No session id in URL ?

I constructed a URL with the app id, page id, etc. substitution strings like the following:
f?p=&APP_ID:5:::::
and notice that I don't include the session id subsitution variable. When I click on the link, HTMLDB renders the page correctly but I noticed that it in the address bar, the URL contains a session id. I noticed on asktom.oracle.com, the "GOTO a Bookmarkable Page" links don't behave this way. How do I prevent the session id from showing up in the address bar?
Thanks in advance!

Jes,
The home page attribute is used when you run an application and don't specify a page ID in the URL, or when you use the Builder's run icon for the app. In those cases, if the home link contained the login page as the page ID, the engine would redirect to the login page. If the home page is not the login page the engine would redirect to the home page and then, if that page required authentication, it would immediately show the login page (without a redirect). Then after authentication, the after-login page is redirected to according to the authentication scheme's logic.
So in that situation, doing what you said is a slightly more direct way of getting to the login page. However, an advantage of specifiying the real home page in the home page attribute is that if you change authentication methods from one that uses a login page to single sign-on, you don't have to remember to change the home page attribute. As well, if the home page does not require authentication (is public), there is no redirect to the login page when the home page attribute is used.
Scott

Similar Messages

Problem passing Session variable as URL parameter?

Hi,
I am trying to create a multiple page entry form using
coldfusion session. But I am having some problem when passing the
session variable to url parameter. For test purpose I have created
the following code:
<cfif Not IsDefined("SESSION.AE")>

<cfset SESSION.AE = StructNew()>

<cfset SESSION.AE.StepNum = 1>
</cfif>
<cfif IsDefined("Form.GoBack")>
<cfset SESSION.AE.StepNum = #url.StepNum# - 1>
<cfelseif IsDefined("Form.Next")>
<cfset SESSION.AE.StepNum = #url.StepNum# + 1>
</cfif>
<html>
<head>
<title>Untitled Document</title>
<meta http-equiv="Content-Type" content="text/html;
charset=iso-8859-1">
</head>
<body>
<form method="post"
action="/AE/try.cfm?StepNum=#SESSION.AE.StepNum#">
<input type="submit" name="GoBack" value="Back">
<input type="submit" name="Next" value="Next">
</form>
</body>
</html>
When run it I get the following error:
The value "" cannot be converted to a number
The error occurred in C:\CFusionMX\wwwroot\AE\try.cfm: line
11
9 : <cfset SESSION.AE.StepNum = #url.StepNum# - 1>
10 : <cfelseif IsDefined("Form.Next")>
11 : <cfset SESSION.AE.StepNum = #url.StepNum# + 1>
12 : 
13 : </cfif>
I couldn't figure out where is the problem. Any help is
really appreciated.
Thanks in advance.

You are mixing up your gets and posts aren't you?
You have your form method set to post which creates form
variables not
url variables. So when you try to use the url variable to set
your
session it does not exist.
Change your SESSION.AE.StepNum = #url.StepNum# to
Session.AE.StepNum =
form.StepNum, note there is no need for the #'s.
OR
change your form method="post" to form method="get"
Nagelia wrote:
> Hi,
>
> I am trying to create a multiple page entry form using
coldfusion session. But
> I am having some problem when passing the session
counter to url parameter. For
> test purpose I have created the following code:
>
> <cfif Not IsDefined("SESSION.AE")>
> 
> <cfset SESSION.AE = StructNew()>
> 
> <cfset SESSION.AE.StepNum = 1>
> </cfif>
> <cfif IsDefined("Form.GoBack")>
> <cfset SESSION.AE.StepNum = #url.StepNum# - 1>
> <cfelseif IsDefined("Form.Next")>
> <cfset SESSION.AE.StepNum = #url.StepNum# + 1>
> </cfif>
>
> <html>
> <head>
> <title>Untitled Document</title>
> <meta http-equiv="Content-Type" content="text/html;
charset=iso-8859-1">
> </head>
> <body>
> <form method="post"
action="/AE/try.cfm?StepNum=#SESSION.AE.StepNum#">
> <input type="submit" name="GoBack" value="Back">
> <input type="submit" name="Next" value="Next">
> </form>
> </body>
> </html>
>
> When run it I get the following error:
>
> The value "" cannot be converted to a number
>
>
> The error occurred in C:\CFusionMX\wwwroot\AE\try.cfm:
line 11
>
> 9 : <cfset SESSION.AE.StepNum = #url.StepNum# - 1>
> 10 : <cfelseif IsDefined("Form.Next")>
> 11 : <cfset SESSION.AE.StepNum = #url.StepNum# +
1>
> 12 : 
> 13 : </cfif>
>
> I couldn't figure out where is the problem. Any help is
really appreciated.
>
> Thanks in advance.
>
>
>
>

Session ID in URL - Why ?

