Custom Login Form Error

Hello, after I implemented my Membership Provider and got it working i´m trying to implement the login form. After the process of user password validation is complented (Not done by membership provider, it only checks if user exists in DB) is completed,
I get the error Could not retrieve the IIS Settings. Parameter name: context]
The method I use is:
SecurityToken token = SPSecurityContext.SecurityTokenForFormsAuthentication(new Uri("http:\\localhost:9090", 'cmp', 'crp', 'username' , 'password'));//Notice I input the URL manually for testing
I also tried using (SPContext.Current.Web.Url) no luck either
Any help will be greatly appreciated!

Hi,
According to your description, my understanding is that after the validating user authorization, it occurs the error.
I suggest you can go to the Central Administartion => System Settings => Configure alternate access mappings.
Click on "Edit Public URLs", select Your app in "Alternate access mappings collection" and then fill up "Internet" textbox.
If the issue still exists, I suggest you can use Fiddler to track the web request.
Here is a similar thread for your reference:
https://social.technet.microsoft.com/Forums/sharepoint/en-US/6b02dfe8-5594-4d25-991a-51ac9a0528b7/sharepoint-2013-fba-errorcould-not-retrieve-the-iis-settingsparameter-name-context?forum=sharepointadminprevious
Fiddler:
http://www.telerik.com/fiddler
Thanks
Best Regards
Jerry Guo
TechNet Community Support

Similar Messages

Display Login failure when using External Custom Login Form

I am new to OAM area and really apreciate if some one can guide me in the right direction. I have configured External Custom Login Form (thanks to fusionsecurity blog) with Oracle Access Manager 11g + webgate 10g. If I enter correct user id and password in the below form, then all is good and able to access the protected resoruce.
If I enter incorrect values for loginname/password fields, then the from simply refreshes itself and does not give me any error message. How can display error message when a user enters in correct values for those fields?
<form action="http://hostname:7777/oam/server/auth_cred_submit" method="post">
<fieldset>
<legend>Login Screen</legend>
<label for="username" accesskey="u">User Name:</label>
<input type="text" id="username" name="username" size="15" tabindex="1">
<label for="password" accesskey="p">Password:</label>
<input type="password" id="password" name="password" size="15" tabindex="2">
<input type="hidden" name="login-form-type" value="pwd">
<input class="submit" type="submit" value="Login" tabindex="3">
</fieldset>
</form>
Thanks

Hi!
I have installed Oracle Access Manager 11g + Webgate 11g and not 10g, but I think
it has to work beause login is being processed by OAM (/oam/server/auth_cred_submit);
and it if does not work, it may give you a clue on how to do it.
Having stated that fact, it is very simple to do it: whenever I try to access a protected
resource and I am not authenticated I am redirected to my login page and some
special parameters are passed to it such as: request_id, OAM_REQ, authn_try_count and
some others.
authn_try_count is the magic one as it show the number of login tries, so here is
a code snippet of my login page which uses JSTL for conditional processing.
<form...>
<c:if test="*${param['authn_try_count'] > 0}*">
<span class="error-msg">
<fmt:message key="login.val.wrong.login"/>
</span>
</c:if>
</form>
Best regards,
Jesús García from
Mexico city

OAM In Custom Login Form: Is there a way to get the user that was blocked?

Hi
I'm creating a custom login form and I need to capture which user was blocked if I get an OAM-5 error code. There is no parameter that specifies which user was filled and I can't capture it before because the login page post directly to the OAM Server.

Hi
I'm creating a custom login form and I need to capture which user was blocked if I get an OAM-5 error code. There is no parameter that specifies which user was filled and I can't capture it before because the login page post directly to the OAM Server.

