JPS-config.xml changes

Similar Messages

• SEVERE: java.io.FileNotFoundException: ./config/jps-config.xml (No such file or directory)

  I am installing OIM/OAM in a cluster configuration using release 11.1.1.7.
  I looked at the EDG here:
  http://docs.oracle.com/cd/E28280_01/core.1111/e12035/toc.htm
  And its pointing me to the 11.1.1.5 version
  http://docs.oracle.com/cd/E21764_01/core.1111/e12035/toc.htm
  So that is the guide I am following.
  I am at this step:
  18.1.5.2 Integrating Oracle Access Manager with Oracle Identity Manager by Using idmConfigTool
  http://docs.oracle.com/cd/E21764_01/core.1111/e12035/wiring.htm#sthref356
  When I run the config tool I get SEVERE messages like this one:
  SEVERE: java.io.FileNotFoundException: ./config/jps-config.xml (No such file or directory)
  Any suggestions on how to fix this ?
  Please note that I can see jps-config.xml under the domain configuration in the fmwconfig directory.
  Here is the complete output
  Enter sso access gate password :
  Enter sso keystore jks password :
  Enter sso global passphrase :
  Enter mds db schema password :
  Enter idstore admin password :
  Enter admin server user password :
  ********* Seeding OAM Passwds in OIM *********
  Completed loading user inputs for - CSF Config
  Completed loading user inputs for - Dogwood Admin WLS
  Connecting to t3://admin.mycompany.com:7001
  Connection to domain runtime mbean server established
  Seeding credential :SSOAccessKey
  Seeding credential :SSOGlobalPP
  Seeding credential :SSOKeystoreKey
  ********* Activating OAM Notifications *********
  Completed loading user inputs for - MDS DB Config
  Jun 6, 2013 1:46:05 PM oracle.mds
  NOTIFICATION: PManager instance is created without multitenancy support as JVM flag "oracle.multitenant.enabled" is not set to enable multitenancy support.
  Jun 6, 2013 1:46:06 PM oracle.security.jps.internal.config.xml.XmlConfigurationFactory initDefaultConfiguration
  SEVERE: java.io.FileNotFoundException: ./config/jps-config.xml (No such file or directory)
  Jun 6, 2013 1:46:06 PM oracle.mds
  NOTIFICATION: Auditing is disabled for component MDS.
  Initialized MDS resources
  Jun 6, 2013 1:46:06 PM oracle.mds
  NOTIFICATION: PManager instance is created without multitenancy support as JVM flag "oracle.multitenant.enabled" is not set to enable multitenancy support.
  Jun 6, 2013 1:46:06 PM oracle.security.jps.internal.config.xml.XmlConfigurationFactory initDefaultConfiguration
  SEVERE: java.io.FileNotFoundException: ./config/jps-config.xml (No such file or directory)
  Jun 6, 2013 1:46:06 PM oracle.mds
  NOTIFICATION: Auditing is disabled for component MDS.
  Jun 6, 2013 1:46:07 PM oracle.mds
  NOTIFICATION: transfer operation started.
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: transfer is completed. Total number of documents successfully processed : 1, total number of documents failed : 0.
  Upload to DB completed
  Releasing all resources
  Notifications activated.
  ********* Seeding OAM Config in OIM *********
  Completed loading user inputs for - OAM Access Config
  Validated input values
  Initialized MDS resources
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: PManager instance is created without multitenancy support as JVM flag "oracle.multitenant.enabled" is not set to enable multitenancy support.
  Jun 6, 2013 1:46:08 PM oracle.security.jps.internal.config.xml.XmlConfigurationFactory initDefaultConfiguration
  SEVERE: java.io.FileNotFoundException: ./config/jps-config.xml (No such file or directory)
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: Auditing is disabled for component MDS.
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: transfer operation started.
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: transfer is completed. Total number of documents successfully processed : 1, total number of documents failed : 0.
  Download from DB completed
  Releasing all resources
  Updated /oracle/product/fmw/Oracle_IAM/server/oamMetadata/db/oim-config.xml
  Initialized MDS resources
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: PManager instance is created without multitenancy support as JVM flag "oracle.multitenant.enabled" is not set to enable multitenancy support.
  Jun 6, 2013 1:46:08 PM oracle.security.jps.internal.config.xml.XmlConfigurationFactory initDefaultConfiguration
  SEVERE: java.io.FileNotFoundException: ./config/jps-config.xml (No such file or directory)
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: Auditing is disabled for component MDS.
  Jun 6, 2013 1:46:08 PM oracle.mds
  NOTIFICATION: transfer operation started.
  Jun 6, 2013 1:46:09 PM oracle.mds
  NOTIFICATION: transfer is completed. Total number of documents successfully processed : 1, total number of documents failed : 0.
  Upload to DB completed
  Releasing all resources
  OAM configuration seeded. Please restart oim server.
  ********* Configuring Authenticators in OIM WLS *********
  Completed loading user inputs for - LDAP connection info
  Connecting to t3://admin.mycompany.com:7001
  Connection to domain runtime mbean server established
  Starting edit session
  Edit session started
  Connected to security realm.
  Validating provider configuration
  Validated desired authentication providers
  OAM Asserter already exists in the security realm
  OAMIDAsserter is already configured to support 11g webgate
  OIM Signature Authenticator already exists in the security realm
  A type of LDAP Authenticator already exists in the security realm. Please create authenticator manually if different LDAP provider is required.
  Control flags for authenticators set sucessfully
  Reordering of authenticators done sucessfully
  Saving the transaction
  Transaction saved
  Activating the changes
  Changes Activated. Edit session ended.
  Connection closed sucessfully
  The tool has completed its operation. Details have been logged to automation.log

