Invalid login with rest functionality user

Hi all.
Following the "Web Services and Integration Framework Guide" for ATG 10.0.1 part III, I create an internal user "intRestUser" with BCC giving him the same roles of "admin".
After, io defined under my localconfig atg publishing server /atg/rest/security/restSecurityConfiguration.xml
<rest-security>
<default-acl value="Profile$login$intRestUser:read,write,execute"/>
</rest-security>After, I started JBoss server, switched the /atg/rest/processor/RestSecurityProcessor allowAccessForUnsecuredRepository to true and tried the following things
1) a snippet of JavaCode
public class TestRestCalls {
     public static void main(String[] args) {
          RestSession session = RestSession.createSession(myIpaddress, myPort, "intRestUser", "pwdRestUser");
          if (login(session)){
               try {
                    RestResult result = RestRepositoryHelper.getItem("/atg/commerce/catalog/ProductCatalog", "product","6137329", null, session);
               } catch (RestClientException e) {
                    e.printStackTrace();
     private static boolean login(RestSession session){
          boolean result = false;
          session.setUseHttpsForLogin(false);
          session.setUseInternalProfileForLogin(true);
          try {
               String loginStatus = session.login();
               if(loginStatus == null || "null".equals(loginStatus)) {
                    session = null;
                    System.err.println("Login Failed");
               }else {
                    result = true;
                    System.out.println("Login Successful");
          catch (Throwable t) {
               System.err.println("Exception: "+t.getMessage());
          return result;
}It goes into exception at session.login() with this message:
java.io.IOException: Forbidden Server returned HTTP response code: 403 for URL: http://myIpaddress:myPort/rest/bean/atg/userprofiling/InternalProfileFormHandler/login
2) Invoking url by browser
http://myIpaddress:myport/rest/bean/atg/userprofiling/InternalProfileFormHandler/login?value.login=intRestUser&value.password=pwdRestUser&atg-rest-return-form-handler-exceptions=true
In this case I've in Jboss console
ERROR [nucleusNamespace.atg.userprofiling.PreviewProfileRequestProcessor] (http-0.0.0.0-8280-5) An attempt was made to preview a project without logging in as
a user with access to publishing assets. The Preview feature does not support remote preview on servers running the BCC. If you received this error and did not try
to perform a remote preview, then you may need to disable preview in the current webapp by setting the atg.preview context parameter to false in the webapp's
web.xml file.3) I login with my intRestUser into BCC Home and after re-try step 2)
In this case in console I've an exception
ERROR [nucleusNamespace.atg.dynamo.servlet.dafpipeline.RestSecurityServlet] (http-0.0.0.0-8280-5) Error code: 401
Access to the requested resource is not allowed: /atg/userprofiling/InternalProfileFormHandler
atg.rest.RestException: Access to the requested resource is not allowed: /atg/userprofiling/InternalProfileFormHandler
        at atg.rest.processor.RestSecurityProcessor.checkAccess(RestSecurityProcessor.java:524)
        at atg.rest.processor.RestSecurityProcessor.handleGetRequest(RestSecurityProcessor.java:287)
        at atg.rest.processor.RestSecurityProcessor.doRESTGet(RestSecurityProcessor.java:175)
        at atg.rest.servlet.RestPipelineServlet.serviceRESTRequest(RestPipelineServlet.java:395)
        at atg.rest.servlet.RestPipelineServlet.service(RestPipelineServlet.java:238)
        at atg.servlet.pipeline.PipelineableServletImpl.passRequest(PipelineableServletImpl.java:135)
        at atg.servlet.pipeline.PipelineableServletImpl.service(PipelineableServletImpl.java:298)
        at atg.rest.servlet.RestPipelineServlet.service(RestPipelineServlet.java:242)
        at atg.rest.servlet.HeadRestServlet.service(HeadRestServlet.java:107)
        at atg.servlet.pipeline.PipelineableServletImpl.service(PipelineableServletImpl.java:245)
        at atg.rest.servlet.RestProxyServlet.service(RestProxyServlet.java:118)
        at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:29
...4) Finally I login with my intRestUser into BCC Home and after I call a rest service url directly as for example
http://myIpAddress:myport/rest/repository/atg/commerce/catalog/ProductCatalog/product/6137329
In this case it works.
So, the BCC login bypass the direct authentication by InternalProfileFormHandler but only using the same browser session.
So, the question is: why the java code or url code authentication don't work?
Thanks in advance
Marco
Edited by: user10853406 on 27-ott-2011 12.42
Edited by: user10853406 on 28-ott-2011 5.49
simplified restSecurityConfiguration.xml

