HR Context-Sensitive Based Security
Dear All,
Wondering if anyone implemented Context Sensitive based security in HR. That is using P_ORGINCON auth object instead of P_ORGIN for HR Master data.
If so, were there any issues? Looking for some pros and cons to convince our Steering Committee.
Based on my experience, it would be little upfront work but would save the agravation in the long run with the HR personnel cross functional activities.
Any suggestions or thoughts are great!!
Thanks
Sarada
will this be a new implementation or an upgrade?
furthermore, determining whether or which issues you will encounter in the process of implementing context-sensitive authorizations mostly depends on the requirements your company has given you and your team.
initially, the organizational structure has to be in place. without an accurate structure you have no change of succeeding.
Similar Messages
-
Creation of context sensitive help with pure FM 12 usage doesn't work
Hi,
I hope somebody is able to help me with a good hint or tip.
I am trying to create a context-sensitive Microsoft Help with FM12 only using the abilities of FM (no RoboHelp). For some reasons, my assigned ID's are not used in the generated chm file and therefore the help does not work context-sensitively.
What did I do?
- I created my FM files and assigned topic aliases to the headers. I did this two ways: a) using the "Special" menue and assigning a CSH marker and/or b) setting a new marker of type "Topic Alias" and typing the ID. I used only numeric IDs like "2000" or "4200",
- I created a .h file (projectname.h) - based on the format of the file projectname_!Generated!.h (I read this in some instructions). So the .h file (text file) looks like this:
#define 2000 2000 /* 4 Anwendungsoberfläche */
#define 2022 2022 /* 4.1.1 Menü Datei */
#define 2030 2030 /* 4.1.3 Menü Parametersatz */
#define 2180 2180 /* 6.6.7 Objektdialog Q-Regler */
#define 2354 2354 /* 6.9.2 Objektdialog Extran Parameter */
#define 2560 2560 /* 6.9.5 Objektdialog Extran2D Parametersatz */
- I published the Microsoft HTML Help. A projectname_!Generated!.h has been created. My IDs were not used in this file:
#define 2000 1
#define 2022 2
#define 2030 3
#define 2180 4
#define 2354 5
#define 2560 6
- When I open the .chm file and look in the source code, the ID even is totally different. It is not the one, I assigned in FM, it is not the one which I assigned in the projectname.h file and it even is not the one, which was put in the projectname_!Generated!.h file. It is a generated name starting with CSH_1 ...n in a consecutive way numbered.
Example:
<p class="FM_Heading1"><a name="XREF_72066_13_Glossar"></a>Gloss<a name="CSH_1"></a>ar</p>
What goes wrong? Why does FM not take my assigned IDs? I need to use these IDs since our programmers are using those already - I had to re-create the whole online help but the programs stay untouched.
Please help!
Many thanks
MohiHi Jeff,
thanks for your note!
The text in my marker is just a number like "2000" or "4200". As said, I created manually a my.h file and used this marker there. E.g.
#define 2000 2000.
Whereby the first 2000 (in my opinion) is the marker text and the second 2000 is the context ID which the programmers are using for the context sensitive call of the help. My definitions in the my.h file were translated to #define 2000 1 (in the my_!Generated!.h file). The source code "translates" the context ID into CSH_8.
I am still confused :-/
Thanks
Mohi -
Using container managed form-based security in JSF
h1. Using container managed, form-based security in a JSF web app.
A Practical Solution
h2. {color:#993300}*But first, some background on the problem*{color}
The Form components available in JSF will not let you specify the target action, everything is a post-back. When using container security, however, you have to specifically submit to the magic action j_security_check to trigger authentication. This means that the only way to do this in a JSF page is to use an HTML form tag enclosed in verbatim tags. This has the side effect that the post is not handled by JSF at all meaning you can't take advantage of normal JSF functionality such as validators, plus you have a horrible chimera of a page containing both markup and components. This screws up things like skinning. ([credit to Duncan Mills in this 2 years old article|http://groundside.com/blog/DuncanMills.php?title=j2ee_security_a_jsf_based_login_form&more=1&c=1&tb=1&pb=1]).
