Implicit Login

Hi All,
We are using WLP 8.1 SP2. This is the scenario:
1. The application deployed uses WLP personalization features.
2. The user authentication happens through some pre defined mechanism against
LDAP server and it comes to WLP environment.
3. Since we are heavily using portal personalization feature,once again we have
to login to WLP (explicitly OR implicitly) to show the personalized content to
user.
Hence , we are creating a users (to use personalization feature) with the user
name that is already avaiable in some other LDAP server. For creating user name,
we are populating with astandard password for all users (including for administrators).
This user name and standard password will be used to implicitly login to the system.
My question is :
1. How can we avoid the user creation process ??
2. if we cannot avaiod, how can we maintain different password for each used and
still implicitly login??
3. Is there any implicit login mechanism avialable where in we can just pass the
user name and not the password??
Can somebody answer these questions??
Many thanks in advance,
Prashanth Bhat.

You can force the implicit code flow to prompt the user to sign in by including _auth_=force in the approval request query string. To follow the example shown in the developer guide [1]
change:
https://server:port/ords/resteasy/oauth2/auth?response_type=token&client_id=CLIENT_IDENTIFIER&state=STATE
to:
https://server:port/ords/resteasy/oauth2/auth?response_type=token&client_id=CLIENT_IDENTIFIER&state=STATE&_auth_=force
[1]: REST Data Services Developers Guide

Similar Messages

Data source login + ServerSession + uow

Can anyone please provide assistance as to what lines of code is necessary to be able to create a ServerSession, then login using the username and password of the data sources of OC4J, and then acquire a unit of work to be used in doing read and write transactions against a 9i database. My toplink version is 10g (9.0.4). The following are snippets of my java code:
ServerSession session = null;
session = (ServerSession)SessionManager.getManager().getSession("session");
// I didn't put session.login() because I
// read somewhere that there is already an implicit
// login when the ServerSession (session variable) was
// created via the second line above.
UnitOfWork unitOfWork;
System.out.println("step3.1");
Session session1 = (Session) session.acquireClientSession();
unitOfWork = session1.acquireUnitOfWork();
// the problem is, at this point of acquiring a unit of
// work, at runtime, I already encounter a
// java.lang.NullPointerException. Does it mean that my
// assumption of an implicit login during the
// ServerSession creation is not correct?
Please help. I guess this are still the basic stuff of Toplink but the standard Toplink documentations don't seem to help. Thanks in advance.

For the benefit of others, my unit of work is now defined as:
unitOfWork = getServerSession().acquireClientSession().acquireUnitOfWork();
Likewise, I have included in my session bean the following methods:
public void login() {
// Get a Server Session from the sessions xml
ServerSession aSession = (ServerSession)SessionManager.getManager().getSession("Session");
aSession.login();
setServerSession(aSession);
public static void logout() {
if (getServerSession() != null) {
getServerSession().logout();
protected static ServerSession serverSession = null;
private static ServerSession getServerSession() {
return serverSession;
private void setServerSession(ServerSession session) {
this.serverSession = session;
With this, all i have to do is invoke login() to establish a database login.
Anthony
Philippines

Automatic Login into Portal 7.0

Hello, ive got a problem using the loginFramework.jar from the code share library.
Ive opnened a support case, but noone seems willing to help me.
In a nutshell, ive got a servlet that is the entry point to a 7.0 portal app.
That servlet checks PKI certs and IDs against an LDAP, then once authorized, sets
a session attribute that is used as the username and pass for the portal realm,
then forwards to /application. what i want to do is have the servlet forward to
<jsp:forward page="/application?namespace=security&event=button.login/> to simply
bypass the login.jsp form and log the user in based in the aforementioned session
param. ive written a custome login helper class that extends the LoginHelper and
ive implemented all the changes prescribed in the loginFramework.jar patch available
on the dev2dev site. what i get is this: the portal, regardless of the event="button.login",
sends me to the form. however, once the form is filled in an submitted, it uses
my custom loginhelper??? how do i get the <jsp:forward/> to sinply execute the
"button.login" event???

