External providers / frameworks on Weblogic

Similar Messages

• Mobility framework in WebLogic Portal 10.3

  Hi,
  In WebLogic Portal 9.2, there was a project facet called - "Mobility framework for WebLogic Portal." This is not available in WebLogic Portal 10.3. At the same time, I don't see any comment in the Release notes or the in the "What's new" section of 10.x versions.
  What is the equivalent feature in 10.3?
  Thanks,
  Prashanth

  I don't recall the product shipping a facet called Mobility Framework. This might have come from another product called WebLogic Mobility Server. I do not believe that this product exists anymore since the Oracle purchase of BEA. This product came from a partner called MobileAware and I think you can still purchase it from them if you require it.
  However, you might want to read about the native capabilities in WLP for handling multiple devices. Read:
  http://download.oracle.com/docs/cd/E13155_01/wlp/docs103/portals/multichannel.html to see if this is sufficient for your requirements.
  Brad

• How to access an External LDAP on a weblogic server using OPSS APIs.

  Hi,
  Can anyone let me know how I can access an External LDAP configured on a weblogic server using OPSS APIs( or alternative APIs).
  I'm currently using the below snippet and I'm getting only the Users and groups from the DefaultAutheticator on the weblogic server and not the external LDAP Server.
  I've verified the providers, users and groups on the weblogic server console and can see that external LDAP server content is being picked, but my below code does not query them.
  import oracle.security.idm.IMException;
  import oracle.security.idm.IdentityStore;
  import oracle.security.idm.Role;
  import oracle.security.jps.JpsContext;
  import oracle.security.jps.JpsContextFactory;
  import oracle.security.jps.JpsException;
  import oracle.security.jps.service.idstore.IdentityStoreService;
  List<Role> rowData = null;
  JpsContextFactory ctxf = JpsContextFactory.getContextFactory();
  JpsContext ctx = ctxf.getContext();
  IdentityStoreService storeService = ctx.getServiceInstance(IdentityStoreService.class);
  IdentityStore idStore = storeService.getIdmStore();
  rowData = this.getRoles(idStore, "*");
  Any help or pointers are highly appreciated.
  Thanks,
  Bhasker

  Can anyone please provide any suggestions. I trying to google around but still not able to find any solution.
  Thanks,
  Bhasker

• Use of external LDAP server in Weblogic Commerce Server

  I'm using the following software:
  Iplanet Directory Server v5
  Weblogic Application Server v6
  Weblogic Commerce v3.5
  I need to configure Weblogic Commerce Server to use Iplanet Directory Server directory
  services. How do I do that?
  I have a couple of questions related to this:
  1) As Weblogic Commerce Server runs on top of Weblogic v6, does it mean that to
  use an external LDAP server, I need to configure weblogic v6 to do that and not
  Weblogic Commerce Server?
  2) Whatever may be the case above, how do I do that?
  3) config.xml (weblogic application server v6) contains information that needs
  to be modified to point to an external JNDI source provider but what information
  do I need to modify?
  I'd really appreciate if someone can help me out here. Thanks!

  "JP" <[email protected]> wrote in message news:[email protected]..
  Hi,
  I'm looking for someone who has used the Lotus LDAP server for WLP7
  authentication.
  I connect my portal to the Domino LDAP, User and Groups are working
  fine, but the membership of a user to a group is not.
  I assume that it's related to the parameters I use (especially the
  membership.filter ?):
  "user.filter=(&(uid=%u)(objectclass=person));
  user.dn=O=Apac;
  membership.filter=(&(uniquemember=%M)(objectclass=groupOfNames));
  group.filter=(&(cn=%g)(objectclass=groupOfNames));
  server.host=jpgal01.apac.bea.com;
  group.dn="
  Any help would be appreciate, because I just don't where to look for.
  Try setting the com.netscape.ldap.trace property.
  \* When -D command line option is used, defining the property with
  * no value will send the trace output to the standard error. If the
  * value is defined, it is assumed to be the name of an output file.
  * If the file name is prefixed with a '+' character, the file is
  * opened in append mode.
  This will create a ldap trace file of the requests that WLS is making on the
  LDAP server. You can then see
  where the filters are not returning the correct value for the group
  membership.

