Has anyone integrated Netegrity with WebLogic ?

Similar Messages

• Has anyone used JAAS with WebLogic?

  Has anyone used JAAS with Weblogic? I was looking at their example, and I have a bunch of questions about it. Here goes:
  Basically the problem is this: the plug-in LoginModule model of JAAS used in WebLogic (with EJB Servers) seems to allow clients to falsely authenticate.
  Let me give you a little background on what brought me to this. You can find the WebLogic JAAS example (to which I refer below) in the pdf: http://e-docs.bea.com/wls/docs61/pdf/security.pdf . (I believe you want pages 64-74) WebLogic, I believe goes about this all wrong. They allow the client to use their own LoginModules, as well as CallBackHandlers. This is dangerous, as it allows them to get a reference (in the module) to the LoginContext's Subject and authenticate themselves (i.e. associate a Principal with the subject). As we know from JAAS, the way AccessController checks permissions is by looking at the Principal in the Subject and seeing if that Principal is granted the permission in the "policy" file (or by checking with the Policy class). What it does NOT do, is see if that Subject
  has the right to hold that Principal. Rather, it assumes the Subject is authenticated.
  So a user who is allowed to use their own Module (as WebLogic's example shows) could do something like:
  //THEIR LOGIN MODULE (SOME CODE CUT-OUT FOR BREVITY)
  public class BasicModule implements LoginModule
  private NameCallback strName;
  private PasswordCallback strPass;
  private CallbackHandler myCB;
  private Subject subj;
           //INITIALIZE THIS MODULE
             public void initialize(Subject subject, CallbackHandler callbackHandler, Map sharedState, Map options)
                    try
                         //SET SUBJECT
                           subj = subject;  //NOTE: THIS GIVES YOU REFERENCE
  TO LOGIN CONTEXT'S SUBJECT
                                                   // AND ALLOWS YOU TO PASS
  IT BACK TO THE LOGIN CONTEXT
                         //SET CALLBACKHANDLERS
                           strName = new NameCallback("Your Name: ");
                           strPass = new PasswordCallback("Password:", false);
                           Callback[] cb = { strName, strPass };
                         //HANDLE THE CALLBACKS
                           callbackHandler.handle(cb);
                    } catch (Exception e) { System.out.println(e); }
       //LOG THE USER IN
         public boolean login() throws LoginException
            //TEST TO SEE IF SUBJECT HOLDS ANYTHING YET
            System.out.println( "PRIOR TO AUTHENTICATION, SUBJECT HOLDS: " +
  subj.getPrincipals().size() + " Principals");
            //SUBJECT AUTHENTICATED - BECAUSE SUBJECT NOW HOLDS THE PRINCIPAL
             MyPrincipal m = new MyPrincipal("Admin");
             subj.getPrincipals().add(m);
             return true;
           public boolean commit() throws LoginException
                 return true;
      }(Sorry for all that code)
  I tested the above code, and it fully associates the Subject (and its principal) with the LoginContext. So my question is, where in the process (and code) can we put the LoginContext and Modules so that a client cannot
  do this? With the above example, there is no Security. (a call to: myLoginContext.getSubject().doAs(...) will work)
  I think the key here is to understand JAAS's plug-in security model to mean:
  (Below are my words)
  The point of JAAS is to allow an application to use different ways of authenticating without changing the application's code, but NOT to allow the user to authenticate however they want.
  In WebLogic's example, they unfortunately seem to have used the latter understanding, i.e. "allow the user to authenticate however they want."
  That, as I think I've shown, is not security. So how do we solve this? We need to put JAAS on the server side (with no direct JAAS client-side), and that includes the LoginModules as well as LoginContext. So for an EJB Server this means that the same internal permission
  checking code can be used regardless of whether a client connects through
  RMI/RMI-IIOP/JEREMIE (etc). It does NOT mean that the client gets to choose
  how they authenticate (except by choosing YOUR set ways).
  Before we even deal with a serialized subject, we need to see how JAAS can
  even be used on the back-end of an RMI (RMI-IIOP/JEREMIE) application.
  I think what needs to be done, is the client needs to have the stubs for our
  LoginModule, LoginContext, CallBackHandler, CallBacks. Then they can put
  their info into those, and everything is handled server-side. So they may
  not even need to send a Subject across anyways (but they may want to as
  well).
  Please let me know if anyone sees this problem too, or if I am just completely
  off track with this one. I think figuring out how to do JAAS as though
  everything were local, and then putting RMI (or whatever) on top is the
  first thing to tackle.

