MSISDN Based sticky problem

Similar Messages

• Role Based Access problem in forms

  This would be a long reading.
  I'm having a problem with forms Role Based Access.
  We have two databases, one in London and one in Zurich. We have installed
  application server and oracle forms on London database. We have implemented
  Role Based Access to forms. For this we have created a database role (say ZUR_USER)
  in both databases. The view FRM50_ENABLED_ROLES which is used by forms role based access control
  is also created in both databases with a 'grant select to public'.
  Our form system has a menu and forms under that menu. Both menu and the underlying forms have been
  assigned Menu Security/Item Roles to the above mentioned ZUR_USER role and the role is assigned
  to various users.
  Now a Zurich user is trying to login to Zurich database using the URL for forms installation
  in London server. He can login successfully and can see the menu heading in the main screen but
  when he clicks the menu he doesn't see the underlying forms list.
  When we try the same user id and database from London (using the same URL) we see all the forms.
  Any idea what are we missing. The Menu Security is setup at menu level as well as the form level under
  that menu. User can see the menu but not the form under that menu from Zurich. No such problem while
  login from London.

  I'm using the Forms 10g
  and yes the only difference is between login from Zurich and London.
  Problem definitely is due to Role Based Access setup.
  The user in Zurich can see the Menu but not the items under that menu.
  I have set the security set up at both menu and menu item(i.e. form name) level.

• Account Based COPA problems

  Hi all,
  I activated the Account Based COPA, but why customer & product (which is the fixed characteristics from SAP) can not be taken during the report execution.
  Everytime I try to see a report with those characteristics it always come back as unassign field.
  Can anyone help me regarding this problems?
  Thanks.
  Lea

  Hi,
  Costing-based Profitability Analysis is the form of profitability analysis that groups costs and revenues according to value fields and costing-based valuation approaches, both of which you can define yourself. It guarantees you access at all times to a complete, short-term profitability report.
  Account-based Profitability Analysis is a form of profitability analysis organized in accounts and using an account-based valuation approach. The distinguishing characteristic of this form is its use of cost and revenue elements. It provides you with a profitability report that is permanently reconciled with financial accounting.
  You can also use both of these types of CO‑PA simultaneously.
  Hope this helps.
  Rgds
  Manish

• SSO Certificate-based authentication problem

  Hello,
  I have successfully configured certificate-based authentication, and I am able to authenticate with a user certificate that I created with OCA which is stored in the user's profile in OID. Here lies my problem, it seems as if the authentication module (ssomappernickname) only validates against the first certificate stored in the user's profile(userCertificate attribute). This is after I add another certificate to the user's profile. Below is the problem I am describing during my tests:
  Order of certificates stored in user's profile.
  1. valid cert, invalid cert -> successful authentication
  2. invalid cert, valid cert -> unsuccessful authentication (it should STILL be successful here)
  Shouldn't the SSO authentication module search each binary certificate in the multi-value attribute for the correct certificate? Or is there some LDAP control that I need to set in order to get this problem solved? Basically, I need to be able let user's perform certificate authentication against multiple certificates in their profiles.

  For the benefit of anyone finding this, in my case this problem was resolved by reimporting my internal CA's Cert into the ASA.
  I suspect I had inadvertently imported an expired CA Cert into the ASA and this rather un-informative error 1838 is trying to tell you this. 

• Level Based Measure Problem

  Hi All,
  I have been struggling with what I think would be a common problem and I am hoping that someone can help me. I would like to create a report that shows for example the sales figure for a give region and the % that particular region represents of the entire company. This is the easy part. Now if I have a dimension setup from Region -> Site -> Department for example, I would want the % to be taken at that level as well. So the example would be as below. I can do this with two different facts and over riding the drill down to navigate to another report but I would like to do this with the native drill down functionality. Any ideas to the best way to accomplish this would be greatly appreciated. Thank you in advance for your time.
  Region Sales Total Sales % of Total
  ABC $1000 $1500 66.666%
  XYZ $500 $1500 33.333%
  Click on ABC
  Region Site Sales Total Sales % of Total
  ABC 10 $200 $1000 20%
  ABC 20 $800 $1000 80%

  Hi user10800227,
  yes, this is core functionality for measures in the logical layer. Let's take a couple of your examples:
  1. Region Sales
  - Duplicate 'Total Sales' measure, called it 'Total Sales By Region'
  - Set content level for 'Total Sales By Region' to 'Region' level from dimension hierarchy
  2. Site Sales - follow sequence above.
  3. Site Sales as a % of Region Sales
  - New logical measure based existing logical measures
  - Using the expression builder create this new logical measure with syntax similar to:
  100 * (Site Sales / Region Sales)
  4. Presume Total Sales is a sum of ALL regions so there is probably a 'Grand Total' level in your dimension hierarchy.
  - Duplicate 'Total Sales' measure, call it 'All Sales'
  - Set content level for 'All Sales' to 'Grand Total' level
  Then you can create further logical columns for the other rates you want.
  Hope this helps,
  Justin