Custom tabular form error on apex_item id larger than 50

First post :)
I'd like to share a potential bug in apex (3.0.1) or misconfiguration in our application server
When creating a page with a custom tabular form, i've noticed that when i give a column an id over 50 (ex: "apex_item.text(51,salary) salary")
the page will generate errors in the apache.
The apache error log states the parameter F51 as incoming but it contains no value.
Further allong the log states:
"VARIABLES IN FORM NOT IN PROCEDURE: F51"
example report query:
select apex_item.hidden(1,"ID")||apex_item.checkbox(2,"ID") delete_checkbox
,apex_item.text(3,name) name
,apex_item.text(51,salary) salary
from employee;
I've always been under the impression that we could use F01 till F99?
Is there anyone who has encountered this problem before, or are my conclusions wrong?
Looking forward to an answer!
Niko

Hi Niko and Roel
Roel, you are right, I am hitting the 50 columns only limit too. Do you know of any ways to overcome this limit?
This post also describes the problem: Re: column in tabular form
Currently I need to create a tabular form to edit a table with 84 columns.
It sounds ugly, but this is a spreadsheet and the requirement is to get it in Oracle Apex 'as it is' and still, be able to edit it using MRU.
Any ideas?
Thank you very much.
Kubilay
Edited by: Kubilay on Jun 15, 2009 10:29 AM
Edited by: Kublai-Khan on Jun 15, 2009 10:30 AM

Custom login module error: Login permission not granted for myapp (myuser)

I have developed a custom login module for my application. I have followed the steps outlined in security guide and other postings. I could not log into the application when I access EJBs from an RMI client. I get the following error.
Login permission not granted for myapp (myuser)
I did grant the login permission to myuser.
I am using OC4J 10.1.3.1.0
Here are the steps I followed and the configuration files. Can anybody help me out?
1. Created a custom login module and packaged it in EAR along with other classes. In the commit method, I added my user into principals of subject. Here is the code,
==================================================================
public boolean commit() throws LoginException {
try {
if (!loginOk) {
return false;
Set<Principal> principals = subject.getPrincipals();
principals.add(user);
loginOk = true;
} finally {
// Some audit logs are written here.
return loginOk;
===============================================================
2. Added custom login module in orion-application.xml. Here are the relevant portions of orion-application.xml
===============================================================
<jazn provider="XML">
<property name="role.mapping.dynamic" value="true" />
<property name="custom.loginmodule.provider" value="true" />
<property name="role.compare.ignorecase" value="true" />
</jazn>
<jazn-loginconfig>
<application>
<name>myApp</name>
<login-modules>
<login-module>
<class>com.test.myServerLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>maxRetries</name>
<value>3</value>
</option>
<option>
<name>debug</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
</jazn-loginconfig>
<namespace-access>
<read-access>
<namespace-resource root="">
<security-role-mapping name="myUser">
<group name="users"/>
<group name="oc4j-app-administrators"/>
</security-role-mapping>
<security-role-mapping name="esp_operator">
<group name="users"/>
<group name="oc4j-app-administrators"/>
</security-role-mapping>
</namespace-resource>
</read-access>
</namespace-access>
===============================================================
3. After the application is deployed on the EAR, I can see the custom login module in system-jazn-data.xml. The command line jazn admin tool lists my custom login module for my application.
4. I have an RMI client, the client JNDI properties are
==============================================================
java.naming.factory.initial=oracle.j2ee.naming.ApplicationClientInitialContextFactory
java.naming.factory.url.pkgs=oracle.j2ee.naming
==============================================================
The value for java.naming.provider.url is constructed dynamically and it is ormi://myserver:23791/myapp
java.naming.security.principal is set to the user who is trying to login, myuser, in this case.
java.naming.security.credentials is set to the password entered by myuser, password in this case.
5. I used jazn admin tool to grant login permission to my user.
===============================================================
a. Added user
java -jar jazn.jar -user oc4jadmin -password welcome -adduser jazn.com myuser password
b. Grant roles
java -jar jazn.jar -user oc4jadmin -password welcome -grantrole users ja
zn.com myuser
java -jar jazn.jar -user oc4jadmin -password welcome -grantrole oc4j-app
-administrators jazn.com myuser
c. Grant RMI permission
java -jar jazn.jar -user oc4jadmin -password welcome -grantperm jazn.com
-user myuser com.evermind.server.rmi.RMIPermission login
===============================================================
After the permission is granted, the folowing piece of XML is added to system-jazn-data.xml.
===============================================================
     <grant>
          <grantee>
               <principals>
                    <principal>
                         <realm-name>jazn.com</realm-name>
                         <type>user</type>
                         <class>oracle.security.jazn.spi.xml.XMLRealmUser</class>
                         <name>jazn.com/esp_administrator</name>
                    </principal>
               </principals>
          </grantee>
          <permissions>
               <permission>
                    <class>com.evermind.server.rmi.RMIPermission</class>
                    <name>login</name>
               </permission>
          </permissions>
     </grant>
==============================================================
My principal class is not of type, oracle.security.jazn.spi.xml.XMLRealmUser. Hence, I changed system-jazn-data.xml to include com.test.MyUser instead of oracle.security.jazn.spi.xml.XMLRealmUser. Either way, I get Not Authorized and Login permission not granted for myapp (myuser).
Can anybody help me out, please?
Thank you,
Sri
Message was edited by:
user532586

