Error in Role Based security using weblogic 9

Similar Messages

• JHeadStart Security problem-error page cannot be found- role based security

  JHeadStart Security problem-error page cannot be found- role based security
  Good morning! How are you? I would need some help in a jheadstart 10.1.3.2 security case and I was wondering if you could give me a hand to go on. I create the Model project with tables of oe schema. Then in JHeadStart to perform security I follow the following steps: In ViewController/WEB-INF/web.xml – properties I do the following: login configuration: http basic authentication rfc 7617: realm:jazn.com
  Security roles : I define two roles: customer and administrator , Security Constraints: web_resources: All_pages, Url Patterns: faces/*. Then in Tools/Embedded OC4J Preferences/Global/Authentication JAZN/Realms/jazn.com/users: I define two users c1, password c1 and a1,password a1, roles/member users/ I attribute the roles to the relevant users c1—customer and a1—administrator. Then in application definition editor on service level I define security/use role based authorization=true , authorization type: JAAS and when access denied go to next group=true. On group level e.g.: ProductInformation: Authorization/Authorized Roles Permissions: administrator.On item level : Orders/Items/OrderTotal/Operations/Update Allowed: #{jhsUserRoles['administrator']},Then I generate the pages (run the jag) . The generation is completed successfully but when I run the View Controller project a “the website declined to show this webpage…(page cannot be found)’ is displayed. What should I do? I would appreciate it if you would help me on this issue! Thank you very much.

  Thand you very much for your reply! Unfortunately there is a specific restriction-convention in the project I work in. I am supposed to perform role based security with my own tables and no by the jheadstart’s ones. Could you find out what is my fault with the steps I follow trying to perform the process?
  To remind you my steps I paste the following again:
  JHeadStart Security problem-error page cannot be found- role based security
  Good morning! How are you? I would need some help in a jheadstart 10.1.3.2 security case and I was wondering if you could give me a hand to go on. I create the Model project with tables of oe schema. Then in JHeadStart to perform security I follow the following steps: In ViewController/WEB-INF/web.xml – properties I do the following: login configuration: http basic authentication rfc 7617: realm:jazn.com
  Security roles : I define two roles: customer and administrator , Security Constraints: web_resources: All_pages, Url Patterns: faces/*. Then in Tools/Embedded OC4J Preferences/Global/Authentication JAZN/Realms/jazn.com/users: I define two users c1, password c1 and a1,password a1, roles/member users/ I attribute the roles to the relevant users c1—customer and a1—administrator. Then in application definition editor on service level I define security/use role based authorization=true , authorization type: JAAS and when access denied go to next group=true. On group level e.g.: ProductInformation: Authorization/Authorized Roles Permissions: administrator.On item level : Orders/Items/OrderTotal/Operations/Update Allowed: #{jhsUserRoles['administrator']},Then I generate the pages (run the jag) . The generation is completed successfully but when I run the View Controller project a “the website declined to show this webpage…(page cannot be found)’ is displayed. What should I do? I would appreciate it if you would help me on this issue! Thank you very much.

• What is the mean of using Portal with Role Based security as entry point

  Hi Experts we have requirement of integration of Portal and MDM
  I am completely new to the MDM. So please give me some idea , what is the meanin for following points.
  1) Using the Portal with Role Based security as entry point for capacity and Routing Maintaince(These two are some modules).
  2) Additionally , Portal should have capability to enter in to the MDM for future master data maintence. Feeds of data will need to be come from  SAP 4.6c
  Please give me the clarity of what is the meanin of second point
  Regards
  Vijay

  Hi
  It requires the entire land scape like EP server and MDM server both should be configured in SLD.
  Your requirement is maintaing and updating the MDM data with Enterprise portal.We have some Business Packages to install in Portal inorder to access the functionality of MDM.
  Portal gives you a secure role based functionality of MDM through Single sign on (login into the portal access any application) to their end users.
  Please go through this link
  http://help.sap.com/saphelp_mdmgds55/helpdata/EN/45/c8cd92dc7f4ebbe10000000a11466f/frameset.htm
  You need to develope some custom applications which should be integrated into the portal to access MDM Server master data
  The estimation involves as per your requirement clearly
  Its depends upon the Landscape settings, Requirement complexity,Identify how many number of custom applications need to be developed
  Regards
  Kalyan