• EA6500 - Sky On Demand LLC-Based Multiplexing problem

  Hi,
  I believe this is a fairly common problem.  I have fibre broadband with a UK provider.  They supply a BT Openreach modem and a fairly basic router which I've replaced with the EA6500. 
  According to reviews the EA6500 was pretty good although it did require a bit of online support to get it up and running to provide a stable and reasonably strong signal.
  I recently got a Wireless MINI connector from Sky TV to access their On Demand programmes.  The connector does connect to the router without problem but no content is available.  After variable and mostly poor customer support from Sky it would seem in the last month or so the problem with a number of routers has been resolved by setting the multplexing setting from VC to LLC-based.  It would appear this is not exclusive to Cisco/Linksys routers.
  Unfortunately it would seem that there are very few advanced settings on this modem, which is disappointing, but there is no way to even try the LLC setting.  Is there a workaround / setting / alternative that anyone more knowledgable could suggest? 
  I must say I bought this router for improved performance and the Cisco brand was appealing.  Aside from the good customer support, I will certainly be looking elsewhere next time as this quite expensive and supposedly superior product has been problematic from the moment I bought it.
  Any advice gratefully received.

  Thanks for the reply geekychix, much appreciated.
  I don't think it's an issue between a wired versus wireless connection.  Settings are pretty much as you've suggested and in the past there has been no difference between wired/wireless connection and I doubt this is the reason why.
  It seems I am not the only one with this issue.  The suggestion from Sky, only in recent months, has been to switch the multiplexing setting from VC to LLC.  This seems to work for many people like me who have been given the runaround.  As far as all other devices iPods, iPads, android phones, laptops etc, all working fine.This is probably the first router I've bought with such limited admin settings, which given the price and supposed ability, is not very useful.  Also the 5Ghz signal is suprisingly poor but works....after much tweaking.
  Therefore the one last thing to try is changing the multiplexing settings.  Since this cannot be done on this router I wondered if there is any alternative as opening ports, fiddling with MTUs etc is best left to the experts!.  I'm guessing not but I'd have to go back to the old crappy ISP router and essential stick a £100+ router in the bin.

• Sticky problem

  Hi, we have an issue where the sticky tables on our CSS are too large, so that if a server fails, connections move to the rest of the farm. As the sticky table does not time out anytime soon the failed server does not get many connections when it is back online.
  Sticky-inact-timer command does not work as this only makes the entries eligible for removal.
  The content rule is a L4 on port 443, I tried to configure this as an L5 rule with arrowpoint cookies but I suspect this does not work as we are using SSL connection that is not terminated on the CSS.
  The servers themselves send a cookie ? Can I make use of this or as the connection is port 443 am I stuck ?
  Any other solutions would be much appreciated.
  cheers,
  Mike

  Mike,
  let me first say, that if you configure a sticky-inact-timeout, once the entry times out it is removed IMMEDIATELY. There is no concept of elligibility. [this for flows and garbage collection - nothing to do with stickyness].
  Here is an example
  CSS11503-2(debug)# show sticky-table l3-sticky
  L3 Sticky List on Slot 1, subslot 1:
  Entries for page 1.
  Entry Hash Rule Rule Srv Srv Time(Sec) Hit Col Elem Inact
  Number Value Indx State Indx State Elapsed Cnt Cnt Type Cfg(Min)
  1 c0a81429 5 ACT 9 EGRES 59 2 0 L3 1
  Total number of entries found is 1.
  L3 Sticky List on Slot 3, subslot 1:
  Entries for page 1.
  Entry Hash Rule Rule Srv Srv Time(Sec) Hit Col Elem Inact
  Number Value Indx State Indx State Elapsed Cnt Cnt Type Cfg(Min)
  Total number of entries found is 0.
  CSS11503-2(debug)# show sticky-table l3-sticky
  L3 Sticky List on Slot 1, subslot 1:
  Entries for page 1.
  Entry Hash Rule Rule Srv Srv Time(Sec) Hit Col Elem Inact
  Number Value Indx State Indx State Elapsed Cnt Cnt Type Cfg(Min)
  Total number of entries found is 0.
  L3 Sticky List on Slot 3, subslot 1:
  Entries for page 1.
  Entry Hash Rule Rule Srv Srv Time(Sec) Hit Col Elem Inact
  Number Value Indx State Indx State Elapsed Cnt Cnt Type Cfg(Min)
  Total number of entries found is 0.
  CSS11503-2(debug)# show sticky-table l3-sticky
  L3 Sticky List on Slot 1, subslot 1:
  Entries for page 1.
  Entry Hash Rule Rule Srv Srv Time(Sec) Hit Col Elem Inact
  Number Value Indx State Indx State Elapsed Cnt Cnt Type Cfg(Min)
  1 c0a81429 5 ACT 14 EGRES 3 1 0 L3 1
  As you can see, with a 1 min timeout, after 60 sec the entry is removed, and the next time the client comes in it is sent to a different server which creates a new entry.
  So, your problem is that you either do not have the sticky-inact-timeout, in which case you need to manually clear the sticky table when a server goes down/up, or you have the timeout configured but with a value too high so the sticky entry is never removed because always refreshed by a new connection.
  You can use 'advanced-balance ssl' without the ssl module but it only works with 1 type of ssl protocol - SSLv2 [I think] and for the other protocols it just reverts back to sticky-srcip.
  So, you should stick with sticky-srcip and just make it works correctly by setting correct parameter or by clearing the sticky table manually.
  Finally, I'd like to say that there is a known-issue with sticky-srcip in general.
  This is the use of mega-proxy on the Internet.
  A lot of people sitting behind a proxy and therefore appearing with a single ip address on the internet.
  This is known to cause un-even loadbalancing.
  That might be your problem and changing the inact-timeout would have no effect.
  This is one of the reason for a lot of people to buy the ssl module so they can use cookies.
  Gilles.

