Application requires login pollicy to be reconfigured for login to succeed

Hi,
We have recently migrated our J2EE application from IBM WebSphere to SAP NetWeaver. The application has two ear modules- one for web tier and the other one for EJBs. We deploy them as two separate applications on the NetWeaver server. For login, we are using JAAS login module.
We have been facing some problem in login on NetWeaver. The problme is that when we try to login after initially deploying the two application ear files, the login does not succeed. Over many trials that we did, we observed that login succeeded only when we removed the login policy, re-added it, reconfigured it to include the login module, and then tried to login. To put it point-wise, after application ear files are deployed and started, to login to the application first time, we have to do the following steps-
1) Remove login policy configuration from Security Provider in Visual Administrator
2) Add it back
3) Configure it to include the login module
4) Open the application page and try login- it succeeds.
This is needed only for the first time login. Then onwards login succeeds with out any issues.
We are trying to resolve this first time login issue for quite some time now, but to no avail. On investigating the logs when login fails, we realised that our custom UserContext object returned by the login module class becomes invalid (NULL) as it is returned to LoginContext. Here's the call sequence-
1) Struts action class LoginAction calls JAAS LoginContext.login()
2) LoginContext.login() calls login module UpServiceLoginModule.login() and passes it an empty (non-null) object of type Subject
3) UPServiceLoginModule.login() calls security EJB SecurityMgrBean.authenticate().
4) An application class- UserContext object is returned to UPServiceLoginModule.
5) UPServiceLoginModule sets UserContext object it received in an object of type Principal and adds it to the set of principals inside Subject it received from LoginContext
6) The Subject variable in LoginContext has the same reference as the Subject variable in UPServiceLoginModule. However, on investigating the logs we found that even if the Principal is set in the Subject by UPServiceLoginModule properly, inside Subject in LoginContext, it is null.
Does any one have any clue as to what could be the problem? Below is a relevant trace from the log file. Any help would be greatly appreciated.
Thanks
Neelesh
Logfile Trace-
#1.5#001125F032ED006D00007262000014D000042958BCAF465D#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.encoding.DeserializationContext] - <Popped element stack to org.apache.axis.message.SOAPEnvelope:Envelope>
#1.5#001125F032ED006D00007263000014D000042958BCAF46BE#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.encoding.DeserializationContext] - <Exit: DeserializationContext::endElement()>
#1.5#001125F032ED006D00007264000014D000042958BCAF4720#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.encoding.DeserializationContext] - <Enter: DeserializationContext::endElement(http://impl.security.service.server.tdemand.com, authenticateResponse)>
#1.5#001125F032ED006D00007265000014D000042958BCAF4790#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.i18n.ProjectResourceBundle] - <org.apache.axis.i18n.resource::handleGetObject(popHandler00)>
#1.5#001125F032ED006D00007266000014D000042958BCAF47F5#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.encoding.DeserializationContext] - <Popping handler org.apache.axis.message.RPCHandler@828c52>
#1.5#001125F032ED006D00007267000014D000042958BCAF4864#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.i18n.ProjectResourceBundle] - <org.apache.axis.i18n.resource::handleGetObject(setProp00)>
#1.5#001125F032ED006D00007268000014D000042958BCAF48CD#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.message.RPCHandler] - <Setting MessageContext property in RPCHandler.endElement().>
#1.5#001125F032ED006D00007269000014D000042958BCAF4936#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.utils.NSStack] - <NSPop (32)>
#1.5#001125F032ED006D0000726A000014D000042958BCAF498E#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.encoding.DeserializationContext] - <Popped element stack to null>
#1.5#001125F032ED006D0000726B000014D000042958BCAF49ED#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.encoding.DeserializationContext] - <Exit: DeserializationContext::endElement()>
#1.5#001125F032ED006D0000726C000014D000042958BCAF4A6E#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.client.Call] - <Exit: Call::invoke(RPCElement)>
#1.5#001125F032ED006D0000726D000014D000042958BCAF4ACE#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.client.Call] - <Exit: Call::invoke(ns, meth, args)>
#1.5#001125F032ED006D0000726E000014D000042958BCAF4B34#1171361006312#System.out#sap.com/TrueDemandWeb#System.out#J2EE_GUEST#2####71678ce0bb4911db9890001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,312 DEBUG [org.apache.axis.TIME] - <axis.Call.invoke: 1516 {http://impl.security.service.server.tdemand.com}authenticate>
#1.5#001125F032ED006D0000726F000014D000042958BCB07ADE#1171361006390#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,390 ERROR [com.tdemand.client.framework.action.RequestProcessor] - <java.lang.NullPointerException>
#1.5#001125F032ED006D00007270000014D000042958BCB08026#1171361006390#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,390 ERROR [com.tdemand.client.framework.action.RequestProcessor] - <com.tdemand.client.security.actions.LoginAction.executeLogic(LoginAction.java:53)
com.tdemand.client.framework.action.Action.execute(Action.java:67)
com.tdemand.client.framework.action.Action.execute(Action.java:41)
org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:431)