  i found this task :
  JDev 11.1.1.1.0 + ADF+ BC4J application on Tomcat6

• How to configure CustomLoginModule in jps-config.xml

  Hi,
  How can we configure a Custom Login Module using jps-config.xml, as we do not want to use weblogic custom authentication provider as it needs application jars(which we require fo authenticating the user) to be kept in weblogic classpath.
  Is there any documentation on how to configure and use Custom Login Modules in jps-config.xml, I tried to create a LoginModule and specify it in jps-config.xml, but
  My LoginModule is not getting called.
  Jdev version: 11.1.1.3.0
  Server : weblogic
  my jps-config.xml is
                <?xml version = '1.0' encoding = 'Cp1252'?>
  <jpsConfig xmlns="http://xmlns.oracle.com/oracleas/schema/11/jps-config-11_1.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://xmlns.oracle.com/oracleas/schema/11/jps-config-11_1.xsd">
     <property value="doasprivileged" name="oracle.security.jps.jaas.mode"/>
     <property value="custom.provider" name="true"/>
     <propertySets/>
     <serviceProviders>
        <serviceProvider class="oracle.security.jps.internal.credstore.ssp.SspCredentialStoreProvider" name="credstore.provider" type="CREDENTIAL_STORE">
           <description>Credential Store Service Provider</description>
        </serviceProvider>
        <serviceProvider class="oracle.security.jps.internal.login.jaas.JaasLoginServiceProvider" name="jaas.login.provider" type="LOGIN">
           <description>
              Login Module Service Provider
           </description>
        </serviceProvider>
        <serviceProvider class="oracle.security.jps.internal.idstore.xml.XmlIdentityStoreProvider" name="idstore.xml.provider" type="IDENTITY_STORE">
           <description>XML-based IdStore Provider</description>
        </serviceProvider>
        <serviceProvider class="oracle.security.jps.internal.policystore.xml.XmlPolicyStoreProvider" name="policystore.xml.provider" type="POLICY_STORE">
           <description>XML-based PolicyStore Provider</description>
        </serviceProvider>
     </serviceProviders>
     <serviceInstances>
        <serviceInstance provider="credstore.provider" name="credstore">
           <property value="./" name="location"/>
        </serviceInstance>
        <serviceInstance provider="jaas.login.provider" name="CustomLoginModule">
           <property value="SUFFICIENT" name="jaas.login.controlFlag"/>
           <property value="SEVERE" name="log.level"/>
           <property value="org.calwin.view.CustomLoginModule" name="loginModuleClassName"/>
        </serviceInstance>
        <serviceInstance provider="idstore.xml.provider" name="idstore.xml">
           <property value="./jazn-data.xml" name="location"/>
           <property value="OBFUSCATE" name="jps.xml.idstore.pwd.encoding"/>
           <property value="jps" name="subscriber.name"/>
        </serviceInstance>
        <serviceInstance provider="policystore.xml.provider" name="policystore.xml">
           <property value="./jazn-data.xml" name="location"/>
        </serviceInstance>
     </serviceInstances>
     <jpsContexts default="TestMultiDatasource">
        <jpsContext name="TestMultiDatasource">
           <serviceInstanceRef ref="idstore.xml"/>
           <serviceInstanceRef ref="credstore"/>
           <serviceInstanceRef ref="policystore.xml"/>
        </jpsContext>
        <jpsContext name="anonymous">
           <serviceInstanceRef ref="credstore"/>
        </jpsContext>
     </jpsContexts>
  </jpsConfig>My Login Module Class:
  package org.calwin.view;
  import java.io.IOException;
  import java.security.Principal;
  import java.util.Map;
  import javax.security.auth.Subject;
  import javax.security.auth.callback.Callback;
  import javax.security.auth.callback.CallbackHandler;
  import javax.security.auth.callback.NameCallback;
  import javax.security.auth.callback.PasswordCallback;
  import javax.security.auth.callback.UnsupportedCallbackException;
  import javax.security.auth.login.LoginException;
  import javax.security.auth.spi.LoginModule;
  import javax.servlet.http.HttpServletRequest;
  import weblogic.security.auth.callback.ContextHandlerCallback;
  import weblogic.security.principal.WLSUserImpl;
  import weblogic.security.service.ContextHandler;
  public class CustomLoginModule
      implements LoginModule
    // initial state
    private Subject subject;
    private CallbackHandler callbackHandler;
    // the authentication status
    private boolean succeeded = false;
    private boolean commitSucceeded = false;
    // username and password
    private String username;
    private String password;
    // testUser's SamplePrincipal
    private Principal userPrincipal;
     * Initialize this <code>LoginModule</code>.
     * <p>
     * @param subject the <code>Subject</code> to be authenticated. <p>
     * @param callbackHandler a <code>CallbackHandler</code> for communicating
     *      with the end user (prompting for user names and
     *      passwords, for example). <p>
     * @param sharedState shared <code>LoginModule</code> state. <p>
     * @param options options specified in the login
     *      <code>Configuration</code> for this particular
     *      <code>LoginModule</code>.
    public void initialize(Subject subject, CallbackHandler callbackHandler,
                           Map sharedState, Map options) {
      this.subject = subject;
      this.callbackHandler = callbackHandler;
     * Authenticate the user by prompting for a user name and password.
     * <p>
     * @return true in all cases since this <code>LoginModule</code>
     *    should not be ignored.
     * @exception FailedLoginException if the authentication fails. <p>
     * @exception LoginException if this <code>LoginModule</code>
     *    is unable to perform the authentication.
    public boolean login() throws LoginException {
      if (callbackHandler == null)
        throw new LoginException("Error: no CallbackHandler available " +
                                 "to garner authentication information from the user");
      Callback[] callbacks = new Callback[3];
      callbacks[0] = new NameCallback("user name: ");
      callbacks[1] = new PasswordCallback("password: ", false);
      callbacks[2]=new ContextHandlerCallback();
        try {
          callbackHandler.handle(callbacks);
