Jdeveloper 10g security using jazn
Hello,
in my adf 10g application I am using JDeveloper 10.1.3.2
I need to secure my application, after using custom log-in module and html form page to authenticate the users using a database procedure the user should be redirected to the page he requested.
It works fine, Except for one case that is : when I try to access any page ,I am forwarded to the log-in form ,wait for the current session(anonymous session) to timeout (set my application to timeout after 1 minute for testing purpose) ,after the timeout interval I submit my credentials then I should get redirected to the requested page. instead I am faced with page not found.
Note:in the production environment the time out is set to 15 minute.
this is my understandiong of the authentication process- correct me if I am mistaken:
<ol>
<li>request a certain page.</li>
<li> if there is no JSessionID for authenticated session then:
<ul>
<li>create an anonymous session .</li>
<li>store the requested page url in the session.</li>
<li> forward the request to the log-in form.</li>
<li> set a header for a cookie in the response that contain the anonymous session id.</li>
<li>the user submit credentials through the page -the request will now have id of the anonymous session. </li>
<li> authenticate the user through submitted values.</li>
<li>if credentials are valid then forward to the requested page url which is saved in the anonymous session</li>
</ul>
</li>
</ol>
but since the session timed out a new anonymous session will be created but this one will not have the requested page url which causes the error.
so, is there any way to specify a default page (my main page) that all users will be redirected to upon successful log-in regardless of the requested page?
Hi,
you can use a servlet filter to detect if a session has expired. Upon first access, check if the session is authenticated, if it is not then you do whatever needs to be done. If the session is authenticated and the request doesn't contain a custom session key (indicating that a previously created session is used) you perform a redirect to your home page. Make sure hat once the redirect to your home page happens you set the custom session flag so that successive requests are not redirected
Frank
Similar Messages
-
2nd Post : Security using JAZN-DATA.xml vs OID ?
Hi All,
From what I read, we can implement JAZN security either with JAZN-DATA.xml
or OID. The question is :
1) In term of security, what are the benefits of using OID compared to use
JAZN-Data.xml ?
2) If we do not have OID (because we only use IAS SE, not EE), so we can
only use JAZN-Data.xml, is it secure / reliable enough for production ?
Thank you for your help,
xtantoXtanto,
1) In term of security, what are the benefits of using OID compared to use
JAZN-Data.xml ?
- Security policies that work across application server instances and that are the same for all applications
- Central user management
- Integration with Identity Management for enterprise wide security management
2) If we do not have OID (because we only use IAS SE, not EE), so we can
only use JAZN-Data.xml, is it secure / reliable enough for production ?
- Sure
Frank -
I tried to configure JDeveloper 10g to use the ClearCase versioning tool and received the following message:
Warning: A supported ClearCase version has not been detected in your system environment path.
I checked the PATH env and ClearCase is there.
The JDev Help docs state that ClearCase 2002/4.0 is supported. Our Rational suite is 2003.
I'd like to know if the final release of JDev 10g will support the 2003 version. This is critical, we are planning to upgrade to JDev10g to take advantage of new features and we are not able to use Rational 2002 anymore, mainly because Rational now only supports the 2003 suite.
We'd like to know what's planned for 10g regarding this issue.
Thanks a lot !
Juarez Junior
System Analyst - SCPJ2/SCWCD/SCBCD
Unisys Global OutsourcingBrian - you are right. I was able to create a workarea inside a ClearCase view, and immediately JDeveloper began offering an option to add objects to version control. I still get the "Warning" every time I start up JDeveloper, and that is annoying, but it is only a warning and everything works anyway.
Thank you. -
Creating secure web apps in JDeveloper 10g preview
Hi all,
I am trying to set up a secure web application and test it within JDeveloper 10g preview. So far, I am able to set up the correct entries in web.xml and ???-oc4j-app.xml (actually had to add the role mapping manually in the last file). I am able to automotically bring up a login form, enter my username/password and get to the protected resources. What I am not able to do is the following:
1. Display an error page when the login fails (I get a generic HTTP 403 page instead of the page I specified in web.xml).
2. Enable SSL. I can set the write checkboxes, etc., but instead of displaying the login form, the browser asks me to open/save the file home.do (the protected resource). I think there is some setup that is messing, but what is it?