• RBAC / Role Based Security Set Up in R12

  We are working with a 3rd party consulting organization to implement Role Based Access Control in E-Business Suite R12. We have approximately 50 users and with 35 responsibilities today and are currently in the process of designing our role based security set up. In advance of this the consulting company has provided us with effort estimates to cutover from the current responsibility structure to RBAC. We are told this must be done while all users are off the system. The dowtime impact to the business is very high, expecially considering our small user base.
  With RBAC cutover downtime estimates such as these I can't understand how any company larger than ours could go live with it?
  Does anyone have previous Role Based Access Control implementation experience in EBS R11i or R12 and could provide some insight on their experience and recommendations, best practice for cutover to mitigate impacts to the business as we cannot accept the 90 hours of downtime outlined by the consulting company below?
  Disable users old assignments:
  *12.00 hours*
  Disable Responsibilities targeted for the elimination:
  *12.00 hours*
  Disable Responsibilities targeted for the elimination:
  *16.00 hours*
  Setup OUM options and profiles:
  *6.00 hours*
  Setup Roles and Hierarchies:
  *14.00 hours*
  Grant Permissions:
  *12.00 hours*
  Setup Functional Security and disable the obsolete responsibilities:
  *12.00 hours*
  Setup Data Security and disable the obsolete data accesses:
  *6.00 hours*
  Total *90 hours*
  Note - all activities must be performed sequentially*
  Any advice or experiences you could share would be extremely valuable for us. Thank you for taking the time advance to review & respond.

  On Srini`s comments "Creating Roles.. will have to be done manually "... I would like to know will the same approach be followed for PRODUCTION instance also. Say if we need to create 35 responsibilities and 50 roles so should this be done manually in PRODUCTION.
  I have not worked on this but I know that in my previous company this was done using scripts. Need to find more on this.

• Reseeding cache for users with role based security

  I have role based security and trying to set up cache by purging all cache and later seeding cache by query. The query would be different for different users. What is the best way to purge all cache and reseed cache for administrator as well as all users. The EPT would purge cache based on updated tables. But how do I next go about reseeding cache for better performance to all the users. Thanks.

  I have created an ibot with the following:
  General - Normal Priority, Personalized (recipient's data visibility)
  Conditional Request - example_report
  Schedule - some schedule
  Recipients - Me(administrator) and User1
  Destinations - Oracle BI Server cache
  when the ibot runs 2 cache entries are created (for the 2 recipients).
  I have the report (example_report) on the dashboard (1 dashboard, 1 page, 1 report).
  After the ibot runs:
  When the administrator logs in first, there is a cache hit on the report. Followed by when the User1 logs in there is NO cache hit.
  On the other hand when the User1 logs in first, there is a cache hit on the report. Followed by when the administrator logs in there is no cache hit. The query log creates a Query issued to the database instead of cache hit on query.
  The User1 has a data level security.
  Please let me know where was I making an error in setting the ibot and how to get the cache seeding work for the different users with different role based security.
  Thanks for your inputs.

• R12: Role based security : Hiding a button in OAF page for roles

  Hi All,
  We have a requirement where in which, we have to hide a "Create" button in AR customer search form for some roles ... we have implemented UMX - Roles based security in our project and we cant hide it based on user or resp ...
  Any ideas ... Is it feasible with this new featue of RBAC?
  Thanks and Regards,
  Senthil

  Hi Ajay,
  metalink note 2778881.1 is discussing "Page access tracking report".
  but here i want to implement access restrictions to a particular page.
  Regards,
  Naren.

• Role-Based Security In SQL Server Reporting Services

  Hi
  I have created Reports,
  Now I need to assign Role-Based Security, ie like some particular clients can access only some particular report.
  http://localhost/reports/Pages/Folder.aspx
  Here in the above link i can see the property tool bar where i need to set the user assignement roles.
  could any one please help me out how to set different login assigned to a set of report.
  Or is there any tutor links for this.
  Thanks a lot.
  Shan

  Create folders under the Home page (the link you have there).  For each folder set group athentication (AD) or harder managed, user account roles for the folders and the reports under the folder.
  If you set security at that home level you will not be able to control what reports they see or can't see.  You'll need to go all the way to the folder/report level.
  It's also not best practice to deploy reports directly to the home level.  Not best practice in it creating a very hard to manage security level.  Think of the levels in security as such to SQL Server.  Set the connect to sql level, database level and then down to the objects in them.  Same priciples apply to SSRS.
  Here is a cast going through some security settings as well http://technet.microsoft.com/en-us/sqlserver/dd391734.aspx fro creating your roles and utilizing them
  Ted Krueger Blog on lessthandot.com @onpnt on twitter

• Role based menu using JAAS

  Is it possible to implement role based menu using JAAS in web application ? My requirment is to enable or disable menu items on the screen based on the roles of the logged in user .
  Can some one help me on this ?

