Obtaining current user

Hi,
We are using WL5.1 and JNDI authentication.
Authentication is being done in a stateless session bean and immediately
after authentication, the user appears to have been set correctly.
However when other stateless session beans subsequently call Security.getCurrentUser(),
the user appears to be Guest.
Is there a problem setting ( or getting ) the user from within
a stateless session bean ?
Thanks
Dave

Hmmm. I know this behavior has not been completely consistent, but I think that
identity should propagate. If it does not, it is a bug in WLS code, not an ugly
side effect of the WLS/EJB threading model...
Be sure to read the SP release notes. I know that the later 5.1 service packs
have address (and re-addressed) this issue.
In short, it should work, and if it does not, it is a bug that should be fixed.
HTH.
Brendan Smith wrote:
"Dave Horner" <[email protected]> wrote in message
news:3a9fdc44$[email protected]..
Hi,
We are using WL5.1 and JNDI authentication.
Authentication is being done in a stateless session bean and immediately
after authentication, the user appears to have been set correctly.
However when other stateless session beans subsequently callSecurity.getCurrentUser(),
the user appears to be Guest.
Is there a problem setting ( or getting ) the user from within
a stateless session bean ?
Thanks
DaveTo the best of my knowledge, this is still broken in WL 5.1. When you create
a new InitialContext and authenticate your user, Weblogic associates the
principal with the current thread in a thread-local variable. However,
because of the threading model for EJBs this will not be the thread that
executes your EJB call unless the InitialContext is actually created within
that method - hence the behavior that you're seeing.
The only way to get around this problem that I'm aware of is to pass the
user's identity in as a parameter to the EJB method.
-- Brendan Smith
-- periopcare.com--
Tom Mitchell
[email protected]
Very Current Stoneham, MA Weather
http://www.tom.org

Similar Messages

Select current user tables

Hi,
I'm needing to obtain the list of the TABLES which the current user has some privilege. I'm using the following query for doing that:
SELECT DISTINCT o.object_name
FROM all_objects o, all_tab_privs tp
WHERE o.object_name = tp.table_name
AND o.object_type = 'TABLE'
AND tp.grantee = USER
ORDER BY o.object_name
My problem with this query is the poor performance, and this aspect is critical in my system.
Somebody has any sugestion ?

Your quey will only return tables current user has direct object grants to. It will not return tables user gas grants to via roles or via system privileges. And by using
AND tp.grantee = USERyou are skipping tables current user has access to via public grants.
SY.

How to find current user name on a LAN machine....

how to find current user name in a remote machine in LAN .
how to find current user name on a local machine in LAN .

how to find current user name in a remote machine in
LAN .Many users may be logged on concurrently on the remote machine.
how to find current user name on a local machine in
LAN .The user who is running the code in the process would be obtainable via:
System.getProperty("some property goes here");
I leave it to you to look at the API documentation for System.getProperties() to see what property name you would retrieve.

How to get Current User Group NAME

I am using the com.sun.security.auth.module.NTSystem to obtain information on the current user logged into the NT System. This class gives me the user name, all the group SIDs associated with the current user and also the current user's primary group SID.
But I am not able to retrieve the group Name based on these SIDs.
Please tell me how to find out the Group Name such as "Workgroup" etc. instead of Group SID.
This is very urgent. So please help me.
Thanks in advance!!!

I'm having the same problem.
If you found a solution could you post it here.
Thanks.

Work Folders Stopped Working - The sync server needs the user's current user name and password

Our Work Folders deployment has just stopped working.
Once the user has logged in to ADFS they get the following error message "The sync server needs the user's current user name and password (0x80c80300)"
At the same time we see the following error in the file servers SyncShare event log:
- <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
- <System>
<Provider Name="Microsoft-Windows-SyncShare" Guid="{9E6153AD-A829-4B70-B997-8E463A7A111C}" />
<EventID>1013</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2014-12-03T14:48:32.922225100Z" />
<EventRecordID>1178</EventRecordID>
<Correlation />
<Execution ProcessID="1988" ThreadID="2800" />
<Channel>Microsoft-Windows-SyncShare/Operational</Channel>
<Computer>fileserver.domain.com</Computer>
<Security UserID="S-1-5-18" />
</System>
- <EventData>
<Data Name="User">eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6ImVoZWxJMUFwWm9HT2VZdXU5NGZZb21tamUzayJ9.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.eCefzniju5qjqxIDdC2KCefkiNBNoGV-B1zg8EsnygUyV0LilPpANpv5uH75JJ9ekv9BN0vz7m6QezHEN4dYc5Z-6UJCzm7Wz6s1yNqVz-Sq5_wf_RrrHkxntcLXT2LHyyLN6ZxJy8uOF4vLw_fLsDzrNHkpaKUoevLAvNLI503IAiKDijKmQ0Qa2hZGsDT57yhKLGtjMXdqwx6FpFpP6vxA9qoUlR1E-tlt0ezTSD8j36djV9VbFpTlfeiH26D0n92T4exQCJkPdVzR42G7KbYyo9Acu0GGf7dnameWMQV9lT-Jtb7hH9xNReuVSVzqgtstsSDJR0mCsKJfLrdKVw</Data>
<Data Name="Error">0X80C80021 - ECS_E_SYNC_ADFS_UNAUTHORIZED</Data>
</EventData>
</Event>
I have attempted re creating the setup using several blog posts including:
http://blogs.technet.com/b/filecab/archive/2014/03/03/deploying-work-folders-with-ad-fs-and-web-application-proxy-wap.aspx. Including deleting all WAP rules, deleting and recreating the Relaying Party Trust and obtaining new certificates for the file
server.
ADFS and WAP are working correctly for our Office 365 federations and on-premise SharePoint, Exchange and other web applications
If I turn ADFS authentication off on the Work Folders server I can successfully connect and setup work folders on a domain joined computer, however as soon as ADFS authentication is enabled I get the above error.