I'm also experiencing the same issue. Seems like the problem is related with the Preview functionality. If I remove preview, the error goes away.
Anyone knows a way to have this working with preview enabled?

Similar Messages

How to conf in Hyperion, so the system couldn't login with the same user

Hai.....
how to configure in Hyperion, so the system couldn't login with the same user id in different machine ? (could you please provide me with detail step by step ? )
rgds
uka fp

fane_j wrote:
Sally R. wrote:
Someone gave me a suggestion to go to the terminal and type in the following:
ls /Users/Shared/.*.so
This was published on MacWorld's site, and it's not a very good tip. Try this instead
ls -la /Users/Shared/*.so
Turns out I was wrong about that. Somebody else suggested something even more complicated and got this reply:
By bastion
Fri Feb 24 08:49:05 PST 2012
PeterSParker said
Your terminal statement has an extra "." in it that prevents it from working.
Also, you should add the options -alR to show what is happening, and to search subdirectories.
The revised command looks like this:
ls -alR /Users/Shared/*.so
The above is completely wrong. The command as shown in the article is appropriate.
The "." is not extra and doesn't prevent the command from working. It's specifying that you're listing files that start with a period and end with ".so" with anything in between being matched.
Because you're explicitly searching for things that start with "." you don't need the -a flag.
Because you only care about simple existence and not any metadata you don't need -l.
Because the files of interest are installed in /Users/Shared directly, and not subfolders thereof, you don't need -R.

Not able to login with new LDAP user in portal..

All,
We have created a new user in our LDAP environment in Portal. ( not UME ). I am able to view the user id in Identity management and assigned the necessary roles. but, i am unable to login using the new user id. Can anybody please tell me what is missing here ? Thanks in advance.

Hi Addy,
As Raghu said, this seems to be a password problem.
Log into the Portal as an User administrator.
Find the user and Click on Modify.
In User Information, Add a new password.
Then try to login with the given user id again with the new password.
Good Luck!!!
Biroj Patro

Invalid login with CytoScape plugin

Hello everybody,
I'm trying to connect to my Oracle 11.2 server instance through CytoScape 2.6.3, but I keep getting error ORA-01017: invalid username/password. I know for sure that my credentials are correct, and I also tried setting SEC_CASE_SENSITIVE_LOGON to FALSE, but that's not the problem.
By checking the dba_audit_session table I see that to each failed attempt corresponds a record that says:
OS_USERNAME: ssundara
USERNAME: (null)
+USERHOST: [My machine name]+
which seems quite odd to me.. Of course, when I connect through SqlDeveloper using the same credentials, the fileds os_username and username are correctly filled.
Also, in Cytoscape Error console I get the following warnings (though, as the warnings themselves say, the problem shouldn't affect the plugin operations):
+1+
+cytoscape.plugin.PluginManager[WARN]: ERROR registering plugin: Unable to load plugin.props. File is not in the expected location: oracle/graph/RDF/cytoscape Unable to load plugin.props. File is not in the expected location: oracle/graph/RDF/cytoscape java.io.IOException: Unable to load plugin.props. File is not in the expected location: oracle/graph/RDF/cytoscape at cytoscape.plugin.PluginProperties.readPluginProperties(PluginProperties.java:89) at cytoscape.plugin.PluginProperties. (PluginProperties.java:76) at cytoscape.plugin.PluginManager.registerPlugin(PluginManager.java:356) at cytoscape.plugin.PluginManager.register(PluginManager.java:345) at cytoscape.plugin.PluginManager.loadPlugin(PluginManager.java:951) at cytoscape.plugin.PluginManager.loadURLPlugins(PluginManager.java:901) at cytoscape.plugin.PluginManager.loadPlugins(PluginManager.java:796) at cytoscape.CytoscapeInit.init(CytoscapeInit.java:259) at cytoscape.CyMain. (CyMain.java:155) at cytoscape.CyMain.main(CyMain.java:119)+
+2+
+cytoscape.plugin.PluginManager[WARN]: oracle.graph.RDF.cytoscape.RDFVisualizer loaded but not registered, this will not affect the operation of the plugin+
I've tried to look around for solutions, but I couldn't find any answer. The problem seems to be located in the Oracle's CytoScape Plugin, but I wouldn't know how to resolve it. Does anyone have any idea?