In this solution, I will use a pure JSF page as the login page that the end user interacts with. This page will simply gather the input for the username and password and pass that on to a plain old jsp proxy to do the actual submit. This will avoid the whole problem of having to use verbatim tags or a mixture of JSF and JSP in the user view.
h2. {color:#993300}*Step 1: Configure the Security Realm in the Web App Container*{color}
What is a container? A container is basically a security framework that is implemented directly by whatever app server you are running, in my case Glassfish v2ur2 that comes with Netbeans 6.1. Your container can have multiple security realms. Each realm manages a definition of the security "*principles*" that are defined to interact with your application. A security principle is basically just a user of the system that is defined by three fields:
- Username
- Group
- Password
The security realm can be set up to authenticate using a simple file, or through JDBC, or LDAP, and more. In my case, I am using a "file" based realm. The users are statically defined directly through the app server interface. Here's how to do it (on Glassfish):
1. Start up your app server and log into the admin interface (http://localhost:4848)
2. Drill down into Configuration > Security > Realms.
3. Here you will see the default realms defined on the server. Drill down into the file realm.
4. There is no need to change any of the default settings. Click the Manage Users button.
5. Create a new user by entering username/password.
Note: If you enter a group name then you will be able to define permissions based on group in your app, which is much more usefull in a real app.
I entered a group named "Users" since my app will only have one set of permissions and all users should be authenticated and treated the same.
That way I will be able to set permissions to resources for the "Users" group that will apply to all users that have this group assigned.
TIP: After you get everything working, you can hook it all up to JDBC instead of "file" so that you can manage your users in a database.
h2. {color:#993300}*Step 2: Create the project*{color}
Since I'm a newbie to JSF, I am using Netbeans 6.1 so that I can play around with all of the fancy Visual Web JavaServer Faces components and the visual designer.
1. Start by creating a new Visual Web JSF project.
2. Next, create a new subfolder under your web root called "secure". This is the folder that we will define a Security Constraint for in a later step, so that any user trying to access any page in this folder will be redirected to a login page to sign in, if they haven't already.
h2. {color:#993300}*Step 3: Create the JSF and JSP files*{color}
In my very simple project I have 3 pages set up. Create the following files using the default templates in Netbeans 6.1:
1. login.jsp (A Visual Web JSF file)
2. loginproxy.jspx (A plain JSPX file)
3. secure/securepage.jsp (A Visual Web JSF file... Note that it is in the sub-folder named secure)
Code follows for each of the files:
h3. {color:#ff6600}*First we need to add a navigation rule to faces-config.xml:*{color}
<navigation-rule>
<from-view-id>/login.jsp</from-view-id>
<navigation-case>
<from-outcome>loginproxy</from-outcome>
<to-view-id>/loginproxy.jspx</to-view-id>
</navigation-case>
</navigation-rule>
NOTE: This navigation rule simply forwards the request to loginproxy.jspx whenever the user clicks the submit button. The button1_action() method below returns the "loginproxy" case to make this happen.
h3. {color:#ff6600}*login.jsp -- A very simple Visual Web JSF file with two input fields and a button:*{color}
<?xml version="1.0" encoding="UTF-8"?>
<jsp:root version="2.1"
xmlns:f="http://java.sun.com/jsf/core"
xmlns:h="http://java.sun.com/jsf/html"
xmlns:jsp="http://java.sun.com/JSP/Page"
xmlns:webuijsf="http://www.sun.com/webui/webuijsf">
<jsp:directive.page
contentType="text/html;charset=UTF-8"
pageEncoding="UTF-8"/>
<f:view>
<webuijsf:page
id="page1">
<webuijsf:html id="html1">
<webuijsf:head id="head1">
<webuijsf:link id="link1"
url="/resources/stylesheet.css"/>
</webuijsf:head>
<webuijsf:body id="body1" style="-rave-layout: grid">
<webuijsf:form id="form1">
<webuijsf:textField binding="#{login.username}"
id="username" style="position: absolute; left: 216px; top:
96px"/>
<webuijsf:passwordField binding="#{login.password}" id="password"
style="left: 216px; top: 144px; position: absolute"/>
<webuijsf:button actionExpression="#{login.button1_action}"
id="button1" style="position: absolute; left: 216px; top:
216px" text="GO"/>
</webuijsf:form>
</webuijsf:body>
</webuijsf:html>
</webuijsf:page>
</f:view>
</jsp:root>h3. *login.java -- implent the
button1_action() method in the login.java backing bean*