Hi,
As you expressed, it should be an authentication issue.
I assume it will work by selecting Windows Authentication instead of ADFS in step shows in following picture.
The article also mentioned that the certificate is needed in following computers.
The self-signed AD FS certificate will need to be exported and installed on the following machines in the test environment:
Work Folders
Web Application Proxy
Domain joined Windows 8.1 client
Non-domain joined Windows 8.1 client
Thus I would like to confirm if certificate is also imported.
If you have any feedback on our support, please send to [email protected]

How can I filter a Sharepoint 2007 libarry list based on current user login?

Hi all.
I would like to know how I can filter a SharePoint library list based on current user login.
Suppose I have created the followings:
1) A SharePoint form library containing bunch of uploaded InfoPath form data.
2) The InfoPath form template contains a promoted text field called "TargetUser" to store user domain login (ex: DOMAIN\JOE) and every InfoPath form file in the library has a valid domain name stored in the "TargetUser" field.
I have created a custom view for the form library and would like to filter this view so only items whose "TargetUser" field matches current user's login ID are displayed.
I went to Edit View page to customize the view and tried to use the [Me] function but I got a "Filter value is not a valid text string" message instead when clicking OK. Apparently [Me] returns a Person/Group data type and the filter cannot compare its value
to that of "TargetUser".
I tried using text functions (ex: TEXT([Me],"") hoping to extract default string value from [Me]. The filter accepts the parameter without any error but the resulting fitlered list does not display any items at all.
I have googled this subject for hours but I have not found any solution.
It would be greatly appreciated if anyone can help me to create a functional filtered list.
FYI, my SharePoint 2007 installation is just WSS 3.0 + Form Server. I do not have MOSS 2007 (so no MOSS 2007 web parts or web services).
Thank you.
Jason

Here's what I usually do in order to accomplish this. Ultimately you'll need to have 2 different fields. There's the one you already have, with DOMAIN\username stored in it. Then you'll need an additional field as a "person" column type.
Call it "TargetPerson" or something.
Create a sharepoint designer workflow that runs each time an item is created or changed. One action:
Set FIELD to VALUE.
The first FIELD is "TargetPerson", the VALUE is your "TargetUser" field.
Once this is done, then the person value is stored in the person field. This is the field that you can filter by "TargetPerson" is equal to [Me]
Laura Rogers, MCSE, MCTS
SharePoint911: SharePoint Consulting
Blog: http://www.sharepoint911.com/blogs/laura
Twitter: WonderLaura

Unable to use Datasource.cfc in Admin API - The current user is not authorized to invoke this method

