Manage controls based on user

Hi,
How to manage controls based on login user .
Ex : if admin i want to hide some components and if user i want to show some components like menu items, buttons etc
Thanks,
Nitesh

This is all described in Frank's article
>
Using Security Expressions
For checking security in the user interface or in the Oracle ADF binding layer, Oracle ADF provides the following set of specialized security expressions:
#{securityContext.authenticated}
#{securityContext.userName}
#{securityContext.userInRole['roleList']}
#{securityContext.userInAllRoles['roleList']}
#{securityContext.taskflowViewable['target']}
#{securityContext.regionViewable['target']}
#{securityContext.userGrantedResource['permission']}
#{securityContext.userGrantedPermission['permission']}
To add a security expression to a user interface component, select the component in the visual page editor and open the Property Inspector. Click the down-arrow icon to the right of the property to which you want to add the expression (such as the disabled property on an af:showDetail item on a panel tab). Choose Expression Builder from the context menu that appears.
>
Timo

Similar Messages

How to Broadcast Control Query based on User Exit Variable

Hi Gurus,
How to Broadcast dashboard based on Control Query based on User Exit
Variable to different users via mail in BW 3.5 version. Any document or
steps to achieve this will be very helpful.
Regards
Vishwanath

Hi Surendra,
Thanks for the reply and your suggestion. It will be great if you can help me to answer the below:
1) What exactly we mean by Control Query - Any example will be very helpful
2) As you mentioned, yes the user exist to be written will be for user-exit variable for dynamic period selection - An Example on how to create this will be helpful
3) Once the above variable is created, what are the steps to include this variable in the Bex Query?
4) Once all the queries to be used in dashboard are implemented with the exit variable, how to create a variant to be used in Broadcasting?
5) How and where to configure the email recipients (to whom this dashboard will be sent via mail)?
6) How to set up the BW broadcaster in BW 3.5 using the control query ?( My question is though we have to send the dashboard to the users, which has multiple queries, how a single control query with variant will help us).
Awaiting your reply.
Thanks and Regards
Vishwanath

Access control for different user groups in APEX 4.0

Hi guys,
in Apex 4.0, is there any way to use the access control page to configure access control for different user groups?
The access control page currently only has an access control list by users with 3 privileges namely, Administrator, Edit & View where Administrator has the highest access level & View the lowest. Therefore 1 user cannot have more than 1 different privilege, however if the user belongs to 2 or more different groups then we can control what access he can have in a more fine grained manner. We also want to have more than the 3 privileges given.
Can we assign different groups to different users and let them have different privileges to be configured by page, region, process or item level?
Now Apex will create 2 tables, Apex_Access_Control & Apex_Access_Setup to store the application access control mode & access control list. It will also create 3 authorization schemes "access control - administrator", "access control - edit" & "access control - view" based on the 2 tables.
Does this mean we have to change the table structures & edit the authorization schemes to suit our usage? We are reluctant to do this because if we upgrade to a newer version of Apex then we would have to merge our pl/sql coding with Apex's updated code.
How can we auto-configure more than the 3 authorization schemes in the access control page? Is there any way to achieve a finer grain of access control based on the current access control administration page given by Apex without writing it ourselves?
We are afraid that we may have missed something on Apex access control & do not want to reinvent the wheel.

Hi Errol,
to build your own application authorization scheme around the security model supplied by Apex for administration of the Apex environment would be a bad idea.
This was never intended for authorization scheme management in custom built Apex applications, it was solely intended to control access in the Apex environment overall. The API for it is not published, and making changes to it, such as adding more roles, would run the risk of breaking the overall Apex security model. It would not be supported by Oracle and Oracle would not guarantee the upwards compatibility of any changes you make in future versions of Apex.
In short, you should follow Tyson's advice and build your own structure. As he indicated, there are plenty of examples around and provided your requirements are not too complicated, it will be relatively simple.
Regards
Andre

How to hide and show Omniportlet based on user privileges

hi all
I am trying to hide or show an Omniportlet based on user privileges, which means accessc control on portlet-level for Omniportlet. But I couldnt find out how to do it.
According to Portal Developer's Guide:
You can hide and show portlets built with Web Clipping and OmniPortlet on portal pages dynamically by using security managers. Although Web Clipping and OmniPortlet do not expose security managers through the user interface, you can apply them by editing their XML provider definition file.
Question is: where can I find that XML file? Is this file accessible and configurable somewhere through Portal Enterprise Mgr?

