How to get the security-roles ?
Hi,
How can I get the security-roles defined in my web.xml ?
I have looked for a method in the request, and in the context, but I can't find something that would return a String[] with the roles available in the web-app.
Any ideas ?
H.
Just a stab in the dark, but what about getInitParameterNames() ?
It returns an Enumeration of String.
Although, I did not check to see if it returns the <security-roles>
Short of that, I would think you could use SAX, or something like it, to parse web.xml.
Just a thought, feel free to correct me.
S.
Similar Messages
-
How to get the security MBeans for the managed Server of weblogic 11g
Dear All ,
I have been trying to figure it out why the UserLockoutManagerMBean API not working on the managed Server of Weblogic . Its always returns 0 value . Where as in the Admin server it give a proper result . I am attaching the code for the references . Please help me out.
MBeanHome home = null;
Environment env = new Environment();
env.setProviderUrl("t3://localhost:8001?");
env
.setSecurityPrincipal(Resources
.getRefNo(GlobalVariableConstant.WEBLOGIC));
env
.setSecurityCredentials(Resources
.getRefNo(GlobalVariableConstant.WEBLOGIC_PASSWORD));
javax.naming.Context context = env
.getInitialContext();
home = (MBeanHome) context
.lookup("weblogic.management.adminhome");
RealmMBean realmMBean = home.getActiveDomain()
.getSecurityConfiguration()
.getDefaultRealm();
UserLockoutManagerMBean userLockoutManagerMBean = realmMBean
.getUserLockoutManager();
userLockoutManagerMBean.getRealm()
.getUserLockoutManager();
boolean d2 = userLockoutManagerMBean
.isLockoutEnabled();
long getUser = userLockoutManagerMBean
.getLoginFailureCount(username);Thanks for your help Satya - it did work!
Looking up "SecurityConfigurationConfigMBean" does return an instance of SecurityConfigurationMBean.
Regards,
DKV
Satya Ghattu <[email protected]> wrote:
On a managed server you will need to query the
SecurityConfigurationConfig MBean, from that you know how to get to the
UserLockoutManager MBean.. :-).
Thanks,
-satya
DKV wrote:
Hi,
I need to get counts for the invalid user login attempts. Accordingto javaDocs,
these are published by the following MBEans:
1. weblogic.management.runtime. ServerSecurityRuntimeMbean [does not
work
2. weblogic.management.security.authentication.UserLockoutManagerMBean
The first one does not work [always returns back "0"]. Hence, the needfor the
other approach.
I have not been able to figure out how to get the UserLockoutManagerMBeanfor
a managed server.
[On a domain server I was able to fetch it using: securityConfigurationMBean.findDefaultRealm().getUserLockoutManager()
However, on a managed server the MBEan "SecurityConfigurationMBean"
is not available..
Q) How do I get the UserLockoutManagerMBean
[from a remote client] targeting a managed WLS 8.x version?
Regards,
DKV -
How to get the security MBeans?
Hi,
I need to get counts for the invalid user login attempts. According to javaDocs,
these are published by the following MBEans:
1. weblogic.management.runtime. ServerSecurityRuntimeMbean [does not work]
2. weblogic.management.security.authentication.UserLockoutManagerMBean
The first one does not work [always returns back "0"]. Hence, the need for the
other approach.
I have not been able to figure out how to get the UserLockoutManagerMBean for
a managed server.
[On a domain server I was able to fetch it using: securityConfigurationMBean.findDefaultRealm().getUserLockoutManager()
. However, on a managed server the MBEan "SecurityConfigurationMBean" is not available.].
Q) How do I get the UserLockoutManagerMBean
[from a remote client] targeting a managed WLS 8.x version?
Regards,
DKVThanks for your help Satya - it did work!
Looking up "SecurityConfigurationConfigMBean" does return an instance of SecurityConfigurationMBean.
Regards,
DKV
Satya Ghattu <[email protected]> wrote:
On a managed server you will need to query the
SecurityConfigurationConfig MBean, from that you know how to get to the
UserLockoutManager MBean.. :-).
Thanks,
-satya
DKV wrote:
Hi,
I need to get counts for the invalid user login attempts. Accordingto javaDocs,
these are published by the following MBEans:
1. weblogic.management.runtime. ServerSecurityRuntimeMbean [does not
work
2. weblogic.management.security.authentication.UserLockoutManagerMBean
The first one does not work [always returns back "0"]. Hence, the needfor the
other approach.
I have not been able to figure out how to get the UserLockoutManagerMBeanfor
a managed server.
[On a domain server I was able to fetch it using: securityConfigurationMBean.findDefaultRealm().getUserLockoutManager()
However, on a managed server the MBEan "SecurityConfigurationMBean"
is not available..
Q) How do I get the UserLockoutManagerMBean
[from a remote client] targeting a managed WLS 8.x version?
Regards,
DKV -
Hi ,
how to hide the tool bar buttons based on the business role.
