Custom Attibute with Password Validations

Similar Messages

• Custom password validation

  hi,
  I am trying to write a custom java file for password validation. when we load it and compile using adadmin the class file is not getting generated.
  also, i would like to know how to customize the message that appears.
  example PASSWORD-INVALID. I would like to use explanatory message. Where do i define these strings.
  package oracle.apps.fnd.security;
  import oracle.apps.fnd.common.VersionInfo;
  // Referenced classes of package oracle.apps.fnd.security:
  // PasswordValidation
  public class AppsPasswordValidationCUS
  implements PasswordValidation
  public String getErrorStackApplicationName()
  return "FND";
  public String getErrorStackMessageName()
  return m_errorStackMessageName;
  public boolean validate(String username, String password)
  if(password ==null || password.length() == 0 || username == null || username.length() == 0)
  m_errorStackMessageName = "PASSWORD-INVALID";
  return false;
  if(password.length() < 6)
  m_errorStackMessageName = "PASSWORD-INVALID-LENGTH";
  return false;
  if(!validateLettersAndDigits(password))
  m_errorStackMessageName = "PASSWORD-INVALID-LETTER-NUMBER";
  return false;
  if(!validateNoUsername(username, password))
  m_errorStackMessageName = "PASSWORD-INVALID-USERNAME";
  return false;
  if(!validateNoRepeats(password))
  m_errorStackMessageName = "PASSWORD-INVALID-REPEATS";
  return false;
  return true;
  private boolean validateLettersAndDigits(String p_password)
  boolean flag = false;
  boolean flag1 = false;
  for(int i = 0; i < p_password.length(); i++)
  if(Character.isLetter(p_password.charAt(i)))
  flag = true;
  if(Character.isDigit(p_password.charAt(i)))
  flag1 = true;
  return flag && flag1;
  private boolean validateNoUsername(String p_username, String p_password)
  return p_password.toUpperCase().indexOf(p_username.toUpperCase()) == -1;
  private boolean validateNoRepeats(String p_password)
  for(int i = 1; i < p_password.length(); i++)
  if(p_password.charAt(i) == p_password.charAt(i - 1))
  return false;
  return true;
  private String m_errorStackMessageName;
  }

  Hi Colin,
  We are able to update the password in OIM user profile now. However, after the process is done in java code, it is not redirecting to OAM Password change success page which will have a Back button. Also, we are seeing a Bug Report form page with the content given below:
  Bug Report Form
  An error has occurred while executing the application.
  Your browser doesn't support sending mail automatically!
  Please send E-Mail to <a =""></a> with the following information:
  Your Name
  Organization
  E-Mail Address
  Phone Number
  Comment
  Make sure to append the following traceback in the mail.
  Traceback Traceback is unavailable.
  Product Lost Password ManagementVersion
  Platform Linux
  Any clue as when we will witness this?
  -Mahendra.

• TS3638 i have an internet connection but when i open app store it shows error message "cannot connect to app store".when i try to sign in with my valid apple ID and password it says "connection failed".i tried keychain access settings but it did not help.

  i have an internet connection but when i open app store it shows error message "cannot connect to app store".when i try to sign in with my valid apple ID and password it says "connection failed".i tried keychain access settings but it did not help.please help me!!

  Open Sysem Preferences from your Apple () menu top left in your screen then select the Firewall tab.
  Make sure the Firewall is turned off.

• Why i couldn't sign in to youtube with my valid account email and password?

  why i couldn't sign in to youtube with my valid account email and password?
  it reads:
  "This account cannot be used with Apple TV. Try again using a different account."
  the question is why not? i have no prob with signing in via other devices.

  Hi,
  It does not have to be your iCloud ID.
  It can be any Apple ID that has had any email verified.
  This issue can arise if the computer has had a Logic board replaced and the Serial number not put back on it.
  Use the Apple Menu top left > About this Mac
  Click twice on the line that currently tell you the OS version.
  Is the Serial Number present ?
  8:42 PM      Saturday; March 2, 2013
  Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
    iMac 2.5Ghz 5i 2011 (Mountain Lion 10.8.2)
   G4/1GhzDual MDD (Leopard 10.5.8)
   MacBookPro 2Gb (Snow Leopard 10.6.8)
   Mac OS X (10.6.8),
   Couple of iPhones and an iPad
  "Limit the Logs to the Bits above Binary Images."  No, Seriously