Hi JP,
I have few questions for you and a few suggestions.
Why did you decide to use a servlet instead of a CertAuthenticator?
You can find out more about CertAuthenticators at http://e-docs.bea.com/wls/docs61/security/prog.html#1024576.
Information on using them in 7.0 is under the heading "Using CertAuthenticator
in Compatibility Security" at http://e-docs.bea.com/wls/docs70/upgrade/upgrade6xto70.html#1041313.
Why aren't you using an implicit login processor to accomplish your login?
I think you could accomplish your goals by using a CertAuthenticator in conjunction
with an implicit login processor. The heading in the LoginFramework doc called
"Mutual Authentication With The WebLogic Portal Login Framework" covers this approach.
Please explain why this won't work if it won't.
Good luck!
-John
"jp" <[email protected]> wrote:
>
Hello, ive got a problem using the loginFramework.jar from the code share
library.
Ive opnened a support case, but noone seems willing to help me.
In a nutshell, ive got a servlet that is the entry point to a 7.0 portal
app.
That servlet checks PKI certs and IDs against an LDAP, then once authorized,
sets
a session attribute that is used as the username and pass for the portal
realm,
then forwards to /application. what i want to do is have the servlet
forward to
<jsp:forward page="/application?namespace=security&event=button.login/>
to simply
bypass the login.jsp form and log the user in based in the aforementioned
session
param. ive written a custome login helper class that extends the LoginHelper
and
ive implemented all the changes prescribed in the loginFramework.jar
patch available
on the dev2dev site. what i get is this: the portal, regardless of the
event="button.login",
sends me to the form. however, once the form is filled in an submitted,
it uses
my custom loginhelper??? how do i get the <jsp:forward/> to sinply execute
the
"button.login" event???

Obiee 11g Ibots Bursting

All: Is it possible to enforce data security filters when a report would need to be delivered to multiple users with individual data visibility? These users will not log in to the OBIEE 11g system and hence the user names (accounts) will not be present under user/groups of WebLogic Console.
BI Publisher can do the same, but I wanted to confirm if OBIEE 11g's IBOT delivery is really not designed/setup to distribute content with individual data security when the users are not selected from logged in user accounts. In a nutshell, we won't pay license fees for users who receive their data thru Ibots.
Thanks
AR

Short answer: No it isn't.
Longer answer: No it isn't designed to do that. It's a question of security and handling of sensitive data. OBIEE does an implicit login when personalizing the content of an agent. So you can either go for BIP bursting or as you say pay the license fees.

B1 users in B1if

Hi experts!!!
Do you know if the users of SAP Business One
can authenticate in B1if to create objects, realize
HTTP Calls, etc.?
Thanks for the support.
Regards.
Enrique.