  Is it possible to implement role based menu using JAAS in web application ? My requirment is to enable or disable menu items on the screen based on the roles of the logged in user .
  Can some one help me on this ?

• Form based security in WebLogic 7.0

  I'm sorry for the beginner level question, but I seem to be missing a critical step
  in getting Form based security to work. I have a Web application comprised of several
  JSPs. I want to attache simple FORM based security contrainsts to all pages in the
  app. Here are the exceprts from my web.xml:
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>DTSTAT</web-resource-name>
  <url-pattern>/StateServlet/*</url-pattern>
  </web-resource-collection>
  <auth-constraint>
  <role-name>Sysops</role-name>
  </auth-constraint>
  <user-data-constraint>
  <transport-guarantee>NONE</transport-guarantee>
  </user-data-constraint>
  </security-constraint>
  <login-config>
  <auth-method>FORM</auth-method>
  <form-login-config>
  <form-login-page>/StateServlet/login.html</form-login-page>
  <form-error-page>/StateServlet/login-error.html</form-error-page>
  </form-login-config>
  </login-config>
  <security-role>
  <role-name>Sysops</role-name>
  </security-role>
  The app deploys correctly and I have verified that the constrinsts, etc. are recognized
  by WebLogic by inspecting the content displayed from the Admin console under the
  "Edit Web Apllication Deployment Descriptor" link - all looks as I had expected and
  matches the XML configuration above.
  I then use the "Define Resources and Roles for Web Resource Collections" link. Under
  the "Define Policies" section I see the constraints as defined above. I then use
  the "Define Roles" link to define the "Sysops" role for this application and add
  the condition "Caller is a member of the group" and use Administrators as the Group.
  From this point, I invoke one of the JSPS in the app and presented with the Login
  page as expected. However, no matter what I enter for user and password, I always
  get the login-error page back. I'm purposely trying to keep this simple so that
  I can use the system user as a test case (who is a member of the Administartors group).
  However, I have also created an additional separate user and added them to the Administartors
  group as well with the same unsuccessful results.
  Can anyone help me out please? I've been reading the docs and seem to be missing
  a key element somewhere.
  Thanks in advance,
  Todd

            Try to refer to the documentation for
            Configuring Security in Web Applications at
            http://e-docs.bea.com/wls/docs70///webapp/security.html
            Does the weblogic.log file contain any error or warning
            messages corresponding to your problem ?
            If you have a test case to reproduce the problem, you
            can contact BEA support at [email protected]
            Thanks
            Developer Relations Engineer
            

• Role based security and ACLs

  Hello,
  I have a question regarding Roles and ACLs. I understand that I can use one or more security realms to host users, groups, and ACLs. (In fact I am implementing a custom realm for users and groups like RDBMSRealm, and wanted WLPropertyRealm to handle ACL/permission based duties.)
  Reading the "Writing a Web Application" it is apparent that ACLs are not supposed to be used for Servlets/JSP anymore, but rather to map roles to security principals via the deployment descriptor files for the web application.
  So:
  1. I assume that Weblogic will determine, once I have authenticated the user in my realm, whether or not the user is in a certain role, and therefore, whether or not they have access to a particular resource?
  2. What happened to the concept of permissions? Is it assumed that if the user is in the required role that they have permission to execute the servlet/JSP?
  3. Does it make sense to talk about ACLs anymore? A checkPermissions() method on an Acl object doesn't make sense now. Instead am I to use isUserInRole() ? (This doesn't seem the same to me - asking if User A has execute permission on this resource is different than asking if User A is in the CSR role.)
  Your response is appreciated.