public String button1_action() {
setValue("#{requestScope.username}",
(String)username.getValue());
setValue("#{requestScope.password}", (String)password.getValue());
return "loginproxy";
}h3. {color:#ff6600}*loginproxy.jspx -- a login proxy that the user never sees. The onload="document.forms[0].submit()" automatically submits the form as soon as it is rendered in the browser.*{color}
{code}
<?xml version="1.0" encoding="UTF-8"?>
<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page"
version="2.0">
<jsp:output omit-xml-declaration="true" doctype-root-element="HTML"
doctype-system="http://www.w3.org/TR/html4/loose.dtd"
doctype-public="-W3CDTD HTML 4.01 Transitional//EN"/>
<jsp:directive.page contentType="text/html"
pageEncoding="UTF-8"/>
<html>
<head> <meta
http-equiv="Content-Type" content="text/html;
charset=UTF-8"/>
<title>Logging in...</title>
</head>
<body
onload="document.forms[0].submit()">
<form
action="j_security_check" method="POST">
<input type="hidden" name="j_username"
value="${requestScope.username}" />
<input type="hidden" name="j_password"
value="${requestScope.password}" />
</form>
</body>
</html>
</jsp:root>
{code}
h3. {color:#ff6600}*secure/securepage.jsp -- A simple JSF{color}
target page, placed in the secure folder to test access*
{code}
<?xml version="1.0" encoding="UTF-8"?>
<jsp:root version="2.1"
xmlns:f="http://java.sun.com/jsf/core"
xmlns:h="http://java.sun.com/jsf/html"
xmlns:jsp="http://java.sun.com/JSP/Page" xmlns:webuijsf="http://www.sun.com/webui/webuijsf">
<jsp:directive.page
contentType="text/html;charset=UTF-8"
pageEncoding="UTF-8"/>
<f:view>
<webuijsf:page
id="page1">
<webuijsf:html id="html1">
<webuijsf:head id="head1">
<webuijsf:link id="link1"
url="/resources/stylesheet.css"/>
</webuijsf:head>
<webuijsf:body id="body1" style="-rave-layout: grid">
<webuijsf:form id="form1">
<webuijsf:staticText id="staticText1" style="position:
absolute; left: 168px; top: 144px" text="A Secure Page"/>
</webuijsf:form>
</webuijsf:body>
</webuijsf:html>
</webuijsf:page>
</f:view>
</jsp:root>
{code}
h2. {color:#993300}*_Step 4: Configure Declarative Security_*{color}
This type of security is called +declarative+ because it is not configured programatically. It is configured by declaring all of the relevant parameters in the configuration files: *web.xml* and *sun-web.xml*. Once you have it configured, the container (application server and java framework) already have the implementation to make everything work for you.
*web.xml will be used to define:*
- Type of security - We will be using "form based". The loginpage.jsp we created will be set as both the login and error page.
- Security Roles - The security role defined here will be mapped (in sun-web.xml) to users or groups.
- Security Constraints - A security constraint defines the resource(s) that is being secured, and which Roles are able to authenticate to them.
*sun-web.xml will be used to define:*
- This is where you map a Role to the Users or Groups that are allowed to use it.
+I know this is confusing the first time, but basically it works like this:+
*Security Constraint for a URL* -> mapped to -> *Role* -> mapped to -> *Users & Groups*
h3. {color:#ff6600}*web.xml -- here's the relevant section:*{color}
{code}
<security-constraint>
<display-name>SecurityConstraint</display-name>
<web-resource-collection>
<web-resource-name>SecurePages</web-resource-name>
<description/>
<url-pattern>/faces/secure/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
<http-method>HEAD</http-method>
<http-method>PUT</http-method>
<http-method>OPTIONS</http-method>
<http-method>TRACE</http-method>
<http-method>DELETE</http-method>
</web-resource-collection>
<auth-constraint>
<description/>
<role-name>User</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name/>
<form-login-config>
<form-login-page>/faces/login.jsp</form-login-page>
<form-error-page>/faces/login.jsp</form-error-page>
</form-login-config>
</login-config>
<security-role>
<description/>
<role-name>User</role-name>
</security-role>
{code}
h3. {color:#ff6600}*sun-web.xml -- here's the relevant section:*{color}
{code}
<security-role-mapping>
<role-name>User</role-name>
<group-name>Users</group-name>
</security-role-mapping>
{code}
h3. {color:#ff6600}*Almost done!!!*{color}
h2. {color:#993300}*_Step 5: A couple of minor "Gotcha's"_ *{color}
h3. {color:#ff6600}*_Gotcha #1_*{color}
You need to configure the "welcome page" in web.xml to point to faces/secure/securepage.jsp ... Note that there is *_no_* leading / ... If you put a / in there it will barf all over itself .
h3. {color:#ff6600}*_Gotcha #2_*{color}
Note that we set the <form-login-page> in web.xml to /faces/login.jsp ... Note the leading / ... This time, you NEED the leading slash, or the server will gag.
