Placeholder in roles

Hello,
in a SAP system 4.7 I found a role with some placeholders in authorization object S_TCODE. I don't understand what these placeholders do:
A* -> means all transactions beginning with A are included
A+ -> means all transactions beginning with A and one more letter are included
D!* -> what does that mean, especially the exclamation mark?
D§* -> what does that mean, especially the paragraph?
Helpful answers would be appreciated.
Thanks in advance,
Julia

A
-> means all transactions beginning with A are included
A+ -> means all transactions beginning with A and one more letter are included
D!* -> what does that mean, especially the exclamation mark?
D§* -> what does that mean, especially the paragraph?
Hi Julia,
the only allowed wildcard/placeholder is '*'.
So:
A* -> means all transactions beginning with A are included
A+ -> means that transaction A+ is authorized
D!* -> means all transactions beginning with D! are included
D§*-> means all transactions beginning with D§ are included
All other special characters beside '*' are considered as single character and not as wildcard.
b.rgds,
Bernhard

Similar Messages

Error while Adding the PlaceHolder to Home Page using Jdev,UCM

Hi,
I am Using UCM and Jdev 11g.
I was creating a website using Oracle® Fusion Middleware Developer's Guide for Site Studio for External Applications
11g Release 1 (11.1.1).
I worked fine till creating the place Holder Definition , I was trying to add place holder to Home Page.
In this step I did not get the property 'Switch Placeholder Definition Role' in the List when exploring the node WebSite.
Plaese help me resolve this.

Hi chris,
Thank you for your response.
I am using oracle db. It seems that it is trying to insert record into L10_Locale table while portlet is added into home page. Does the record go to L10_LOCALE while adding portlet.
As per my knowledge, records goes to desktop,page and placement related tables while portlet is added.
When i see the L10_LOCALE existing records, it has two 2 records.
Encoding Language Country
UTF-8 en US
UTF-8 en
you said that Locale for the title or description is too long... Is it for Portlet's title of locale ...?
Then, what is the relation of title and this error ...
Please clarify this ...?
Regards,
Senthil

Ecm11g sitestudio:insufficient access to contributor mode

hi All,
I am new comer for wcm, I am using ecm11.1.1.4 sitestudio on winxp, I enabled sitestudio,ssxa, sitestudio publisher components, I updated jdev11.1.1.4 with zip file under Oracle_ECM1\ucm\Distribution, I followed the steps in http://download.oracle.com/docs/cd/E17904_01/doc.1111/e13650/ssxa_creatingsites.htm, while when I came to the step of the following:
3.2.12 Adding a Placeholder to the Home Page
15.Click the Switch Placeholder Definition Role value, and select the admin security role from the drop-down list.
In this step, I can't find "Switch Placeholder Definition Role" in my SiteStudioDemo.xml, so I jumped over this step, but when I run the startSiteStudioDemo.jspx, press ctrl+shift+F5, login with weblogic/weblogic1, IE displayed an error message showing insufficient access to create placeholder, the wls startup console showed the following message:
================
intradoc.common.ServiceException: !csUserInsufficientAccess,weblogic
at intradoc.server.ServiceRequestImplementor.buildServiceException(Servi
ceRequestImplementor.java:2115)
at intradoc.server.Service.buildServiceException(Service.java:2260)
at intradoc.server.Service.createServiceExceptionEx(Service.java:2254)
at intradoc.server.ServiceSecurityImplementor.validateSecurityPrivilegeL
evel(ServiceSecurityImplementor.java:813)
at intradoc.server.ServiceSecurityImplementor.globalSecurityCheck(Servic
eSecurityImplementor.java:364)
at intradoc.upload.UploadSecurityImplementor.globalSecurityCheck(UploadS
ecurityImplementor.java:57)
at intradoc.server.Service.globalSecurityCheck(Service.java:2671)
at intradoc.server.ServiceRequestImplementor.doRequest(ServiceRequestImp
lementor.java:678)
at intradoc.server.Service.doRequest(Service.java:1890)
at intradoc.server.ServiceManager.processCommand(ServiceManager.java:435
at intradoc.server.IdcServerThread.processRequest(IdcServerThread.java:2
65)
at intradoc.server.IdcServerThread.run(IdcServerThread.java:160)
==========================
Since I didn't finish step 3.2.12.15 mentioned above, I doubt that was the reason for the issue, the point is why I couldn't see "Switch Placeholder Definition Role" when I edited SiteStudioDemo.xml?
Best regards

