Customer login access restricted to one site?

Hi there,
I'm trying to test the customer login access and I found something troubling. When giving access to more than one site I receive, "Username is in use by customer: John Fakename." What happens if my clients have more than one location? Is there a way around this? Please let me know. Thanks!

This may be a bit of longshot, but if your customer uses or is willing to use gmail (or google apps email) you could assign email addreses of [email protected] and [email protected] and [email protected] all the emails would go to the same inbox and can be assigned ad hoc, but the onplus system should recognize them as unique email addresses.
I have used this method to get around similar restrictions. Here is some more detailed info:
http://gmailblog.blogspot.com/2008/03/2-hidden-ways-to-get-more-from-your.html

Similar Messages

Security warning 'access more than one site..' - URGENT HELP

Hi All
(USING: Reader 707 + Reader extension 702 or Acrobat 707 )
I am having big trouble with this Acrobat/reader security warning:
Security Warning
'This document as accessed more than one site and might be trying to share data among different locations. This could be a privacy concern. Are you sure you want to continue?'
I know it is more an acrobat/Reader issue than designer, but hope that one outthere has ideas.
Problem:
We have 4 servers sharing the load for a webservice. I have coded webservice connection in javascript in Designer 7.1 using SOAP.
The webservice look up data, but i recieve the security warning each time I perform the look up. I have added all sites to Trust Manager, so that is not the problem!
I think the very problem is that Acrobat/Reader request to a DNS alias, but later recieve response from ONE of the specific servers!
Acrobat/Reader request webService on:
http://ck/web/services/FormularWebservice?wsdl;
Acrobat/Reader recieve answer from (for example: da1650 - one of the 4 servers)
http://da1650:9081/web/services/FormularWebservice?wsdl;
So Acrobat/Reader shows the security warning because it suddenly recieve a response from a server that is does not know it has requested against - This is what I think happens!
Have anyone experinced a similiar situation? any ideas? All comments/ideas/solutions are appreciated. As the warning is very anoying to the user I cannot launch my LC forms so I need a solution...
Kr.
ThomasG - Denmark

just a note:
WebService URLs are only internal, so cannot be reached!

How to migrate "Access Restrictions" from One Environment to another Env

Hi ,
Can anyone suggest regarding the "Access Restrictions" , we need to move the "Access Restrictions" from one environement to another environment .
Thanks & Regards
Venkat.

hi,
When using Import wizard,
while importing Universe, Please check the below option to migrate Access Restrictions.
"Keep Universe Overloads for imported Users and Groups"
Regards,
Vamsee

Multiple logins/passwords possible for one site under one profile?

I have three user log-ins at one site (personal, work, and volunteer group). Is it possible to get FF to remember all three pairs of log-ins/passwords under one profile? When I try to set the password for the second log-in, it changes the stored password for the first. It's a real pain when I use all three on a regular basis to have only one of the three stored.
Thanks,
Dale

when the keyboard is open hold on the happy face for a second and from the menu list that pops up turn off the switch for PREDICTIVE. That did it for me. When I start typing the firts letter of the login name now it predicts in yellow and I press space and fills it in, then I have to press the delete button to remove the space before pressing enter.

Access Restrictions - Blocking 1 site

Has anyone gotten this to work?
I have it setup and it does not block sites.
I've Googled this, and it seems like no one has gotten this to work.
Router WRT54GL
I have everything set according to the directions.
Thanks

Which website you are trying to Block on the Linksys router. Try to block that website using that website IP address or else you can do it by using a Host Name. I think this might solve your problem.

