Customise Authorization Scheme web page

Similar Messages

• Report Link + Authorization Scheme

  I have an authorization scheme that checks whether a certain person has privileges to edit a record on Page 2 by referring to the :P2_ID in the authorization scheme. Page 1 has a report with a report link, but the user can see both items they are able to edit and items they are not. I know I can make the link dynamically in the sql but wanted to see if there was an easy way to use an authorization scheme, but pass the #REPORT_COL# value in the report over to an authorization scheme to show or hide the icon for me so I can get the link out of the sql.

  Great example Scott! However, I'd would caution the other Sc0tt that calling functions in a SQL statement is fine for a small number of rows, but can CRUSH performance for medium to large result sets. Even if the function is fast, you're still context-switching between SQL and PL/SQL for every row. Make sure you test this with the volume of data you expect your users to encounter. If it's a problem, you might force the user to apply some filters before running the query.
  If you're running 11g you can at least minimize the hit of the function with "Function Result Cache". Even if you're not on 11g yet, you can use the following code in 10g and it will switch-on result cache when you compile it in 11g:
  create or replace function auth_user(p_key in number)
       return varchar2
       $IF not dbms_db_version.ver_le_10_2 $THEN
            result_cache
       $END
  as
  begin
      pkg.g_value := p_key;
      if apex_application.public_security_check (p_security_scheme => 'AUTH_USER_COLUMN') then
          return '1';
      else
          return '0';
      end if;
  end;
  / If it is a reasonable result set, Scott's solution is perfect.
  Thanks,
  Tyler

• Enter into web page recursively using invoke-webrequest

  This is how I authorize to web page using Invoke-WebRequest command right now:
  $web = Invoke-WebRequest https://mypage/ -SessionVariable gos
  $forms = $web.Forms[0]
  $forms.Fields["username"] = "[email protected]"
  $forms.Fields["password"] = "pass"
  $web_invoke = Invoke-WebRequest -Uri ("https://mypage" + $forms.Action) -WebSession $matt -Method Post -Body 
  $web_invoke.StatusDescription
  Thing is that I have to login once again when I logged into first webpage to reach another service.
  I have traced logid_ID and passsword_ID as well as button that will transfer me to the needed page.
  How can I combine these two logins in one script?

  Hi Kirillpashkov,
  If you want to sign in web service, the example below is for your reference, which could sign in to the Facebook web service:
  # Sends a sign-in request by running the Invoke-WebRequest cmdlet. The command specifies a value of "fb" for the SessionVariable parameter, and saves the results in the $r variable.
  $r=Invoke-WebRequest http://www.facebook.com/login.php -SessionVariable fb
  # Use the session variable that you created in Example 1. Output displays values for Headers, Cookies, Credentials, etc.
  $fb
  # Gets the first form in the Forms property of the HTTP response object in the $r variable, and saves it in the $form variable.
  $form = $r.Forms[0]
  # Pipes the form properties that are stored in the $forms variable into the Format-List cmdlet, to display those properties in a list.
  $form | Format-List
  # Displays the keys and values in the hash table (dictionary) object in the Fields property of the form.
  $form.fields
  # The next two commands populate the values of the "email" and "pass" keys of the hash table in the Fields property of the form. Of course, you can replace the email and password with values that you want to use.
  $form.Fields["email"] = "[email protected]"
  $form.Fields["pass"] = "P@ssw0rd"
  # The final command uses the Invoke-WebRequest cmdlet to sign in to the Facebook web service.
  $r=Invoke-WebRequest -Uri ("https://www.facebook.com" + $form.Action) -WebSession $fb -Method POST -Body $form.Fields
  Refer to:
  accept a cookie while using Invoke-WebRequest
  If there is anything else regarding this issue, please feel free to post back.
  Best Regards,
  Anna Wang

• Display page items based on Authorization Scheme...

  I have a report form that shows all my columns, but I have two columns that I only want "Admin" and "Edit" from my authorization scheme to be able to edit; but I would like for "User" to view.
  Currently I have "authorization" enabled for the two items, and set for "Edit". This works, except the "User" logins cannot view the items.
  I thought of two possibilities, both I think I'd need help on though!:
  1. Create a duplicate page item for these two items. One would show as "Text" only (cannot edit). The other would be "Text Field". The "Text Field" column would only be
  accessible by "Edit" or "Admin".
  The problem, though, is now "Edit" or "Admin" users will see both columns
  2. Set up something in "Conditions" that would show as "text" for "User", and as "Text Field" for "Admin" or "Edit"?
  I would have no clue how to do this...
  Any thoughts?
  Kevin L.

