New Login Page/Authentication Method
Hello Forum users,
This weekend we have gone live with a new method of authentication in the NI Discussion Forums. This change is setting us up to successfully log users in to both Forums and Community simultaneously in the future. This change should be vitrually invisible to you, but you may notice a new look when you are redirected to log into the Forums. Also, you will notice if you select the Logout button, you will now be logged out of the NI Discussion Forums as well as all of ni.com.
Note: If you currently log into the Forums with a saved bookmark, your bookmark should still work for now but that will be changing in the future. Please update your bookmark to use the new login link.
Thanks,
Jordan
tst wrote:
A big additional problem I saw on the PC where I tried the new link both earlier and now - after I log in using the link, going to other pages sometimes logs me out (or at least the page is displayed as if I'm not logged in). This happens when opening pages in a new tab (which I do often), but I also saw it when opening a page in the same tab.
This is a big deal, because once I'm logged in, I expect to stay that way. I rely on being logged in to function the way I want to.
This happened to me too when I tried it this morning (using Firefox, Windows 7 64-bit).
There are only two ways to tell somebody thanks: Kudos and Marked Solutions
Unofficial Forum Rules and Guidelines
Similar Messages
-
Running into Exception while Creating new Login Page for Security
Hi,
I am following ADF Developers Guide to create a new login page ,so that whenever a page is run , first it redirects to Login page first and on Button click it
goes to the Original page which was run.
This is my Login bean code for doLogin()
public String doLogin(){
String un = _username;
byte[] pw = _password.getBytes();
FacesContext ctx = FacesContext.getCurrentInstance();
HttpServletRequest request = (HttpServletRequest)ctx.getExternalContext().getRequest();
try {
CallbackHandler handler = new URLCallbackHandler(un, pw);
Subject mySubj = weblogic.security.services.Authentication.login(handler);
weblogic.servlet.security.ServletAuthentication.runAs(mySubj, request);
ServletAuthentication.generateNewSessionID(request);
//String loginUrl = "/adfAuthentication?success_url=/faces/viewactivityname";
//sendForward(loginUrl);
} catch (FailedLoginException fle) {
FacesMessage msg = new FacesMessage(FacesMessage.SEVERITY_ERROR,"Incorrect Username or Password","An incorrect Username or Password" +" was specified");
ctx.addMessage(null, msg);
setPassword(null);
} catch (LoginException le) {
reportUnexpectedLoginError("LoginException", le);
return null;
Now the Dev guide says that :: "Specifically, without specifying a view activity as the
redirect target, command components, such as the commandButton
component, will always return to the original page after login."
Hence I have commented out the code for the call to sendForward().
As soon as I press the button I am running into an error :: "javax.faces.el.EvaluationException: java.lang.NullPointerException"
]] Root cause of ServletException.
javax.faces.el.EvaluationException: java.lang.NullPointerException
at org.apache.myfaces.trinidad.component.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:51)
at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:102)
at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:190)
at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:787)
at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1252)
Truncated. see log file for complete stacktrace
Caused By: java.lang.NullPointerException
at oracle.sample.view.LoginBean.doLogin(LoginBean.java:60)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
These are the steps which I followed ::
a) Created Managed bean class and registered it to adfc.config.xml
b) Created a Custom Login Page say Login.jspx and created a DataBound Page say EmpDetails.jspx
c) Made sure that My Login page is custom Login Page
d) Command Button has the Action Property set to LoginBean.doLogin
e) Configured security and has only one user, no roles and assigned the user to access the page
e) When I run EmpDetails.jspx , I am redirected to Login page as expected but as soon as I press
Login "CommandButton" it throws this error.
Any pointers.
Regards,
Nikhil MisraHi Puthanampatti,
In that ase what would be my sendForward() mthod look like.