• Read from external source file in weblogic

  Hi,
  I am using Weblogic Server 10.3 in my project.
  In one of my modules , i have a requirement where I have to read the contents of a file from an external location.[ex: D:\Test\Sample.xml ].
  How to i configure this path in weblogic , so that I can read the content in my java source file.
  Please advice.
  Regards,
  Praveen

  only part i replied on was the part of how to read a file
  but i think in your case you could do the next
  use the sync file adapter to read in the file during your process
  based on this content you set a variable "myOutputDirectory"
  then create a file adapter (write) which will store the file on file system
  http://docs.oracle.com/cd/E23943_01/integration.1111/e10231/adptr_file.htm#CIACICFD
  4.3.2.2.5 Specifying a Dynamic Outbound File Name
  and use that (jca.file.Directory) property to store the file either on the archive location or the delete location

• Java publishing framework using Weblogic personalization

  Hi All, Has anyone used the Weblogic personalization server/portal or
  a different Weblogic product as a publishing framework.
  We want to design a publishing system in which we can quickly create
  templates for new type of content on the website, and provide an
  interface for entering the data to the admins. The data can then be
  presented using XML/XSL transformation, and the source can either be a
  database or static XML file.
  Cocoon does provide a framework that comes close to our requirements,
  but as we are using weblogic it might be worth expoling if a
  commercial product can be used for such a framework.
  I am sure many people have a need to post content on the site and use
  a variety of mechanisms to use it.
  Also, can the Portal product be used to generate portlets which can be
  placed on multiple pages. We are looking at 500+ pages in our site,
  with 100+ portlets.
  I can give more specific details if needed. Any help is appreciated.
  Please feel free to also email at [email protected]
  Thanks, Yogi.

  1) http://commerce.bea.com/showproduct.jsp?family=WLP&major=8.1&minor=4
  2)Make sure you add your JDBC drivers to the beginning of CLASSPATH in either setDomainenv.cmd or setEnv.cmd
  3)What really helped was BEA support and playing with BEA's JDBC example that shows how to create and deploy and use a data source.
  http://dev2dev.bea.com/codelibrary/code/examples_jdbc.jsp

• External LDAP - Configuring the External LDAP to the Weblogic Server 10.3.3

  I m new to LDAP concepts. Is there any documentation link to configure any of the External LDAP for WLS 10.3.3?
  Where can I download to install the Extarnal LDAP?
  Thanks

  To use Active Directory for quick testing with Weblogic, you can use either Suns Sun One Active Directory Server or OpenLDAP which is an open source LDAP. We use OpenLDAP on unix and configure this with WLS. All our users are in OpenLDAP. Try googling around like "OpenLDAP Download" or "Sun One Directory Server" etc. All these are LDAP sources with very minor differences (Some extra attributes here and there). Configuration wise all are same from WLS point of view. We define LDAPs Host, Port, admin useranme/password, User basedn and Group basedn. These are minimum things we need to know upfront.
  Thanks
  Ravi Jegga

• Integration of Commons Logging framework with Weblogic

  Hi,
  We are trying to use Apache commons logging framework and trying to publish log mesages in Weblogic so that messages can be seen through console and all the Logging configurations can be managed from Admin console. I tried using the below steps:
  http://download.oracle.com/docs/cd/E12840_01/wls/docs103/logging/config_logs.html#using_commons
  But these does not seems to be working for User defined handlers. I am able to see the logs in the default odl-handler file but not able to log the messages through the handlers defined by me.
  Can anyone help me on this.
  Regards,
  Anuj

  Hi,
  We are able to see reports through Workspace. We are facing problem after
  integrating Hyperion Interactive Reporting with Weblogic Portal. we are able to see the sections like Query,Report,Results but we are not able to see the content after selecting any one of the section mentioned above.
  System Configuration:
  Hyperion Interactive Reporting 9.3.1
  App Server: Weblogic server 9.2
  Web Server: Apache 2.0.52
  Database: Oracle 9.0.1.
  Operating System: Windows 2003 with SP1
  Browser: I.E 6.0
  With Workspace everything is working fine. After Integration we are facing problem.
  Regards,
  S.Suresh.

• Changing user password in the external LDAP server from weblogic

  Hi !
  We have been successful in configuring the ldap security realm from weblogic 7.0.
  We have also done the user authentication.
  Now we want to allow the user himself to change his password from the application.Can
  the user password which is stored in an iplanet directory server be changed from
  application?If yes , then is there any extra configuration that needs to be done

  I am not sure whether u got an answer for this..
  But iplanet provides a web-link for end-users to change their LDAP password...u
  can just give this link in ur app ..and iplanet will take care of the rest..
  Krish Venkataraman
  Bank Of America Corp.
  Senior Analyst
  "Mitali" <[email protected]> wrote:
  >
  Hi !
  We have been successful in configuring the ldap security realm from weblogic
  7.0.
  We have also done the user authentication.
  Now we want to allow the user himself to change his password from the
  application.Can
  the user password which is stored in an iplanet directory server be changed
  from
  application?If yes , then is there any extra configuration that needs
  to be done

• External Providers when No Firewall is used

  Has anyone been successful in implementing YellowBrix portlets into their Portal
  pages when not accessing the Internet via a firewall? The process appears to be fairly simple when a firewall is used but following the same instructions when direct access to the internet is available allows the portlets to be displayed in the portlet repository but when trying to use them in a Portal page only a blank page is displayed.