A revised version of the Cytoscape plugin (dated 23-April-2013) is now available for download on OTN.
The only file that has been modified to fix the invalid login problem is oraclerdf.jar.
To fix the invalid login problem, simply download the zip file, extract files from it and find the new oraclerdf.jar file under JAR subfolder, and then replace the old oraclerdf.jar with the new one.

I just updated my MacBook pro early 2011 model to OSX 10.9 and was forced to create a new user(administrator) and ended up with a different configuration. If I login with my original user name everything is back. How can I get rid of the other user name?

I have two user names with Administrator privelages and my MacBook keeps booting up to the wrong one and I have the wrong configuration since I updated to OSX 10.9. I would like to get back to my original User name which I used to boot up to. When I go to the User Groups and Preferences it doesn't allow me to delete the un-wanted user.
Does anybody have any suggestions how I can fix this? I can't seem to recover Time Capsule back-ups prior to the OSX upgrade even though I have been faithfully backing up to a Time Machine.
Help please.

First of all, open System Preferences > Users & Groups > Login Options, and set your old user account in "Automatic login". By doing this, your computer will always log in with your old account.
Then, log in your old account, where you will be able to delete the new user that OS X Mavericks forced you to create. Other users have reported the same problem

FDQM - Not able to login with the admin user

Hi,
I am not able to login to FDQM web browser using the admin user. I am facing the error as below;
Error: Error retreiving security agent header.
Detail: InnerException1: Access to the path 'D:\Oracle\Middleware\EPMSystem11R1\logs\fdm\Common\' is denied.
I tried checking the Load Balance Configuration settings, where i found the Shared services Test connection was failing. But i am able to login to Shared services with admin user.
Can any one please help me. It is most critical and your replies are most welcome & appreciated.
Thanks
Damodhar

When was the last time you were able to login and what has changed since that time?
Has someone changed access privileges to that specific location => Access to the path 'D:\Oracle\Middleware\EPMSystem11R1\logs\fdm\Common\'?
Thank you,
Todd Rebner

How can I login with my admin user after the "file vault-security option" disabled?

My HD was full. So i deleted the biggest files related to file vault. After that i disabled the file vault option in security preferences, and restarted the machine. When i tried to connect again, appear the message"error in file vault". How can i fix?

I have the same problem. My Mac Mini server will not let me reset pram or safemode. Can't login. Help

Sun comm 7 vmware appliance ,can not login with user sample

Dear Expert ,
I just download sun communication suite 7 (vmware appliance) :
1.Unzip all part SunJava_Comms_Suite7u0_VM-part-1 until SunJava_Comms_Suite7u0_VM-part-5
2. Open vmware and open it
3. change the password
4. reboot
5.Click firefox on desktop ,i see sample username and password
6. I try login with 2 sample user (login from http://chimaera.varrius.org/iwc )but i got meessage "The server has encountered an error. Please try again later"
I am try start stop app server on /opt/SUNWappserver/domains/domain1/bin
My question , how to solve this issue ?
thanks
hadi

