Jdev11+WLS 10.3 production+anonymous role

Hi,
I have a very simple application: there is 2 public pages (View permission associated with the anonymous-role), and a bounded task flow that is protected (View perm. associated with authenticated role). These are the 2 roles what I have, I haven't touched anything else after running the ADF security wizard (with no automatic grants option). Running the application from the JDEV 11 IDE (build 5188) everything works fine: I can visit the public pages without authentication, and it asks about the credentials before viewing the protected pages. After the deployment (deploy the app. from EAR, using the HTTP admin console of the WLS) when I want to visit a public page it asks about the credentials. Do I have to migrate the credentials/policies like described here even if I have only the default roles, or what I've made wrong?
Thanks: Zsolt

You should definitely try to migrate the security policies, I think it should work then. However, when we did the policy migration according to instructions from that same link, we had to manually copy the application roles definitions to system-jazn-data.xml, and then it worked.
Pedja

Similar Messages

  • What is exactly Production support  role and responsibilities APO-DP/SNP

    hay sap gures
    please help me
    what is what is exactly Production support  role and responsibilities APO-DP/SNP
    Regarding
    suresh

    Hi,
    you can go throguh this tag,
    can any explain APO -DP/SNP production support.
    Regards
    Nagaraju

  • Calling anonymous role from html

    Hi All,
    I'm having a problem difficult to find solution.
    I have created a role and assigned anonymous user group to it. Then I've created an html and placed it inside KM and gave link - http://<host>:<port>/irj/portal/anonumous into this html.
    Now, when i directly copy the url of this html to IE, the html comes and clicking on the anonumous role link, the role opens.
    But, i have cretaed an UME user (it has everyone and authenticated user group assigned to it). Now, i'm logging into portal (http://<host>:<port>/irj/portal) with this user and going to the same html page. And, then when I click on the role link - the new window is coming with anonymous portal link but instantly it's forwarding to the html page again.
    Can you guys give me any idea why this is happening. Is it like anonymous link cannt be accessed by logging in.
    Pls help as i'm stuck into it. Any help would be appreciated....
    Best Regards,
    Sen

    Hello Sen.
    It happens because you do not provide a navigation target in your link.
    Modify your link as follows:
    http://<host>:<port>/irj/portal/anonymous?NavigationTarget=<target  iview in your anonymous role>
    Where <target  iview in your anonymous role> can be either in [ROLES|http://help.sap.com/saphelp_nw04/helpdata/en/2d/91e33edd37de63e10000000a11405a/frameset.htm] format or [Short Urls|http://help.sap.com/saphelp_nw04/helpdata/en/b3/7b8163404448e7aad7899c0b30313e/frameset.htm] format.
    Best regards,
    Aliaksandr Zhukau

  • Starting managed Servers under WLS 8.1 using Operator Role

    Hi,
    we've configured a user who is acting in the default 'Operator' role.
    He can shutdown a managed server using the admin console, but when
    trying to restart that managed server via node manager he fails with an exception.
    weblogic.management.NoAccessRuntimeException: Access not allowed for subject:
    principals=[oper, Operators], on ResourceType: Server Action: write, Target: ExpectedToRun
    According to the documentation http://edocs.bea.com/wls/docs81/secwlres/secroles.html
    this role should be allowed to start managed servers.
    -- What are we doing wrong ? --
    Cheers,
    Robert

    I believe this is a known problem, please contact BEA support for a patch.
    Thanks,
    -satya
    Robert Akolk wrote:
    Hi,
    we've configured a user who is acting in the default 'Operator' role.
    He can shutdown a managed server using the admin console, but when
    trying to restart that managed server via node manager he fails with an exception.
    weblogic.management.NoAccessRuntimeException: Access not allowed for subject:
    principals=[oper, Operators], on ResourceType: Server Action: write, Target: ExpectedToRun
    According to the documentation http://edocs.bea.com/wls/docs81/secwlres/secroles.html
    this role should be allowed to start managed servers.
    -- What are we doing wrong ? --
    Cheers,
    Robert

  • Embedding WLS in a product

    All:
    I am looking into using WLS as a servlet container for a new management product for Oracle TimesTen. I have used OC4J standalone version before. Is there an equivalent WLS version that I can embed in our management product and install along with the management product? We would like to avoid the WLS installer and do all WLS configuration from our installer.
    Thanks.
    m.p. ardhananareeswaran

    One thing that might suit your purpose is silent mode installation - if you have a separate installer for your management product, you could manually create an XML file to then feed into silent mode installation for WebLogic Server: http://download.oracle.com/docs/cd/E12840_01/common/docs103/install/start.html#wp1071763
    That being said, in all honesty you might find WebLogic Server a little heavyweight to use as an embedded servlet container. I'm not sure exactly what your requirements are, but have you considered Jetty as an alternative? (http://www.mortbay.org/jetty/) - it seems to be what most of the cool kids are using as an embedded servlet container.