  Trilby wrote:
  Why don't you give us that idea?  Try another WM, see if the problem remains.
  Also, what is the video card and driver that you are using?
  http://pb.abhijeetr.com/CQRP
  The issue is not reproducible by a certain way. It happens randomly. Using a new WM will require configuring it and it takes time. That's why I got lazy. I'll have to use it for a few days and see if I see any issues. If that's the only thing I can do, I'll certainly do that.

• [OSB and OWSM] - External Web service stacks and frameworks

  Hi everyone ! I'm starting to read about OSB and OWSM and I'm having some doubts. I've some developments of Web services with external Stacks like CXF, JBossWS, Metro and I'd like to ask some questions:
  1- Will I be able to productively leverage all features of OSB and OWSM like creating a proxy service to add WS-* standards policies and features (WS-Security, for instance) even with these web services implemented in different stacks other than Weblogic's ?
  2- If it is possible, do these web services need to be deployed at the Weblogic server to enable the OWSM and OSB to work effectively ?
  3- Even if it is possible to use the OSB and OWSM nicely with webservices developed at external stacks and deployed at other application servers is there any reason to quit using these external web service stacks in favor of Weblogic's (like features only enabled on OSB/OWSM when the services use the Weblogic stack) ?
  I suppose that if I ignore the JAX-WS stack from Weblogic and use an external framework (like CXF) I'll lose most of the application server administration capabilities since the Weblogic server won't be able to recognize the CXF stack as it does with its own.But, the main doubt I'm in is, since OSB and OWSM might be used with external providers I probably won't need to develop my web services using the Weblogic implementation (which my team does not yet know) since there will be no features of the OSB and OWSM which can only be used with the Weblogic's stack. I would like, please, to know your oppinions about these considerations. Sorry about the long post and possible errors (I just started learning).
  Thank you!

  Hi Lupan,
  I can speak mostly to OWSM as my experience with OSB is small thus far.
  +1- Will I be able to productively leverage all features of OSB and OWSM like creating a proxy service to add WS-* standards policies and features (WS-Security, for instance) even with these web services implemented in different stacks other than Weblogic's ?+
  OWSM (10gR3) has two types of policy enforcement point (PEP) -- Gateway and Agent. The Gateway acts as a remote proxy and is neutral to the service implementation technology as long as it adheres to SOAP 1.1. In this regard you can use OWSM freely with CXF, MS implementations, etc. Agents run in-process with the service and thus have far greater restrictions on what service implementation frameworks and containers that are supported. There is some certification for AXIS 1.x running in OAS and Tomcat; but practically speaking, my recommendation for Agents is to only use within OAS 10gR3 where it is built in (and using OC4J Web Services through JAX-RPC).
  OWSM 11gR1 initially supports only agent-style (in process) PEP and is built-in to Fusion Middleware and WLS. It is only for Fusion and WLS Web Service implementations.
  OWSM is quite full-featured for WS-*.
  +2- If it is possible, do these web services need to be deployed at the Weblogic server to enable the OWSM and OSB to work effectively ?+
  "No" if using OWSM Gateway PEP. A qualified "Yes" if using OWSM Agent PEP.
  +3- Even if it is possible to use the OSB and OWSM nicely with webservices developed at external stacks and deployed at other application servers is there any reason to quit using these external web service stacks in favor of Weblogic's (like features only enabled on OSB/OWSM when the services use the Weblogic stack) ?+
  There is the manageability that you mention, but also there is the identity propagation scenario and tight security integration. Both OAS and WLS hosted services in the native stacks (JAX-RPC and JAX-WS) allow sophisticated and secure passing of identity in the request -- for instance, via SAML Assertions in the WS-Sec header -- and built-in capabilities to map the passed identity into the running service's Subject (i.e. enabling JAAS security etc.).
  In my experience this type of identity propagation functionality has either been absent or less complete in other typical implementation frameworks not closely aligned with the container security mechanisms.
  Hope this helps,
  Todd

• How to authenticate CXF-Webservice against external LDAP in WebLogic?