Currently as per the Dev guide it is :
private void sendForward(String forwardUrl) {
FacesContext ctx = FacesContext.getCurrentInstance();
try {
ctx.getExternalContext().redirect(forwardUrl);
} catch (IOException ie) {
reportUnexpectedLoginError("IOException", ie);
ctx.responseComplete();
I understand tat there would be change in parameters like sendForward(HttpServletRequest request,HttpServletResponse response,String forwardUrl),
but how would the other parameters work.
Regards,
Nikhil Misra -
Hi,
I have created a new login page so that when the users enter they are presented with all the available application they have access to. When they click on an application Say the timesheet i am storing there user name in an item on the timesheet page. If there are multiple users the system can not keep track of what user it has and displays someone elses user name to the user.
Any Ideas?
Thanks
KevinKevin - If your application requires authentication and you don't use the built-in authentication and session management mechanisms provided by wizard-created authentication schemes (and their associated login pages), then you'll have to debug your own code as we have no idea what the design and implementation details are. However, if you are having trouble with some of the built-in mechanisms, please provide more details, preferably an example on htmldb.oracle.com.
Scott -
10g904 - custom login pages & development method of applics for SSO
i am getting baffled with these custom login pages and their connection with the SSO.
I have now read extensive documentation from the following:
Oracle® AS SSO Admin Guide for release 10g (9.0.4) (B10378-01)
Oracle® AS SSO App Developers Guide for release 10g (9.0.4) (B10852-01)
Oracle® AS SSO Admin Guide 10g (9.0.4) (B13791-01)
Oracle® AS App Developers Guide for release 10g (9.0.4) (B10378-01)
Oracle® SSO Developers Guide for version 306
what baffles me is how custom login pages are to be defined for the 10g versions of AS.
in 10g (904) version, applications for SSO can be protected using mod_osso, and may be developed using mod_osso or using SSO-SDK which is deprecated from this version.
1. this means that if we do not have to use SSO-SDK (which is deprecated in 904 version) and where we need to protect applications using the mod_osso, then why do we need to use the custom pages.
2. how do the custom-defined deployment specific login pages or change-password pages work?
3. what is the role of SSO for partner applications if we do not configure it specifically.
any helpful hints or links would be highly appreciated.
thanksi am getting baffled with these custom login pages and their connection with the SSO.
I have now read extensive documentation from the following:
Oracle® AS SSO Admin Guide for release 10g (9.0.4) (B10378-01)
Oracle® AS SSO App Developers Guide for release 10g (9.0.4) (B10852-01)
Oracle® AS SSO Admin Guide 10g (9.0.4) (B13791-01)
Oracle® AS App Developers Guide for release 10g (9.0.4) (B10378-01)
Oracle® SSO Developers Guide for version 306
what baffles me is how custom login pages are to be defined for the 10g versions of AS.
in 10g (904) version, applications for SSO can be protected using mod_osso, and may be developed using mod_osso or using SSO-SDK which is deprecated from this version.
1. this means that if we do not have to use SSO-SDK (which is deprecated in 904 version) and where we need to protect applications using the mod_osso, then why do we need to use the custom pages.
2. how do the custom-defined deployment specific login pages or change-password pages work?
3. what is the role of SSO for partner applications if we do not configure it specifically.
any helpful hints or links would be highly appreciated.
thanks -
Username and password with new login page
i have created an application where in which in login page i have created
3 items username and password confirm password . where does the
data entered in the items fall . how can i retrieve the data .Just some information :
- The problem with LOGIN page exists. I don't have that problem with for example GMAIL when defined as external application, but with my applications in Oracle Application Server.
- There is also another thing I don't understand. The link to external application is something like:
javascript:open_jwindow('../ealogin?ID=76D4766','76');
and couldn't be executed outside pls/orasso
in other words we can't give that to our users, can we? They should login to orassso and see that?
We don't want to involve them in Identity Management...
Any help is appreciated....
Regards -
Remote user Authentication in customize login page
Hi all,
I would like to make sincere request to all you that I am not able authenticate my users based on tables. I start to learn HTML DB before 20 days and created simple application.