Hi,
I don't think you can edit this file through Enterprise Manager. Atleast as far as I know. But its available on the server. I have a NT installation and I found it under:
D:\oracle\Mid_tier\j2ee\OC4J_Portal\applications\portalTools\omniPortlet\WEB-INF\providers\omniPortlet
You might want to restart the Portal application through OEM after you change this file.
Hope this helps,

Mughamrat Releases Mobile Inventory Management Control

Mughamrat Releases Mobile Inventory Management Control
MS3 Inventory Suite 1.2
Ifran, Morocco -May 4, 2007- Mughamrat, CO. has announced the release
of their Multilingual Mobile Inventory Management Control Suite 1.2
for Window CE & Window Mobile. The Market leader in advanced mobility
solutions and personalized technical customer support has designed MS3
Inventory Suite 1.2 from the ground up to enable companies to create
an all inclusive and highly integrated inventory tracking solution.
MS3 Inventory Suite 1.2 unlike other existent mobile solutions offers
an Arabic/English easy-to-use interface and a user support that works
together to provide a reliable inventory option. Based on
Microsoft's .NET 03 & 05 technology, it enables users to access
multiple databases using a single application, and can streamline data
entry with its highly "customizable" interface. Users can work in real
time, offline or a combination of both, depending on connectivity
availability. In addition, MS3 Inventory Suite 1.2 offers the perfect
balance of performance and affordability.
"MS Inventory Suite 1.2 module is an offspring of many successful
years" Said Rudy R. Lachhab, Mughamrat's Regional Manager "Our
extensive expertise in the supply chain of Mobile Solutions with a
comprehensive approach to implementation are now offering MS3 with a
significant leap in functionality, it is designed to operate side-by-
side in handling daily operational requirements of daily distribution
and inventory control activities within any organization"
Since Mughamrat's foundation, its focus has been on developing the
expertise and skills to implement mobility application solutions.
Mughamrat has being offering tailor-made mobile solutions to large
companies and organizations. The company now focuses on five specific
areas of mobile solutions including Electronic Meter Reading, Mobile
Van sales, Mobile Survey, Inventory Management control and General
Inspection solutions. In addition, Mughamrat has extensive expertise
in the migration of information technology products to support the
Arabic language, along with the development of Arabic SDKs for all
platforms, and mobility drivers for Arabic language applications.
For more information, please contact:
Rudy R. Lachhab
Regional Manager
Tel: +212 3 556 7409
Fax : +212 3 556 7630
[email protected]

Radwan,
It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.
Has your problem been resolved? If not, you might try one of the following options:
- Do a search of our knowledgebase at http://support.novell.com/search/kb_index.jsp
- Check all of the other support tools and options available at
http://support.novell.com.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://support.novell.com/forums)
Be sure to read the forum FAQ about what to expect in the way of responses:
http://support.novell.com/forums/faq_general.html
If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.
Good luck!
Your Novell Product Support Forums Team
http://support.novell.com/forums/