  • Oracle Production Support Roles and Responsibilities

    Hi,
    I am currently working in Application Support from past 4 years and I have applied for a opening in Oracle Production Support environment and it is different from DBA.
    So far i have never worked in Oracle Production Support so i am curious to know what exactly the roles and Responsibilities for this position.
    What kind of issues comes and how to troubleshoot them?
    I actually need to understand the nature of this job in detail and few interview questions that can be asked for this position.
    Any kind of help will be appreciated.
    Thanks in Advance,
    Regards.

    Deadlock10 wrote:
    Hi,
    I am currently working in Application Support from past 4 years and I have applied for a opening in Oracle Production Support environment and it is different from DBA.
    So far i have never worked in Oracle Production Support so i am curious to know what exactly the roles and Responsibilities for this position.
    What kind of issues comes and how to troubleshoot them?
    I actually need to understand the nature of this job in detail and few interview questions that can be asked for this position.
    Any kind of help will be appreciated.
    Thanks in Advance,
    Regards.
    In addition to Joe's questions regarding if you don't know the answer, then how do you know you want the job .......
    Regarding job titles:
    "When I use a word," Humpty Dumpty said in rather a scornful tone, "it means just what I choose it to mean -- neither more nor less."
    (Lewis Carroll - Through the Looking Glass)
    And so it is with job titles.  Any given job title means only and exactly what the organization chooses it to mean -- "neither more nor less".
    Even though we work in a technical industry, not every term you see has a universal, fixed, immutable, technical meaning. Not even close.
    My first two jobs in IT were in shops that had exactly the same set of job titles for Programmers --
    - Programmer/Analyst I
    - Programmer/Analyst II
    - Programmer/Analyst III
    In one shop,  the Programmer/Analyst III was the most junior of the three.
    In the other, the Programmer/Analyst III was the most senior of the three.
    So, you tell me, what is a "Programmer/Analyst III"?  What is a "development DBA"?  What is a "production support DBA"?

  • WLS Groups and JDeveloper Enterprise Roles

    When there are roles (global, domain, etc.) in the WLS Console, they seem to not have any representation in JDeveloper. It seems that JDeveloper Enterprise Roles correspond to WLS Groups. When I add permissions in the jazn-data.xml, it is Groups that I have to grant to users in the WLS Console, not roles.
    SecurityContext.getUserRoles() also returns a list of WLS Groups assigned to given user.
    Is it some disarray in the terminology, or am I doing something wrong?

    Hi,
    The term "Enterprise Roles" match to WLS groups. Enterprise is a more genric synonym for user groups as on different servers these may have different names otherwise. Note that getUserRoles() shows the enterprise roles and the application roles a user is member of
    Frank

  • Anonymous roles

    Hey there,
    Ive been searching the forums and helpfiles for this and theres a lot written about it but i cant find a satisfying solution.
    I have a (premade) anonymous user called "anonymous". I have given him a role: "anoniem". this role has pages and iviews that have the authentication scheme "anonymous". It has entry point pages etc... But still i get the error:
    <i>No portal roles are assigned for this user</i>
    Any clues about what i've forgotten?
    Message was edited by:
            Hans Wassink

    Hello Hans,
      The role should also have anonymous authentication.
    Moreover the new user user you had created should be added to
    anonymous group. Then you would have to enter that id in UME ie
    ume.login.guest_user.uniqueids.
    Try this and do get back
    http://help.sap.com/saphelp_nw04/helpdata/en/1e/e19f58136e654d9709befa464314f2/content.htm
    Regards
    Vineeth

