Item Level Security, Portal 10.1.4, Search

I'm working on a project that uses ILS (item level security) in portal 10.1.4.
I need a custom search portlet that retrieves all the items that can be viewed by a certain group.
Explicitly, if there are 3 items: I1, I2, I3, and 3 groups G1, G2, G3, having the view permissions distributed like below:
for I1 - any user from G1 and G2
for I2 - any user from G2,
for I3 - any user from G1, G3
I want to be able to select all the items for a certain group - say G1 will retrieve I1 and I3 ; or G2 retrieves I1 and I2;
Can this be done in a custom jpdk portlet ? If not, is there any other alternative to achieve this ?
Thank you,
Claudiu

Well the URl is relative to the initial path and as a result you do not get the fully qualified URL.
This is done in this way to help create human readable URL's and thus should not be tied to a machine name and port and could be just xyz.com/.....

Similar Messages

  • Search itens with item level security enabled

    Hi,
    I have a page that "item level security" enabled.
    I am doing a select to get itens...
    How can I get only itens that current user have view permission?
    select wv.title,
    wvt.numbervalue,
    wv.description,
    '/pls/portal/url/ITEM/'||wv.guid link
    from portal.wwv_things wv,
    portal.wwv_thingattributes wvt
    where wv.siteid = 271
    and wv.itemtype = 'basefile'
    and wv.subtype = 498194
    and wv.active = 1
    and wv.language = 'us'
    and wv.id = wvt.masterthingid
    and wv.siteid = wvt.siteid
    and wvt.attributeid = 1354
    and wvt.attribute_siteid = 0
    and wvt.valuetype = 'number'
    order by wv.title;

    I found the view. Thanks
    portal.WWSBR_ALL_ITEMS

  • Item Level Security not working with Tabs

    I've Portal 9.0.2.2.22
    This issue is with Item Level Security with Tabs. Here is what I've have:
    Page Group: MyPagegroup (Privs: portal => Manage All)
    Page: MyTestPage (Privs: portal => Manage All,
    testUser => View)
    There is a tab called MyTab on page MyTestPage which has two items (simple images) image1 and image2. The tab's access privs have been set NOT to inherit from the page. The public check box has not been checked for the tab. I've specifically assigned access privs to the tab.
    Now here are the two scenarios that I'm having problem with:
    1) MyTab (portal => Manage All, testUser => view)
    image1 (ILS enabled: portal => Manage All)
    image2 (ILS enabled: portal => Manage All,
    testUser => View)
    When logged in as "testUser", I still see both the images on MyTab although image2 doesn't have view priv to testUser. My expected result is to see just image2 on the tab.
    2) MyTab (portal => Manage All)
    image1 (ILS enabled: portal => Manage All,
    testUser => View)
    image2 (ILS enabled: portal => Manage All)
    When logged in as "testUser", I still see NO images on MyTab although image1 has view privs to testUser. I would expect to see image1 on the tab.
    Question: In both the above cases, the tab privs seem to be dictating what the user sees regardless of what the item level privs are set to. Is this normal behavior or a bug? If a bug, is there a patch? Is there any way so that even after setting the tab privs, I still have finer control of what the user can access through item level privs?
    If I don't put the items under a tab, then things work as expected.
    thanks
    Lalit Agarwal
    Vienna, VA
    703-521-5200 x3610

    This is a known problem with the 9.0.2 release - fixed in 9.0.2.6.
    Regards,
    Jerry
    PortalPM

  • Setting up item level security access

    Hello,
    I am new to Oracle Instant Portal and I'm trying to figure out how to set up item level security on a particular tab page. Can anyone give step by step instructions on how to make it work?
    So, say that I have a tab page called HR. On that HR page, I have 3 items. For item1 and item2, I want user1 to have view access to these only, and for user2 they could have view access to item3 only.
    I checked the option in the HR page's Page Access settings to Enable Item Level Security, saved the changes, and even cleared the cache, but it doesn't seem to give me any new functionality where I could specify that for item1 and item2, only user1 should have access to it, and for item3, only user2 should access it.
    Can someone please help?
    Thanks!

