Need help on Form Based Authenctication in OAM

Similar Messages

• Help on form based on tables

  Hi
  I am new to Portal,
  My problem is I have a form based on a table, Now I want to process the form after a validation (eg: username and password)
  so I added two more new components to the form to get username and password and I tried to validate this by writing a procedure to the submit button before 'doinsert;'. Then I cant get the values of those two new fields by
  uname:= p_session.get_value_as_VARCHAR2(
  p_block_name => 'DEFAULT',
  p_attribute_name => 'A_UNAME');
  Anyone have a solution?
  Thanks.

  thanks for the clue, but what i want is to validate the username and password befor do insert what i tried is
  declare
  mid member.member_id%Type;
  msg_id number;
  user member.uname%Type;
  pswd member.pwd%Type;
  begin
  msg_id := p_session.get_value_as_NUMBER(
  p_block_name => 'DEFAULT',
  p_attribute_name => 'A_U_ID');
       user := p_session.get_value_as_VARCHAR2(
  p_block_name => 'DEFAULT',
  p_attribute_name => 'A_PWD');
       pswd := p_session.get_value_as_VARCHAR2(
  p_block_name => 'DEFAULT',
  p_attribute_name => 'A_REPLY_TO');
       SELECT member.member_id INTO mid
       FROM member
       WHERE member.uname= user AND member.pwd= pswd;
       IF mid<>null THEN
            p_session.set_value(
                 p_block_name => 'DEFAULT',
            p_attribute_name => 'A_MEMBER_ID',
            p_value => mid);
            doInsert;
            proc_update1(msg_id);
       END IF;
  end;
  but this gives an error!
  help needed urgently!
  thanks

• Reset Password In Form Based Authentication "OIM - OAM Integration" SSO

  Hi All
  I want to give Password Reset Option in the Form Based Authentication page for OIM-OAM SSO Application, could you please help me in that??
  my SSO is working with OIM 9.1.0.2BP06 with OAM 10.1.4.2.0, and i have created Simple Form in html, for the Authnetication, Now i want Password Reset Button on Form, and will have to reset through LDAP
  TA

  Provide the OIM links for registration and forgot password.
  If your OAM has a user store(LDAP) where OIM is provisioning, your changes will be reflected in OAM
  Hope this helps,
  Sagar

• I need help in form 6i

  Good morning everyone,
  I need help please
  someone who has handled expiry of session in form 6i
  I am using a library called D2KWUTIL.PLL
  and triggers When-new-form-instance and When-timer-expired.
  The problem I have is that the screens flash forms text boxes, I realized that this is for the trigger When-timer-expired
  and believe that my timer every 1 second, the issue is to control the inaction and close all forms.
  Help me if you know another way to handle session expiration.
  thanks in advance.

  Andreas Weiden wrote:
  A way to do it in forms could be this:
  -Create a global containg the last time the user did an action.
  -Create a form-level WHEN-VALIDATE-ITEM-trigger an let it update that date. (If you want also other actions to be treated as "action", you might add additional triggers, like KEY-ENTQRY and KEY-EXEQRY,..)
  -Create a timer, whichs check if the last actiondate in the global is older than you want to allow.
  -Make sure that the timer fires as less often as possible.
  Personally, i would recommend to not do it that way, because when you "switch" to webforms some day, the timers can/will make problems.thanks for replying,
  may be more explanatory
  thanks

• Need help regarding form validation

  Hi all,
  I have particular doubt regarding form validation. I have a form based on a table. ( One data block ) . I have a function in program unit which return boolean value based on some conditions. I will be calling this function in block validate trigger.
  What i need is , if function return false i need to stop any insertion,updation action that's going to be done by forms.( point to control insertion and updation)
  I don't want to use form triggure failure builtin. What should i do ? plz guide
  regards

  what are you going to do stop insert/update upon commit?
  -- use on-insert trigger
  if allowed_to_insert then
  insert_record;
  end if;
  -- use on-update trigger
  if allowed_to_update then
  update_record;
  end if;
  if when entering data, you might want to check set_block_property