Thanks,
venkatHi,
to get the role you can use CL_CRM_UI_ROLES=>GET_ROLE_ATTRIB. The toolbar buttons themselves are typically prepared in the DO_PREPARE_OUTPUT method of the view controller. Nevertheless you will need to check in the code of the relevant view.
Best Regards,
Michael -
How to get the type of user role in ISF?
We have functionality to hide all the buttons on Monitor task, which was successfully achieved by javascript. But we need to enable these buttons for only Site Administrators, so that they only can do necessary modifications upon request from end users. Can someone point me to correct direction how to get the user role when a user is not a Site Administrator. Thanks in advance.
What about having your custom ISF onload script first run a db query (on older version called a rcFetch) which would evaluate if the person loading form is a member of the site admin ou.
Here's a rough example:
ISF_onLoad()
rcFetch('Q1','Q1PL=' + UserID);
This will then run a query to validate if the person is a member of the admin ou.
SELECT * FROM DirOrganizationUnitPeople WHERE PersonID = #P1# AND OrganizationalUnitID = 1 (this should be the id of the site admin ou or the ou which you are referring to as an admin)
then have a call back to determine if any records where return, which indicate the person is a member of the site admin ou.
function Q81_DataCallback(retArray, queryList)
if (retArray['Q8500._COUNT_'] == 1)
{ *Show the fields* }
Hope this helps. -
How can I know the security role of the logged in user
When you design an enterprise bean or Web component, you should always think about the kinds of users who will access the component. For example, an Account enterprise bean might be accessed by customers, bank tellers, and branch managers. Each of these user categories is called a security role, an abstract logical grouping of users that is defined by the person who assembles the application. When an application is deployed, the deployer will map the roles to security identities in the operational environment.
But wondering when I log into my application with some user name and password (specified in my Oracle database),wondering how this works with the security role I created .How does J2EE know the security role of the logged in user.
Thanks
Manoharshet wrote:
role at run time.
When I login say as "manju" and password as "money" then how does it know that this user belongs to this security role.Is that the j2ee administrator has to say that user manju has this this security role.Programmitically how does it really work.I am confusedThe j2ee implementation assigns the roles using the JAAS module you have configured for your application on your application server. different JAAS modules get roles in different ways. many allow a single static role to be assigned using a config file. if using a database, often there will be configuration to specify additional database fields which specify the role for a given username.
At runtime, a developer can test roles using methods like EJBContext.isCallerInRole(). -
How to setup the security based on roles in Organization.
Hi,
How to setup the security based on roles in Organization.
For example:Few users are Manager and a few user are Non Manager .Manager should have access to all work data including Non Manager and Non Manager should access based role.How to setup this? How OBI server identify the user role?
kindly let me know.
Regards.,
CHRHi,
You need to have Back End support to achieve this. In Back End you need to create two groups . You need to know what joins has to be made for which group (which is more important) and also make session variable for the userrole (with SQL supporting it). In the BMM layer, we need to put the security join conditions in the 'where clause'.
And make a common report. User loggin in with the respective userid will have userrole and joins assigned in the Back end. And they will be viewing the report according to their access.
Hope this will solve your problem.
Regards
MuRam -
How to get the role name in which query is published ?
Hi Experts,
Is there any table where i can get the name of the role in which a particular query is published. I know that if i have a role , i can check in pfcg giving that role name and in menu tab i can see all the queries published under that role. But if i know query but not role how to get the role name . Is there any table or functon modules or programs to get the information.
Thanks & Regards
Vamsi KiranCheck this table
AGR_HIER -
How to get the list of roles assigned to a user in all the child systems
how to get the list of roles assigned to a user in all the child systems from CUA SYSTEM
Try transaction SUIM in your CUA system. Go to user, cross-system information, users by roles. If you run it wide open, you'll get all users and all roles assigned for all systems managed in your CUA.
Krysta -
Helo. How to get my security questions because i forget the question.
Helo, How to get my security question because i forget the answer. Please help me.
Go to https://getsupport.apple.com ; click 'See all products and services', then 'More Products and Services, then 'Apple ID', then 'Other Apple ID Topics' then 'Forgotten Apple ID security questions'.
-
How to get the obiee dashboard secuirity in adf to assign the roles in adf for users
how to get the obiee dashboard secuirity in adf to assign the roles in adf for users
thanks Benjamin...
my present requirement is pull Role to Dashboard mapping from OBIEE Catalog
in my project we are going to restrict the users and assigning the roles from adf.
Pls Help me.. -
Hi im having trouble with downloading an album off my computer. i have forgotten the security questions, but have already sent them to my email. could someone help me in how to get the answers?
Hello Carpets,
Thanks for the question. You can reset your security questions with your rescue email address, as outlined with this article:
Apple ID: All about Apple ID security questions
http://support.apple.com/kb/HT5665
If you do not see the option for resetting your questions with a rescue email address, see this excerpt:
Note: The option to send an email to reset your security questions and answers will not be available if a rescue email address is not provided. You will need to contact iTunes Store support in order to do so.