*DONE!!!*
h2. {color:#993300}*_Here's how it works:_*{color}
1. The user requests the a page from your context (http://localhost/MyLogin/)
2. The servlet forwards the request to the welcome page: faces/secure/securepage.jsp
3. faces/secure/securepage.jsp has a security constraint defined, so the servlet checks to see if the user is authenticated for the session.
4. Of course the user is not authenticated since this is the first request, so the servlet forwards the request to the login page we configured in web.xml (/faces/login.jsp).
5. The user enters username and password and clicks a button to submit.
6. The button's action method stores away the username and password in the request scope.
7. The button returns "loginproxy" navigation case which tells the navigation handler to forward the request to loginproxy.jspx
8. loginproxy.jspx renders a blank page to the user which has hidden username and password fields.
9. The hidden username and password fields grab the username and password variables from the request scope.
10. The loginproxy page is automatically submitted with the magic action "j_security_check"
11. j_security_check notifies the container that authentication needs to be intercepted and handled.
12. The container authenticates the user credentials.
13. If the credentials fail, the container forwards the request to the login.jsp page.
14. If the credentials pass, the container forwards the request to *+the last protected resource that was attempted.+*
+Note the last point! I don't know how, but no matter how many times you fail authentication, the container remembers the last page that triggered authentication and once you finally succeed the container forwards your request there!!!!+
+The user is now at the secure welcome page.+
If you have read this far, I thank you for your time, and I seriously question your ability to ration your time pragmatically.
Kerry RandolphIf you want login security on your web app, this is one way to do it. (the easiest way i have seen).
This method allows you to create a custom login form and error page using JSF.
The container handles the actual authentication and protection of the resources based on what you declare in web.xml and sun-web.xml.
This example uses a statically defined user/password, stored in a file, but you can also configure JDBC realm in Glassfish, so that that users can register for access and your program can store the username/passwrod in a database.
I'm new to programming, so none of this may be a good practice, or may not be secure at all.
I really don't know what I'm doing, but I'm learning, and this has been the easiest way that I have found to add authentication to a web app, without having to write the login modules yourself.
Another benefit, and I think this is key ***You don't have to include any extra code in the pages that you want to protect*** The container manages this for you, based on the constraints you declare in web.xml.
So basically you set it up to protect certain folders, then when any user tries to access pages in that folder, they are required to authenticate.
--Kerry -
MOAC / "Org-Based" Security
Hello,
I'm developing custom pl/sql for submitting concurrent requests/sets. For reference, here is what my initialization 'block' looks like in the pl/sql:
apps.fnd_global.apps_initialize(user_id, resp_id, app_id);
apps.mo_global.set_policy_context('M');
apps.mo_global.init(appShortName);
(or)
apps.fnd_global.apps_initialize(user_id, resp_id, app_id);
apps.mo_global.set_policy_context('S', org_id);
apps.mo_global.init(appShortName);
(depending on whether the user chooses a 'multi-org' context or 'single-org' context)
I just have a few general questions.
1) Is the "mo_global.set_policy_context" followed by "mo_global.init" proper form?
2) I understand that if you choose multi-org (set_policy_context('M')), it reads the 'fnd_global.apps_initialize'd user's "allowed orgs" from his profile options (I forget the exact ones at this moment). Is this correct?
3) Is the sole purpose of "multi-org" security for performing multiple operations on multiple orgs without having to switch responsibility?
4) Most importantly (saved this one for last), I'm reading about the various different kinds of security (namely, http://docs.oracle.com/cd/E14223_01/bia.796/e14219/security.htm#BGBIFAIG):
Operating Unit Org-Based security
Inventory Org-Based Security
Company Org-Based Security
Business Group Org-Based Security
HR Org-based Security
Payables Org-Based Security
Receivables Org-Based Security
SetID-Based Security
Position-Based Security
Ledger-Based Security
My question is, are all of these various "securities" all managed with organizations? In other words, will my code (above) enable users to use ANY of these different kinds of security, if they so choose?Hey so seeing as this question hasn't really been answered yet I figure I'll give it another go.