  Send this to:
  newsgroups.bea.com / security-group.

• Has anyone integrated Rezgo with BC?, can you tell me if it a) possible ,and b)easy?

  Has anyone integrated Rezgo with BC?, can you tell me if it a) possible ,and b)easy?

  What do you want to integrate?

• Has anyone used tp4 with weblogic 10 ?

  We have not be able to get an appserver connection to work. Have you?

  We included weblogic.jar in
  c:\jdevHome\jdev\lib
  the message log shows the following:
  Aug 18, 2008 9:34:50 PM oracle.adf.rc.adapter.RCAdapterManager getInitialContext()
  WARNING: InitialContextFactory [adfrc.rr:AppServerConnection1:] returned null for RepositoryReference [class oracle.jdeveloper.rcasadapter.AppServerInitialContextFactory]
  Aug 18, 2008 9:34:50 PM oracle.adf.rc.adapter.RCAdapterManager getInitialContext()
  WARNING: InitialContextFactory [adfrc.rr:AppServerConnection1:] returned null for RepositoryReference [class oracle.jdeveloper.rcasadapter.AppServerInitialContextFactory]

• Has anyone integrated OIM 9.1.0.2 with ORM 10.1.4.2

  Hi,
  Has anyone integrated OIM 9.1.0.2 with ORM 10.1.4.2 on Oracle WebLogic Server.
  Manju

  Wat happened ?
  Are you getting any error ?

• Has anyone integrated Checkout by Amazon successfully?

  http://services.amazon.com/amazon-payments/payment-features.html?ld=SCUSPAYGATE1013AS
  Amazon provides 4 ways of integrating  Checkout by Amazon (CBA) with online shops - HTML Button, Pre-Integrated Cart, Standard Checout and Inline Checkout. Has anyone integrated one of these options successfully? If so can you please share an example for that?
  Also does anyone know if BC is planning to provide CBA as one of the payment gateway options?
  Thanks

  Too messy to do on the client side, it would be possible but it would have so many strings attached and you would have to save all your data outside of the BC e-commerce system unless you used the API to finalize the order.
  But if you are going to use the API to finalize the order you would be better served do the entire thing in the API like Liam said.

• Any kind of integration experience with Weblogic JMS and Oracle AQ?

  Hi,
  In my company I work with java developers who believe in some kind of "holly" database independence I don't understand and as a result my life as a database developer is hell on earth.. Yesterday we again started to discuss, this time where to log, they believe database is slow and prefer logging to filesystem, after some hours finally I could convince them for some operational and reporting needs to use the database and will do this in an asyncronous way whiich they won't get slow. After all I believe the reason for a database is data, this is the place where data lives, and with the correct desing and implementation logging to database would perform better.
  I love Oracle features, and know that we paid a lot for this software, so today I started investigating this promised solution. And quickly I found AQ and JMS topics in the documentation :)
  After this introduction here is my problem; my company use BEA Weblogic as application server and the java guys want AQ to automatically (but of course with some delay) take their JMS log requests into database tables. Does any one have similar application experience, or any kind of integration experience with Weblogic JMS and Oracle AQ?
  Any comments, references, documentation, sample code, url will be most welcomed :)
  Thank you very much!
  Tonguc
  [email protected]
  References I found upto now;
  Oracle® Streams Advanced Queuing Java API Reference 10g Release 2 (10.2) http://download-uk.oracle.com/docs/cd/B19306_01/server.102/b14291/toc.htm
  (Packages; javax.jms & oracle.jms)
  Oracle® Streams Advanced Queuing User's Guide and Reference 10g Release 2 (10.2) http://download-uk.oracle.com/docs/cd/B19306_01/server.102/b14257/toc.htm
  Part IV
  Using Oracle JMS and Oracle Streams AQPart V describes how to use Oracle JMS and Oracle Streams Advanced Queuing (AQ).
  Chapter 11, "Introducing Oracle JMS"
  Chapter 12, "Oracle JMS Basic Operations"
  Chapter 13, "Oracle JMS Point-to-Point"
  Chapter 14, "Oracle JMS Publish/Subscribe"
  Chapter 15, "Oracle JMS Shared Interfaces"
  Chapter 16, "Oracle JMS Types Examples"
  A Sample Code from Otn
  http://www.oracle.com/technology/sample_code/tech/java/web_services/jmsws/NewsQueueEJB.java.html

