Owa_cookie login username cookie lost after logout

Similar Messages

• Many logins & passwords were lost after last update

  Automatic login and passwords were lost after the last firefox update. Or should I say would not work until I re-entered them.
  A search found they were still there, plus the new entries I saved.
  Other logins were lost totally, no passwords were lost.
  I did send an immediate report to tech support but heard nothing.
  Is it safe to update the new version or am I having to re-enter my logins and passwords again.
  I have used firefox for many years as my main browser, I mostly only want to use a different browser when I want to open two different email accounts.

  Websites remembering you and automatically log you in is stored in a cookie.
  If a website decides to invalidate such a remember-me cookie after noticing an update (e.g. 6.0.1 to 7.0.1) then you will have to re-enter your credentials to create a new cookie.

• [SOLVED]Plasma setup lost after logout then in

  Every time I log out of my KDE session I partially lose my plasmoid setup.  When I login, what I get instead is a set of plasmoids I used previously but changed out.  Also, the plasmoids that I do use is squished down to about 1/4 inch.  I remove the ones I don't want and setup the ones I need, but the result is identical every time.
  I'm using kdemod 4.2.
  Last edited by crisnoh (2009-02-18 22:52:40)

  After trying out your suggestions I checked out the link provided by aglarond and attempted deleting my plasma* files.  When I logged back in the widgets I wanted were in place and the ones I didn't were gone.  The only problem that remains is that a pager applet I have on the desktop still shows up squished.  I suspect that that is an issue with the applet itself.

• Redirect After Logout

  Hi,
  I have created several example public pages each containing the Portal 9.0.2 out-of-the-box Login portlet.
  Depending on which page I use to login from, when I logout, I would like to automatically return to the same login page.
  In Portal Rel 1, this was simply a case of setting the p_done_url value to that of the required login page.
  However, in Rel 2, logout first takes you to the default logout page (the one confirming logout from various partner applications), where you are then required to manually click RETURN, at which point, the correct login page is displayed.
  I have read various threads both from this forum and metalink, and each suggests looking in the SSO Admin Guide. However, this explains how to replace the Logout page, not how to redirect after logout. If I use the method described in the SSO Admin Guide, I can only have one logout page. This would mean that I would not be able to replicate the Rel 1 functionality, where I could go to a different login page each time after logout.
  Does anyone out there know how to replicate this Rel 1 functionality?
  Thanks in advance for all help received.
  Regards,
  Gillian

  Hi Anupam,
  This is a copy of the single sign-off file, ssoff.jsp:
  <html>
  <body bgcolor="white">
  <%@ page buffer="5" autoFlush="true" %>
  <%
  response.setHeader("Cache-Control", "no-cache");
  response.setHeader("Pragma", "no-cache");
  response.setHeader("Expires", "Thu, 29 Oct 1970 17:04:19 GMT");
  String done_url = null;
  int i = 0;
  try
  done_url = request.getParameterValues("p_done_url")[0];
  out.println("<center><h1>Single Sign-Off</h1><p>");
  out.println("<table border=0>");
  out.println("<tr>");
  out.println("<th>Appliction Name</th>");
  out.println("<th>Logout Status</th>");
  out.println("</tr>");
  for(;;)
  i++;
  String app_name = request.getParameterValues("p_app_name"+i)[0];
  String url_name = request.getParameterValues("p_app_logout_url"+i)[0];
  out.println("<tr>");
  out.println("<td>"+app_name+"</td>");
  out.println("<td><img src='" url_name "'></td>");
  out.println("</tr>");
  catch(Exception e)
  if(i>1)
  out.println("</table>");
  out.println("<br>");
  response.sendRedirect(done_url);
  else
  out.println("<h2><center><font color='red'>ERROR:</font>");
  out.println("This page can not be accessed directly!</center></h2>");
  %>
  </body>
  </html>
  When I now logout from the portal, this page is called as expected, but the logout process is not executed nor does the redirection take place. Any pointers??
  Thanks,
  Gillian