  Kevin
  You can create two items and in the Authorization Scheme you can set one as Users and second as Edit. Also You can do something using small JS. Create a variable P_USR_TYPE to hold the value of User group lets say 1 for Users and 2 for Edit. Then on the HTML header or footer of the region you can add a javascript call
  function UsrCustomization()
       if ( P_USR_TYPE == 1 )
            // mark the item as readonly
            // document.getElementById('P1_FIELD_QUESTION').disabled = true;
            document.getElementById('P1_FIELD_QUESTION').readOnly="readonly"
  UsrCustomization();Thanks,
  Manish

• Using Page Text Item in an Authorization Scheme

  Hello,
  I will be having a text item is every page say, Px_RESP_ID (hidden and its value set in an earlier page), and want to use its value in an authorization scheme to verify if the user has an access to the page.
  I'm using the following SQL in the authorization scheme -
  Apex Version: Apex 3.2
  Scheme Type: Exists SQL Query
  SQL:
  SELECT 1
  FROM zs_users zu
  , zs_responsibilities zr
  , zs_user_resp_groups zur
  WHERE
  zu.user_name = :APP_USER
  AND zr.resp_id = '&P'||:APP_PAGE_ID||'_RESP_ID.'
  AND zu.user_id = zur.user_id
  AND zr.resp_id = zur.resp_id
  For some reason this approach is not working. Any ideas to help me move forward will be greatly appreciated.
  Regards,
  Seshu

  AFAIK an application item, or maybe a page 0 item, is the only way to do this (as those items effectively exist across all pages of an application). Unfortunately since authorization schemes are application-level, you can't really effectively reference page items at runtime since you aren't necessarily on that page.
  The other option is an ugly one. Instead of creating one auth scheme (e.g.: "user_has_whatever_authority"), create one for every page (e.g.: "user_has_whatever_authority_1", "user_has_whatever_authority_2", etc.) and attach each auth scheme to each page by matching up the number in the name with the page. But this is a maintenance nightmare and terrible style IMHO, but it'll work. Your colleagues will hate you for it when you're gone though.

• "Create PDF from Web Page" Yields Authorization Failure

  Acrobat 9 Pro Extended running on Windows XP Service Pack 3:
  When using "Create PDF from Web Page," certain linked pages result in an "Authorization Failure" error message. Is there any way to instruct Acrobat to disregard pages that are not downloadable and continue creating the PDF?

  I am having the same issue AND none of my pages or files require a UserID or Password. My issue appears to be something with the domain because a and b work just fine and produce a PDF file while item c does not work and produces the error msg.
  http://www.dot.wi.gov/projects/neregion/151/index.htm works just fine and produces a PDF file.
  http://www.dot.state.wi.us/projects/neregion/151/index.htm works just fine and produces a PDF file.
  http://www.wisconsindot.gov/projects/neregion/151/index.htm produces an error msg. ‘Nothing done’.Error info. - Authorization Failure    http://www.wisconsindot.gov/projects/neregion/151/index.htm
  [email protected]

• Create PDF From Web Page - Authenticated SharePoint Sites generate "Authorization Failure" error

  We have several authenticated sharepoint sites on our intranet, and we are trying to create a PDF of a site (x levels down) using the Acrobat create PDF from web page feature.  When you try to create a PDF from a non-sharepoint, authenticated website, a login prompt appears asking for login credentials.  However, when you try to use the same feature on an authenticated sharepoint site, you do not get prompted for credentials and instead get an Authorization Failure error.  the popup says "Error: Nothing Done".  We have successfully PDF'd anonymous sharepoint sites on the WWW.  Has anyone successfully PDF'd an authenticated SharePoint site? 
  Thanks in advance,
  -Richard.

  I am having the same issue AND none of my pages or files require a UserID or Password. My issue appears to be something with the domain because a and b work just fine and produce a PDF file while item c does not work and produces the error msg.
  http://www.dot.wi.gov/projects/neregion/151/index.htm works just fine and produces a PDF file.
  http://www.dot.state.wi.us/projects/neregion/151/index.htm works just fine and produces a PDF file.
  http://www.wisconsindot.gov/projects/neregion/151/index.htm produces an error msg. ‘Nothing done’.Error info. - Authorization Failure    http://www.wisconsindot.gov/projects/neregion/151/index.htm
  [email protected]