Requirement:
1: Created new login page P16 other than inbuilt login page 101.
2: created table “trx_employee_login” which will keep track of user information
3: after giving URL to user if user enters usr/passwd then it should take username and password (remote ) and validate in “trx_employee_login” table and if it exist then open some (page 34) page
in the current application.
Approach:
1: written authentication function as
CREATE OR REPLACE FUNCTION custom_auth (
p_username IN VARCHAR2,
p_password IN VARCHAR2
RETURN BOOLEAN
IS
l_password VARCHAR2 (4000);
l_stored_password VARCHAR2 (4000);
l_count NUMBER;
BEGIN
SELECT COUNT (*)
INTO l_count
FROM trx_employee_login
WHERE user_name LIKE p_username;
IF l_count > 0
THEN
SELECT PASSWORD
INTO l_stored_password
FROM trx_employee_login
WHERE user_name LIKE p_username;
IF l_password = l_stored_password
THEN
RETURN TRUE;
ELSE
RETURN FALSE;
END IF;
ELSE
RETURN FALSE;
END IF;
END;
2: created authentication scheme and entered
return custom_auth;
in authentication function.
3: same like I created Set Username cookie :
begin
owa_util.mime_header('text/html', FALSE);
owa_cookie.send(
name=>'LOGIN_USERNAME_COOKIE',
value=>lower(:P16_USERNAME));
exception when others then null;
end;
and other process to like 101 page
but I m not able to get the result showing always message “Invalid Login Credentials”
Please it will be great help if any one will help me. I m trying from the last 5 days but not able to do. I love to do myself first and if not possible then like to ask others. So please need help. Any other approach will be appreciated.
Thanks && Regards
RaviThanks Scott very Much,
I changed but still I am not getting showing invalid credetial.
Any how I got some hope by you. Can you have look on this please again.I am very new in HTML so after six days trying I am bit tensed.Here is what I am doing
1: Created new login page Page 16.
2: In page rendering process I created a “Before Header process named Get cookie Name ” just like inbuilt login Page :
declare
v varchar2(255) := null;
c owa_cookie.cookie;
begin
c := owa_cookie.get('LOGIN_USERNAME_COOKIE');
:P16_USERNAME := c.vals(1);
exception when others then null;
end;
Incase of :P101_USERNAMR I change it as :P101_USERNAMR .
3: In page rendering I created “Clear Cache for all Items on Pages (PageID,PageID,PageID)”
process for page 16.
4: In Page processing I created a process named “Set Username Cookie” type After computation and Validation.
5: In page processing I ceated process Login just like page 101 and changed as
wwv_flow_custom_auth_std.login(
P_UNAME => v('P16_USERNAME'),
P_PASSWORD => :P16_PASSWORD,
P_SESSION_ID => v('APP_SESSION'),
P_FLOW_PAGE => :APP_ID||':1'
6: created one branch “On submit after processing to go to page 1 my welcome page”
7: Created Authorisation scheme function returning Boolean:
DECLARE
l_count NUMBER;
BEGIN
SELECT COUNT (*)
INTO l_count
FROM trx_employee_login
WHERE user_name = :p16_username AND PASSWORD = :p16_password;
IF l_count > 0
THEN
RETURN TRUE;
ELSE
:p16_username := NULL;
:p16_password := NULL;
RETURN FALSE;
END IF;
END;
8: I modified the function and make it UPPER case comparison as :
CREATE OR REPLACE FUNCTION custom_auth (
p_username IN VARCHAR2,
p_password IN VARCHAR2
RETURN BOOLEAN
IS
l_password VARCHAR2 (4000);
l_stored_password VARCHAR2 (4000);
l_count NUMBER;
BEGIN
-- First, check to see if the user is in the user table
SELECT COUNT (*)
INTO l_count
FROM trx_employee_login
WHERE UPPER (user_name) = UPPER (p_username);
IF l_count > 0
THEN
-- First, we fetch the stored hashed password & expire date
SELECT PASSWORD
INTO l_stored_password
FROM trx_employee_login
WHERE UPPER (user_name) = UPPER (p_username);
-- Finally, we compare them to see if they are the same and return
-- either TRUE or FALSE
IF l_password = l_stored_password
THEN
RETURN TRUE;
ELSE
RETURN FALSE;
END IF;
ELSE
RETURN FALSE;
END IF;
END;
In case of point 5 I mentioned how should I call my custom_auth function.