• JVMTI Based Profiler problem

  Hi to all,
  I am working on a JVMTI based profiler agent library, using this i am trying to achieve the BCI during runtime.
  I am using JVMTI's redefine class features and instrumenting the bytecode during runtime.
  Now i am facing a realy weird problem consider my first scenario:
  1) I run a sample application (consider class A) that prints a simple message inside an infinite loop, this method is called from another threaded class (consider class T).
  2) After the sample application (class A) starts up i immediately change its bytecode, redefines the sample loaded class & reloads it.
  3) After Reloading the sample class (class A) with instrumented class i got the desired instrumented output.
  This is the way i wanted it to always behave, but consider another scenario:
  1) I run a sample application (consider class A) that prints a simple message inside an infinite loop, this method is called from another threaded class (consider class T).
  2) After the application (class A) starts up, i wait for some time doing nothing and let the application run for quite some time (8-10 minutes).
  3) Now change its bytecode, redefines the sample loaded class & reloads it.
  4) After Reloading the sample class (class A) with instrumented class what i saw that it still executes the older class only, this is not what i expected it to do.
  I can't understand the 2nd scenario behaviour as i already checked the stack overflow during sample method call in my base class, which never occurs.
  I use asm classes to invoke the instrumented byte code methods at runtime, which works fine till i instrument the class immediately.
  Any help in this regard would be appreciated.
  Thanks
  bharat...

  Hi Dan,
  answers to the questions you asked are below:
  dcubed wrote:bharat,
  I'm trying to understand your scenarios. A couple of questions embedded below.
  bharat.gusain wrote:
  1) I run a sample application (consider class A) that prints a simple message inside an infinite loop, this method is called from another threaded class (consider class T).So class T has a method that calls a method in class A. The methodin class A executes an infinite loop printing a simple message. Just
  to confirm: the method in class T is not calling the method in class A
  from an infinite loop.No Actually the class T runs the infinite loop (inside the run method since its a thread), inside this infinite loop i am calling a method of class A(Which prints the message).
  yes class T's run method is calling from an infinite loop, class A's method.
  2) After the sample application (class A) starts up i immediately change its bytecode, redefines the sample loaded class & reloads it.What do you mean by "starts up"? Do you mean that you redefinethe sample loaded class before the method with the infinite loop is
  called?NO class T started the thread which calls infinitely the class A's method, hence both class T and class A were loaded and executing when i redefined the class A's method.
  3) After Reloading the sample class (class A) with instrumented class i got the desired instrumented output.So did you get some of the original output followed by the desiredinstrumented output?Yes, I get the original message followed by the instrumented output.
  This is the way i wanted it to always behave, but consider another scenario:
  1) I run a sample application (consider class A) that prints a simple message inside an infinite loop, this method is called from another threaded class (consider class T).
  2) After the application (class A) starts up, i wait for some time doing nothing and let the application run for quite some time (8-10 minutes).
  3) Now change its bytecode, redefines the sample loaded class & reloads it.
  4) After Reloading the sample class (class A) with instrumented class what i saw that it still executes the older class only, this is not what i expected it to do.In this scenario, the method with the infinite loop is running before the redefine and after the redefine, the output doesn't change. Do I have that right?Yes the class T's run method is running an infinite loop(which inturn keeps on calling class A's method), i have not redefined the class A yet.
  Now after waiting for 10 minutes i finaly redefines the class A.
  After redefinition the method of class A is still displaying the same old message output, and class T's thread is still running the infinite loop, just i am missing the instrumented output.
  I can't understand the 2nd scenario behaviour as i already checked the stack overflow during sample method call in my base class, which never occurs.I'm not sure what "stack overflow" has to do with anything. I'm guessing you mean that you checked for errors and didn't get any.I thought because i am calling the method infinitely after sometime it might happened that stack got full and hence i am getting this weird issue, so now i check for stack overflow exception each time i am calling the class A's method.
  I use asm classes to invoke the instrumented byte code methods at runtime, which works fine till i instrument the class immediately.The above sentence doesn't quite match the scenarios described above.According to the above, immediate redefinition worked and redefinition
  after a delay did not work.
  Any help in this regard would be appreciated.I'm guessing that we'll get to the bottom of this with answers to the above questions.DanSorry for misunderstanding... what i meant was, immediate redefinition worked and redefinition
  after a delay did not work.
  Regards
  bharat..
  Edited by: bharat.gusain on Jan 20, 2009 11:47 PM