  • Production support role

    Hello all,
    I tried to find this information by searching this site but could not find exact anwswer i was looking for.
    I have couple of questions:
    1). In Production support job, what jobs are categorized as Level 1, Level 2 and Level 3 ....could you give some examples for each category.
    2). for external system extraction using DB connect: what does it mean "extracting data from SQL server using DB connect in a flat file format". if we use DB connect to extract from external Database woulnt the data be in a tabular format in its database...i was confused is it possible to extract it in a flat file form

    Hello all,
    I tried to find this information by searching this site but could not find exact anwswer i was looking for.
    I have couple of questions:
    1). In Production support job, what jobs are categorized as Level 1, Level 2 and Level 3 ....could you give some examples for each category.
    2). for external system extraction using DB connect: what does it mean "extracting data from SQL server using DB connect in a flat file format". if we use DB connect to extract from external Database woulnt the data be in a tabular format in its database...i was confused is it possible to extract it in a flat file form

  • Is role base security supported by WLS 5.1?

    To what extent is role based security supported by servlets under WLS 5.1?
              Declarative role based security does not seem to be supported?
              Are any of the following methods supported?
              HttpServletRequest.isUserInRole()
              HttpServletRequest.getUserPrincipal()
              If so, where are the roles declared? Where is the role/principal mapping
              done? Does getUserPrinicipal() return the principal using the WLS security
              realm?
              Thank you.
              Marko.
              

    Cool. Bonus mystery feature. I will call support.
              Thanks Winston.
              Marko.
              Winston Koh <[email protected]> wrote in message
              news:[email protected]...
              > no, i am not referring to ACL. to my knowledge, the servlet security
              > features docs do not make it into the WLS 5.1. I understand its a bit hard
              > to use the features properly without proper documentation. contact support
              > for more info
              >
              > thanx
              >
              > Winston
              > Marko Milicevic <[email protected]> wrote in message
              > news:[email protected]...
              > > The only servlet authorization mechanism I can see documented is ACL's.
              > Is
              > > this what you are referring to Winston? If so, I believe ACL are
              > different
              > > than declarative role based security. An ACL grants access to a servlet
              > for
              > > a set of principals (users and/or groups). But a role is not a
              > prinicipal.
              > > A role name is mapped to a set of principals.
              > >
              > > If you are referring to roles, can you give a URL to the documentation
              > which
              > > discusses this?
              > >
              > > Thanks Winston.
              > >
              > > Marko.
              > > .
              > >
              > > Winston Koh <[email protected]> wrote in message
              > > news:[email protected]...
              > > > both declarative and programmtic based security roles are supported by
              > WLS
              > > > 5.1.
              > > >
              > > > if you don't specify any specific security realm in the
              > > weblogic.properties
              > > > file, a default WebLogic Security realm is assumed. you could specify
              > the
              > > > group and its associated users and passwords there in the properties
              > file.
              > > > in the web.xml file associated with each web app, you could speciify
              the
              > > > security constraints for each servlet
              > > >
              > > > I would imagine when accessing a secured servlet within a web app, a
              > > client
              > > > would supply her credentials thru some sort of authentication, and
              based
              > > on
              > > > the credentials, we find out the role name from the
              weblogic.properties
              > > file
              > > > which in turn mapped to the web.xml which specify the security role
              that
              > > > could access the particular servlet. if the role matches, access to
              the
              > > > servlet is granted
              > > >
              > > > refer to WL Docs for more specific details
              > > >
              > > > thanx
              > > >
              > > > Winston
              > > > Marko Milicevic <[email protected]> wrote in message
              > > > news:[email protected]...
              > > > > To what extent is role based security supported by servlets under
              WLS
              > > 5.1?
              > > > >
              > > > > Declarative role based security does not seem to be supported?
              > > > >
              > > > > Are any of the following methods supported?
              > > > >
              > > > > HttpServletRequest.isUserInRole()
              > > > > HttpServletRequest.getUserPrincipal()
              > > > >
              > > > > If so, where are the roles declared? Where is the role/principal
              > > mapping
              > > > > done? Does getUserPrinicipal() return the principal using the WLS
              > > > security
              > > > > realm?
              > > > >
              > > > > Thank you.
              > > > >
              > > > > Marko.
              > > > > .
              > > > >
              > > > >
              > > > >
              > > >
              > > >
              > >
              > >
              >
              >
              