com.tdemand.client.framework.action.RequestProcessor.processActionPerform(RequestProcessor.java:53)
org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:236)
org.apache.struts.action.ActionServlet.process(ActionServlet.java:1196)
org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:432)
javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.runServlet(FilterChainImpl.java:117)
com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:62)
com.tdemand.client.framework.filters.AuthenticationModeFilter.doFilter(AuthenticationModeFilter.java:47)
com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:58)
com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:373)
com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
java.security.AccessController.doPrivileged(Native Method)
com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
>
#1.5#001125F032ED006D00007271000014D000042958BCB09E49#1171361006390#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,390 DEBUG [org.apache.struts.util.PropertyMessageResources] - <Initializing, config='org.apache.struts.action.LocalStrings', returnNull=true>
#1.5#001125F032ED006D00007272000014D000042958BCB0A784#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - <getMessage(en_US,exception.log)>
#1.5#001125F032ED006D00007273000014D000042958BCB0A80B#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - <loadLocale(en_US)>
#1.5#001125F032ED006D00007274000014D000042958BCB0A896#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Loading resource 'org/apache/struts/action/LocalStrings_en_US.properties'>
#1.5#001125F032ED006D00007275000014D000042958BCB0AAFC#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Loading resource completed>
#1.5#001125F032ED006D00007276000014D000042958BCB0AB93#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - <loadLocale(en)>
#1.5#001125F032ED006D00007277000014D000042958BCB0AC02#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Loading resource 'org/apache/struts/action/LocalStrings_en.properties'>
#1.5#001125F032ED006D00007278000014D000042958BCB0ADEC#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Loading resource completed>
#1.5#001125F032ED006D00007279000014D000042958BCB0AE7D#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - <loadLocale()>
#1.5#001125F032ED006D0000727A000014D000042958BCB0AEEB#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Loading resource 'org/apache/struts/action/LocalStrings.properties'>
#1.5#001125F032ED006D0000727B000014D000042958BCB0B20A#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Loading resource completed>
#1.5#001125F032ED006D0000727C000014D000042958BCB0B28F#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Saving message key '.dispatch.handler>
#1.5#001125F032ED006D0000727D000014D000042958BCB0B2FA#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Saving message key '.dispatch.method>
#1.5#001125F032ED006D0000727E000014D000042958BCB0B363#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Saving message key '.exception.log>
#1.5#001125F032ED006D0000727F000014D000042958BCB0B3CB#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Saving message key '.dispatch.error>
#1.5#001125F032ED006D00007280000014D000042958BCB0B436#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Saving message key '.dispatch.return>
#1.5#001125F032ED006D00007281000014D000042958BCB0B4B8#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.util.PropertyMessageResources] - < Saving message key '.dispatch.parameter>
#1.5#001125F032ED006D00007282000014D000042958BCB0B660#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.action.ExceptionHandler] - <ExceptionHandler caught this exception:>
java.lang.NullPointerException
at com.tdemand.client.security.actions.LoginAction.executeLogic(LoginAction.java:53)
at com.tdemand.client.framework.action.Action.execute(Action.java:67)
at com.tdemand.client.framework.action.Action.execute(Action.java:41)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:431)
at com.tdemand.client.framework.action.RequestProcessor.processActionPerform(RequestProcessor.java:53)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:236)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1196)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:432)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.runServlet(FilterChainImpl.java:117)
at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:62)
at com.tdemand.client.framework.filters.AuthenticationModeFilter.doFilter(AuthenticationModeFilter.java:47)
at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:58)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:373)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
#1.5#001125F032ED006D00007283000014D000042958BCB0CB4E#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.tiles.TilesRequestProcessor] - <processForwardConfig(/framework/application/jsp/LoginFailure.jsp, false)>
#1.5#001125F032ED006D00007284000014D000042958BCB0CBF8#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.tiles.TilesRequestProcessor] - < '/framework/application/jsp/LoginFailure.jsp' - processed as uri>
#1.5#001125F032ED006D00007285000014D000042958BCB0CC6F#1171361006406#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,406 DEBUG [org.apache.struts.action.RequestProcessor] - <processForwardConfig(ForwardConfig[name=null,path=/framework/application/jsp/LoginFailure.jsp,redirect=false,contextRelative=false,module=null])>
#1.5#001125F032ED006D00007287000014D000042958BCB19A07#1171361006468#System.out#sap.com/TrueDemandWeb#System.out#tdemand#51####7261f270bb4911db963e001125f032ed#SAPEngine_Application_Thread[impl:3]_38##0#0#Info##Plain###2007-02-13 15:33:26,468 DEBUG [org.apache.struts.util.PropertyMessageResources] - <getMessage(en_US,common.applicationTitle)>