I finally got it to work. But I have a problem granting RMI Permission "login", if the depth of my Principal class within the inheritance hierarachy is more than one. My hierarachy of my principal class is
Object --> ObjectA --> ObjectB --> ObjectC --> ObjectD
ObjectD is my principal class. ObjectB implements java.security.Principal. ObjectA has implementations for methods equals, hashcode and toString. ObjectB has implementations for getName.
When I try to grant RMI permission for ObjectD, I get an error that says null.
If I override the methods, equals, hashcode, toString, and getName in ObjectD and provide implementations, I still could not grant permission using jazn tool. I get error that says null. If I update the system-jazn-data.xml with the following grant tag, I could get into the application without any errors.
     <grant>
          <grantee>
               <principals>
                    <principal>
                         <class>com.test.ObjectD</class>
                         <name>developers</name>
                    </principal>
               </principals>
          </grantee>
          <permissions>
               <permission>
                    <class>com.evermind.server.rmi.RMIPermission</class>
                    <name>login</name>
               </permission>
          </permissions>
     </grant>
If I create a new class, myPrincipal that implements java.security.Principal, I donot have any problems. I can grant permission and access application.
Any ideas why I could not use ObjectD as my principal class for granting RMI permission?
Message was edited by:
user532586

FORM based login form-error-page

Hi,
I have activated FORM based login for EM (oracle 9iAS on Solaris). So, in web.xml for EMD, I have
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/jsp/login.jsp</form-login-page>
<form-error-page>/error/oc4j_error.html</form-error-page>
</form-login-config>
</login-config>
When I login as ias_admin, everything seems fine. However, when I login as any other user (not in ias_admin role), the browser redirects to /emd/console/ias/applicationServer...
Why is the container not redirecting to /emd/error/oc4j_error.html ?
Any input will be truly appreciated. Hopefully I am doing something wrong.
Thanks,
Krishnendu

Hi Frank,
Thanks for your reply. If I have a error page in the FORM login, then the container (according to j2ee specs) should redirect to /emd/oc4j_error.html if I authenticate as a user without administrator privileges.
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/jsp/login.jsp</form-login-page>
<form-error-page>/oc4j_error.html</form-error-page>
</form-login-config>
</login-config>
For all other containers (WAS, WebLogic and Sun Application server, Tomcat), it seems to work fine.
Thanks,
Krishnendu

Customizing Login Form

I am trying to customize the login form by adding another field. I'd then want to concatenate the new field with the existing field to generate a different UserId.
Does anyone know where I should be looking to make this change?
Login.jsp has this form.generateHTML call which confuses me.

You should be able to capture the form and formbutton definitions from the formlib in init.xml and update.xml and reload them as part of your customizations.
beware that the change you are going to make is for Global.
--sFed