Using container managed form-based security in JSF

h1. Using container managed, form-based security in a JSF web app.
A Practical Solution
h2. {color:#993300}*But first, some background on the problem*{color}
The Form components available in JSF will not let you specify the target action, everything is a post-back. When using container security, however, you have to specifically submit to the magic action j_security_check to trigger authentication. This means that the only way to do this in a JSF page is to use an HTML form tag enclosed in verbatim tags. This has the side effect that the post is not handled by JSF at all meaning you can't take advantage of normal JSF functionality such as validators, plus you have a horrible chimera of a page containing both markup and components. This screws up things like skinning. ([credit to Duncan Mills in this 2 years old article|http://groundside.com/blog/DuncanMills.php?title=j2ee_security_a_jsf_based_login_form&more=1&c=1&tb=1&pb=1]).
In this solution, I will use a pure JSF page as the login page that the end user interacts with. This page will simply gather the input for the username and password and pass that on to a plain old jsp proxy to do the actual submit. This will avoid the whole problem of having to use verbatim tags or a mixture of JSF and JSP in the user view.
h2. {color:#993300}*Step 1: Configure the Security Realm in the Web App Container*{color}
What is a container? A container is basically a security framework that is implemented directly by whatever app server you are running, in my case Glassfish v2ur2 that comes with Netbeans 6.1. Your container can have multiple security realms. Each realm manages a definition of the security "*principles*" that are defined to interact with your application. A security principle is basically just a user of the system that is defined by three fields:
- Username
- Group
- Password
The security realm can be set up to authenticate using a simple file, or through JDBC, or LDAP, and more. In my case, I am using a "file" based realm. The users are statically defined directly through the app server interface. Here's how to do it (on Glassfish):
1. Start up your app server and log into the admin interface (http://localhost:4848)
2. Drill down into Configuration > Security > Realms.
3. Here you will see the default realms defined on the server. Drill down into the file realm.
4. There is no need to change any of the default settings. Click the Manage Users button.
5. Create a new user by entering username/password.
Note: If you enter a group name then you will be able to define permissions based on group in your app, which is much more usefull in a real app.
I entered a group named "Users" since my app will only have one set of permissions and all users should be authenticated and treated the same.
That way I will be able to set permissions to resources for the "Users" group that will apply to all users that have this group assigned.
TIP: After you get everything working, you can hook it all up to JDBC instead of "file" so that you can manage your users in a database.
h2. {color:#993300}*Step 2: Create the project*{color}
Since I'm a newbie to JSF, I am using Netbeans 6.1 so that I can play around with all of the fancy Visual Web JavaServer Faces components and the visual designer.
1. Start by creating a new Visual Web JSF project.
2. Next, create a new subfolder under your web root called "secure". This is the folder that we will define a Security Constraint for in a later step, so that any user trying to access any page in this folder will be redirected to a login page to sign in, if they haven't already.
h2. {color:#993300}*Step 3: Create the JSF and JSP files*{color}
In my very simple project I have 3 pages set up. Create the following files using the default templates in Netbeans 6.1:
1. login.jsp (A Visual Web JSF file)
2. loginproxy.jspx (A plain JSPX file)
3. secure/securepage.jsp (A Visual Web JSF file... Note that it is in the sub-folder named secure)
Code follows for each of the files:
h3. {color:#ff6600}*First we need to add a navigation rule to faces-config.xml:*{color}
    <navigation-rule>
<from-view-id>/login.jsp</from-view-id>
        <navigation-case>
<from-outcome>loginproxy</from-outcome>
<to-view-id>/loginproxy.jspx</to-view-id>
        </navigation-case>
    </navigation-rule>
NOTE: This navigation rule simply forwards the request to loginproxy.jspx whenever the user clicks the submit button. The button1_action() method below returns the "loginproxy" case to make this happen.
h3. {color:#ff6600}*login.jsp -- A very simple Visual Web JSF file with two input fields and a button:*{color}
<?xml version="1.0" encoding="UTF-8"?>
<jsp:root version="2.1"
xmlns:f="http://java.sun.com/jsf/core"
xmlns:h="http://java.sun.com/jsf/html"
xmlns:jsp="http://java.sun.com/JSP/Page"
xmlns:webuijsf="http://www.sun.com/webui/webuijsf">
    <jsp:directive.page
contentType="text/html;charset=UTF-8"
pageEncoding="UTF-8"/>
    <f:view>
        <webuijsf:page
id="page1">
<webuijsf:html id="html1">
<webuijsf:head id="head1">
<webuijsf:link id="link1"
url="/resources/stylesheet.css"/>
</webuijsf:head>
<webuijsf:body id="body1" style="-rave-layout: grid">
<webuijsf:form id="form1">
<webuijsf:textField binding="#{login.username}"
id="username" style="position: absolute; left: 216px; top:
96px"/>
<webuijsf:passwordField binding="#{login.password}" id="password"
style="left: 216px; top: 144px; position: absolute"/>
<webuijsf:button actionExpression="#{login.button1_action}"
id="button1" style="position: absolute; left: 216px; top:
216px" text="GO"/>
</webuijsf:form>
</webuijsf:body>
</webuijsf:html>
        </webuijsf:page>
    </f:view>
</jsp:root>h3. *login.java -- implent the
button1_action() method in the login.java backing bean*
    public String button1_action() {
        setValue("#{requestScope.username}",
(String)username.getValue());
setValue("#{requestScope.password}", (String)password.getValue());
        return "loginproxy";
    }h3. {color:#ff6600}*loginproxy.jspx -- a login proxy that the user never sees. The onload="document.forms[0].submit()" automatically submits the form as soon as it is rendered in the browser.*{color}
{code}
<?xml version="1.0" encoding="UTF-8"?>
