Invalid Portal Session
While browsing through the forums, I got the message below :
Invalid Portal Session*
An error was encountered while processing your Portal request, because your portal session is no longer valid. You have been logged out and you will automatically be redirected to the OracleAS Portal home page in 30 seconds. Click OracleAS Portal home page to go directly to the OracleAS Portal home page, or if your browser does not automatically redirect you. If you continue to have problems while accessing OracleAS Portal, close all your browser instances and try again.
Nicolas.
user11945767 wrote:
Hello,
In our case, I have tried Opera, Safari, Chrome and Mozilla browsers and none of them show 'Invalid Portal Session' error. It only occurs with Microsoft Internet Explorer. And this happens consistently with IE. Not a single time it succeeds unless F5/Refresh is hit.
What could be the reason for this and how can it be resolved. We are running Oracle 10.1.2 AS.
Thanks.Nicolas asked the question about the Oracle Forums. Since this is a Forums Community issue, he correctly asked it in the "Community Feedback and Suggestions (Do Not Post Product-Related Questions Here)" Forums area.
You seem to be asking the question about the Oracle Application Server Portal product. Even though it appears your question and Nicolas' may be related, you are probably asking the question in the wrong area.
Your question is likely better asked
1) of Support (by opening a service request) and/or
2) asking in http://forums.oracle.com/forums/category.jspa?categoryID=193 and/or
3) asking in http://forums.oracle.com/forums/category.jspa?categoryID=196
Similar Messages
-
How can we cleanup invalidated archive sessions (remove from UNIX)
Over the years, we have accumulated many invalidated archive session files in our archive directory in UNIX. We would love to remove these invalidated session files to free up space.
We have been looking at BC_ARCHIVE ... but the documentation on it only mentions the archive of logs ... not the cleanup of invalid session files that need to be deleted
Can we just delete the files of sessions that are invalid? Or must we perform some function in SAP to delete them? SAP ... can you document the process for this?Hi,
You can simply delete the archive files at unix level thats all. No need to do anything else in SAP.
Cheers!
Samanjay -
How to set a variable in portal session using web dynpro java.
Hi,
I have created a web dynpro application, which is running inside portal. I have created a role called "R1". Inside role R1, i have created 3 workset W1, W2 and W3. and inside each workset i have some pages and iviews.
My requirement is when user logins to the portal , and when he clicks on role R1 for the first time, a login page should come (so that we can do revalidation), and when he enters his password again in that login page , then only workset W1, W2 and W3 should be visible/accessible to him and after successful revalidation, if he clicks again on role R1, in that particular portal session, than that login page should not come.
for this, i thought i will set a variable in portal session, whenever user successfully revalidated himself, and if after successful revalidation he clicks again on role R1, i will check in doinit method of webdynpro whether variable is set or not (which i already set on successful revalidation), and if it is set then i will do Donavigation else i will present login page to the user.
Can anyone tells me how to set a variable in portal session using web dynpro java.
thanks
ArushHi,
Try this:
WDScopeUtil.put(WDScopeType.CLIENTSESSION_SCOPE, key, value)
WDScopeUtil.get(WDScopeType.CLIENTSESSION_SCOPE, key)
Ex:
WDScopeUtil.put(WDScopeType.CLIENTSESSION_SCOPE,"Key1","Value1");
String value1=WDScopeUtil.get(WDScopeType.CLIENTSESSION_SCOPE,"Key1").toString();
/people/william.cui/blog/2007/02/12/sharing-session-context-between-parent-and-external-windows-running-on-same-host
Regards,
Charan -
Can portal session cookies be used between two data centers
OAS generates the following header information and session information for my application. However when I need to failover the originating OAS datacenter into my hot stand-by for maintenance or upgrades, the OAS in the other datacenter responds with a 503 web error. We are using Akamai's GTM to manage the liveness of the datacenter, so we would need the hot stand-by OAS portal in that datacenter to return a 302 error code. Is there some method that we can add to our portal application which would always return a 302 error code.