        } catch (UnsupportedCallbackException uce) {
            throw new LoginException("Callback Not Supported");
        } catch (IOException ioe) {
            throw new LoginException("I/O Failed");
        username = ((NameCallback)callbacks[0]).getName();
        char[] tmpPassword = ((PasswordCallback)callbacks[1]).getPassword();
        if (tmpPassword == null) {
          tmpPassword = new char[0];
        password = new String(tmpPassword);
        ((PasswordCallback)callbacks[1]).clearPassword();
      // verify the username/password
      boolean usernameCorrect = true;
      boolean passwordCorrect = true;
      succeeded = true;
      return true;
     * <p> This method is called if the LoginContext's
     * overall authentication succeeded
     * (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules
     * succeeded).
     * <p> If this LoginModule's own authentication attempt
     * succeeded (checked by retrieving the private state saved by the
     * <code>login</code> method), then this method associates a
     * <code>SamplePrincipal</code>
     * with the <code>Subject</code> located in the
     * <code>LoginModule</code>.  If this LoginModule's own
     * authentication attempted failed, then this method removes
     * any state that was originally saved.
     * <p>
     * @exception LoginException if the commit fails.
     * @return true if this LoginModule's own login and commit
     *    attempts succeeded, or false otherwise.
    public boolean commit() throws LoginException {
      if (succeeded == false) {
        return false;
      } else {
        userPrincipal = new WLSUserImpl(username);
        if (!subject.getPrincipals().contains(userPrincipal))
          subject.getPrincipals().add(userPrincipal);
        // in any case, clean out state
        username = null;
        password = null;
        commitSucceeded = true;
        return true;
     * <p> This method is called if the LoginContext's
     * overall authentication failed.
     * (the relevant REQUIRED, REQUISITE, SUFFICIENT and OPTIONAL LoginModules
     * did not succeed).
     * <p> If this LoginModule's own authentication attempt
     * succeeded (checked by retrieving the private state saved by the
     * <code>login</code> and <code>commit</code> methods),
     * then this method cleans up any state that was originally saved.
     * <p>
     * @exception LoginException if the abort fails.
     * @return false if this LoginModule's own login and/or commit attempts
     *    failed, and true otherwise.
    public boolean abort() throws LoginException {
      if (succeeded == false) {
        return false;
      } else if (succeeded == true && commitSucceeded == false) {
        // login succeeded but overall authentication failed
        succeeded = false;
        username = null;
        if (password != null) {
          password = null;
        userPrincipal = null;
      } else {
        // overall authentication succeeded and commit succeeded,
        // but someone else's commit failed
        logout();
      return true;
     * Logout the user.
     * <p> This method removes the <code>SamplePrincipal</code>
     * that was added by the <code>commit</code> method.
     * <p>
     * @exception LoginException if the logout fails.
     * @return true in all cases since this <code>LoginModule</code>
     *          should not be ignored.
    public boolean logout() throws LoginException {
      subject.getPrincipals().remove(userPrincipal);
      succeeded = false;
      succeeded = commitSucceeded;
      username = null;
      if (password != null) {
        password = null;
      userPrincipal = null;
      return true;
  }My adf-config.xml:
  <sec:adf-security-child xmlns="http://xmlns.oracle.com/adf/security/config">
      <CredentialStoreContext credentialStoreClass="oracle.adf.share.security.providers.jps.CSFCredentialStore"
                              credentialStoreLocation="../../src/META-INF/jps-config.xml"/>
      <sec:JaasSecurityContext initialContextFactoryClass="oracle.adf.share.security.JAASInitialContextFactory"
                               jaasProviderClass="oracle.adf.share.security.providers.jps.JpsSecurityContext"
                               authorizationEnforce="true"
                               authenticationRequire="true"/>
    </sec:adf-security-child>My jazn.xml:
  <?xml version = '1.0' encoding = 'UTF-8' standalone = 'yes'?>
  <jazn-data xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
             xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-data-11_0.xsd">
    <jazn-realm default="jazn.com">
      <realm>
        <name>jazn.com</name>
      </realm>
    </jazn-realm>
  </jazn-data>My web.xml:
  <filter>
      <filter-name>JpsFilter</filter-name>
      <filter-class>oracle.security.jps.ee.http.JpsFilter</filter-class>
      <init-param>
        <param-name>enable.anonymous</param-name>
        <param-value>true</param-value>
      </init-param>
      <init-param>
        <param-name>remove.anonymous.role</param-name>
        <param-value>false</param-value>
      </init-param>
    </filter>
  <servlet>
      <servlet-name>adfAuthentication</servlet-name>
      <servlet-class>oracle.adf.share.security.authentication.AuthenticationServlet</servlet-class>
      <load-on-startup>1</load-on-startup>
    </servlet>
  <servlet-mapping>
      <servlet-name>adfAuthentication</servlet-name>
      <url-pattern>/adfAuthentication</url-pattern>
    </servlet-mapping>
  <security-constraint>
      <web-resource-collection>
        <web-resource-name>adfAuthentication</web-resource-name>
        <url-pattern>/adfAuthentication</url-pattern>
      </web-resource-collection>
      <auth-constraint>
        <role-name>valid-users</role-name>
      </auth-constraint>
    </security-constraint>
    <login-config>
      <auth-method>FORM</auth-method>
      <form-login-config>
        <form-login-page>/login.html</form-login-page>
        <form-error-page>/error.html</form-error-page>
      </form-login-config>
    </login-config>
    <security-role>
      <role-name>valid-users</role-name>
    </security-role>weblogic.xml:
    <security-role-assignment>
      <role-name>valid-users</role-name>
      <principal-name>users</principal-name>
    </security-role-assignment>Regards,
  Saikiran