B2C scenario customer specific discount when customer login to the B2C site

Hi E-Commerce gurus,
We want to implement a customer specific discount scenario when the customer login to the B2C web site afterwards that easily see the customer specific discount as soon as duration of the login process. We have also succeed sales org-material scenario that according to our given below function module calculates a discount rate covers all the material within the related sales organization and also shows the indicator of discount rate on the every material pictures at the web site.
Moreover we have configured an access sequence for condition ZB2I(discount condition) that related with Sales Org.-Customer then we replicate the CNACRMPRCUS666 condition table from ECC to CRM with all values but we can not calculate and display the discount rate on the web site when the customer log on the site and/or going to the basket.
Is there any available BADI, BAPI on ABAP and JAVA Stack. How can we display the spesific customer discount rate when the customer log on the site and/or going to the basket?
Kind Regards,
Fahrettin
DATA : lv_time_stamp TYPE timestamp.
DATA : BEGIN OF ls_product,
 product_guid TYPE comt_product_guid,
 indirim TYPE prct_cond_rate,
 END OF ls_product,
 lt_product LIKE TABLE OF ls_product.
DATA : ls_shop_s TYPE crmm_isa_shop_h,
 ls_vrt TYPE comm_pcat_vrt.
CALL FUNCTION 'CRM_ISA_SHOP_READ'
 EXPORTING
 iv_shop_id = iv_shop_id
 IMPORTING
 es_shop_h = ls_shop_s
 EXCEPTIONS
 shop_not_found = 1
 OTHERS = 2.
IF sy-subrc <> 0.
 RAISE shop_not_found.
ENDIF.
SELECT SINGLE * INTO ls_vrt
FROM comm_pcat_vrt
WHERE guid = ls_shop_s-pcat_vrt_guid.
IF sy-subrc <> 0.
 RAISE shop_not_found.
ENDIF.
CONVERT DATE sy-datum TIME sy-uzeit INTO TIME STAMP lv_time_stamp
TIME ZONE sy-zonlo.
CLEAR ev_indirim.
SELECT SINGLE kbetr AS indirim
INTO ev_indirim
FROM cnccrmprsap350
WHERE sales_org EQ ls_vrt-sales_org
 AND timestamp_from LE lv_time_stamp
 AND timestamp_to GE lv_time_stamp
 AND kschl EQ 'ZB2I'.
ev_indirim = - ev_indirim / 10.
SELECT DISTINCT product AS product_guid kbetr AS indirim
INTO CORRESPONDING FIELDS OF TABLE lt_product
FROM cnccrmprcus518
WHERE timestamp_from LE lv_time_stamp
 AND timestamp_to GE lv_time_stamp
 AND kschl EQ 'ZB2I'.
LOOP AT lt_product INTO ls_product.
 ls_product-indirim = - ls_product-indirim .
 IF ls_product-indirim GT 90.
 ls_product-indirim = ls_product-indirim / 10.
 ENDIF.
 MOVE-CORRESPONDING ls_product TO et_list.
 APPEND et_list.
ENDLOOP.
SORT et_list .
ENDFUNCTION.

Hi,
As per my knowledge if you want to implement customer specific discount then you should use ISA B2B instead of ISA B2C. ISA B2B gives you this facility which you want to implement on B2C.
Also How you will distinguish User in B2C to display specific prise. Your discount price is based on Sales Org or base on user?
As your ABAP program is working fine but you are not getting it on web site then you have to write custom java code and collect all the required information on ISA side then pass it to RFC's import parameter and get the result back and display result on ISA B2C.
eCommerce Developer

How to set 'colliding' access restrictions in wrt610n - what are rule preferences?

Hello. I want to set up access restrictions to one MAC address (my kid's machine) basing on week days. From Su to Th allow less access time while during Fr-Sa afternoons access time should be longer. The question is how to program it in router. I know I can set rules with "allow" and "disable" keyword, but I don't know rules preference.
When I set (Su-Th 6-21) allowed access time then router automatically denies defined machine internet access outside this time range. The problem is in the power of thus calculated denying time. I want to allow more access time in weekend, so I hoped if I can simply add "Fr-Sa 6-22:30 allowed access time" rule. I hoped that router will regard explicitly set time over inexplicitly set time but it appears it is not so.
Does anyone know the rule of rules? What are their preferences/priorieties, iis it possible to stack more rules affecting one MAC address or it is so simple that the first rule "rulez"? Is it possible to set more than one time rule affecting the one machine?
Solved!
Go to Solution.