Hi Share,
Thanks for reply , here the log
[#|2010-02-01T22:55:21.822-0800|INFO|sun-appserver2.1|com.sun.comms.iss.common.InitContext|_ThreadID=10;_ThreadName=main;|Retry creating InitialContext|#]
[#|2010-02-01T22:55:51.823-0800|WARNING|sun-appserver2.1|com.sun.comms.iss.common.InitContext|_ThreadID=10;_ThreadName=main;_RequestID=8bb98af7-fdbc-41e5-a151-c04e3584e529;|Retry creating InitialContext failed
javax.naming.CommunicationException: chimaera.varrius.org:389 [Root exception is java.net.ConnectException: Connection refused]
at com.sun.jndi.ldap.Connection.<init>(Connection.java:207)
at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:118)
at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1580)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2652)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:293)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
at javax.naming.InitialContext.init(InitialContext.java:223)
at javax.naming.InitialContext.<init>(InitialContext.java:197)
at com.sun.comms.iss.common.InitContext.getInitialContext(InitContext.java:57)
at com.sun.comms.iss.common.ServiceProxy.<init>(ServiceProxy.java:171)
at com.sun.comms.iss.common.ServiceProxy.getInstance(ServiceProxy.java:263)
at com.sun.comms.iss.rest.RestServlet.initAccountStates(RestServlet.java:419)
at com.sun.comms.iss.rest.RestServlet.<init>(RestServlet.java:71)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
at com.noelios.restlet.ext.servlet.ServerServlet.createApplication(ServerServlet.java:285)
at com.noelios.restlet.ext.servlet.ServerServlet.getApplication(ServerServlet.java:704)
at com.noelios.restlet.ext.servlet.ServerServlet.init(ServerServlet.java:819)
at javax.servlet.GenericServlet.init(GenericServlet.java:270)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:292)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:325)
at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:208)
at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:161)
at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1091)
at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:1020)
at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4948)
at org.apache.catalina.core.StandardContext.start(StandardContext.java:5355)
at com.sun.enterprise.web.WebModule.start(WebModule.java:353)
at com.sun.enterprise.web.LifecycleStarter.doRun(LifecycleStarter.java:58)
at com.sun.appserv.management.util.misc.RunnableBase.runSync(RunnableBase.java:304)
at com.sun.appserv.management.util.misc.RunnableBase._submit(RunnableBase.java:176)
at com.sun.appserv.management.util.misc.RunnableBase.submit(RunnableBase.java:192)
at com.sun.enterprise.web.VirtualServer.startChildren(VirtualServer.java:1762)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1247)
at org.apache.catalina.core.StandardHost.start(StandardHost.java:971)
at com.sun.enterprise.web.LifecycleStarter.doRun(LifecycleStarter.java:58)
at com.sun.appserv.management.util.misc.RunnableBase.runSync(RunnableBase.java:304)
at com.sun.appserv.management.util.misc.RunnableBase._submit(RunnableBase.java:176)
at com.sun.appserv.management.util.misc.RunnableBase.submit(RunnableBase.java:192)
at com.sun.enterprise.web.EmbeddedWebContainer$WebEngine.startChildren(EmbeddedWebContainer.java:497)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1247)
at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:549)
at org.apache.catalina.startup.Embedded.start(Embedded.java:952)
at com.sun.enterprise.web.WebContainer.start(WebContainer.java:872)
at com.sun.enterprise.web.PEWebContainer.startInstance(PEWebContainer.java:792)
at com.sun.enterprise.web.PEWebContainerLifecycle.onStartup(PEWebContainerLifecycle.java:89)
at com.sun.enterprise.server.ApplicationServer.onStartup(ApplicationServer.java:446)
at com.sun.enterprise.server.ondemand.OnDemandServer.onStartup(OnDemandServer.java:134)
at com.sun.enterprise.server.PEMain.run(PEMain.java:409)
at com.sun.enterprise.server.PEMain.main(PEMain.java:336)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.sun.enterprise.server.PELaunch.main(PELaunch.java:415)
Caused by: java.net.ConnectException: Connection refused
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333)
at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195)
at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366)
at java.net.Socket.connect(Socket.java:525)
at java.net.Socket.connect(Socket.java:475)
at java.net.Socket.<init>(Socket.java:372)
at java.net.Socket.<init>(Socket.java:186)
at com.sun.jndi.ldap.Connection.createSocket(Connection.java:349)
at com.sun.jndi.ldap.Connection.<init>(Connection.java:184)
... 67 more
thanks
hadi