Hi
when i was creating the Mapping it gave the below Error
what must have gone wrong??
My other Question is, how will the Application know about my user credentials as it has to authenticate the same rather than the Portal. Does it mean that for each and every user accessing my app should be configured in the Portal in this manner? I have 1 lakh users accessing this application. Is there any other alternative??
Regards
Glen
********************E R R O R **********************
Portal Runtime Error
An exception occurred while processing a request for :
iView : pcd:portal_content/administrator/super_admin/super_admin_role/com.sap.portal.user_administration/com.sap.portal.user_mapping/com.sap.portal.userMappingAdmin/com.sap.portal.userMappingAdmin
Component Name : com.sap.portal.usermanagement.admin.UserMappingAdmin
User Mapping not fully available..
Exception id: 08:54_01/08/06_0011_8686450
See the details for the exception ID in the log file
********************E R R O R **********************

Similar Messages

  • How to enable https or SSL for login page only?

    Hi,
    My application is runnnin in iPlanet web server 4.1 version.
    how to make my login page only secured (SSL)?
    previously we have done https enable for the whole application. but client specifically wants for login page only, not for the whole application. how can i make SSL for login page only in iPlanet 4.1.
    I searched through iPlanet console, but i didn't get any option such.
    i found one more thing console,i.e., "encrypt on or off". if i put encrypt "on" means, it will be for the whole application? How can i make it for login page only.
    Do i need to do any code changes for that?
    i tried through web.xml security constraints tags, but it is not working and taking that file as we are doing everything in servlet.properties and rules.properties files.
    can anybody help me in this regard?
    Regards,
    Chandu

    You specify SSL in web.xml of your application. So, in that case other web applications in same server would not be affected.
    <security-constraint>
    <web-resource-collection>
    <web-resource-name>myresources</web-resource-name>
    <url-pattern>/*</url-pattern>
    </web-resource-collection>
    <user-data-constraint>
    <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>
    </security-constraint>Following link will help you to setup SSL in tomcat:
    [http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/|http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/]
    Thanks,
    Mrityunjoy

  • Ask for Login during Installation wizard of application

    Hi to all,
    I am doing an application in which I have some unusual
    requirement, that is I want my application to ask for login (only
    username is required) while I install the application i.e; during
    the installation wizard and save it at that time only, so that the
    application will not prompt user again for login in future.
    I know how to achieve this after the application is installed
    by using the shared objects once the user login.
    Is there any way to achieve this?
    Any help would be greatly appreciated!
    Thanx.

    Hi Arun,
    I'm not sure I understand what type of login you are requesting, but it is possible to build a wrapper installer that silently launches your AIR installer then does whatever you need in a post install step (or preinstall for that matter.)
    Silent Installation
    Moved discussion to the Desktop Development forum.
    Chris

  • Ios7 bookamrking web application to home screen via Safari crashes after login and when we try to open any link inside. Can anyone please tell me if there is any scheduled fix for this bug in safari?

    ios7 bookmarking web application to home screen via Safari, crashes after login and when we try to open any link inside from the icon that gets created on the home screen. Can anyone please tell me if there is any scheduled fix for this bug in safari?
    From what i understand i see that - Cookies are not transferred between your website and your webapp when installing the icon on the home screen (for authentication purposes for example). It was working until 6.1 and now it’s not working anymore.
    Can someone please tell me if this bug will be fixed in any future release, if so the ticket number of some kind that i can track, or if there is a workaround for this issue?

    ios7 bookmarking web application to home screen via Safari, crashes after login and when we try to open any link inside from the icon that gets created on the home screen. Can anyone please tell me if there is any scheduled fix for this bug in safari?
    From what i understand i see that - Cookies are not transferred between your website and your webapp when installing the icon on the home screen (for authentication purposes for example). It was working until 6.1 and now it’s not working anymore.
    Can someone please tell me if this bug will be fixed in any future release, if so the ticket number of some kind that i can track, or if there is a workaround for this issue?