Rescue email address and how to reset Apple ID security questions
http://support.apple.com/kb/HT5312
Additional Information:
Apple ID: Contacting Apple for help with Apple ID account security
http://support.apple.com/kb/HT5699
Thanks,
Matt M. -
How Does The security-role Mapping Work?
I am studying the security part of the deployment descriptor. I am confused about
how the mapping works.
Suppose we have
<security-role>
<role-name>manager</role-name>
</security-role>
and
<security-role-ref>
<role-name>FOO</role-name>
<role-link>manager</role-link>
</security-role-ref>
My first question is when a client of the servlet supplies a name for authentication,
the name supplied should be FOO or can be, say, John Smith?
Then, according to the Servlet Specification, a security role is a logical grouping
of users defined by the Application Developer
or Assembler. When the application is deployed, roles are mapped by a Deployer
to principals or groups in the runtime environment.
My second question is how deployer maps the role, say, manager, to principals
or groups in the runtime environment?
Thanks in advance.
Thanks a lot, Udit.
"Udit Singh" <[email protected]> wrote:
>
>Hello,
>The role-name is mapped to principals or gruops based on the security-role-assignment
>entrires in weblogic.xml. Let us say you have a role-name FOO and you
>want to
>assing this role to users John and Mark. You need to make this entry
>in weblogic.xml-
><security_role_assignment>
> <role-name>FOO</role-name>
> <principal-name>John</principal-name>
> <principal-name>Mark</principal-name>
> </security_role_assignment>
>
>so now actually the user need to supply John or Mark as user name at
>the time
>of authentication . Hope it helps.
>
>Udit
>
>
>"[email protected]" entrance wrote:
>>
>>I am studying the security part of the deployment descriptor. I am confused
>>about
>>how the mapping works.
>>Suppose we have
>><security-role>
>><role-name>manager</role-name>
>></security-role>
>>
>>and
>>
>><security-role-ref>
>><role-name>FOO</role-name>
>><role-link>manager</role-link>
>></security-role-ref>
>>
>>My first question is when a client of the servlet supplies a name for
>>authentication,
>>the name supplied should be FOO or can be, say, John Smith?
>>
>>Then, according to the Servlet Specification, a security role is a logical
>>grouping
>>of users defined by the Application Developer
>>or Assembler. When the application is deployed, roles are mapped by
>a
>>Deployer
>>to principals or groups in the runtime environment.
>>
>>My second question is how deployer maps the role, say, manager, to principals
>>or groups in the runtime environment?
>>
>>Thanks in advance.
>>
>>
>>
>
-
how can i get my security questions if my account is locked why cant you add a forgot security questions button or something to get the security questions back?
The Three Best Alternatives for Security Questions and Rescue Mail
1. Send Apple an email request at: Apple - Support - iTunes Store - Contact Us.
2. Call Apple Support in your country: Customer Service: Contact Apple support.
3. Rescue email address and how to reset Apple ID security questions.
A substitute for using the security questions is to use 2-step verification:
Two-step verification FAQ Get answers to frequently asked questions about two-step verification for Apple ID. -
How to call the secured EJB from timer ejb timedout method.
Hi All,
I have a couple of questions on EJB 3.1 Timer Service.
1. How to call the secured EJB (annotated @RolesAllowed) from Timer EJB @Timeout Method?
2. What's the default role/principal with which the Timer @Timeout Method gets called?
Please let me know any info regarding the same.
Thanks,
SureshI'd start here:
http://ant.apache.org/manual/index.html
If that doesn't help, go to the table of contents and start poking around. You don't need to read the whole thing front to back, but if you're not willing to spend some time researching and reading, you're not going to get very far.
Maybe you are looking for
-
Selection breaks after inserting into dataProvider
I have been battling this issue for a couple of days now. I have a HorizontalList that is using an itemRenderer component that I created. When I insert an item into the dataProvider using addItemAt.... 1) the item is inserted 2) i see the item render
-
Why does my website return in japanese when searched on google?
When my adobe muse website is searched for on search engines, the results are shown in Japanese.
-
Can use EL instead of fmt:message ??
I am using a custom tag ( to generate tabs for UI) but it doesn't support internationalization. I substituted the fmt:message tag in "title" attribute of the custom tag for giving it the localized title but it seems that the fmt tag can not be execut
-
Computer completely crashing after plugging in any ipod except touch
For a while now, every time I plug in any ipod, any generation excluding touch/iphone, a gray window will popup saying I have to reboot the computer. I figured out that the computer isn't responding well to the hard-drive function of the iPods if it
-
Hello Sap Gurus, Is it possible to use material average price instead of standard price in a stock transfer purchase order, without changing the material price control ? Thx, Alex