  Ours is not a Desktop Application, but we want to handle Authentication(Which authenticates the userid and password by making a Tuxedo call) and add the Principal to Subject in session, so that ADF Authorization and securityContext can be used as is,
  but doing this with Custom Authentication Provider in weblogic needs me to have a lot of Tuxedo Service related jars in weblogic/system classpath which i feel is not right thing to do, as the same jars are required in application also, which means i will have the jars in class path twice and i need to deploy the jars to both places everytime there is any change.
  Is there any way by which i can set Authenticated principal to Subject in the created session from within Application?

• JPS-01514: The default context is missing in jps-config.xml.

  when we will get the below erros what is missing
  weblogic.security.SecurityInitializationException: The dynamic loading of the OPSS java security policy provider class oracle.security.jps.internal.policystore.JavaPolicyProvider failed due to problem inside OPSS java security policy provider.
  JPS-01514: The default context is missing in jps-config.xml.
  Caused By: oracle.security.jps.service.credstore.CredStoreException: JPS-01050: Opening of wallet based credential store failed. Reason java.io.IOException: PKI-02002: Unable to open the wallet. Check password

  Check the jps-config.xml file. This has the configuration for security services. Seems like the default context is missing. The default context is essential for connecting to the policy store. If not, you can use a named context to connect to the policy store/idstore etc.

• Details of properties in jps-config.xml

  Hi All,
  I'm trying to integrate UCM with webcenter. I have added thebelow mentioned service instance in jps-config.xml. But still the status of JpsUserProvider is down.
  <serviceInstance name="idstore.oid" provider="idstore.ldap.provider">
  <property name="subscriber.name" value="dc=oracle,dc=com"/>
  <property name="idstore.type" value="OID"/>
  <property name="security.principal.key" value="ldap.credential"/>
  <property name="security.principal.alias" value="JPS"/>
  <property name="ldap.url" value="ldap://gmldap-stage.oracle.com:389"/>
  <extendedProperty>
  <name>user.search.bases</name>
  <values>
  <value>dc=oracle,dc=com</value>
  </values>
  </extendedProperty>
  <extendedProperty>
  <name>group.search.bases</name>
  <values>
  <value>cn=groups,dc=oracle,dc=com</value>
  </values>
  </extendedProperty>
  *<property name="username.attr" value="uid"/>*
  *<property name="user.login.attr" value="uid"/>*
  *<property name="groupname.attr" value="cn"/>*
  </serviceInstance>
  Can someone please explain me the meaning of each property in the service instance? Are the properties in bold mandatory? What are their use?