    Please disregard--I figured out how to do this:
    1. When you are editing the page, you must click on the "Edit Item" icon next to the item.
    2. Then click on the Access tab in the upper right.
    3. Select Define Item Level Access Privileges and click Apply.
    4. In the Grant Access section that now appears just below, select the user id you want to grant access to the item and then click Add.

  • How programmatically "enable" the Page to have Item level security

    Some body known how do we programmatically "enable" the Page to have
    Item level security. - analogous to checking the box in the Page edit mode for "Enable item level security"

    Hi, I only know portal.wwsbr_api.enable_ils_for_item.....
    You can perform actions on multiple objects simultaneously.
    Navigator > Page Groups(TAB) > PageGroup > Page > actions(link)
    Click on actions link and in LOV, select "Enable ILS".
    Hope this help.

  • Edit Folder link always is visible if Item Level Security is enabled

    Hi,
    When Item Level Security is enabled in a folder, it show the 'Edit Folder' link, instead if the user is not authenticated.
    Does anybody know how to remove this link???
    Thanks.

    We to have experienced this behavior. Is this a bug?
    The Edit Link generated does not allow the user to "edit" any items, but shows the Administration link. This is not a good thing. This makes using Item Level Security very difficult, from the standpoint of User Interface and confusion.
    We are looking into creating a portlet to dynamically generate an "Edit Folder" link to replace the current one. However, we have doubts this will work.
    Dean
    - Solaris
    - Portal 3.0.9.8.2
    - 8.1.7.3
    (Awaiting Release 2!)

  • Access Tab not showing for item level security

    I have enabled item level security for the portal page I am working on, but the access tab for the items is not showing.
    I have come accross exactly the same problem on this forum and the advice was:
    Hi try the following :
    go to page properties
    set the item level security
    clear the cache
    clear your browser cache
    it should work "
    I have tried all that, closed and opened a browser but the access tab is still not showing. This is a 10.1.4 portal on LINUX. Starnge enough I have a testing environment installed on my Windows XP (AS 10.2.0.2 not upgarded to 10.1.4) and I don't have any issues with item security access tab at all.
    I would appreciate any clues.
    Regards,
    Anna

    There should be two icons shown for each item when you put the page in Edit mode - Edit and Actions. Click on the Actions icon and "Access" should be one of the links in the list of actions (like hide, expire, delete, move, etc.)

  • WWSBR_ALL_ITEMS and item level security - BUG?

    Hi,
    View WWSBR_ALL_ITEMS does not seems to work correctly when using item level security on a folder.
    If I add an item to a folder with item level security enabled and do NOT define any special access settings for this item, ie the item setting is "Inherit Parent Folder Access Privileges", then the view does not return the item.
    Has anyone else run into this? Is it a bug?
    Any help appreciated.
    Portal 3.0.9.8.0
    Oracle8i Enterprise Edition 8.1.7.0 - 64 bit
    IBM AIX 4.3.3

    I've been informed that patch 3.0.9.8.2 will solve the problem. Sorry about the double post.

  • How to use Item Level security

    I am working on portal 9.0.2.6.18.
    I have a folder with 1000 items. I want to grant groupA
    access to 997 items and
    (Group B,GroupA) access to 3 items.
    How do i do this.
    Here is what i tried:
    1.enabled item level security on folder
    2.granted folder level access to groupA and groupB
    3.Changed access of 997 items to grant access to GroupA
    4.Did nothing to the 3 items which i wanted to give access to GroupA,GroupB
    Is there a better way of achieving this?
    I am not really comfortable granting folder level access to groupB, because if i miss overwriting privileges of an item (in step 3), then groupB will have access to that item. I would love to change just 3 items because they are the exception.
    How is this feature supposed to be used?
    Thanks
    Harish

    Martin,
    Thanks for the reply. I just cited 1000 items folder as an example. We have various complex combination of security requirements for folders and items. So creating sub-folders for each combination will not work for me.
    Everytime the security requirements change we have to move the items around, which can confuse users. And sometimes we have to create sub-folders to workaround the item-level security problems even when there is no logical business classification to a set of items.
    Harish