• Need Help w/Form Component

  running SJSC2U1 on XP
  Need help with using the form and associated components to create a search functionality in a jspf page..
  I have used the form component and attempted to use the properties method="get" action="http://www.aaa.com/query.html" name="getit" etc...
  I am told (error msg) that these methods, etc. are not valid for the "form" component
  Does anyone now how to create a search functionality in a jspf page using components, be it "markup" layoutPanel, Form or whatever..
  a simple example (code) would be great.
  Thanks

  running SJSC2U1 on XP
  Need help with using the form and associated components to create a search functionality in a jspf page..
  I have used the form component and attempted to use the properties method="get" action="http://www.aaa.com/query.html" name="getit" etc...
  I am told (error msg) that these methods, etc. are not valid for the "form" component
  Does anyone now how to create a search functionality in a jspf page using components, be it "markup" layoutPanel, Form or whatever..
  a simple example (code) would be great.
  Thanks

• Ask for help with form based authentication & authorization

  Hi:
  I encountered the following problem when I tried the form based authentication & authorization (see the attached part of the config files, web.xml, weblogic.xml & weblogic.properties)
  1. authorization seems not invoked against the rules specfied, it doesn't go the login error page as long as the user/pwd match, even though the user does not have the necessary role
  in the example below, user3 should be denied to access the signin page, but seems no login error page returned, actually I never see any page / error message which complain about the authorization / access control error
  2. after authenticate correctly, always get redirected to the / (context root) url, instead of the url prior the login page, for e.g., signin page
  Any idea ?
  Thanks in advance.
  HaiMing
  attach config files
  web.xml
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>MySecureBit1</web-resource-name>
  <description>no description</description>
  <url-pattern>/control/signin</url-pattern>
  <http-method>POST</http-method>
  <http-method>GET</http-method>
  </web-resource-collection>
  </security-constraint>
  <login-config>
  <auth-method>FORM</auth-method>
  <realm-name>default</realm-name>
  <form-login-config>
  <form-login-page>/control/formbasedlogin</form-login-page>
  <form-error-page>/control/formbasedloginerror</form-error-page>
  </form-login-config>
  </login-config>
  <security-role>
  <description>the customer role</description>
  <role-name>customer</role-name>
  </security-role>
  weblogic.xml
  <security-role-assignment>
  <role-name>
  customer
  </role-name>
  <principal-name>
  customer_group
  </security-role-assignment>
  weblogic.properties
  weblogic.password.user1=user1pass
  weblogic.password.user2=user2pass
  weblogic.password.user3=user3pass
  weblogic.security.group.customer_group=user1,user2

  Hi, Paul:
  Thanks a lot for your reply.
  Firstly let me just correct a little in the attachment I put previously, I think I missed following lines :
  <auth-constraint>
  <description>no description</description>
  <role-name>customer</role-name>
  </auth-constraint>
  So, user1 & user2 are in the customer group, but user3 not, and /control/singin is protected by this security constraint, as a result, when anyone click the link to /control/singin, he was led to the login page, if he tries to login as user1 & user2, he should pass & led to original page (in this case /control/singin, and my code's logic, once /control/signin is used, means that he already login successfully & redirected to the login success page), but if he tries to login as user3, he should only pass the authentication check, but fail the authorization check, and led to login error page.
  What not happen are :
  1. user1 & user2 pass, but redirect to /
  2. user3 also pass, because I see that debug message shows also get redirected to /, instead of login error page
  (login error page will be displayed, only if I try to login as a user with either wrong userid, or wrong password)
  3. one more thing I notice after I first time post the message, the container does not remember the principal, after 1. is done, not even for a while
  And the similar configuration works under Tomcat 3.2.1, for all 3. mentioned above.
  Any idea ?
  HaiMing
  "Paul Patrick" <[email protected]> wrote:
  If I understand what your trying to do, everyone should get access to the
  login page since roles are not
  associated with principals until after they authenticate. If I follow what
  you specified in the XML files,
  authenticated users user1 and user2 are members of a group called
  customer_group.
  The principal customer_group (and therefore its members) is mapped in the
  weblogic.xml file to the role
  customer.
  I can't speak to the reason your being redirected to the document root.
  Paul Patrick
  "HaiMing" <[email protected]> wrote in message
  news:[email protected]...
  Hi:
  I encountered the following problem when I tried the form basedauthentication & authorization (see the attached part of the config files,
  web.xml, weblogic.xml & weblogic.properties)
  1. authorization seems not invoked against the rules specfied, itdoesn't go the login error page as long as the user/pwd match, even though
  the user does not have the necessary role
  in the example below, user3 should be denied to access the signinpage, but seems no login error page returned, actually I never see any page
  / error message which complain about the authorization / access control
  error
  2. after authenticate correctly, always get redirected to the / (contextroot) url, instead of the url prior the login page, for e.g., signin page
  Any idea ?
  Thanks in advance.
  HaiMing
  attach config files
  web.xml
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>MySecureBit1</web-resource-name>
  <description>no description</description>
  <url-pattern>/control/signin</url-pattern>
  <http-method>POST</http-method>
  <http-method>GET</http-method>
  </web-resource-collection>
  </security-constraint>
  <login-config>
  <auth-method>FORM</auth-method>
  <realm-name>default</realm-name>
  <form-login-config>
  <form-login-page>/control/formbasedlogin</form-login-page>
  <form-error-page>/control/formbasedloginerror</form-error-page>
  </form-login-config>
  </login-config>
  <security-role>
  <description>the customer role</description>
  <role-name>customer</role-name>
  </security-role>
  weblogic.xml
  <security-role-assignment>
  <role-name>
  customer
  </role-name>
  <principal-name>
  customer_group
  </security-role-assignment>
  weblogic.properties
  weblogic.password.user1=user1pass
  weblogic.password.user2=user2pass
  weblogic.password.user3=user3pass
  weblogic.security.group.customer_group=user1,user2