  Here are the errors i'm getting:
  Error: The Provider 'JpsUserProvider' is in error. JPS IdentityStore not configured correctly. [ Details ]
  An error has occurred. The stack trace below shows more information.
  !csProviderError,JpsUserProvider!csJpsIdentityStoreNotConfigured
  intradoc.common.ServiceException: !csJpsIdentityStoreNotConfigured
       at idc.provider.jps.JpsUserProvider.testConnection(JpsUserProvider.java:691)
       at intradoc.server.proxy.ProviderStateUtils.testConnection(ProviderStateUtils.java:63)
       at intradoc.server.ProviderManagerService.testProvider(ProviderManagerService.java:120)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at intradoc.common.IdcMethodHolder.invokeMethod(ClassHelperUtils.java:617)
       at intradoc.common.ClassHelperUtils.executeMethodEx(ClassHelperUtils.java:279)
       at intradoc.common.ClassHelperUtils.executeMethod(ClassHelperUtils.java:264)
       at intradoc.server.Service.doCodeEx(Service.java:507)
       at intradoc.server.Service.doCode(Service.java:472)
       at intradoc.server.ServiceRequestImplementor.doAction(ServiceRequestImplementor.java:1360)
       at intradoc.server.Service.doAction(Service.java:452)
       at intradoc.server.ServiceRequestImplementor.doActions(ServiceRequestImplementor.java:1201)
       at intradoc.server.Service.doActions(Service.java:447)
       at intradoc.server.ServiceRequestImplementor.executeActions(ServiceRequestImplementor.java:1121)
       at intradoc.server.Service.executeActions(Service.java:433)
       at intradoc.server.ServiceRequestImplementor.doRequest(ServiceRequestImplementor.java:635)
       at intradoc.server.Service.doRequest(Service.java:1707)
       at intradoc.server.ServiceManager.processCommand(ServiceManager.java:359)
       at intradoc.server.IdcServerThread.run(IdcServerThread.java:197)
  Error: Failed to add context /idc/jsp. Web application exist. Exception type is 'java.lang.Throwable'
  Error: Failed to add context /idc/jsp. Web application exist.
  Error: Failed to add context /idc/groups/public. Web application exist. Exception type is 'java.lang.Throwable'.
  Error: Failed to add context /idc/groups/public. Web application exist.

• Jps-config.xml (No such file or directory)

  Hi Experts,
  I created a Java proxy for a web service, deployed on a separate server (not WLS), with no ws policy. When I used POJO client, the invocation of the web service worked fine. But when I put the same invocation code in a concurrent program in EBS R12.2 (running on WLS), I got error when running the program:
  oracle.security.jps.internal.config.xml.XmlConfigurationFactory initDefaultConfiguration
  SEVERE: java.io.FileNotFoundException: /u01/R122_EBS/inst/apps/xxxx/logs/appl/conc/log/./config/jps-config.xml (No such file or directory)
  I didn't use any JPS related feature in the proxy client. I don't know why it asks for jps-config.xml in EBS 12.2.
  Any input is appreciated.
  Thanks.

  Thanks Hussein!
  I saw this from the note ID 972284.1:
  Output:-
  30/11/2009 6:27:24 PM oracle.security.jps.internal.config.xml.XmlConfigurationFactory initDefaultConfiguration
  SEVERE: java.io.FileNotFoundException: D:\JDeveloper\Middleware_JDev11.1.1.2\jdeveloper\jdev\mywork\SimpleOWSM_Application\Proxy\.\config\jps-config.xml (The system cannot find the path specified)
  INFO: WSM-09004 Component auditing cannot be initialized.
  INFO: WSMAgent is initialized for category=security, function=agent.function.client, topologyNodePath=TopologyRoot/Service/null/SimpleWSPort, isJ2EE=false
  INFO: empty.bindings
  INFO: empty.bindings
  INFO: Recipient Alias property not configured in the policy. Defaulting to encrypting with signers certificate.
  Hello >> Peter Pan
  Looks like it's the output when successful. Does that mean the SEVERE FileNotFound Exception can be ignored? If the jps-config.xml is not used in the example, why the runtime keeps looking for it?
  Appreciate your help very much.