• DISPLAY ONLY CUSTOM MESSAGE WITH SRW.MESSAGE

  Hi.I created a report with Report Builder 9i.I also created two form parameters of type date.I put inside the validation trigger in the property inspector the following plsql code.
  function FROM_DATEValidTrigger return boolean is
  v_date VARCHAR2(12);
  date1 date;
  begin
  v_date := :from_date;
  date1:=TO_DATE(v_date, 'DD/MM/YYYY');
  return (TRUE);
  EXCEPTION
  WHEN OTHERS THEN
  SRW.MESSAGE(546,'My Message');
  return (FALSE);
  end;
  This code works fine.Supose the user input wrong data for example 29/02/2003 displays an alert message
  with my custom message.But after this displays an another message from the Report Builder like this:
  Rep-0546:Invalid parameter input.
  My question is .Is it possible display only my custom message with the SRW.MESSAGE built in procedure?
  Thanks in advance Panagiotis.

  Hi,
  I am using this function in my Validation process to display Error when user gives null input
  function DEPT_IDValidTrigger return boolean is
  begin
       -- Check for Null Value here
       if(:DEPT_ID is null) then
       raise SRW.NULL_ARGUMENTS;
       else
  return true;
  end if;
       Exception
            -- Exception For Null Value
  when SRW.NULL_ARGUMENTS then
       srw.message(100, 'Please Enter Dept ID');
  raise srw.program_abort;
  end function ___ ;
  Function is correct but the error message i am getting at the client side is as follows ::
  "*MSG-00100: Please enter Dept IDREP-1419: 'dept_idvalidtrigger': PL/SQL program aborted.* "
  It seems it is adding some system level error.
  but i want only my custom message to be displayed on the client side ::
  *"Please Enter Dept ID"*
  Is this Possible in Oracle 6i.

• How to email a pdf file (attachment with password) using ABAP?

  Hi Colleagues,
  I
  n abap, how do you email a pdf file that contains password?
  (pdf with password, not the whole email).
  A custom program is created. Inside this program, it
  retrieves the spool number and converts it to a pdf file
  (using function module '....abapspool...'). No parameter to put password.
  I was able to do the above. The problem is how to put password on
  the pdf file.
  Once the user receives the email (say from hotmail or outlook) with pdf attachment, clicks on the pdf, it will as ask for an attachment.
  sap version 4.7.
  Questions:
  - how to code in ABAP to include the pdf with password in an email
  received from hotmail or outlook?
  - any function modules or classes that can do the pdf password?
  - do we need to install another technology or add-on application or
  ???? to do it? If yes, do we code in abap?
  - any other ideas?
  Thanks in advance.
  Raymund

  Hi Colleagues,
  I
  n abap, how do you email a pdf file that contains password?
  (pdf with password, not the whole email).
  A custom program is created. Inside this program, it
  retrieves the spool number and converts it to a pdf file
  (using function module '....abapspool...'). No parameter to put password.
  I was able to do the above. The problem is how to put password on
  the pdf file.
  Once the user receives the email (say from hotmail or outlook) with pdf attachment, clicks on the pdf, it will as ask for an attachment.
  sap version 4.7.
  Questions:
  - how to code in ABAP to include the pdf with password in an email
  received from hotmail or outlook?
  - any function modules or classes that can do the pdf password?
  - do we need to install another technology or add-on application or
  ???? to do it? If yes, do we code in abap?
  - any other ideas?
  Thanks in advance.
  Raymund

• Encrypt sensitive with password and calling sub pkgs

  Hi we run 2012 enterprise and r introducing a db2 connection that "allows saving password".
  We run from the file system (not the catalog) and face a challenge.
  The default prot level on the SUB PACKAGE that has the db2 connection (only such connection right now) prevents our prod credentials from making the connection because its a different user than the one that created the sub pkg.
  Encrypt sensitive with password seems a more strategic alternative but I dont know if the param (I think its called "decrypt") on the dtexec command line that allows passing a password at run time applies to just the parent pkg or all subs also.
  I dont want to delay validation.  I wouldnt even mind changing the xml connection string (by entering pswd in whatever syntax is necessary) using notepad but dont know what issues that will cause.
  I wouldnt mind having someone logon and "re" save  the pkg using the credentials of our prod userid and choosing the default prot level instead.
  I also wonder if none of the other pkgs (including master) dont have any sensitive data, can their prot level defaults be left alone?
  Can the community comment?