MULTIPLE LOGIN WITH SAME USER ID

Hi,
As per my understanding, multiple login to the portal with the same user id and password is allowed.
Now,
1. Is it possible to disbale this in the portal so that user can login to the portal only once?
2. Is it possible to allow specified no of logins with the same user id?
Any response is highly appreciated.
regards,
Chandra

What you're trying to do just doesn't work that well with any web application, let alone NW. There are various problems with trying to restrict the number of sign ons:
If a user signs into the portal and then walks away, they are unable to sign in again from another workstation. What if they want to give a demo to a user elsewhere in the company while they're still signed in at their desk? This is really just a user-issue, but an annoying one that will almost certainly drive certain users nuts.
What if the user's web browser crashes (an unfortunately common occurence). They can't sign in again until their session times out. Either that, or they call the portal admin to clear out their session (how? I don't know). The portal admin probably has better things to do than cleaning up orphan sessions.
If a user can't sign in multiple times, they can always open a related browser session, thereby having multiple entry points into the portal.
So, in short, you really can't enforce a 'sign in once' rule. By association, you therefore can't restrict them to a maximum number of sign-ins either...
Hope that helps you out. Points are always good

Msi object will not install with non-admin user

I've created an MSI object for the Flash 9 plugin, which installs okay
on the workstation when I login with an admin user. It will not
install when logged in with a normal user account. I have set it up as
an unsecure user and given the workstation R and F rights to the msi
object, but I'm still getting a 1603 error code.
Any suggestions?

http://appdeploy.com/packages/detail.asp?id=798
You will see the ZENworks reference on this page.
I would bookmark this site :>
I almost always check it before deploying a new package to see if it is
listed. Helps me find issues before the issues find me :>
[email protected] wrote:
> I've created an MSI object for the Flash 9 plugin, which installs okay
> on the workstation when I login with an admin user. It will not
> install when logged in with a normal user account. I have set it up as
>
> an unsecure user and given the workstation R and F rights to the msi
> object, but I'm still getting a 1603 error code.
>
> Any suggestions?
>
Craig Wilson
Novell Product Support Forum Sysop
Master CNE, MCSE 2003, CCN