I'm going to be very specific this time:
I run PL/SQL scripts against the EBS database in order to do things like schedule requests/request-sets. The first thing I do (always) is initialize the apps context:
apps.fnd_global.apps_initialize(u_id, r_id, a_id);
Next, depending on the situation (still unsure when/why, but whatever), we initialize the org context. This is done by performing exactly one of the following steps.
apps.mo_global.set_policy_context('M', null);
OR
apps.mo_global.set_policy_context('S', org_id);
OR
apps.mo_global.init('appname');
Now, the ORG_ID comes from this statement:
SELECT organization_id FROM apps.org_organization_definitions2 WHERE organization_name = 'blah'
Again, I don't know why/when we need to do this or apparently what any of these things do but it's kind of beyond the scope of what I do. SOMEBODY chooses one of these, depending on their mood (or whatever factors :) ). Based on my model, the following are the possibilities thus far:
apps.fnd_global.apps_initialize(u_id, r_id, a_id);
OR
apps.fnd_global.apps_initialize(u_id, r_id, a_id);
apps.mo_global.set_policy_context('M', null);
OR
apps.fnd_global.apps_initialize(u_id, r_id, a_id);
apps.mo_global.set_policy_context('S', org_id);
OR
apps.fnd_global.apps_initialize(u_id, r_id, a_id);
apps.mo_global.init('appname');
After this, I use
apps.fnd_submit.submit_program('appName','progName','STAGEXYZ', args); <-- however many times I need
apps.fnd_submit.set_request_set('appname','requestSetName');
OR
apps.fnd_request.submit_request('appName','progName','description',starttime,FALSE, args);
My question is twofold:
1) Is this model generic enough? In other words, without doing anything extra, will people be able to do pretty much everything you could think of, at least in terms of running concurrent requests / sets? Will I ever - EVER - need to chain "set_policy_context" with "init"? <-- I would really love a yes/no answer because I am in no way/shape/form an EBS expert. I've read all the docs that I've been presented with thus far but I haven't found a straight answer to this yet.
2) I understand there are all different kinds of "org-based" security. Could I use my current code to initialize an inv_org, for example? If not, where could I turn for help? Are there other tables I should use for inv_orgs, hr_orgs, etc?
THANKS! YOU ARE THE BEST! -
I cannot seem to get container-managed security to work with Java Studio Creator.
I have a standard jsp page as the logon form, submitting to j_security_check. Authentication works correctly, but then, when the protected page is rendered, I keep getting the "Faces Context cannot be found" exception. Is this because I have a non-faces page between two faces pages?
Here are the steps:
1). Access the main page
2). Main faces page gets rendered correctly.
3). Access a link which sends the user to a protected page
4). Logon page gets rendered. (plain JSP or HTML file)
All is well so far
5). User credentials are submitted
6). Authentication works correctly
7). Forward user to the protected faces page
8). "Cannot find Faces Context" exception.
Obviously, I cannot create a "standard" jsp page in Creator, as Creator creates the faces context and the java backend automatically. I had to create the JSP page through a text editor, and save it to the Creator project directory.
The same thing happens if I create a regular HTML file in Creator with the same form submitting to j_security_check.
Anyone run into this? Has anyone gotten container-managed, forms-based security working with Creator?
Thanks.Ummmm.... okay, I feel really foolish and stupid. I guess I was getting tunnel vision, staring at this project so much.
Sheesh! Thanks for the reply, j.f.brown! Had you not made the reply, who knows how long I would have stared at this problem.
I'm never going to live this down. heh heh. -
Automating context sensitive search in a
We are building an interface where the user has expressed a desire to
fill in fields based on choices from a list. The DropDown list would be
suitable, except for the limited search facility; the list only responds
to keys entered by finding a match on the first character position only.
The FillinField is more suitable because it has a more complete context
sensitive search than the Dropdown; as the user types, the list responds
by finding a match for all characters entered so far. The problem we are
encountering with the FillInField though, is that none of the search
facility is available unless the list is brought up by clicking the
arrow, or
pressing F4.
We would like to know if it is possible to automatically bring the list
up upon
entering the field, either by posting some event, or even simulating the
F4 keystroke. This would allow our users to compete data entry with the
minimal amount of keystrokes or mouse movement.
If this is not possible does anyone know of any other ways to achieve
what we want?
Thanks in advance.