Hi Srinath,
Thank you very much for your answer.
To be sure, the issue is the following :
[localhost oracle /u01/app/oracle/product/Middleware/user_projects/domains/webcenter/bin]$ <Jan 27, 2012 6:47:16 AM PST> <Error> <HTTP> <BEA-101020> <[ServletContext@24412361[app:pocIaEnterpriseApplication module:pocIA-Project1-context-root path:/pocIA-Project1-context-root spec-version:2.5]] Servlet failed with Exception
java.lang.IllegalArgumentException: The file weblogic.jsp.wlw.util.filesystem.mds.MDSFile@1da7214 is not a source file
at weblogic.jsp.internal.CPL.addSourceFile(CPL.java:632)
at weblogic.jsp.internal.CPL.addSourceFiles(CPL.java:616)
at weblogic.servlet.jsp.JavelinxJSPStub.compilePage(JavelinxJSPStub.java:140)
at weblogic.servlet.jsp.ResourceProviderJavelinxJspStub.compilePage(ResourceProviderJavelinxJspStub.java:78)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:256)
Truncated. see log file for complete stacktrace
>
<Jan 27, 2012 6:47:16 AM PST> <Notice> <Diagnostics> <BEA-320068> <Watch 'UncheckedException' with severity 'Notice' on server 'SSXA_server1' has triggered at Jan 27, 2012 6:47:16 AM PST. Notification details:
WatchRuleType: Log
WatchRule: (SEVERITY = 'Error') AND ((MSGID = 'WL-101020') OR (MSGID = 'WL-101017') OR (MSGID = 'WL-000802') OR (MSGID = 'BEA-101020') OR (MSGID = 'BEA-101017') OR (MSGID = 'BEA-000802'))
WatchData: DATE = Jan 27, 2012 6:47:16 AM PST SERVER = SSXA_server1 MESSAGE = [ServletContext@24412361[app:pocIaEnterpriseApplication module:pocIA-Project1-context-root path:/pocIA-Project1-context-root spec-version:2.5]] Servlet failed with Exception
java.lang.IllegalArgumentException: The file weblogic.jsp.wlw.util.filesystem.mds.MDSFile@1da7214 is not a source file
at weblogic.jsp.internal.CPL.addSourceFile(CPL.java:632)
at weblogic.jsp.internal.CPL.addSourceFiles(CPL.java:616)
at weblogic.servlet.jsp.JavelinxJSPStub.compilePage(JavelinxJSPStub.java:140)
at weblogic.servlet.jsp.ResourceProviderJavelinxJspStub.compilePage(ResourceProviderJavelinxJspStub.java:78)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:256)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:216)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:243)
at weblogic.servlet.jsp.ResourceProviderJspStub.execute(ResourceProviderJspStub.java:59)
at weblogic.servlet.internal.ServletStubImpl.onAddToMapException(ServletStubImpl.java:416)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:326)
As JP says, I have followed the official tutorial and some configurations seem to be obsolete because I can't find it in JDeveloper.
Do you know if Oracle will publish an updated tutorial ?
Thank you,
Romain.
Edited by: 910491 on 27 janv. 2012 06:43

Client certificate authentication with custom authorization for J2EE roles?

We have a Java application deployed on Sun Java Web Server 7.0u2 where we would like to secure it with client certificates, and a custom mapping of subject DNs onto J2EE roles (e.g., "visitor", "registered-user", "admin"). If we our web.xml includes:
<login-config>
 <auth-method>CLIENT-CERT</auth-method>
 <realm-name>certificate</realm-name>
<login-config>that will enforce that only users with valid client certs can access our app, but I don't see any hook for mapping different roles. Is there one? Can anyone point to documentation, or an example?
On the other hand, if we wanted to create a custom realm, the only documentation I have found is the sample JDBCRealm, which includes extending IASPasswordLoginModule. In our case, we wouldn't want to prompt for a password, we would want to examine the client certificate, so we would want to extend some base class higher up the hierarchy. I'm not sure whether I can provide any class that implements javax.security.auth.spi.LoginModule, or whether the WebServer requires it to implement or extend something more specific. It would be ideal if there were an IASCertificateLoginModule that handled the certificate authentication, and allowed me to access the subject DN info from the certificate (e.g., thru a javax.security.auth.Subject) and cache group info to support a specialized IASRealm::getGroupNames(string user) method for authorization. In a case like that, I'm not sure whether the web.xml should be:
<login-config>
 <auth-method>CLIENT-CERT</auth-method>
 <realm-name>MyRealm</realm-name>
<login-config>or:
<login-config>
 <auth-method>MyRealm</auth-method>
<login-config>Anybody done anything like this before?
--Thanks