I may have read it somewhere but forgot...
HTML DB reads the session cookie on every single request, correct ?
So why is Session ID in URL necessary really ??? since that value is already in the cookie.

ah,
Scott explained it here
Why is SESSION used in the URL?

Is it possible to pass nQuireID (session ID) via URL ?

is it possible to pass nQuireID (session ID) via URL?
(how to get the session id ?)
therefore, we dont need to pass the userid and password. (embedded in the URL)

Ummm you can't get a session ID unless you login first, chicken and egg problem? Have you looked at implementing SSO? That's the proper way of solving integration issues, hard-coding the user ID and the password on the URL is a nasty and insecure "hack"...

Alternatives for HTTP Session(Cookies or URL Reqriting)

Sir/Madam,
Actually we can handle session using (1) URL rewriting and (2) Cookies , apart from this is there any way to handle sessions ? If so what are they ?.
Thanks and Regards
- Raja.

Of course... You could use (1) Cookies and (2) URL rewriting, as an alternative.
Or you could write your own JSP/servlet engine and require all pages to be forms that have the session ID in them or whatever other custom hair-brained idea you wanted.

Page 404 Error when passing Session values through URL

The current application I'm working on is a 'Targeted Email Communications' application. Bascially, employees at the school at which I'm employed can go in and select services to recieve outage notification emails on.
The problem I'm discussing in this post has to do with our so called 'Notification Summary Screen.' This screen is basically a report region which displays all outage notifications issued by this application. In the left-most column of this report, I have an edit button that when clicked, redirects the user to the 'Create / Update / Send Screen' with the primary key values passed through the URL. When this happens, all other page items query their values based on the NOTIF_ID passed in through the URL. All of this works fine.
The problem is, on the Notification Summary Screen, I also have a button labeled 'Create a new notification.' This button redirects the user to the same page as before, except now all of the values are NULL because this outage notification has not yet been created. The problem is, when I try and do this - I get a page 404 not found error. I'm pretty sure it's because my application is getting confused because earlier all of the values were passed in through a URL. For the 'Create New' button, I clear the page cache for this page - and it still does nothing. I am at a loss for what to do here because I keep getting the error.
Here's the code for the URL button found in the report query in the 'Notification Summary Screen' :
('<a href='
          || 'f?p=&APP_ID.:2:&SESSION.::&DEBUG.::'
          || 'P2_NOTIF_ID,P2_NOTIF_SEQ,P2_INFO_TYPE:'
          || a.notif_id ||','|| b.notif_seq || ',' || 'Update'
          || '>'
          || '<img src="#APP_IMAGES#EditButton.gif" />'
          || '</a>') as "edit",** NOTE, I took out the double quotes after href and before the closing right karat brackets because for some reason the code in the URL wouldn't display...weird.... **
The NOTIF_ID value is the primary key identifier for each outage notification. Additionally, the NOTIF_SEQ value is the sequence number for each (because each notification could have multiple updates). The INFO_TYPE value just references whether this is 'Initial', 'Updated', or 'Closing' information.
Any suggestions would be much appreciated.
Eric
Edited by: user11685190 on Nov 6, 2009 1:12 PM
Edited by: user11685190 on Nov 6, 2009 1:13 PM
Edited by: user11685190 on Nov 6, 2009 1:14 PM

Hey you guys,
Thanks for your responses. I actually just started working for this academic institution, and have to finish a probationary period before I have access to their VPN (5 Months). Therefore, I cannot access my workspace, nor will they allow me to export my application because it's considered their intellectual property. I believe it may be the &DEBUG portion of it.
Though I cannot state the exact URL the error states, I can tell you that if I go into application builder to the page in question and try and run it before the page that links to it, I get the error. However, when I use the link everything works fine. When I use the 'Create New' button to link to the page with no values passed, I get the error again. I work again on Monday and will have more information then.
Thanks again!
Eric

