Hiding username

Similar Messages

• Hiding usernames and passwords

  We are attempting to access a form through a URL link from a
  web page. The URL contains the username and password, but we
  would like to hide this. We are on Forms 6i patchset 8. Reports
  has a mechanism of hiding usernames in the url by altering the
  config file. Is there any mechanism in forms to achieve this
  result. Any help is appreciated.
  Thanks.

  Can you check out the patch 8 white paper on the forms page. It has a section about passowrd hiding there.
  I think that will help.
  Regards
  Grant Ronald
  Forms Product Management

• Hiding Username and Password in Web Report URL

  Hi there,
  I am calling a report from my webforms using the WEB.SHOW_DOCUMENT built-in. The problem is that when using this, when the report or the parameter form is being displayed on the browser, the username and password is also displayed on the browser's URL bar with other report parameters.
  Is there any way to surpress or hide the username and password? Please help as this raises some security issues.

  First off make sure your form
  logs on using an ON-LOGON trigger
  using the logon built in. Inside
  a form level ON-LOGON trigger put the
  following code (i.e.)
  logon('username','password@database');
  The password and database are concatenated together.
  Then you can call reports without
  puting the username and password in the
  URL. Here are two examples.
  web.show_document (i.e.)
  web.show_document('URL_HERE','_blank');
  or via a run_product (i.e)
  Run_Product(REPORTS,'admin_req_snapshot',SYNCHRONOUS, RUNTIME, FILESYSTEM,plist,NULL);
  <BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:</font><HR>Originally posted by hkpang ([email protected]):
  Hi there,
  I am calling a report from my webforms using the WEB.SHOW_DOCUMENT built-in. The problem is that when using this, when the report or the parameter form is being displayed on the browser, the username and password is also displayed on the browser's URL bar with other report parameters.
  Is there any way to surpress or hide the username and password? Please help as this raises some security issues. <HR></BLOCKQUOTE>
  null

• Sql*plus hiding username and password

  Hi All,
  I was wondering if there is a way that I can avoid
  having to specify username and password when I execute
  sqlplus and sqlldr on Unix systems.
  I know that If I don't specify a username or password
  these programs will prompt for one. That is fine
  when I am executing thing in a interactive shell but
  if I want to execute these programs from a cron job
  I need to have the username and password in my crontab
  file and when they execute other users can see my
  username and password by executing ...
  ps -ef
  ... How can I correct this problem?

  Actually, Oracle Corp. provides a very neat solution to the password problem.
  They have a program, called 'hide' which they provide the source for.
  Search on Metalink for Note 1009091.6: "HOW DO YOU HIDE USERNAME/PASSWORD IN PS?"
  You compile it on your system and you when you want to invoke sqlplus, for instance, you run 'hide sqlplus userid/password'.
  The difference is, that when you run a ps, all you see is sqlplus, without the userid and password displayed.
  You can rename sqlplus to something else and create a shell script called sqlplus that calls hide.
  That way is transparent to the user. Everyone just runs sqlplus like they always have.

• Hide username and password

  Dear all ,
  I am using 10g Application server .
  How can i hide username , password and connect strig while running report on web by web show document ?

  one alternative solution for hiding username and password is
  u can use frames.
  all u hav to do is the connection code should be written in the frame.
  cal this frame from where u hav to cal the report.

• N97 V21 browser viewing this site...

  Has anyone from Nokia tried accessing the discussions here with their own N97 V21 browser?
  It looks terrible!
  For a starter the log on panel to the right is misaligned and the boxes you have to select and type your name and password into are invisible. You have to stab about with your finger randomly in the area you've seen them on a "real" desktop browser and hope you get lucky!
  There are numerous other rendering issues, but they just make the page look like poo, the hiding username/password boxes would be a show stopper if you hadn't seen the page on a desktop machine before.
  Ironic that one of Nokia's own sites is possible the worst rendering site I've ever seen on my N97!

  That Bolt is pretty good, I like it.
  OVI suite couldn't work out how to install the double signed app, it popped up saying it was going to install it onto the connected N97, and then nothing happened.
  Copying it onto mass storage and then executing the jar on the N97 installed it correctly.
  Re the bad rendering of this site, sure I appreciate Nokia are just using a commercial forum web package, but it's pretty bad they pick one that renders so badly on their own products! Could you imagine the fuss if the Microsoft site didn't work properly in IE and had to be accessed in Firefox?!
  Nokia - More quality control... In all part of your business - Apart from the N97 getting run over by a Landrover test, I've done that one, it did damn well!