See header information collected through wfetch. The 503 error is caused by the hot stand-by data center not accepting or recognizing the cookie. Both OAS datacenters are IDENTICAL in Oracle levels, application levels, web servers, portals and OS patches.
resolve hostname "170.107.183.32"WWWConnect::Connect("170.107.183.32","80")\nsource port: 2182\r\n
GET /portal/pls/portal/PORTAL.wwsec_app_priv.login?p_requested_url=%2Fportal%2Fpls%2Fportal%2FPORTAL.home&p_cancel_url=%2Fportal%2Fpls%2Fportal%2FPORTAL.home HTTP/1.1\r\n
Accept: */*\r\n
Accept-Language: en-us\r\n
Accept-Encoding: gzip, deflate\r\n
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)\r\n
Host: www.thomson-pharma.com\r\n
Connection: Keep-Alive\r\n
Cookie: ORA_WX_SESSION="10.225.8.30:80-1#2"; portal=9.0.3+en-us+us+AMERICA+3D66674E7EED0801E04400144F41424E+BBAA98EEB32D58C086231A8D6CBE2E5D402D89B0E79D83A18C668BB0CA7417B4044DEA389C8B50DD37D9272A24B4753B22F29978861DE14503F8B9BEDC2014654B26A434CF074F4D8749B88610ADADF5084A90ADBF749E2A; DATACENTER=EAGAN\r\n
\r\n
HTTP/1.1 503 Service Unavailable\r\n
Cache-Control: private\r\n
Content-Type: text/html\r\n
Set-Cookie: ORA_WX_SESSION="10.237.138.33:80-1#2"\r\n
Set-Cookie: portal=; expires=Wednesday, 27-Dec-95 05:29:10 GMT; path=/\r\n
Connection: Keep-Alive\r\n
Keep-Alive: timeout=5, max=999\r\n
Server: Oracle-Application-Server-10g/10.1.2.0.2 Oracle-HTTP-Server OracleAS-Web-Cache-10g/10.1.2.0.2 (N;ecid=208440262161,0)\r\n
Content-Length: 710\r\n
Date: Fri, 26 Oct 2007 14:58:07 GMT\r\n
\r\n
Thanks -JohnHi John,
This question is probably more appropriate in one of the Portal forums, but perhaps you can take a look at the information in section C.5 Configuring the Portal Session Cookie in Appendix C of the Portal Configuration guide.
Here is a link: http://download.oracle.com/docs/cd/B14099_19/portal.1014/b19305/cg_app_c.htm#sthref1907
Regards,
Peter -
Hello,
My BSP inside an iView is located in the xRPM content. What I now try to achieve is, to hand over the chosen project-id from the portal to the BSP - iView.
request->get_cookies provides me with the cookie "sap-appcontext", which I think contains the portal session-id. Since BSP has it's own session-id, I somehow have to get the session - content of the portal, where I hope, the chosen project-id is stored.
Am I on the right way?
I would appreciate any help or suggestions.
Thanks in advance.
Daniel<i>How can I register such an event inside xRPM-content without modifying the standard-source? Or how can I find out, if there's an event fired I could use?</i>
I see no real easy way. I have never seen the source code of xRPM, and know no developers inhouse to ask directly. Effectively portal eventing is just JavaScript code. To see if xRPM supports any events, why not look at the outputted HTML. Look for anything to do with EPCM, or search for events.
<i>It's hard to understand, why it's not possible to access session-information of the portal from a BSP started in the same page...</i>
What exactly session information do you wish to know. From my understanding, you have a BSP running inside the portal. Inside this BSP application you wish to know something. I assume not exactly session ids, but some other information from the portal. Maybe this helps us.
At the low level of HTML is might be easier to understand. The portal renders the HTML page, and then starts the BSP inside an <iframe>. The BSP does not know anything about the surrounding environment. Of course you could use JavaScript to walk up the dom (document.parent) and look at things inside the other frames. But keep in mind you are in the browser, and not on the portal server, not in the ABAP stack (where BSP is). So you can only look at rendered code. And this can (and will) change per SP.
At the end of the day it is all plain HTML in your browser, and this are what sets your limitations.
brian -
How to find the invalid form session in oracle Apps
Oracle Apps R12
Hai All
How to find the invalid form session in oracle Apps R12 and How to Kill the that.