• UCM-VCR Adapter in WLP error while publishing content-config.xml changes

  Hi,
  I am getting this error when i publish my changes to server for UCM-VCR Adapter in WLP 10.3.2.
  weblogic.application.ModuleException: Error reading descriptor: META-INF/content
  -config.xml for app module ucmEAR
  at weblogic.application.config.DefaultModule.parseDescriptorBean(Default
  Module.java:483)
  at weblogic.application.config.DefaultModule.prepare(DefaultModule.java:
  282)
  at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(Modu
  leListenerInvoker.java:199)
  at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(Depl
  oymentCallbackFlow.java:391)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineD
  river.java:83)
  Truncated. see log file for complete stacktrace
  Caused By: weblogic.descriptor.BeanAlreadyExistsException: Bean already exists:
  "com.bea.content.config.RepositoryPropertyBeanImpl@d0b61789(/[UCMRepository]/Rep
  ositoryProperties[ContentServerAdminUser])"
  at weblogic.descriptor.internal.ReferenceManager.registerBean(ReferenceM
  anager.java:227)
  at com.bea.content.config.ContentStoreBeanImpl.setRepositoryProperties(U
  nknown Source)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.
  java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces
  sorImpl.java:25)
  Truncated. see log file for complete stacktrace
  >
  i also add oracle-ucm-spi-app-lib.ear in weblogic-application.xml's WebLogic Shared Library.
  please find the related files.
  content-config.xml:
  <?xml version="1.0" encoding="UTF-8"?>
  <content-config xmlns="http://www.bea.com/ns/portal/90/content-config">
  <!-- This is a default content repository applications can use.
  The IDE should copy this to META-INF/content-config.xml of the
  application.
  This repository is not required for WLP services, so you can remove
  it or change it as needed. -->
  <content-store>
            <name>UCMRepository</name>
            <class-name>com.oracle.content.spi.ucm.RepositoryImpl
            </class-name>
            <username>wlpApp</username>
            <repository-property>
                 <description>Hostname on which the UCM Content Server is running
            </description>
                 <name>ContentServerHostname</name>
                 <value>172.23.210.16</value>
            </repository-property>
            <repository-property>
                 <description>Port on which the UCM Content Server is running (on host named above)
                 </description>
                 <name>ContentServerPort</name>
                 <value>4444</value>
            </repository-property>
            <repository-property>
                 <description>Content Server uname in Admin role, for
                 security checks
                 </description>
                 <name>ContentServerAdminUser</name>
                 <value>sysadmin</value>
            </repository-property>
            <repository-property>
                 <description>List of folder ObjectClasses</description>
                 <name>folder_badge_objectClasses</name>
                 <value>IDC:Folder</value>
            </repository-property>
            <repository-property>
                 <description>Single user for all type related interactions
                 </description>
                 <name>TypeRetrievalShapeUser</name>
                 <value>typeShapeUser</value>
            </repository-property>
            <repository-property>
                 <name>useNativeSecurity</name>
                 <value>false</value>
            </repository-property>
            <repository-property>
                 <description>Protocol used to connect with the UCM Server.
                                Valid
                                options are INTRADOC or INTRADOC_SSL. INTRADOC is the
                                default.
                 </description>
                 <name>ContentServerServiceType</name>
                 <value>INTRADOC</value>
            </repository-property>
            <repository-property>
                 <description>Content Server Username in Admin role, used
                 for security
                 checks
                 </description>
                 <name>ContentServerAdminUser</name>
                 <value>sysadmin</value>
            </repository-property>
            <repository-property>
                 <description>Polling interval for the
                 CacheInvalidator IntervalJob
                 (must be equal to or greater than 2 min)
                 </description>
                 <name>CacheInvalidationInterval</name>
                 <value>2</value>
            </repository-property>
            <repository-property>
                 <description>Location on the filesystem of the
                 client SSL keystore
                 file. Only used when ContentServerServiceType
                 is INTRADOC_SSL
                 </description>
                 <name>ContentServerSSLKeystoreFile</name>
                 <value>c:/client_keystore</value>
            </repository-property>
            <repository-property>
                 <description>SSL keystore password. Only used when
                 ContentServerServiceType is INTRADOC_SSL
                 </description>
                 <name>ContentServerSSLKeystorePassword</name>
                 <value>idcidc</value>
            </repository-property>
            <repository-property>
                 <description>SSL keystore alias name. Only used when
                 ContentServerServiceType is INTRADOC_SSL
                 </description>
                 <name>ContentServerSSLKeystoreAlias</name>
                 <value>SecureClient</value>
            </repository-property>
            <repository-property>
                 <description>SSL keystore alias password. Only used when
                 ContentServerServiceType is INTRADOC_SSL
                 </description>
                 <name>ContentServerSSLKeystoreAliasPassword</name>
                 <value>idcidc</value>
            </repository-property>
            <read-only>true</read-only>
            <binary-cache-max-entry-size>102400</binary-cache-max-entry-size>
            <!-- metadata search -->
            <search-is-enabled>true</search-is-enabled>
            <!-- full text search -->
            <fulltext-search-is-enabled>true</fulltext-search-is-enabled>
            <search-indexing-is-enabled>false</search-indexing-is-enabled>
       </content-store>
  </content-config>
  p13n-cache-config.xml
  <?xml version="1.0" encoding="UTF-8"?>
  <p13n-cache-config xmlns="http://www.bea.com/ns/p13n/90/p13n-cache-config">
       <!--
            This is the caches for the default content repository. The IDE should
            copy this to META-INF/p13n-cache-config.xml of the application. These
            caches are for the default WLP Repository. You can modify these to fit
            your needs. If you remove the WLP Repository, you can remove these
            entries.
       -->
       <cache>
            <name>nodeCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>60000</time-to-live>
            <max-entries>50</max-entries>
       </cache>
       <cache>
            <name>nodePathCache.UCMRepository</name>
            <description>Caches node path to node instance for UCMRepository</description>
            <time-to-live>60000</time-to-live>
            <max-entries>50</max-entries>
       </cache>
       <cache>
            <name>typeCache.UCMRepository</name>
            <description>Caches binary property values for UCMRepository</description>
            <time-to-live>300000</time-to-live>
            <max-entries>200</max-entries>
       </cache>
       <cache>
            <name>typeNameCache.UCMRepository</name>
            <description>Caches type id to content type for UCMRepository</description>
            <time-to-live>300000</time-to-live>
            <max-entries>200</max-entries>
       </cache>
       <cache>
            <name>binaryCache.UCMRepository</name>
            <description>Caches type name to content type for UCMRepository</description>
            <time-to-live>60000</time-to-live>
            <max-entries>10</max-entries>
       </cache>
       <cache>
            <name>searchCache.UCMRepository</name>
            <description>Caches node id to node for UCMRepository</description>
            <time-to-live>300000</time-to-live>
            <max-entries>200</max-entries>
       </cache>
       <cache>
            <name>nativeAuthCacheUCMRepository</name>
            <description>Caches node path to node for UCMRepository</description>
            <time-to-live>5000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
       <cache>
            <name>repo.ucm.typeNameCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>1800000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
       <cache>
            <name>repo.ucm.nodePathToUidCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>1800000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
       <cache>
            <name>repo.ucm.nodeUidCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>1800000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
       <cache>
            <name>repo.ucm.securityInfoCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>1800000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
       <cache>
            <name>repo.ucm.typeNamesCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>1800000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
       <cache>
            <name>repo.ucm.indexedFieldsCache.UCMRepository</name>
            <description>Caches node id to node instance for UCMRepository</description>
            <time-to-live>1800000</time-to-live>
            <max-entries>5000</max-entries>
       </cache>
  </p13n-cache-config>