Hi Everyone,
I am having some issues accessing the methods in the datasource.cfc in the adminAPI.
I can successfully load the administrator CFC and am told that I have successsfuly logged in;
But when I try to subsequently load the datasource.cfc I get an error that the current user is unable to access the method.
/* Create an Admin API object and call the login method */
 var local = {};
 local.adminObj = createObject("component", "cfide.adminapi.administrator");
 /* Enter your password for the CF Admin */
/* if you dump this - TRUE is returned */
 local.adminObj.login(adminPassword="my_admin_user_password");
 /* Create an object of datasource component */
 local.dsnObj = createObject("component", "cfide.adminapi.datasource");
writeDump(local.dsnObj.getDataSources());
I tried creating separate admin users and passwords - yhinking that perhaps a revent hotfix had stopped the "admin" user from being allowed to use the adminAPI - but changing to a new adminuser yielded the same results.
I could login to the admin API with the new username and passsword - but could not access the datasource.cfc after that.
Here is the debug output from the error...
The current user is not authorized to invoke this method.
The error occurred in accessmanager.cfc: line 48
Called from datasource.cfc: line 52
Called from C:/inetpub/wwwroot/projectDir/trunk/Application.cfc: line 155
Called from C:/inetpub/wwwroot/projectDir/trunk/Application.cfc: line 52
Called from C:/inetpub/wwwroot/projectDir/trunk/Application.cfc: line 45
Called from C:/inetpub/wwwroot/projectDir/trunk/Application.cfc: line 1
-1 : Unable to display error's location in a CFML template.
Resources:
Check the ColdFusion documentation to verify that you are using the correct syntax.
Search the Knowledge Base to find a solution to your problem.
Browser
Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31
Remote Address
127.0.0.1
Referrer
Date/Time
22-Apr-13 01:09 PM
Stack Trace
at cfaccessmanager2ecfc974154242$funcCHECKADMINROLES.runFunction(E:/cf10_final/cfusion/wwwro ot/CFIDE/adminapi/accessmanager.cfc:48) at cfdatasource2ecfc1679861966$funcGETDATASOURCES.runFunction(E:/cf10_final/cfusion/wwwroot/ CFIDE/adminapi/datasource.cfc:52) at cfApplication2ecfc498167235$funcPREREQUISITESTART.runFunction(C:/inetpub/wwwroot/projectD ir/trunk/Application.cfc:155) at cfApplication2ecfc498167235$funcINIT.runFunction(C:/inetpub/wwwroot/projectDir/trunk/Appl ication.cfc:52) at cfApplication2ecfc498167235._factor5(C:/inetpub/wwwroot/projectDir/trunk/Application.cfc: 45) at cfApplication2ecfc498167235.runPage(C:/inetpub/wwwroot/projectDir/trunk/Application.cfc:1 )
coldfusion.runtime.CustomException: The current user is not authorized to invoke this method. at coldfusion.tagext.lang.ThrowTag.doStartTag(ThrowTag.java:142) at coldfusion.runtime.CfJspPage._emptyTcfTag(CfJspPage.java:2799) at cfaccessmanager2ecfc974154242$funcCHECKADMINROLES.runFunction(E:\cf10_final\cfusion\wwwroot\CFIDE\adminapi\accessmanager.cfc:48) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:472) at coldfusion.filter.SilentFilter.invoke(SilentFilter.java:47) at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:368) at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:55) at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:321) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:220) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:655) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:444) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:414) at coldfusion.runtime.CfJspPage._invoke(CfJspPage.java:2432) at cfdatasource2ecfc1679861966$funcGETDATASOURCES.runFunction(E:\cf10_final\cfusion\wwwroot\CFIDE\adminapi\datasource.cfc:52) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:472) at coldfusion.filter.SilentFilter.invoke(SilentFilter.java:47) at coldfusion.runtime.UDFMethod$ReturnTypeFilter.invoke(UDFMethod.java:405) at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:368) at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:55) at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:321) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:220) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:655) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:444) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:414) at coldfusion.runtime.CfJspPage._invoke(CfJspPage.java:2432) at cfApplication2ecfc498167235$funcPREREQUISITESTART.runFunction(C:\inetpub\wwwroot\projectDir\trunk\Application.cfc:155) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:472) at coldfusion.runtime.UDFMethod$ReturnTypeFilter.invoke(UDFMethod.java:405) at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:368) at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:55) at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:321) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:220) at coldfusion.runtime.CfJspPage._invokeUDF(CfJspPage.java:2659) at cfApplication2ecfc498167235$funcINIT.runFunction(C:\inetpub\wwwroot\projectDir\trunk\Application.cfc:52) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:472) at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:368) at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:55) at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:321) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:220) at coldfusion.runtime.CfJspPage._invokeUDF(CfJspPage.java:2659) at cfApplication2ecfc498167235._factor5(C:\inetpub\wwwroot\projectDir\trunk\Application.cfc:45) at cfApplication2ecfc498167235.runPage(C:\inetpub\wwwroot\projectDir\trunk\Application.cfc:1) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:244) at coldfusion.runtime.TemplateProxyFactory.resolveComponentHelper(TemplateProxyFactory.java:538) at coldfusion.runtime.TemplateProxyFactory.resolveName(TemplateProxyFactory.java:234) at coldfusion.runtime.TemplateProxyFactory.resolveName(TemplateProxyFactory.java:159) at coldfusion.runtime.TemplateProxyFactory.resolveFile(TemplateProxyFactory.java:120) at coldfusion.cfc.CFCProxy.<init>(CFCProxy.java:138) at coldfusion.cfc.CFCProxy.<init>(CFCProxy.java:84) at coldfusion.runtime.AppEventInvoker.<init>(AppEventInvoker.java:64) at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:232) at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) at coldfusion.filter.PathFilter.invoke(PathFilter.java:112) at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:94) at coldfusion.filter.BrowserDebugFilter.invoke(BrowserDebugFilter.java:79) at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:46) at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) at coldfusion.CfmServlet.service(CfmServlet.java:219) at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:89) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:42) at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:46) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:224) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:169) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:928) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:414) at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:204) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:539) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:298) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662)
And here is the listed exceptions, beneath the stack trace;
13:09:56.056 - cfadminapiSecurityError Exception - in E:/cf10_final/cfusion/wwwroot/CFIDE/adminapi/accessmanager.cfc : line 48
 The current user is not authorized to invoke this method.
13:09:56.056 - cfadminapiSecurityError Exception - in E:/cf10_final/cfusion/wwwroot/CFIDE/adminapi/accessmanager.cfc : line 48
 The current user is not authorized to invoke this method.
13:09:56.056 - java.io.FileNotFoundException - in C:/ColdFusion10/cfusion/wwwroot/WEB-INF/exception/errorcontext.cfm : line 44
 E:/cf10_final/cfusion/wwwroot/CFIDE/adminapi/accessmanager.cfc (The system cannot find the path specified)
This perspn seems to be having the same issue;
http://forums.adobe.com/message/5051892
and I agree I don't have "E" drive either!