Any help is appreciated. Thanks.
AraSorry, I guess I shoud have made it clearer: I am using HTTP-FORM authentication and I have specified a login and error page there. Neither page is protected (i.e., their URI pattern is not specified in the servlet deployment descriptor).
I get the login page fine. I am also able to log in,provided I submit the right username/password. The problem comes when I submit an incorrect name/password. In that case, I get a generic HTTP 403 page instead of the error page I specified.
Hope this provides more clues.
Ara -
Problem in using JDeveloper 10g with JHeadstart
I am using JDeveloper 9.0.3 and jheadstart 9.0.4.5 and I would like to test jdeveloper 10g preview with JHeadstart.
So, I have downloaded the JDeveloper 10g to test it with my old application.
Having run the Jdeveloper for the first time, I realized that Jdeveloper
installed the jheadstart automatically and following message was shown in the message window :
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\PrjWizard.jar!\META-INF\jdev-ext.xml
Error: <Line 12, Column 24>: XSD-2034: (Error) Element 'description' not expected.
Error: <Line 13, Column 17>: XSD-2034: (Error) Element 'help' not expected.
Error: <Line 17, Column 27>: XSD-2034: (Error) Element 'dependency_addin' not expected.
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\JhsShare.jar!\META-INF\jdev-ext.xml
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\MvcFrameworkServiceFileViewer.jar!\META-INF\jdev-ext.xml
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\JHeadstartDesignerGenerator.jar!\META-INF\jdev-ext.xml
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\JAGLauncher.jar!\META-INF\jdev-ext.xml
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\Bc4jPropertyEditor.jar!\META-INF\jdev-ext.xml
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
E:\Software\10g\JDev10g\jdev\lib\ext\jheadstart\JASEditor.jar!\META-INF\jdev-ext.xml
Converting JDeveloper 9.0.3 extension manifest to 9.0.5
So I try to test one of my old application with this configuration. After Jdeveloper migrated my workspace and projects and business componenet
to the newer version, I run the application generator. It worked fine without any problem but after running the application, I got an error page showing
that my bc4j.xcfg is not in the path.
On the other hand, I found out that when I wanted to view my UIX pages, 2 dialog boxes appeared. The first one asked to upgrade
to UIX 2.2's new expression language syntax and the other which is on the top of the first one, showing that UIX runtime failed to render the page
with following detail :
javax.servlet.ServletException: No page broker found!
at oracle.cabo.servlet.PageBrokerHandler.handleRequest(Unknown Source)
at oracle.cabo.servlet.UIXServlet.doGet(Unknown Source)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at oracle.cuervo.share.servlet.PreviewServletContainer.handleRequest(PreviewServletContainer.java:305)
at oracle.cuervo.share.servlet.PreviewServletContainer.handleRequest(PreviewServletContainer.java:229)
at oracle.cabo.ide.addin.preview.UIXRenderThread._reallyLoad(UIXRenderThread.java:263)
at oracle.cabo.ide.addin.preview.UIXRenderThread.runImpl(UIXRenderThread.java:203)
at oracle.cabo.ide.addin.preview.BasePreviewThread.run(BasePreviewThread.java:79)
I think that I should have set some setting before use JHeadstart with JDeveloper.
Could anybody help me ?Alex,
The document Sandra referred to applies to JDeveloper 10g preview (9.0.5.0). JHeadstart 9.0.4.5 will NOT work with JDeveloper 109 production (9.0.5.1).
We plan to release a new version end of april that is compatible with 9.0.5.1. See this thread for more info: JDeveloper 10g production, status JHeadstart?
Steven Davelaar,
JHeadstart Team. -
How to use JAZN as a security provider
Hello,
I've got a J2EE application (ADF) which uses JAZN as the security mechanism. We're using BI Publisher in conjunction with this J2EE application.
How can we reuse the JAZN mechanism within BI Publisher?
Thanks in advance,
Regards Leon SmiersThen you need to get an AT&T sim card to first activate the phone(the phone should have come with an AT&T sim installed)...you can borrow one to do this, but you can't do anything with any iPhone until it is first activated.
