Customize expired password login form

Similar Messages

• Changing expired password in forms 6.0

  I'm trying to offer a possibility to users to change their passwords.
  in forms they user is prompt to change is password, but after changes an validation the message FRM-10201 Impossible de changer le mot de passe (unable to change the password)
  When i try it on sql plus i got this :
  SQL> connect ntci/ntci@post
  ERREUR:
  ORA-28001: le mot de passe est expiré
  Modification de mot de passe pour ntci
  Ancien mot de passe : *****
  Erreur du système d'exploitation (Operating system error, password not modified)
  Mot de passe non modifié
  I dont know what is happening.
  Would you mind helping me

  Thank you for replying to my message.
  I've read in doc 52718.1 that from forms release 6.0 it is possible to handle this situation.
  After expiring the password an trying a connection, the system first prompt that the password is expired and ask for a password replacement but this never reach (the operating system error is raised).
  I'm using Forms 6.0 against Database 9.0.2..on windows XP client
  Maybe this could explain moore
  thank you once again

• How to refresh the Expired Login Form on the onChange event of the password

  Hi,
  In the Expired Login Form I have places a custom label. My requirement is that on the onchange event of the password field the label color should change to orange if the entered password meets the password policy else red.
  I am trying the following code :
  Custom label:
  <Field name='Custom Label'>
  <Display class='Label'>
  <Property name='value' value='Custom label 1'/>
  <Property name='noNewRow'>
  <Boolean>true</Boolean>
  </Property>
  <Property name='color'>
  <block>
  <cond>
  <isTrue>
  <invoke name='checkStringQualityPolicy' class='com.waveset.ui.FormUtil'>
  <rule name='EndUserRuleLibrary:getCallerSession'/>
  <s>Default Password Policy</s>
  <invoke name='decryptToString'>
  <ref>resourceAccounts.password</ref>
  </invoke>
  <map/>
  <list/>
  <s>Configurator</s>
  </invoke>
  </isTrue>
  <s>orange</s>
  <s>red</s>
  </cond>
  </block>
  </Property>
  </Display>
  </Field>
  And on the password field i gave following in the onChange event:
  submitCommand(this.form, "Recalculate")
  But the above command is not refreshing the page. Instead on the onChange event its going back to the login.jsp.
  Any idea how to resolve the above issue.
  Thanks.

  I got it working as below but i dont know is this best practices?
  <%
      if(session.getAttribute("afterSet") != null){
           %>
      <div style="visibility:hidden">
        <iframe NAME="iframe1" src="/WebApplication2/TestController?fileDownload=test.pdf" WIDTH="40" HEIGHT="40"></iframe>
      </div>
      <%}       basically first time user visit the jsp page session attribute "afterSet" will be null so it wont create the hidden iframe tag . after it dispatched to the servlet controller and successfully processing the record it will set "afterSet" properties to some value and dispatch to itself
  after that it will popup/dialog box for user to save the pdf.
  this way the page already refreshes itself and wont have problem double clicking thing and so on

• Site Login Behavior For SharePoint Foundation 2013 Users With Expired Passwords?

  What are the most user-friendly ways of getting external users with expired AD passwords back into the SharePoint site with a new working password?
  We already send automated email notifications to users reminding them to change their soon-to-expire passwords.  However, sometimes they miss seeing the email notifications before the password expires (such as after returning from vacation or just carelessness
  and lack of attention to email messages) or they see the warning messages and forget to act on it.
  When this happens and they try to log into the SharePoint site from the Internet, their login fails without telling the user the reason they can't log in is because their password expired.  So, they end up confused and call the help desk to get their
  password reset.
  Is there a way to set up SharePoint Foundation 2013 login in a similar way to the OWA login so that, when a user with a correct but expired password tries to log in, it gives them a prompt to set a new password right there rather than just an error indicating
  their login failed for unknown reasons or password is "incorrect?"