<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page"
version="2.0">
<jsp:output omit-xml-declaration="true" doctype-root-element="HTML"
doctype-system="http://www.w3.org/TR/html4/loose.dtd"
doctype-public="-W3CDTD HTML 4.01 Transitional//EN"/>
<jsp:directive.page contentType="text/html"
pageEncoding="UTF-8"/>
<html>
<head> <meta
http-equiv="Content-Type" content="text/html;
charset=UTF-8"/>
<title>Logging in...</title>
</head>
<body
onload="document.forms[0].submit()">
<form
action="j_security_check" method="POST">
<input type="hidden" name="j_username"
value="${requestScope.username}" />
<input type="hidden" name="j_password"
value="${requestScope.password}" />
</form>
</body>
</html>
</jsp:root>
{code}
h3. {color:#ff6600}*secure/securepage.jsp -- A simple JSF{color}
target page, placed in the secure folder to test access*
{code}
<?xml version="1.0" encoding="UTF-8"?>
<jsp:root version="2.1"
xmlns:f="http://java.sun.com/jsf/core"
xmlns:h="http://java.sun.com/jsf/html"
xmlns:jsp="http://java.sun.com/JSP/Page" xmlns:webuijsf="http://www.sun.com/webui/webuijsf">
<jsp:directive.page
contentType="text/html;charset=UTF-8"
pageEncoding="UTF-8"/>
<f:view>
<webuijsf:page
id="page1">
<webuijsf:html id="html1">
<webuijsf:head id="head1">
<webuijsf:link id="link1"
url="/resources/stylesheet.css"/>
</webuijsf:head>
<webuijsf:body id="body1" style="-rave-layout: grid">
<webuijsf:form id="form1">
<webuijsf:staticText id="staticText1" style="position:
absolute; left: 168px; top: 144px" text="A Secure Page"/>
</webuijsf:form>
</webuijsf:body>
</webuijsf:html>
</webuijsf:page>
</f:view>
</jsp:root>
{code}
h2. {color:#993300}*_Step 4: Configure Declarative Security_*{color}
This type of security is called +declarative+ because it is not configured programatically. It is configured by declaring all of the relevant parameters in the configuration files: *web.xml* and *sun-web.xml*. Once you have it configured, the container (application server and java framework) already have the implementation to make everything work for you.
*web.xml will be used to define:*
- Type of security - We will be using "form based". The loginpage.jsp we created will be set as both the login and error page.
- Security Roles - The security role defined here will be mapped (in sun-web.xml) to users or groups.
- Security Constraints - A security constraint defines the resource(s) that is being secured, and which Roles are able to authenticate to them.
*sun-web.xml will be used to define:*
- This is where you map a Role to the Users or Groups that are allowed to use it.
+I know this is confusing the first time, but basically it works like this:+
*Security Constraint for a URL* -> mapped to -> *Role* -> mapped to -> *Users & Groups*
h3. {color:#ff6600}*web.xml -- here's the relevant section:*{color}
{code}
<security-constraint>
<display-name>SecurityConstraint</display-name>
<web-resource-collection>
<web-resource-name>SecurePages</web-resource-name>
<description/>
<url-pattern>/faces/secure/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
<http-method>HEAD</http-method>
<http-method>PUT</http-method>
<http-method>OPTIONS</http-method>
<http-method>TRACE</http-method>
<http-method>DELETE</http-method>
</web-resource-collection>
<auth-constraint>
<description/>
<role-name>User</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<realm-name/>
<form-login-config>
<form-login-page>/faces/login.jsp</form-login-page>
<form-error-page>/faces/login.jsp</form-error-page>
</form-login-config>
</login-config>
<security-role>
<description/>
<role-name>User</role-name>
</security-role>
{code}
h3. {color:#ff6600}*sun-web.xml -- here's the relevant section:*{color}
{code}
<security-role-mapping>
<role-name>User</role-name>
<group-name>Users</group-name>
</security-role-mapping>
{code}
h3. {color:#ff6600}*Almost done!!!*{color}
h2. {color:#993300}*_Step 5: A couple of minor "Gotcha's"_ *{color}
h3. {color:#ff6600}*_Gotcha #1_*{color}
You need to configure the "welcome page" in web.xml to point to faces/secure/securepage.jsp ... Note that there is *_no_* leading / ... If you put a / in there it will barf all over itself .
h3. {color:#ff6600}*_Gotcha #2_*{color}
Note that we set the <form-login-page> in web.xml to /faces/login.jsp ... Note the leading / ... This time, you NEED the leading slash, or the server will gag.
*DONE!!!*
h2. {color:#993300}*_Here's how it works:_*{color}
1. The user requests the a page from your context (http://localhost/MyLogin/)
2. The servlet forwards the request to the welcome page: faces/secure/securepage.jsp
3. faces/secure/securepage.jsp has a security constraint defined, so the servlet checks to see if the user is authenticated for the session.
4. Of course the user is not authenticated since this is the first request, so the servlet forwards the request to the login page we configured in web.xml (/faces/login.jsp).
5. The user enters username and password and clicks a button to submit.
6. The button's action method stores away the username and password in the request scope.
7. The button returns "loginproxy" navigation case which tells the navigation handler to forward the request to loginproxy.jspx
8. loginproxy.jspx renders a blank page to the user which has hidden username and password fields.
9. The hidden username and password fields grab the username and password variables from the request scope.
10. The loginproxy page is automatically submitted with the magic action "j_security_check"
11. j_security_check notifies the container that authentication needs to be intercepted and handled.
12. The container authenticates the user credentials.
13. If the credentials fail, the container forwards the request to the login.jsp page.
14. If the credentials pass, the container forwards the request to *+the last protected resource that was attempted.+*
+Note the last point! I don't know how, but no matter how many times you fail authentication, the container remembers the last page that triggered authentication and once you finally succeed the container forwards your request there!!!!+
+The user is now at the secure welcome page.+
If you have read this far, I thank you for your time, and I seriously question your ability to ration your time pragmatically.
Kerry Randolph