  Hi Venu,
  Normally if you can see the UCM content in the admin console, it means the adapter is configured correctly and the placeholder should work. There's a couple of things I can suggest:
  1. Did you include the oracle-ucm-spi-app-lib.ear file in your project as documented under the heading Add a Reference to the UCM VCR Adapter Shared Library in the UCM VCR adapter installation docs ( [http://download.oracle.com/docs/cd/E13155_01/wlp/docs103/ucm_adapter/install.html|http://download.oracle.com/docs/cd/E13155_01/wlp/docs103/ucm_adapter/install.html] )?
  2. Browse to a document in the repository in the admin console. Pick one of the fields there (e.g. IDC:Folder.dDocId), grab the value and run a query using the placeholder. Do you get a single result?
  3. The original poster (user8867138) mentions a query along the lines of returning all folders that has dDocAuthor = sysadmin. If your UCM system had 10,000 folders all created by sysadmin, the adapter might be timing out? IIRC, you can adjust the timeout in UCM.
  4. Did you try a similar query using Content Selector instead?
  5. If the WLP server domain is running on a separate machine, is UCM configured to accept connections from the WLP server but not your machine?
  I would suggest getting the latest patches for WLP too as some of them are related to the UCM VCR adapter.
  Cheers,
  Cappa

• Server gets Started if config.xml changes?

  Hi All,
  I am facing a problem. In my application I have a config.xml file. If I make any changes to it, there server(tomcat) gets started. So i have to wait for sometimes for doing any transaction.
  Can anyone help me to resolve this issue? I don't want to restart the server.
  Thanx in advance
  Regards
  Rishab.

  How is this related to JSF? You should post Tomcat related questions at a Tomcat related forum or mailinglist. There is one at its own homepage over there at Apache.org.

• OAM - Basic Auth dialog continues to show despite config.xml changes

  I have set enforce-valid-basic-auth-credentials to false in config.xml of the application domain I am running some apps from.
  The applications are all configured for BASIC authentication.
  <login-config>
  <auth-method>BASIC</auth-method>
  <realm-name>myrealm</realm-name>
  </login-config>
  The problem is that after logging on from the OAM default FORM page the Basic Authentication dialog is still being presented.
  I have referenced the following SR's to try find more info:
  OIM/OAM SSO Weblogic Authentication Pop up After Login [ID 1081011.1]
  OAM Configuration Steps Needed to Prevent a Second Authentication Prompt by Weblogic [ID 559442.1]

  The issue has been resolved.  There was no interesting work-a-round or fix involved.

• How can we apply a user/group filter in jps-config.xml?

  Or even better, if using WLS is there a way to use each Authenticator's filters?