• Page Restriction - Authorization Scheme

  I have an application 8736 this application as 3 tabs
  TAB1: information  TAB2: department   TAB3: Admin
  TAB3 as a form in which SHOULD be only be view by users which authorisation rights. I have been trying to do this for sometimes now and it is not work. I have a table called users
  TABLE:users
  username    access_level      
  john919             2
  sarah765           0
  For the page in TAB3 if you have an access level of 2. You should be able to view this page and if not they you should get an error message saying "sorry you cant view this page".
  In this case "john919" should be able to view the page in tab "Tab3" and "sarah765 " SHOULD NOT.
  I have this query in the Authorization Scheme and the scheme type: pl/sql function returning boolean
  DECLARE
     v_access_level   NUMBER (2);
  BEGIN
     IF (:APP_PAGE_ID = 61)
     THEN
        SELECT MAX (ADMIN_LEVEL)
          INTO v_access_level
          FROM USERS
         WHERE USER_NAME = :APP_USER;
        IF v_access_level = 2
        THEN
           RETURN TRUE;
        ELSE
           RETURN FALSE;
        END IF;
     ELSE
        RETURN TRUE;
     END IF;
  END
  I have never try this before and I have being asking around and alot of people tell me this should check the admin_level in the USERS table using the current username of the person looking in to see if they have access to this page. SO far this is as fail me. Please help

  If you only have one access level per user then try changing your authorization scheme code to
  DECLARE
     v_access_level   NUMBER (2);
  BEGIN
        SELECT ADMIN_LEVEL
          INTO v_access_level
          FROM USERS
         WHERE USER_NAME = :APP_USER;
        IF v_access_level = 2
        THEN
           RETURN TRUE;
        ELSE
           RETURN FALSE;
        END IF;
  END;
  now apply this scheme to tab3

• Page Authorization Scheme OK button not working

  Hi All,
  I have a Page Level Authorization scheme, which makes a PL/SQL Function call to determine whether the logged in user should have access to the Page. This works well and displays an 'Access denied by Page security check' error message, but the OK Hyperlink that is displayed does not work as I would expect as I am not returned to the calling page.
  The pages in question are Popups and when I hover over the OK Hyperlink, the Javascript in the Taskbar shows javascript:window.history.go(-1). Is this the route of my problem, and is there any way around this when using Popup windows?
  Thanks,
  Mike

  Scott,
  Thanks for your response. Yes you have the sequence right: "User clicks on link to popup page from base page and the link is to a forbidden page"
  "The basic question is why would you ever show a link to a forbidden page to the user?"
  The main reason is time, ideally yes we would like to hide links to forbidden pages but it will take time to implement due to complexity of role combinations and number of pages. So for now, we are confident in our method for denying access to forbidden pages.
  The error message that is displayed on the forbidden page is set in the Authorization Scheme, but how do I alter the OK link? Isn't this generated 'behind the scenes'?
  Thanks,
  Mike

• Authorization Scheme for Application - Login Page?

  Hi,
  When I set an Authorization Scheme at Application level, HTML DB prevents access to my login page. Is there a way around this?
  Thanks,
  Stephen Baishya

  If you follow the above route you have to run the check on each page view.
  If you leave as per session the first time you run the authorisation check on the login page it returns true and the user will be allowed onto the application!
  I'm looking for an alternative way to run the authZ check after the authN check passes the credentials to validate the user access right to the app. I'll post my findings later ...
  cheers
  Craig

• Page 0 security: authorization scheme not applied to other pages

  the page 0 security: authorization scheme not applied to other pages (neither as an override for existing pages nor as a default for new pages).
  how is this intended to work?

  mcstock,
  Can you clarify your question please? Can you give specific steps to reproduce this issue that you are inquiring about?
  Thanks.
  Joel

• Accessing an item on a page based on authorization scheme

  Hi,
  I've two authorization schemes :ADMIN and VIEW.I've created a public page which will be accessed by both schemes.But on that page in particular region I want to display an item only for ADMIN not for VIEW scheme.
  Thanks,
  Mahender.

  for that region properties , go to conditional display and use this bult in function (after you pick plsql function return boolean) : APEX_UTIL.PUBLIC_CHECK_AUTHORIZATION('your_auth_scheme');
  This function return true if current user is in that auth. scheme.
  Let me know if that helps,
  Sam K.

• Can I create an application using APEX that users see different web pages?

  I would like to create one application that different users are allowed to see only certain web pages based on the available data. For example, let's say that my application consists of 5 report pages and each report page is associated with a particular table or view on the system. If only 2 tables exist on the system, users should only see the two report pages associated with the 2 tables and they should not see the other 3 report pages associated with the other 3 tables.
  If I provide another table, the application should then allow the associated report page to be used.
  Can I do this with APEX? If so, how?
  Thanks,
  RJ

  How about creating authorization schemes that are based upon a simple exists -
  select 1 from user_tables where table_name = 'EMP'
  and then you can associate that authorization scheme with your pages, list items, whatever you need. You can have your authorization scheme evaluated just once per session so it will be very speedy.
  I am sure there are lots of ways to solve this one -
  -- Sharon

• Access to WPC Web Pages by Anonymous Users?