If you want login security on your web app, this is one way to do it. (the easiest way i have seen).
This method allows you to create a custom login form and error page using JSF.
The container handles the actual authentication and protection of the resources based on what you declare in web.xml and sun-web.xml.
This example uses a statically defined user/password, stored in a file, but you can also configure JDBC realm in Glassfish, so that that users can register for access and your program can store the username/passwrod in a database.
I'm new to programming, so none of this may be a good practice, or may not be secure at all.
I really don't know what I'm doing, but I'm learning, and this has been the easiest way that I have found to add authentication to a web app, without having to write the login modules yourself.
Another benefit, and I think this is key ***You don't have to include any extra code in the pages that you want to protect*** The container manages this for you, based on the constraints you declare in web.xml.
So basically you set it up to protect certain folders, then when any user tries to access pages in that folder, they are required to authenticate.
--Kerry

NULL values and Data Control based on Web Service

One of my ADF control is based on a Data Control created through a web service. Every thing is working fine except the way ADF control is handling the null values return by the web service based data control.
For example for null columns the web service is sending the following:
<ns0:beginDate xsi:nil="1"/>
or
<ns0:sourceCode xsi:nil="1"/>
But the corresponding column in my ADF data control is trying to initialize itself using the value [{nil=1}]. It fails with the following error.
2006-04-20 13:31:37.510 WARNING JBO-25009: Cannot create an object of type:java.util.Date with value:[{nil=1}]
I will appreciate if someone could help me resolve this issue.
Thanks,

I tried again, but it seems that I'm unable to reproduce this in a test project which uses another data controls but is still as similar as possible to the original project in which I've encountered this behaviour.
However, using a data control based on the same web service as in the original project, [{nil=1}] appears again instead of emtpy values.
Is it possible that there is a significant difference in the generated wrapper classes? The underlying PL/SQL is the same (in strucutre) and the corresponding elements in the response XML of the web service are the same in the two cases, always like <ns0:someResponeValue xsi:nil="1"/>, so I don't know how it is possible that I can't reproduce this behaviour.
A short description of the projects:
Services/Model:
I created a PL/SQL funcition in a package that returns a user type object. This return parameter consists of a non-empty string and a null value string. On top of this I created a PL/SQL web service and a data control for that.
View/Controller:
A JSF JSP page which has a read-only form showing the return values of the web service.
Regards,
Patrik

Redirect to different pages based on user input value

Hello,
Anyone please help.
I am trying to redirect to different pages based on user inputs. I have a form in which I have one text item and a submit button. For example consider text item to be empno; So once the user enters a empno and hits submit button; I need to redirect to different pages based on this job.
For Ex: if user inputs empno whose job is 'ANALYST' then redirect to page 1
if user inputs empno whose job is 'MANAGER' then redirect to page 10
For this scenario. i wrote a pl/sql process for the submit button; but no luck -- its not at all redirecting instead its in the same page. Below is the process.
declare
v_job varchar2(20);
begin
select job into v_job from emp where empno = :P9_EMPNO_R;
if v_job = 'ANALYST' then
OWA_UTIL.REDIRECT_URL('f?p=&APP_ID.:1:&SESSION.::&DEBUG.::', TRUE);
end if;
if v_job = 'MANAGER' then
OWA_UTIL.REDIRECT_URL('f?p=&APP_ID.:10:&SESSION.::&DEBUG.::', TRUE);
end if;
end;Please help. I am using Oracle APEX version 4.2 and database Oracle 11g R2
Thanks,
Orton

orton607 wrote:
Hello,
Anyone please help.
I am trying to redirect to different pages based on user inputs. I have a form in which I have one text item and a submit button. For example consider text item to be empno; So once the user enters a empno and hits submit button; I need to redirect to different pages based on this job.
For Ex: if user inputs empno whose job is 'ANALYST' then redirect to page 1
if user inputs empno whose job is 'MANAGER' then redirect to page 10
For this scenario. i wrote a pl/sql process for the submit button; but no luck -- its not at all redirecting instead its in the same page. Below is the process.
declare
v_job varchar2(20);
begin
select job into v_job from emp where empno = :P9_EMPNO_R;
if v_job = 'ANALYST' then
OWA_UTIL.REDIRECT_URL('f?p=&APP_ID.:1:&SESSION.::&DEBUG.::', TRUE);
end if;
if v_job = 'MANAGER' then
OWA_UTIL.REDIRECT_URL('f?p=&APP_ID.:10:&SESSION.::&DEBUG.::', TRUE);
end if;
end;Please help. I am using Oracle APEX version 4.2 and database Oracle 11g R2
Thanks,
OrtonI have a similar scenario in my application and this is how I handle it.
1. Create a page item on the page, say Px_PAGE_NUM
2. Create a "On Submit - After Computations and Validations" page process to set the above page item. In your case, you can use the same logic that you have already in place (except the call to OWA_UTIL.REDIRECT_URL) :
declare
v_job varchar2(20);
begin
select job into v_job from emp where empno = :P9_EMPNO_R;
if v_job = 'ANALYST' then
:Px_PAGE_NUM := '1';
end if;
if v_job = 'MANAGER' then
:Px_PAGE_NUM := '10';
end if;
end;3. Create a "On Submit: After processing" branch. Specify the "Target Type" as "Page in the application" and "Page Number" as &Px_PAGE_NUM. (with the dot).
I hope the above helps.
BTW, the following thread in the forum related to OWA_UTIL.REDIRECT_URL might help:
issue OWA_UTIL.REDIRECT_URL with APEX 4.1.1