Session management in URL reporting

Hi,
I have problems with the session management while calling reports from our own web-app.
We host our reports (.rpt) on a CrystalReportsServer 2008 running on a Tomcat. This CRS is configured with 20 CAL (ConcurrentAccess Licences).
On the other side, our Intranet, running on another Tomcat.
Our Intranet provides UI allowing users to determine the parameters that will be passed to reports. For some reasons we do not want to use InfoView now but keep using our own UI to call reports. The idea was then to call them through OpenDocument (or viewrpt.cwr) passing parameters in the URL.
In our Web-app, I authenticate the user to the CRS, retrieving an IEnterpriseSession. I then get a token for my calls to OpenDoc. But then, each time I call OpenDoc, a new CAL is picked out. Even if I logoff, only one CAL (the one belonging to my IEnterpriseSession) is given back.
As our users often open and close lots of reports, we run very quickly out of CAL, although the reports are now closed and the user gone.
I thought using a token would have allowed us to consume only 1 CAL per user, using the same CAL for the different calls.
Is my reasoning wrong or is it my code..?

When creating the token , use "CreateWCAtoken" function this will not increse the session count in CRS.
You might be using CreateLogonToken function
Arguments passed to these two functions are same.

Force passing session id in url

Hello. I need to pass session id (jsessionid) in only url, not in cookies even if cookies are on (accepted). Is it possible?
I use jboss and struts. Is there any option in xml files?

ah,
Scott explained it here
Why is SESSION used in the URL?

Session Timeout and Url Redirect in BlazeDS?

We have a JSF2 Webapp and Flex 4 integreated.
Question
1. How can we pass the parameters in web.xml to make FLEX4 redirect to login page when the session timeouts instead of giving a AMF Communication Error?
Thanks,
User.

hi, i am also struggling with the same problem, have you got any solution

Use SESSION variable in URL from HTML region

Hello,
I have what looks like a simple question but i've been struggling with it for three days now, and i need your help!
I have a page, with an HTML region. I want to display some links to other pages within the application, so i thought i'd use this:
a href="http://server.xxxx.com:7777/pls/htmldb/f?p=114:13:&SESSION"
But the session ID is not interpreted, and the link doesn;t work. Any idea what's wrong here? or how i should create links with the session id in it?
Thanks!!!! Matt
Message was edited by:
matt_amsterdam

Matt,
You've missed off the period (.) off the end, use &SESSION. instead

Suppress the session data in URL display

we have afrLoop=401202924205955&afrWindowMode=0&_adf.ctrl-state=zpx91q8vg_4 appended to the url
http://host1.example.com/sbat_int/faces/Main.jspx?_afrLoop=401202924205955&_afrWindowMode=0&_adf.ctrl-state=zpx91q8vg_4
We want to show only this part:
http://host1.example.com/sbat_int/faces/Main.jspx
in the browser window
where should the changes be made?
Thanks
Prashanth

Prashanth,
These are used to maintain the state of the application (request etc). Any specific reason why do you want to remove them? As John mentioned, you cannot remove them.
-Arun

Session Vars in URL

In my site URLs I have CFID and CFTOKEN (and jsessionid in
CF8) in my URL. Is there any way to get those to NOT show up?
Thanks!

They're probably showing up because you have a
<CFLOCATION> tag without the addtoken="no" attribute in your
code somewhere. Start with that. Also check your code for the use
of the URLSessionFormat() function which will pass those through
the URL.