I've found a solution to my plight - I don't know if it'll work for you or help you try something that MAY fix it.
I use a common code set which includes the Application.cfc from a CF Mapping - So, in the application.cfc in the actual website I do this:-
<cfinclude template="/UberDirectory/Application.cfc">
Then, in the /UberDirectory/Application.cfc, I was initialising a CFC which checks if the datasource was created for the website. The datasource checking code attempts to log into the Admin API and check & create if necessary the datasource.
This has previously worked without fail for me - But in this instance it failed!! I was doing two things wrong - Firstly, the CFC should only be called in the Application.cfc in the onRequestStart section as the Application had to be initialised first - This is maybe because I've invoked the application.cfc in a "non-standard" manner.
Secondly, once I'd moved the CFC invocation into oNRequestStart I saw the following error:-
The string COOKIE.CFAUTHORIZATION_uber-directory is not a valid ColdFusion variable name.
I had this as the app name .... <cfset this.name = 'uber-directory'>
Changedthe dash to an underscore and I was away and could once again check the datasources
Hope it helps
Martin

A better way to initialize imported taskflows and BCs with current user

Hello.
I'm currently developing a composite application containing one main application and a number of subapplications (modules) packed in adflibs.
Main application has a side menu and a dynamic region, showing taskflows (on fragments) from adflibs.
Main application is configured with adf security and it has current login and queries his ID. I would like main application to tell modules current user ID rather than each module to find out current user on their own.
So there is currentUserID input parameter required in each imported taskflow. And my question is what is a better way to process this ID in the modules?
What I have previously done is:
I've created a custom BC classes layer, VOImpl and VORowImpl have getIdUser() method. This method reads currentUserID parameter from pageFlowScope where the taskflow is storing the parameter.
Top-level View Objects have :IdUser query parameter and corresponding bind variable. This bind variable has value="source.getIdUser()", calling the method from custom VO class.
This way works fine but here and there I read that it is a bad practice to access pageFlowScope from BCs.
I could agree with this in case someone could share a better way.
So what is a good practice?
Thanks.
ADF/JDev 11.1.2.3 - 12

Why don't you use adf security for this? Read Oracle ADF: Security for Everyone which give you an overview and sample on how to implement this.
Timo