  • User Authorization, best practices for this custom application requirement?

    JDeveloper 12c (12.1.2)
    We want to use external LDAP (active directory) with ADF security to authenticate and authorize users.
    One of our custom application requirements is that there is a single page with many interactive components. It has probably about 15 tables and each table would need to have the following buttons (or similar components):
    - delete: (if certain row is selected) to delete it
    - edit: (if certain row is selected) takes user to 'edit page' where changes can be made
    - create: to create new record for this particular VO (table)
    So let's say that would be 3 x 15 = 45 different actions that single user can possibly perform. Not all users have same 'powers' ie some users can only edit CERTAIN tables, and delete from one or two. Most users can create and edit most VOs etc
    Back when this application was originally developed using (I believe) 10g JDeveloper with UIX, the way it was done is that we maintained a table in database with 'user credentials' as Y or N flags.
    For example: DEL_VO1, EDIT_VO1, ADD_VO1....
    So when user is authenticated we would then pull all these credentials from the DB table and load them into the session variables. Then we would use EL to render or not render certain buttons on the page. For example: rendered="#{sessionScope.appDelVo1 == 'Y'}"
    Moving forward into latest ADF technology, what would be the best practice to achieve described functionality?

    Hi,
    ADF BC could have permissions added to the entity level (includes remove and update). So you can create permissions for the entity (as it doesn't matter for data security how data is accessed. If as a user you are nit allowed to change a database table then this is for tables and forms). You can then use EL to check the permission, thus no need to keep the privileges in the database.
    If a user is allowed to update an entity then you can check this using EL in the UI
    <af:inputText value="#{bindings.DepartmentName.inputValue}"
    readOnly="#{!bindings.DepartmentName.hints.updateable}">
    whatch this for a full coverage of ADF Security: Oracle ADF Security Overview - Oracle JDeveloper 11g R1 and R2
    Frank

  • We have a requirement to print the w2 forms for employees using java application, how can i implement this. Please give some suggestion.

    We have a requirement to print the w2 forms for employees using java application, how can i implement this. Please give some suggestion.

    Anyone any ideas to help please?

  • Password works for login but not for the Adobe CC Desktop application

    Password works for login but not for the Adobe CC Desktop application

    Please refer to http://helpx.adobe.com/creative-cloud/kb/troubleshoot-cc-installation-download.html
    ou can try deleting OPM.DB from steps below and try again.
    Mac OS: You can locate the OPM.db file in the \User\\Library\Application Support\Adobe\OOBE folder. To access the hidden user Library folder, see Access hidden user library files | Mac OS 10.7 Lion. - http://helpx.adobe.com/x-productkb/global/access-hidden-user-library-f iles.html
    Windows: You can locate the OPM.db file in the :\Users\\AppData\Local\Adobe\OOBE folder.  To view the hidden AppData folder, see Show hidden files, folders, filename extensions | Windows XP, Vista, Windows 7. -http://helpx.adobe.com/x-productkb/global/show-hidden-files-folders-ex tensions.html
    3) update to the latest version of the Creative Cloud app.
    Also we would like few more details:
    When has this issue started occurring, was this after installation of any specific adobe product.
    On which platform are you seeing this.
    Also we would like to know if after above steps this issue occurs ever again in future.
    You can refer to http://forums.adobe.com/thread/1239510
    Regards,
    Rajshree

  • TS4006 I have iPhone 4 with updated latest iOS And i am using FIND IPHONE application. But everytime when ever i login in it and serch for the device its shows but never give me the location"NO LOCATION AVAILABLE".It is already connected with WIFI but no

    I have iPhone 4 with updated latest iOS And i am using FIND IPHONE application. But everytime when ever i login in it and serch for the device its shows the device  but never give me the location"NO LOCATION AVAILABLE".It is already connected with WIFI and i tried all the stuffs that has been written in the manual. Plese give me the Proper suggetion about this issue..!!