I m not getting if I am changing it as
custom_auth_ (
P_UNAME => v('P16_USERNAME'),
P_PASSWORD => :P16_PASSWORD,
P_SESSION_ID => v('APP_SESSION'),
P_FLOW_PAGE => :APP_ID||':1'
then showing error and if
custom_auth_ (
P_UNAME => v('P16_USERNAME'),
P_PASSWORD => :P16_PASSWORD
then wroung number of argument showing .
That’s what I am doing. I know I am doing some blunder but not getting where.
Can u please take a look and tell me what changes I should made to work this code.
Thanks && Regards. -
Change login page and logout_url
I created with apex 2.1 a new login page.
How/where can I reset the login process to page 1 or page 101 ?
Where can I edit which page corresponds with LOGOUT_URL ?
In Shared Components > Security > Authentication Schemes > Change > Next
I can see which page corresponds at the moment, but I do not know where to change these settings
(Authentication schema is the default Application Express)
The string looks like:
wwv_flow_custom_auth_std.logout?p_this_flow=&APP_ID.&p_next_flow_page_se
ss=&APP_ID.:102I just had a look at the documentation and realize it was slightly different back in 2.1.
You need to use the LOGOUT procedure rather than just setting it in shared components:
Here is the link to the documentation:
http://download.oracle.com/docs/cd/B25329_01/doc/appdev.102/b25309.pdf
If you search for the "LOGOUT Procedure" which part of the Oracle Application Express API's it gives an example of how it used.
There is also a procedure API for the login which can also be searched for under "LOGIN Procedure" and also has an example of how it can be used.
Thanks
Paul -
I am working on an existing application updating it to use custom authentication. When I changed the active authentication scheme APEX created a new login page (121). Why? How do I set it back to the login page I was using previously which I ahve customized somewhat?
Thanks,
MarkHi,
Check the the value of
Edit application properties - User interfaces - User interfaces - Login URL
and set the URL to your login page
Regards
Bas -
How to make a simple login page using java creator studio and mysql
Hi,
I hav got java creator studio n my sql.Can u give me the code for login page authentication and navigationThis is a forum about Java language questions, not about how to use a developers tool. I would say to go to the site where you got java creator studio from, and look for a forum there.
-
Hi
I'm totally new to using jsp and as part of a project I need to create a login page which compares the
entered email and password with those contained in a database.
I've created the java code and jsp pages, there's no obvious errors (to me anyway) but everytime I try to run it I get the same error.