Call Custom Service from Event Receiver as Current User

Hello,
i bang my head on this problem for days now:
My custom web service hosted in Sharepoint 2013 needs to know the logged on user name. I used to have a self-written impersonation in my service client before, but with switching to claims authentication this should be obsolete.
So within my service i decode the user from
IClaimsPrincipal icp = Thread.CurrentPrincipal as IClaimsPrincipal;
IClaimsIdentity ci = (IClaimsIdentity)icp.Identity;
String User = ci.ToString();
This works well when i call the service from a custom aspx page.
It utterly fails when i call the service from a List Item Event Receiver. The User always is the Application Pool Account.
This is the Client code to open the Channel:
private void SetChannelFactory(
MyServiceApplicationProxy proxy,
Uri address)
if (null == proxy)
throw new ArgumentNullException("proxy");
if (null == address)
throw new ArgumentNullException("address");
// Check for a cached channel factory
string endpointConfigurationName = GetEndpointConfigurationName(address);// Get the endpoint configuration name
if ((null == s_ChannelFactory) || (endpointConfigurationName != m_EndpointConfigurationName))
lock (s_ChannelFactoryLock)
if ((null == s_ChannelFactory) || (endpointConfigurationName != m_EndpointConfigurationName))
// Create a channel factory without specifying an endpoint address
// so it can be cached and used for multiple endpoint addresses
s_ChannelFactory = new ConfigurationChannelFactory<IMyServiceContract>(
endpointConfigurationName, proxy.Configuration, null);
// Configure the channel factory for claims-based authentication
s_ChannelFactory.ConfigureCredentials(SPServiceAuthenticationMode.Claims);
foreach (var operation in s_ChannelFactory.Endpoint.Contract.Operations)
DataContractSerializerOperationBehavior behavior = operation.Behaviors.Find<DataContractSerializerOperationBehavior>() as DataContractSerializerOperationBehavior;
if (behavior != null)
behavior.MaxItemsInObjectGraph = 2147483647;
// Store the current endpoint configuration name.
m_EndpointConfigurationName = endpointConfigurationName;
private IMyServiceContract GetChannel(
MyServiceApplicationProxy proxy,
Uri address)
//Create Channelfactory
SetChannelFactory(proxy, address);
// Create a channel from the channel factory.
return s_ChannelFactory.CreateChannelActingAsLoggedOnUser(new EndpointAddress(address));
All research pointed out that "CreateChannelActingAsLoggedOnUser" would pass the current user (which is correctly identified within the event receiver!) to the service, but it doesn't work for my event receiver...
Any advice on this would be great!
With kind regards,
Joachim

You should be able to get the current user id from the SPListItemEventProperties object. From here you should be able to create a Claim. For example get the user by using
user = SPWeb.Users.GetByID(properties.CurrentUserId)
SPClaim claim = SPClaimProviderManager.CreateUserClaim(user.email, SPOriginalIssuerType.TrustedProvider, issuerIdentifier);
https://msdn.microsoft.com/en-us/library/microsoft.sharepoint.administration.claims.spclaimprovidermanager.createuserclaim(v=office.14).aspx
Blog | SharePoint Field Notes Dev Tools |
SPFastDeploy | SPRemoteAPIExplorer

Controlling report output based on current user

Hi all,
I am building a small app with APEX for a sales team.
We have the site and app hosted by another company.
I have built a report showing sales summary for the company. The problem is that the report is showing all sales for all sales people.
What I want is for the report to show data based on the user that is logged in, so that the user only sees his items.
In fact, this would be a useful thing to learn for me, because I could use this functionality on several other pager, so this will be a good example for other situations.
So far I have:
I have a database table that keeps track of the sales reps.
Each sales rep in that table is assigned a unique EMP_id, which is an autonumber column of that table, and is also the primary key.
The table also contains a column named: "User login Name" which is their login ID (the one they use to log into the application.
Possible solution (I think):
when user logs into APEX, retrieve their EMP_id from the EMP table based on their login name,
Hold the EMP_id in a variable for the duration of the session,
pass the variable to the SQL query for the report in the where clause.
Is this a good solution? or is there a better way to do this?
Can anyone advise on how to get this done please,
Thank you.

Hi,
Sorry - I guess I should have said where to create the function!
You can keep those steps or keep with your own method as both should return the value you need. I usually store the result of that value in G_USER - similar to Tyson's method - when the user logs in and then use :G_USER wherever I want to use it in filters etc. However, if I need to create SQL Views, I have to use the GETCURRENTUSERID() function instead.
Andy
ps - I used MIN() in the function to ensure that I only get one value returned. The method SELECT .... INTO .... only allows us to set a variable to one value and, sometimes, more than one value is returned by the SELECT statement and this would generate an error. Of course, there should be just the one value that matches the current user, but I always assume the worst! The statementS:
SELECT MIN(EMP_ID) into user_id FROM S_USERS WHERE UPPER(LOGIN_ID) = UPPER(v('APP_USER'));
user_id := CASE WHEN user_id IS NULL THEN 9999999999 ELSE user_id END;could also be written as:
SELECT EMP_ID into user_id FROM S_USERS WHERE UPPER(LOGIN_ID) = UPPER(v('APP_USER')) AND ROWNUM = 1;
user_id := CASE WHEN user_id IS NULL THEN 9999999999 ELSE user_id END;or
SELECT NVL(MIN(EMP_ID), 9999999999) into user_id FROM S_USERS WHERE UPPER(LOGIN_ID) = UPPER(v('APP_USER'));

How to set Current User in moss 2007 for Authentication....