Thanks & Regards
Srikkanth.MHi,
Please refer to these docs (for 11i and R12).
How to Kill Inactive Sessions Based on the Information in the Monitor User Form [ID 103516.1]
Script: How To Identify The apps User Using The O/S PID For Forms Users In 11i [ID 185762.1]
Thanks,
Hussein -
Authentication Fault: Invalid User Session Token
Hi,
I am trying to protect a call to third party webservices using OWSM and OAM. I followed the steps mentioned in Oracle Web Services Manager
Deployment Guide to integrate OAM in OWSM, but not able to make any break through. I am getting following error if I test my web service using OWSM's inbuilt test tool:
<SOAP-ENV:Envelope
xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
<SOAP-ENV:Body>
<SOAP-ENV:Fault>
<faultcode
xmlns:p="http://schemas.oblix.com/ws/2003/08/Faults">p:Client.AuthorizationFault</faultcode>
<faultstring>Authentication Fault: Invalid User Session Token</faultstring>
null</SOAP-ENV:Fault>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
In gateway.log file, I get following oneliner message:
security.SimpleXMLCredsExtractor - SimpleXMLCredsExtractor failed to Extract creds.
I am using standalone OWSM installation.
Installed OAM SDK on the same machine of OWSM.
Added OAM SDK libraries into OWSM's path.
Please advise as I have already wasted 3-4 weeks into it.
.. Paresh
Edited by: user10301925 on Sep 29, 2009 2:24 AM
Edited by: user10301925 on Sep 29, 2009 2:24 AMHi,
Yes, I have registered the service in OWSM and calling that service through OWSM testing tool only...
Following is the request message:
<?xml version="1.0" encoding="UTF-8" ?>
- <soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
- <soap:Header>
- <wsse:Security env:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:env="http://schemas.xmlsoap.org/soap/envelope/">
- <wsse:UsernameToken xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
<wsse:Username>owsmuser</wsse:Username>
<wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">welcome11</wsse:Password>
</wsse:UsernameToken>
</wsse:Security>
</soap:Header>
- <soap:Body xmlns:ns1="http://service/">
<ns1:getDateTime />
</soap:Body>
</soap:Envelope>
Please advise.
.. Paresh -
Hello all!
I am trying to log-on to my portal with two different users parallel.
Example:
1. Open Internet Explorer -> Portal -> Logon as Administrator
2. Open Internet Explorer once again (NOT String-N) -> Portal -> Logon as another user
The problem is, that if I am opening the second Internet Explorer, he automatically logs-on as the Administrator. He is using the first portal session.
I also tried this with the moziall firefox. Same problem.
Does anybody know how to solve this problem?
Thank you in advance.
Best regards, Patrick.Hi Patrick,
Logon with the admininstrator and open the <u><b>personalize</b></u> option in the masthead.
Check the option <u><b>WorkProtect Mode</b></u> and ensure that the option <u><b>Use default portal setting</b></u> is selected.
Thanks,
Trikanth -
Portal Session Timeout and Logon Ticket Timeout
Hi All,
Can anyone give me answers to the following:
- If my Portal session times out, but my logon ticket is still valid, will I lose my session data?
- Is there any way of determining the size of a users session information in memory (or the size of all user sessions in memory). I can see in the Monitoring service in Visual Admin the number of sessions but not their individual or total size.
I'm using EP7.
Cheers,
SteveHi,
the Logon Ticket is only used for SSO between the portal and the integrated system. Your session data is stored in the session. If the session times out or gets closed, the session data is lost.
br,
Tobias -
Hi all!
Is it possible to get the IPortalComponentRequest details in a webdynpro application. I don't want to pass data through the Application Parameters in the Portal.
In short, Can I read directly from the Portal Session.
Best regards,
AndreasIt seem that you do not add necessary libraries to your project.
If you are creating a Development Component, add reference to DC SAP-J2EE/com.sap.security.api and select the only public part in this DC.
If you are creating stand-alone WD project open Project Properties -> Java Build Path and add external jar:
<path-to-nw>eclipse\plugins\com.sap.tc.ap\comp\SAP-JEE\DCs\sap.com\com.sap.security.api.sda\_comp\gen\default\public\default\lib\java\com.sap.security.api.jar
This is a built-time support for security classes.