Hi Enrique,
you can use the Authentication value "B1 Authentication" in Scenarios -> Package Design to define a B1 user authentication for your Scenario package.
Web Service and HTTP calls will do an implicit login in case there is no session set up (yet). The authentication will give back a session id which can be used for further calls. These calls will then skip the authentication.
The basic authentication in the http header must follow the following format in the correct order:
User: language\username\company or language/username/company
Password:password
language:
Language abbreviation. This parameter is mandatory. Leading and trailing spaces will be removed. In case the parameter does not fit to the enumeration, the default “en-US” will be taken.
Enumeration: cs-CZ, da-DK, de-DE, el-GR, en-CY, en-GB, en-US, en-SG, es-AR, es-CO, es-ES, es-PA, fi-FI, fr-FR,he-IL, hu-HU, it-IT, ja-JP, ko-KR, nl-NL, no-NO, pl-PL, pt-BR, pt-PT, ru-RU,sk-SK, sr-YU, sv-SE, xx-XX, zh-CN, zh-TW.
username:
Name of an existing B1 user with the appropriate license (“B1i”) to access remotely via B1i to SAP Business One. Leading and trailing spaces will be removed.
company:
Name of an existing B1 company database. This company db must be defined in the B1i SLD. This SAP Business One company database is used to verify the authentication for the requesting user. This parameter is case-insensitive. Leading and trailing spaces will be removed.
password:
Password of the user to login.
Response: In case of failed authorization, an http error will occur. In case of successful authorization an http 200 response with the response payload of the particular service, you called.
The following error messages are covered:
b1i user wrong username or password
wrong username or password
not able to assign the associated B1 server
name of B1 company db is empty
user is empty
password is empty
not able to find the assigned user id in SAP Business One
not able to find the system identifier of the associated B1 company db
error in credentials
error in B1 authentication check (DI call) - DI message: …
unknown error in authentication
Below are two examples using Microsoft Tool WFetch for testing:
Sample for HTTP Inbound
Sample for Web Service Inbound
Sample for HTTP:
Create SLD entry for “H.AnySystem” – “HTTest”.
Enter SAP Business One server name (or MS SQL server instance) in “associatedSrvIP” input field (must be aligned with SAP Business one SLD entry that should be used to authenticate).
Create package “AuthTest” (unless created before)
Choose “Authentication” “B1 Authentication” for connection via HTTP (“B1 Secure Authentication” for HTTPS).
Create step “HTTest” and assign to package “AuthTest”.
Define “HTTP Call” as Inbound channel and specify “Identification Method” “URL Parameter”; e.g. define “urlpar(action)” as “Identification Parameter and “HTtesting” as “Identifier”.
Open “Processing” and close again to have B1if creating the required definitions.
Define “Void” as Outbound channel.
Change “atom0.xsl” to make sure you get a response that isn’t empty and valid xml.
Choose “Setup” to choose the step (for subsequent activation) and “HTTest” as a sender system; activate the package.
Test HTTP call using e.g. Microsoft’s WFetch tool.
Details:
SAP Business One company database = “SBODemoDE”
SAP Business One user = “manager”
SysID of “HTTest” = “0010000107”
Parameters:
Verb = GET
Host = <machine name> or <IP> - e.g. 127.0.0.1
Port = 8080 – 8443 for “...Secure…”
Path =
/B1iXcellerator/exec/ipo/vP.0010000107.in_HCSX/com.sap.b1i.vplatform.runtime/INB_HT_CALL_SYNC_XPT/INB_HT_CALL_SYNC_XPT.ipo/proc?action=HTtesting
Auth = Basic
User = en-US/manager/SBODemoDE
Password = <password of user manager>
Connect = http
Cipher = default
Client cert = none
Trace Raw = Off
Socket Reuse = Off
Advanced Request = Disabled
Expected result:
Response includes “200 OK”
Sample for Web Service:
Create SLD entry for “W.AnySystem” – “WSTest”.
Enter SAP Business One server name (or MS SQL server instance) in “associatedSrvIP” input field (must be aligned with SAP Business one SLD entry that should be used to authenticate).
Create package “AuthTest” (unless created before)
Choose “Authentication” “B1 Authentication” for connection via HTTP (“B1 Secure Authentication” for HTTPS).
Create step “WSTest” and assign to package “AuthTest”.
Define “Web Service Call” as Inbound channel and specify “Identification Method” “Root Tag”; e.g. define “WStesting” as “Identifier” (i.e. “Root Tag”)
Open “Processing” and close again to have B1if creating the required definitions.
Define “Void” as Outbound channel.
Change “atom0.xsl” to make sure you get a response that isn’t empty and valid xml.
Choose “Setup” to choose the step (for subsequent activation) and “WSTest” as a sender system; activate the package.
Test Web Service call using e.g. Microsoft’s WFetch tool.
Details:
SAP Business One company database = “SBODemoDE”
SAP Business One user = “manager”
SysID of “WSTest” = “0010000106”
Parameters:
Verb = POST
Host = <machine name> or <IP> - e.g. 127.0.0.1
Port = 8080 – 8443 for “...Secure…”
Path =
/B1iXcellerator/exec/soap/vP.0010000006.in_WCSX/com.sap.b1i.vplatform.runtime/INB_WS_CALL_SYNC_XPT/INB_WS_CALL_SYNC_XPT.ipo/proc
Auth = Basic
User = en-US/manager/SBODemoDE
Password = <password of user manager>
Connect = http
Cipher = default
Client cert = none
Trace Raw = Off
Socket Reuse = Off
Advanced Request = Add Body
Body (example):
<?xml version="1.0" encoding="UTF-8"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" >
<SOAP-ENV:Body>
       <WStesting xmlns="">
                       <TestData1>Test1</TestData1>
                       <TestData2>Test2</TestData2>
       </WStesting>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
Expected result:
Response includes “200 OK”
Best regards
Bastian