Adf security with upper case user results in 500-internal server error

Hello
JDev 11.1.1.0.2, Integrated WLS
I'v set up ADF security as explained in the documentation.
The only difference being that the role test-all has been removed.
I have one user 'paul' with a password of 'password'
I have one application role 'myrole'
'paul' is a member of 'myrole'
I have one unbounded task flow with one view (view1).
Via the janz-data.xml 'View1' has been granted to 'myrole' (view action)
When running View1 I get the login.html page which is correct.
The fun starts when playing around with the user/password.
If I login with 'paul' and 'password' view1 is display, this is correct
If I login with an unknown user or an incorrect password Windows Explorer 7 shows a generic HTTP 403 error page and not the error.html
If I login with 'PAUL' and 'password' (or Paul, or any mixed cased version of Paul with the correct password) I get the following stack trace :
oracle.adf.controller.security.AuthorizationException: ADFC-0619: Echec de la vérification des autorisations : '/view1.jspx' 'VIEW'.
     at oracle.adf.controller.internal.security.AuthorizationEnforcer.handleFailure(AuthorizationEnforcer.java:145)
     at oracle.adf.controller.internal.security.AuthorizationEnforcer.checkPermission(AuthorizationEnforcer.java:124)
     at oracle.adfinternal.controller.state.ControllerState.initializeUrl(ControllerState.java:639)
     at oracle.adfinternal.controller.state.ControllerState.synchronizeStatePart2(ControllerState.java:449)
     at oracle.adfinternal.controller.application.SyncNavigationStateListener.afterPhase(SyncNavigationStateListener.java:44)
     at oracle.adfinternal.controller.lifecycle.ADFLifecycleImpl$PagePhaseListenerWrapper.afterPhase(ADFLifecycleImpl.java:529)
     at oracle.adfinternal.controller.lifecycle.LifecycleImpl.internalDispatchAfterEvent(LifecycleImpl.java:118)
     at oracle.adfinternal.controller.lifecycle.LifecycleImpl.dispatchAfterPagePhaseEvent(LifecycleImpl.java:166)
     at oracle.adfinternal.controller.faces.lifecycle.ADFPhaseListener$PhaseInvokerImpl.dispatchAfterPagePhaseEvent(ADFPhaseListener.java:122)
     at oracle.adfinternal.controller.faces.lifecycle.ADFPhaseListener.afterPhase(ADFPhaseListener.java:68)
     at oracle.adfinternal.controller.faces.lifecycle.ADFLifecyclePhaseListener.afterPhase(ADFLifecyclePhaseListener.java:51)
     at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:354)
     at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:175)
     at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
     at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
     at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
     at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
     at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
     at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:181)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
     at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:85)
     at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:279)
     at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._invokeDoFilter(TrinidadFilterImpl.java:239)
     at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:196)
     at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:139)
     at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
     at oracle.security.jps.wls.JpsWlsFilter$1.run(JpsWlsFilter.java:85)
     at java.security.AccessController.doPrivileged(Native Method)
     at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:257)
     at oracle.security.jps.wls.JpsWlsSubjectResolver.runJaasMode(JpsWlsSubjectResolver.java:250)
     at oracle.security.jps.wls.JpsWlsFilter.doFilter(JpsWlsFilter.java:100)
     at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:65)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
     at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)
     at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3496)
     at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
     at weblogic.security.service.SecurityManager.runAs(Unknown Source)
     at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180)
     at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086)
     at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406)
     at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
     at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
The questions are :
- Why do I get the generic HTTP 403 error instead of the error.html (its not the end of the world but I would like to understand) ?
- Why do I get the error 500 if the case of the username is incorrect but the password is correct ?
Best Regards
Paul