We have JDBCRealm.java and JDBCLoginModule.java in <ws-install-dir>/samples/java/webapps/security/jdbcrealm/src/samples/security/jdbcrealm. I think we need to tweak it to suite our needs :
$cat JDBCRealm.java
* JDBCRealm for supporting RDBMS authentication.
* This login module provides a sample implementation of a custom realm.
* You may use this sample as a template for creating alternate custom
* authentication realm implementations to suit your applications needs.
* In order to plug in a realm into the server you need to
* implement both a login module (see JDBCLoginModule for an example)
* which performs the authentication and a realm (as shown by this
* class) which is used to manage other realm operations.
* A custom realm should implement the following methods:
* <ul>
* <li>init(props)
* <li>getAuthType()
* <li>getGroupNames(username)
* </ul>
* IASRealm and other classes and fields referenced in the sample
* code should be treated as opaque undocumented interfaces.
final public class JDBCRealm extends IASRealm
 protected void init(Properties props)
 throws BadRealmException, NoSuchRealmException
 public java.util.Enumeration getGroupNames (String username)
 throws InvalidOperationException, NoSuchUserException
 public void setGroupNames(String username, String[] groups)
}and
$cat JDBCLoginModule.java
* JDBCRealm login module.
* This login module provides a sample implementation of a custom realm.
* You may use this sample as a template for creating alternate custom
* authentication realm implementations to suit your applications needs.
* In order to plug in a realm into the server you need to implement
* both a login module (as shown by this class) which performs the
* authentication and a realm (see JDBCRealm for an example) which is used
* to manage other realm operations.
* The PasswordLoginModule class is a JAAS LoginModule and must be
* extended by this class. PasswordLoginModule provides internal
* implementations for all the LoginModule methods (such as login(),
* commit()). This class should not override these methods.
* This class is only required to implement the authenticate() method as
* shown below. The following rules need to be followed in the implementation
* of this method:
* <ul>
* <li>Your code should obtain the user and password to authenticate from
* _username and _password fields, respectively.
* <li>The authenticate method must finish with this call:
* return commitAuthentication(_username, _password, _currentRealm,
* grpList);
* <li>The grpList parameter is a String[] which can optionally be
* populated to contain the list of groups this user belongs to
* </ul>
* The PasswordLoginModule, AuthenticationStatus and other classes and
* fields referenced in the sample code should be treated as opaque
* undocumented interfaces.
* Sample setting in server.xml for JDBCLoginModule
* <pre>
* <auth-realm name="jdbc" classname="samples.security.jdbcrealm.JDBCRealm">
* <property name="dbdrivername" value="com.pointbase.jdbc.jdbcUniversalDriver"/>
* <property name="jaas-context" value="jdbcRealm"/>
* </auth-realm>
* </pre>
public class JDBCLoginModule extends PasswordLoginModule
 protected AuthenticationStatus authenticate()
 throws LoginException
 private String[] authenticate(String username,String passwd)
 private Connection getConnection() throws SQLException
}One more article [http://developers.sun.com/appserver/reference/techart/as8_authentication/]
You can try to extend "com/iplanet/ias/security/auth/realm/certificate/CertificateRealm.java"
[http://fisheye5.cenqua.com/browse/glassfish/appserv-core/src/java/com/sun/enterprise/security/auth/realm/certificate/CertificateRealm.java?r=SJSAS_9_0]
$cat CertificateRealm.java
package com.iplanet.ias.security.auth.realm.certificate;
* Realm wrapper for supporting certificate authentication.
* The certificate realm provides the security-service functionality
* needed to process a client-cert authentication. Since the SSL processing,
* and client certificate verification is done by NSS, no authentication
* is actually done by this realm. It only serves the purpose of being
* registered as the certificate handler realm and to service group
* membership requests during web container role checks.
* There is no JAAS LoginModule corresponding to the certificate
* realm. The purpose of a JAAS LoginModule is to implement the actual
* authentication processing, which for the case of this certificate
* realm is already done by the time execution gets to Java.
* The certificate realm needs the following properties in its
* configuration: None.
* The following optional attributes can also be specified:
* <ul>
* <li>assign-groups - A comma-separated list of group names which
* will be assigned to all users who present a cryptographically
* valid certificate. Since groups are otherwise not supported
* by the cert realm, this allows grouping cert users
* for convenience.
* </ul>
public class CertificateRealm extends IASRealm
 protected void init(Properties props)
 * Returns the name of all the groups that this user belongs to.
 * @param username Name of the user in this realm whose group listing
 * is needed.
 * @return Enumeration of group names (strings).
 * @exception InvalidOperationException thrown if the realm does not
 * support this operation - e.g. Certificate realm does not support
 * this operation.
 public Enumeration getGroupNames(String username)
 throws NoSuchUserException, InvalidOperationException
 * Complete authentication of certificate user.
 * As noted, the certificate realm does not do the actual
 * authentication (signature and cert chain validation) for
 * the user certificate, this is done earlier in NSS. This default
 * implementation does nothing. The call has been preserved from S1AS
 * as a placeholder for potential subclasses which may take some
 * action.
 * @param certs The array of certificates provided in the request.
 public void authenticate(X509Certificate certs[])
 throws LoginException
 // Set up SecurityContext, but that is not applicable to S1WS..
}Edited by: mv on Apr 24, 2009 7:04 AM