• Hiding Workgroup Template folder in Office 2013

  Hi,
  It was suggested that this may be an appropriate forum for asking the following question
  I have the following setup... In Group Policy (Computer Configuration) I copy the corporate Templates to the WorkGroup Templates folder on every PC (under Default\appData).  We also have a personal templates folder (under %USERNAME%\appData). 
  The workgroup templates are available in both the workgroup and users personal templates folder.
  When a user creates a new file in WORD or Excel they are presented with 2 templates folders.  Is there anyway of hiding the Workgroup Templates folder and just showing the user their personal templates folder? (I want to keep the Workgroups templates
  folder, I just do not want to display it in WORD)
  Or should I just try to rename the templates folders so they can be distinguished from each other
  Thanks

  Hi,
  As per the description, I understand that you've copied your corporate templates into the WorGroup Templates folder, and now you would like to hide this folder to users but keep the templates/folder. If I have misunderstood your concern, please let me know.
  I have tested this on my own machine, to hide this folder to users, you'll need to clean the location for
  Workgroup template in FILE>Options>Advanced>File Locations... button under
  General section.
  We are not able to clean this directly in Word, but we can do this by modifying the registry key or using GPO:
  1) Clean the value of this registry key directly for each user:
  HKEY_CURRENT_USER\Software\Microsoft\Office\15.0\Common\General\SharedTemplates
  2) Group policy for this is: User Configuration\Microsoft Office 2013\Shared paths\workgroup templates path
  Hope it helps.
  Regards,
  Ethan Hua
  Forum Support
  Come back and mark the replies as answers if they help and unmark them if they provide no help.
  If you have any feedback on our support, please click
  here

• URL reporting - Hide username and password

  Hi all,
  I am trying to display a report when a  link is clicked by a user,I know this can be achieved by URL reporting.But any one who trys view the source of the file will be able to get the login information(aps-username/aps-password) from the file or they can view this info in the address bar.Is there any way of hiding this information?
  Thanks
  Manoj
  Edited by: Manoj Thomas on Oct 9, 2009 4:23 PM

  Well, you can hide logon credentials by passing the logon token to the APSTOKEN command in the URL.The other way is to use OpenDocument to view a report.
  In both the cases you need to get the logon token programatically and then pass it on to the paramater. This way you can hide the credentials.
  I assume that you have already gone through the following PDF:
  [http://help.sap.com/businessobject/product_guides/boexir31/en/xi3-1_url_reporting_opendocument_en.pdf]
  I have used it in my project and it works.

• Hiding folders in linux?

  I have found a very unique way of hiding folders in my university. I really really want to understand how its working and if I dont I might die of curiousity.. This is a very cool security thing for multiuser environments.
  explanation:
  All user folders are hidden, doesnt matter if you do ls -la or anything else, nothing shows. Until somebody changes directory into them with cd command.. Then that folder is available. and can be seen with ls..
  I also noticed that all user folders are mount through nfs.
  How in jesus name does that work???

  i believe this is a **feature** with autofs.  before we used autofs to set up nfs mounts at my school, we could see the entire home directory structure, but we moved over this summer and now only users that have been logged into that machine since the last reboot will have their home directory shown (unless of course you cd to the directory).  i like this feature because on a large scale, it prevents people from knowing usernames if all user's home directories are set up as /home/username.

• How to set username and role?

  From httpservelet request we can get user name using getUserPrincipal() and also can check whether user in role or not. To do this before the servlet is invoked some one has to set the UserName and Role in the request. who does this job? if i want to set them using my program what should i do? please guide me in this?

  Fine, here is the link to webapp security documentation:
  http://download.oracle.com/javaee/5/tutorial/doc/bncas.html
  Boring material, but nobody said that research was going to be a fun part of the software engineer's life - too bad it is a crucial part of the job. You can either take or completely ignore the message I'm hiding in there, that is your choice.

• Hiding password in unix

  Hi,
  Could anyone tell me what is the unix command that is used for hiding the password's which is similar to following oracle code.
  ===============================================
  accept uname prompt 'Enter username====>'
  accept password prompt 'Enter passwd===>'hide
  connect &username/&passwd
  ===============================================
  I need the similar type of functionality(hide) in unix.
  Regards,
  Nagarjun.

  I need the similar type of functionality(hide) in unix.If I understand your need, then you can use "stty -echo". See this example :
  [ora102 work db102]$ cat read_pass.sh
  echo -n "Password : "
  read PASS
  echo $PASS >/tmp/pass.txt
  [ora102 work db102]$ ./read_pass.sh
  Password : mypass
  [ora102 work db102]$ cat /tmp/pass.txt
  mypass
  [ora102 work db102]$                        Now I use stty -echo
  [ora102 work db102]$ cat read_pass.sh
  echo -n "Password : "
  stty -echo
  read PASS
  stty echo; echo
  echo $PASS >/tmp/pass.txt
  [ora102 work db102]$ ./read_pass.sh
  Password :
  [ora102 work db102]$ cat /tmp/pass.txt
  mypass
  [ora102 work db102]$                                

• Forms 6i: hiding menu

  (This application is retrieveing data thru multiple users)
  i'm checking on New-Form-Instance trigger the username.
  declare
  var_user varchar2(50);
  begin
  var_user:=get_application_property(username);
  If var_user != 'GLADIATORS' then
  hide_menu();
  message(var_user);
  end if;
  other statements
  end;
  but it is not hiding the menu it is also not giving any error msg. although it displays the current user.
  any suggestions how can i implement the same thing ?
  also advise how can i drop the active connection and connect thru some other user?