• No keyboard at login window after logout

  Hello all,
  I'm just starting state testing and have been presented with a problem.  When a student logs out of a machine in order to log into the testing account the login window won't accept input from the keyboard.
  Bacground and details:
  We have labs of computers using workgroup manager and open directory for management.  In a normal lab the machine will boot to a login window.  This is so that the preferences will be refreshed before a student logs in.  The student will login as a local user (student) and procede to do whatever for the day. 
  We have recently started state mandated testing.  I have set up an OD account which is very locked down and keeps the student on track while testing.  This requires someone to log the normal user out and login as the OD user.  This is where the problem arises.
  About 50% of the time the keyboard will no longer funtion after logout.  No keys of any sort work. The mouse still works.  Even keystrokes through ARD do nothing.  A end user is then required to reboot the system in order to do ANYTHING.  This is not ideal for elementary kids.
  From my digging in log files and poking around i noticed that the loginwindow process was hanging or crashing.  If i kill the process the login window blinks and then works just fine.  I'm sure i could write a logout script that drops a process into the background to kill the loginwindow process after so many seconds, but thats messy.  Has anyone seen this?  Any thoughts or solution? Only happens on a logout, never on an initial bootup.
  I have found that 95% of these issues occur on Mac Mini's.  I can consistantly replicate the issue on a mini.  If i clone the mini to a macbook, i no longer have the problem (using carbon copy cloner).  So either the hardware is part of the issue or the clone fixed something in the process.
  OSX 10.5.8
  /var/log/windowserver.log  (on logout)
  May 02 16:27:30  [252] kCGErrorIllegalArgument: CGXSetWindowListTags: Operation on a window 0x6 not owned by caller loginwindow
  May 02 16:27:32  [252] CGXRestartSessionWorkspace: session workspace exited for session 256 ( on console )
  May 02 16:27:32  [252] loginwindow connection closed; closing server.
  May 02 16:27:33  [352] Server is starting up
  May 02 16:27:36  [352] CGXMappedDisplayStart: Unit 0: no display alias property
  May 02 16:27:36  [352] kCGErrorFailure: IOHIDSetCursorEnable returns -536870208
  May 02 16:27:36  [352] kCGErrorFailure: Set a breakpoint at CGErrorBreakpoint() to catch errors as they are returned
  May 02 16:27:36  [352] CGXPerformInitialDisplayConfiguration
  May 02 16:27:36  [352]   Display 0x41dc9d00: VirtualDisplay Unit 0; Vendor 0x756e6b6e Model 0x76697274 S/N 0; online enabled built-in (0,0)[1280 x 1024], base addr 0xb0021000
  May 02 16:27:36  [352] AGCAttach: Couldn't find any matches
  May 02 16:27:43  [352] kCGErrorIllegalArgument: CGXSetWindowListTags: Operation on a window 0x2 not owned by caller SecurityAgent
  May 02 16:27:45  [352] kCGErrorIllegalArgument: CGXOrderWindow: Operation on a window 0x2 not owned by caller SecurityAgent

  >kCGErrorIllegalArgument: CGXSetWindowListTags: Operation on a window 0x2 not owned by caller SecurityAgent
  In those cases there may be threads and/or processes trying to do things with windows that they don't own. In other words, some programmers may have goofed up a little bit someplace.
  But might try the one Helpful marked post here...
  https://discussions.apple.com/thread/987826?start=0&tstart=0

• Save cookie/session after login on web service client

  I am calling a web service that has a login method. It sets a session id in
  a cookie. Every subsequent call fails and says I'm not logged in. How do I
  save their cookie or session ID such that the server thinks I'm logged in?
  Here's the client code (I used clientgen to create jar from wsdl);
  DatashareManager dsm = new DatashareManager_Impl();
  WebServiceContext wsContext = dsm.context();
  WebServiceSession session = (WebServiceSession)wsContext.getSession();
  DatashareManagerSoap dsmsoap = dsm.getDatashareManagerSoap();
  String result = dsmsoap.login("username", "password"); // this works
  EResult result2 = dsmsoap.deleteReusableList(1, "bob"); // this fails 'Not
  logged in'