    If your router is not identified in a national database (don't recall who maintains it or where it is) then there is no location associated with it.  Hence your device cannot be located.  I suggest you try your test at some public wifi spot, like a bookstore or coffee shop.  These places usually have a location associated with their wifi router.

  • Bad URL in BSP applications for login

    I have some BSP applications using the following URL for login (standard SAP login page):
    /sap/public/bsp/sap/system/login.htm?sap-url=<%=PATHTRANS%>&bspchangepasswordvisible=X&bspclient=001&bspdontshowhttpswarning=X
    this URL for login works good with a WAS 6.20 but not with a WAS 6.40
    Does anybody have an idea of why ? or if there is another login page to call in the WAS 6.40 to have the same functionality ?

    Hi Eric,
    in fact, there is a new login application available in 6.40, a lot easier to integrate and with more features than the old system application.
    To activate do the following: in SICF - at the tabrider where you configure the redirect to ../system/login.htm - you can find a checkbox labeled 'System Logon'. Setting this checkbox enables the new logon. The button 'Settings' opens another window where you can configure fields, default values, styles etc.
    Documentation is at http://help.sap.com/saphelp_nw04/helpdata/en/ff/c7de3fc6c6ec06e10000000a1550b0/frameset.htm.
    There is a set of weblogs in work to cover customization. In case you have further questions open a thread in this forum with topic '6.40 System Logon'.
    What is the error or problem which you get using the redirect to .../system/login.htm in 6.40?
    regards, Ulli

  • Application store requires that you answer 3 questions for future verification. The questions are stupid and not easy to remember. Why can I not just proceed with my download without this?

    The Application Store requires that you answer 3 questions for future verification. The questions offered are questions that I at least have no clear answer to. What was the first film you saw? and the like. You can say Not now, but then nothong happens and you are back to where you started. Is there a way to proceed with downloading apps without answering these stupid questions?
    I refuse to believe that Apple as an organisation designed these questions - must have been somebody else.

    This is Apple's security feature, you answer the questions or you stop using the account and buy Mac apps elsewhere. Do a search on Secure Notes in the keychain and answer the questions with nonsense answers and store them in a Secure Note for future reference.

  • My iPad 4 tried to open application but repeatedly iCloud asked for login with apple id password. I put my apple id password correct,even i reset it again but still it does not accept in iPad .i am bored with this 3rd class application.please help

    My iPad 4 tried to open application but repeatedly iCloud asked for login with apple id password. I put my apple id password correctly,even i reset it again but still it does not accepted in iPad .i am bored with this  class application.please help.After every 1 second icloud logoin asked.

    Find Apple ID
    https://iforgot.apple.com/applied
    iPad: Unable to update or restore
    http://support.apple.com/kb/ht4097
    iTunes: Specific update-and-restore error messages and advanced troubleshooting
    http://support.apple.com/kb/TS3694
    If you can’t update or restore your iOS device
    http://support.apple.com/kb/ht1808
     Cheers, Tom

  • Asks for login multiple times when running an application

    hi all
    I have created a login page which prompts me to ask for the user name password when i run my application for the first time
    .my problem is when sometimes i run a particular page and am navigationg thr the breadcrumbs back to the original page it again asks me for the login info .
    this problem occurs for some pages
    where are the settings that makes the page public and once i log on they should not ask me for the information
    plzzzz help me with this
    mandar

    Hi Mandar,
    When you say "back to the original page", make sure that you are going back to your "home" page and not to the logon page. Check the parent page on the breadcurmb that is failing.
    Hope this helps.
    Cheers,
    Patrick Cimolini

  • Does APP-V 5 SP2 applications still require Microsoft Application Virtualization SFT in order to scan for vulnerabilties/software inventory

     Does APP-V 5 SP2 applications still require  Microsoft Application Virtualization SFT in order to scan for vulnerabilties/software inventory

    Hello,
    Have you tried this hotfix?
    http://blogs.technet.com/b/appv/archive/2014/03/03/hotfix-package-2-for-microsoft-application-virtualization-5-0-service-sp2-is-now-available.aspx
    Nicke Källén | The Knack| Twitter:
    @Znackattack

  • Modify unbounded task flow for login process

    I wonder if I can use the unbounded task flow for login process. I have a login page, a home page and a change password page. As per the requirements, I need to show the login page first, if user password is expired, I need to show change password page, after user save the new password, I show the home page. If user password is not expired, then we go to home page directly.
    I have modified the unbound task flow adfc-config.xml. I have created a method call, which references a method in my managed bean to check the redirect page. I have created a router, which would go to change password page or the home page based on different outcomes. But the problem is, every time when I run the application, it always goes to the home page directly, even when the user password is already expired. I have set up break point at the checking redirect page method in my managed bean, looks like it never got called.
    Did I miss any steps here? Please advise. Thanks.

