Browser error on APEX Login Page

Similar Messages

• Getting AADSTS50020 error on microsoft login page when using Azure Active Directory Authentication

  We have implemented Azure Ad single sign on using auto generated code from Visual studio 2013 with organization account authentication and its working fine.
  The problem is when user is logged in in azure management portal with his live account and in other tab he try to open our app, then he directly gets below error on Microsoft login page.
  Additional technical information:
  Correlation ID: 78e13474-6f92-40ec-b463-91e36a6dae84
  Timestamp: 2015-04-14 12:27:20Z
  AADSTS50020:
  User account '[email protected]' from external
  identity provider 'live.com' is not supported for application
  'https://xxxxx.onmicrosoft.com/xxxx'. The account needs to
  be added as an external user in the tenant. Please sign out and sign in
  again with an Azure Active Directory user account.
  It works fine if I log out from management portal. Is there any way to resolve this issue without forcing user to log out from live account(management portal)?

  I assume you created a web application using VS2013 which uses the WS-Federation protocol.
  The behavior that you are seeing is expected Single-sign-on because you are logged in using the live account in the management portal.
  For WS-Federation, there is no current way for a caller to specify they want to force a fresh login, so the behavior is always the equivalent of LoginBehavior.Normal.
  The user will need to either sign-out or use an in-private session in the browse.
  If you switch to openID connect(sample at
  https://github.com/AzureADSamples/WebApp-OpenIDConnect-DotNet) and use the “prompt=login” query paramerter in the sign in request, this will force a fresh login.

• Limit access to Apex login page

  Hi,
  We are deploying an application to our users. I need to limit access to Apex login page f?p=4550 to some predefined Ip adresses. Any ideas on this?
  Best regards,
  Onur.

  How exactly the APEX engine forces a '404' to be returned, I am not entirely sure. Perhaps it sends back the Response with the Header Status set to 404 ?Yes, with this process on the login page.
  begin
    if not #OWNER#.wwv_flow_security.ip_check then
        #OWNER#.wwv_flow.g_unrecoverable_error := true;
        sys.owa_util.status_line(404, 'Page Not Found');
        sys.owa_util.http_header_close;
    end if;
  end;Scott

• Error on microsoft login page for OpenId authentication using Azure AD

  We have implemented authentication for multi tenant SaaS solution which uses Azure Ad single sign on using OpenIdConnect authentication and its working fine.
  The problem is when user is logged in in azure management portal with his live account and in other tab he try to open our app, then he directly gets below error on Microsoft login page.
  Additional technical information:
  Correlation ID: 78e13474-6f92-40ec-b463-91e36a6dae84
  Timestamp: 2015-04-14 12:27:20Z
  AADSTS50020:
   User account '[email protected]' from external
   identity provider 'live.com' is not supported for application
   'https://xxxxx.onmicrosoft.com/xxxx'. The account needs to
   be added as an external user in the tenant. Please sign out and sign in
   again with an Azure Active Directory user account.
  This works fine if I will pass "prompt=login" query string parameter in sign in request, But in that case single sign on is not working. Is there any way to resolve this issue
  without loosing single sign on experience?

  Hello,
  Have you tried the steps suggested by
  Imtiaz Hussain in the
  previous thread you queried ?
  Is the error the same that you were previously encountering ?
  Regards,
  Neelesh.

• How can I add a UserGroup input in an APEX Login Page

  Hi,
  I am willing to add a UserGroup input (dropdown) in APEX Login page, but I see the default Login page supports only two parameter, i.e. Username and PWD. I see the authentication function wwv_flow_custom_auth_std.login(
  P_UNAME => :P101_USERNAME,
  P_PASSWORD => :P101_PASSWORD,
  P_SESSION_ID => v('APP_SESSION'),
  P_FLOW_PAGE => :APP_ID||':1'
  takes only username and pwd. But I need to add one more field, how can I accomplish this ?

  Hi,
  I have similar structure of the accounting like you.
  I have table users, roles, ...
  Then i use script like this:
  select nvl(1, null)
  from APEX_USER u,
  APEX_USER_ROLE r
  where u.active = 'Y'
  and r.USER_ID = U.ID
  and u.user_name = v('APP_USER')
  and r.appl_id = v('APP_ID')
  and r.is_edit = 'Y'
  and ((instr(group_name, ',NB_EOS,') > 0 and :P2_STATUS not in ('2','0'))
  or instr(group_name, ',NB_ADV_NT_ADM,') > 0 and :P2_STATUS not in ('2','5', '0')
  or instr(group_name, ',NB_CALL_ADMIN,') > 0 and :P2_STATUS not in ('2','5', '0'))
  There i have set the row for each application and user with my defined roles.
  Regards
  J :D

• Internal Server Error while accessing login page.