  Hide_Menu is used in character mode UI. You should use the SET_MENU_PROPERTY(...,VISIBLE) built-in to hide each individual menu item.
  To connect using a different user, use the LOGON built-in.

• Where is the error hiding

  CFC Code:
  <cffunction name="comp_extList"
  access="remote"
  returntype="query"
  description="Get a list of employees, phone extensions, and
  departments">
  <cfargument name="abbrCode" required="yes" />
  <cfargument name="searchBox" required="no" />
  <cfset searchBox = UCASE("#arguments.searchBox#") />
  <cfldap name="phoneList"
  server="#cfc.ldap.server#"
  username="[email protected]"
  password="#cfc.ldap.key#"
  action="query"
  filter="company=#arguments.abbrCode#"
  start="dc=bii, dc=corp"
  scope="subtree"
  attributes="sn,givenName,telephoneNumber,department"
  sort="sn ASC"
  port="389" />
  <cfif len(arguments.searchBox) GT 0>
  <cfquery name="phoneList" dbtype="query">
  SELECT *
  FROM phoneList
  WHERE (UPPER(givenName) LIKE '%#searchBox#%'
  OR UPPER(sn) LIKE '%#searchBox#%'
  OR telephoneNumber LIKE '%#searchBox#%')
  AND telephoneNumber <> ''
  </cfquery>
  <cfelse>
  <cfquery name="phoneList" dbtype="query">
  SELECT sn,givenName,telephoneNumber,department
  FROM phoneList
  WHERE telephoneNumber <> ''
  </cfquery>
  </cfif>
  <cfreturn phoneList>
  </cffunction>
  I need to pass entered information for a search, but I
  receive error message:
  element searchbox is undefined in arguments.

  The error is not hiding at all actually. First, I recommend
  scoping all your variables. Inside a <cffunction> you can use
  <cfset var myLocalVar = "" /> to keep the variables local.
  But I noticed that you have this line:
  <cfargument name="searchBox" required="no" />
  The searchBox argument is not required, but you're using it
  the very next line:
  <cfset searchBox = UCASE("#arguments.searchBox#") />
  Since the argument is not required, it may not be passed in
  and hence won't exist in the arguments scope. The way to fix this
  is giving it a default value like so:
  <cfargument name="searchBox" required="no" default=""
  type="string" />
  That way if nothing is passed, Arguments.searchBox will still
  have a value.

• Hiding serverargs userid and/or ifrun60 command line arguments

  I am running Forms 6i applications via the web using 6i Forms Services (on windows 2000). All my applications work properly.
  Problem: How to secure the username and password (userid) when launching a form over the web.
  The HTML that launches a Form on the web contains the 'serverArgs' parameter that contains all information required as seen here:
  <PARAM NAME="serverArgs" VALUE="module=run.fmx userid=user/pass@SID">
  I need to know how I can hide the userid. I need to log the user directly into the application because it is integrated with an existing servlet based application. What I don't want is the userid and password sitting in their browser cache - this is a major security problem. Is there a way of hiding/dealing with the password?
  Here's another angle that might solve the same problem: I recall reading somewhere that the ifrun60 (or whatever your runtime is) has a command line upper limit of 255 or so characters. I also remember (I think) that you can avoid this problem by putting your arguments into a file that the forms runtime will read. Is this possible and if so, how is it done? I figure if this is possible, I can solve my initial problem by specifying a file to read the username/password from (located on the server) in the 'serverArgs' parameter (above). I am assuming of course that the serverArgs parameter expects the exact same inputs as that of the runtime.
  Any information relating to either issue would be GREATLY appreciated.
  Thanks,
  Matt.

  After reading into the changes in patchset 6, upgrading and expecting to use this functionality I was terribly disappointed. It seems that if I wanted to use the Servlets (that were included with patchset 6) to hide the userid and password, I need to install 9iAS!! What's the point? So the solution is to upgrade to forms 9i and that there is no solution for 6i.
  Instead of installing 9i, I attempted to hack away at the jar's that included the servlets that would solve my problems. I managed to get them up and running (the servlets) without installing 9i but didn't finish making them launch Forms 6i programs themselves. I assume that it is entirely possible to do so, but you need to really know your way around an application server.
  The answer to my question is that there is no way for Forms 6i (running on the 6i Forms Services) to properly hide the userid/password string. In 9i Forms Services, this is definately possible, but in order to run 9i Forms Services, you need to install 9iAS Enterprise Edition... In my case, 9iAS EE is way more than I wanted. It contains way too much extra functionality that I wasn't prepared to use and is way too large. Having Forms Services as a separate component (as it was in 6i) was a much better solution.
  Matt.

• Hiding system messages in WLST

  Hi,
  Is there any way to hide messages like below , but not hiding the messages which I output via the print command?
  'Disconnected from weblogic server: XXX
  Connecting to weblogic server instance running at t3://xxx as username weblogic ...
  Successfully connected to Admin Server 'AdminServer' that belongs to domain 'xxx'.
  Warning: An insecure protocol was used to connect to the server.
  To ensure on-the-wire security, the SSL port or Admin port
  should be used instead.
  ---------------------

  found it :p
  'false' needs to be added to the redirect rule.