-
Links needed for portal devlopment on oracle 10g appserver using jdeveloper
hi,
i'm relatively new to portals so wud like to hav sum knowledge of doing basing request & response stuff using jsp's as my UI while developing portlets using Jdeveloper.
If anyone could come up with tutorials about portal development on Jdeveloper.
i'm using oracle 10g AS app server(release 10.1.4) with oracle jdeveloper( version 10.1.2.0.0 build 1811).
wud like inputs on wsrp & jsr-168 compliant portletsHi,
You could try starting with the Portal Developers Guide - http://download-west.oracle.com/docs/cd/B14099_19/portal.1014/b14135/toc.htm
You should also find alot of useful info on the Portal Development page on OTN - http://www.oracle.com/technology/products/ias/portal/portlet_development_10g1014.html
Cheers,
Mick. -
MYSQL error in JDeveloper 10g using ADF Swing
I am trying to update data in mysql database. But the following error appears in JDeveloper 10g using ADF Swing
Mysql library is mysql-connector-java-3.1.12
What is the problem ? INSERT and SELECT queries do not give errors. But UPDATE has problem.
Thank you in advance.
Sony Kalkan
(oracle.jbo.DMLException) JBO-26041: Failed to post data to database during "Update": SQL Statement "UPDATE banner Banner SET imptotal=? WHERE bid=?".
----- LEVEL 1: DETAIL 0 -----
(java.sql.SQLException) You have an error in your SQL syntax near 'Banner SET imptotal=22 WHERE bid=1' at line 1After i put a jtable,navigator on the form using appmoduledatacontrol on the top-right side of the jdeveloper, i run the form. Everything goes ok listing rows of data. But the error appears when i change the value of a field on the table and updating it using navigator.
Thank you very much. -
Errors to use JSTL Tag in JDeveloper 10g
Hi, folks in JDeveloper:
I have a problem to use JSTL in JDeveloper 10g.
In jsp file: detail.jsp, I include tag library like this:
<%@ taglib uri="http://java.sun.com/jstl/core" prefix="c"%>
When I compile/run, the system complain the following errors:
Error(4): java.io.FileNotFoundException: /http:/java.sun.com/jstl/core
Error(4): Unable to load taghandler class: http://java.sun.com/jstl/core
I already put standard.jar and jstl.jar file in WEB-INF/lib directory. I use jakata-struts jstl 1.0
Anybody know how to fix that?
Many thanks.
Zhiyi Li
Project: C:\MZhongProject\WFUBMC\MESA\genelist\code\Catalog\ViewController\ViewController.jpr
C:\MZhongProject\WFUBMC\MESA\genelist\code\Catalog\ViewController\public_html\detail.jsp
Error(4): java.io.FileNotFoundException: /http:/java.sun.com/jstl/core
Error(4): Unable to load taghandler class: http://java.sun.com/jstl/core
C:\MZhongProject\WFUBMC\MESA\genelist\code\Catalog\ViewController\public_html\banner.jsp
Error(3): java.io.FileNotFoundException: /http:/java.sun.com/jstl/core
Error(3): Unable to load taghandler class: http://java.sun.com/jstl/coreUser,
You should configure the taglibs using the project->libraries option in JDev. If that doesn't help, try adding the taglib URI mappings to web.xml as detailed [url http://forum.java.sun.com/thread.jspa?threadID=650000&messageID=3823804]here
John -
About how to build dynamic maps using jdeveloper 10g and mapviewer
i follow the guidance (about how to build dynamic maps using jdeveloper 10g and oracle application server mapviewer) to write a jsp file,but error take palce ,i get information "Project: D:\jdev1012\jdev\mywork\WebMap\ViewController\ViewController.jpr
D:\jdev1012\jdev\mywork\WebMap\ViewController\public_html\WebMap.jsp
Error(12,37): cannot access class oracle.lbs.mapclient.taglib.MapViewerInitTag; file oracle\lbs\mapclient\taglib\MapViewerInitTag.class not found