Custom login form to change data source

Hi,
I actually went thru this link for some help on changing datasource at runtime.
http://www.jobinesh.com/2011/04/modifying-application-modules-jdbc.html.
Jdev version :11.1.2.2.0
What I am trying to is on my login screen i have three fields
User name Textbox
Pwd Textbox
DB ( SelectOne Choice)
Now when User is changing any db in SelectOneChoice(autosubmit =true) ,I am calling value change listener to set session variable.
public void dbChange(ValueChangeEvent valueChangeEvent) {
// Add event code here...
System.out.println("priint1");
//JSFUtils.setManagedBeanValue("sessionScope.dataSource", ADFUtils.getBoundAttributeValue("Name"));
JSFUtils.setManagedBeanValue("sessionScope.dataSource", valueChangeEvent.getNewValue());
System.out.println("priint2");
Also I am using DynamicEnvInfoProvider,code is as follows
package model;
import java.util.Hashtable;
import java.util.Map;
import oracle.adf.share.ADFContext;
import oracle.jbo.client.Configuration;
import oracle.jbo.common.ampool.EnvInfoProvider;
public class DynamicEnvInfoProvider implements EnvInfoProvider {
public DynamicEnvInfoProvider() {
super();
public Object getInfo(String infoType, Object env) {
if (EnvInfoProvider.INFO_TYPE_JDBC_PROPERTIES.equals(infoType)) {
Map session = ADFContext.getCurrent().getSessionScope();
//Object dsName = session.get(Configuration.JDBC_DS_NAME);
// System.out.println("Before "+session.get(Configuration.JDBC_DS_NAME));
Object dsName = session.get("dataSource");
System.out.println("Setting "+session.get("dataSource"));
System.out.println((String)dsName);
if (dsName != null) {
if (((Hashtable)env).containsKey(Configuration.JDBC_DS_NAME)) {
((Hashtable)env).put(Configuration.JDBC_DS_NAME,
(String)dsName);
//System.out.println("After "+session.get(Configuration.JDBC_DS_NAME));
return null;
public int getNumOfRetries() {
return 0;
@Deprecated
public void modifyInitialContext(Object initialContext) {
This is how appmodule config looks like
<?xml version = '1.0' encoding = 'UTF-8'?>
<BC4JConfig version="11.1" xmlns="http://xmlns.oracle.com/bc4j/configuration">
<AppModuleConfigBag ApplicationName="AppModule.AppModuleAM">
<AppModuleConfig DeployPlatform="LOCAL" jbo.project="model.Model" name="AppModuleAMLocal" jbo.txn.disconnect_level="1" ApplicationName="AppModule.AppModuleAM">
<Database jbo.TypeMapEntries="OracleApps" jbo.locking.mode="optimistic"/>
<Security AppModuleJndiName="AppModule.AppModuleAM"/>
<Custom JDBCDataSource="jdbc/ADFTRAINDS" jbo.envinfoprovider="model.DynamicEnvInfoProvider"/>
</AppModuleConfig>
<AppModuleConfig name="AppModuleAMShared" jbo.project="model.Model" ApplicationName="AppModule.AppModuleAM" DeployPlatform="LOCAL">
<AM-Pooling jbo.ampool.maxpoolsize="1" jbo.ampool.isuseexclusive="false"/>
<Database jbo.TypeMapEntries="OracleApps"/>
<Security AppModuleJndiName="AppModule.AppModuleAM"/>
<Custom JDBCDataSource="java:comp/env/jdbc/ADFTrainingDS"/>
</AppModuleConfig>
</AppModuleConfigBag>
</BC4JConfig>
Now on click of button I am calling a action listener to execute a operation binding which is executing a procedure but even though using system out i see code going in DynamicEnvoProvider and setting value when combo box value is getting changed ,but procedure is not executing in the modified db its still running on jdbc/ADFTRAINDS.
Can anyone help me figure it out whats problem here?
Regards,

Hi,
Jobinesh blog post comes with a sample, did you try and run this? If so, does it work? Note that if the sample works it makes it easier to find he problem as it allows narrowing down the problem area to your implementation. If the problem reproduces with Jobinesh's sample then its a clue that the product may have issues with dynamic JDBC credentials
Frank

Custom Login page error

HI,
I am trying to modify the Apps login page. I just renamed the page AppsLocalLogin.jsp to xxxAppsLocalLogin.jsp and try to access from the server. This gives me error
java.lang.RuntimeException: Cannot access oracle.app.fnd.sso
Here .app. access though in oracle apps folder structure there is not folder like app
Can anybody help me on this why this error is coming.

Security layer may display error messages which has no meaning and not helpful to to figure out what is the root cause. You can addres this to the Security forum if you hit there. But have the same question Ram asked. Any need to change the jsp name?