• Jre-based app problem

  Hi, please help me with the problem. The problem seems to be in JRE: every time i try to use java-based application (minecraft), this app suddenly closes and in the folder, where the app's label is, appears the .log file "hs_err_pid****" (****- 4- or 3-digit number) that starts like this:
  # A fatal error has been detected by the Java Runtime Environment:
  # EXCEPTION_ACCESS_VIOLATION (0xc0000005) at pc=0x000084c1, pid=3548, tid=2840
  # JRE version: 7.0_05-b06
  # Java VM: Java HotSpot(TM) Client VM (23.1-b03 mixed mode windows-x86 )
  # Problematic frame:
  # C 0x000084c1
  # Failed to write core dump. Minidumps are not enabled by default on client versions of Windows
  # If you would like to submit a bug report, please visit:
  # http://bugreport.sun.com/bugreport/crash.jsp
  # The crash happened outside the Java Virtual Machine in native code.
  # See problematic frame for where to report the bug.
  --------------- T H R E A D ---------------
  Current thread (0x496a1800): JavaThread "Minecraft main thread" daemon [_thread_in_native, id=2840, stack(0x50880000,0x508d0000)]
  siginfo: ExceptionCode=0xc0000005, reading address 0x000084c1
  Registers:
  EAX=0x00000000, EBX=0x00000000, ECX=0x694903f4, EDX=0x000001c0
  ESP=0x508cf690, EBP=0x508cf6c8, ESI=0x508cf6b4, EDI=0x4ff7673b
  EIP=0x000084c1, EFLAGS=0x00010202
  Top of Stack: (sp=0x508cf690)
  0x508cf690: 496a1928 508cf6b4 000084c1 42000000
  0x508cf6a0: 43700000 6931aeb0 00000000 c01c6d3c
  ...

  That's a native crash. That does not have to be related to the JRE, it just means the crash happened in a piece of native code and not in a piece of Java code. That could be a native component of the runtime, but more likely it happens in one of the many libraries that Minecraft uses. I would try upgrading your video and sound drivers to the latest versions if you have not already done that. I also had crash problems with Minecraft 1.0 at the time (after a random amount of playing time) and I solved it by removing the OpenAL DLL that is installed with Minecraft; it is very much outdated and generally a better version is already installed if you play any other games. If not, you can download the latest version here: http://connect.creativelabs.com/openal/default.aspx
  For further assistance with your specific commercial product, refer to the company that created it for technical support. Or minecraftforum.net. Or Google.

• Time Based WF - Problem

  I have a requirement to send escalation emails based on customer agreed SLA's. The SLAs like No Activity on SR for # of Days. The email should be sent to SR Owner, his manager, director and so on based on Customer Tier.
  Problem :
  If a New SR was created 07/08 @ 10:00 . There should fire a WF that is waiting for 1 day. Now assume that there is a acivity gets added to the SR @ 14:00 . Now the waiting period should reset and start counting 1 day wait from 14:00 and should cancel out 10:00 WF.
  Has anyone tried this through TimeBased WFs ?
  Thanks

  Hi Danny,
  We had a very similar problem to what you're facing. What ended up being the problem for us was that the server in our portal cluster that we had configured to run the 'Check Valid From' and 'Check Valid To' was removed for the cluster for maintenance purposes. No new documents that had been added were getting their lifetimes set.
  Our solution was to add another cluster server into the list of 'CM Systems' for those two scheduler tasks. To find this, navigate to:
  System Admin -> System Config -> KM -> Content Management -> Global Services -> Scheduler Tasks
  The two jobs that you should be interested in here are:
  Check Valid From
  Check Valid To
  Hope this helps!
  -StephenS

• Configuring cookie based sticky on ACE

  I have an ACE and I am trying to setup stickiness based on HTTP cookies. My objective is to stick a client to one of the real servers in the server farm until the the cookie expires. I am using the same COOKIE name for all three servers but using different values that are unique to each server. On testing I discovered that each client request when stuck to the same real server always uses the same sticky database entry and a browser refresh updates the same entry...what am I doing wrong?
  My config is as follows:
  context Admin
  member STICKY
  access-list ALL line 8 extended permit ip any any
  rserver host SERVER1
  description content server 1
  ip address 134.178.51.17
  inservice
  rserver host SERVER2
  description content server 2
  ip address 134.178.51.18
  inservice
  rserver host SERVER3
  description content server 3
  ip address 134.178.51.19
  inservice
  serverfarm host SFARM1
  predictor leastconns
  rserver SERVER1
  inservice
  rserver SERVER2
  inservice
  rserver SERVER3
  inservice
  sticky http-cookie MYCOOKIE STICKYGroup
  timeout 4
  serverfarm SFARM1
  class-map type http loadbalance match-any L7CLASS6
  2 match http cookie MYCOOKIE cookie-value "123456"
  3 match http cookie MYCOOKIE cookie-value "56789"
  policy-map type loadbalance first-match L7POLICY6
  class L7CLASS6
  sticky-serverfarm STICKYGroup
  class class-default
  serverfarm SFARM1
  class-map match-all V1L4VIPCLASS
  2 match virtual-address 134.178.51.10 tcp eq www
  policy-map multi-match V1L4SLBPOLICY
  class V1L4VIPCLASS
  loadbalance vip inservice
  loadbalance policy L7POLICY6