Agh! Thanks for your reply, it was good incentive to test the problem little more. Now I'm pretty sure that wrt610n algorithm has problem - it lies with power cuts. In my flat, the last internet user usually turns off power board when goes to sleep. After power is resumed router seemed to work flawlessly yet herein lies the problem and I hope I've found solution.
The tests I have done:
1. 2 rules (as mentioned in my first post). Kid's machine works (this is day now). Didn't played with rules times. Just turned router off. When router was turned on, two other (parents) machine get internet access while kid's machine didn't! Kid's machine was banned from internet against the rules. Router has proper time set - I checked it's status.
2. I turned both rules to "disable access" versions (1. disable access Su-Th 21-23:55; 2. disable access Fr-Sa 22:30-23:55). This rules should work almost the same way (the only problem is, that no rule can expand over midnight, so the third rule should be added, banning access from midnigts to early mornings). The router was switched off. Then on. All three machines now has internet access. I hope, router will ban access in the afternoon automatically, as is set
My deduction. Algorithm bases on time points. When marked time comes, algorithm do, what it should do (but only, if router is powered). When you set "turn internet access on" time (this is "allow rule"), router turns on the access precisely at the chosen moment of time. If router was dead at that time, it doesn't turn the access on however, when power is restored. But when you set "disable rules" in place of "enable rules" I hope it should work and I tested, that this way router gives access after turning it on. Router should disable internet access to the kid's machine at selected time - at least until smart kid does not turn the router off a few seconds before the switch_off time and soon after turn it on But then there is plenty of more powerfull means of control, so I don't worry too much Yet it seems to me, there is a flaw in algorithm, which doesn't run properly after power on.

Custom Login Module for Tomcat to procted apps using Oracle Access Manager

Hi all,
I have the following scenario.
A web application deployed in Tomcat to be protected using OAM. One solution is to use Access Gate though we have other alternative as Proxy infront of Tomcat with a webgate. Now I am implementing the Access Gate solution.
So, when the user clicks the tomcat application, then the prompt (BASIC) appears for login details. custom login module should kick in and take those login details and authenticate against OAM using Access SDK API.
I have created access gate profile and installed Access SDK. Ran the ConfigureAccessGateTool as well.
I did some research googling for login module. I came to know that we need to write a custom realm for it. So, this realm implementation involves specifying role-name etc., in web.xml where the role-name would have been defined in tomcat-users.xml.
This means that the user trying to authenticate against OAM has to have some roles defined in Tomcat to login. I didnot understand the flow end to end as how this will work.
Please let me know if anybody has done this of customization.
Thanks,
Mahendra.

Hi Ambarish,
Initially I thought of implementing the way you suggested in Option 2.
But there will be various redirections when we use option 2 as the login page should redirect it to a page where OAM authentication and authorization stuff has to be handled. And accordingly we have to redirect it to specific pages upon successful atn and atz. Hence, I was opted using Custom Login Module.
However, I have been trying Option 2 now. In web.xml, I have specified a login page with FORM scheme. The login redirects it to another page say OAM_Authentication_Handler.jsp. Here we code which serves atn and atz. Upon doing this, I have observed that the protected resource in OAM is not getting evaluated using the method
String ms_protocol = "http";
String ms_method = "GET";
String ms_resource = "http://localhost:8080/FormLogin/private.jsp";
ObResourceRequest rrq = new ObResourceRequest(ms_protocol, ms_resource, ms_method);
The method rrq.isProtected() is returning false which implies it to unprotected. I have tested using Access Tester for the resource and it results in expected behaviour.
Is there any limitation here by using this approach?
Any ideas?
Thanks,
Mahendra.