  Hi,
  We have recently upgraded our database from 9.2.0.8 to 11.2.0.3 on AIX 6.1 platform (EBS version 11.5.10.2). We are not able to get the login page and receiving Internal Server Error on the login page without any error messages.
  On checking we have found following errors in mod_jserv.log:
  [25/10/2013 05:53:42:935] (ERROR) ajp12: Servlet Error: java.lang.NoClassDefFoundError: oracle/apps/fnd/sso/SessionMgr: oracle/apps/fnd/sso/SessionMgr
  [25/10/2013 05:53:42:935] (ERROR) an error returned handling request via protocol "ajpv12"
  [25/10/2013 05:53:42:935] (INFO) balance: continuing to ibmapptest:16070
  [25/10/2013 05:53:42:935] (ERROR) balance: 12386336 internal servlet error in server ibmapptest:16070
  [25/10/2013 05:53:42:935] (ERROR) an error returned handling request via protocol "balance"
  We tried clearing the cache directories and bounced Apache but that dint help.
  Why would we be receving this error and how to resolve it?

  OK, this is an all too common issue - the logs are insufficient so you may well have to try some extra debugging to properly understand the problem.
  If you have Metalink access try this: NOTE.249669.1 How To Collect Apache and Jserv Debugging
  Basically, you should do the following - and maybe upload the logs here if you want to. I assume you are on 11.5.10. If not, then amend as appropriate:
  Enable de-bug for Apache and Jserv:
  1. Shut down the oracle application server.
  2. Backup or change the name of the following files:
  IAS_ORACLE_HOME/Apache/Apache/logs/error_log
  IAS_ORACLE_HOME/Apache/Apache/logs/error_log_pls
  IAS_ORACLE_HOME/Apache/Apache/logs/access_log
  IAS_ORACLE_HOME/Apache/Jserv/logs/mod_jserv.log and jserv.log
  After making a copy of these files or after renaming them, please delete
  them from these directories. This enables new log files to be created
  when the applications server is restarted and will help you to focus on
  the current problem.
  3. Enable debug logging for Apache
  Update IAS_ORACLE_HOME/Apache/Apache/conf/httpd.conf to set the LogLevel parameter:
  LogLevel debug
  4. Enable debug logging for Jserv and mod_jserv
  a) Update iAS_ORACLE_HOME/Apache/Jserv/etc/jserv.conf to set ApJServLogLevel parameter to:
  ApJServLogLevel debug (from warn)
  b) Update iAS_ORACLE_HOME/Apache/Jserv/etc/jserv.properties to set the
  log=true
  log.channel.info=true
  5. Enable debugging in ssp_init.txt
  Update iAS_ORACLE_HOME/Apache/Jserv/etc/ssp_init.txt to add Debug:
  DebugLevel=5
  DebugSwitch=ON
  6. Please re-start the application server
  7. Reproduce the problem
  8. Upload the following files:
  IAS_ORACLE_HOME/Apache/Apache/conf/apps.conf and httpd.conf
  IAS_ORACLE_HOME/Apache/Apache/logs/error_log_pls
  IAS_ORACLE_HOME/Apache/Apache/logs/error_log and access_log
  IAS_ORACLE_HOME/Apache/Jserv/logs/mod_jserv.log and jserv.log
  IAS_ORACLE_HOME/Apache/Jserv/logs/jvm (all files in this directory)
  DA

• Trying to access server remotely. Have Static IP from ISP but if I type that address into browser I get router login page. How do I get RDP

  Hi Guys, Please help.  I am trying to run remote desktop from internet.  I have just been given a static IP address from my ISP and when I type it into browser I get router login page.  I want to be able to use Remote Desktop.  I can
  use RDP on the LAN and works great but not from external (internet).  I don't know how to get static IP address to open windows login page or RDP to connect when I put IP address into RDP..  I have Windows 2003 server running. 

  Check your router for free ports. You may use http port number "80" to port forward the request to your server. In your firewall settings, create a new rule to allow incoming http request. Before that enable NAT in your router for LAN and assign
  a static IP address for the server machine. It would make port forwarding easier.