  Hello,
  i want to give anonymous users access to Web Pages that were created with the Web Page Composer.
  In did the following:
  1. create the Web Pages,Site Navigation etc....
  2. edited the permissions of the site: grant anonymous users Read Access.
  3.included the site navigation into the navigation of the anoymous users
  When i access the portal as anonymous users and try to open a Web Page, i get a logon screen for Authentification.
  I think that there is a problem, that i didn't find any way to set the Authentification Scheme for these Web Pages to "Anonymous". This is the way it has to be done with other iViews.
  When i am accessing the page with an authenticated users, i have no problem with displaying the same Web Pages.
  Is there anywhere an attribute i need to set? Or is it currently not supported?
  Regards,
  Marcus
  Message was edited by:
          Marcus Böhm

  1. Configuration in PCD - go to Content Administration -> Portal Content-> Portal Content -> Web Page Composer -> Container iViews -> WPC
  Default Containers. All of the iViews in this location should have the
  "anonymous" authentication scheme. The next location which should be
  checked is Content Administration -> Portal Content -> Portal Content ->Web Page Composer -> iView Templates. Again all of the iViews should
  have the "anonymous" authentication scheme. The same applies to all the
  templates which reside in Content Administration -> Portal Content ->
  Portal Content -> Web Page Composer -> Page Layout Templates. Finally
  check if all the pages which reside in Content Administration -> Portal
  Content -> Portal Content -> Web Page Composer -> Page Layouts have the
  "anonymous" authentication scheme.
  2. Configuration in KM - make sure that all the pages, which should be
  displayed to an anonymous user have in their permissions the Anonymous
  Users Group.
  3. Security zones - if you go to System Administration -> Permissions ->Security Zones -> com.sap.nw.wpc -> wpc -> no_safety and you open the
  permissions of this object, the Anonymous Users group must be added in
  the list.
  If all mentioned objects have their setting as described and you still
  experience problems (e.g. you see a browser dialog window for
  authentication), the reason most probably is, that the KM is not
  configured for anonymous access. A full description of the needed steps
  is provided with note 837898.

• Is there a way to disallow web pages to modify foreground color of elements if background of those elements was not changed as well (and vice versa)?

  I have very sensible defaults for my display; i.e. I have dark GTK scheme (dark gray background, light gray text) that suits me way more when working on my computer while it's dark around. I, however, like looking at web pages as how they were mean to be seen. Unfortunately, most of web designers don't think about anyone having non-default colors set up.
  Example one ( http://www.cedok.cz ):
  This site's CSS style has "color: rgb(45, 45, 45);" for the whole <body> but for <select> elements there is no "background-color" set. This means there is a select box rendered with dark gray background and dark gray foreground (text color). This is pretty badly readable (obviously).
  To mention one particular element from this site: e.g. <select id="ctl00_ContentPlaceHolderLevySloupec_HledaniMultiTab1_HledaniZajezdu1_ddlTypZajezdu">
  Example two ( https://support.mozilla.org/en-US/questions/new/desktop/customize/form ):
  On this page (where I'm currently filling in this question) the <textarea id="id_content"> has "background: ... rgb(255, 255, 255);" set, but with my default font color, this textarea is rendered as light gray text on a white background. Again, pretty unreadable (and eye-hurting).
  I can provide screenshots and more reasoning if needed.
  I'm asking if there is (or might be) an option (even disabled by default) or at least an add-on which would keep default colors unless both foreground and background colors were specified. I think this might make Firefox very usable for many people which like to have their default colors configured.
  In case you won't be able to help me by fixing this, could you redirect me to the right place where I could get this requested in a way that might be really possible to happen (bugzilla?).
  Thank you very much in advance.

  Thanks for the reply, but I'm sorry, no. I don't want any addon that customizes colors, I want to use default colors and only prohibit changing them unless both background and foreground colors are changed.
  I have made no color changes WRT to Firefox *only*, I just changed the default for the whole toolkit (gtk in this case). The thing I need is to disable changing *only one* property out of two ({back,fore}ground). Whenever the second one gets set as well, this new setting (both of them) may get reflected, but not before that. It'd be nice to keep this when changing the colors back (deleting the style), but that's not necessary.
  I hope that's understandable, feel free to ask for if that's not the case.
  To express what I mean a bit more precisely, see the attached image. In that image there are four textareas (one of the elements that gets affected by this). First one is a default one (which I want to have if the page has nothing set), the second one is nicely modified to fit for example to a blue-ish page (this one I like as well).
  Second row of textareas shows how the final element looks like if the page has only one of these elements set up. First one changes background without changing font color, the second one vice versa. Both of them are very badly readable, especially with low lighting around.
  This is consequently the same case when it comes to default page background which I cannot set at all, because too many pages have only "color:" set without changed background and that is completely messed up then. Going to extremes, I might mention all color-related modifications (see how ugly the borders look when the background is changed and nothing is done to these borders, their size and color is kept default), but I understand that's too much.