  Cookie values are learned dynamically by ACE and sticky entries are created.So you do not need to match cookie values.
  With Sticky group configuration you tell ACE which Cookie-name to look for in the HTTP traffic passing through ACE.
  So following should be sufficient
  sticky http-cookie MYCOOKIE STICKYGroup
  timeout 4
  serverfarm SFARM1
  policy-map type loadbalance first-match L7POLICY6
  class class-default
  sticky-serverfarm STICKYGroup
  Lets assume your Server1 is setting cookie value 123456 by using "SET-Cookie:MYCOOKIE=123456" & Server2 is sending ""SET-Cookie:MYCOOKIE=56789" the flow will be as follows
  1. If a new client hits the VIP on ACE with no cookie set then ACE will select a Sever from the server farm as per the LB algo and forward the HTTP request to the selected server. Lets suppose ACE selects Server1.
  3. Server1 will send "SET-Cookie:MYCOOKIE=123456" in the HTTP response to the client.
  4. ACE on getting this response from Server1 will dynamically learn that Server1 is setting up cookie value 123456 and will create a sticky entry in the database.
  (Due to this sticky db entry any subsequent http requests with "Cookie:MYCOOKIE=123456" will be directly forwarded to Server1.
  5. This sticky entry in ACE sticky DB will only time out if "timeout in minutes" configured under sticky group elapses and no active conns are using this entry.With every new http request matching the sticky entry this timeout is initialized.
  6. If a new client come with no cookie set in the Http request then ACE will select a server using LB logic and will learn the cookie value & will create appropriate sticky entry.
  7. If a client sends a request with cookie value present then ACE will simply look into the sticky db and forward the request to the appropriate server.
  HTH
  Syed Iftekhar Ahmed

• URGENT!!! inlineRendering of URL-Based Portlet problem !!!

  Hi there;
  About one month ago I faced a problem which one of the other member has faced it too. He posted the problem and till now nobody has answered it. Any clue in this following regards?
  I have deployed a simple url-based portlet on Oracle9iAS portal by using PDK 2.0
  problem occures when i want to use inlineRendering feature of PDK 2.0, it just poped-up a new windows with wrong url
  Regards,

  Have you tried the WebClipping portlet?
  Its definitely worth taking a look at it.

• ACE sticky problem

  Hi,
  I have an issue with sticky server that I’m hope might just be a command I’m missing.
  I am inserting a cookie and the sticky works fine.
  When my browser has a successful sticky connection i take the server that has the sticky connection out of service. I try to make another connection, i see the connection round robin to all remaining servers but i don’t get a successful connection i do see the connection failure count increment on all other servers in the farm. Only when i bring the server back into service can i get a successful connection.
  Any advice appreciated.
  Sticky config below.
  sticky http-cookie WEB-Cookie-1 WEB-Sticky-1
    cookie insert
    serverfarm WEB-SERVERS-80
  Code
  Version A3(2.0) [build 3.0(0)A3(2.0
  Thanks
  Chris

  Hello Chris, This will be an easy fix for you.  The command you are looking for is defined under the serverfarm inwhich you are creating sticky entries against.. You need to add a failaction.. I'm pasting the command syntax and options for the command.. Based on your breif description failaction purge will give you the desired result:
  (config-sfarm-host) failaction
  To configure the action that the ACE takes if a real server in a server farm goes down, use the failaction command. Use the no form of this command to reset the ACE to its default of taking no action when a server fails.
  failaction {purge | reassign [across-interface]}
  no failaction
  Syntax Description
  purge
  Specifies that the ACE remove the connections to a real server if that  real server in the server farm fails after you configure this command.  The appliance sends a reset (RST) both to the client and to the server  that failed.
  reassign
  Specifies that the ACE reassigns existing server connections to the  backup real server, if a backup real server is configured. If no backup  real server is configured, this keyword has no effect.
  across-interface
  (Optional) Instructs the ACE to reassign all connections from the failed  real server to a backup real server on a different VLAN that is  commonly referred to as a bypass VLAN. By default, this feature is  disabled.