  Ours is not a Desktop Application, but we want to handle Authentication(Which authenticates the userid and password by making a Tuxedo call) and add the Principal to Subject in session, so that ADF Authorization and securityContext can be used as is,
  but doing this with Custom Authentication Provider in weblogic needs me to have a lot of Tuxedo Service related jars in weblogic/system classpath which i feel is not right thing to do, as the same jars are required in application also, which means i will have the jars in class path twice and i need to deploy the jars to both places everytime there is any change.
  Is there any way by which i can set Authenticated principal to Subject in the created session from within Application?

• Remote-config.xml

  How to add more than a single remote service destination to
  the remote-config.xml file? When I try to add a new destination tag
  in the remote-config.xml I get an error when calling the mxml file
  in the browser. Please help.

  Have you seen the example remoting-config.xml file in the
  /resources/config directory that is laid down during an FDS
  installation?
  destination elements are children of the service element.
  <service ...>
  <destination id="dest1">
  </destination>
  <destination id="dest2">
  </destination>
  </service>
  Perhaps your SWF didn't get updated with the new
  configuration file? You need to recompile the SWF in order to get
  the new configuration information into it... also, you'd need to
  restart the app server if you change the config file. If you're
  using Flex Builder to compile an .mxml file then you may need to
  force a recompile with the Clean... option as it may have not
  noticed that the services-config.xml include file
  remoting-config.xml changed?

• Where is the template for config.xml

  when i modify settings using weblogic console, is config.xml changed
  according to a template?
  is the template available?

  Hi,
  Template files can be found under $ORACLE_HOME/appsutil/template (database) and $COMMON_TOP/clone/context/apps (application) directories.
  Note: 603104.1 - Troubleshooting RapidClone issues with Oracle Applications R12
  https://metalink2.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=603104.1
  Regards,
  Hussein

• Apex-config.xml is broken after password change with encryption

  Greetings,
  I am using Apex Listener 1.1 with Oracle GlassFish Open Source Edition 3.1.
  I found something strange when changing the connection password in apex-config.xml.
  If I change the password to keep it plain text like the following, it works fine.
  <entry key="apex.db.password">my_password</entry>
  But if I change the password to a value to be encrypted, the new password is accepted but the configuration file get messed up.
  <entry key="apex.db.password">!my_password2</entry>
  After restarting the listener, I get the following content in my apex-config.xml.
  <?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE properties SYSTEM "http://java.sun.com/dtd/properties.dtd">
  <properties>
  <comment> Updated: Mon Mar 14 10:58:16 EDT 2011 Version: 1.1.0.60.10.38 </comment>
  </properties>
  Needless to say that after the next restart nothing works. Am I missing something, or is this a bug?

  You have corrupted your web.xml somehow, repeat the steps making sure the web.xml is well formed.

• Changing layout-config.xml in custom b2c scenario

  Hi,
  I've created a cutom b2c project and am making changes to the layout. In doing this I have been forced to make a change to the WEB-INF\xcm\sap\layout-config.xml to add a navigator UIArea to the UILayout 'basketLayout' as follows:
      <UILayout name="basketLayout"  path="/appbase/layout/genericLayout.jsp"
                  titleArea="workarea">
          <UIArea name ="header"      defaultComponent="header" cssIdName="header" />
          <UIArea name ="navigator"   defaultComponent="blankSpace" cssIdName="navigator" />
          <UIArea name ="workarea"    defaultComponent="basketDisplay" cssIdName="basketEntry" />
          <UIArea name ="miniBasket"  defaultComponent="miniBasketWithoutBasket" cssIdName="miniBasket" />
      </UILayout>
  ... and the blankSpace component...
      <UIComponent name="blankSpace"            page="/b2c/blank.inc.jsp"/>
  I have of course also created the /b2c/blank.inc.jsp file.
  The problem is that my changes do not appear in the browser. I have tried deleting all the caches in the admin, restarting the app and even deleting the application and re-building it and re-deploying it.
  What I have noticed is that when syncing the application with the NWDS sync plugin, it is the file in the original b2c app and not my custom app, which gets updated.
  However, this seems somewhat irrelevant as I have also tried copying the corrected layout-config.xml to both the original and the changed version on the server, restarting the app and once again seeing no result.
  I'm obviously missing something! Can anyone tell me what it might be?
  Thanks,
  Craig

  Hi,
  You can download it from service market place.
  www.service.sap.com
  and the link to the doc is below
  [https://websmp210.sap-ag.de/sapdownload/011000358700000469462006E/SAP_ISA50_DevAndExtGuide.pdf|https://websmp210.sap-ag.de/sapdownload/011000358700000469462006E/SAP_ISA50_DevAndExtGuide.pdf]
  Regards,
  Sateesh Chandra

• Changing faces-config.xml after deploying ear file

  Hi,
  What would be the steps to follow if we want to change contenets of web application configuration files (for example, faces-config.xml) after app.ear file has been deployed?
  The app.ear file contains the faces-config.xml, and we are using Oracle AS 10.1.3.
  Thanks,
  Jean

  see my answer at
  Change web app config file of deployed app