Bringing oralce vm for x86 server in enterprise manager control

Hello All,
Greetings of the day.
We have deployed oracle enterprise manager opscenter 11g on solaris x86 and deployed a proxy controller on the same machine.
Query: How to discover and bring into oracle enterprise manager control oracle VM x86 machine which is already built and alive.
My perception is to install oracle virtual management pack on proxy controller machine and oracle vm server. I have the binaries with me. I could not find a doc to install the same.
Quick response is much appreciated.
Regards,
Hameed

Hameed,
Your questions sounds like it is specific to Ops Center. As a side note, there is an Ops Center forum and MOS community here:
https://communities.oracle.com/portal/server.pt/community/oracle_enterprise_manager_ops_center/505
Enterprise Manager Ops Center
Ops Center 11g does not have any awareness of OVMx86. Oracle introduced support for OVMx86 into Ops Center 12c.
http://www.oracle.com/technetwork/oem/ops-center/oem-ops-center-188778.html
The way you accomplish this in Ops Center 12c is to discover a OVM Manager. Once you have an OVM Manager discovered, you can discover OVS hypervisors and connect them to the OVM Manager through Ops Center. Then they will appear in the Ops Center user interface and you will be able to control them from Ops Center.
You can also do this in Enterprise Manager Cloud Control 12c.
Thanks,
Mike

Web services manager control login problem

hi,
I have installed SOA suite using Advanced installation type.
After installation I am able to login into BPEL Console and it's working fine , but unable to login into web services manager control(http://localhost:8888/ccore) with oc4jadmin user...
I found below errors in ccore.log file
2008-10-03 09:33:45,879 INFO [AJPRequestHandler-HTTPThreadGroup-54] userregistry.UsersTable - isValidUserPassword() failed for oc4jadmin
2008-10-03 09:33:45,879 INFO [AJPRequestHandler-HTTPThreadGroup-54] sampledb.LocalDBAuthProvider - The error in authenticate for user : oc4jadmin
2008-10-03 09:33:45,879 SEVERE [AJPRequestHandler-HTTPThreadGroup-54] uibeans.LoginBean - Error when authenticating user. Invalid user id or password
2008-10-03 10:17:30,744 SEVERE [AJPRequestHandler-HTTPThreadGroup-54] userregistry.UsersTable - isActiveUser() failed for oc4jadmin
com.cfluent.utils.db.DBException: ORA-01017: invalid username/password; logon denied
     at com.cfluent.utils.db.DBContext.getConnection(DBContext.java:95)
     at com.cfluent.db.userregistry.UsersTable.isActiveUser(UsersTable.java:2599)
     at com.cfluent.db.userregistry.UsersTable.isValidUserPassword(UsersTable.java:2996)
     at com.cfluent.accessprovider.sampledb.LocalDBAuthProvider.authenticate(LocalDBAuthProvider.java:61)
     at com.cfluent.access.AccessSessionFactory.isAuthenticated(AccessSessionFactory.java:137)
     at com.cfluent.access.AccessSessionFactory.createSession(AccessSessionFactory.java:92)
     at com.cfluent.webui.uibeans.LoginBean.authenticateUser(LoginBean.java:31)
     at com.cfluent._coresv._Login._jspService(_Login.java:354)
     at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:59)
     at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64)
     at oracle.i18n.servlet.filter.ServletFilter.doFilter(ServletFilter.java:130)
     at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:621)
     at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:368)
     at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:866)
     at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:448)
     at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:302)
     at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
     at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
     at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
     at java.lang.Thread.run(Thread.java:595)
Caused by: java.sql.SQLException: ORA-01017: invalid username/password; logon denied
     at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:125)
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:316)
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:277)
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:272)
     at oracle.jdbc.driver.T4CTTIoauthenticate.receiveOauth(T4CTTIoauthenticate.java:647)
     at oracle.jdbc.driver.T4CConnection.logon(T4CConnection.java:308)
     at oracle.jdbc.driver.PhysicalConnection.<init>(PhysicalConnection.java:361)
     at oracle.jdbc.driver.T4CConnection.<init>(T4CConnection.java:151)
     at oracle.jdbc.driver.T4CDriverExtension.getConnection(T4CDriverExtension.java:32)
     at oracle.jdbc.driver.OracleDriver.connect(OracleDriver.java:595)
     at java.sql.DriverManager.getConnection(DriverManager.java:525)
     at java.sql.DriverManager.getConnection(DriverManager.java:171)
     at org.apache.commons.dbcp.DriverManagerConnectionFactory.createConnection(DriverManagerConnectionFactory.java:48)
     at org.apache.commons.dbcp.PoolableConnectionFactory.makeObject(PoolableConnectionFactory.java:290)
     at org.apache.commons.pool.impl.GenericObjectPool.borrowObject(GenericObjectPool.java:771)
     at org.apache.commons.dbcp.PoolingDriver.connect(PoolingDriver.java:175)
     at java.sql.DriverManager.getConnection(DriverManager.java:525)
     at java.sql.DriverManager.getConnection(DriverManager.java:171)
     at com.cfluent.utils.db.DBContext.getConnection(DBContext.java:86) ...
can any one help me resolve this problem..