Hi Team,
We have current running website where we have user id to login but now requirement is that user will login with his Email address. Email is stored in active directory, I'm able to login with fba authentication.
I'm able to retrieve the user id of current user using Email but
I am NOT able to set that user id for current user for further authentication using Moss 2007.
Please find the source code for login and authentication page:
//---------------------------Login Page--------------------//
public partial class Login : System.Web.UI.UserControl
#region Decleration
string LoginStatus = null;
string UserCurrent = null;
static SPUser siteuser;
// private static string _randomNumbercheck;
//private static bool IsLoggedin;
Random random;
#endregion
#region Page Load
protected void Page_Load(object sender, EventArgs e)
this.hplchangepw.Visible = false;
this.hplmytask.Visible = false;
string desturl = SPContext.Current.Site.Url;
if (!IsPostBack)
try
string str;
SPWeb web = SPContext.Current.Web;
SPUser siteuser = web. .CurrentUser;
//SPUser siteuser = spWeb.EnsureUser(username);
str = (siteuser == null ? "" : siteuser.ToString());
this.Login.TitleText = "";
this.Login.DestinationPageUrl = desturl;
//if (HttpContext.Current.Request.UrlReferrer != null)
// if (this.Page.User.Identity.IsAuthenticated && ((Session["test1"].ToString() == _randomNumbercheck) || LoginControl.Class1.IsLoggedIn))
if (this.Page.User.Identity.IsAuthenticated)
// _randomNumbercheck = "";
this.hplregister.Visible = false;
this.hplforgetpassw.Visible = false;
this.hplchangepw.Visible = true;
this.hplmytask.Visible = true;
this.Login.Visible = false;
if (str.StartsWith("fba_"))
string name = str.Split(':').GetValue(1).ToString();
LoginnameLbl.Text = "" + name.ToString() + ", Haryana Urban Development Authority Welcomes
You. \"In The Service Of Masses\"";
else
string name = str.Split('\\').GetValue(1).ToString();
LoginnameLbl.Text = "" + name.ToString() + ", Haryana Urban Development Authority Welcomes
You. \"In The Service Of Masses\"";
else
this.hplchangepw.Visible = false;
this.hplmytask.Visible = false;
this.Login.Visible = true;
LoginnameLbl.Text = "";
HttpContext.Current.Session.Clear();
HttpContext.Current.Session.Abandon();
catch (Exception ex)
//HttpContext.Current.Session.Clear();
//HttpContext.Current.Session.Abandon();
#endregion
#region Get Audit Informations
public void GetUserInfo()
try
string user = Login.UserName;
SPSecurity.RunWithElevatedPrivileges(new SPSecurity.CodeToRunElevated(delegate()
using (SPSite oSite = new SPSite(SPContext.Current.Site.ID))
using (SPWeb web1 = oSite.OpenWeb(SPContext.Current.Web.ID))
SPListItem item = null;
SPListItemCollection listItems = null;
web1.AllowUnsafeUpdates = true;
siteuser = web1.EnsureUser(Session["User"].ToString());// spWeb.EnsureUser(login);
listItems = web1.Lists["Audit_Trail"].Items;
item = listItems.Add();
item["User_ID"] = UserCurrent.ToString(); //Request.ServerVariables["AUTH_USER"];
string ip = Request.ServerVariables["HTTP_X_FORWARDED_FOR"];
if ((ip == null) || (ip == "") || (ip.ToLower() == "unknown"))
ip = Request.ServerVariables["REMOTE_ADDR"];
item["IP_Address"] = ip;
item["Login_Date"] = System.DateTime.Now;
item["Login_Status"] = LoginStatus.ToString();
item.Update();
web1.AllowUnsafeUpdates = false;
web1.Dispose();
oSite.Dispose();
catch (Exception ex)
#endregion
#region MD5Encryption
private string MD5Encryption(string strToEncrypt)
System.Text.UTF8Encoding ue = new System.Text.UTF8Encoding();
byte[] bytes = ue.GetBytes(strToEncrypt);
// encrypt bytes
System.Security.Cryptography.MD5CryptoServiceProvider md5 = new System.Security.Cryptography.MD5CryptoServiceProvider();
byte[] hashBytes = md5.ComputeHash(bytes);
// Convert the encrypted bytes back to a string (base 16)
string hashString = "";
for (int i = 0; i < hashBytes.Length; i++)
hashString += Convert.ToString(hashBytes[i], 16).PadLeft(2, '0');
return hashString.PadLeft(32, '0');
#endregion
#region Generate Random Code
private string GenerateRandomCode()
random = new Random();
string s = "";
for (int i = 0; i <= 6; i++)
s = string.Concat(s, this.random.Next(10).ToString());
// _randomNumbercheck = s;
return s;
#endregion
#region Generate Random String
public string GenerateHashKey()
StringBuilder myStr = new StringBuilder();
myStr.Append(Request.Browser.Browser);
myStr.Append(Request.Browser.Platform);
myStr.Append(Request.Browser.MajorVersion);
myStr.Append(Request.Browser.MinorVersion);
myStr.Append(Request.LogonUserIdentity.User.Value);
SHA1 sha = new SHA1CryptoServiceProvider();
byte[] hashdata = sha.ComputeHash(Encoding.UTF8.GetBytes(myStr.ToString()));
return Convert.ToBase64String(hashdata);
#endregion
#region Check User Authentication