Whats the role of mirror servlet in extending an ABCS?

Hi
I am trying to extend an ABCS service.
I went to ProcessSalesOrderSiebelReqABCSImplExtensionV2 partner link and wsdlRuntimeLocation property points to http://SOA_HOST:SOA_PORT/AIAComponents/ExtensionServiceLibrary/Siebel/ProcessSalesOrderSiebelReqABCSImplExtensionConcrete.wsdl.
When I checked this wsdl; its referring to <soap:address location="http://SOA_HOST:SOA_PORT/MirrorServlet/mirror" /> .
My doubts are:
1. What is the role of this MirrorServlet or its just a placeholder?
Lets say I have a bpel service that will provide me required data to enhance ABM/EBM. Now what steps I need to follow.
2. Do I need to change wsdlRuntimeLocation with actual service location? If yes then I need to change ProcessSalesOrderSiebelReqABCSImplExtensionAbstract too but this service contains all 4 possible operations to extend an ABCS. So for that I need to create a service which will contain all 4 operations and implement necessary logic. Is this the right approach?
Please suggest a standard approach to extend ABCS.
Thanks
Vibhor

First see this thread: ABCSExtension - Invoking custom Service
The MirrorServlet is used by Oracle QA as a stub extension service to allow testing of activating/deactivating the extension points in ABCS's. The servlet can of course be used by customers for the same purpose.
If you intend to activate and implement more than 1 of the extension operations for an ABCS, then yes you would need to implement each operation in a single service. You don't need to implement all 4 operations, only the one(s) you intend to activate and use at runtime.

Set initialName of SWING jPanel on runtime through placeholder

Is it possible to create a jLabel1 on runtime like:
javax.swing.JLabel jLabel1 = new javax.swing.JLabel();
and then set the name jLabel1 from another string or a placeholder.
i would like to set the name from a combination of jLabel and a placeholder such as "CustomerName", so that the name is jLabelCustomerName!
Exact definition:
i have a text file, which contains many customers. if a customer is found then a jLabel should be created. i want to set the name of the jLabel (!! not the text) on runtime, so that the name is jLabelCustomerAlbertEinstein.