• Third party system login page instead of apex login page

  Hello,
  One of my customers wants to login into an apex application using their intranet page. This page has two text fields:
  username and
  password
  and a login button.
  There is no validation done at their side. The goal is to pass this information to apex and apex needs to check if this information is correct (checking against own user tables) and let the user into the application or refuse an access. I am thinking about the best way to do that. Is there anyone out there with some similar experience?
  Denes Kubicek
  http://deneskubicek.blogspot.com/
  http://www.opal-consulting.de/training
  http://apex.oracle.com/pls/otn/f?p=31517:1
  -------------------------------------------------------------------

  Have a look SOLVED: Automatic Login but only if a user is an Oracle User
  Well I effectively do this with our Java application calling an APEX reporting application.
  The trick is to get apex to automatically submit the login page without the user having to pressing the login button.
  Once this works, the rest is fairly straightforward.
  Effectively what happens is our java application calls a procedure which populates a table with
  a username, encrypted password and a checkvalue (randomly generated), and returns the checkvalue to the calling procedure.
  We also have the bones of the URL in a properties file.
  The login page reads the value of the checkvalue from the URL in teh html header using various bits of javascript.
  We have a before header process on the apex login page which reads the information from the table
  table (and deletes it as soon as it reads it).
  It then uses the username, and password obtained from the table and just passes these values to the wwv_flow_custom_auth_std.login procedure.
  I can email you the code if you want.

• Partner application configuration is missing error on SSO login page

  We have APEX 3.1.2 setup as a partner application and an application within APEX setup to use SSO for authentication. Following a link to the APEX application redirects to the Single Sign-On page, as it should, but it also shows "Error: The partner application configuration is missing or expired." I type in my password and username, click the Login button, and (if I entered my username and password correctly, of course!) then the APEX application is shown. So, I cannot figure out why we're getting the no_papp_err error and I have not found any solutions to that issue on Metalink or anywhere else on the Internet. Any ideas? I'm concerned that we have a misconfiguration somewhere that is causing this error and will affect any other partner application we setup in the future.
  We're on Oracle Portal 10.1.4, SSO 10.1.2, and SSL is setup on both infra and mid tiers.

  Did you try checking the partner application entries on the SSO-login server page?
  please login as orcladmin or some other user with membership in, i beleive, iasadmins group. verify that for this partner application, what you see here corresponds to the application URL. it looks like your login page call may have issues. so check for login url too.
  also check the ORASSO.WWSSO_LS_CONFIGURATION_INFO$ for entries corresponding to Apex application.

• ADF 11g:Error When running login page: ADF security

  I am using Jdeveloper 11.1.1.2.0.Based on the following post
  http://blogs.oracle.com/fusionmiddlewarereallife/adf11gsecurity.html when I am running the application I am getting following error in web browser:-
  Error 403--Forbidden
  From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
  +10.4.4 403 Forbidden+
  The server understood the request, but is refusing to fulfill it. Authorization will not help and the request SHOULD NOT be repeated. If the request method was not HEAD and the server wishes to make public why the request has not been fulfilled, it SHOULD describe the reason for the refusal in the entity. This status code is commonly used when the server does not wish to reveal exactly why the request has been refused, or when no other response is applicable.
  Steps to reproduce the error:-
  1) Unzip the lession6.zip file (http://blogs.oracle.com/fusionmiddlewarereallife/Lesson6.zip)
  2) Open application in your Jdeveloper and run the login.html page.
  3) In the login page,give user id as "James" and password as "welcome1"
  4) You will see above error.
  I have tested the above in Firefox 3.6.3 and IE7.*Please note that when you run the PublicPage.jspx, application works fine*. Its not working in the case when you are running the application using login.html
  I have checked the Adnrejus post on this error(http://andrejusb.blogspot.com/2009/12/solving-error-403-forbidden-in-adf.html), but weblogic.xml is generated with required entries.
  Can anyone help me in this please:-
  Thanks,
  Vikram

  Me too have tested the application by running the public page. Its working fine.
  But my hole point here is, why application is not moving to the PrivatePage.jspx from login page. Means why can't we directly run the login page and access the PrivatePage. Even when success_url is configured in web.xml
  <servlet>
  <servlet-name>adfAuthentication</servlet-name>
  <servlet-class>oracle.adf.share.security.authentication.AuthenticationServlet</servlet-class>
  <init-param>
  <param-name>success_url</param-name>
  <param-value>/faces/PrivatePage.jspx</param-value>
  </init-param>
  <load-on-startup>1</load-on-startup>
  </servlet>
  Thanks again,
  Vikram

• Custom Error message in Login Page

  Hi,
  I am using MVC framework for my project. I want to display custom error messages to the user in the Login page(JSP).
  For eg: invalid password, password has been expired etc. How do I pass these messages from Java to my login page & display it?