    A method is not a runnable object in your pageflow - so you can't start from it.
    You need to start from a page when your run your project.
    One option - convert your flow to be a bounded flow with the method as a default URL and then run it.
    See - https://blogs.oracle.com/shay/entry/passing_parameters_to_adf_appl

  • Automatically upgrade any superseded versions of this application not auto installing - Status always waiting for next maintenance schedule

    Hello,
    I'm trying to deploy an application to a user group with the option checked for "Automatically upgrade any superseded versions of this application" but it never auto installs.
    - The application is set to install to system whether the user is logged on or off. 
    - We do have user affinity, therefore the user does have a one or more primary devices setup.  
    - If I run the install manually, it will superseded and install the new application and uninstall the old applications.
    - The estimated installtion time minutes is set to 0
    - The maxmimum allowed run time is set to 120 minutes.
    We're on version SCCM 2012 SP1.
    My assumption of how it should work
    If the user is logged in or NOT and it's during the maintenance window, it should auto install the application. Maybe I'm wrong.
    Here's the scenario.
    User JohnDoe has application Viewer 1.0 installed on his machine.  He installed this app via the SCCM application catalog.   We now need to deploy Viewer 2.0 of this application.   I want to ensure when it's deployed it replaces Viewer 1.0 hence
    the reason to check the "auto upgrade.."check box.   
    Here's what happens. In software center, it will pre-downlaod the software and then set the status to "Waiting for next maintenance schedule".  The problem is that the status stays like this forever.   We do have maintenance windows set
    on the device collection that JohnDoe's primary device is part of.  Here are our maintenance windows.
    - Daily - 9PM to 5AM = 8 hours
    - Weekly - Saturday - 12:00AM to 12:00 = 24 hours
    - Weekly - Sunday - 12:00AM to 12:00 = 24 hours
    Coordinated UTC is not checked.
    The business hours in software center are set to 5am to 10pm.
    One would assume that it would auto install during the night since we have a big maintenance windows. I checked the ServiceWindowmanager.log and it does seem to show the various maitnenance windows.
    Here's what I've tried
    - If I make the deployment required, it will install right away regarless of maintenance windows.  However, i don't want to use this option because if the user logs in to other machine (e.g. boardroom computer), it will auto install this software.  
    - If JohnDoe clicks install in Software center or application catalog, it works.  There's nothing wrong with the packages.  The issue seems to be related with the maintenance windows. 
    - If I disable the maintenance windows, then it seems to work but only when I'm logged in.  It still does not work if I'm logged out.  It only kicks off the installation when I login if it's not during the business hour set in software center.  
     We need the maintenance windows since we don't want windows patching to occur during the day.
    - I searched and ran the report to ensure there's not another maintenance windows setup that would prevent this from installing.
    Our current workaround
    To ensure users are using the latest version, we deploy the application required for a couple of days, then delete that deployment once we reach a high 90%.  The problem with that is if some computers are turned off, they would be using the older version
    and it will never get upgraded unless the user installs it manually.
    Has anyone encountered this?  Any other log files I should look at? Anything else I should verify ?  I know in SCCM 2012 R2, you can set the maintenance window to only apply this schedule to software update (patching) but that option doesn't seem
    to be available in SCCM 2012 SP1.
    Any help, suggestiong, I will take.  Thanks.

    - If I make the deployment required, it will install right away regarless of maintenance windows.  However, i don't want to use this option because if the user logs in to other machine (e.g. boardroom computer), it will auto install this software. 
    Re-check your deployment, specially the user experience:
    If you've checked the box next to "Software installation", it will install after the deadline has passed and ignores maintenance windows. Change the deployment to required and uncheck that box and the software should be installed according to your
    maintenance windows.

Maybe you are looking for