  It could be done. You get a different event log entry for an expired login attempt than for a wrong password, 4625 events denote a login failure and an error ID of 23 denotes a logon failure.
  A naff, but simple, approach would be to create a tool that checks your server logon event log for 4625 entries and then emails that user, or the help desk, or security, that they're trying to get onto your system with expired credentials.
  For a more polished experience you've got a lot more work and bluntly it's going to be impractical for you. You'd have to re-write sections of the SharePoint authentication process or intercept the process, both are risky and not a good idea to try.
  There's a really interesting paper here that might be of interest, it won't help you in your current situation but it might shed more light on the overall authentication/authorisation process.
  http://www.sans.org/reading-room/whitepapers/forensics/windows-logon-forensics-34132

• 802.1X cannot change expired password at login

  Hi all,
  I'm trying to roll out 802.1X authentication for wifi access at my company, however there's one major problem I can't for the life of me figure out. I'm not able to get the Macs to prompt for a password change when the password has expired at login.
  On Windows when you log in it will prompt you to change your password when it's expired. However on OSX when you're on the workstation login screen, you can see the wireless icon briefly connect, then it will think for a bit and the user cannot log in at all.
  OSX can definitely can change expired passwords via 802.1X, as if I log into a local account and connect to the wifi with the user whose password has expired, it will prompt to change it, and changes it successfully.
  I'm using NPS for RADIUS authentication against AD, and using Profile Manager in OSX Server to create the 802.1X profile.
  Does anyone have any experience with OSX and using WPA Enterprise/802.1X Profiles?
  Thanks!

  Hi,
  Can you post a screenshot for this situation?
  Sometimes, the third party credential provider would lead to some issue like this, I suggest you check the
   current credential provider via the following path:
  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\SessionData\x\LastLoggedOnProvider
  You should compare the result with the values in the following path:
  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\credential providers
  If the current value is third party credential provider, try to disable it:
  To disable the provider add a REG_DWORD value "Disabled"=1 to that provider’s CLSID subkey.
  The provider will be disabled on the next session creation (sessions are created when you log off, switch users, or reboot.
  If you have any feedback on our support, please click
  here
  Alex Zhao
  TechNet Community Support

• How to create a LOGIN Form & LOGIN ID & PASSWORD for END USERS

  hi,
  i have just created a Database and Forms & Reports using developer 6i.
  now i want to deleiver that Database to end users, but i dont know that how to create a LOGIN Form for the end users and also i want to assign each user a Login ID & Password.
  Plz help me to solve out this problem.

  1. Create the user accounts on the database CREATE USER ... IDENTIFIED BY...
  2. Grant CONNECT Role to the Users
  3. in the main form (the one which is being called initially at runtime) in the ON-LOGON-Trigger create a CALL_FORM() to the Login Form
  4. The Login Form will be called; build a Block with username, password and a Button
  5. In the Button call the LOGON Built-In
  6. Control will be passed to the initially called form again
  I also noticed a thread in here explaining this in more detail...
  Message was edited by:
  user434854

• Can Forms 4.5 handle expired passwords?

  Is there a way that Forms 4.5 can handle an expired password in an Oracle 9.2 database? Apprarently, when the logon builtin is called and the user's password is expired, the form disconnects the user. Not even giving the user the chance to change their password.
  Please help.
  Thanks

  There is some code on Metalink which you can use from earlier versions of Forms (those which did not automatically handle expired passwords)
  Note: 52718.1 "Handling Expired Passwords from within Forms (V4.5/5.0)"
  You neeed to write some Pro*C code and a forms trigger to do it - all the code is in the note

• Expired Password Users can´t login into an RDP Connection

  Hi,
  we have some remote users that use .rdp files to connect directly to some remote applications. They don´t use RD WebApp.
  When their password are expired, they can´t logon.
  Is it possible to enable them to have the question asking then to change their password?
  Thankyou in advance.
  Fabio Martins MCDST/MCSA Brasil!!!