  That sounds like a difficult one to implement because you'll essentially need to intercept the AppsLogin servlet (or AppsLocalLogin.jsp) to conditionally redirect the user somewhere else - and that would be an intrusive (and not recommended) customization.
  Some possible alternatives:
  1. Rather than publish http://hrlive.myintranet.local:8000/OA_HTML/AppsLogin as the URL that you users connect to, publish something like http://hrlive.myintranet.local:8000/OA_HTML/XxLogin.jsp instead. That could be a custom JSP that asks the user to agree to the disclaimer and, when they agree, store that agreement in a cookie and then redirect to AppsLogin.
  That's not quite the same because you're asking the user to agree before they login. It also means that they can navigate direct to AppsLogin and bypass the disclaimer (unless you customize AppsLogin to verify the cookie).
  2. Assign all users a default 'Disclaimer' responsibility with a single function (such as an EIT, or a custom OA Framework page) that allows the user to agree to agree to the disclaimer. Then once they've agreed to it have some process that automatically grants them their real responsibilities and revokes the Disclaimer responsibility. For example, if you used an EIT that could be an API User Hook.
  One problem with this approach is that you'll need to clear cache through Functional Administrator before the new responsibilities are visible so you'll either need to find a way of doing that programatically or ask the user to wait until tomorrow (assuming you do a nightly web server bounce).

• Is ServletAuthentication.login(userName, password, req, res) transmit data to server after encrypting?

  Hi,
  May I know that the below method is using any encryption before transmitting data to the server end? Need to know whether its passing plain text to the server end as we call the method using plaintext for username and password.
  int rc = weblogic.servlet.security.ServletAuthentication.login(userName, password, req, res);
  Thank you.

  I had a problem once, where the authentication server only allowed internal IP addresses to be authenticated. Do you have any kind of those restrictions?
  Mike

• Logged Out session can be accessed again After logout (DAD authentication)

  Hello,
  Please find the details of my problem below:
  SCENERIO:
  Current Authentication: No Authentication (USING DAD)
  Authorization: MYAUTH
  Frequency: Once Per Session
  declare
  lv_retval boolean;
  lv_srec pkg_myutil.r_sessionrectype;
  begin
  begin
  -- This is NOT Apex Session. I am checking the entry in a table to make sure user is logged in
  -- and the link is not opened directly. In short making sure user opened the Apex link from the
  -- Oracle Forms application.
  lv_srec :=pkg_myutil.get_session_info(:P1_SID);
  if lv_srec.valid_session then
  lv_retval := TRUE;
  else
  lv_retval := FALSE;
  end if;
  exception
  when others then
  lv_retval := FALSE;
  end;
  return lv_retval;
  end;
  The Application Security property Authorization is set to : MYAUTH
  Logout Navigation Bar Entries-URL TARGET: http://myapp.mycompany.com/pls/apex/apex_custom_auth.logout?p_this_app=105&p_next_url=http://mycompany.com
  ( I cannot put this in the Authentication Logout URL as using -DATABASE- as sentry function (DAD authentication) gives me error: No functional attributes may be set when page sentry function is '-DATABASE-'.))
  so i directly modified the navigation bar entry
  Now I open the apex link from my forms application, and it Works fine. For example
  http://myapp.mycompany.com/pls/QRYONLYDAD/f?p=105:1:2524984933940261::NO::P1_SID:0137099300:
  The authorization function takes the P1_SID value and checks in database,finds the entry so returns TRUE to display the page 1 which i call Menu page.
  If I click logout, it works and takes me to the Mycompany home page.
  My question:
  If save that link and try to access it again AFTER LOGOUT, it still displays the page. Although the session is logged out, how come it still allows to access the page? The authorization function also doesn't fire which would have prevented it atleast. How APEX knows it still a valid session even after logout happens?
  I can see that Since there is DAD authentication, the login happens automatically........ but I cannot change that method. What other option do i have?
  Please help.
  Jay