• Need help with form calculations

  I'm converting a non-editable PDF form into an editable one and could use some help as I'm am new to this. Note: I did not create the non-editable form, It's a form I downloaded and use in my business.
  I already figured out how to create text fields in the already created PDF non-editable form, now I'm trying to add in calculations. I can create the (value is the) calculations between 2 or more text fields, but now I need to multiply one text field by the number 3 and have the answer show up in another text field.
  Example:
  I'll use the letters A & B for the text filed names in my example.
  I have text field A calculating the sum of other text fields using the (value is the sum of) option under the (calculate properties box.)
  Now I want text field B to multiply text field A by a fixed number of 3.  (A=24) x 3=72. I need text field B to have the answer of 72 in it.
  I need text field B to always multiply text field A by 3.
  Does anyone know how I can accomplish this?
  I'm using Adobe 8 Pro.
  Please note that I have no experiance using custom calculation script if that is the only way this will work and will step by step instruction on how to write the code.
  Thank you very much.

  You can use the simplified field notation option. In this case, you'd enter:
  3 * A
  Where "A" the the exact name of the A field. It is best to avoid spaces and any other special characters for any fields that you'll want to include when using simplified field notation option.

• Need help on forms

  Hello ,
  I wanted some help with form6i error messages.
  I wanted to define form6i error messages within database.
  And include severity (information, warning, error, or fatal),summary and detail information with variable text substitution ,common error -handling frame work formats errors for end user display and logs error information based on severity level.
  All the form messages should be stored in table and then it will be
  Customize and will be shown to user at runtime . how should I do that?
  This is really very urgent
  Thanks in advance ….

  This forum is for posting feedback about the OTN site.
  The best place for your question is probably the Forms.