• Version Based Download Problems

  Hi All
  Java WebStart is indeed the best java based client installer software ever made. It works really good(even better than Weblogic Zac).
  I started using this software about 1 week back and am really impressed by it. I was previously a great admirer of Weblogic ZAC.
  I was able to download my jars (w/o version id) from the webserver on to my client machine.
  However i have certain problems (confusions) regarding version based downloads.
  1) do i need a version.xml for enabling version based download or will the version tag in the jnlp file will solve the purpose.
  2) Is there any naming convention for the jar file ex: abc_V1.0.jar, abc_V1.1.jar or simply abc.jar.
  If it is abc.jar then how can i put multiple version of the same jar files on the webserver.
  3) How does the jardiff funda works.
  I am listing my jnlp and xml files
  jnlp file:
  <?xml version="1.0" encoding="utf-8"?>
  <!-- JNLP File for REVERA Application -->
  <jnlp spec="1.0+" codebase="$$codebase">
  <information>
  <title>REVERA</title>
  <vendor>Kale Consultants Ltd.</vendor>
  <homepage href="../index.html"/>
  <description>REVERA 7.0</description>
  <description kind="short"></description>
  <icon href="images/REVERALOGO.gif"/>
  <offline-allowed/>
  </information>
  <security>
  <all-permissions/>
  </security>
  <resources>
  <j2se version="1.3"/>
  <jar href="revera.jar" main="true" download="eager"/>
  <jar href="lib/UILibrary.jar" download="eager"/>
  <jar href="lib/jacob.jar" download="lazy"/>
  <jar href="lib/jaxp.jar" download="lazy"/>
  <jar href="lib/crimson.jar" download="lazy"/>
  <jar href="lib/xalan.jar" download="lazy"/>
  <jar href="lib/jh.jar" part="javahelp" download="lazy"/>
  <jar href="lib/jboss.jar" download="lazy"/>
  <jar href="lib/jboss-j2ee.jar" download="lazy"/>
  <jar href="lib/jnp-client.jar" download="lazy"/>
  <jar href="lib/jboss-client.jar" download="lazy"/>
  <jar href="lib/jbossmq-client.jar" download="lazy"/>
  <jar href="lib/log4j.jar" download="lazy"/>
  <jar href="lib/oswego-concurrent.jar" download="lazy"/>
  <jar href="lib/wl.jar" download="lazy"/>
  <jar href="lib/ij.jar" download="lazy"/>
  <jar href="lib/jsse.jar" download="lazy"/>
  <jar href="lib/jcert.jar" download="lazy"/>
  <jar href="lib/jnet.jar" download="lazy"/>
  <jar href="lib/j2ee.jar" download="lazy"/>
  <jar href="lib/jaxb-rt-1.0-ea.jar" download="lazy"/>
  <jar href="lib/jaxb-xjc-1.0-ea.jar" download="lazy"/>
  <jar href="lib/classes12_01.zip" download="lazy"/>
  </resources>
  <application-desc main-class="jpraxisapp.uiservices.common.applicationframework.PraxisApp"/>
  </jnlp>
  version.xml
  <?xml version="1.0"?>
  <jnlp-versions>
  <resource>
  <pattern>
  <name>revera.jar</name>
  <version-id>1.0</version-id>
  </pattern>
  <file>revera.jar</file>
  <pattern>
  <name>UILibrary.jar</name>
  <version-id>1.0</version-id>
  </pattern>
  <file>UILibrary.jar</file>
  </resource>
  </jnlp-versions>
  web.xml
  <?xml version="1.0" encoding="ISO-8859-1"?>
  <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.2//EN"
  "http://java.sun.com/j2ee/dtds/web-app_2.2.dtd">
  <web-app>
  <servlet>
  <servlet-name>JnlpDownloadServlet</servlet-name>
  <servlet-class>com.sun.javaws.servlet.JnlpDownloadServlet</servlet-class>
  </servlet>
  <servlet-mapping>
  <servlet-name>JnlpDownloadServlet</servlet-name>
  <url-pattern>/app/*</url-pattern>
  </servlet-mapping>
  <mime-mapping>
  <extension>jnlp</extension>
  <mime-type>application/x-java-jnlp-file</mime-type>
  </mime-mapping>
  <mime-mapping>
  <extension>jardiff</extension>
  <mime-type>application/x-java-archive-diff</mime-type>
  </mime-mapping>
  </web-app>
  Thanks :-)
  Robin Paul

  In order to use the version based protocol, you need to run a servlet on the web-server (such as
  the JNLPDownloadServlet included in the developers pack. The naming convension is then up
  to the servlet. The JNLPDownloadServlet uses the abc_V1.0.jar convension, and also
  generates jardiff files dynamically.
  /Andy

• Form-based authentication problem with weblogic

  Hi Everyone,
  The following problem related to form-based authentication
  was posted one week ago and no reponse. Can someone give it
  a shot? One more thing is added here. When I try it on J2EE
  server and do the same thing, I didn't encounter this error
  message, and I am redirected to the homeage.
  Thanks.
  -John
  I am using weblogic5.1 and RDBMSRealm as the security realm. I am having the following problem with the form-based authentication login mechanism. Does anyone have an idea what the problem is and how to solve it?
  When I login my application and logout as normal procedure, it is OK. But if I login and use the browser's BACK button to back the login page and try to login as a new user, I got the following error message,
  "Form based authentication failed. Could not find session."
  When I check the LOG file, it gives me the following message,
  "Form based authentication failed. One of the following reasons could cause it: HTTP sessions are disabled. An old session ID was stored in the browser."
  Normally, if you login and want to relogin without logout first, it supposes to direct you to the existing user session. But I don't understand why it gave me this error. I also checked my property file, it appears that the HTTP sessions are enabled as follows,
  weblogic.httpd.session.enable=true