Oracle ADF 11g – Authentication using Custom ADF Login Form Problem

Hi Guys,
I am trying to Authenticate my adf application using custom Login Form.
following this..
http://www.fireboxtraining.com/blog/2012/02/09/oracle-adf-11g-authentication-using-custom-adf-login-form/#respond
But my Login Page is not Loading.I think its sending request in chain.my jdev version is 11.1.1.5.Any Idea.
Thanks,
Raul

Hi Frank,
I deleted bounded code and In another Unit Test I created a simple login.jspx page and applied form based authentication but still facing same problem means something wrong in starting.
My login.jspx page is
<?xml version='1.0' encoding='UTF-8'?>
<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.1"
          xmlns:f="http://java.sun.com/jsf/core"
          xmlns:h="http://java.sun.com/jsf/html"
          xmlns:af="http://xmlns.oracle.com/adf/faces/rich">
<jsp:directive.page contentType="text/html;charset=UTF-8"/>
<f:view>
    <af:document id="d1" >
      <af:form id="f1" >
        <af:panelFormLayout id="pfl1">
          <af:inputText label="USERNAME" id="it1"
                        />
          <af:inputText label="PASSWORD" id="it2"
                          />
          <af:commandButton text="LOG IN" id="cb1" />
          <f:facet name="footer">
          </f:facet>
        </af:panelFormLayout>
      </af:form>
    </af:document>
</f:view>
</jsp:root>
Don't know wht real problem is

OAM-02073 when trying to login with custom login page

I Created a custom login page, but when I submit it to OIM I get the error on the page "System error. Please re-try your action. If you continue to get this error, please contact the Administrator." with the OAM 11g Page, and in the logs it shows the errors below. Thanks for any ideas on what this issue could be.
<Oct 29, 2011 11:24:46 PM CDT> <Warning> <oracle.oam.controller> <OAM-02073> <Er
ror while checking if the resource is protected or not.>
<Oct 29, 2011 11:24:46 PM CDT> <Warning> <oracle.oam.binding> <BEA-000000> <OAM-
02073
oracle.security.am.common.utilities.exception.AmRuntimeException: OAM-02073
at oracle.security.am.engines.enginecontroller.AuthzEngineController.che
ckProtected(AuthzEngineController.java:536)
at oracle.security.am.engines.enginecontroller.AuthzEngineController.pro
cessEvent(AuthzEngineController.java:159)
at oracle.security.am.controller.MasterController.processEvent(MasterCon
troller.java:354)
at oracle.security.am.controller.MasterController.processRequest(MasterC
ontroller.java:517)
at oracle.security.am.controller.MasterController.process(MasterControll
er.java:457)
at oracle.security.am.pbl.PBLFlowManager.delegateToMasterController(PBLF
lowManager.java:209)
at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.
java:147)
at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.j
ava:107)
at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServl
et.java:168)
at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java
:133)
at oracle.security.am.pbl.transport.http.AMServlet.doGet(AMServlet.java:
673)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run
(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecuri
tyHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.jav
a:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.d
oFilter(OAMServletAuthenticationFilter.java:265)
at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilt
er(OAMValidationSystemFilter.java:133)
at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentW
rapperFilter.java:120)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
3)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
il.java:413)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
a:94)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
61)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:13
6)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.wrapRun(WebAppServletContext.java:3715)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppS
ervletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletC
ontext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.j
ava:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Caused By: oracle.security.am.engines.authz.AuthorizationException: OAMSSA-14003
: Policy runtime failed.
at oracle.security.am.engines.authz.AuthorizationEngine.isResourceProtec
ted(AuthorizationEngine.java:183)
at oracle.security.am.engines.enginecontroller.AuthzEngineController.che
ckProtected(AuthzEngineController.java:373)
at oracle.security.am.engines.enginecontroller.AuthzEngineController.pro
cessEvent(AuthzEngineController.java:159)
at oracle.security.am.controller.MasterController.processEvent(MasterCon
troller.java:354)
at oracle.security.am.controller.MasterController.processRequest(MasterC
ontroller.java:517)
at oracle.security.am.controller.MasterController.process(MasterControll
er.java:457)
at oracle.security.am.pbl.PBLFlowManager.delegateToMasterController(PBLF
lowManager.java:209)
at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.
java:147)
at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.j
ava:107)
at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServl
et.java:168)
at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java
:133)
at oracle.security.am.pbl.transport.http.AMServlet.doGet(AMServlet.java:
673)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run
(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecuri
tyHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.jav
a:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.d
oFilter(OAMServletAuthenticationFilter.java:265)
at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilt
er(OAMValidationSystemFilter.java:133)
at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentW
rapperFilter.java:120)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
3)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
il.java:413)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
a:94)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
61)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:13
6)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.wrapRun(WebAppServletContext.java:3715)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppS
ervletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletC
ontext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.j
ava:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Caused By: oracle.security.am.common.policy.runtime.PolicyEvaluationException: O
AMSSA-06191: The runtime request contains no resource.
at oracle.security.am.common.policy.runtime.PolicyRuntimeImpl.isResource
Protected(PolicyRuntimeImpl.java:143)
at oracle.security.am.engines.authz.AuthorizationEngine.isResourceProtec
ted(AuthorizationEngine.java:181)
at oracle.security.am.engines.enginecontroller.AuthzEngineController.che
ckProtected(AuthzEngineController.java:373)
at oracle.security.am.engines.enginecontroller.AuthzEngineController.pro
cessEvent(AuthzEngineController.java:159)
at oracle.security.am.controller.MasterController.processEvent(MasterCon
troller.java:354)
at oracle.security.am.controller.MasterController.processRequest(MasterC
ontroller.java:517)
at oracle.security.am.controller.MasterController.process(MasterControll
er.java:457)
at oracle.security.am.pbl.PBLFlowManager.delegateToMasterController(PBLF
lowManager.java:209)
at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.
java:147)
at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.j
ava:107)
at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServl
et.java:168)
at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java
:133)
at oracle.security.am.pbl.transport.http.AMServlet.doGet(AMServlet.java:
673)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run
(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecuri
tyHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.jav
a:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.d
oFilter(OAMServletAuthenticationFilter.java:265)
at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilt
er(OAMValidationSystemFilter.java:133)
at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentW
rapperFilter.java:120)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
3)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
il.java:413)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
a:94)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
61)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:13
6)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
va:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.wrapRun(WebAppServletContext.java:3715)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationActio
n.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppS
ervletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletC
ontext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.j
ava:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)