Setup more than one policy in one day using Access Restriction

Anyone can tell me how to set up two policys in one day using Access Restriction ?
For example:
For Weekdays, before 6pm, no restriction to use internet. after 6pm, internet ok, but certain web site or ports need to be blocked.
I can set up policy for after 6pm but then before 6pm, the router consider no-internet access period.
Any advise ?

what you just need to do is to set the policy to allow from 6PM upto the time you wanted your router to give internet access... and just set the status to enable.. type in the LAN mac adress of your router in the edit PC list, then save the settings
"a helping hand in a community makes the world a universe"

WRT54G2 and WRT54G locks-up (freezes) when blocking web sites using Access Restrictions

I am convinced that a few Linksys routers such as WRT54G2 and WRT54G have a major issue when blocking web sites using Access Restrictions (Internet Access Policy). After a few hours of internet access by 15 wired users the Linksys locks-up and blocks all internet web access. The only solution is to restart the power on the router.
We are currently using a Linksys WRT54G2 v1 (firmware 1.0.04). We upgraded the WRT54G2 v1 firmware to the latest 1.0.04 version which did not resolve the issue. NOTE: We were previosuly using a a Linksys WRT54G v1.1 (firmware 4.21.1) until the power supply blew a week after we started blocking web sites using Access Restrictions (Internet Access Policy).
Basically, we have a T1 internet connection and a hub connected to the Linksys router. We are trying to block several web sites such as facebook, myspace, etc. for 15 wired users. We do not use wireless connections.
This is the 2nd time it happened with 2 different models.
Please help ASAP.
Thank you,
Lance
(Mod note: Edited post. Some parts off topic.. Thanks!)

Also, you have already upgrade/re-flash the firmware of your Linksys Router you need to reset and reconfigure your router from scratch. Press and hold the reset button for 30 seconds...Release the reset button...Unplug the power cable from your router, wait for 30 seconds and re-connect the power cable...Now re-configure your router...