Error(12,190): cannot access class oracle.lbs.mapclient.taglib.MapViewerInitTag; file oracle\lbs\mapclient\taglib\MapViewerInitTag.class not found
Error(12,102): cannot access class oracle.lbs.mapclient.taglib.MapViewerInitTag; file oracle\lbs\mapclient\taglib\MapViewerInitTag.class not found
Error(12,28): cannot access class oracle.lbs.mapclient.MapViewer; file oracle\lbs\mapclient\MapViewer.class not found
Error(12,40): cannot access class oracle.lbs.mapclient.MapViewer; file oracle\lbs\mapclient\MapViewer.class not found
Error(13,37): cannot access class oracle.lbs.mapclient.taglib.MapViewerSetParamTag; file oracle\lbs\mapclient\taglib\MapViewerSetParamTag.class not found
Error(13,198): cannot access class oracle.lbs.mapclient.taglib.MapViewerSetParamTag; file oracle\lbs\mapclient\taglib\MapViewerSetParamTag.class not found
Error(13,106): cannot access class oracle.lbs.mapclient.taglib.MapViewerSetParamTag; file oracle\lbs\mapclient\taglib\MapViewerSetParamTag.class not found
Error(14,37): cannot access class oracle.lbs.mapclient.taglib.MapViewerRunTag; file oracle\lbs\mapclient\taglib\MapViewerRunTag.class not found
Error(14,188): cannot access class oracle.lbs.mapclient.taglib.MapViewerRunTag; file oracle\lbs\mapclient\taglib\MapViewerRunTag.class not found
Error(14,101): cannot access class oracle.lbs.mapclient.taglib.MapViewerRunTag; file oracle\lbs\mapclient\taglib\MapViewerRunTag.class not found
Error(15,37): cannot access class oracle.lbs.mapclient.taglib.MapViewerGetMapURLTag; file oracle\lbs\mapclient\taglib\MapViewerGetMapURLTag.class not found
Error(15,200): cannot access class oracle.lbs.mapclient.taglib.MapViewerGetMapURLTag; file oracle\lbs\mapclient\taglib\MapViewerGetMapURLTag.class not found
Error(15,107): cannot access class oracle.lbs.mapclient.taglib.MapViewerGetMapURLTag; file oracle\lbs\mapclient\taglib\MapViewerGetMapURLTag.class not found"
can you help?
greetingsI found a lot of information in document 133682.1 on metalink.
step by step example how to deploy a JSP business component application. -
How can i build application using Jdeveloper 10g for Weblogic server 10.3
Hi,
We have a requirement where in we want to build an SOA application using Jdeveloper 10g for Weblogic Server 10.3.
Is there any way to make a connection to Weblogic Server 10.3 from JDeveloper 10g? If there is any way please share it with me.
Thanks,
Amit KumarAmit,
SOA Suite is not yet certified for WLS 10.3. You have to wait for the certification of it.
At the moment you can't install the SOA Suite on WLS 10.3 nor connect from JDev 10.1.3 to it.
--olaf -
Fail to use ODM in Jdeveloper 10g
I can build model using Jdeveloper 9301,but fail when using Jdeveloper 10g.
The error message show:
java.lang.NoSuchMethodError: oracle.jdeveloper.library.JLibraryList[] oracle.jdeveloper.library.JLibraryManager.getAllLibraryLists()
at oracle.dmt.dm4j.addin.DM4JAddIn.findLib(DM4JAddIn.java:716)
at oracle.dmt.dm4j.addin.DM4JAddIn.addDM4JLibsToProject(DM4JAddIn.java:753)
at oracle.dmt.dm4j.addin.ClassificationModelBuildAddIn.invoke(ClassificationModelBuildAddIn.java:444)
at oracle.ide.WizardManager.invokeWizard(WizardManager.java:495)
at oracle.ide.WizardManager$1.run(WizardManager.java:549)
at java.awt.event.InvocationEvent.dispatch(InvocationEvent.java:178)
at java.awt.EventQueue.dispatchEvent(EventQueue.java:449)
at java.awt.EventDispatchThread.pumpOneEventForHierarchy(EventDispatchThread.java:197)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:150)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:145)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:136)
at java.awt.EventDispatchThread.run(EventDispatchThread.java:99)
The required jar files have been copied into %JDEV_ORACLE_HOME%\lib\ext.