  This is a sample action class for login page in struts : -
  package xxx;
  import javax.servlet.http.HttpServletRequest;
  import javax.servlet.http.HttpServletResponse;
  import org.apache.struts.action.ActionError;
  import org.apache.struts.action.ActionErrors;
  import org.apache.struts.action.ActionForm;
  import org.apache.struts.action.ActionForward;
  import org.apache.struts.action.ActionMapping;
  import LoginForm.java;
  public class Action extends org.apache.struts.action.Action
  public ActionForward execute(ActionMapping mapping, ActionForm form,
  HttpServletRequest request, HttpServletResponse response)
  throws Exception {
  ActionErrors errors = new ActionErrors();
  ActionForward forward = new ActionForward(); // return value
  String username;
  String password;
  try {
  LoginForm lf = new LoginForm;
  username =lf.getUserName();
  password = lf.getPassword();
  if( username== null)
  forward=mapping.getInputForward();
  if( (username == "admin" ) && ( password="admin"))
  // do something here
  } catch (Exception e) {
  // Report the error using the appropriate name and ID.
  //Errors will be caught here.
  errors.add("name", new ActionError("id"));
  // If a message is required, save the specified key(s)
  // into the request for use by the <struts:errors> tag.
  if (!errors.isEmpty()) {
  saveErrors(request, errors);
  // Forward control to the appropriate 'failure' URI (change name as desired)
  //     forward = mapping.findForward("failure");
  } else {
  // Forward control to the appropriate 'sucuess' URI (change name as desired)
  forward = mapping.findForward("success");
  // Finish with
  return (forward);
  You need to have LoginForm.java as Model and Login.jsp as View . Action.java will be your controller.

• IIS Server 7.5 403 Forbidden Access Denied Error after submitting login Page

  Hi All,
  Need help to resolve below error:
  403 - Forbidden: Access is denied.
  You do not have permission to view this directory or page using the credentials that you supplied.
  Getting this error once hitting submit button, here i am entering only user name it should give an alert msg asking for the password. 
  The application is running on IIS server 7.5 and recently enabled Anonymous Authentication and since then it is giving this error.
  But if i am accessing the application locally it means in server machine it is working but from remote system it gives 403 error.
  Regards,
  Kirti

  Hi,
  it's difficult to say what exactly is causing without more info on you confiuration.
  I'm, from you description, assuming a webpage that was configured for forms authentication. You enabled anonymous authentication and now it no longer works.
  Forms authentication relies on webpage logic. In most cases, you cannot replace it 'like that' by another authentication method as the login page contains logic on how to store the usercredentials and/or authorization and were to go after authentication
  has finished.
  Anonymous authentication relies on the  application pool identitiy (or the anonymous user) having RX access to the content. Depending the configurations you made when enabling anonyous authentication, you might aditionnaly need to assign an identity
  to the anonymous user and configure ntfs privilges on the content.
  Check IIS logs and event logs for information. if you do not succeed to resolve, I would suggets to post on teh iis.net forums and include detailed configuration information.
  MCP/MCSA/MCTS/MCITP

• Login error in the login page ...