For runtime, also add a reference to classes at runtime. Open Project Properties -> WebDynpro References -> Libraries and add line com.sap.security.api.sda
Disclamer: I'm not sure regarding latest item. If it doesn't work, try to add instead Interface Reference to security_api
Regards,
VS -
Hi,
I want to increase the portal session timeout to 2hrs. We have 2 Portal server which are load balanced. The configuration is as below:
Portal Version: 10.3.0.337003
.NET Version: 2.0
OS: Win 2003 Server
Database : Oracle 11g
IIS:6.0
On both the server I have edited the session time out parameter corresponding to the file as mentioned below:
Portalconfig.xml :
<setting name="BrowserLoginTokenExpiration">
<value xsi:type="xsd:integer">120</value>
</setting>
BEA Web.config
<sessionState cookieless="false" timeout="120" />
.NET Web.Config
<sessionState timeout="120" />
But still the we are not able to achive 2 hrs of session timeout. Do we have to make entry in .NET machine.config? Please let me know if thier is any other file where changes is required?
Also in lower environment, we have our portal installed on .NET 2.0 framework ( only one instance of portal server ), we are able to achive 2Hrs of session time out by modifying the state management session time out value ( default website-> properties->asp.net tab->edit configuration->state management tab)
Please help me!!
Edited by: Oracle WCI on Oct 10, 2011 1:43 PMAs per the documents share by oracle support..only place in WCI 10gr3 (10.3.0.1) and IIS where we set timeout value is State Management tab (default website->portal ->properties->asp.net->edit configuration-state management)..we have this valye set to 2Hrs (120 min) on both the portal server ( load balanced)..but still portal is getting time out after 1 hrs..I am not sure which external factore is limiting this to 1 hrs..
both portal server are load balanced and IWA is implemented...
Any light on the external factor line SSO setting, Load balanced ..etc will be higly appriciated..Please help!! -
Portal Session Timeout Setting
There is a JServ session and a portal session. I know how to control session timeout and session clean up frequency in JServ - that's in zone.properties. But, I dont know how to set timeout for portal session, i.e., I'd like to have the user be forced to login again when he has been idle for 15 mins - and only if he has been idle. Jserv session settings are not sufficient for this because Portal has it's own session that must time out.
How to set this timeout value (I'm using my own provider which has a timeout setting in zone.properties and includes a bunch of JSP portlets)? Also, is there a clean up thread for which the frequency has to be set?I've contacted metalink weeks ago, and this is NOW, a know bug...
Incredible... Oracle just DO NOT TEST their products... Even a simple SESSION timeout do not work. Also, if I click back after "I log In and Log out" ... Session still up without have to login again!
BUG 2442268 -
Hi everybody,
I have a question about portal session timeout. Now we have a javascript for session timeout in Masthead iview, which can increase the time for the active user. It uses EPCM to rase the event. But our page has four iveiws, and there is a iview form that use the javascript to submit the request, and don't refresh the whole page, so it can't call our session timeout javascript to increase the time.
Whether we can call the javascript from other iviews? Or do we have other ways to do the session timeout judge and increase the time by user's activity in sap portal ?
ThanksHi,
Try to subscribe to EPCM events on all navigations in your code, which will in turn update the timer
EPCM.subscribeEvent("urn:com.sapportals:navigation", "Navigate", pop);
EPCM.subscribeEvent("urn:com.foo.bar.myapp", "myEvent", pop);
You can also call the update timer method (in masthead) from your I view form code using AJAX, which will be more simpler.
Regards,
Santhosh -
Portal session not being terminated. browser "unload" event
This line of code is in the portallauncher.default and eventually causes the problem:
EPCM.subscribeEvent("urn:com.sapportals.portal:browser", "unload", releaseProducerSessions);
releaseProducerSessions eventually calls a portal component
WSRPSessionRelease.. which is causing the problem.
When we upgraded from EP 6.0 to NW 2004, users started recieving the Netweaver Login Screen when they logged out and logged back in, in the same browser. We think this error occurs because NW 2004 implements Web Services Remote Portal functionality.