The code for the login page is:
<%@page contentType="text/html" pageEncoding="UTF-8"%>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<body>
<form action="validate.jsp" method="POST">
email address - <input type="text" name="emailAddress">
<br>
password - <input type="password" name="passWord">
<input type="submit" value="Submit">
<input type="reset" value="Reset">
</form>
<br>
new customer? To sign up <a href="new%20customer.jsp">Click here</a>
</body>
</html>The validation page code is:
<%@page contentType="text/html"%>
<%@page pageEncoding="UTF-8"%>
<%@page import="java.util.*" %>
<jsp:useBean id="idHandler" class="org.login" scope="request">
<jsp:setProperty name="idHandler" property="*"/>
</jsp:useBean>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<body>
<%
String username=(String) session.getAttribute("username");
String password = (String) session.getAttribute("password");
String emailAddress = request.getParameter("emailAddress");
String passWord = request.getParameter("passWord");
if (idHandler.authenticate(emailAddress, passWord)) {
response.sendRedirect("index.jsp");
} else {
response.sendRedirect("login.jsp");
%>
</body>
</head>
</html>and the java code is:
package org;
import java.io.IOException;
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;
import javax.naming.Context;
import javax.naming.InitialContext;
import javax.naming.NamingException;
import javax.sql.DataSource;
public class login {
private DataSource getJdbcConnectionPool() throws NamingException {
Context c = new InitialContext();
return (DataSource) c.lookup("java:comp/env/jdbc/connectionPool");
//method that is called from validateuser.jsp and this checks for the authentic user and
public boolean authenticate(String emailAdd, String pass)
throws SQLException, IOException, IOException, NamingException {
String emailAddress = null, Password = null;
// connection instance
Connection connection = null;
try {
DataSource dataSource = getJdbcConnectionPool();
connection = dataSource.getConnection();
String sql = "SELECT emailAdd, pword FROM customer WHERE emailAdd='" + emailAdd + "'" + "AND pword='" + pass + "'";
PreparedStatement ps = connection.prepareStatement(sql);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
emailAddress = rs.getString("emailAdd");
Password = rs.getString("pword");
if (emailAddress != null && Password != null && emailAddress.equals(emailAddress) && pass.equals(Password)) {
return true;
} else {
return false;
}finally {
// close the connection so it can be returned to
// the connection pool then return the list
connection.close();
}finally the error message I get is:
type Exception report
message
description The server encountered an internal error () that prevented it from fulfilling this request.
exception
org.apache.jasper.JasperException
org.apache.jasper.servlet.JspServletWrapper.handleJspException(JspServletWrapper.java:460)
org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:373)
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:329)
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:265)
javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
root cause
java.lang.NullPointerException
org.login.authenticate(login.java:56)
org.apache.jsp.validate_jsp._jspService(validate_jsp.java:76)
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:98)
javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:331)
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:329)
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:265)
javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
note The full stack trace of the root cause is available in the Apache Tomcat/5.5.26 logs.
help?login.java:56 is:
connection.close();right? So, it looks like the call to getJdbcConnectionPool within authenticate throws an exception and control is passed to the finally block where connection is still null, resulting in the NPE. You should probably catch any exceptions thrown by the lookup for your datasource so you can see what the "real' error is. -
NAC-OOB L2- Authentication Login page dosn't appear!
Hi All,
We have 2 NAC managers and 2 NAC servers. We have a failover solution. Our deployment is OOB Layer 2 Central Virtual Gateway. We have successfully added NAS into NAM and we did the required configuration in NAM like configuring VLAN mapping (from the untrusted vlan 913 to the trusted vlan 910), adding managed subnet, switch profile, port profile, adding switches (cisco 3560) to NAM, configuring user roles, local users and also user login page.
Then we have tested it by connecting PC to the controlled port on the switch.
The configuration of the controlled port was on VLAN 910 and after connecting the PC, it's converted to VLAN 913 then we successfully got an IP from the dhcp which is configured on the switch but the authentication login page didn't appear! and also, when we disconnect the PC from that port, the configuration isn't converted from vlan 913 to vlan 910 so we have to change it manually everytime to do our tests.
What should we do to let the login page appear and also automatically let NAM change the port configuration after disconnecting the PC?
Thanks in advance.hi faisal,
the KTPass command is as following:
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Table Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:"";
mso-padding-alt:0in 5.4pt 0in 5.4pt;
mso-para-margin:0in;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"Times New Roman";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:Arial;
mso-bidi-theme-font:minor-bidi;}
C:\Program Files\Support Tools>ktpass.exe -princ test/[email protected] -mapuser test -pass test123 -out c:\mai.keytab -ptype KRB5_NT_PRINCIPAL +Desonly
and the attached log file.