  Hi,
  Please describe exactly the behavior you are seeing as well as any error text the users are receiving.  What operating system version are the users running on their PCs, and what version of the Remote Desktop Client are they using?
  When starting the RemoteApp the user may click the Details button in the lower left corner.  This will give them a screen notifying them that their password has expired and giving the ability to change it.
  NOTE:  Allow connections only from computers running Remote Desktop with Network Level Authentication must be
  unchecked in RD Session Host Configuration--RDP-Tcp Properties--General tab or expired password changing will not work.  As always users should use their full user name (domain\username) when
  entering their credentials.
  Thanks.
  -TP

• Need some help in the login form ???!?!?!?!!

  can any one help me with correcting the code or can any one give me another code for using it in the login form.
  this is my problem:-
  i had make a login form using in oracle 9i form builder >>>in this form i have three text boxes one for intering user name and the second one for entering the password and the third text box is not visible and it is used for counting the tries.
  In addition i have a three buttons , one is for login and the two others are not visible and they are a show main menu button and a exit button. For login button i had put a WHEN-BUTTON-PRESSED trigger in the login button and it must check if the user name and the password match what it is on the login table so it allow the user to see the show main menu button otherwise if the user name or the password are wrong and has been putted wrong for 3 times of trying then it will show the exit button.
  and this is a picture of the login form in the design view.
  http://www.al7loh.com/uploader/uploads/login.JPG
  and this is the code for theWHEN-BUTTON-PRESSED trigger on the login button
  declare
       alertNum number;
  dummy1 tbl_login.USER_NAME%type;
       dummy2 tbl_login.PASS%type;
  begin
       select tbl_login.USER_NAME, tbl_login.PASS into dummy1, dummy2 from tbl_login where tbl_login.USER_NAME = :LOGIN.USER_NAME and
       tbl_login.PASS = :LOGIN.PASS;
       if :LOGIN.TRIES<3 then
       if sql%found
            then
            set_item_property('LOGIN.SHOW_MENU', visible, property_true);
                                                                             set_item_property('LOGIN.SHOW_MENU', enabled, property_true);
                                                                             else
                                                                             message ('Invalid password....try again');
                                                                             :LOGIN.TRIES := :LOGIN.TRIES+1;
                                                                             :LOGIN.USER_NAME := null;
                                                                             :LOGIN.PASS := null;
                                                                                  end if;
       else
       message ('Exceeded Number of tries..press exit button');
            set_item_property('LOGIN.EXIT', visible, property_true);
                 set_item_property('LOGIN.EXIT', enabled, property_true);
       end if;
       end;
  can any one help me correcting the code of the WHEN-BUTTON-PRESSED trigger on the login form or can any one give me another code for using it in the login form.
  i hope to get some help from the experts>>> ??!?!?!?!?!

  Something like this
  declare
    alertNum number;
    dummy1 tbl_login.USER_NAME%type;
    dummy2 tbl_login.PASS%type;
  begin
    Begin
      select tbl_login.USER_NAME, tbl_login.PASS
      into   dummy1, dummy2
      from   tbl_login
      where  tbl_login.USER_NAME = :LOGIN.USER_NAME
      and    tbl_login.PASS = :LOGIN.PASS;
      set_item_property('LOGIN.SHOW_MENU', visible, property_true);
      set_item_property('LOGIN.SHOW_MENU', enabled, property_true);
    Exception
      When no_data_found Then
        if :LOGIN.TRIES<3 then
          message ('Invalid password....try again');
          :LOGIN.TRIES := :LOGIN.TRIES+1;
          :LOGIN.USER_NAME := null;
          :LOGIN.PASS := null;
          Go_Item( 'LOGIN.USER_NAME' ) ;
        else
          message ('Exceeded Number of tries..press exit button');
          set_item_property('LOGIN.EXIT', visible, property_true);
          set_item_property('LOGIN.EXIT', enabled, property_true);
        end if;
    end;
  end;Francois

• File Adapter - anonymous login (or )User name ,password login - Efficient?