  • Categories and Item Level Security

    Hi,
    We have implemented item level security on our pages. We also use Categories so that a user can retrieve all content that falls into a particular category easily e.g. address books or Policies and Procedures.
    The desire is that if a user clicks on a category and an item the user normally would not see because of item level security on the page where the content is located, then the user should not see that item among all the other items returned by the category search.
    What is happening is either that a link to the item is returned among all the other items in the category or we get an access error for the entire category.
    We have tried playing with the settings on the template used for the category and with the access on the category result page but have not found the magic bullet yet.
    One other interesting behavior in the situation where the restricted item is visible in the returned category search is that clicking on the Page link (instead of showing the page group the item is on, we show the link of the page the item is on)it takes us to the page and the display link for the secured item is now visible followed by what looks like a "smudge" type of character. The item's link can then be clicked and the item's content is now available to the user.
    Thanks in advance for any help,
    Peter

    Tabs don't work with Item Level Security in 9.0.2. Fixed in the upcoming 9.0.2.6 release.
    Regards,
    Jerry

  • Enabling item level security

    Hi,
    We are using portal version 3.0.9. We are trying to implement security at the item level and have super-user rights. According to <http://portalstudio.oracle.com/help/sblgrapi.htm>, if you scroll all the way to the bottom it says that "You cannot enable item level security for items in the Portlet Repository content area." I am assuming that this Portlet Repository content area is referring to the Administer->Display Portlet Repository ->Seeded Providers -> Portal Content Area -> Content Areas
    The items that we want to secure are currently in the folder called "other providers" but I can also access the items from within the portal repository content areas.
    So far I have been specifying access to the page, the category, the folder, and the item, and when I log in as a view only user I still can see things that I shouldn't. Perhaps, it is because it is somehow still in the repository?
    I think that I am missing a step somewhere. I have cleared inherit privileges and enable item level security wherever I could find that option while editing. Has anyone successfully added security to even a folder?
    Thanks in advance.
    Best Regards,
    Lindsay

    Lindsay,
    I'm not sure if this is what you are looking for, but you can secure access to portlets that are shown in the portlet repository
    through the Access tab that is available when you "Edit" the portlet entry in the Edit Folder view of the Portlet repository.
    [ol]
    [li]Go to the portlet repository
    [li]Navigate to the appropriate folder
    [li]Edit the folder
    [li]Click on the Edit link beside the portlet of interest
    [li]Click on the Access tab
    [li]Turn on access control and specify privileges on the portlet.
    [ol]
    See if this is what you are looking for, or let me know if I'm off base.

  • Menu item level security

    How can I enable item level security on a menu?
    I would like different users to see only parts of a menu.
    Portal 3.0.8.9.2
    I unchecked the "Inherit from Component" checkbox and can grant security to the menu as a whole, but not to a submenu or item. Is this possible?
    Thanks,
    Gary

    Hi Gary
    Although we are using version 3.0.9.8.1 I don't think that this makes the difference. For me there is a certain contradiction between your basic question and your actual answer.
    My conclusion: In the matter of fact you didn't uncheck the 'inherit from component' checkbox in the develop tab, but the 'inherit from application' one in the access tab,
    what is wrong and doesn't help to solve your problem!
    Find the 'inherit from component' checkbox - by editing the top level menu - near checkboxes like 'inherit from component' under COMMON OPTIONS like e.g. 'Show Timing' or 'Log Activity' and uncheck it. The SECURITY 'multi select box' is shown immediately.
    Hope this helps!
    Thanks
    Peter

  • Item Level Security problem

    Hi forum,
    I have a page group in portal 10.1.4 say pagegroupA with several sub pages beneath it. Item level security (ILS) has been enabled for the page group and the option display page to public is checked. I am trying to enable ILS such that if userA posts to any page in this pagegroup, he should be able to see only his content. Similarly, userB should be able to see only the content that he posts. UserA is a member of groupA and userB is a member of groupB. I am using the enable_ils_for_item and add_item_ils_privileges API to achieve this.
    <p>
    Wwsbr_Api.enable_ils_for_item( p_master_item_id => masterthingid, p_caid => pagegroupA_ID, p_folder_id => someSubPageInPagegroupA_ID );
    portal.Wwsbr_Api.add_item_ils_privileges(
                                                                p_master_item_id => masterthingid,
                                                                p_caid => pagegroupA_ID,
                                                                p_folder_id => someSubPageInPagegroupA_ID,
                                                                p_itemview_group =>arrayOfgroupA_ID );
    This seems to work in that when the user logs out of portal, the item is not displayed to the public. However, when userA logs in, he can see items posted by userB and vice versa (userB can see userA's items). Am I missing something either in the code, page group configuration or user setup?
    Thanks

    I recommend you using the wwsbr_api only for managing content (that includes enabling the ILS for a page). But for assigning privileges to items, pages, whatever, I recommend using wwsec_api (set_user_acl, set_group_acl, etc). It is more reliable.
    PS: This would be a good post for a more specific forum: Portal Developer Kit (PDK)

  • Item level security not available to accounts with manage content?