  Hello,
  I have a question regarding Roles and ACLs. I understand that I can use one or more security realms to host users, groups, and ACLs. (In fact I am implementing a custom realm for users and groups like RDBMSRealm, and wanted WLPropertyRealm to handle ACL/permission based duties.)
  Reading the "Writing a Web Application" it is apparent that ACLs are not supposed to be used for Servlets/JSP anymore, but rather to map roles to security principals via the deployment descriptor files for the web application.
  So:
  1. I assume that Weblogic will determine, once I have authenticated the user in my realm, whether or not the user is in a certain role, and therefore, whether or not they have access to a particular resource?
  2. What happened to the concept of permissions? Is it assumed that if the user is in the required role that they have permission to execute the servlet/JSP?
  3. Does it make sense to talk about ACLs anymore? A checkPermissions() method on an Acl object doesn't make sense now. Instead am I to use isUserInRole() ? (This doesn't seem the same to me - asking if User A has execute permission on this resource is different than asking if User A is in the CSR role.)
  Your response is appreciated.

• Getting Error while Publishing Web Application using weblogic workshop 10.2

  Hi all,
  I am trying to create a simple webapplication using the weblogic workshop studio for weblogic. I have created a domain using the configration wizard.
  when i am trying to deploy the newly created dynamic web project EAR in to the server, its throwing a error
  !MESSAGE Referenced library module 'weblogic-controls-10.0#[email protected]' failed to deploy.
  !SUBENTRY 2 com.bea.workshop.wls.core 4 4000 2008-05-21 15:32:06.117
  !MESSAGE java.net.MalformedURLException: no protocol: 10.2/wlserver_10.0/platform/lib/p13n/p13n_common.jar
  !STACK 0
  java.lang.Exception: Exception received from deployment driver. See Error Log view for more detail.
       at com.bea.workshop.wls.core.server.internal.WlsJ2EEDeploymentHelper$DeploymentProgressListener.watch(WlsJ2EEDeploymentHelper.java:1459)
       at com.bea.workshop.wls.core.server.internal.WlsJ2EEDeploymentHelper.deployLibrary(WlsJ2EEDeploymentHelper.java:1200)
       at com.bea.workshop.wls.core.server.internal.WlsJ2EEDeploymentHelper.deployLibraryModules(WlsJ2EEDeploymentHelper.java:1079)
       at com.bea.workshop.wls.core.server.internal.WlsJ2EEDeploymentHelper.deployAllLibraryModules(WlsJ2EEDeploymentHelper.java:1046)
       at com.bea.workshop.wls.core.server.internal.WlsJ2EEDeploymentHelper.deploy(WlsJ2EEDeploymentHelper.java:710)
       at com.bea.workshop.wls.core.server.internal.WeblogicServerBehaviour.publishWeblogicModules(WeblogicServerBehaviour.java:1195)
       at com.bea.workshop.wls.core.server.internal.WeblogicServerBehaviour.publishOnce(WeblogicServerBehaviour.java:657)
       at com.bea.workshop.wls.core.server.internal.WeblogicServerBehaviour.publish(WeblogicServerBehaviour.java:486)
       at org.eclipse.wst.server.core.internal.Server.doPublish(Server.java:875)
       at org.eclipse.wst.server.core.internal.Server.publish(Server.java:863)
       at org.eclipse.wst.server.core.internal.PublishServerJob.run(PublishServerJob.java:142)
       at org.eclipse.core.internal.jobs.Worker.run(Worker.java:58)
  Caused by: java.net.MalformedURLException: no protocol: 10.2/wlserver_10.0/platform/lib/p13n/p13n_common.jar
       at java.net.URL.<init>(URL.java:567)
       at java.net.URL.<init>(URL.java:464)
       at java.net.URL.<init>(URL.java:413)
       at sun.rmi.server.LoaderHandler.pathToURLs(LoaderHandler.java:747)
       at sun.rmi.server.LoaderHandler.loadClass(LoaderHandler.java:147)
       at java.rmi.server.RMIClassLoader$2.loadClass(RMIClassLoader.java:620)
       at java.rmi.server.RMIClassLoader.loadClass(RMIClassLoader.java:247)
       at sun.rmi.server.MarshalInputStream.resolveClass(MarshalInputStream.java:197)
       at java.io.ObjectInputStream.readNonProxyDesc(ObjectInputStream.java:1544)
       at java.io.ObjectInputStream.readClassDesc(ObjectInputStream.java:1466)
       at java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:1699)
       at java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1305)
       at java.io.ObjectInputStream.readArray(ObjectInputStream.java:1634)
       at java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1299)
       at java.io.ObjectInputStream.readObject(ObjectInputStream.java:348)
       at java.rmi.MarshalledObject.get(MarshalledObject.java:135)
       at javax.management.remote.rmi.RMIConnectionImpl$6.run(RMIConnectionImpl.java:1595)
       at java.security.AccessController.doPrivileged(Native Method)
       at javax.management.remote.rmi.RMIConnectionImpl.unwrap(RMIConnectionImpl.java:1586)
       at javax.management.remote.rmi.RMIConnectionImpl.access$600(RMIConnectionImpl.java:81)
       at javax.management.remote.rmi.RMIConnectionImpl$7.run(RMIConnectionImpl.java:1631)
       at java.security.AccessController.doPrivileged(Native Method)
       at javax.management.remote.rmi.RMIConnectionImpl.unwrap(RMIConnectionImpl.java:1627)
       at javax.management.remote.rmi.RMIConnectionImpl.invoke(RMIConnectionImpl.java:766)
       at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:589)
       at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:479)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
       at weblogic.security.service.SecurityManager.runAs(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:475)
       at weblogic.rmi.internal.BasicServerRef.access$300(BasicServerRef.java:59)
       at weblogic.rmi.internal.BasicServerRef$BasicExecuteRequest.run(BasicServerRef.java:1016)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:200)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:172)
  Any help on this is welcomed
  Thanks and regards
  Vishnu