  Hi Folks,
  In File Adapter processing , anonymous login (or) proper user name password based login is recommended ?
  Because we have faced many issue while using username based login in File adapter  .
  Which one is best ?
  Regards.,
  Shiva

  Hi Shiva ,
  We will go one by one :
  You can go for the Anonymous login  but the problem is the any body can access the FTP server and it is not the secure one,that is why business generally don't allow the Anonymous login.
  Coming to Proper user name password login ,I would advice you to use this one as the connection is more secure in this case.But this also comes with a problem that the username password generally expires after some time as per security policy and you have to change the username password for the FTP server as well as in File adapter which you are using.But this problem can be solved by going for a permanent username and password.
  I would recommend you to go for Proper user name and password.
  Regards
  Ravi Anand
  Edited by: Ravi Anand@85 on Mar 12, 2010 7:56 AM

• How to remove login form for iView in portal

  Hi,
  I have created a workset in portal which provides links for various BI reports. In the properties of each page for report I set the property to lunch it in headerless window.
  When I login with test user and click on link for report its asking for userID password again. Once I login, it opens the report and it doesnt ask for other reports. If I logoff and close the browser and open in new browser its again ask's for user ID password when I open the report for first time.
  Could any one let me know the solution how to avaoid the login form  on clicking the link for BI report configured in workset.
  It is working fine for me in Dev and QA system, recently we did transport to Trainign system and I am facing this issue only in training system.
  Regards,
  Ravi.

  Hi,
  I dont want that login page to appear again. evan for the first time.
  The login page should apper only once that too while loging into portal. once I enter into workset and click on link for report which is launched in new window should not ask for login again.
  Its happening in my training system, which is not used to be in my dev and QA system.
  I need solution to show the report directly with out asking for authentication(login form) once again on clickig the link for report in workset.
  Regards,
  Ravi.

• How to print password_grace_time message on login form

  hi,
  we are running our application on 6i there we have a login form . we have set profile for a user & we want to show password_grace_time message ( ora-28002 ) on his login form when he try to login in grace time. how can we do this?
  regards

  I would just ask the 3rd party that created the PDF if they could supply unencrypted files. If there is some reason they will not, I am surprised that they have not restricted printing. Normally when Acrobat security is set, you can not print to a new PDF, even if printing is allowed. One option is to provide the ID and password to the other folks who need to review the PDFs. On the surface, there seems to be a license issue with what you are trying to do and you may need to be careful that the company is not at risk. That is why I am suggesting to coordinate with the 3rd party.
  Sorry. I don't have a solution but just the statement of concern.

• Help with Login Form (JSP DB Java Beans Session Tracking)

  Hi, I need some help with my login form.
  The design of my authetication system is as follows.
  1. Login.jsp sends login details to validation.jsp.
  2. Validation.jsp queries a DB against the parameters received.
  3. If the query result is good, I retrieve some information (login id, name, etc.) from the DB and store it into a Java Bean.
  4. The bean itself is referenced with the current session.
  5. Once all that's done, validation.jsp forwards to main.jsp.
  6. As a means to maintain state, I prefer to use url encoding instead of cookies for obvious reasons.I need some help from step 3 onwards please! Some code snippets will do as well!
  If you think this approach is not a good practice, pls let me know and advice on better practices!
  Thanks a lot!