Nope nothing in there that looks out of place...
Here's the contents of the web.xml file ..
<?xml version = '1.0' encoding = 'windows-1252'?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd" version="2.5" xmlns="http://java.sun.com/xml/ns/javaee">
<description>Empty web.xml file for Web Application</description>
<context-param>
<param-name>javax.faces.STATE_SAVING_METHOD</param-name>
<param-value>client</param-value>
</context-param>
<context-param>
<description>If this parameter is true, there will be an automatic check of the modification date of your JSPs, and saved state will be discarded when JSP's change. It will also automatically check if your skinning css files have changed without you having to restart the server. This makes development easier, but adds overhead. For this reason this parameter should be set to false when your application is deployed.</description>
<param-name>org.apache.myfaces.trinidad.CHECK_FILE_MODIFICATION</param-name>
<param-value>false</param-value>
</context-param>
<context-param>
<description>Whether the 'Generated by...' comment at the bottom of ADF Faces HTML pages should contain version number information.</description>
<param-name>oracle.adf.view.rich.versionString.HIDDEN</param-name>
<param-value>false</param-value>
</context-param>
<filter>
<filter-name>JpsFilter</filter-name>
<filter-class>oracle.security.jps.ee.http.JpsFilter</filter-class>
<init-param>
<param-name>enable.anonymous</param-name>
<param-value>true</param-value>
</init-param>
<init-param>
<param-name>remove.anonymous.role</param-name>
<param-value>false</param-value>
</init-param>
<init-param>
<param-name>addAllRoles</param-name>
<param-value>true</param-value>
</init-param>
<init-param>
<param-name>jaas.mode</param-name>
<param-value>doasprivileged</param-value>
</init-param>
</filter>
<filter>
<filter-name>trinidad</filter-name>
<filter-class>org.apache.myfaces.trinidad.webapp.TrinidadFilter</filter-class>
</filter>
<filter>
<filter-name>adfBindings</filter-name>
<filter-class>oracle.adf.model.servlet.ADFBindingFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>JpsFilter</filter-name>
<servlet-name>Faces Servlet</servlet-name>
<dispatcher>FORWARD</dispatcher>
<dispatcher>REQUEST</dispatcher>
<dispatcher>INCLUDE</dispatcher>
</filter-mapping>
<filter-mapping>
<filter-name>trinidad</filter-name>
<servlet-name>Faces Servlet</servlet-name>
<dispatcher>FORWARD</dispatcher>
<dispatcher>REQUEST</dispatcher>
</filter-mapping>
<filter-mapping>
<filter-name>adfBindings</filter-name>
<servlet-name>Faces Servlet</servlet-name>
<dispatcher>FORWARD</dispatcher>
<dispatcher>REQUEST</dispatcher>
</filter-mapping>
<servlet>
<servlet-name>Faces Servlet</servlet-name>
<servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet>
<servlet-name>resources</servlet-name>
<servlet-class>org.apache.myfaces.trinidad.webapp.ResourceServlet</servlet-class>
</servlet>
<servlet>
<servlet-name>adfAuthentication</servlet-name>
<servlet-class>oracle.adf.share.security.authentication.AuthenticationServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
<servlet-name>Faces Servlet</servlet-name>
<url-pattern>/faces/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>resources</servlet-name>
<url-pattern>/adf/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>resources</servlet-name>
<url-pattern>/afr/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>adfAuthentication</servlet-name>
<url-pattern>/adfAuthentication/*</url-pattern>
</servlet-mapping>
<session-config>
<session-timeout>35</session-timeout>
</session-config>
<mime-mapping>
<extension>html</extension>
<mime-type>text/html</mime-type>
</mime-mapping>
<mime-mapping>
<extension>txt</extension>
<mime-type>text/plain</mime-type>
</mime-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>adfAuthentication</web-resource-name>
<url-pattern>/adfAuthentication</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>valid-users</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/login.html</form-login-page>
<form-error-page>/error.html</form-error-page>
</form-login-config>
</login-config>
<security-role>
<role-name>valid-users</role-name>
</security-role>
</web-app>
Regards
Paul

"Invalid Login" trouble again

From 2pm to 4pm today (central time US) I was unable to logon.
The SSO screen just kept returning "Invalid login" with the same userid/password I've had for 15 years.
This happened on 3 separate platforms, my home desktop (Firefox/Comcast), my iPhone (Safari/AT&T), and my work laptop (IE/company VPN), so I don't think it was a local problem.
Rebooting/clearing the browser cache didn't help and I was able to logon earlier today without any problem.
I reported the same problem a month or so ago. There was never a resolution but the problem seemed to vanish. Well, it's back.

I am having the same problem on my Itouch. I have reset to the manufacture settign and still have the error. I have no free phone counsultation at this time and I am having troouble getting rid of the error. This error shows up when I go to Apple Store or Itunes, and I just can not go online now. Where can I find additional posts to for this situation.