Help - using custom login module with embedded jdev oc4j to access ejb 3

Hi All (Frank ??),
I'm just wondering if anyone has successfully been able to leverage a custom login module in combination
with a client that connects to a local EJB 3 stateless session bean through Jdeveloper 10.1.3.2's embedded oc4j.
I have spent 2+ days trying to get this to work - and i think I resound now to the fact im going to
have to deploy to oc4j standalone instead.
I got close.. but finally was trumped with the following error from the client trying to access the ejb:-
javax.naming.NoPermissionException: Not allowed to look up XXXXXX, check the namespace-access tag
setting in orion-application.xml for details.
Using the various guides available, I had no problem getting the custom login module working
with a local servlet running from JDev's embedded oc4j.. however with ejb - no such luck.
I have a roles table (possible values Member, Admin) - that maps to sr_Member and sr_Admin
respectively in various config files.
I'm using EJB 3 annotations for protecting methods .. for example
@RolesAllowed("sr_Member")
Steps that I had to do so far :-
In <jdevhome>\jdev\system\oracle.jwee.10.1.3.40.66\embedded-oc4j\config\system-jazn-data.xml1) Add custom login module
 <application>
 <name>current-workspace-app</name>
 <login-modules>
 <login-module>
 <class>kr.security.KnowRushLoginModule</class>
 <control-flag>required</control-flag>
 <options>
 <option>
 <name>dataSource</name>
 <value>jdbc/DB_XE_KNOWRUSHDS</value>
 </option>
 <option>
 <name>user.table</name>
 <value>users</value>
 </option>
 <option>
 <name>user.pk.column</name>
 <value>id</value>
 </option>
 <option>
 <name>user.name.column</name>
 <value>email_address</value>
 </option>
 <option>
 <name>user.password.column</name>
 <value>password</value>
 </option>
 <option>
 <name>role.table</name>
 <value>roles</value>
 </option>
 <option>
 <name>role.to.user.fk.column</name>
 <value>user_id</value>
 </option>
 <option>
 <name>role.name.column</name>
 <value>name</value>
 </option>
 </options>
 </login-module>
 </login-modules>
 </application>2) Grant login rmi permission to roles associated with custom login module (also in system-jazn-data.xml)
<grant>
 <grantee>
 <principals>
 <principal>
 <realm-name>jazn.com</realm-name>
 <type>role</type>
 <class>kr.security.principals.KRRolePrincipal</class>
 <name>Admin</name>
 </principal>
 </principals>
 </grantee>
 <permissions>
 <permission>
 <class>com.evermind.server.rmi.RMIPermission</class>
 <name>login</name>
 </permission>
 </permissions>
</grant>
<grant>
 <grantee>
 <principals>
 <principal>
 <realm-name>jazn.com</realm-name>
 <type>role</type>
 <class>kr.security.principals.KRRolePrincipal</class>
 <name>Member</name>
 </principal>
 </principals>
 </grantee>
 <permissions>
 <permission>
 <class>com.evermind.server.rmi.RMIPermission</class>
 <name>login</name>
 </permission>
 </permissions>
</grant>3) I've tried creating various oracle and j2ee deployment descriptors (even though ejb-jar.xml and orion-ejb-jar.xml get created automatically when running the session bean in jdev).
My ejb-jar.xml contains :-
<?xml version="1.0" encoding="utf-8"?>
<ejb-jar xmlns ....
<assembly-descriptor>
 <security-role>
 <role-name>sr_Admin</role-name>
 </security-role>
 <security-role>
 <role-name>sr_Member</role-name>
 </security-role>
</assembly-descriptor>