Sanjay MurthiWhen Do you think coldfusion will implement Xpath functions
as
http://www.w3schools.com/xpath/xpath_functions.asp
???? -
Need help with a Context Sensitive Help project
Hey everyone,
I'm the RoboHelp administrator around here - I've done some
RoboHelp projects and created the procedures, stylesheets and
templates for our company's WebHelp, WinHelp 2000, and JavaHelp
projects, but now I'm sort of the consultant for the content
authoring team that creates the help systems. I think I need to
call in some help from the forum about a project I'm consulting on.
Here's the situation: A project team here thinks they want
field-level help to support a web-based application. I've told them
"That's fine, it's possible, just don't demand that the help author
create topics for EVERY field, even the obvious ones like "Name",
"Address", "Zip", etc, since there is very, very little value in
doing that." We already have a very old help system that is being
CONVERTED to WinHelp 2000 (from a "mocked-up" version of WinHelp)
that did just that - every field in every screen was a separate
topic, even if it wasn't useful. Every topic was essentially "This
information goes in this field". As a result, we abandoned creating
an Index, since we had about 27 entries for "Name", 13 for
"Address1", 15 for "Address2", etc.
Well, I just heard back yesterday that they totally ignored
my suggestion and they want to go ahead with the "all help for all
fields" idea. I still think I have a chance of convincing them to
choose context-sensitive topics wisely, if it can present my case
clearly and be persuasive. I just found John Daigle's article about
context sensitive help (
http://www.macromedia.com/devnet/robohelp/articles/context_help.html)
and I'm looking at it now (very well done, by the way - thanks
John!). It looks like, from first glance, that it might convince
that project team that "Whoa, this context-sensitive thing is more
than we bargained for", which is what I want them to think, since
they have very limited resources and a help author that is VERY new
to RoboHelp and WebHelp. I personally have never built a
context-sensitive help project with different windows, but I have
built several projects using conditional builds.
What does everyone think of this approach?
Thanks,
JimHere's a nice, convincing argument that I just thought of -
the only thing wrong with it is that I don't know if it's true or
not.
Does the end user's browser cache the .htm files for the help
topics that are grabbed from the server? If so, consolidating the
field definitions lessens the server traffic.
(Always get the server guys on your side - everywhere I've
worked, they wield a big stick!)
Also, I'm a big believer in functional help topics, but I
have compromised for some clients and included one-per-screen
conditional topics with the field labels. John, I wish I had known
about the map numbering trick back then - I would have loved to
give them F1 help.
Elisa -
I want to disable some items(functions) on the context sensitive menu in web dynpro for abap. How do i go about doing that
Thank you allWhich items? Generally you don't have programatic control over the framework provided items in the context menu. Some items can however be hidden based upon application parameters - but only some. That is why I asked which you are interested in hidding.
-
Can webhelp on the web be context sensitive?
We're moving from shipping a strictly local merged .chm based
help to producing merged webhelp that will be downloaded with the
product or linked too on the web. I had always assumed that context
sensitive links would only work for local help, but I've been
tasked with finding out if software can call CSH with a URL? Does
anyone out there have experience with CSH accessed remotely?
.MWIs that in the "Using URL's (which is what we're currently
doing) or is it "Using Map ID's in Merged Webhelp" under "Calling
Webhelp'? Sorry if thats a dumb question. -
Add the context sensitive 'DFF Review Addl Information' to the appraisal
Hi,
I want to add the context sensitive DFF "Review Addl Information" to the appraisal screen.
How can I do it?
regardsHi manoj,
Thanks for ur reply. The procedure you mentioned is to just enable DFF on self service page, I have already done that. What I want is to default DFF segments based on context value i.e Qualification Type in this case. It can be done in D2k forms , I want to do similar thing in JSP page.
There is some new functionality added in R12 to include reference fileds for DFF , but I am getting any concrete example so that I can implement it. If any one has done this , can please share.
Regards,
Razz -
Dear Colleagues,
I am currently developing a J2EE application using WLS 6.1.
My team and I have to implement a security requirement to suit our company's needs.
The security requirements are that, users' password need to be aged (30 days maximum) and we need to provided a GUI front-end (JSP) to allow users to change their password when these expire after 30 days.
Our internal contacts in the company, have already taken the lead to find out about whether we will be able to use the WLS 6.1 platform to do this and the answer we got back, was.
Now we need to develop our own security module.