Is it possible to force the user to login again when using oauth 2 (implicit grant)

Hi,
I'm trying to build an application based on a rest webservice in APEX which is being accessed by a javascript frontend via ORDS. I'm using the "Implicit grant" flow of OAUTH 2.
When the user is finished with the application, he/she should be able to logout of the application, so another user can login (on the same machine and browser). But, without clearing all cookies, ORDS will automatically give an access token for the previous user, without showing the login screen to allow/deby access to the rest web service.
(Clearing the cookies is not possible via javascript, since they are httponly)
I know it is not the "normal" way to use oauth2, but I would like to be able to log-out a user. So how can I force ORDS to show the loginscreen again to give another user the possibility to login?
Alexander

You can force the implicit code flow to prompt the user to sign in by including _auth_=force in the approval request query string. To follow the example shown in the developer guide [1]
change:
https://server:port/ords/resteasy/oauth2/auth?response_type=token&client_id=CLIENT_IDENTIFIER&state=STATE
to:
https://server:port/ords/resteasy/oauth2/auth?response_type=token&client_id=CLIENT_IDENTIFIER&state=STATE&_auth_=force
[1]: REST Data Services Developers Guide

How to prevent more than one login for the same username

I am trying to create a centralized login/logout for my J2EE application, i.e application level security in order to keep track of the users that login and logout to/from application. I need that in order to know which users have logged out before their sessions expire. Is there an easier way (possibly on the server level) to accomplish this.

How is your centralized authentication service hooked up, through a custom realm?
Unfortunately there is no notification mechanism of logout events currently. Partly due to the fact that while the a logout is sometimes explicit (session invalidated or expired) it is also at times implicit (if there is no session, the logged in user silently disappears at the end of a request).
P.S. If you're only looking to keep track of login and access events (and not modify the behavior), the audit logging provides this information directly.

Safari shuts down when trying to login to a site...same prob in itunes

I think it happened after the last security update...
Anytime I log into a secure site safari just shuts down...no error message or shut-down message or anything. itunes does the same thing if I try to login to my account or if I try to burn a CD. I saw some people having similar problems with safari...anyone with the itunes problems? Any solutions or do we have to wait for another update from apple? Oh, firefox works.