</ejb-jar>Note- i'm not specifying the enterprise-beans stuff, as JDev seems to populate this automatically.
My orion-ejb-jar.xml contains ...
<?xml version="1.0" encoding="utf-8"?>
<orion-ejb-jar ...
<assembly-descriptor>
 <security-role-mapping name="sr_Admin">
 <group name="Admin"></group>
 </security-role-mapping>
 <security-role-mapping name="sr_Member">
 <group name="Member"></group>
 </security-role-mapping>
 <default-method-access>
 <security-role-mapping name="sr_Member" impliesAll="true">
 </security-role-mapping>
 </default-method-access>
</assembly-descriptor>My orion-application.xml contains ...
<?xml version="1.0" encoding="utf-8"?>
<orion-application xmlns ...
<security-role-mapping name="sr_Admin">
 <group name="Admin"></group>
</security-role-mapping>
<security-role-mapping name="sr_Member">
 <group name="Member"></group>
</security-role-mapping>
<jazn provider="XML">
 <property name="role.mapping.dynamic" value="true"></property>
 <property name="custom.loginmodule.provider" value="true"></property>
</jazn>
<namespace-access>
 <read-access>
 <namespace-resource root="">
 <security-role-mapping name="sr_Admin">
 <group name="Admin"/>
 <group name="Member"/>
 </security-role-mapping>
 </namespace-resource>
 </read-access>
 <write-access>
 <namespace-resource root="">
 <security-role-mapping name="sr_Admin">
 <group name="Admin"/>
 <group name="Member"/>
 </security-role-mapping>
 </namespace-resource>
 </write-access>
</namespace-access>
</orion-application>My essentially auto-generated EJB 3 client does the following :-
 Hashtable env = new Hashtable();
 env.put(Context.SECURITY_PRINCIPAL, "matt.shannon");
 env.put(Context.SECURITY_CREDENTIALS, "welcome1");
 final Context context = new InitialContext(env);
 KRFacade kRFacade = (KRFacade)context.lookup("KRFacade");
...And throws the error
20/04/2007 00:55:37 oracle.j2ee.rmi.RMIMessages
EXCEPTION_ORIGINATES_FROM_THE_REMOTE_SERVER
WARNING: Exception returned by remote server: {0}
javax.naming.NoPermissionException: Not allowed to look
up KRFacade, check the namespace-access tag setting in
orion-application.xml for details
 at
com.evermind.server.rmi.RMIClientConnection.handleLookupRe
sponse(RMIClientConnection.java:819)
 at
com.evermind.server.rmi.RMIClientConnection.handleOrmiComm
andResponse(RMIClientConnection.java:283)
....I can see from the console that the user was successfully authenticated :-
20/04/2007 00:55:37 kr.security.KnowRushLoginModule validate
WARNING: [KnowRushLoginModule] User matt.shannon authenticated
And that user is granted both the Admin, and Member roles.
The test servlet using basic authentication correctly detects the user and roles perfectly...
public void doGet(HttpServletRequest request,
 HttpServletResponse response)
 throws ServletException, IOException
 LOGGER.log(Level.INFO,LOGPREFIX +"doGet called");
 response.setContentType(CONTENT_TYPE);
 PrintWriter out = response.getWriter();
 out.println("<html>");
 out.println("<head><title>ExampleServlet</title></head>");
 out.println("<body>");
 out.println("The servlet has received a GET. This is the reply.");
 out.println(" getRemoteUser = " + request.getRemoteUser());
 out.println(" getUserPrincipal = " + request.getUserPrincipal());
 out.println(" isUserInRole('sr_Admin') = "+request.isUserInRole("sr_Admin"));
 out.println(" isUserInRole('sr_Memeber') = "+request.isUserInRole("sr_Member"));Anyone got any ideas what could be going wrong?
cheers
Matt.
Message was edited by:
mshannon