What should I do?Hi,
JDeveloper 10g changed the AddIn api that DM4J uses, consequently it will fail.
DM4J 9.0.4 Beta(release 2) is certified for JDeveloper 9.0.3.3. It will also work in JDeveloper 9.0.4.
The ODM Client 10g will be the proper client to use in association with JDeveloper 10g. We will announce when the 10g client will be available.
Thanks, Mark -
How to create a "pjc" using jdeveloper 10g
Hi guys
I am trying to make my first pjc (pluggable java component) using jdeveloper (default installation with Oracle developer 10g). I was following the [Jdeveloper 9 documentation||http://www.oracle.com/technetwork/developer-tools/forms/index-087743.html] from OTN and got stuck once after creating the PJC1.java
According to the documentation, the property inspector should allow me to change various properties for the newly created .java file and let me add new events with the events tab. In my case, once after I select the java item from UI, the property inspector doesn't show anything. No tabs for properties or events :O
If somebody could point me towards Oracle documentation for Jdeveloper 10g, it would grateful.
regards,
raj
Edited by: rthampi on Apr 27, 2013 8:50 PMCraigB wrote:
Oracle jDeveloper 10.1.2.1.0 was the last version the inclued the Forms PJC Wizards. All versions after this didn't include them. You can actually develop a PJC using any IDE, but I have found using the PJC Wizard to be extreamly helpful. Java is not my strongest skill and I don't do a lot of Java PJC development so I keep this version installed for when I need to work on PJCs.
Craig...Thank you Craig. We are with Oracle ERP R12 from 2009 June and almost all our legacy applications were either made a part of the ERP suite, or hosted with Weblogic server 10.3.6. As leading the development team, my biggest challenge is making the custom applications migrated to 11g forms/Reports "behave" exactly like the ERP suite.
We wanted to design a parameter screen for the reports, almost like with ERP Suite, where the parameter columns are dynamically created during runtime and the biggest challenge was to limit the MAXIMUM LENGTH for those columns, thus started our venture to find an appropriate solution. After spending almost 20 years in the field of software development, I just didn't want to copy a jar file from the web and get over with it. Instead I wanted to understand what the codes do.
Anyway, Francois was kind enough to provide the .java with his pjc blog and I created a new pjc based on this .java code :) and my objective was satisfied. If Oracle really wants to "kill" the forms/reports, I think they just should do that, instead of removing few highly sought components with so called "Newer versions"
Ridiculously the documentation library for JDeveloper 10.1.0 is empty, even though it is listed with Oracle documentation library.
Cheers guys
raj -
BPEL invocation securely from client using JAZN security not working.
HI,
We are trying to invoke the BPEL process securely from the client application using JAZN security settings, this is not working, with any credentilas or with out providing the security credentilas BPEL invocation is happening. Need the solution for this security credentials while invoking the BPEL process.
Please provide the update at the earliest. Thanks in advance. Your quick update is greatly appreciated.Hi James,
Thanks for the update.
Please find the attached docs.