We are using SiteMinder as a third party session management tool.
What we found was that the Siteminder session was being killed but the Portal session was not. Therefore, when users logged back in they would see the generic Netweaver Login Screen, and they could actually just hit "enter" and continue to the portal.
A successful logoff, users clicked the logoff button, the DSM terminator was being called, thus killing the portal session, then a form was submitted redirecting the users the the siteminder loggoff page, which logs the users off siteminder.
When the logoff failed, we found that after the DSM Terminator was called
and before the page was being redirected, a portal component
(WSRPSessionRelease) was being called, which in turn, RECREATED the portal session. So the user never actually gets logged off from the portal.
We found that the WSRPSessionRelease component is set to
a "browser" "unload" event when the portallauncher.default component is first loaded. This is the same component that is being called when the user clicks the "X" to force close the browser.
Not everytime is the WSRPSessionRelase component being called before the redirect to the siteminder logg off page. Sometimes this component is called after the redirect, and we find that this is a successful loggoff.
The component is:
irj/servlet/prt/portal/prtroot/com.sap.portal.wsrp.coreconsumer.WSRPSessionReleaseHello Michael,
The 'log off' issue is a known issue with Portal since EP 6
Had faced similar issue and SAP suggests to redirect the 'log off' link to another non-SAP site...like your company intranet site.
This will help the session to break.
There are 1-2 SAP Notes on this as well.
Hope this helps.
Regards,
Ritu -
Portal session not being terminated
When we upgraded from EP 6.0 to NW 2004, users started recieving the
Netweaver Login Screen when they logged out and logged back in, in the
same browser. We think this error occurs because NW 2004 implements Web
Services Remote Portal functionality.
We are using SiteMinder as a third party session management tool.
What we found was that the Siteminder session was being killed but the
Portal session was not. Therefore, when users logged back in they would
see the generic Netweaver Login Screen, and they could actually just
hit "enter" and continue to the portal.
A successful logoff, users clicked the logoff button, the DSM terminator
was being called, thus killing the portal session, then a form was
submitted redirecting the users the the siteminder loggoff page, which
logs the users off siteminder.
When the logoff failed, we found that after the DSM Terminator was called
and before the page was being redirected, a portal component
(WSRPSessionRelease) was being called, which in turn, recreated the
portal session. So the user never actually gets logged off from the
portal.
We found that the WSRPSessionRelease component is set to
a "browser" "unload" event when the portallauncher.default component is
first loaded. This is the same component that is being called when the
user clicks the "X" to force close the browser.
Not everytime is the WSRPSessionRelase component being called before the
redirect to the siteminder logg off page. Sometimes this component is
called after the redirect, and we find that this is a successful loggoff.
The component is:
irj/servlet/prt/portal/prtroot/com.sap.portal.wsrp.coreconsumer.WSRPSessio
nReleaseHi Michael, we are facing the same error. Have you found a solution?
Thanks in advance and best regards
Maybe you are looking for
-
Need help with k8n neo2 platinum
I've just installed a new k8n neo2 platinum s939 board with a venice core 3200+ cpu the htt is 2000 and multiplier 10x. I've gone to the core cell menu and set the htt to 4x (seemed to be this at default) and the max mem clock at 166 (more about this
-
Good Evening! I want to have a formatted search in the remarks of the outgoing payment to be the Invoice Document Number + the remarks of the invoice being paid (both if outgoing payment is charged to customer and vendor) Example Outgoing payment is
-
Function not found when package name exists with same name as schema name
Hi all, any help would be appreciated :) I found an issue with pl/sql resolving a functions location when the db has a package name with the same as the db schema name. My example: -- arbitrary test function, not in any package create or replace FUNC
-
I need to download Digital Editions for Pocket PC ( Windows Mobile 2003 second ed.), but at the moment I can only connect my Mac Powerbook to the net. I then plan to transfer it to my PDA. I have installed Digital Editions on the powerbook and it wor
-
External A/V message pops up when opening FCP
It says: Unable to locate the following external devices: Apple FireWire NTSC (720 x 480) I know this means that it can't find the tape deck (which is what I'm using) but I don't really understand why. (I just want to mention the fact that I am using