Thanks for the response. I checked out your blog and tried your suggestions. I'm sure it works well in standalone OC4J, but i was still unable to get it to function correctly from JDeveloper embedded.
Did you ever get the code working directly from JDeveloper?
Your custom code essentially seems to be the equivalent of a grant within system-jazn-data.xml.
For example, the following grant to a custom jaas role (JAAS_ADMIN) that gets added by my custom login module gives them rmi login access :-
 <grant>
 <grantee>
 <principals>
 <principal>
 <realm-name>jazn.com</realm-name>
 <type>role</type>
 <class>kr.security.principals.KRRolePrincipal</class>
 <name>JAAS_Admin</name>
 </principal>
 </principals>
 </grantee>
 <permissions>
 <permission>
 <class>com.evermind.server.rmi.RMIPermission</class>
 <name>login</name>
 </permission>
 </permissions>
 </grant>If I add the following to orion-application.xml

<namespace-access>
 <read-access>
 <namespace-resource root="">
 <security-role-mapping>
 <group name="JAAS_Admin"></group>
 </security-role-mapping>
 </namespace-resource>
 </read-access>Running a standalone client against the embedded jdev oc4j server gives the namespace-access error.
I tried out your code by essentially creating a static reference to a singleton class that does the role lookup/provisioning with rmi login grant :-
From custom login module :-
private static KRSecurityHelper singleton = new KRSecurityHelper();
protected Principal[] m_Principals;
 Vector v = new Vector();
 v.add(singleton.getCustomRmiConnectRole());
 // set principals in LoginModule
 m_Principals=(Principal[]) v.toArray(new Principal[v.size()]);
Singleton class :-
package kr.security;
import com.evermind.server.rmi.RMIPermission;
import java.util.logging.Level;
import java.util.logging.Logger;
import oracle.security.jazn.JAZNConfig;
import oracle.security.jazn.policy.Grantee;
import oracle.security.jazn.realm.Realm;
import oracle.security.jazn.realm.RealmManager;
import oracle.security.jazn.realm.RealmRole;
import oracle.security.jazn.realm.RoleManager;
import oracle.security.jazn.policy.JAZNPolicy;
import oracle.security.jazn.JAZNException;
public class KRSecurityHelper
private static final Logger LOGGER = Logger.getLogger("kr.security");
private static final String LOGPREFIX = "[KRSecurityHelper] ";
public static String CUSTOM_RMI_CONNECT_ROLE = "remote_connect";
private RealmRole m_Role = null;
public KRSecurityHelper()
 LOGGER.log(Level.FINEST,LOGPREFIX +"calling JAZNConfig.getJAZNConfig");
 JAZNConfig jc = JAZNConfig.getJAZNConfig();
 LOGGER.log(Level.FINEST,LOGPREFIX +"calling jc.getRealmManager");
 RealmManager realmMgr = jc.getRealmManager();
 try
 // Get the default realm .. e.g. jazn.com
 LOGGER.log(Level.FINEST,LOGPREFIX +"calling jc.getGetDefaultRealm");
 Realm r = realmMgr.getRealm(jc.getDefaultRealm());
 LOGGER.log(Level.INFO,LOGPREFIX +"default realm: "+r.getName());
 // Access the role manager for the remote connection role
 LOGGER.log(Level.FINEST,
 LOGPREFIX +"calling default_realm.getRoleManager");
 RoleManager roleMgr = r.getRoleManager();
 LOGGER.log(Level.INFO,LOGPREFIX +"looking up custom role '"
 CUSTOM_RMI_CONNECT_ROLE "'");
 RealmRole rmiConnectRole = roleMgr.getRole(CUSTOM_RMI_CONNECT_ROLE);
 if (rmiConnectRole == null)
 LOGGER.log(Level.INFO,LOGPREFIX +"role does not exist, create it...");
 rmiConnectRole = roleMgr.createRole(CUSTOM_RMI_CONNECT_ROLE);
 LOGGER.log(Level.FINEST,LOGPREFIX +"constructing new grantee");
 Grantee gtee = new Grantee(rmiConnectRole);
 LOGGER.log(Level.FINEST,LOGPREFIX +"constructing login rmi permission");
 RMIPermission login = new RMIPermission("login");
 LOGGER.log(Level.FINEST,
 LOGPREFIX +"constructing subject.propagation rmi permission");
 RMIPermission subjectprop = new RMIPermission("subject.propagation");
 // make policy changes
 LOGGER.log(Level.FINEST,LOGPREFIX +"calling jc.getPolicy");
 JAZNPolicy policy = jc.getPolicy();
 if (policy != null)
 LOGGER.log(Level.INFO, LOGPREFIX
 + "add to policy grant for RMI 'login' permission to "
 + CUSTOM_RMI_CONNECT_ROLE);
 policy.grant(gtee, login);
 LOGGER.log(Level.INFO, LOGPREFIX
 + "add to policy grant for RMI 'subject.propagation' permission to "
 + CUSTOM_RMI_CONNECT_ROLE);
 policy.grant(gtee, subjectprop);
 // m_Role = rmiConnectRole;
 m_Role = roleMgr.getRole(CUSTOM_RMI_CONNECT_ROLE);
 LOGGER.log(Level.INFO, LOGPREFIX
 + m_Role.getName() + ":" + m_Role.getFullName() + ":" + m_Role.getFullName());
 else
 LOGGER.log(Level.WARNING,LOGPREFIX +"Cannot find jazn policy!");
 else
 LOGGER.log(Level.INFO,LOGPREFIX +"custom role already exists");
 m_Role = rmiConnectRole;
 catch (JAZNException e)
 LOGGER.log(Level.WARNING,
 LOGPREFIX +"Cannot configure JAZN for remote connections");
public RealmRole getCustomRmiConnectRole()
 return m_Role;
}Using the code approach and switching application.xml across so that namespace access is for the group remote_connect, I get the following error from my bean :-
INFO: Login permission not granted for current-workspace-app (test.user)
Thus, the login permission that I'm adding through the custom remote_connect role does not seem to work. Even if it did, i'm pretty sure I would still get that namespace error.
This has been such a frustrating process. All the custom login module samples using embedded JDeveloper show simple j2ee servlet protection based on settings in web.xml.
There are no samples showing jdeveloper embedded oc4j using ejb with custom login modules.
Hopefully the oc4j jdev gurus like Frank can write a paper that demonstrates this.
Matt.