Found a solution that works:
http://www.macfixit.com/article.php?story=20061204233133704
"Tuesday, December 05 2006 @ 03:00 AM PST
Security Update 2006-007 (#6): Login to secure sites fails (cont.) -- fixes; Problems launching Microsoft Office apps; more
Login to secure sites fails (cont.) -- fixes We continue to report on problems logging into secure (https) Web sites in Safari and other WebKit-based applications after applying Security Update 2006-007. Since this update makes modifications to WebKit, it's logically implicated in the difficulties.
Even more telling than the WebKit changes, however, is the resolution (in this security update) of a vulnerability where "certain revoked certificates may be erroneously honored." It appears Safari is -- instead of erroneously honoring bad certificates -- erroneously rejecting some certificates.
There's one more change in Security Update 2006-007 that could be implicated in this problem: a fix for a vulnerability where it may be possible to create an X.509 certificate containing a public key that "could consume a significant amount of system resources during signature verification. An attacker may cause a system to process such a certificate, leading to a denial of service."
In at least some cases, the issue appears to be tied to certificates issued by VeriSign. Safari is incorrectly interpreting some of these certificates as invalid -- with a mismatch in the certificate-listed host name and host name of the visited URL.
As such, one potential fix involves deleting certificate entries using Keychain Access, as follows:
1. Launch Keychain Access (located in Applications/Utilities)
2. Click on "Certificates" in the left-hand pane
3. Delete any entries from VeriSign, or any certificates with a red cross next to them
4. Re-attempt access to the problematic secure site
The most successful fix, however, involves deleting the file com.apple.security.revocation.plist from the following directory:
* ~/Library/Preferences
You can replicate this workaround to some extent without deleting any files by opening Keychain Access (as mentioned above) then navigating to its Preferences (under the Keychain Access menu), clicking on the "Certificates" tab and making sure that both "Online Certificate Status Protocol (OCSP)" and "Certificate Revocation List (CRL)" are turned off. However, some users have found that only deleting the aforementioned file works.
Unfortunately, in some cases, it may be up to certificate providers to update their certification methods for compliance with Apple's new,

Safari Not Opening Pages That Require Login

Since I installed the latest security update Safari won't open a couple of pages I use to use all the time. Most notably the My eBay sign in page and the Bigpond Log In page and just now the Apple Login Page (I had to use Camino to get to here). When I click on these pages Safari just sits there trying to load but does nothing and after about 2min I get the spinning Beachball and have to Force Quit. Also if I press the stop button and try to load any other page other than those 3 it does the same thing. This only happens after I have already clicked on one of the above mentioned sites. I then have to quit Safari and restart it to get it to work. All my other tabbed bookmarks work, It's pretty much just these 3 and probably any other page that requires login.
I have deleted prefs and reset Safari, Repaired Permissions, Deleted Saft, Googled for this problem and found nothing and tried to find a way to reinstall Safari but found nothing.
Anyone got any other ideas.
Thanks

Try this - I was Having the same problems:
http://www.macfixit.com/article.php?story=20061204233133704
"Tuesday, December 05 2006 @ 03:00 AM PST
Security Update 2006-007 (#6): Login to secure sites fails (cont.) -- fixes; Problems launching Microsoft Office apps; more
Login to secure sites fails (cont.) -- fixes We continue to report on problems logging into secure (https) Web sites in Safari and other WebKit-based applications after applying Security Update 2006-007. Since this update makes modifications to WebKit, it's logically implicated in the difficulties.
Even more telling than the WebKit changes, however, is the resolution (in this security update) of a vulnerability where "certain revoked certificates may be erroneously honored." It appears Safari is -- instead of erroneously honoring bad certificates -- erroneously rejecting some certificates.
There's one more change in Security Update 2006-007 that could be implicated in this problem: a fix for a vulnerability where it may be possible to create an X.509 certificate containing a public key that "could consume a significant amount of system resources during signature verification. An attacker may cause a system to process such a certificate, leading to a denial of service."
In at least some cases, the issue appears to be tied to certificates issued by VeriSign. Safari is incorrectly interpreting some of these certificates as invalid -- with a mismatch in the certificate-listed host name and host name of the visited URL.
As such, one potential fix involves deleting certificate entries using Keychain Access, as follows:
1. Launch Keychain Access (located in Applications/Utilities)
2. Click on "Certificates" in the left-hand pane
3. Delete any entries from VeriSign, or any certificates with a red cross next to them
4. Re-attempt access to the problematic secure site
The most successful fix, however, involves deleting the file com.apple.security.revocation.plist from the following directory:
* ~/Library/Preferences
You can replicate this workaround to some extent without deleting any files by opening Keychain Access (as mentioned above) then navigating to its Preferences (under the Keychain Access menu), clicking on the "Certificates" tab and making sure that both "Online Certificate Status Protocol (OCSP)" and "Certificate Revocation List (CRL)" are turned off. However, some users have found that only deleting the aforementioned file works.
Unfortunately, in some cases, it may be up to certificate providers to update their certification methods for compliance with Apple's new, more stringent security standards."