protected void Login_Authenticate(object sender, AuthenticateEventArgs e)
Utility hu=new Utility();
int CheckValue = 0;
string user = Login.UserName;
if(user.Contains("@"))
CheckValue=1;
//Encrypted Password
string HPassword = hash.Value;
// Verify that the username/password pair is valid
SqlConnection con = new SqlConnection();
SqlCommand cmd = new SqlCommand();
con.ConnectionString = System.Configuration.ConfigurationSettings.AppSettings["FBAPortalConnection"];
if (con.State == ConnectionState.Closed)
con.Open();
cmd.CommandType = CommandType.StoredProcedure;
cmd.CommandText = "sp_Portal_ValidatePortalUser";
cmd.Connection = con;
cmd.Parameters.Add("@ID", SqlDbType.NVarChar, 256).Value = Login.UserName;
cmd.Parameters.Add("@Password", SqlDbType.NVarChar, 300).Value = HPassword.ToString();
cmd.Parameters.Add("@CheckVal", SqlDbType.Int).Value = CheckValue;
cmd.Parameters.Add(new SqlParameter("@P_Return", SqlDbType.NVarChar, 256));
cmd.Parameters["@P_Return"].Direction = ParameterDirection.Output;
cmd.ExecuteNonQuery();
string CurrentUserName = cmd.Parameters["@P_Return"].Value.ToString();
cmd.Dispose();
con.Close();
//int x = hu.ValidatePortalUser(Login.UserName, HPassword.ToString(), CheckValue);
if (CurrentUserName != "0")
Page.Session["User"] = CurrentUserName;
string UserName = Session["User"].ToString();
UserCurrent = UserName;
LoginStatus = "Successfull";
GetUserInfo();
e.Authenticated = true;
//Session["CustomAuthKey"] = MD5Encryption(Request.ServerVariables["Remote_Addr"] + Request.ServerVariables["Http_Cookie"] + Request.ServerVariables["Auth_User"]);
Session["CustomAuthKey"] = MD5Encryption(Request.ServerVariables["Remote_Addr"] + Request.ServerVariables["Http_Cookie"] + UserCurrent.ToString());
FormsAuthenticationTicket tkt;
String cookiestr;
HttpCookie ck;
tkt = new FormsAuthenticationTicket(1, UserName, DateTime.Now, DateTime.Now.AddMinutes(15), false, GenerateHashKey());
cookiestr = FormsAuthentication.Encrypt(tkt);
ck = new HttpCookie(FormsAuthentication.FormsCookieName, cookiestr);
ck.Path = FormsAuthentication.FormsCookiePath;
Response.Cookies.Add(ck);
else
// Username/password are not valid...
Login.FailureText = "Invalid Username / password";
e.Authenticated = false;
#endregion
#region Login Error
protected void Login_LoginError(object sender, EventArgs e)
// Determine why the user could not login
Login.FailureText = "Your login attempt was not successful. Please try again.";
// Does there exist a User account for this user
MembershipUser usrInfo = Membership.GetUser(Login.UserName);
if (usrInfo != null)
// Is this user locked out?
if (usrInfo.IsLockedOut)
Login.FailureText = "Your account has been locked out because of too many invalid login attempts. Please contact the administrator to have your account unlocked.";
else if (!usrInfo.IsApproved)
Login.FailureText = "Your account has not yet been approved. You cannot login until an administrator has approved your account.";
else
Login.FailureText = "Invalid UserName / Password";
UserCurrent = usrInfo.UserName;
LoginStatus = "UnSucessfull";
GetUserInfo();
else
Login.FailureText = "Invalid UserName / Password";
#endregion
#region Logged In
protected void Login_LoggedIn(object sender, EventArgs e)
string UserName = Session["User"].ToString();
LoginControl.Class1.IsLoggedIn = true;
//If User Email is [email protected] it will be invalid. Prompt the user to update the email id.
LoginControl.Utility hu = new LoginControl.Utility();
DataSet dsuser = hu.getUserDetails(UserName);
string email;
if (dsuser.Tables[0].Rows.Count > 0)
email = dsuser.Tables[0].Rows[0]["Email"].ToString();
if (email.Equals("[email protected]"))
Response.Redirect("/Pages/UserUpdates.aspx", true);
else
#endregion
//-------------------------------- Authentication code----------------------------//
private void authenticateuser()
try
if (SPContext.Current.Web.CurrentUser != null)
using (SPSite spSite = new SPSite(SPContext.Current.Site.Url))
using (SPWeb spWep = spSite.OpenWeb())
Utility hu = new Utility();
_userid = spWep.CurrentUser.Name;
DataSet ds = new DataSet();
ds = hu.GetPlotid(_userid);
if (ds.Tables[0].Rows.Count > 0)
_plotid = ds.Tables[0].Rows[0]["plotid"].ToString();
else
if (!SPContext.Current.Web.UserIsSiteAdmin && !SPContext.Current.Web.UserIsWebAdmin)
if (!SPContext.Current.Web.IsCurrentUserMemberOfGroup(SPContext.Current.Web.Groups["Allottee"].ID))
SPUtility.HandleAccessDenied(new Exception("You do not have access to this page"));
else
{ SPUtility.HandleAccessDenied(new Exception("Please login")); }
catch (Exception ex)
// lblMessage.Text = "Error:" + ex.Message;
ShowMessage("Following error has occured while executing the desried event :- " + ex.Message);
Mohan Prakash