Thanks -
How to prevent login page in same browser when user is already authenticated
Hello,
I am using Jdev 11.1.1.6 with ADF security implemented in my application.
I have Login.jspx that redirects the user to Home.jspx on successful authentication. User can either enter Login or Home Page URL.
Please consider following scenarios:
a) User is not authenticated in current browser session
a.1) if user enters Home page URL then Login page is displayed and redirected to Home page on authentication
a.2) if user enters Login page URL then Login page is displayed and redirected to Home page on authentication
b) User is already authenticated in current browser session, a new tab is opened and
b.1) if user enters Home page URL then it directly shows Home page (already authenticated)
b.2) if user enters Login page URL then Login page is displayed -- this is the issue, it should either directly take user to Home page or invalidate the existing session and let user proceed with new.
How do I achieve this? Any help is highly appreciated.
Thanks,
JaiThanks Frank and everyone for your help.
I am able to achieve what Frank suggested using phase listener. We don't have a custom phase listener but I created one and instead of configuring at global level, just defined the ControllerClass in the pageDef of my login page.
Code from afterPhase is:
public void afterPhase(PagePhaseEvent pagePhaseEvent) {
if (pagePhaseEvent.getPhaseId() == Lifecycle.INIT_CONTEXT_ID) {
FacesContext fctx = FacesContext.getCurrentInstance();
String viewRootId = fctx.getViewRoot().getViewId();
if ("/pages/login.jspx".equalsIgnoreCase(viewRootId) &&
ADFContext.getCurrent().getSecurityContext().isAuthenticated()) {
try {
String homeViewId = "pages/home.jspx";
ControllerContext controllerCtx = null;
controllerCtx = ControllerContext.getInstance();
String activityURL =
controllerCtx.getGlobalViewActivityURL(homeViewId);
fctx.getExternalContext().redirect(activityURL);
} catch (IOException ioe) {
_logger.logException(ioe);
My only concern here is that I am hardcoding the login and home page url. Is there a better way to implement this?
Thanks,
Jai -
Big authentication problem: not being redirected to the login page
Hello, everybody!
I've just noticed a big problem in the web application I'm developing. In this
application I'm using the FORM authentication method as you can see below in the
web.xml file:
<security-constraint>
<web-resource-collection>
<web-resource-name>permitido</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>restrito</web-resource-name>
<url-pattern>/confirmacaoreserva.jsp</url-pattern>
<url-pattern>/confirmacaoreserva.faces</url-pattern>
<url-pattern>/reservaconfirmada.jsp</url-pattern>
<url-pattern>/reservaconfirmada.faces</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>ADMINISTRADOR</role-name>
<role-name>USUARIO</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/login.jsp</form-login-page>
<form-error-page>/errologin.jsp</form-error-page>
</form-login-config>
</login-config>
<security-role>
<role-name>ADMINISTRADOR</role-name>
</security-role>
<security-role>
<role-name>USUARIO</role-name>
</security-role>If I type in the browser's address field any of the protected pages,
confirmacaoreserva.faces or reservaconfirmada.faces, the web container redirects
me to the login page as expected, as I was'n authenticated yet. Until till
this point everything is working without problem. But I noticed, to my surprise,
that when I click on a link in a web page like this:
<h:commandLink value="#{msg.reservar}" action="#{materiais.reservarMaterial}">
<f:setPropertyActionListener target="#{materiais.codigoMaterial}" value="#{material.codigo}" />
</h:commandLink>
// in the backing bean
public String reservarMaterial()
// some processing...
return "confirmacaoReserva";
// in faces-config.xml
<navigation-rule>
<navigation-case>
<from-outcome>confirmacaoReserva</from-outcome>
<to-view-id>/confirmacaoreserva.jsp</to-view-id>
</navigation-case>
</navigation-rule>it completely by-passes the web container authentication and redirects me to the
protected page (+confirmacaoreserva+) without asking me first to authenticate in
the login page. Of course this is unacceptable.