  Alright,here is an example for you.
  Assume a case where you don't want to give access to any JSP View/HTML Page/Servlet/Backing Bean unless user logging system and let assume you are creating a View Object with the name.
  checkout an example (Assuming the filter is being applied to a pattern * which means when a resource is been accessed by webapplication using APP_URL the filter would be called)
  public doFilter(ServletRequest req,ServletResponse res,FilterChain chain){
       if(req instanceof HttpServletRequest){
              HttpServletRequest request = (HttpServletRequest) req;
              HttpSession session = request.getSession();
              String username = request.getParameter("username");
              String password = request.getParameter("password");
              String method = request.getMethod();
              String auth_type  = request.getAuthType();
              if(session.getAttribute("useInfoBean") != null)
                  request.getRequestDispatcher("/dashBoard").forward(req,res);
              else{
                      if(username != null && password != null && method.equaIsgnoreCase("POST") && (auth_type.equalsIgnoreCase("FORM_AUTH") ||  auth_type.equalsIgnoreCase("CLIENT_CERT_AUTH")) )
                           chain.doFilter(req,res);
                      else 
                        request.getRequestDispatcher("/Login.jsp").forward(req,res);
  }If carefully look at the code the autherization is given only if either user is already logged in or making an attempt to login in secured way.
  to know more insights about where these can used and how these can be used and how ?? the below links might help you.
  http://javaboutique.internet.com/tutorials/Servlet_Filters/
  http://e-docs.bea.com/wls/docs92/dvspisec/servlet.html
  http://livedocs.adobe.com/jrun/4/Programmers_Guide/filters3.htm
  http://www.javaworld.com/javaworld/jw-06-2001/jw-0622-filters.html
  http://www.servlets.com/soapbox/filters.html
  http://www.onjava.com/pub/a/onjava/2001/05/10/servlet_filters.html
  and coming back to DAO Pattern hope the below link might help you.
  http://java.sun.com/blueprints/corej2eepatterns/Patterns/DataAccessObject.html
  http://java.sun.com/blueprints/patterns/DAO.html
  http://www.javapractices.com/Topic66.cjp
  http://www.ibm.com/developerworks/java/library/j-dao/
  http://www.javaworld.com/javaworld/jw-03-2002/jw-0301-dao.html
  On the whole(:D) it is always a good practice to get back to Core Java/J2EE Patterns.and know answers to the question Why are they used & How do i implement them and where do i use it ??
  http://www.fluffycat.com/java-design-patterns/
  http://java.sun.com/blueprints/corej2eepatterns/Patterns/index.html
  http://www.cmcrossroads.com/bradapp/javapats.html
  Hope that might help :)
  REGARDS,
  RaHuL

• J_security_check & login form

  I have a problem that just started. When goto a page (/faces/home.jspx) it brings up the login form as usual. I login and it sends me to a 404 page not found error. I click back, and then it'll bring me to the home page. Not sure why this is bringing up the 404 page.
  If i change from form based to http basic, then it prompts me for my password and brings up the home page. Any ideas why the 404 is coming up?

  For the benefit of others here is the JSP/JSTL & javascript solution.
  This allowed me to create an automated login and use declarative security ...
  The following code requires param.UserID and param.PassWord to be set before it is executed...
  <form name="AutoLogin" method="POST" action="j_security_check" >     
  <input type="hidden" name="j_username" value="<%= request.getParameter("UserID") %>" size="8" maxlength="8" />
  <input type="hidden" name="j_password" value="<%= request.getParameter("PassWord") %>" size="8" maxlength="8" />
  </form>
  <script type="text/javascript" language="JavaScript">
  document.AutoLogin.submit();
  </script>

• Oracle ADF 11g – Authentication using Custom ADF Login Form Problem

  Hi Guys,
  I am trying to Authenticate my adf application using custom Login Form.
  following this..
  http://www.fireboxtraining.com/blog/2012/02/09/oracle-adf-11g-authentication-using-custom-adf-login-form/#respond
  But my Login Page is not Loading.I think its sending request in chain.my jdev version is 11.1.1.5.Any Idea.
  Thanks,
  Raul

  Hi Frank,
  I deleted bounded code and In another Unit Test I created a simple login.jspx page and applied form based authentication but still facing same problem means something wrong in starting.
  My login.jspx page is
  <?xml version='1.0' encoding='UTF-8'?>
  <jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.1"
            xmlns:f="http://java.sun.com/jsf/core"
            xmlns:h="http://java.sun.com/jsf/html"
            xmlns:af="http://xmlns.oracle.com/adf/faces/rich">
    <jsp:directive.page contentType="text/html;charset=UTF-8"/>
    <f:view>
      <af:document id="d1" >
        <af:form id="f1" >
          <af:panelFormLayout id="pfl1">       
            <af:inputText label="USERNAME" id="it1"
                          />       
            <af:inputText label="PASSWORD" id="it2"
                            />
            <af:commandButton text="LOG IN" id="cb1" />
            <f:facet name="footer">       
            </f:facet>                 
          </af:panelFormLayout>
        </af:form>
      </af:document>
    </f:view>
  </jsp:root>
  Don't know wht real problem is