid username and password.
  also as u said  "Best way would be to configure Quickr to user Kerberos authentication"  if possible send me the step by  step guide for this.
  Regards
  K Naveen Kishore.

• Oracle E-business Suite 11i(11.5.10.2) integration with SSO/AD.

  Hi,
  Please suggest any note/info on Oracle E-business Suite 11i(11.5.10.2) integration with SSO/AD.
  Thanks

  Hi,
  Please see these docs.
  Integrating Oracle E-Business Suite Release 11i with Oracle Internet Directory and Oracle Single Sign-On [ID 261914.1]
  How to integrate Active Directory with Applicactions 11i , with SSO/OID enable? [ID 437822.1]
  Oracle Application Server with Oracle E-Business Suite Release 11i FAQ [ID 186981.1]
  Thanks,
  Hussein