Bpel.xml:
<?xml version = '1.0' encoding = 'UTF-8'?>
<BPELSuitcase>
<BPELProcess id="HelloWorld" src="HelloWorld.bpel">
<partnerLinkBindings>
<partnerLinkBinding name="client">
<property name="wsdlLocation">HelloWorld.wsdl</property>
</partnerLinkBinding>
</partnerLinkBindings>
<configurations>
<property name="role">oc4j-administrators</property>
</configurations>
</BPELProcess>
</BPELSuitcase>
orion-application.xml: folder location: C:\product1\10.1.3.1\OracleAS_1\j2ee\home\applications\orabpel\META-INF\orion-application.xml
<?xml version="1.0"?>
<orion-application xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/orion-application-10_0.xsd"
schema-major-version="10"
schema-minor-version="0" component-classification="internal-BPEL">
<connectors path="./oc4j-connectors.xml"/>
<ejb-module remote="false" path="ejb_ob_engine.jar" />
<ejb-module remote="false" path="ejb_services.jar" />
<web-module id="httpbinding" path="httpbinding.war" />
<web-module id="admin_war" path="admin_war" />
<web-module id="startup_war" path="startup_war" />
<web-module id="console_war" path="console_war" />
<persistence path="persistence" />
<principals path="principals.xml" />
<jazn provider="XML" location="../../config/system-jazn-data.xml" jaas-mode="doAsPrivileged">
<!-- <jazn-web-app auth-method="CUSTOM_AUTH"/> -->
</jazn>
<imported-shared-libraries>
<inherited-shared-libraries/>
<import-shared-library name="oracle.bpel.common" parent="api" />
<import-shared-library name="oracle.ws.client" parent="oracle.ws.jaxrpc" version="10.1.3" />
<import-shared-library name="oracle.ws.jaxrpc" />
<import-shared-library name="oracle.toplink" />
<import-shared-library name="oracle.ws.testpage" />
</imported-shared-libraries>
<log>
<file path="application.log" />
</log>
<namespace-access>
<read-access>
<namespace-resource root="">
<security-role-mapping name="oc4j-administrators">
<group name="oc4j-administrators" />
</security-role-mapping>
</namespace-resource>
</read-access>
<write-access>
<namespace-resource root="">
<security-role-mapping name="oc4j-administrators">
<group name="oc4j-administrators" />
</security-role-mapping>
</namespace-resource>
</write-access>
</namespace-access>
<security-role-mapping name="PUBLIC">
<group name="{{PUBLIC}}" />
</security-role-mapping>
</orion-application>
web.xml file: C:\product1\10.1.3.1\OracleAS_1\j2ee\home\applications\orabpel\startup\WEB-INF\web.xml
<?xml version="1.0" ?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app id="StartupWebApp_Id">
<!--servlet id="BPEL_Axis_Servlet_Id">
<servlet-name>BPEL_Axis_Servlet</servlet-name>
<display-name>BPEL Axis Servlet</display-name>
<servlet-class>com.collaxa.cube.ws.soap.axis.BPELAxisServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet-->
<servlet id="BPEL_OC4J_Servlet_Id">
<servlet-name>BPEL_OC4J_Servlet</servlet-name>
<display-name>BPEL OC4J JAX/RPC Servlet</display-name>
<description>BPEL endpoint Provider Port via oc4j jax/rpc</description>
<servlet-class>com.collaxa.cube.ws.soap.oc4j.BPELOC4JServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet id="LoaderServlet_Id">
<servlet-name>cxloader</servlet-name>
<servlet-class>com.collaxa.cube.admin.CXLoaderServlet</servlet-class>
<load-on-startup>3</load-on-startup>
</servlet>
<!--servlet-mapping id="BPEL_Axis_Servlet_Mapping_id">
<servlet-name>BPEL_Axis_Servlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping-->
<servlet-mapping id="BPEL_OC4J_Servlet_Mapping_Id">
<servlet-name>BPEL_OC4J_Servlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>Default Domain Pages</web-resource-name>
<description>These pages are only accessible by authenticated users.</description>
<url-pattern>*orabpel/default/HelloWorld/v2010_05_02__62961</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>oc4j-administrators</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>jazn.com</realm-name>
</login-config>
<security-role>
<description>BPEL Admins</description>
<role-name>oc4j-administrators</role-name>
</security-role>
<distributable/>
<resource-ref id="ResRef_BPELContainerDataSource_Id">
<res-ref-name>jdbc/BPELServerDataSource</res-ref-name>
<res-type>javax.sql.DataSource</res-type>
<res-auth>Container</res-auth>
</resource-ref>
<!--ejb-local-ref id="EjbRef_AdaptorManager_Id">
<ejb-ref-name>ejb/local/AdaptorManagerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IAdaptorManagerLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IAdaptorManagerLocalBean</local>
<ejb-link>AdaptorManagerBean</ejb-link>
</ejb-local-ref>
-->
<ejb-ref id="EjbRef_CubeFinder_Id">
<ejb-ref-name>ejb/collaxa/system/CubeFinderBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<home>com.collaxa.cube.engine.ejb.interfaces.ICubeFinderBeanHome</home>
<remote>com.collaxa.cube.engine.ejb.interfaces.ICubeFinderBean</remote>
</ejb-ref>
<ejb-ref id="EjbRef_Dispatcher_Id">
<ejb-ref-name>ejb/collaxa/system/DispatcherBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<home>com.collaxa.cube.engine.ejb.interfaces.IDispatcherBeanHome</home>
<remote>com.collaxa.cube.engine.ejb.interfaces.IDispatcherBean</remote>