  If you don't mind can you please provide a more step-by-step instructions to reproduce.

• Form based security in WebLogic 7.0 - back button quirk

  I have an application comprised of several JSPs that are protected via Form based
  security and enforce an SSL connection via the appropriate declarations in the
  web.xml. This aspect of the application seems to be working with the exception
  of one small quirk.
  If a user presses that back button until such time as the receive the container
  provided login page once again, and subsequently provide a valid user id and password,
  they are NOT successfully logged in. Rather, they receive the ugly 403 Forbidden
  error that states that the server understood the request, but is refusing to fufill
  it. This only seems to happen given the above course of events involving the
  use of a back button in the browser (or selection of an item from the history
  list). I suspect that this has something to do with the session id being cached
  or something, but I'm not sure? Can anyone offer any assistance on this one?
  Also, does anyone know of a way of preventing the user from bookmarking this container
  provided login page as this also seems to be causing problems for users. If they
  bookmark the first protected page of the application all is fine, but if they
  bookmark the login page they receive the 403 error.
  Thanks in advance!

  The cure for the symtops described below was to simply add a welcome-file-list
  element with appropriate welcome pages to the web.xml descriptor. It makes sense
  now that I have worked it out.
  Todd
  "Todd Gould" <[email protected]> wrote:
  >
  I have an application comprised of several JSPs that are protected via
  Form based
  security and enforce an SSL connection via the appropriate declarations
  in the
  web.xml. This aspect of the application seems to be working with the
  exception
  of one small quirk.
  If a user presses that back button until such time as the receive the
  container
  provided login page once again, and subsequently provide a valid user
  id and password,
  they are NOT successfully logged in. Rather, they receive the ugly 403
  Forbidden
  error that states that the server understood the request, but is refusing
  to fufill
  it. This only seems to happen given the above course of events involving
  the
  use of a back button in the browser (or selection of an item from the
  history
  list). I suspect that this has something to do with the session id being
  cached
  or something, but I'm not sure? Can anyone offer any assistance on this
  one?
  Also, does anyone know of a way of preventing the user from bookmarking
  this container
  provided login page as this also seems to be causing problems for users.
  If they
  bookmark the first protected page of the application all is fine, but
  if they
  bookmark the login page they receive the 403 error.
  Thanks in advance!

• Applying application security using weblogic

  Hi, I want to know a procedure of deploying a fusion application on weblogic server using ear file
  I also want to know how to apply security on the application from database like I have users and groups each user belongs to a certain group I want is to verfy the user from database and give this user access of application contents based on user group.
  I have done this on LDAP but I did not need LDAP security I want to apply security on weblogic server using back end database.
  tell me if you know the procedure

  See this - https://blogs.oracle.com/jruiz/entry/deploying_an_adf_secure_applic for creating EAR and creating configuring the server.
  Permissions would need to be given to pages and taskflows in jazn-data.xml as here - http://andrejusb.blogspot.in/2008/07/declarative-security-in-jdeveloperadf.html
  and you would need to create a Custom SQL Authenticator using http://biemond.blogspot.in/2008/12/using-database-tables-as-authentication.html and configure it in weblogic server.