Ok i will reflect the same example that i am achieving to to.
This is a small extraction of my XPDL file. the participants should be the customers! or in this example these are participants that work on an activity of an BPMN model.
ProcessPackage.xpdl:
<xpdl2:Participants>
 <xpdl2:Participant Id="_i3pSAKLFEd60iPJMZdNxfQ" xpdExt:DisplayName="Clerk" Name="Clerk">
 <xpdl2:ParticipantType Type="ROLE"/>
 <xpdl2:ExtendedAttributes>
 <xpdl2:ExtendedAttribute Name="ParticipantSimulationData"><simulation:ParticipantSimulationData SlaMinimumUtilisation="80.0" SlaMaximumUtilisation="95.0">
 <simulation:Instances>2</simulation:Instances>
 <simulation:TimeUnitCost>
 <simulation:Cost>0.21666666666666667</simulation:Cost>
 <simulation:TimeDisplayUnit>HOUR</simulation:TimeDisplayUnit>
 </simulation:TimeUnitCost>
 </simulation:ParticipantSimulationData></xpdl2:ExtendedAttribute>
 </xpdl2:ExtendedAttributes>
 <iProcessExt:ParticipantProperties UseRoleSemantics="false"/>
 </xpdl2:Participant>
 <xpdl2:Participant Id="_kUUrYKLFEd60iPJMZdNxfQ" xpdExt:DisplayName="Manager" Name="Manager">
 <xpdl2:ParticipantType Type="ROLE"/>
 <xpdl2:ExtendedAttributes>
 <xpdl2:ExtendedAttribute Name="ParticipantSimulationData"><simulation:ParticipantSimulationData SlaMinimumUtilisation="50.0" SlaMaximumUtilisation="100.0">
 <simulation:Instances>1</simulation:Instances>
 <simulation:TimeUnitCost>
 <simulation:Cost>0.8333333333333334</simulation:Cost>
 <simulation:TimeDisplayUnit>HOUR</simulation:TimeDisplayUnit>
 </simulation:TimeUnitCost>
 </simulation:ParticipantSimulationData></xpdl2:ExtendedAttribute>
 </xpdl2:ExtendedAttributes>
 <iProcessExt:ParticipantProperties UseRoleSemantics="false"/>
 </xpdl2:Participant>
 <xpdl2:Participant Id="_lfk9kKLFEd60iPJMZdNxfQ" xpdExt:DisplayName="Operator" Name="Operator">
 <xpdl2:ParticipantType Type="ROLE"/>
 <xpdl2:ExtendedAttributes>
 <xpdl2:ExtendedAttribute Name="ParticipantSimulationData"><simulation:ParticipantSimulationData SlaMinimumUtilisation="85.0" SlaMaximumUtilisation="90.0">
 <simulation:Instances>1</simulation:Instances>
 <simulation:TimeUnitCost>
 <simulation:Cost>0.16666666666666666</simulation:Cost>
 <simulation:TimeDisplayUnit>HOUR</simulation:TimeDisplayUnit>
 </simulation:TimeUnitCost>
 </simulation:ParticipantSimulationData></xpdl2:ExtendedAttribute>
 </xpdl2:ExtendedAttributes>
 <iProcessExt:ParticipantProperties UseRoleSemantics="false"/>
 </xpdl2:Participant>
 </xpdl2:Participants>the above example has 3 participants. The Operator, Manager and Clerk which operate an activity of an BPMN model.
readWriteTextFile.java:
// initialization and declaration of important variables such of Classes jPanel, jTabbedPane, jTextField, jLabel....
File aFile = new File(filePath);
// not opening a new BufferredReader which gets aFile (here its the ProcessPackage.xpdl file which is opened by the user through a jFileChooser)
BufferedReader input = new BufferedReader(new FileReader(aFile));
 while (( line = input.readLine()) != null){
// this if case checks weather the actual line has the string "<xpdl2:Participants>"
// if it does have this string we can assume that its a Participant-section of the textFile
 if(line.indexOf("<xpdl2:Participants>")!= -1){
 while(line.indexOf("</xpdl2:Participants>")== -1){
 line = input.readLine();
// get the name of the participant which in the above XPDL file is a Manager, Operator or Clerk
 participantsNamePosition = line.indexOf("xpdExt:DisplayName=");
 if(participantsNamePosition != -1){
 participantsName = line.substring(participantsNamePosition);
 participantsName = participantsName.substring(participantsName.indexOf("\""), participantsName.indexOf("\" Name="));
// get the number of participants and at it by one! this is to know how many participants we have
 numberOfParticipants = numberOfParticipants +1;
// now we got the name of the participant saying if its Manager, Operator or Clerk
// i make it simple because there are several other information extracted from the XPDL-textfile
// now i want to hand over the name of the participant (manager, operator or Clerk) to the class
NewJPanel2_3.setInitialVariablesParticipants(numberOfParticipants, participantsName);
}NewJPanel2_3.java:// HERE COMES THE CODE THAT I'M SEARCHING FOR
// this function is called when the name and the number of Participants are known)
static void setInitialVariablesParticipants(int numberOfParticipants, String participantsName) {
// HERE COMES THE CODE THAT I'M SEARCHING FOR
 |
 \|/
if(numberOfParticipants == 1){
// it should now create a new jLabel and jTextField and set the text of
// the jTextField of the participants name
// the first participant that is found it the clerk
// manager is found because he is the second found participant
if(numberOfParticipants == 2){
// it should now create a new jLabel and jTextField and set the text of
// the jTextField of the participants name
// the first participant that is found it the clerk
// operator is found because he is the second found participant
if(numberOfParticipants == 3){
// it should now create a new jLabel and jTextField and set the text of
// the jTextField of the participants name
// the third participant that is found it the operator
}additionally i dont want to create 1000 if(numberOfParticipants == 3) steps. that is why i want to set the initial-name (not the text) of the jLabel and JtextField to a participants name, which is in the textBox.