  Hi...
  Hehe... I actually did implement the way you implement it. My login.jsp actually checks if the user is authenticated. If yes, then it will forward it to the home page. On the other hand, I used ServletAuthentication to solve the problem mentioned by Cameron where Form Authentication Failed usually occurs for the first login attempt. I'm also getting this error occasionally. Using ServletAuthentication totally eliminates the occurence of this problem.
  I'm not using j_security_check anymore. ServletAuthentication does all the works. It also uses RDBMSRealm to authenticate the user. I think the biggest disadvantage I can see when using ServletAuthentication is that the requested resource will not be returned after authentication cause the page returned after authenticating the user is actually hard coded (for my case, it's the home.jsp)
  cheers...
  Jerson
  "John Wang" <[email protected]> wrote:
  >
  Hi Jerson,
  I tried your code this weekend, it didn't work in my case. But
  I solved my specific problem other way. The idea behind my problem is that the user tries to relogin when he already logs in. Therefore, I just redirect the user into another page when he is getting the login page by htting the BACK button, rather than reauthenticate the user as the way you did.
  But, I think your idea is very helpful if it could work. Problems such multiple concurrence logins can be solved by pre-processing.
  In your new code, you solved the problem with a new approach. I am just wondering, do you still implement it with your login.jsp file? In other word, your action in login.jsp is still "Authenticate"? Where do you put the URL "j_security_check"?
  Thanks.
  -John
  "Jerson Chua" <[email protected]> wrote:
  I've solved the problem by using ServletAuthentication. So far I'm not getting the error message. One of the side effects is that it doesn't return the requested URI after authentication, it will always return the home page.
  Jerson
  package com.cyberj.catalyst.web;
  import weblogic.servlet.security.*;
  import javax.servlet.*;
  import javax.servlet.http.*;
  import java.io.*;
  public class Authenticate extends HttpServlet {
  private ServletAuthentication sa = new ServletAuthentication("j_username", "j_password");
  public void doPost(HttpServletRequest request, HttpServletResponse response)
  throws ServletException, java.io.IOException {
  int authenticated = sa.weak(request, response);
  if (authenticated == ServletAuthentication.NEEDS_CREDENTIALS ||
  authenticated == ServletAuthentication.FAILED_AUTHENTICATION) {
  response.sendRedirect("fail_login.jsp");
  } else {
  response.sendRedirect("Home.jsp");
  public void doGet(HttpServletRequest request, HttpServletResponse response)
  throws ServletException, java.io.IOException {
  doPost(request, response);
  "Jerson Chua" <[email protected]> wrote:
  The problem is still there even if I use page redirection. Grrr... My boss wants me to solve this problem so what are the alternatives I can do? Are there any other ways of authenticating the user? In my web tier... I'm using isUserInRole, getRemoteUser and the web tier actually connects to EJBs. If I implement my custom authentication, I wouldn't be able to use this functionalities.
  Has anyone solved this problem? I've tried the example itself and the same problem occurs.
  Jerson
  "Cameron Purdy" <[email protected]> wrote:
  Jerson,
  First try it redirected (raw) to see if that indeed is the problem ... then
  if it works you can "fix" it the way you want.
  Peace,
  Cameron Purdy
  Tangosol, Inc.
  http://www.tangosol.com
  +1.617.623.5782
  WebLogic Consulting Available
  "Jerson Chua" <[email protected]> wrote in message
  news:[email protected]...
  Hi...
  Thanks for your suggestion... I've actually thought of that solution. Butusing page redirection will expose the user's password. I'm thinking of
  another indirection where I will redirect it to another servlet but the
  password is encrypted.
  What do you think?
  thanks....
  Jerson
  "Cameron Purdy" <[email protected]> wrote:
  Maybe redirect to the current URL after killing the session to let the
  request clean itself up. I don't think that a lot of the request (such
  as
  remote user) will be affected by killing the session until the nextrequest
  comes in.
  Peace,
  Cameron Purdy
  Tangosol, Inc.
  http://www.tangosol.com
  +1.617.623.5782
  WebLogic Consulting Available
  "Jerson Chua" <[email protected]> wrote in message
  news:[email protected]...
  Hello guys...
  I've a solution but it doesn't work yet so I need your help. Because
  one
  of the reason for getting form base authentication failed is if an
  authenticated user tries to login again. For example, the one mentionedby
  John using the back button to go to the login page and when the user logsin
  again, this error occurs.
  So here's my solution
  Instead of submitting the page to j_security_check, submit it to a
  servlet
  which will check if the user is logged in or not. If yes, invalidates its
  session and forward it to j_security_check. But there's a problem in this
  solution, eventhough the session.invalidate() (which actually logs theuser
  out) is executed before forwarded to j_security_check, the user doesn't
  immediately logged out. How did I know this, because after calling
  session.invalidate, i tried calling request.RemoteUser() and it doesn't