  Hi all,
  I have a few applications in my work space but one of the application I can not run, when try to run getting this error message -
  ORA-06550: line 1, column 10: PLS-00201: identifier 'RATIS_USER.IS_ADMIN' must be declared ORA-06550: line 1, >column 7: PL/SQL: Statement ignoredIn the debug section, it shows the following -
  0.02:0.02: S H O W: application="37206" page="101" workspace="" request="" session="3410044959524885"
  0.03: alter session set nls_language="ENGLISH"
  0.03: alter session set nls_territory="UNITED KINGDOM"
  0.03: NLS: CSV charset=WE8MSWIN1252
  0.03: ...NLS: Set Decimal separator="."
  0.03: ...NLS: Set NLS Group separator=","
  0.03: ...NLS: Set date format="DD-MON-RR"
  0.03: ...Setting session time_zone to -05:00
  0.03: NLS: Language=en-gb
  0.03: Application 37206, Authentication: CUSTOM2, Page Template: 5425767280642058915
  0.03: ...Session ID 3410044959524885 can be used
  0.03: ...New Instance Detected - :4500:4350:4000:50843
  0.03: ...Application session: 3410044959524885, user=TAJUDDIN335
  0.03: ...Determine if user "TAJUDDIN335" workspace "2617034107818392993" can develop application "37206" in workspace "2617034107818392993"
  0.03: Session: Fetch session header information
  0.03: ...Metadata: Fetch page attributes for application 37206, page 101
  0.03: Fetch session state from database
  0.03: Branch point: BEFORE_HEADER
  0.03: Authorization Check: "5474429220436784237" User: "TAJUDDIN335" Component: "APPLICATION"
  0.03: Fetch application meta data
  0.04: Computation point: ON_NEW_INSTANCE
  0.04: ...Perform computation of item: F102_APP, type=STATIC_ASSIGNMENT
  0.04: ...Performing static computation
  0.04: ...Session State: Save "F102_APP" - saving same value: "RATIS - Recreation And Tourism Information System "
  0.04: ...New Session = True
  0.04: Processing point: AFTER_AUTHENTICATION
  0.04: ...Process "set_is_admin": PLSQL (AFTER_AUTHENTICATION) IF ratis_user.is_admin(:APP_USER) THEN :F102_IS_ADMIN := 'TRUE'; ELSE :F102_IS_ADMIN := 'FALSE'; END IF;
  0.04: Encountered unhandled exception in process type PLSQL
  0.04: Show ERROR page...
  0.04: Performing rollback...
  0.05: Processing point: AFTER_ERROR_HEADER
  >
  I could not find anything in the login page 101, I had one custom_authentication package which I have removed but still the same error. Any ideas ....!!!
  Thanks in advance,
  Tajuddin

  Looks like you have an on-new instance application process that calls a non-existent function "ratis_user.is_admin".
  Scott

• Authorization Error on Peoplesoft Login Page

  Hi, this is related to the previous project we are still working on.
  Invoking a Java Method from Peoplecode
  While we have found that our approach have been successful in Dev and Test Environments, once we migrated the changes to Production, it seem to have stoppped working. Our client wants to test the link from Test Environment and would Single Sign On to the Production environment. But we are getting this eror, Authorization Error -- Contact your Security Administrator on the Peoplesoft login page when the link is clicked from the Third Party website.
  The node setup for Dev, Test and Prod environments under Node Definitions are using PSFT_CR as the default local node and are all working when ping'ed. The defaut user that is used for allowing public access in the Web Profile are setup'ed just the same in all three environments, and application/web servers have been restarted as well.
  One thing we noticed is that the url of the third party website is http and the url for the PS prod is https. Could this be the one causing the error, or have we missed something on the setup.
  Again, we appreciate your insights regarding this.
  Edited by: Jeremy Leung on Jul 9, 2012 11:50 PM

  Hello,
  Have you tried the steps suggested by
  Imtiaz Hussain in the
  previous thread you queried ?
  Is the error the same that you were previously encountering ?
  Regards,
  Neelesh.

• Unexpected error in SSO login page

  Hi all,
  We have a problem with our SSO, or with our LDAP directory, or with the way in which they work, not sure about. In the past we were using version 9.x and everything worked fine. Now we migrated to version 10.1.2.0.2 and we discovered that using the same functionality to register and log user is crashing. After a bit of debugging, the problem seems to be that the PASSWORD of the created users is encrypted using some Hash and retrieve in an array of bytes, insted of in plain text as before. In principle this shouldn't affect the way in which we use the LDAP & SSO, but for some reason, when the user tries to log in using the recently created user account and password, the SSO login page gives an "unexpected error" message. The SSO login page is the original page coming with the SSO infrastructure, no change at all on it.
  Any idea why this might happened? Is the some way to configure the SSO or the LDAP so they don't encrypt the user password? Any other possible config detail that we should check?
  Thanks in advance,
  Luis

  So after finding the log files on our SSO server, I found out the exact error message that the SSO was throwing was that the account was still not activate!!! Then I realized that we started to make use of the "Start date" LDAP field recently, and event when the date was set to the current date when the account was created, the time was set to 0s, event when the current time was also passed to the LDAP. I don't know what's the reason why the LDAP didn't get our time, passing the date-time with the format the LDAP was asking for (yyyyMMddHHmmssz), but just by rolling one day back the start date, the user accounts were automatically activate when they're creating, solving our problem.
  Regards,
  Luis
  Edited by: lagh on Dec 15, 2008 11:52 AM