Hello, I'm having the same issue. I did check my custom login form and I'm using "post" and fully qualified OAM host name. The behavior and very inconsistent. My integration is OIF-OAM. OIF proxy protected by 11g webgate. If I close the browser or try hitting back button, the login form comes up fine and could able to access the resource. I did look into support site and found this Doc Id: ID 1348419.1 which matches my condition, but couldn't able to figure out if there is a patch out for this bug.
Has anyone faced this issue?
Thanks for the help.
Sunil.

Custom login question

C:\Program Files\Microsoft SQL Server\MSRS12.MSSQLSERVER\Reporting Services\ReportManager
C:\Program Files\Microsoft SQL Server\MSRS12.MSSQLSERVER\Reporting Services\ReportServer
Which of these two folder contains the web.config that must be modified when adding custom login/ forms authentication?
When and how is the AuthCookie used? Do I need to add any info to the ssrs auth cookie?
scott

Hi scott_m,
According to your description, you want to add a custom login form authentication and use AuthCookie. Right?
In Reporting Services, if we want to add custom login form, we need to modify the web.config in ReportServer folder. For the modification in configure files and usage of authcookie, please refer to the links below:
http://www.codeproject.com/Articles/675943/SSRS-Forms-Authentication
http://msdn.microsoft.com/en-us/library/ms345241.aspx
If you have any question, please feel free to ask.
Best Regards,
Simon Hou

Login Form

Dear Guyz,
I'm new in Oracle forms.
i would like to use my own customized login form. anyone give me an idea, i dont want to use oracle default login i have the below table based on the below table I i wanna to call or open other forms.
DESC MN_LOGIN
USERNAME VARCHAR2(20)
PASSWORD VARCHAR2(20)
LOGIN_DATE DATEalready i create the form i need the login code how can i check the username and password from the above table? if username and password met with the inserted data in MN_LOGIN table then it will open the new form. how can i do this any one guide me step by step plz. if login sucessfull then insert the current date into the login date.
im using oracle 10g database 9i.
appreciate if anyone help me in this.
Regards
Khaled
Edited by: MShareef on May 4, 2010 3:18 AM