  I wouldn't go as far to say Oracle AQ is out-dated today. However, it is indeed a proprietary technology that did not found much main-stream adoption in the earlier years after its introduction. The advent of JMS made it somewhat more useful (or should I say intriguing, because more people are trying to tie it together with other J2EE technologies), but the Oracle's JMS wrapper classes in aqapi.jar were not feature complete for a long while, so using it outside Oracle's application server was painful, if not impossible. I do agree that the info at the dev2dev's JMS newsgroup or in this forum is highly fragmented, as neither Oracle nor BEA provides an official solution to integrate AQ with WebLogic, so people like us have to learn the technology through experimentation and in a piecemeal fashion.
  3 years ago I was literally "playing around" - we had a polling mechanism set up to use triggers to write Oracle data changes into an event table, and had a Java-based daemon to scan that table and publish events as JMS messages to the WebLogic JMS server. This continues to work reliably till today, but I was looking for a solution that has few parts - I wanted to hook up my WebLogic MDB directly to AQ as a foreign JMS provider. Although I was able to get it to work (including XA), there were a few hoops I had to jump through, such as decompiling the Oracle AQjms classes to make them bind to the WebLogic JNDI tree.
  One year after that Diptanshu Parui took what I did a giant step further - he extended the Oracle AQjms classes to allow them to be bound to the WebLogic JNDI tree naturally, and he figured out how to use WebLogic JMS messging bridge to re-send single-threaded AQ JMS messages to clustered JMS queues, which allow concurrent message assumption by multiple instances of MDB's. My impression is that he is using that setup in a production environment.
  I am sure you are aware of it but I would like to make it clear - in order to use AQ as a foreign JMS provider to WebLogic-hosted MDB's, you don't need to update your database to Oracle 10g - Oracle 8i is good enough (although I recommend at least 9i Release 2). It is not the database engine, but rather the aqapi.jar JMS wrapper on top of AQ that matters. I do recommend that you use aqapi.jar from Oracle Application Server 10.0.3 or up for better XA support, among other things. Again, you don't have to replace WebLogic with Oracle AS - you only need a single jar file from it and put it in your WebLogic's classpath. However, I don't know what this means from a licensing point of view if you ever go to production - do you have to pay the full price of OracleAS or OC4J just to use the aqapi.jar?
  In the coming days I will test the latest aqapi.jar to see how much progress Oracle has made in terms of making their J2EE products more spec-compliant :-).
  Hope the above gives you a different perspective.
  Eric

• Has anyone experienced problems with Mackeeper? I did not complete downloading this software. Yet, occasionally when on the internet, I will have the MacKeeper multi-colored circle replace my pointer. How do you deal with this?

  Has anyone experienced problems with Mackeeper? I did not complete downloading this software. Yet, occasionally when on the internet, I will have the MacKeeper multi-colored circle replace my pointer. How do you deal with this?

  Welcome to Apple Support Communities
  Don't download MacKeeper. Users complain about this app and it damages OS X. Also, Mac OS X knows how to take care of itself, so you don't need any other cleaning application that may damage OS X. See > https://discussions.apple.com/docs/DOC-3691

• Has anyone not working with .dv files had synchronization problems?