1. Current work flow :-In web site the user have to register themselves in the web site and enters his details along with user id, password and email id. Once user
is registered then he will login with his user id and password. The user id is picked from login control and that set in “SPWeb.CurrentUser” as user id and system uses "Membership.ValidateUser" method to Authenticate user for login.
2. New Requirement: we would like to facilitate the user to login with Email id as well as user id.
Problem:
We replaced "Membership.ValidateUser" method to our own method to Authenticate user with email id/user id and password.
When user is login with user id and password it is working successfully but in the case of email id and password –“the email id is picked from user control and set as
"HttpContext.Current.User.Identity.Name" but we are not getting “SPWeb.CurrentUser” and it shows null value.”
We are able to get user id from database using email id of user. Please help us how we can set user id in "SPContext.Current.Web.CurrentUser".
Mohan Prakash

HT4796 How can I take the files that were migrated from my PC to my Mac and add all those files to my current user instead of having 2 users?

How can I take the files that were migrated from my PC to my Mac and add all those files to my current user instead of having 2 users? Having to log out just to sign in on a different user to access the files is absurd.
Do I make all the files sharable to all the NOW users on the mac then just delete the files? Or can i erase my account that I made when starting up my new mac and then just use the one with the transferred files?
I just dont want to have to og in and out of 2 different accounts .. Help please.
-Nina

Sorry. /Users is a folder path. It would be similar to C:\Users (if that exists on Windows).
So, in the Finder, select Computer from the Go menu.
You'll see Macintosh HD, double-click that to open it.
In there you'll see several folders. One is Users. That is where all the user Home folders exist. Select the other account's home folder and go to step 3.
If you have any more confusion, please stop and ask. We'll get there.
If you feel more comfortable, you can just log into that other account and move the files into /Users/Shared.
Then, log into the account you wish to use and copy the files from the Shared folder and paste them into your Home folder, wherever they belong, Documents, Music, Pictures, etc. That just takes a little more work. Transferring them into Shared, and then copying into your home sets the permissions on the files so that you won't have a problem accessing them later. The steps I provided just prevent you from having to do the double move, since you are not going to use the old account once you are done.
Quick unix shorthand. If someone gives you a file path that begins with a /, that means the root of the hard drive, ie Macintosh HD (if you haven't renamed it). The path separator in unix is /, not \.
A path that starts with ~/ means your Home folder, the one inside /Users named with your account name.

How to activate all inactive objects for current user

Hi
How to activate all inactive objects for current user ...
... I have found a (long winded) way to do this:
- Environment / Inactive Objects
- Add to Worklist
- Display Worklist
- Select All
- Activate
this will open a dialog titled "Inactive Objects for <username>"
which has the exact functionality I need ... but I can't figure out how to get to this dialog directly - without so many intermediate steps
the SAP docs repeatedly mention the ability to activate the inactive worklist - but do not mention how
does anybody know the TCode for this dialog?
thanks
ps does the term "mass activation" apply to importing change requests rather than development activation?
Edited by: FireBean500 on Jun 4, 2010 11:07 PM

No other way. But usually it's far more simple as all objects are already in our own worklist.
I wonder why your objects are not already in your worklist, as everytime you create or maintain an object, it is added to your worklist.

How can i obtain a user guide for the ipod nano 16GB 5th gen. with out printing it off the computor

How can i obtain a user guide for the ipod nano 16GB 5th gen. without printing it off the computor.

You can't, at least not the one provided by Apple.
B-rock

Dynamic LOV based on Current user

How do i make a dynamic LOV based on the user id of the current user.
Also how to insert values from a form into a database
Can anyone please help me out.
Thanks

Use portal.wwctx_api.get_user to get the currently logged in userid.
The simplest example of a form manipulating data is to create the form based on a table. All DML works automagically. You can base your form on a procedure with dummy columns and do your own DML if you wish. Lots more flexibility that way...

Obtaining current user

Similar Messages

Maybe you are looking for