• IManager error editing Role Based Entitilements

  Hi,
  A while back we had to re-create our Organisational CA and server certificates. (Don't ask why...) Everything seemed to go well except for one issue I've been having since.
  We have OES2 SP3 (eDir 8.8 SP6) running on SLES 10 SP3.
  iManager version is 2.7.4
  Identity Manager Version is 3.6.1
  When I try to edit a role based entitlement I get the error:
  "Unable to obtain an LDAP context. Possible causes: the LDAP server is not running, or the LDAP server is for a tree other than the one iManager was originally set up for, and SSL has not been set up between the iManager server and the LDAP server. Either start the LDAP server, or set up SSL by importing a trusted certificate. "
  I have tried deleting the iMKS file and importing the certificate manually as detailed here:
  https://www.novell.com/documentation...a/bx8g5g8.html
  There are plenty of other pages showing the same method of resolving this issue but none have worked.
  Any ideas?
  Thanks.

  Hi,
  A while back we had to re-create our Organisational CA and server certificates. (Don't ask why...) Everything seemed to go well except for one issue I've been having since.
  We have OES2 SP3 (eDir 8.8 SP6) running on SLES 10 SP3.
  iManager version is 2.7.4
  Identity Manager Version is 3.6.1
  When I try to edit a role based entitlement I get the error:
  "Unable to obtain an LDAP context. Possible causes: the LDAP server is not running, or the LDAP server is for a tree other than the one iManager was originally set up for, and SSL has not been set up between the iManager server and the LDAP server. Either start the LDAP server, or set up SSL by importing a trusted certificate. "
  I have tried deleting the iMKS file and importing the certificate manually as detailed here:
  https://www.novell.com/documentation...a/bx8g5g8.html
  There are plenty of other pages showing the same method of resolving this issue but none have worked.
  Any ideas?
  Thanks.

• Unable to enable SAML based SSO using Weblogic 10.3.3

  Hi,
  I am working on enabling SSO among two different applications hosted on different domains (WLS 10.3.3) of same machine.
  I followed all the steps given in http://www.oracle.com/technetwork/articles/entarch/sso-with-saml-099684.html but ending up with Error 401--Unauthorized message when I access App-2.
  Even the sample applications attached with the article above results with same 401 error.
  Can you please help me with some work around. Also let me know for more info required.
  Thanks
  Raza
  Edited by: Raza Naqui on Dec 28, 2010 4:14 PM

  It worked partially now. I configured everything right from the scratch using http://www.oracle.com/technetwork/articles/entarch/sso-with-saml-099684.html and it worked
  Cleared Cookies/Cache/History
  Usecase - 1:
  1. Hit appA --> Login Page A (Entered Credentials) --> appA Landing Page ---------- WORKS FINE
  2. Hit appB --> appB Landing Page ----------- WORKS FINE
  Cleared Cookies/Cache/History
  Usecase - 2:
  1. Hit appB --> BASIC Authentication Box pops-up (Entered Credentials) --> appB Landing Page ----------- WORKS FINE
  2. Hit appA --> Login Page A is rendered ---------- DOESN'T WORKS FINE (In this usecase, instead of Login Page, it should render Landing Page of appA)
  I tried:
  1. Changing the login method of web.xml (appA) to CLIENT-CERT,FORM ----------- SAME ISSUE AS in Usecase-2.2
  2. Configured both the domains in the reverse order of configurations given in Blog-Link above. Meaning, where-ever it says appB (I referred appA) and in place of appA (I referred appB). Same case with domains. And then I try to hit appA URL ----> BASIC Authentication Box Pops up (Entered Credentials) -----> HTTP 500 ERROR (Internal Server Error) and nothing is printed on Weblogic Console.
  My Requirement:
  1. Out of appA or appB, which-ever is accessed for the first time, the login screen/basic authentication pops-up. Followed by no authentication to be required for appA or appB.
  Questions:
  1. Using SAML, can we enable 3 web-applications for SSO. If yes, How?
  Many Thanks
  Raza