So, how can I solve this? How do I fix this problem?
Thank you.
MarcosMarcos_AntonioPS wrote:
BalusC wrote:
Which appserver implementation/version are you using?JBoss 4.2.3.GAOK.
Which JSF implementation/version are you using?The default JSF implementation that comes with JBoss 4.2.3.GAWhich one? Read the manifest file of the JSF implementation JAR.
Does it work if you redirect instead of forward in the navigation case (just add <redirect />) ?I haven't tested yetAnd? -
Issue with adding a new value to the Default Login Page
Hopefully this is an easy one guys, I've added a select list item to the standard login page (P101) to allow the user to select a DOMAIN as well as entering their username and password.
When the next page is displayed and I try to retrieve the value held in the new field it has been cleared, but the values entered into items
P101_USERNAME and P101_PASSWORD are still present.
I can't figure out why the values held in items P101_USERNAME and P101_PASSWORD are still present but P101_DOMAIN has been cleared.
I've tried creating a value on page zero and writing the domain value to it using pl/sql and javascript but as soon as the next page is requested the value is cleared.
Any Ideas how to get around this????
Thanks in advanceI suppose your login page contains a process like this:
BEGIN
wwv_flow_custom_auth_std.login (p_uname => v ('P101_USERNAME'),
p_password => :p101_password,
p_session_id => v ('APP_SESSION'),
p_flow_page => :app_id || ':1'
:t_random_number := :p101_random_number; /* this is something I added to my code */
END;Now, if you go to this page:
http://apex.oracle.com/pls/otn/f?p=31517:1
please note the random number assigned to you. Once you login, the same number will appear on the page 1 (near to the top).
So, that is how you could solve your problem.
:t_random_numberis an application item.
Denes Kubicek
http://deneskubicek.blogspot.com/
http://www.opal-consulting.de/training
http://apex.oracle.com/pls/otn/f?p=31517:1
------------------------------------------------------------------- -
I am unable to login from my login page after I restarted my mini mac running snow leopard 10.6 server. I am a new user. Need help
Try clearing your cache, [https://support.mozilla.org/en-US/kb/How to clear the cache Instructions here]. Then, try going to [https://accounts.google.com Google Accounts]. If there is currently an account singed in, sign out, then back in. After that, try going to Google Adwords.
Maybe you are looking for
-
How can i set up an apple id to download apps without a credit card?
I have several Ipads in school to set up for apps, but we don't have a school credit card and only want to use iTune cards. How can I set up an multiply id without using credit card details?
-
Iphone 4 apps keep opening and closing
My Iphone 4 apps that other people have gotten for me (because they've already bought them) by signing into THEIR accounts on MY phone keep opening then closing. I cant do the authorize/reauthorize thing because those apps arent on my Itunes account,
-
TS3938 how do i uninstall microsoft office 2004 from my new macbook pro intel 5.....
When it won't allow me. I get the same popup window message. "You can't open the app...beacause PowerPC apps are no longer supported." Can anyone help or offer advice please. kind regards vickynsimon
-
UPC_BUNDLE_EXECUTE_STEP_2 or UPC_BUNDLE_EXECUTE_STEP
Hello Guys, Do anyone have used the following programs. UPC_BUNDLE_EXECUTE_STEP_2 UPC_BUNDLE_EXECUTE_STEP UPC_BUNDLE_EXECUTE_STEP: I tried this one.I partitioned by fiscal year.It fails in the background. TSV_TNEW_PAGE_ALLOC_FAILED SYSTEM_IMODE_TOO_L
-
Cannot launch Numbers (iWork '09) under Yosemite
Tried to open an older spreadsheet with the newest Numbers app and it told me it was too old and would have to be opened with iWork '09 Numbers. I clicked the "open with iWork '09 Numbers" button and nothing happened. I went and tried to launch the