Error while generating a role

Hi SAP Techies,
I am getting the following error while generating a role,
"18 field value(s) for object K_CCA were not entered in the profile"
Can you please provide me a solution to fix this problem.
Thanks.
Regards,
Agustuss

How many cost centres are you putting in the role? Do you have cost centre set as an org level?
From your User Name I assume that you are at the BBC...Do you still use a program to populate the cost centres in the role based on the cost centre group names? If so it is possible that you are trying to put too many cost centres in the field and the the profile will not generate because of this (we had it back in 2001 when I was working there).
Do you have the technical error message details?

Cannot send email from Powershell on Mailbox Role

Hi,
I am trying to send an email from Powershell on Mailbox role of Exchange server. I have installed Symantec Mail Security on Mailbox Role.
When I try to send email using Powershell, I got the following error.
PS C:\a> Send-MailMessage -to [email protected] -Subject "Alert Closed.. Service is restarted on Computer" -from
[email protected] -Body "The service was found stopped on Computer it was started automatically and it is now running normally." -bodyasHTML -priority High -SmtpServer smtp.domain.com
Send-MailMessage : Service not available, closing transmission channel. The server response was: 4.3.2 Service not active
At line:1 char:1
+ Send-MailMessage -to [email protected] -Subject "Alert Closed.. Service is ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: (System.Net.Mail.SmtpClient:SmtpClient) [Send-MailMessage], SmtpException
+ FullyQualifiedErrorId : SmtpException,Microsoft.PowerShell.Commands.SendMailMessage
This command is working fine on every server except exchange server (CAS, Mailbox). Firewall is off on the servers.
Any help will be highly appreciated.
Regards,
Anees

Hi,
Please check the similar thread .
http://social.technet.microsoft.com/Forums/exchange/en-US/ef699832-8da9-4709-9a50-c6223b13bd95/sendmailmessage-returns-the-server-response-was-432-service-not-available?forum=exchangesvrsecuremessaginglegacy
smtp server (smtp.domain.com) is rejecting the connection from the
Mailbox role of Exchange server.
So please allow the mailbox server ip address on the smtp server's (i.e. smtp.domain.com)
receive connector to get it done
Regards
S.Nithyanandham
Thanks S.Nithyanandham