    Though I'd post this here before trying metalink.
    Environment: App Server Portal 9.0.4 (10g) on Win200
    The scenario:
    I have set up a page with one item area. This is set to be a portlet on another page and act as a message board.
    I wish to set up a group of users to maintain this message board, but restrict their access any further.
    Setting a user up with 'Manage Content' on the Page properties almost does this. It allows them to Enter/Edit/Move or delete items but pretty much no more which is exactly the level of access I require.
    What it doesn't allow, when they add or edit an Item, is the ability to change Access permissions.
    The page has 'item level security' ticked, and a user with higher 'Manage' access can set access permissions on items, for example only allowing a certain group viewing an item, but it also allows them to manipulate the page which I do not want to permit.
    Is it possible that 'Manage Content' level users can also set access on items?
    Thanks.

    Resolved, it appears that access can be set after item creation using the edit. a little quirk.
    Also I was trying to set access on an item created by the 'manage' user, which was beyond the 'manage content' users scope, and not a practical situation.

  • Item Level Security - 9.0.2.2.22.

    Is there a problem with setting item level security? My scenario is one multitabbed page within a page group. My settings are shown below. I want some items on the page to be seen by the public and some to only be seen by certain groups - basically welcome messages, one for employees, one for customers.
    Page Group properties - nothing to set for item level security.
    Page Level properties - On Access tab set both 'Display Page to Public Users' and 'Enable Item Level Security'
    On 'Welcome' Tab properties for above page (not page group) - On Advanced Options tab set 'Inherit Access Settings from the Page' and 'Display tab to public users'.
    On subtab 'About Us' on 'Welcome' tab properties - same as above, i.e. On Advanced Options tab set 'Inherit Access Settings from the Page' and 'Display tab to public users'.
    On 'About Us' subtab region 1 - an item region - there is no access settings to make.
    On text item added to region 1 - On Access tab set 'Define Item Level Access Privileges' then added my EMP group; view item privilege. Only other grantee is PORTAL.
    The text item still shows up for public (without login) and everyone else that logs in; that is when no one signs in! Item Level Security settings seem to have no affect whatsoever. What did I set incorrectly?

    isn't there just a bugfix available?
    9025 isn't out yet - when will it be available ?
    markus

Maybe you are looking for

  • Executing Procedure in SQL SERVER and Storing the results in Oracle 10g

    Hello, I am trying execute SQL SERVER procedure from Oracle 10g and store the results in a oracle table. When I tried executing the procedure i am getting errors. I am using Oracle Heteroeneous Services. Steps I followed. 1. Created ODBC DSN on Oracl

  • Bridge won't open JPG files in Photoshop CS3

    I changed my preferences to remove the check-box "prefer Adobe camera RAW for Jpeg and TIFF files" , restarted Bridge and tried to open a JPEG from bridge directly into photoshop. But double clicking on the image in bridge opened "paint". So I change

  • All choises in Dashboard prompt

    Hi All, I have created an date prompt and in default section i put the repository varibale(which contains the current month).All choises box is uncheked. But still when i go to my dashboard by default i will get all choises in drop down... any sugges

  • Firefox 6 doesnt display correctly on my 42" widescreen at resolution 1600x1024

    I recently bought a 42" widescreen and set my resolution to its native 1600x1024 and now the page is shrunk in the center of the screen making it very difficult to read. I dont have any issues with Internet Explorer or any of my other programs. all m

  • In what order are these actions being done?

    In this code I haven't used a loader but JUST to let the user realize that something is going on, when user clicks on "next" and a huge class in going to function, I firstly show a "loadingScreen" that simply says LOADING and then call that huge func