  Has anyone not working with .dv files had sound synchronization problems? I'm not exactly sure what the alternatives to DV are, but I think one of them is HD.
  The reason for asking this question is to help isolate the nature and cause of a very serious flaw in iMovie '11. In the original release of iMovie '11 (version 9.0) there was a small--but serious--synchronization problem. In the 9.01 there is a large synchronization problem. We know of one person who has not experienced the problem, and he is not working with DV files (media). So we want to find out if anyone who is using something other than .dv files is experiencing a lack of synchronization between sound and picture. Knowing the answer to this will help with figuring out where the cause lies. For the initial iMovie '11 release (9.0), you probably would not notice a problem unless you had very long event-clips, e.g., two hours long. Events get this long if you are transferring from analog 8 mm tapes. Even then, it would have to be in scenes in which the connection between event and sound is obvious, e.g., close ups of people talking. It isn't until the 9.01 release that most people would notice anything. All we need to do is establish one case of a synchronization problem in which the person is using something other than DV.
  Message was edited by: Paul Bullen

  Hopefully, the 9.0.2 release will make my question moot. Zyfert must have posted the announcement of the release just as I was formulating my question. Still, if you have information on the subject, it would be interesting to hear.

• HT4972 Has anyone had issues with failure of the music player to launch after updating to OS5? My Gen 3 will no longer play music!

  Has anyone had issues with failure of the music player to launch after updating to OS5? My Gen 3 will no longer play music!

  I think a few have.
  Try the standard fixes:
  - Reset. Nothing is lost
  Reset iPod touch: Hold down the On/Off button and the Home button at the same time for at
  least ten seconds, until the Apple logo appears.
  - Restore from backup
  - Restore to factory defaults/new iPod.

• HT1535 has anyone had issues with syncing music? i can no longer sync any of my music that was already on my itunes to my phone for some reason???

  has anyone had issues with syncing music? i can no longer sync any of my music that was already on my itunes to my phone for some reason???

  Since this first message, the "Other" space has increased exponentially.  The first time, after the "restore", it increased to over 9 GB.  Later, I tried a minor restore again, and now it's over 10 GB.  I've seen someone suggest that text messages are to blame.  If my text messages are suddenly taking up 4 GB of space, I think we've got bigger problems.

• (error code -50). Has anyone else dealt with this issue?

  When I try to copy something from my desktop to an external hard drive I keep getting this message: The operation can’t be completed because an unexpected error occurred (error code -50). Has anyone else dealt with this issue?

      That is a pretty strange message. Have you had a chance to reach out to Windows Live?
  TamaraH_VZW
  Follow us on Twitter @VZWSupport

• Has anyone had trouble with word freezing after installation of adobe acrobat 9 professional?

  Has anyone had troubel with Word fr
  eezign after instillation of adobe acrobat 9 professional and what did you do to res
  olve it?

  Try asking your question here, instead. There are lots of people here with great expertise, even though we don't work for Adobe.
  Hal

• Has anyone had problems with upgrading iPhoto. I am, it's stops at 5 0f 9 and will not finish!! Can someone please help me out?

  Has anyone had problems with upgrading iPhoto? I am, it stops at 5 of 9 and just stays there and won't finsih. Can someone please help me out?

  iphoto upgrading: Apple Support Communities
  iphoto upgrade hangs: Apple Support Communities

• HT1349 Has anyone had issues with the iphone 4s and facebook.

  Has anyone had issues with the iphone 4s and facebook. I have downloaded the app and sometimes it will let me log in and then it will log me out and not let me back in. I have deleted and downloaded it several times and nothing is working. HELP!

  @razmee: rather unhelpful.
  @tata - we're having the same trouble, and the only solution we've found doesn't fix it.
  1) uninstall
  2) login on PC/MAC and change password
  3) reboot iphone
  4) install facebook app, reboot again
  5) login from iphone. 
  No joy.
  Safari works, but not for the apps.
  Of course, it's Facebook that has to fix this.