</ejb-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/CubeEngineLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.ICubeEngineLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.ICubeEngineLocalBean</local>
<ejb-link>CubeEngineBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/ProcessManagerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.oracle.bpel.client.ejb.interfaces.IBPELProcessManagerLocalBeanHome</local-home>
<local>com.oracle.bpel.client.ejb.interfaces.IBPELProcessManagerLocalBean</local>
<ejb-link>ProcessManagerBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/CubeDeliveryLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.ICubeDeliveryLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.ICubeDeliveryLocalBean</local>
<ejb-link>CubeDeliveryBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/KeyGeneratorLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IKeyGeneratorLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IKeyGeneratorLocalBean</local>
<ejb-link>KeyGeneratorBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/MessageLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IMessageLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IMessageLocalBean</local>
<ejb-link>MessageBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/ServerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.oracle.bpel.client.ejb.interfaces.IServerLocalBeanHome</local-home>
<local>com.oracle.bpel.client.ejb.interfaces.IServerLocalBean</local>
<ejb-link>ServerBean</ejb-link>
</ejb-local-ref>
</web-app>
jazn.xml : C:\product1\10.1.3.1\OracleAS_1\j2ee\home\config
<?xml version = '1.0' encoding = 'UTF-8' standalone = 'yes'?>
<jazn xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-10_0.xsd" schema-major-version="10" schema-minor-version="0" provider="XML" location="./system-jazn-data.xml" default-realm="jazn.com" persistence="ALL">
<property name="custom.sso.url.login" value="/jsso/SSOLogin"/>
<property name="custom.sso.key.alias" value="{AES-128}dpvTz49oIQWnM1gZfdpZ1w=="/>
<property name="idm.token.asserter.class" value="oracle.security.jazn.sso.SSOCookieTokenAsserter"/>
<property name="idm.token.collector.class" value="oracle.security.jazn.sso.SSOCookieTokenCollector"/>
<property name="idm.token.type" value="HTTP_COOKIE"/>
<property name="idm.token.collector.cookie.1" value="ORA_OC4J_SSO"/>
<property name="custom.sso.url.logout" value="/jsso/SSOLogout"/>
<property name="idm.authentication.name" value="JavaSSO"/>
</jazn>
system-jazn-data.xml
<?xml version="1.0" encoding="UTF-8" standalone='yes'?>
<jazn-data
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-data-10_0.xsd"
schema-major-version="10"
schema-minor-version="0"
>
<!-- JAZN Realm Data -->
<jazn-realm>
<realm>
<name>jazn.com</name>
<users>
<user>
<name>Bharani</name>
<guid>99116C7155E211DFBFB59D7811B59628</guid>
<credentials>{903}26NFSvxAeBAo3nBkbvJ/e2BCD+actZzi</credentials>
</user>
</users>
<role>
<name>oc4j-administrators</name>
<display-name>OC4J Admin Role</display-name>
<description>Administrative role for OC4J</description>
<guid>8A00C8701A0511DFBF99734349FF0592</guid>
<members>
<member>
<type>user</type>
<name>oc4jadmin</name>
</member>
</members>
</role>
</roles>
</realm>
</jazn-realm>
<!-- JACC Repository Data -->
<jacc-repository>
</jacc-repository>
<jazn-policy>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/oc4j-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$modifyrealmmetadata</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.policy.RoleAdminPermission$jazn.com/*$</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.RoleAdminPermission</class>
<name>jazn.com/*</name>
</permission>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>modifyrealmmetadata</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>createrealm</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>dropuser</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>droprealm</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>subject.propagation</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/ascontrol_admin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$modifyrealmmetadata</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.policy.RoleAdminPermission$jazn.com/*$</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.RoleAdminPermission</class>
<name>jazn.com/*</name>
</permission>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>modifyrealmmetadata</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>createrealm</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>dropuser</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>droprealm</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>subject.propagation</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/oc4j-app-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/users</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>user</type>
<class>oracle.security.jazn.spi.xml.XMLRealmUser</class>
<name>jazn.com/anonymous</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/BPMSystemAdmin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.collaxa.security.ServerPermission</class>