Hiding auth sources from Login auth source drop down

I have a requirement to hide auth sources only used for test purposes from being displayed in the login page auth source drop down list. Does anyone know how to filter out the test auth sources so they don't display???
Also, auth sources don't allow removal of the "everyone" group from auth source security in the UI. Can auth sources have everyone removed safely from the database or another way without violating referential integrity of the plumtree meta data base??
plumtree 5.0.4J on Unix

Hello Jenny,
to hide application source types and applications from the selection of the external candidate you have to change / enhance the method RETRIEVE_DATA of the component controller of web dynpro component HRRCF_C_COVERLETTER_UI.
If you have a look at this method around line 80 you find even some example code as the SAP standard already hides the application source type 02 for agencies. Easiest is probably to add some code directly after the loop to exclude this application source type for agencies and remove the other entries from the value set you no longer use.
To hide application sources of a application source type which is still used you would have to add a similar logic there. If the currently selected application source type is the correct one, get the node information for the application source node. Remove the entries from the value set and update the node again. Furthermore you have to put in the same logic into method ONACTIONDDLB_CHANGED of the view controller VW_COVERLETTER to ensure the application source dropdown is adjusted correctly if a different application source type is selected by the candidate.
A second change will be necessary if you can not ensure that the recruiters will not use obsolete entries when entering applications manually. The component for the manual application entry by recruiters is ERC_C_APPL_MGMT_UI. Here the change will be a bit easier. The assistance class of this component is CL_HRRCF_M_APPL_MGMT_UI. This class has two methods GET_APPL_SOURCE_TYPE_LIST and GET_APPL_SOURCE_LIST which centralize the determination of the values for the dropdowns. Here I would add implicit enhancements at the end of both methods to remove entries from the lists before they are returned.
Best regards
Roman

Auto Start-up login [SOLVED]

Hi, I like booting to the terminal with no GUI since I might turn on the computer just for doing some computation-intensive tasks but I would like to have the convenience of the login managers from Gnome/Ubuntu. I don`t know what the real name is but if you boot to the GUI in Ubuntu this login can happen automatically-no need to fill the username and password, so, how is it possible to to this auto-login in the terminal when you first start up your ArchLinux or other distro without the overhead of starting the GUI `question mark`(i don`t know why but in the openbox session or firefox my keyboard layout is different than in the terminal)
Last edited by Alberto Ferreira (2009-04-24 15:31:15)

The reason is that I don't want to execute startx right away but I don't like logging in at the terminal either. So that when I boot the pc, as soon as the booting sequence is ready the pc is ready to work .. (because I'm the only pc user it's boring as hell to always login)
Following crouse's link didn't work for me:
All the lines in the files that the guy talks about are different than in ARCH and when I compile the program it gives the warning :"incompatible implicit declaration of build-in function "execlp"".
Last edited by Alberto Ferreira (2009-04-21 16:40:21)

Exchange 2013 - Exchange Admin Center unable to login

Hello
I am experiencing issue with the ability to login to the ECP in Exchange 2013 SP1 living in Co-Exist with Exchange 2010 SP3.
It is very random, at times I can login and everything works fine, other time I try to login and nothing happens the page recycles back to the login page without outputting any error. I am trying to recreate the ECP virtual directory by the following:
Remove-EcpVirtualDirectory -Identity "2013CASSERVER\ecp (default Web site)"
And then recreating it. below is the output? Can anyone assist?
[PS] C:\Windows\system32>New-EcpVirtualDirectory "2013CASSERVER\ecp (default Web site)"
Creating a new session for implicit remoting of "New-EcpVirtualDirectory" command...
<RED TEXT>Argument: -Role ClientAccess
    + CategoryInfo          : InvalidArgument: (:) [New-EcpVirtualDirectory], ArgumentException
    + FullyQualifiedErrorId : [Server=2013MAILBOXSERVER,RequestId=ee3e37b7-0ec3-4697-ab51-8156a72bee1a,TimeStamp=7/24/2014 3
   :31:30 AM] [FailureCategory=Cmdlet-ArgumentException] 38C9FD83,Microsoft.Exchange.Management.SystemConfigurationTa
sks.NewEcpVirtualDirectory
    + PSComputerName        : 2013casserver.domain.local </REDTEXT>
[PS] C:\Windows\system32>