I have 2 questions:
1. How can we turn off the WLS security in order develop our own application-based security module?
2. How can we develop a security module that allows us to age users' password and provide them with facilities to change their passwords when these expire?
At the moment, we are using the default BEA WebLogic login.jsp page and there some configuration in the web.xml for this. I will be grateful if you could advise me on how to turn this default security off so that we can write our own security module.hi,
1.You can write your own realm in 61 which can plugged for your security
calls.
2. once you write your ownrealm.. you can access it through weblogic
api/ur api..
thanks
kiran
"Richard Koudry" <[email protected]> wrote in message
news:3dd0d081$[email protected]..
Dear Colleagues,
I am currently developing a J2EE application using WLS 6.1.
My team and I have to implement a security requirement to suit ourcompany's needs.
>
The security requirements are that, users' password need to be aged (30days maximum) and we need to provided a GUI front-end (JSP) to allow users
to change their password when these expire after 30 days.
>
Our internal contacts in the company, have already taken the lead to findout about whether we will be able to use the WLS 6.1 platform to do this and
the answer we got back, was.
>
Now we need to develop our own security module.
I have 2 questions:
1. How can we turn off the WLS security in order develop our ownapplication-based security module?
>
2. How can we develop a security module that allows us to age users'password and provide them with facilities to change their passwords when
these expire?
>
At the moment, we are using the default BEA WebLogic login.jsp page andthere some configuration in the web.xml for this. I will be grateful if you
could advise me on how to turn this default security off so that we can
write our own security module. -
How can I reference an external help file from context sensitive help at the control level?
My goal is to provide context sensitive help for each control displayed on the front panel using a help file created externally. I know that at the VI level I can specify a Help Path; I want the same behaviour for each control inside a VI. I also know about creating a custom control and specifying the Help Path in there, but it doesn't help in this situation, for I have hundreds of controls in my application and I cannot go back and replace each one with a unique .ctl. If I could override each instance of the custom control with unique path data that would do the trick, but that's not how it works.
Is there a way to add the Help Path information to regualr controls?
-euge
neThis functionality is not yet built into LabVIEW.
About all you can do is cut and paste the help for each control into the description for the control. It is tedius but a finite task. -
Is there a way to open context-sensitive help in a new window with RH10?
I'm linking my context sensitive help using the RoboHelp_CSH.js file to my web application.
The correct topic opens when I click the help link, but it opens in a pop-up window. This causes problems in Firefox and Chrome (which block pop-ups by default).
Is there anyway to force the context-sensitive help topics to open in a new window?
I've tried adding
<p><A HREF="javascript:RH_ShowHelp(0,'http:/myurl/index.htm', HH_HELP_CONTEXT, 100)" target="_blank">Help</A>
which opens an empty tab in Firefox with no content in it. And it doesn't work in Chrome either.
Has anyone else run into this? Any help is greatly appreciated.
Thanks,
ColleenHi and welcome to the forums.
Using the RoboHelp API, that is quite a bother. (Read: major pain)
Fortunately, there is a simple solution:
<a href="http://myurl/index.htm#<id=4>>newwnd=false" target="blank">Help<a/>
This link does exactly the same, only opens the help in a new browser window.
You may also be interested in my custom WebHelp API: http://www.wvanweelden.eu/blog/2012/08/03/custom-webhelp-apis
Greet,
Willam -
IE 7 and Context-Sensitive FlashHelp
Hi all, I'm hoping that you can brainstorm with me. I have a
FlashHelp system with context-sensitive topics that are called from
the application using the
start_page.htm#topic_name.htm syntax. Up to now, this has
worked really well in all browsers (IE, Netscape, Firefox, Safari,
etc.). In the new IE 7, however, making this kind of call doesn't
display the CS topic, but instead opens the default topic
(start_page.htm). Likewise, the URL in the browser window only
displays
start_page.htm, with the
#topic_name.htm info removed. From testing we've done, it
appears that IE 7 receives the complete help call, but then somehow
ignores or truncates the CS topic info.
Has anyone else had this problem? Any ideas as to what is
causing it or (more importantly) how I might work around it?
Thanks,
MelindaThe updating of the help topic is distinct from the problem you are encountering. I believe this is a bug in FlashHelp.
The more people who report a bug or request a feature, the more likely it is to be actioned. Please follow this link.
http://www.Adobe.com/cfusion/mmform/index.cfm?name=wishform&product=38
See www.grainge.org for RoboHelp and Authoring tips -
Problems with context-sensitive HTML made from importing FM 10 to RH9
This worked in October and it doesn’t work now.