<name>server</name>
<actions>all</actions>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/BPMDefaultDomainAdmin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.collaxa.security.DomainPermission</class>
<name>default</name>
<actions>all</actions>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>bpel_users</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<class>sun.security.acl.PrincipalImpl</class>
<name>oc4j-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>java.lang.RuntimePermission</class>
<name>setContextClassLoader</name>
</permission>
</permissions>
</grant>
</jazn-policy>
<!-- Login Module Data -->
<jazn-loginconfig>
<application>
<name>oracle.security.jazn.oc4j.CertificateAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.X509LoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.tools.Admintool</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.RealmLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.WebCoreIDSSOAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.coreid.CoreIDLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>coreid.name.attribute</name>
<value>your credential mapping variable name</value>
</option>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
<option>
<name>coreid.resource.operation</name>
<value>your oreid resource operation</value>
</option>
<option>
<name>coreid.resource.type</name>
<value>your coreid resource type</value>
</option>
<option>
<name>coreid.name.header</name>
<value>your http header name variable</value>
</option>
<option>
<name>coreid.resource.name</name>
<value>your coreid resource name</value>
</option>
<option>
<name>coreid.password.attribute</name>
<value>your password authentication variable</value>
</option>
<option>
<name>coreid.password.header</name>
<value>your http header password variable</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.wss.jaas.SAMLAuthManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.saml.SAMLLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>issuer.name.1</name>
<value>www.oracle.com</value>
</option>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.DigestAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.digest.DigestLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.JAZNUserManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.RealmLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.wss.jaas.JAASAuthManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.WSSLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
</jazn-loginconfig>
<jazn-permission-classes>
</jazn-permission-classes>
</jazn-data>
It is huge to check all these files, but for reference providing all the files for checking the security details.
Thanks for your help... -
How to use Jdeveloper 10g (10.1.3.4.0) or 11g to create J2ME apps?
I can't find any tutorials or documentation in how to do this in the current version of Jdeveloper 10g or 11g.
All I could find was the Jdeveloper Wireless Extension 9.0.5 but this doesn't work in either versions.
Also I don't want to do browser apps or I would just do the Mobile ADF, I want to do MIdlets more specifically one that will connect to a Web Service.
If any one could point me in the right direction I would greatly appreciate it!Due to improvements in network coverage and communications, the need for a truly disconnected/on device application is diminishing. If your requirements can be mostly met with an online solution, I would recommend checking out ADF Mobile in 11g that support you to create a browser application optimized for mobile browsers.
What is the scenario that you are trying to support? Feel free to reply to this thread or to me directly. There are efforts in the works, and I'd like to hear what you are trying to build.
Thanks,
Joe Huang
Maybe you are looking for
-
SRM 7.0 Web Dynpro ABAP Customization
Hi , Upgrading from SRM 5.0 to SRM 7.0 and would require customization at the Web Dynpro ABAP Component for RFx. I need to put a pop-up screen when the Buyer clicks on the "AWARD" button on the Bid Screen. Now I am not able to find the award action/e
-
Nokia Lumia 620 incoming call slide up isssue
Hi All, Many a times Its found that when I receive a call, the "Slide up" option on the screen does not work. There is no scratch guard on the screen and the screen is perfectly clean. Does any one face same kind of issue. Thanks.
-
OLAP on 11g and Materialised Views with Multiple Value-Based Hierarchies
Hello OLAPians I am trying to setup Orable BIEE to report on an OLAP cube with pre-aggregated data. As OBIEE is not able to hook into the OLAP directly i have to create an SQL cubeview. Currently i am on a 10g OLAP environment and am using the oracle
-
Hi OTN Peeps, I would like to ask, what's the difference between this two syntax. create table table_name as select * from other_table;and create table table_name as (select * from other_table);Thanks and More Power!
-
Are there any settings to directly goto the preferences page of a portlet when "edit" icon is clicked? I want to bypass the page that displays all the portlets preferences link.