Hi,
Please make sure access the EAC by using the correct URL. If you’re in a coexistence scenario and your mailbox is still housed on the Exchange 2010 Mailbox server, we should access the EAC in Exchange 2013 by using the following URL: https://CAS15-NA/ecp?ExchClientVer=15.
Conversely, if you want to access the Exchange 2010 ECP and your mailbox resides on an Exchange 2013 Mailbox server, use the following URL: https://CAS14-NA/ecp?ExchClientVer=14.
To rebuild the ECP virtual directory in Exchange 2013, we can try the following commands:
Remove-EcpVirtualDirectory -Identity “Exch13\ecp (Default Web Site)”
New-EcpVirtualDirectory -Server Exch13 -WebSiteName "default Web site" -InternalUrl “https://Exch13.domain.com/ecp”
Remove-EcpVirtualDirectory -Identity "Exch13\ecp (Exchange Back End)"
New-EcpVirtualDirectory -WebSiteName "Exchange Back End" -Server Exch13
Then restart IIS service by running iisreset /noforce from a command prompt window.
Regards,
Winnie Liang
TechNet Community Support

Any method to prevent a user login with 1 account, but several machines?

May I ask for your recommendations to prevent a user to login my application with his/her account through different computers?
Background information:
1. My application is developed with BC4J framework.
2. Login details: Once a user's is validated with their user id and password stored in a backend database table, he/she would be granted the right to use my application with a common connection account, as stated with the configuration details specified.
Here is my solution:
- When a user login my application, I'll lookup if there is any existing user record in a database table, let say, TBL_CURR_USERS. If no user record is found, the user will be granted the right of launching my applications and have a user record written down in the table TBL_CURR_USERS. If a user record is found, the user will receive an error message - "Your specified account is in use. You are not allowed to enter until your specified account has been logged off."
- Problem: My problem is - how to trigger the event for removing the record in the table TBL_CURR_USER when user logs out implicity or internet connection interrupts. Let say, when the user close the browser by clicking the 'X' icon, I have nothing to trigger my deletion for the user record in the TBL_CURR_USERS table. If so, in the long term, many users will not be able to use my application until housekeeping is done for the table TBL_CURR_USERS ... what should I do? Any Java solutions or JDeveloper solutions available?
Thanks for your replying!

I had the same problem and I resolved in a different way. In the application server I have a Set in the context and I add a user when the login is successful and I remove it (I store the user even in the session) when the session expires (I have a session listener) or when the user explicitly logouts.
I don't need table and I don't need to do anything if the application server crashes.
If you don't use connection pooling you could use a logon trigger on the database.
I hope it helps,
Giovanni

MobileMe Login fail: "Unknown MobileMe account"

Im trying to use AirPlay on my AppleTV but i cant login into MobileMe, i already try my apple id and my full mail or initial name of "@me.com" address, but nothing works...