  1.) Code for the function:
  Basically we are using a private DBMS_PIPE to pass a randomly generated string and read that pipe from Apex using get_session_info. Nothing to do with Apex Session. We just want to make sure the user opened the Apex link from the application.
  function get_session_info (p_session_id varchar2) return pkg_myutil.r_sessionrectype is
  rv_sessionrec eft.pkg_myutil.r_sessionrectype;
  lv_status NUMBER;
  lv_app_id varchar2(20);
  lv_EMPID VARCHAR2(20);
  lv_timeout BINARY_INTEGER := 0; --A timeout of 0 allows you to read without blocking. otherwise the pipe will keep waiting and our purpose won't be solved
  lv_rmstatus number;
  begin
  begin
  -- Valid Session theme: If the pipe doesnot exist means the url is not requested from inside the Forms application.
  lv_status := DBMS_PIPE.RECEIVE_MESSAGE(p_session_id,lv_timeout);
  IF lv_status <> 0 THEN
  raise_application_error(-20003,'Error while receiving.Status = ' || lv_status);
  END IF;
  DBMS_PIPE.UNPACK_MESSAGE(lv_app_id);
  DBMS_PIPE.UNPACK_MESSAGE(lv_EMPID);
  if lv_EMPID is null then
  raise_application_error(-20004,'User EMPID is null in the session info.');
  end if;
  -- construct return record
  rv_sessionrec.session_id:=p_session_id;
  rv_sessionrec.valid_session :=TRUE;
  -- remove pipe
  lv_rmstatus:=DBMS_PIPE.REMOVE_PIPE(p_session_id);
  if lv_rmstatus <> 0 then
  null; -- think what to do
  end if;
  exception
  when others then
  rv_sessionrec.session_id:=p_session_id;
  rv_sessionrec.valid_session :=FALSE;
  end;
  return rv_sessionrec;
  end get_session_info;
  2.) I guess you are right. But doesn't Apex use the Userid and password hardcoded in the DAD? because it displays the username in DAD on the page footer. But It will authenticate everytime. So I want to put another layer so that my pipe verification code executes everytime which can decide whether to show the page or redirect to a error page.
  If i put in a On-Load Before Header Process on Page 1 with the pl/sql code, is there a way there to redirect to different page? I couldn't think of a way to do it. Then i can remove the code from authorization scheme and add to the On-Load process?
  Does this help any?
  Thanks for your prompt response.
  Thanks,
  Jay

• Data lost after several days running!

  data lost after several days running
  ENV:
  Service Pack 1 for Crystal Reports for Eclipse 2.0
  Tomcat5.5
  Problem:
  There is no problem to export the report as PDF files in the first few days after i upgraded the CR4E.
  But after several days running,the problem appeared : the exported PDF file was incomplete!
  It's supposed to 3 pages,but only 1 page(the first page) exported actually.
  When i restarted the tomcat,the problem disappeared.In several days running,
  the problem appeared again...
  Code:
  reportClientDoc = new ReportClientDocument();
  reportClientDoc.open(Messages.getString("tmpltPath")+tmplt_name, OpenReportOptions._discardSavedData);     
  RptHelp  rptHelp = new RptHelp();
  rptHelp.setDatabaseCtrl(reportClientDoc);
  rptHelp.addDiscreteParameterValue(reportClientDoc,"","userName","admin");
  rptHelp.addDiscreteParameterValue(reportClientDoc,"","start_date",start_date);
  rptHelp.addDiscreteParameterValue(reportClientDoc,"","end_date",end_date);
  for(int i=0;i<6;i++){
       if(!p_name<i>.equals("")){
            rptHelp.addDiscreteParameterValue(reportClientDoc,"",p_name<i>,p_value<i>);
  String exportPath = Messages.getString("reportExportPath");
  String exportName = "test";
  rptHelp.export(reportClientDoc, exportPath+exportName, file_extention);
  File file = new File(exportPathexportName"."+file_extention);
  FileInputStream in = new FileInputStream(file);
  int len = (int)file.length();
  byte[] data = new byte[len];
  int read = 0;
  while (read <len) {
      read += in.read(data, read, len-read);
  in.close();
  response.setContentType("application/x-msdownload");
  response.setHeader("Content-Disposition", "attachment; filename="+ URLEncoder.encode(exportName"."file_extention,"ISO-8859-1"));
  OutputStream ops = response.getOutputStream();
  ops.write(data);
  ops.flush();
  ops.close();
  out.clear();
  out = pageContext.pushBody();