  If you are having sensitive info (passwords for conn strings etc) in our packages, the best way is to change the protection level to "encrypt sensitive with password" and then provide the password.
  When we schedule a job or exec the parent package, the child packages are called automatically.
  Thanks, hsbal

• Customer Invoice with item numbers without OM installed.

  Hi
  We would like to know if we want to import customer invoices with items and there is no Order Management module.
  How items would be validated. Can this be done through item validation org and if yes, what setups are required and in which module.
  Regards,
  Ish
  Edited by: user12190893 on Jan 16, 2012 3:22 PM

  Hi,
     I want to create Customer Invoice (DR) with the BAPI BAPI_ACC_DOCUMENT_POST. Can you tell me if you realize this project?
  Best regards

• Bringing back an old password validation rule

  Good afternoon
  On our old 4.6C system, there was a password validation rule that stated the first three characters of the password cannot occur in the same order in the user ID. This rule was removed when we upgraded to ECC 6.0
  While the users hated that rule, that rule was a SOX requirement at our company and I would like to have it back. Before I resort to programming user exits, is there a way to reactivate or at least simulate that rule? I cannot use USR40 because not only does it effect all users on the system, it only works on the second logon and not at validation time.
  If programming user exits like EXIT_SAPLSUSF_001 is my only option, where can I get the password at logon time? From my understanding, SAP does not store this in a system value or even a global variable or table to prevent the recording of passwords. While this is a valid security reason, it would solve the resurrection of this password role through programming.
  Please advise.
  Kind Regards
  Moggie

  Hi Moggie,
  > Pending the result of the contract programmer's research, placing a 3 character prefix of each new user ID in table USR40 is looking like the best option, though I do hate to place that kind of check for all user IDS when only one ID really needs that validation rule.
  A problem with that will soon arise when you have for example 10000 user ID's and want the users to have the opportunity to use strong pass-phrases (not just pass-words). Additionally, the passwords are now case-sensitive but the user ID is not. A pass-phrase for users such as "The_D0g_&_Cat_r_FAT" would go undetected even if you have any "THERON's" in the system, but why should it not be allowed? It's a good one!
  Users will soon notice that only passwords which are very cryptic can be used, and they will start writing them down on Post-It's.
  While that is going on... the "real sinners" who dish out weak or the same initial / reset passwords (like "INIT1234") or administrate the users for whom passwords don't change (like "RFC4PROD") will not have any further "idiot-proof" controls as it is only a warning, which is intentional.
  > If the passwords are cycled regularly, adhere to profile values in the instance that encourage strict password rules, and are kept private and secure, it is not a compliance issue to the auditors.
  There you have it. 
  Tell them that. Even if they do use the first 3 bname characters as the first 3 CAPS_ON password characters, they won't be able to do it for long anyway if the password rules are appropriate...
  Incase you are not aware of it, please also take a look at (and search here and SAP notes for) infos about instance parameter login/password_compliance_to_current_policy (e.g. SAP Note 862989). With appropriate minimum password rules (not overkilled - because the system must still be able to generate compliant wizard-passwords!), you will catch the bigger risks than any one 'BSM?????'s in there somewhere....
  Cheers,
  Julius

• Extend WL Authentication Provider Password Validation

  Hi folks
  I'm looking for any advice on how to extend the OOB password validation that is available and documented here:
  http://docs.oracle.com/cd/E12840_01/wls/docs103/secmanage/atn.html#wp1212100
  Specifically we'd like to test whether the desired password has been used in the last 8 they've used and also to enforce that it expire after x days. Any pointers would be much appreciated.
  Thanks,
  Paul

  1- How can an authentication provider supports password validation providers ?
  We decided to make our own authentication provider so I doubt we support it
  Yes, your custom authentication provider will not support it.
  2- How it is suppose to work ?
  Now, when a user change his password (or any of his attributes), we call a stored procedure (DB) which updates the user table ...
  The way I see it, the web application should call the password validation provider before (or instead and then the provider will call the stored procedure)
  Have u configured the a databse authenticator? Looks like you are modifying the password in the database directly ( using stored procedures) so Password Validator will not come in picture at all.