• Need Help about Certificate based Authentication

  Hi friends..
  Currently, i'm trying to develop an applet that using Certificate Based Authentication..
  i have looked at this thread : http://forums.sun.com/thread.jspa?threadID=5433603
  these is what Safarmer says about steps to generate CSR :
  0. Generate key pair on the card.
  1. Get public key from card
  2. Build CSR off card from the details you have, the CSR will not have a signature
  3. Decide on the signature you want to use (the rest assumes SHA1 with RSA Encryption)
  4. Generate a SHA1 hash of the CSR (without the signature section)
  5. Build a DigestInfo structure (BER encoded TLV that you can get from the PKCS#1 standard) that contains the message digest generated in the previous step
  6. Send DigestInfo to the card
  7. On the card, the matching private key to encrypt the DigestInfo
  8. Return the encrypted digest info to the host
  9. Insert the response into the CSR as the signature
  Sorry, i'm a little bit confused about those steps.. (Sorry i'm pretty new in X509Certificate)..
  on step 4,
  Generate a SHA1 hash of the CSR (without the signature section)
  Does it mean we have to "build" CSR looks like :
  Data:
  Version: 0 (0x0)
  Subject: C=US, ST=California, L=West Hollywood, O=ITDivision, OU=Mysys, CN=leonardo.office/[email protected]
  Subject Public Key Info:
  Public Key Algorithm: rsaEncryption
  RSA Public Key: (1024 bit)
  Modulus (1024 bit):
  00:be:a0:5e:35:99:1c:d3:49:ba:fb:2f:87:6f:d8:
  ed:e4:61:f2:ae:6e:87:d0:e2:c0:fd:c1:0f:ed:d7:
  84:04:b5:c5:66:cd:6b:f0:27:a2:cb:aa:3b:d7:ad:
  fa:f4:72:10:08:84:88:19:24:d0:b0:0b:a0:71:6d:
  23:5e:53:4f:1b:43:07:98:4d:d1:ea:00:d1:e2:29:
  ea:be:a9:c5:3e:78:f3:5e:30:1b:6c:98:16:60:ba:
  61:57:63:5e:6a:b5:99:17:1c:ae:a2:86:fb:5b:8b:
  24:46:59:3f:e9:84:06:e2:91:b9:2f:9f:98:04:01:
  db:38:2f:5b:1f:85:c1:20:eb
  Exponent: 65537 (0x10001)
  Attributes:
  a0:00
  on step 5, Build a DigestInfo structure (BER encoded TLV that you can get from the PKCS#1 standard) that contains the message digest generated in the previous step
  How DigestInfo structure (BER encoded TLV that you can get from the PKCS#1 standard) looks like?
  And what is the DigestInfo Contains, and what is TAG for DigestInfo?..
  Please help me regarding this..
  Thanks in advance..
  Leonardo Carreira

  Hi,
  Leonardo Carreira wrote:
  Sorry, Encode the Public Key is handled by On Card Application or Off Card Application?..
  I think its' easier to encode the public key by Off Card app..
  Could you guide me how to achieve this?, i think Bouncy Castle can do this, but sorry, i don't know how to write code for it.. :( All you need to do is extract the modulus and exponent of the public key. These will be in a byte array (response from your card) that you can use to create a public key object in your host application. You can then use this key to create a CSR with bouncycastle.
  I have several some questions :
  1. Does Javacard provide API to deal with DER data format?JC 2.2.1 does not buy JC 2.2.2 does, however I believe this is an optional package though. You can implement this in your applet though.
  2. Regarding the Certificate Based Authentication, what stuff that need to be stored in the Applet?..
  - I think Applet must holds :
  - its Private Key,
  - its Public Key Modulus and its Public Key Exponent,
  - its Certificate,
  - Host Certificate
  i think this requires too much EEPROM to store only the key..This depends on what you mean by Certificate Based Authentication. If you want your applet to validate certificates it is sent against a certificate authority (CA) then you need the public keys for each trust point to the root CA. To use the certificate for the card, you need the certificate and corresponding private key. You would not need to use the public key on the card so this is not needed. You definitely need the private key.
  Here is a rough estimate of data storage requirements for a 2048 bit key (this is done off the top of my head so is very rough):
  ~800 bytes for your private key
  ~260 bytes per public key for PKI hierarchy (CA trust points)
  ~1 - 4KB for the certificate. This depends on the amount of data you put in your cert
  3. What is the appropriate RSA key length that appropriate, because we have to take into account that the buffer, is only 255 bytes (assume i don't use Extended Length)..You should not base your key size on your card capabilities. You can always use APDU chaining to get more data onto the card. Your certificate is guaranteed to be larger than 256 bytes anyway. You should look at the NIST recommendations for key strengths. These are documented in NIST SP 800-57 [http://csrc.nist.gov/publications/PubsSPs.html]. You need to ensure that the key is strong enough to protect the data for a long enough period. If the key is a transport key, it needs to be stronger than the key you are transporting. As you can see there are a lot of factors to consider when deciding on key size. I would suggest you use the strongest key your card supports unless performance is not acceptable. Then you would need to analyse your key requirements to ensure your key is strong enough.
  Cheers,
  Shane

• Need Help on Forms Personalization

  Hi All,
  I am doing personalization on Sales Order Form.When i select Order Type as 'Mixed' i have to display salesperson as "No Sales Credit" in the form.But when i click on lov of salesperson field it is giving list of values. But i need only one item in the list i.e "No Sales Credit" when i select order type as 'MIXED'.For this i am trying to restrict lov of salesperson through Create Record Group from Query Built-in.But where can i put condition as Order Type as 'Mixed' in that personalization.
  Can anyone please help me out.
  Is there any posssible way to do this.
  Thanks in advance,
  Dhanasurya