  What is the data? What is displaying the data (graph or chart)? What does your code look like? Why did you post a 4M image to the forum?
  NaN in the data will appear as gaps in plots.
  Mike...
  Certified Professional Instructor
  Certified LabVIEW Architect
  LabVIEW Champion
  "... after all, He's not a tame lion..."
  Be thinking ahead and mark your dance card for NI Week 2015 now: TS 6139 - Object Oriented First Steps

• Making user policies stay in effect after logout

  We enforce highly restrictive Windows group policies on our student users. Sometimes, a student is able to login offline, so they don't get the restrictive policy. In ZDM 7, we had the ability to make a user policy stay in effect after logout, which would keep the restrictions turned on until a user with less restrictions logged in. Is there a way to do this in ZCM 11? I looked in ZCC, and I can't see any option for this. FYI, we are using ZCM 11.2.2 MU 2.
  Rick P.
  Walla Walla Public Schools

  Originally Posted by craig_wilson
  Kevin,
  Whoever told you that was clueless about GPOs.
  User GPOs are removed at Logout.
  Device GPOs are removed at Shutdown.
  They are removed by Re-Applying the "Blank" GPOs located in
  %zenworks_home%\bin\cachefiles\Orginal_GPO
  (Or something like that w/o looking.)
  These will only exist if a GPO is in place.
  It would be possible to replace those GPO files with your locked down
  files so when User/Machine GPOs are replaced with the "Blank" one, they
  are actually using a Strong GPO.
  On 2/15/2013 7:06 PM, RPummel wrote:
  >
  > kjhurni;2247277 Wrote:
  >> I was told the policies were cached and would remain in effect unless a
  >> new user with a DIFF policy logged in.
  >>
  >> I'll have to dig up my old emails as this was like over a year ago.
  >
  > This may be the theory, but it is not what we have observed in
  > practice.
  >
  > Rick
  >
  >
  Craig Wilson - MCNE, MCSE, CCNA
  Novell Knowledge Partner
  Novell does not officially monitor these forums.
  Suggestions/Opinions/Statements made by me are solely my own.
  These thoughts may not be shared by either Novell or any rational human.
  Thanks Craig. Too bad it doesn't remain in effect on logout. Seems like a glaring security hole, IMO compared to how MS does it. OR how ZFD used to do it.
  Guess an RMS is in order?

• HT203998 If I login from one account and logout from them

  If I login from one account and logout from them, I can not see the user which I made hidden using the above commands, but when I restart my mac I can see that hidden user on login screen, please help, I don't want to see the hidden user even after restart.

  Hi uddipatel,
  Welcome to the Support Communities!  Here is how you hide a user account in the login window on your Mac:
  How to hide a user account in OS X - Apple Support
  http://support.apple.com/en-us/HT203998
  Hide a user account in OS X Yosemite
  You can prevent a user account from appearing in the login window in OS X Yosemite by using these steps:.
  1. Log in as an admin user.
  2. Use this Terminal command, substituting the short account name name of the user you wish to hide for “hiddenuser”:
  sudo dscl . create /Users/hiddenuser IsHidden 1
  If you later want to show the hidden user, set the user’s IsHidden attribute to 0 like this:
  sudo dscl . create /Users/hiddenuser IsHidden 0
  You can optionally delete the IsHidden attribute instead of setting it to 0.
  Additional Options
  You can also move the hidden user's home directory to a place not visible from the Finder, and remove the hidden user's Public Folder share point.
  The following command moves the home directory of "hiddenuser" to /var, a hidden directory:
  sudo mv /Users/hiddenuser /var/hiddenuser
  The following command updates the user record of "hiddenuser" with the new home directory path in /var:
  sudo dscl . -create /Users/hiddenuser NFSHomeDirectory /var/hiddenuser
  The following command removes the Public Folder share point for the user with the long name "Hidden User”:
  sudo dscl . -delete "/SharePoints/Hidden User's Public Folder"
  Hide a user account in earlier versions of OS X
  There are three ways you can hide a user in versions of OS X earlier than Yosemite.
  Set the Login window to display name and password fields
  In the Users & Groups preferences pane (Accounts pane in Mac OS X v10.6 and earlier), click Login Options, then select "Display login window as: Name and password".
  With this enabled, no user accounts are listed in the Login window.
  If changing the Login Window to only display the name and password fields does not meet your needs, then you can use the following steps in this article to hide a user account.
  Add users to the HiddenUsersList (advanced)
  With Mac OS X v10.4 and later you can hide users from the Login window by adding them to the HiddenUsersList array in the /Library/Preferences/com.apple.loginwindow.plist file. The following command will hide the users "mei" and "anne" from the Login window:
  sudo defaults write /Library/Preferences/com.apple.loginwindow HiddenUsersList -array-add mei anne
  Note: These users will still appear in the Accounts (Mac OS X v10.6 and earlier) or Users & Groups (OS X Lion) pane in System Preferences.
  Lower the user's UID and enable the Hide500Users option (advanced)
  You can use the advanced steps below to change a user's UID, adjust their home directory permissions and enable the Hide500Users option. An example user account "tom" is used below.
  The following sample Terminal command changes the user tom's UID to 401. Note: Check to make sure the new UID is not in use before making this change.
  sudo dscl . -create /Users/tom UniqueID 401
  This command adjusts the permissions of the user's home directory:
  sudo chown -R tom /Users/tom/
  Enable the Hide500Users option with this command:
  sudo defaults write /Library/Preferences/com.apple.loginwindow Hide500Users -bool YES
  Last Modified: Dec 8, 2014
  All the best,
  - Judy