  Hi there,
  I'm trying to integrate our Camel-application into WebLogic 12c. All the incoming endpoints are CXF-based webservices. These are secured by "UsernameToken Timestamp" with the WSS4JInInterceptor configured like this:
  <bean id="wss4jInInterceptor" class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor">
            <constructor-arg>
                 <map>
                      <entry key="action" value="UsernameToken Timestamp" />
                      <entry key="passwordType" value="PasswordDigest" />
                      <entry key="passwordCallbackClass"
                           value="de.mycompany.camel.cxf.UserTokenCallbackHandler" />
                 </map>
            </constructor-arg>     
  </bean>
  My problem is: WSS4JInInterceptor expects the UserTokenCallbackHandler to return the password of the user delivered in the header <wsse:Username>. Is there any way to retrieve this from an external LDAP configured in WebLogic? I've already managed to retrieve the users, groups etc with JMX (javax.management.MBeanServerConnection and weblogic.security.providers.authentication.LDAPAuthenticatorMBean), but I can't figure out how to authenticate the user against the LDAP, i. e. retrieve the password.
  Or am I heading in a completely wrong direction and this is not the way to achieve authentication for CXF-Webservices in WebLogic?
  Please give me a hint (code-snippets preferred ;-) ) how to solve this.
  Regards,
  Frank

  I have run into the exact same situation ? Did you ever get around this ? If so, how ? Please let me know.

• Issue while integrating external LDAP with weblogic

  Hi,
  i am trying integrating external LDAP (OpenLdap) with weblogic 10.3. I created a provider and provided required credentials and able to see users and group of the LDAP into the weblogic console. I am also able to login in the weblogic console with the users available in the LDAP after assigning the admin role to the ldap group. But i when i see the user's property (by clicking on the user in the admin console) it only shows the tabs for General, Password and Group only. on the other hand if i see the users from DefaultAuthenticator, it shows the Attribute tab apart from the General, Password and Group.
  Can anyone let me knwo how can we get the Attribute tab for the Ldap users.
  thx,
  Ajay

  Hi Ajay
  By default Weblogic has READ ONLY adapters for any External Security Providers that are configured like any AD Providers. READ ONLY means, you can only read the data from the ldap but not modify it, hence may be its not showing the Attributes tag. For Default Authenticator, see the first paragraph note in Attributes tab, that says the same thing. NOW, may be WLS can atleast show Attributes in READ only format, but it needs some sort of mappings to be defined. Say on Weblogic side, we have like firstName, lastName which on any typical AD will be like sn (surname = lastname), givenname (firstname) etc etc. This mapping is tough to generalize.
  One thing for sure is, from Weblogic you cannot modify or edit any attributes for any user in external AD. If you really want to get those attributes, you may need to use some javax.ldap apis or some 3rd party ready to use tools/apis. I remember Weblogic Portal has a facility to configure a xml file that defines attributes mapping and get all attributes for any user. But again thats in Weblogic Portal product and not part of weblogic server.
  If you have any SOA Software, they have some utilities for the same.
  Thanks
  Ravi Jegga

• Anyone configured OID with weblogic as external LDAP

  Hey,
  I need help from someone who configured Oracle Internet Directory with weblogic 7 or any version to us as external LDAP server.
  Your Help is greatly appreciated.
  Thanks & Best Regards,
  Nagendra

  I was able to use OID as external LDAP for my Weblogic. I was able to move the stuff from Weblogic Embedded LDAP to Oracle Internet Directory Server, I have done it by myself
  Thanks
  Nagendra

• External LDAP user only has search priviledge in UCM

  After I have configed external LDAP successfully in weblogic console, I can see all user from external LDAP. And external LDAP user can login UCM successfully, but these users only has search priviledge. I want external LDAP user has Admin priviledge as weblogic(Default in embed LDAP). How to solve it. Any help will be appreciated greatly! Otherwise, I refer to Oracle's ducument,
  51.1.14 LDAP Users Not Receiving Some Administrator Privileges
  UCM inspects for the group "Administrators" on each user's login to grant UCM roles. If a user should have access to the UCM admin server, the UCM server requires that the user be a member in a group named "Administrators."
  How to add external LDAP user to the group of Administrators.

  Hi ,
  You can use Credential Maps to be achieve the requirement:
  Steps for the same are :
  1. Login to UCM - Administration - Credential Maps .
  2. Create the map name and the following mapping :
  <ldap role> , admin
  3. Save the changes
  4. Navigate to <domain_home>/ucm/cs/data/providers/jpsuserprovider/provider.hda
  add the following variable there :
  ProviderCredentialsMap=<map name created in step 2>
  5. Save the changes and restart ucm server .
  After that login with the user who has the ldap role that is mapped in stpe 2 , this user will have the ucm admin role .
  Hope this helps .
  Thanks
  Srinath