See http://docs.info.apple.com/article.html?path=MobileMe/Help/en/mmfc0f1a3b.html
Root Cause Analysis:
[1] ATV2 inconsistent use of MobileMe "Account" definition
[2] Implicit BLANK Gallery entry requirement (with ALL options selected?)
Example: http://gallery.me.com/burkhartmnus#100271
[3] Failure to resolve above usability issues in ATV2 Version 4.1.1

ORA-02005: implicit (-1) length not valid for this bind or define datatype

Error received when attempting to login to Portal 3.0.8.9 using Internet Explorer 5.50.4522.1800CO (from Oracle OBI 5.0).
Error does not occur when using Netscape 4.75. However, Netscape pegs CPU between every Portal page. I must maximize/minimize the Windows Task Manager in order for Netscape to move to next Portal page.
Both browsers work with other sites.
ORA-02005: implicit (-1) length not valid for this bind or define datatype
DAD name: portal30
PROCEDURE : PORTAL30.home
URL : http://hostname:port/pls/portal30/portal30.home
PARAMETERS :
============
ENVIRONMENT:
============
PLSQL_GATEWAY=WebDb
GATEWAY_IVERSION=2
SERVER_SOFTWARE=Oracle HTTP Server Powered by Apache/1.3.12 (Win32)
ApacheJServ/1.1 mod_ssl/2.6.4 OpenSSL/0.9.5a mod_perl/1.24
GATEWAY_INTERFACE=CGI/1.1
SERVER_PORT=80
SERVER_NAME=host
REQUEST_METHOD=GET
QUERY_STRING=
PATH_INFO=/pls/portal30/PORTAL30.home
SCRIPT_NAME=/pls
REMOTE_HOST=
REMOTE_ADDR=127.0.0.1
SERVER_PROTOCOL=HTTP/1.1
REQUEST_PROTOCOL=HTTP
REMOTE_USER=
HTTP_CONTENT_LENGTH=
HTTP_CONTENT_TYPE=
HTTP_USER_AGENT=Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)
HTTP_HOST=host
HTTP_ACCEPT=image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-powerpoint, application/vnd.ms-excel, application/msword,
application/pdf, */*
HTTP_ACCEPT_ENCODING=gzip, deflate
HTTP_ACCEPT_LANGUAGE=en-us
HTTP_ACCEPT_CHARSET=
HTTP_COOKIE=ses= (removed due to length limitations)
Authorization=
HTTP_IF_MODIFIED_SINCE=
HTTP_REFERER=

Hi Matt
Thanks for your help. Here's some extracts from a NUnit test case that I made to show ArrayBinding bombing on VARCHAR2(4000).
private void SetupAdapterAndCommandForArrays()
OracleParameter p9 = new OracleParameter();
p9.OracleDbType = OracleDbType.Varchar2;
p9.ParameterName = ":p_instr_array";
p9.CollectionType = OracleCollectionType.PLSQLAssociativeArray;
p9.ArrayBindSize = new int[]{4000, 4000};
p9.Size = 2;
p9.Direction = ParameterDirection.Input;
p9.ArrayBindStatus = new OracleParameterStatus[]{OracleParameterStatus.Success,OracleParameterStatus.Success};
OracleCommand comm = new OracleCommand();
comm.Connection = new OracleConnection("Data Source=aboded12_local;user id=pcm_app;password=pcm_app");
comm.CommandText = "PCM_OWNER.PKG_DAC_JASON.InsertStringArray";
comm.CommandType = CommandType.StoredProcedure;
comm.Parameters.Add(p9);
da = new OracleDataAdapter();
da.InsertCommand = comm;
da.InsertCommand.Connection.Open();
[Test]
public void TestStringArrayOf4000()
SetupAdapterAndCommandForArrays();
da.InsertCommand.Parameters[0].Value = new string[]{new string(Convert.ToChar("3"),4000), new string(Convert.ToChar("4"), 4000)};
da.InsertCommand.ExecuteNonQuery();
So when I run TestStringArrayOf4000() i get the : Oracle.DataAccess.Client.OracleException : ORA-02005: implicit (-1) length not valid for this bind or define datatype error.
If i run another test i have that sets up an array with less than 4000 this works fine.
any help you can offer is greatly appreciated!
Message was edited by:
[email protected]
Message was edited by:
[email protected]

Implicit Login

Similar Messages

Maybe you are looking for