• Unable to connect to the MKS: Login (username / password) incorrect

  Hello everyone, my first post.
  Several months I've been trying to solve a problem with VMWare Server Remote Console 2.0
  When I try to open the remote console of any machine I have I get the following error:
  Unable to connect to the MKS: Login (username / password) incorrect
  Not to do and not understand why. If anyone can help I would appreciate that.
  Thank you all.

  There's a quick fix here.
  Just a guess, but I think it has something to do with computers not being on a domain.  I'm logged into my local Windows 7 system using the same username/password as my domain user, and I connect to network resources using that.  To spite the fact that my computer is not on the doman, I can see in the VMWare status window that it's using DOMAIN\user instead of just the user to start the VM.  Perhaps when the VMWare services auto-start the domain hasn't been authenticated to yet, hence the account is not valid.
  Original text from that site:
  Today I stumbled upon an issue in VMWare Server 2.0 problem today on a client’s server. I could log into the web administration console of VMWare Server, and I could manage the VMs from there without a problem.
  The issue came when I tried to open the console window on one of the VMs from within the VMWare admin console. The Console window opened, but after a few moments I saw: “Unable to connect to the MKS: Login (username/password) incorrect”
  I tried creating a desktop shortcut for the VM (from the VM’s summary pane), but still ran into the same problem.
  Shortly after unsuccessfully googling the error, I discovered the solution myself. I simply restarted the following Services:
  – VMWare Authorization Service
  – VMWare Server Web Access
  (In the process it restarts another one or two services, but does not interrupt any active VMs).
  After the service restart, the VM console windows opened without any problems.

• Issue with cisco acs 4.2.Users unable to login aaa client but after restarting group policy able to login

  issue with cisco acs 4.2.Users unable to login aaa client but after restarting group policy able to login

  issue with cisco acs 4.2.Users unable to login aaa client but after restarting group policy able to login

• Hyperlinks from other placed indd documents or pdfs getting lost after export to PDF

  after upgrade vom CS 5.5 to CS 6: hyperlinks from other placed indd documents or pdfs getting lost after export to PDF
  I tried all options for the as well known and working export options

  after upgrade vom CS 5.5 to CS 6: hyperlinks from other placed indd documents or pdfs getting lost after export to PDF
  I tried all options for the as well known and working export options

• Outlook keep propmt for login username & password although have entered correctly

  Need assistance on MS Exchange 2000 & MS Outlook 2007.
  For your information, one of our users facing issue in connecting MS Outlook 2007 to MS Exchange Server 2000, whereby the system keep requesting login password although user have entered
  login username & password correctly.
  Any advise/help much appreciated.

  Exchange 2000 is not supported for use with Outlook 2007... or anywhere.  You need to hire a consultant to get you to Exchange 2010 SP3 or later.
  Mike Crowley | MVP
  My Blog --
  Planet Technologies