You need to enable JSSO if you want the oc4jadmin password to be in scync with the other AS products. If you just want to login with oc4jadmin you perform the following steps. PLease note that if you change the passord in EM you will have to make these changes again to keep the password the same. JSSO is a cleaner solution.
To change the default password for the user "admin", follow these steps:
- delete admin user
- add admin user back
- add admin user to the super user group "su1-grp"
1. Go to OC4J_HOME/owsm/bin directory and modify manageUserGroups.properties
user_id=admin
user_name=admin user
user_password=yourNewPassword
user_email=[email protected]
group_id=su1-grp
group_desc=super user group
2. Delete the existing admin user by executing
wsmadmin manageUserGroups deleteUser
4. Add the admin user again by executing
wsmadmin.bat manageUserGroups addUser
5. Add admin user to super user group
wsmadmin.bat manageUserGroups addUserGroup
The admin user password is changed.

Web Services Manager Control, SOA Suite, Retrieving Roles from OID

I am a bit confused about mapping of groups and privileges when it comes to the LDAP (in my case oracle internet directory, OID) and groups defined by Web Services Manager Control.
I am using Web Services Manager Control->Manage Policies to define a gateway (or agent) for my web services. Through
Policy Management > Manage Policies > Policies > Policy
I have also defined some pipeline steps which require authorization by an LDAP provider.(OID)
I need two things:
- First I have such roles and groups here in Web Services Manager:
Administration > Groups / Roles
Group Name      Role Name
su1-grp      Super User
da1-grp      Domain Administrator
ca1-grp      Component Administrator
ca2-grp      Component Administrator
which could be set for view and modification of web services. What is the relation between these groups and user groups in Oracle Internet Directory which I authorize against?
- Second, my web services are invoked from pages which access to them involves authentication and authorization against OID. I need the username/password to be propagated to the webservice automatically. If the web service is presented as a button on such pages, for example, I don't want the user to be forced to enter username/passwords for each call to the services/
I appreciate any comments or reference to books and documents.
Thank you in advance.
Best Regards,
Farbod

Hi Farbod
Your problem is not new and i have posted in couple of other threads before.
Roles in OID are for you to authorize the web service message itself. In your case when the user logins to your web application and calls the web service, you have to do two things:
a) Extract Credentials
b) AUthenticate against LDAP
c) Perform authorization against LDAP
Now the trick part is, you have to have the same username and password. You have to capture and store in session( ugly ugly..from security point of view) and then when you call the web service, you then invoke with the username and password.
There are other better options available but might require additonal work or infrastructure.
If your web application is protected by Oracle Access Manager or siteminder, you can pass those cookies.
Next option is using SAML. You can generate SAML token on behalf of the user, and attach the SAML token to the web service messsage. In OWSM you then configure to validate SAML token and then you have to write custom step to extract the user name and perform any authorization.
Since anyway you have to write custom step, third option is you can send encrypted cookie ( You web application can create a login session cookie -encrypted after the user signed in ). In OWSM you can write custom step to decrypt the cookie and then perform any validation.
You have the easiest option of sending the same username and password with a security risk, or a custom development approach.
Thanks
Ram

Content delivery in portal based on user roles ?

Portal Server new bee...
Please can anyone point me to guides/url where i can look to enable content delivery in a portal based on user roles and how to establish SSO.
I have installed Portal Server6.0 and iplanet Directory Server Management Edition installed.
I did go through PS Development guide and got some sample containers up and running in the portal.
Thanks.