  • Page with user role anonymous not loading on standalone weblogic server

    Friends,
    I have gone through similar posts and still was unable to find a solution to my problem so thought of posting the problem myself
    Steps i followed
    - created a jsff page
    - created a taskflow and dropped the jsff page on it(considered option of granting anonymous role to taksflow and otherwise also)
    - created a jspx page and droped the taskflow as a region on it (the bindings are visible of the taskflow)
    -granted the anonymous role to the jspx page and checked the view box under actions
    -used the following code for page redirection from an image
    <af:goImageLink id="offerl1" targetFrame="_blank"
    destination="../cc/intRates.jspx"
    icon="/images/home/offer2.png"/>
    The page is called on click of a link and smoothly opens in the integrated weblogic environment however on standalone server it give me the following error
    From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
    10.4.2 401 Unauthorized
    Checks i made
    - Compared the EAR file jazn.xml file with the jazn.xml file in jdeveloper
    - reviewed the system-data-jazn.xml file and confirmed entries of the application roles which matched the ones in jazn.xml file
    Have been on for this issue for a while now.Would appreciate any help on this
    Edited by: user10308052 on Dec 24, 2012 4:01 AM

    Hi,
    I deployed your app to standalone and integrated servers both and I am able to navigate to the next page successfully by using the below URL:
    http://127.0.0.1:7101/NEA/faces/view1
    Please note that view1 is the view id not the jspx page name, so you should not include .jspx page when working with taskflows
    Sireesha