So, what is the difficulty in this. If you are not aware of the sql/plsql then i would suggest you to read about sql/plsql. Anyway here is one method you can try...
Trigger = Any you want to use...
DECLARE
vVar1 NUMBER;
BEGIN
SELECT 1
INTO vVar1
FROM MN_LOGIN
WHERE username = :FORM_USER_FIELD   -- Check the case sensitivity use UPPER function on requirement
AND password = :FORM_PWD_FIELD; -- Check the case sensitivity use UPPER function on requirement
-- Here use the call form code see oracle form builder help for CALL_FORM.
EXCEPTION
WHEN OTHERS THEN
    MESSAGE('Message goes here in case of wrong authentication.');
    RAISE FORM_TRIGGER_FAILURE;
END;Also have a look on the following links about startup learnings...
http://download.oracle.com/otn_hosted_doc/forms/forms/A73074_01.pdf
http://www.oracle.com/webapps/online-help/forms/10g/state?navSetId=_&navId=0
http://download.oracle.com/docs/cd/B19306_01/server.102/b14200/functions001.htm#i81407
-Ammad

How to create different login form pages using Extranetlook

Hi,
I would like to have different login pages in order to let users access to different sites created with Site Studio. The Extranetlook component comes with a default one, login_page.htm but if I change this file, then this login page is used for all users in the whole Content Server. Our requirement is to have different login pages, one per each site, and let the default one to let users access just the Content Server, not the sites.
We created a custom login form page copying the login_page.htm file and then modified the redirecturl input field (<input value="/oursite/" type="hidden" name="redirecturl" />). This only works when the login is successful. When the login is incorrect the user is redirected to the default login_page.htm. In that case, we would like to redirect the user to custom login form instead of the default one.
In fact, I'm afraid I don't understand well the relation between the login_page.htm within the component, the login_page.htm file that resides in <ucm-installation>/data/users and the extranetlook.idoc file.
Thanks in advance.

While not resolving issue with multisite login page, i can tell the relationship among component login_page, data user login_page and ExtranetLook.idoc.
So according to component readme.txt ExtranetLook.idoc is used to construct user data login_page (i've checked it). So any customizations made to its dynamic html sections are reflected into that file - and it is the which being showed in browser. The component one is used as initial one.

Require Login (Form based)

Hi all,
I want to control my website so that all pages require a logged in user, some pages are only visible for certain roles. In the web.xml description there is a remark for the <login-config> element:
If this element is present, the user must be authenticated in order to access any resource that is constrained by a <security-constraint> defined in the Web application. Once authenticated, the user can be authorized to access other resources with access privileges.
one for all pages:
<security-constraint>
<web-resource-collection>
<web-resource-name>all pages</web-resource-name>
<description>desc</description>
<url-pattern>/*</url-pattern>
</web-resource-collection>
</security-constraint>
one with restriction for roles:
<security-constraint>
<web-resource-collection>
<web-resource-name>role rescricted</web-resource-name>
<description>...</description>
<url-pattern>/control/requirements/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>aRoleName</role-name>
</auth-constraint>
</security-constraint>
my <login-config> element:
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/control/Login</form-login-page>
<form-error-page>/control/Login</form-error-page>
</form-login-config>
</login-config>
The role restriction works fine. But also a user who is not logged in, can access the other pages and is not redirected to the login page.
Any ideas??

The Security-constraint for "all pages" doesn't specify an auth-constraint ie no role. I think that the default role is applied ie "Anonymous" which is everyone in the special group called "everyone" which course includes all not logged in users.
create a role in your weblogic.xml called Users and make it contain the principal "users" which is a default group of all authenticated users.
Then add the role "Users" to the "all pages" constraint, it will force an authentication.
for info on default groups see:
http://e-docs.bea.com/wls/docs81/secwlres/usrs_grps.html#1179347
Note that if you create your own Authentication Provider you should probably make it add the WLSGroup principal "everyone" an "users" as well as other groups when a user sucessfully logs in. NB the groupname "everyone" is not guaranteed and you should get the principal name of the everyone group from API:
weblogic.security.WLSPrincipals.getEveryoneGroupname() or
weblogic.security.WLSPrincipals.getUsersGroupname()
cheers
Karl

Custom Login Form Error

Similar Messages

Maybe you are looking for