Allow one URL in Access Restriction?

I'd like to allow internet access for lunch hour only for a group of computers. I've assigned the IP's and set up two access restrictions to DENY for morning and afternoon. Is there a way to allow those computers to have access to just one URL (www.gmail.com) all day long?
Is there a link where these access restrictions have been explained a little more fully than what's available in the WRT610N help screen?
Thank you.
Solved!
Go to Solution.

I am afraid, you cannot allow those computers to have access to just one URL (www.gmail.com) all day long if you have denied them for Internet Access for Morning and Afternoon...

Can't Access One Site - Common Threads

I have recently been hit by the unable to access one site problem.
Having read through all the threads, it seems many people are identifying it as a possible DNS issue; however, it seems that almost all of the issues are with people who are hosting their own web servers off-site.
I was hoping this thread could gather information from people who are having/had this issue?
1) Was the inaccessible site self-hosted?
2) Did you have any server changes, etc?
3) Have you solved the issues, how?
Hopefully this gets to the bottom of things.

There is one site that I am aware of that I can not access using my Airport. I have narrowed down the issue to the Airport so far. When I bypass the Airport, the web site connects. Both my Macbook and two PC's can not access this site if I connect via the Airport. I have reset, powered down, booted the modem, worked with Norton and Comcast: still no fix.
I tried changing settings in the utility tool that were suggested on the boards here and still no correction. If anyone has an idea, please post here. Thanks. If I find a correction, I will post here.

Can't access one site

I'm a web developer and I uploaded changes to a client's site wednesday evening. The client called the next morning to say one of the files had not uploaded, but when I tried to ftp to the site again, my ftp software could not connect to the server. I tried a different ftp app, and it couldn't connect either.
I called both my hosting service and my ISP and everything worked for them. Finally I used my room-mate's PC to upload the files, but when I tried to check them on my iMac, Safari could not find the server. I tried Firefox and IE and they couldn't find the server either. My room-mate's PC can and the client's PC can. I Googled the site and clicked on the links that showed up and Safari could not find the server. I went to associate sites where my client's site is listed and clicked on the links and Safari can't find the server. It's as if this one site has become anathema on my computer.
I reset Safari to no avail. I rebooted my computer and modem, I ran Repair Permissions in Disc Utility.
I can't think of what else to do. Any thoughts?

iBod
I just got off the phone with my Hosting company (thankfully a friend of mine) and I have stumped him, but here's what we know.
I am able to access his server if I type in the numeric IP address and add /~username/
I am receiving email from the server
I can not connect to his server, or any web site on his server, by typing the site url in the address bar, from bookmarks, from Google links.
I cannot ftp to any of my client's sites on his server.
So, he thinks that my computer, for some reason, is not converting the DNS information correctly. I need to know how to find how and why this is happening and how to fix it.

Trouble accessing one site.

When the router (WRT54GS) is in place I am unable to get to www.pogo.com. When I remove the router it comes up fine, I have tried setting up one machine on the DMZ setting to bypass anything that might be causing this and still it will not reach the one site. I did change the original setup so I figured maybe I goofed somewhere so I reset the router back to defaults and still nothing. I know this is probably a noob thing and I hate asking but I couldn't think of anything else to try. I thought at first it was routing issues with Comcast until I removed the router from the situation. Any help or suggestions is greatly appreciated. Thanks
Allen

Click start >> control panel >> internet options >> under security >> custom level >> security settings ..... choose reset to "medium" ....click apply & ok .....
Under "privacy" click "advanced" ..... check "Override cookies" ....click ok ....
Check if it is working ......

Customer login access restricted to one site?

Similar Messages

Maybe you are looking for