  • Adf security misbehaving in production environment

    Hi all,
    I am using jdev 11.1.2.2 and weblogic 10.3.6
    I have implemented adf security from based authentication in my web application and i have used sql authenticator for authentication.
    In my integrated WLS everything works fine . but in the production WLS what is happening is when the user access a Protected Page without login it navigates to the protected page instead of navigating him to the login page. In the integrated WLS this happens normally .
    Has anyone faced this issue before ? What can be wrong ?
    I have added my web.xml
    <?xml version = '1.0' encoding = 'windows-1252'?>
    <web-app xmlns="http://java.sun.com/xml/ns/javaee" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
             xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
             version="2.5">
      <context-param>
        <param-name>javax.faces.STATE_SAVING_METHOD</param-name>
        <param-value>client</param-value>
      </context-param>
      <context-param>
        <param-name>javax.faces.PARTIAL_STATE_SAVING</param-name>
        <param-value>false</param-value>
      </context-param>
    <session-config>
        <session-timeout>5</session-timeout>
      </session-config>
      <context-param>
        <description>If this parameter is true, there will be an automatic check of the modification date of your JSPs, and saved state will be discarded when JSP's change. It will also automatically check if your skinning css files have changed without you having to restart the server. This makes development easier, but adds overhead. For this reason this parameter should be set to false when your application is deployed.</description>
        <param-name>org.apache.myfaces.trinidad.CHECK_FILE_MODIFICATION</param-name>
        <param-value>false</param-value>
      </context-param>
      <context-param>
        <param-name>oracle.adf.view.rich.SUPPRESS_IDS</param-name>
        <param-value>auto</param-value>
      </context-param>
      <context-param>
        <description>Whether the 'Generated by...' comment at the bottom of ADF Faces HTML pages should contain version number information.</description>
        <param-name>oracle.adf.view.rich.versionString.HIDDEN</param-name>
        <param-value>false</param-value>
      </context-param>
      <context-param>
        <description>Security precaution to prevent clickjacking: bust frames if the ancestor window domain(protocol, host, and port) and the frame domain are different. Another options for this parameter are always and never.</description>
        <param-name>org.apache.myfaces.trinidad.security.FRAME_BUSTING</param-name>
        <param-value>differentOrigin</param-value>
      </context-param>
      <context-param>
        <param-name>javax.faces.FACELETS_VIEW_MAPPINGS</param-name>
        <param-value>*.jsf;*.xhtml</param-value>
      </context-param>
      <context-param>
        <param-name>javax.faces.FACELETS_SKIP_XML_INSTRUCTIONS</param-name>
        <param-value>true</param-value>
      </context-param>
      <context-param>
        <param-name>javax.faces.FACELETS_SKIP_COMMENTS</param-name>
        <param-value>true</param-value>
      </context-param>
      <context-param>
        <param-name>javax.faces.FACELETS_DECORATORS</param-name>
        <param-value>oracle.adfinternal.view.faces.facelets.rich.AdfTagDecorator</param-value>
      </context-param>
      <context-param>
        <param-name>javax.faces.FACELETS_RESOURCE_RESOLVER</param-name>
        <param-value>oracle.adfinternal.view.faces.facelets.rich.AdfFaceletsResourceResolver</param-value>
      </context-param>
      <filter>
        <filter-name>JpsFilter</filter-name>
        <filter-class>oracle.security.jps.ee.http.JpsFilter</filter-class>
        <init-param>
          <param-name>enable.anonymous</param-name>
          <param-value>true</param-value>
        </init-param>
        <init-param>
          <param-name>remove.anonymous.role</param-name>
          <param-value>false</param-value>
        </init-param>
      </filter>
      <filter>
        <filter-name>trinidad</filter-name>
        <filter-class>org.apache.myfaces.trinidad.webapp.TrinidadFilter</filter-class>
      </filter>
      <filter>
        <filter-name>ADFLibraryFilter</filter-name>
        <filter-class>oracle.adf.library.webapp.LibraryFilter</filter-class>
      </filter>
      <filter>
        <filter-name>adfBindings</filter-name>
        <filter-class>oracle.adf.model.servlet.ADFBindingFilter</filter-class>
      </filter>
      <filter-mapping>
        <filter-name>JpsFilter</filter-name>
        <url-pattern>/*</url-pattern>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>REQUEST</dispatcher>
        <dispatcher>INCLUDE</dispatcher>
      </filter-mapping>
      <filter-mapping>
        <filter-name>trinidad</filter-name>
        <servlet-name>Faces Servlet</servlet-name>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>REQUEST</dispatcher>
        <dispatcher>ERROR</dispatcher>
      </filter-mapping>
      <filter-mapping>
        <filter-name>ADFLibraryFilter</filter-name>
        <url-pattern>/*</url-pattern>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>REQUEST</dispatcher>
      </filter-mapping>
      <filter-mapping>
        <filter-name>adfBindings</filter-name>
        <servlet-name>Faces Servlet</servlet-name>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>REQUEST</dispatcher>
      </filter-mapping>
      <filter-mapping>
        <filter-name>adfBindings</filter-name>
        <servlet-name>adfAuthentication</servlet-name>
        <dispatcher>FORWARD</dispatcher>
        <dispatcher>REQUEST</dispatcher>
      </filter-mapping>
      <listener>
        <listener-class>oracle.adf.mbean.share.connection.ADFConnectionLifeCycleCallBack</listener-class>
      </listener>
      <listener>
        <listener-class>oracle.adf.mbean.share.config.ADFConfigLifeCycleCallBack</listener-class>
      </listener>
      <servlet>
        <servlet-name>Faces Servlet</servlet-name>
        <servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
        <load-on-startup>1</load-on-startup>
      </servlet>
      <servlet>
        <servlet-name>resources</servlet-name>
        <servlet-class>org.apache.myfaces.trinidad.webapp.ResourceServlet</servlet-class>
      </servlet>
      <servlet>
        <servlet-name>BIGRAPHSERVLET</servlet-name>
        <servlet-class>oracle.adf.view.faces.bi.webapp.GraphServlet</servlet-class>
      </servlet>
      <servlet>
        <servlet-name>BIGAUGESERVLET</servlet-name>
        <servlet-class>oracle.adf.view.faces.bi.webapp.GaugeServlet</servlet-class>
      </servlet>
      <servlet>
        <servlet-name>MapProxyServlet</servlet-name>
        <servlet-class>oracle.adf.view.faces.bi.webapp.MapProxyServlet</servlet-class>
      </servlet>
      <servlet>
        <servlet-name>adflibResources</servlet-name>
        <servlet-class>oracle.adf.library.webapp.ResourceServlet</servlet-class>
      </servlet>
      <servlet>
        <servlet-name>adfAuthentication</servlet-name>
        <servlet-class>oracle.adf.share.security.authentication.AuthenticationServlet</servlet-class>
        <load-on-startup>1</load-on-startup>
      </servlet>
      <servlet-mapping>
        <servlet-name>Faces Servlet</servlet-name>
        <url-pattern>/faces/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>resources</servlet-name>
        <url-pattern>/adf/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>resources</servlet-name>
        <url-pattern>/afr/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>BIGRAPHSERVLET</servlet-name>
        <url-pattern>/servlet/GraphServlet/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>BIGAUGESERVLET</servlet-name>
        <url-pattern>/servlet/GaugeServlet/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>MapProxyServlet</servlet-name>
        <url-pattern>/mapproxy/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>resources</servlet-name>
        <url-pattern>/bi/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>adflibResources</servlet-name>
        <url-pattern>/adflib/*</url-pattern>
      </servlet-mapping>
      <servlet-mapping>
        <servlet-name>adfAuthentication</servlet-name>
        <url-pattern>/adfAuthentication</url-pattern>
      </servlet-mapping>
      <mime-mapping>
        <extension>swf</extension>
        <mime-type>application/x-shockwave-flash</mime-type>
      </mime-mapping>
      <mime-mapping>
        <extension>amf</extension>
        <mime-type>application/x-amf</mime-type>
      </mime-mapping>
      <security-constraint>
      <web-resource-collection>
        <web-resource-name>Allowed ADF Resources</web-resource-name>
        <url-pattern>/adf/*</url-pattern>
        <url-pattern>/afr/*</url-pattern>
        <url-pattern>/bi/*</url-pattern>
      </web-resource-collection>
    </security-constraint>
      <security-constraint>
        <web-resource-collection>
          <web-resource-name>adfAuthentication</web-resource-name>
          <url-pattern>/adfAuthentication</url-pattern>
        </web-resource-collection>
        <auth-constraint>
          <role-name>valid-users</role-name>
        </auth-constraint>
      </security-constraint>
      <login-config>
        <auth-method>FORM</auth-method>
        <form-login-config>
          <form-login-page>/faces/login</form-login-page>
          <form-error-page>/faces/login</form-error-page>
        </form-login-config>
      </login-config>
      <security-role>
        <role-name>valid-users</role-name>
      </security-role>
    </web-app>Thanks,
    Rakesh