  return null. So I'm still getting the error. What I want to ask you guyis
  how do I force logout before the j_security_check is called.
  here's the code I did which the login.jsp actually submits to
  import javax.servlet.*;
  import javax.servlet.http.*;
  import java.io.*;
  public class Authenticate extends HttpServlet {
  public void doPost(HttpServletRequest request, HttpServletResponseresponse)
  throws ServletException, java.io.IOException {
  if (request.getRemoteUser() != null) {
  HttpSession session = request.getSession(false);
  System.out.println(session.isNew());
  session.invalidate();
  Cookie[] cookies = request.getCookies();
  for (int i = 0; i < cookies.length; i++) {
  cookies.setMaxAge(0);
  getServletContext().getRequestDispatcher("/j_security_check").forward(reques
  t, response);
  public void doGet(HttpServletRequest request, HttpServletResponseresponse)
  throws ServletException, java.io.IOException {
  doPost(request, response);
  let's help each other to solve this problem. thanks.
  Jerson
  "Jerson Chua" <[email protected]> wrote:
  I thought that this problem will be solved on sp6 but to my
  disappointment, the problem is still there. I'm also using RDBMSRealm,same
  as John.
  Jerson
  "Cameron Purdy" <[email protected]> wrote:
  John,
  1. You are using a single WL instance (i.e. not clustered) on that
  NT
  box
  and doing so without a proxy (e.g. specifying http://localhost:7001),
  correct?
  2. BEA will pay more attention to the problem if you upgrade to SP6.If
  you don't have a reason NOT to (e.g. a particular regression), then
  you
  should upgrade. That will save you one go-around with support: "Hi,I
  am
  on SP5 and I have a problem.", "Upgrade to SP6 to see if that fixes
  it.
  Call back if that doesn't work."
  3. Make sure that you are not doing anything special before or after
  J_SECURITY_CHECK ... make sure that you have everything configuredand
  done
  by the book.
  4. Email BEA a bug report at [email protected] ... see what they say.
  Peace,
  Cameron Purdy
  Tangosol, Inc.
  http://www.tangosol.com
  +1.617.623.5782
  WebLogic Consulting Available
  "John Wang" <[email protected]> wrote in message
  news:[email protected]...
  Cameron,
  It seems to me that the problem I encountered is different a little
  from
  what you have, evrn though the error message is the same eventually.
  Everytime I go through, I always get that error.
  I am using weblogic5.1 and sp5 on NT4.0. Do you have any solutions
  to
  work
  around this problem? If it was a BUG as you
  pointed out, is there a way we can report it to the Weblogic
  technical support and let them take a look?
  Thnaks.
  -John
  "Cameron Purdy" <[email protected]> wrote:
  John,
  I will verify that I have seen this error now (after having read
  about it
  here for a few months) and it had the following characteristics:
  1) It was intermittent, and appeared to be self-curing
  2) It was not predictable, only seemed to occur at the first
  login
  attempt,
  and may have been timing related
  3) This was on Sun Solaris on a cluster of 2 Sparc 2xx's; the
  proxy
  was
  Apache (Stronghold)
  4) After researching the newsgroups, it appears that this "bug"
  may
  have gone away temporarily (?) in SP5 (although Jerson Chua
  <[email protected]> mentioned that he still got it in SP5)
  I was able to reproduce it most often by deleting the tmpwar and
  tmp_deployments directories while the cluster was not running,
  then
  restarting the cluster. The first login attempt would fail(roughly
  90%
  of
  the time?) and that server instance would then be ignored by the
  proxy
  for a
  while (60 seconds?) -- meaning that the proxy would send all
  traffic,
  regardless of the number of "clients", to the other server in thecluster.
  As far as I can tell, it is a bug in WebLogic, and probably has
  been
  there
  for quite a while.
  Peace,
  Cameron Purdy
  Tangosol, Inc.
  http://www.tangosol.com
  +1.617.623.5782
  WebLogic Consulting Available
  "John Wang" <[email protected]> wrote in message
  news:[email protected]...
  Hi Everyone,
  The following problem related to form-based authentication
  was posted one week ago and no reponse. Can someone give it
  a shot? One more thing is added here. When I try it on J2EE
  server and do the same thing, I didn't encounter this error
  message, and I am redirected to the homeage.
  Thanks.
  -John
  I am using weblogic5.1 and RDBMSRealm as the security realm. I
  am
  having
  the following problem with the form-based authentication login
  mechanism.
  Does anyone have an idea what the problem is and how to solve it?
  When I login my application and logout as normal procedure, it
  is
  OK.
  But
  if I login and use the browser's BACK button to back the login
  page
  and
  try
  to login as a new user, I got the following error message,
  "Form based authentication failed. Could not find session."
  When I check the LOG file, it gives me the following message,
  "Form based authentication failed. One of the following reasons
  could
  cause it: HTTP sessions are disabled. An old session ID was stored
  in
  the
  browser."
  Normally, if you login and want to relogin without logout first,
  it
  supposes to direct you to the existing user session. But I don'tunderstand
  why it gave me this error. I also checked my property file, it
  appears
  that
  the HTTP sessions are enabled as follows,
  weblogic.httpd.session.enable=true