How to pass session variable value with GO URL to override session value

Hi Gurus,
We have below requirement.Please help us at the earliest.
How to pass session variable value with GO URL to override session value. ( It is not working after making changes to authentication xml file session init block creation as explained by oracle (Bug No14372679 : which they claim it is fixed in 1.7 version Ref No :Bug 14372679 : REQUEST VARIABLE NOT OVERRIDING SESSION VARIABLE RUNNING THRU A GO URL )
Please provide step by step solution.No vague answers.
I followed below steps mentioned.
RPD:
****-> Created a session variable called STATUS
-> Create Session Init block called Init_Status with SQL
select 'ACTIVE' from dual;
-> Assigned the session variable STATUS to Init block Init_Status
authenticationschemas.xml:
Added
<RequestVariable source="url" type="informational"
nameInSource="RE_CODE" biVariableName="NQ_SESSION.STATUS"/>
Report
Edit column "Contract Status" and added session variable as
VALUEOF(NQ_SESSION.STATUS)
URL:
http://localhost:9704/analytics/saw.dll?PortalGo&Action=prompt&path=%2Fshared%2FQAV%2FTest_Report_By%20Contract%20Status&RE_CODE='EXPIRED'
Issue:
When I run the URL above with parameter EXPIRED, the report still shows for ACTIVE only. The URL is not making any difference with report.
Report is picking the default value from RPD session variable init query.
could you please let me know if I am missing something.

Hi,
Check those links might help you.
Integrating Oracle OBIEE Content using GO URL
How to set session variables using url variables | OBIEE Blog
OBIEE 10G - How to set a request/session variable using the Saw Url (Go/Dashboard) | GerardNico.com (BI, OBIEE, O…
Thanks,
Satya

GO URL with Session Variable

I want to use interaction between two reports in different dashboards, which do not share the same tables but the same values.
When clicking on column A values in Report A, I want to create action link with option to open Report B, presenting column B, which is filtered by value A.
I also want the prompts in Report B to present the value A, as it was selected by the user on Report A.
I thought about using GOURL in action link to specific URL. I manage to open Report B, but it is not filtered by A.
How can I transfer the value A in the URL? how should I add the value A into '&val1=XXX'?
I also want to transfer other prompt values (e.g. val2 of col2) from A to B. I set this prompt value to session variable, but how can I add it in the GOURL syntax of '&val2=XXX'?

Hi,
Check those links might help you.
Integrating Oracle OBIEE Content using GO URL
How to set session variables using url variables | OBIEE Blog
OBIEE 10G - How to set a request/session variable using the Saw Url (Go/Dashboard) | GerardNico.com (BI, OBIEE, O…
Thanks,
Satya

Service URL not found:session

Hi,
I had written a custom authentication module according to the sample given with SunONE doc. But, when I try to login to the portal server, it is throwing the following exception in /opt/SUNWam/debug/amSSOProvider file.
how to solve this issue:
I am using SunONE portal server 6.1
05/13/2004 07:22:54:260 PM GMT+05:30: Thread[Thread-157,5,main]
could not create SSOToken from HttpRequest
com.iplanet.dpro.session.SessionException: Service URL not found:session
at com.iplanet.dpro.session.Session.getSessionServiceURL(Session.java:336)
at com.iplanet.dpro.session.Session.getSessionServiceURL(Session.java:316)
at com.iplanet.dpro.session.Session.getSession(Session.java:233)
at com.iplanet.sso.providers.dpro.SSOProviderImpl.createSSOToken(SSOProviderImpl.java:56)
at com.iplanet.sso.SSOTokenManager.createSSOToken(SSOTokenManager.java:226)
at com.sun.portal.desktop.context.DSAMESessionAppContext.getSSOToken(DSAMESessionAppContext.java:67)
at com.sun.portal.desktop.context.DSAMESessionAppContext.getSessionID(DSAMESessionAppContext.java:99)
at com.sun.portal.desktop.context.PSDesktopAppContext.getSessionID(PSDesktopAppContext.java:725)
at com.sun.portal.desktop.context.PSDesktopContextFactory.getDesktopContext(PSDesktopContextFactory.java:91)
at com.sun.portal.desktop.DesktopServlet.getDesktopContext(DesktopServlet.java:384)
at com.sun.portal.desktop.DesktopServlet.doGetPost(DesktopServlet.java:413)
at com.sun.portal.desktop.DesktopServlet.service(DesktopServlet.java:303)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.iplanet.server.http.servlet.NSServletRunner.invokeServletService(NSServletRunner.java:897)
at com.iplanet.server.http.servlet.WebApplication.service(WebApplication.java:1065)
at com.iplanet.server.http.servlet.NSServletRunner.ServiceWebApp(NSServletRunner.java:959)

seems like you have cookie encode problem,
based on your
container you need to set the following property in AMConfig.properties
in general for welogic and web sphere contianers you need to set it to true
com.iplanet.am.cookie.encode

No session id in URL ?

Similar Messages

Maybe you are looking for