    Hi Rakesh,
    Make sure you have migrated the policy store to the production server. When Weblogic Server is running in production mode, automatic credential overwrite is not allowed. From the developer's guide:
    When the target server is configured for production mode, you typically handle the migration task outside of JDeveloper using tools like Oracle Enterprise Manager. For details about using tools outside of JDeveloper to migrate the policy store to the domain-level in a production environment, see the Oracle Containers for J2EE Security Guide. Note that Oracle WebLogic Server running in production mode does not support the overwriting of system credentials under any circumstances.http://docs.oracle.com/cd/E26098_01/web.1112/e16182/adding_security.htm#CDDGFDFH
    HTH,
    Joonas

  • Roles in Authorization Editor

    Hi,
    In JDev10.1.3, we can copy a system-jazn-data.xml to JDEV_HOME/j2ee/home/config, so the roles in the file can be listed in Authorization Editor when select edit Authorization on a jsf page. But in JDev11, I did the same, but the roles listed in the Authorization Editor are always two: anonymous-role and authenticated-role. I expect to see the roles I defined in system-jazn-data.xml.
    Can anybody give me some hints?
    Thanks,
    Yushui

    Hi,
    in JDeveloper the roles are not read from JDEV_HOME/j2ee/home/config when running the embedded OC4J (this is also not the case in the embedded version of JDeveloper 10.1.3.3)
    Only if you start OC4J stand alone then JDEV_HOME/j2ee/home/config is read. To define roles, use Tools-->Embedded OC4J (or J2EE Server settings) to define them
    Frank

  • Cant move domain from devlopment mode to production mode

    We have tried to move the domain from dev mode to produciton mode but experiencing following exception. we have been using the domain in dev mode for quite long never had issue, applications used to work fine. Soon after we tried to change to production mode, all application stopped working. Is it due to the additional security that comes with prod mode? In past, we have anonymous lookup enable for domain security. Is it the issue? And should we have cross domain security enable? we have inter domain communication via t3 i.e WLX->t3->WLS and tomcat->t3>WLS.
    ault (self-tuning)'> <<anonymous>> <> <> <1276584731722> <BEA-010051> <EJB Exception occurred during invocation from home: com.fares.useraccess.ej
    b.UserAccessService_wrjm2t_HomeImpl@2235afd threw exception: java.lang.NoClassDefFoundError: com/fares/common/lookup/Admin
    java.lang.NoClassDefFoundError: com/fares/common/lookup/Admin
    at com.fares.activity.ifc.model.ActivityInfo.<init>(ActivityInfo.java:79)
    at com.fares.activity.impl.util.ActivityLog.setSuccess(ActivityLog.java:146)
    at com.fares.useraccess.impl.process.UserAccessProcess.activityWriting(UserAccessProcess.java:65)
    at com.fares.useraccess.impl.process.UserAccessProcess.userLogout(UserAccessProcess.java:239)
    at com.fares.useraccess.ejb.UserAccessBean.userLogout(UserAccessBean.java:57)
    at com.fares.useraccess.ejb.UserAccessService_wrjm2t_EOImpl.userLogout(UserAccessService_wrjm2t_EOImpl.java:1385)
    at com.fares.useraccess.ejb.UserAccessService_wrjm2t_EOImpl_WLSkel.invoke(Unknown Source)
    Regards
    RR