  Hi DhanaSurya,
  First, you need to put 'Order Type' as Mixed in the Query Where clause of 'Create Record group from Query', and then you need to atatch a new Record group to the LOV with property:
  Object Type: LOV
  Target Object: <OLD LOV ON FORM>
  Property name: GROUP_NAME
  Value: 'customized Record Group Name'.
  Regards,
  Kiran

• Need help getting form created in Acrobat X to email form data back to me

  The form I created seems to work from my computer that has Acrobat X installed but when I try to submit the PDF with a computer that only has Reader installed it says "This Operation is Prohibited."
  The end users of this form will most likely only have Adobe Reader, how do I set up my form so that it is compatible with Reader?
  Thanks for your help!

  You have 2 choices and one depends on your satisfying the limits of the EULA (no more than 500 submissions basically). For the latter, you have the entire form submitted and you have to enable Reader Rights in Acrobat. On this machine (AA8), it is under the Advanced menu, not sure with AAX (I think they moved it). For the other choice that does not have the license limit, you do not activate Reader Rights, but have the data submitted as an FDF file (XML if you are using Designer, but then Designer questions should really go to the LiveCycle forum). When you receive the FDF or XML file, you simply go to the forms menu in Acrobat > Manage Data, and import the data. The FDF Toolkit also allows separate manipulation of data files.

• Need help on Scenario based questions and answers...

  Hi,
  I have worked a bit on SSIS. I am preparing for SSIS interviews. I have faced some. Mostly they ask for scenario based questions. If anyone can provide some scenario based questions, it will be great help.
  Thanks in advance.
  Anujit Karmakar Sr. Software Engineer

  Hi Anujit,
  If you want to do something preparing for SSIS interviews, it's important to get some sense of SQL Server Integration Services. "Professional Microsoft SQL Server 2008 Integration Services" is a great book and tutorial for learning SSIS. It
  includes plenty of examples, code snippets and few case studies as well.
  Besides, just as Vaibhav said, please go through all the problems people mention in this forum, this will pretty much give you ideas about real time Scenarios Questions and Answers.
  The following links might be helpful for your interview:
  http://www.sqlserverquest.com/p/ssis-interview-questions.html
  http://biexpertsworld.blogspot.in/2013/02/faq-ssis-interview-questions.html
  https://www.katieandemil.com/ssis-interview-questions-and-answers-pdf-download?tab=article
  Thanks,
  Katherine Xiong
  Katherine Xiong
  TechNet Community Support

• Need help with Forms on iPad

  I am trying to view and submit forms on my iPad. I've created a form in LiveCycle and emailed it to myself but I am unable to view or open the PDF form with the Adobe Reader app. Please help!

  Hi Randy - I have Adobe Acrobat Pro 9.5 and when I try to create a new form a pop-up comes up saying that the form will be edited in Adobe LiveCycle designer and that Adobe Acrobat will close. I do not have the option to stay in Adobe Acrobat. Any idea how to stay in Adobe Acrobat instead of moving into LiveCycle? I want to create some PDF forms that can be filled out on an iPad in Adobe Reader and then emailed. Thank you!

• Need help on Forms Customization

  Hi All,
  I have one requirement i.e I developed one form which contails 3 windows.First window is for Query_Find, second one is for orders Summary and third window is for detail.In detail window i have one stacked canvas which displays order details in tabular form.i have written code for inserting data into one custom table in ON-INSERT and ON-UPDATE trigger of that block.
  and Commit_Form in the KEY-COMMIT trigger.My requirement if i check the chekbox and change the status(List item ) from status field and when i click on save button it's saving the changes.But i don't want to save the changes at this time.
  How can we restict save changes at this point?
  Can any one plzz give me some idea.
  Thanks in Advance,

  Dhana,
  In the When-Button-Pressed trigger just check the value of the CheckBox and the Status field value before you call the Commit_Form built-in or Commit. But what about if the user clicks on the Save button in the Menu? What if the user uses Ctrl+S to save. You would also want to perform a similar check in the Key-Commit Form level trigger if you want to prevent the "Save" from these options as well.
  Hope this helps,
  Craig B-)
  If a response is helpful or correct, please mark it accordingly.