RFC function module always creating BPs with the same user name (RFC user )

Hi All
I posted the below question in a different area before. But thought it would be more suitable here.
Moderators - Please let me know if am doing any mistake.
Question:
I have a RFC function module in CRM that creates Business Partners in ECC (XD01 tcode).
I am using a dialog RFC destination configured in SM59 in CRM.
But my RFC function module in CRM is always creating the Business Partners in ECC with the RFC user id (the user that we maintain for the RFC destination in SM59).
This is a problem for the users because they are not able to track the actual person responsible for creating these Business Partners.
Can somebody please let me know how to solve this problem?
Thanks
Raj

Hi.
You may use the trust relationship between CRM and R/3 and in SM59 instead of set a specific username, you set the flag "current user".
With this flag, the system will access R/3 system with the user logged in CRM system. The Trust relationship must be created between CRM and R/3 in order to the system doesn't ask for a password to login in R/3.
If you need more details please reply.
Kind regards,
Susana Messias

BEA-090078 User ovowl in security realm myrealm has had 5 invalid login

Hi,
I created new domain for 10.3.4.0. there are two default users weblogic and OracleSystemUser. But in admin stdoutlog file, there are continuous below errors
<XXXXXXXXX> <Notice> <Security> <BEA-090078> <User ovowl in security realm myrealm has had 5 invalid login attempts, locking account for 30
minutes.>
can you pls let me know where can i find ovowl user in weblogic domain.
Thanks.

my guess is this user "ovowl" doesn't exist at all.
I have tried logging into the console for 5 times with a non existing username, and I got the same error:
<17-May-2011 16:10:32 o'clock CEST> <Notice> <Security> <BEA-090078> <User weblogic1 in security realm myrealm has had 5 invalid login attempts, locking account for 30 minutes.>
but there is no user "weblogic1"....

No user other than root can login with Java Desktop System

Dear guys,
I have a issue with loging in Oracle Solaris 10 using X-Browser and need your help.
I can login to console login using X-Browser but only root can login that use Java Desktop Release 3 and
all rest user cannot login with the session use Java Desktop Release 3.
I have tried to rename .dt directory to reinitialize the user's environment but still not work.
Any person have occurred this problem ? Can u suggest me an idea to solve this :(
Thx for all !
Edited by: ThangTT on Jul 18, 2011 12:29 AM

Dear Nik,
You're right ;) but no solved the problem when I change permission for /tmp dir. :(
Let I show to u the log from .dt/startlog
$more .dt/startlog
--- Mon Jul 18 16:40:22 ICT 2011
--- /usr/dt/bin/Xsession starting...
--- starting /bin/true
--- Xsession started by dtlogin
--- starting /usr/dt/bin/dtsession_res -load -system
--- sourcing /oracle/home/.dtprofile...
--- sourcing /usr/dt/config/Xsession.d/0010.dtpaths...
--- sourcing /usr/dt/config/Xsession.d/0015.sun.env...
--- sourcing /usr/dt/config/Xsession.d/0020.dtims...
--- sourcing /usr/dt/config/Xsession.d/0030.dttmpdir...
--- sourcing /usr/dt/config/Xsession.d/0040.xmbind...
--- sourcing /usr/dt/config/Xsession.d/1001.swupnot...
--- sourcing /usr/dt/config/Xsession.d/1099.br...
/usr/dt/bin/Xsession[659]: /var/tmp/brlog: cannot create
--- starting /usr/dt/bin/dtsearchpath
--- starting /usr/dt/bin/dtappgather &
--- starting /usr/dt/bin/dsdm &
--- session log file is /dev/null
--- DTSOURCEPROFILE is 'true' (see /oracle/home/.dtprofile)
--- execing /usr/dt/config/Xsession2.jds with a /usr/bin/bash login shell ...
--- starting desktop on /dev/pts/10
Oracle Corporation SunOS 5.10 Generic Patch January 2005
Couldn't open /tmp/_sttyFile_fGaO1i
/usr/dt/bin/Xsession[788]: 4518 Hangup
X connection to 172.24.30.34:1.0 broken (explicit kill or server shutdown).
Have any idea from u :(

Invalid login with rest functionality user

Similar Messages

Maybe you are looking for