• Winzip with password protection

  Hi All,
  We have a requirement to zip the files with password protection. Please can anyone guide us how to acheive this.
  Currently we are planning to develop a custom adapter module  by extending PayloadZipBean module  to get the password functionality by writing some custom code. Please can anyone guide us from where we can get the code for this module or how we can achieve this.
  Please correct me if the above mentioned approach is wrong. Also suggestions are invited to achieve the above mentioned requirement using other methods.
  If anyone has already gone through such requirement then please share your experience and the way you achieved this.
  Thanks and Regards,
  Shiv.

  HI Stefan,
  As per my understanding, the blog (/people/alessandro.guarneri/blog/2007/02/21/sap-xi-acting-as-a-huge-file-mover) you specified is explaining to reduce the load on the server by zipping the large files. please correct me if i am wrong.
  but the requirement is to zip the target file along with password protection. we are able to zip the target file by following steps in your blog (/people/stefan.grube/blog/2007/02/20/working-with-the-payloadzipbean-module-of-the-xi-adapter-framework), but how to password protect this zip file?
  Thanks...
  Sukarna.

• Rebate conditions with mulitple validity dates

  Hello,
  I have an urgent requirement.  My customer wants to define different rebate rate by date in one agreement like normal pricing condition types.
  for an example,
  The validity date of the agreement is
  1/1/2008 ~ 3/31/2008
  Rebate conditons are as follows,
  Material A  $2 per 1unit,  1/1/08 ~2/28/08
  Material A  $3 per 1unit,  3/1/08 ~ 3/31/08
  I would appreciate with your help.  I will give you high point!

  Hi,
  Thanks for your answer.
  When I tried to create a new condition record with different validity date, the system gave me a message "VK 104, the condition is being processed in current session".  and then removed the record from the screen.  It's because of the same condition key exists.
  I think it's related to the difference on condition tables.  When I checked a condition table for PR00, the attribute was "with validity period" but a rebate condition table had none in attribute.
  Do you have any idea?

• Does setPasswordChangeRequired(FALSE) overides Password Validity Period?

  Hi,
  If I set setPasswordChangeRequired to FALSE will the Password Validity Period take efect or this users with the setPasswordChangeRequired equals to FALSE will never get asked to change their passwords again?
  Thanx in Advanced!
  Kind Regards,
  Gerardo J

  Hi Gerardo ,
  How did you got around this issue. Can you share your solution/ideas.
  Thanks
  Srinivas

• EAP-TLS match on custom EKU with ACS 5.5

  Hi,
  is there any possibility to match on a custom EKU with ACS 5.5?
  I have to create a solution to limit access to a specific WLAN SSID. Only certificates containing a specific, self-created EKU should have access to this SSID. Other certificates from the same CA should be denied.
  I know that it's possible with Microsoft NPS but I would prefer a solution with ACS. But in ACS the ceritifcate dictionary contains only a few attributes i.e. common name, issuer, subject, but not the Enhanced Key Usage  (EKU).
  Any suggestions?
  Thanks,
  Werner

  Object Identifier Check for EAP-TLS Authentication
  ACS can compare the OID against the Enhanced Key Usage (EKU) field in the user's certificate. ACS denies access if the OID and EKU do not match. For more information about options, see Authentication for profile_name Page, page 14-46.
  When OID comparison is enabled and a valid OID string is entered, all the certificates that the users present for EAP-TLS authentication are checked against the OIDs entered. Authentication will be successful only if the OIDs match. If OID comparison is enabled but the user certificate presented does not contain any OID in the EKU field, authentication will fail.
  To enable OID comparison you must:
  •Enable EAP-TLS from the NAP page.
  •Enter only contain numbers, dots, commas and spaces in the OID strings, for example: 1.3.6.1.5.5.7.3.2 is a valid OID string.
  •Enter multiple OIDs as comma-separated values. For example: 1.3.6.1.5.5.7.3.1, 1.3.6.1.5.5.7.3.2 is a valid string.

• Problem activating Facetime on iMac: I recently upgraded my iMac from Snow Leopard to Mountain Lion. Since the upgrade, when I try to sign on with my valid Apple ID

  Problem activating Facetime on iMac: I recently upgraded my iMac from Snow Leopard to Mountain Lion.
  Since the upgrade, when I try to sign on with my valid Apple ID & password I get this message "The server encountered an error processing registration. Please try again later."
  I have tried (again later) repeatedly without success. PLEASE HELP!