Start with a clean, well-formatted Frame 10 book with multiple chapters. Chapters, Heading 1, 2 and 3 headings have various FM Markers TopicAlias with ID for calling the help.
Example of FM marker: ID_HELP_SYSTEM_DEFAULT
Import FM book to RH 9 –pointed to an AllStyles.fm doc as a template, pagination on the above 4 headings, cross-refs mapped, on the Other Settings page the Context Sensitive Help Marker is set to TopicAlias.
Import looks spiffy; great TOC, Index, formatting, links, everything is exactly like I expected. Create chm file help. It looks great too. This part works well IMO.
My.h file is formatted with Hex number to match the application’s call.
Example:
#define ID_HELP_SYSTEM_DEFAULT 0x3F131
#define ID_HELP_EDITDATASET_TOOLBAR 0x3F132
Rename my mapping h file to BSSCDefault.h and put in root directory replacing the one RH makes. [When RoboHelp makes an h file, the numbers it assigns do not match what my application calls for. Changing these is not an option. I have hundreds of mapped IDs.]
Reopen RH and view the BSSCDefault. h file from RH. It has magically changed the Hex numbers to 6 digit numbers.
Example:
ID_HELP_SYSTEM_DEFAULT 258353 Saving Project Defaults as System Defaults
ID_HELP_EDITDATASET_TOOLBAR 258354 Editing Datasets Using the Mouse
The Mapped IDs are blue and are not locked. My FM TopicAlias Markers are all listed as Map IDs, I have Map#s for them and they point to the correct topic. The center panel shows Assign as grayed out. The project that worked in October looked just like this too, I checked.
Recomplie. Place new chm file in application. It will open from the menu item for Help, it will open from F1 but it will not open from any of the mapped Help buttons.
I uninstalled/reinstalled RH 9 and tried reimporting/compileing with an unpatched version. No change, still borked.
There has not been a change in the application; there are no new IDs in this version. I tried the new compiled help in an older version of my application and it will not work. Same behavior.
Any suggestions? Anyone else have this problem? What am i missing?I dont use the settings file, I use a FrameMaker doc as a template. It has all my styles and I set the others before the import. There arent very many.
But, since you import from Frame, would you look at this and verify?
Looking at Map File in the Edit Map IDs dialog On the left the panel the Map ID is listed, then the Map # and finally the topic title.
Do your Topics show a notation at the end?
Example: Averaging Datasets #CSH_71
Then on the Topic panel if you find that same topic you see
Topic symbol -Averaging Datasets [and the Topic properties show “no map ids for this topic]
Bookmark symbol -Averaging Dataset#CSH_71 [topic properties show the map id when you select it]
Bookmark symbol -Averaging Datasets#IX_averaging_datasets
Bookmark symbol-Averaging Datasets#XREF_25075_Averaging Datasets
I understand the Index and cross ref markers, but the isolated book mark is odd. You would think the notation would be on the topic
The chm file from October works in my latest build, and the developers swearz they changed NOTHING in the way it is called. I still have to talk to QM who do the builds just in case.
Maybe you are looking for
-
ADF installation problem on XP
Hello, I successfully installed the SOA suite. I'm now trying to install ADF, and running into the error below. Does anyone have any idea what is going on? C:\Documents and Settings\tshab\Desktop\adfinstaller>java -jar runinstaller.jar adfinstaller.p
-
CREATE ERROR RPE-02005: Internal error: Attribute SYS:KEY
Has anyone experienced this error when deploying a WF and an idea what can cause this: ORA-01422: exact fetch returns more than requested number of rows ORA-06512: at "OWF_MGR.WF_LOAD", line 2138 ORA-06512: at line 1 EDW_DMSA Create Error RPE-02005:
-
Ext HD not recognized by Mac/Pc
My HAMLET ext. hard drive no longer is showing on my desktop. I've not used it for a few years, but now need something important of it and it doesn't show up on either macs i have (both using 10.4.11 OS) or a PC with windows 7. The light comes on on
-
Hi friends, Where do we see the AV check in the Sales order in VA03? At item level? Ist in the schedule line? I don't see it) rgds, p
-
What are all the tables used?
hai, what r all the tables used for this report . <b>Created an interactive report in which sales orders were listed against different customers within the range selected. Selection of multiple sales orders were allowed for which checkboxes are provi