How to get security roles in a JSF portlet

I need to get the LDAP user-roles available in the Sun Portal Server 7 in my JSF-168 portlet.
I've added the mapping file, updated the portlet.xml and web.xml, deployed the portlet (psconsole). But the portlet shows the "content not available" error with javax....title title.
I've probably messed up the descriptors, but I don't see what is wrong. Here they are:
roleMaps.properties
cn\=VSM.Administrator,dc\=neco,dc\=cz=Administrator
web.xml
<?xml version="1.0" encoding="UTF-8"?>
<web-app version="2.4">
<context-param>
 <param-name>javax.faces.STATE_SAVING_METHOD</param-name>
 <param-value>server</param-value>
</context-param>
<context-param>
 <param-name>javax.faces.CONFIG_FILES</param-name>
 <param-value>/WEB-INF/navigation.xml,/WEB-INF/managed-beans.xml</param-value>
</context-param>
<context-param>
 <param-name>com.sun.faces.validateXml</param-name>
 <param-value>true</param-value>
</context-param>
<context-param>
 <param-name>com.sun.faces.verifyObjects</param-name>
 <param-value>false</param-value>
</context-param>
<filter>
 <filter-name>UploadFilter</filter-name>
 <filter-class>com.sun.rave.web.ui.util.UploadFilter</filter-class>
 <init-param>
 <description>
 The maximum allowed upload size in bytes. If this is set
 to a negative value, there is no maximum. The default
 value is 1000000.
 </description>
 <param-name>maxSize</param-name>
 <param-value>1000000</param-value>
 </init-param>
 <init-param>
 <description>
 The size (in bytes) of an uploaded file which, if it is
 exceeded, will cause the file to be written directly to
 disk instead of stored in memory. Files smaller than or
 equal to this size will be stored in memory. The default
 value is 4096.
 </description>
 <param-name>sizeThreshold</param-name>
 <param-value>4096</param-value>
 </init-param>
</filter>
<filter-mapping>
 <filter-name>UploadFilter</filter-name>
 <servlet-name>Faces Servlet</servlet-name>
</filter-mapping>
<servlet>
 <servlet-name>Faces Servlet</servlet-name>
 <servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
 <load-on-startup>1</load-on-startup>
</servlet>
<servlet>
 <servlet-name>ExceptionHandlerServlet</servlet-name>
 <servlet-class>com.sun.errorhandler.ExceptionHandler</servlet-class>
 <init-param>
 <param-name>errorHost</param-name>
 <param-value>localhost</param-value>
 </init-param>
 <init-param>
 <param-name>errorPort</param-name>
 <param-value>25444</param-value>
 </init-param>
</servlet>
<servlet>
 <servlet-name>ThemeServlet</servlet-name>
 <servlet-class>com.sun.rave.web.ui.theme.ThemeServlet</servlet-class>
</servlet>
<servlet>
 <description>Generated By Sun Java Studio Creator</description>
 <display-name>CreatorPortlet Wrapper</display-name>
 <servlet-name>VSMPortal</servlet-name>
 <servlet-class>org.apache.pluto.core.PortletServlet</servlet-class>
 <init-param>
 <param-name>portlet-class</param-name>
 <param-value>com.sun.faces.portlet.FacesPortlet</param-value>
 </init-param>
 <init-param>
 <param-name>portlet-guid</param-name>
 <param-value>VSMPortal.VSMPortal</param-value>
 </init-param>
</servlet>
<servlet-mapping>
 <servlet-name>ExceptionHandlerServlet</servlet-name>
 <url-pattern>/error/ExceptionHandler</url-pattern>
</servlet-mapping>
<servlet-mapping>
 <servlet-name>ThemeServlet</servlet-name>
 <url-pattern>/theme/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
 <servlet-name>VSMPortal</servlet-name>
 <url-pattern>/VSMPortal/*</url-pattern>
</servlet-mapping>
<welcome-file-list>
 <welcome-file>faces/null</welcome-file>
</welcome-file-list>
<error-page>
 <exception-type>javax.servlet.ServletException</exception-type>
 <location>/error/ExceptionHandler</location>
</error-page>
<error-page>
 <exception-type>java.io.IOException</exception-type>
 <location>/error/ExceptionHandler</location>
</error-page>
<error-page>
 <exception-type>javax.faces.FacesException</exception-type>
 <location>/error/ExceptionHandler</location>
</error-page>
<error-page>
 <exception-type>com.sun.rave.web.ui.appbase.ApplicationException</exception-type>
 <location>/error/ExceptionHandler</location>
</error-page>
<jsp-config>
 <jsp-property-group>
 <url-pattern>*.jspf</url-pattern>
 <is-xml>true</is-xml>
 </jsp-property-group>
</jsp-config>
 <security-role>
 <role-name>Administrator</role-name>
 </security-role>
</web-app>
portlet.xml
<?xml version='1.0' encoding='UTF-8' ?>
<portlet-app xmlns='http://java.sun.com/xml/ns/portlet/portlet-app_1_0.xsd' xmlns:xsi='http://www.w3.org/2001/XMLSchema-instance' xsi:schemaLocation='http://java.sun.com/xml/ns/portlet/portlet-app_1_0.xsd http://java.sun.com/xml/ns/portlet/portlet-app_1_0.xsd' version='1.0'>
 <portlet>
 <description>Created By Java Studio Creator</description>
 <portlet-name>VSMPortal</portlet-name>
 <display-name>VSMPortal Portlet</display-name>
 <portlet-class>com.sun.faces.portlet.FacesPortlet</portlet-class>
 <init-param>
 <name>com.sun.faces.portlet.INIT_VIEW</name>
 <value>/Uctarna.jsp</value>
 </init-param>
 <expiration-cache>0</expiration-cache>
 <supports>
 <mime-type>text/html</mime-type>
 <portlet-mode>VIEW</portlet-mode>
 </supports>
 <supported-locale>en</supported-locale>
 <portlet-info>
 <title>VSMPortal</title>
 <short-title>VSMPortal</short-title>
 <keywords>Creator</keywords>
 </portlet-info>
 <security-role-ref>
 <role-name>Administrator</role-name>
 <role-link>Administrator</role-link>
 </security-role-ref>
 </portlet>
</portlet-app>If I don't use the security-role and security-role-ref tags, the portlet works, and the isUserInRole method obviously doesn't.