For the role-based delivery, Comment 1 sends you in the right direction. Here are a couple things to keep in mind as you read through the customization guide.
The basic gist of what you need is to define your organization profiles with all the services defined at the org level. Then you can define simple profiles at the role level. These will probably focus around the selected and available attributes on the table containers.
Then you might want to pay particular attention to the merge, lock, and propogate attributes. These will allow you to define how the role affects the availability of channels (does the role add, remove, or force the channel?). The easiest thing to do is probably to start with a core group of channels, and then have each role define additional channels that are of interest and should be added to the selected/available lists.
Having roles remove channels will make matters a little more confusing and harder to maintain.

Filtering entries in BP search based upon user

Hi
We are trying to filter out results shown in BP search, based upon users. For that we are trying to follow steps mentioned in IMG
SPRO->IMG-> Customer Relationship Management -> CRM Cross-Application
Components -> Generic Interaction Layer/Object Layer ->
Component-Specific Settings -> Extend Object Model for Business Partner
The field(region) we are using is already present in structure CRMST_HEADER_SEARCH_BUIL and as per my understanding we will be using method Adjust_Result_Table.
But still I am not able to resolve it. Please help me in this regard.
Thanx & Regards
Hits

Hi,
The object that we work with at 2007:
BuilHeaderSearchNew
and not BuilHeader like at the last version
so, we have to implement CL_BUPA_IL_HEADER_SEARCH and not CL_BUIL_HEADER
1. Create :
ZCL_BUPA_IL_HEADER_SEARCH
with superclass:
CL_BUPA_IL_HEADER_SEARCH
2. At customizing:
SPRO->CRM->Cross Application components->Generic Interaction Layer/Object Layer->component specific setting ->Extend Object Model for Business Partner
add:
External Object Name - BuilHeaderSearchNew
Implementation Class - ZCL_BUPA_IL_HEADER_SEARCH
Nou you can use this method for changing the result:
ZCL_BUPA_IL_HEADER_SEARCH ->GET_RESULT_TABLE
good luck
ayelet

Searching PRODUCT column based upon user's input

I have table in Oracle with one column PRODUCT. Column PRODUCT have following values -
Account Management
Active Directory
NT Account
Application Security
Beehive Conference
WebSite Account
HP Laptop
I am designing application where I need to search in column PRODUCT based upon user's input. Lets say user wants search on 'Laptop Account Broken'.
I want to search for all rows in PRODUCT column which contains any of words in user's input. So based upon user's input I want output like below.
Expected Output
Account Management
NT Account
WebSite Account
HP Laptop
I need your help to write me SQL for my desired output. please help -

You can use Regexp_like instead of Instr ;)
PRAZY@11gR2> exec :user_input:='Laptop Account Broken';
PL/SQL procedure successfully completed.
Elapsed: 00:00:00.00
PRAZY@11gR2>
With TableA As (
select 'Account Management' Product from dual union all
select 'Active Directory' from dual union all
select 'NT Account' from dual union all
select 'Application Security' from dual union all
select 'Beehive Conference' from dual union all
select 'WebSite Account' from dual union all
select 'HP Laptop' from dual
--End of sample data
,Temp as
(select regexp_substr(:user_input,'[^ ]+',1,level) str from dual
connect by level <= length(regexp_replace(:user_input,'[^ ]+'))+1)
select product from tableA,temp where
regexp_like(product,str)
PRAZY@11gR2> /
PRODUCT
HP Laptop
Account Management
NT Account
WebSite Account
Elapsed: 00:00:00.00or...
PRAZY@11gR2> exec :user_input:='Laptop Account Broken';
PL/SQL procedure successfully completed.
Elapsed: 00:00:00.00
With TableA As (
select 'Account Management' Product from dual union all
select 'Active Directory' from dual union all
select 'NT Account' from dual union all
select 'Application Security' from dual union all
select 'Beehive Conference' from dual union all
select 'WebSite Account' from dual union all
select 'HP Laptop' from dual
--End of sample data
select distinct Product from tableA where
regexp_like(product,regexp_substr(:user_input,'[^ ]+',1,level))
connect by level <= length(regexp_replace(:user_input,'[^ ]+'))+1
PRODUCT
Account Management
NT Account
WebSite Account
HP Laptop
Elapsed: 00:00:00.06Cheers!

Submit batch job and return control to the user

Hi
Have a situation where we need to submit a batch report and then return control to the user of the application before the report is finished. What is the best way to do this? The old application is written using Java and the application is using threads to do this. However, the application is being re-written in App Ex.
Any ideas would be appreciated.
Thanks

You need to use package APEX_PLSQL_JOB.
You can use the APEX_PLSQL_JOB package to run PL/SQL code in the background of
your application. This is an effective approach for managing long running operations
that do not need to complete for a user to continue working with your application.
Just look for it in the help.

Manage controls based on user

Similar Messages

Maybe you are looking for