    The error there shows that can't find a library, this usually is because a Variable such as LD_LIBRARY_PATH or CLASSPATH could be wrong or miss as well that a new or JDK version has been installed into the server and that's why the class is missed.
    What is the procedure you use to change from Dev to Prod?
    greetings

  • Login Page coming for Anonymous User

    Hi All,
    we have configured anonymous user for our portal. Created a role for anonymous access - added pages and iViews under that. All the iViews and pages are modified with authentication scheme property to Anonymous.
    Now when we access the portal with the url http://host:port/irj its showing the login box in the top part of the page and in the bottom part its showing the anonymous role which we created.
    Let me tell you what we have done...
    Created role, iViews for Anonymous role, set the authentication property to 'Anonymous'.
    In Visual Admin-> Server-> Services-> UME Provider set the variable ume.login.anonymous_user.mode to 1.
    Variable ume.login.basicauthentication to 1.
    Variable ume.login.guest_user.uniqueids to Guest.
    Then we have updated the index.html file under <drive>:\usr\sap\<SID>\<instance_number>\j2ee\cluster\serverX\apps\sap.com\irj\servlet_jsp\irj\root .. we changed
    <b><body onload="location.replace('portal' + document.location.search)"></body></b>
    to <b><body onload="location.replace('servlet/prt/portal/prtroot/com.sap.portal.navigation.portallauncher.anonymous' + document.location.search)"></body></b>
    But now when a guest user accesses the portal http://host:port/irj it gived the strange screen (logon + content page) as I described earlier.
    Please let us know where are we missing...
    thanks & regards,
    Shubhadip

    Hi,
    1 .  I have created a iView and set the authentication scheme anonymous.
    2.  Also I created a role and added the iview to a role.
    3. The role has only 1 iview.  The entry pt is yes  for the iview
    4.  The role has permissions of end user for anonymous user.
    5 I checked the masthead iview also.. It aslo has authentication scheme anonymous
    When I try accessing the iView  in the form <http/https>://<server>:<port>/irj/servlet/prt/portal/prtroot/pcd!3aportal_content!2fmyfolder!2fmyiView
    I am able to view it without any login..
    But when the url is accessed <http/https>://<server>:<port>/irj/portal/anonymous
    I see a login page in the Detailed navigation..
    Please help me solve this problem ..
    Thanks,
    Preeti

Maybe you are looking for

  • Why can't I print out a year view calendar?

    I was thrilled to find we now have a Year-View in iCal with OSX Lion, but now I find I cannot print it out. Every year, I like to print a few year-view calendars to keep in different places. Right now, I do not have any calendar program that will let

  • Can't send email from my 4s

    Since my last update (4s) just a few weeks ago, i can no longer send emails from iCloud and aol account.  I received the following message: Cannot Send Mail, The user name or password for "SMTP: ****@[email protected]" is incorrect.  The same goes fo

  • Where did my adobe printer go ??

    I have a Vista machine presenty but have used this program with other computers.  The error I am receiving is called StartDocPrinter. I have read about this on several forums but no one has listed a cure.. I cannot remove this printer.. Can anyone he

  • Accessing websites running on non-standard ports or with self-signed ssl certs?

    I've got some sites running using self-signed ssl's that also run on non-standard ports. Firefox home doesn't seem to open these pages it just sits there with the spinner loading and a blank screen... Anyone else noticed this?

  • Dns details for muse

    can I have muse's DNS details so I can get my host to forward to the muse hosting site. the site will be for www.thebeachbreakbar.com thansk Kim