Nobody uses the LDAP roles in a portlet? Anybody knows other thread discussing similar issue (I can't find anything)?

Creating a Role view in a workflow

I'm trying to create a role view in my workflow with the following code but it gives me an error: com.waveset.util.InternalError: Unable to locate ViewHandler for 'role'.
<Action application='com.waveset.session.WorkflowServices'>
 <Argument name='op' value='createView'/>
 <Argument name='type' value='Role'/>
 <Return from='view' to='view'/>
 </Action>Has anyone created a role from a workflow, java or SPML?

nvm figured it out.
<Action id='0' application='com.waveset.session.WorkflowServices'>
 <Argument name='op' value='createView'/>
 <Argument name='type' value='Role'/>
 <Argument name='viewId' value='Role'/>
 <Argument name='Form' value='Empty Form'/>
 <Argument name='authorized' value='true'/>
 <Return from='view' to='role'/>
 </Action>

Error while scheduling Background Job for User/Role Full Synchronization

Hi all,
We have installed RAR 5.3 Component and uploaded the authorization data & established the connectors to the backend system.
We have performed all the post installation activities and everything is complete.
When we have scheduled User -Full Synchronization with the Back End system as a part of Post Installation Activity we are receiving the below error message
"Error while executing the Job:Cannot assign an empty string to host variable 2."
Also the VIEW LOG/ Terminate Job buttons are disabled in this screen.
Can somebody please help us in resolving the above issue
Thanks and Best Regards,
Srihari.K

Hi,
We are copy pasting the error log (Part as it is huge) below here. We could able to do Full Synch for Roles and also for Profiles. Only for User Synch we are getting this error and none of the users are sychronized to RAR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: Update user WILSONA of HL2-QAHR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: Update user WINDC of HL2-QAHR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: Update user WLADICHJ of HL2-QAHR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: Update user WUK of HL2-QAHR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: Update user ZENGS of HL2-QAHR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: Update user ZHENGL of HL2-QAHR
Jan 13, 2009 12:34:27 AM com.virsa.cscext.dao.CSCDAO populateGenObjUser
INFO: All System Flag:false=====Last Batch Flag:true
Jan 13, 2009 12:34:27 AM com.virsa.cc.xsys.bg.BatchRiskAnalysis loadUserData
INFO: @@@ User sync completed for params true: Syskey List is [HL2-QAHR]
Jan 13, 2009 12:34:27 AM com.virsa.cc.xsys.bg.BgJob run
WARNING: *** Job Exception: Cannot assign an empty string to host variable 2.
com.sap.sql.log.OpenSQLException: Cannot assign an empty string to host variable 2.
     at com.sap.sql.log.Syslog.createAndLogOpenSQLException(Syslog.java:85)
     at com.sap.sql.log.Syslog.createAndLogOpenSQLException(Syslog.java:124)
     at com.sap.sql.types.VarcharResultColumn.setString(VarcharResultColumn.java:57)
     at com.sap.sql.jdbc.common.CommonPreparedStatement.setString(CommonPreparedStatement.java:511)
     at com.sap.engine.services.dbpool.wrappers.PreparedStatementWrapper.setString(PreparedStatementWrapper.java:355)
     at com.virsa.cscext.dao.CSCDAO.updateIgnoredUserData(CSCDAO.java:1388)
     at com.virsa.cscext.dao.CSCDAO.populateGenObjUser(CSCDAO.java:1169)
     at com.virsa.cc.xsys.bg.BatchRiskAnalysis.populateGenObj(BatchRiskAnalysis.java:868)
     at com.virsa.cc.xsys.bg.BatchRiskAnalysis.insertBAPIUserData(BatchRiskAnalysis.java:142)
     at com.virsa.cc.xsys.bg.BatchRiskAnalysis.loadUserData(BatchRiskAnalysis.java:390)
     at com.virsa.cc.xsys.bg.BatchRiskAnalysis.performBatchSyncAndAnalysis(BatchRiskAnalysis.java:1275)
     at com.virsa.cc.xsys.bg.BgJob.runJob(BgJob.java:402)
     at com.virsa.cc.xsys.bg.BgJob.run(BgJob.java:264)
     at com.virsa.cc.xsys.riskanalysis.AnalysisDaemonBgJob.scheduleJob(AnalysisDaemonBgJob.java:240)
     at com.virsa.cc.xsys.riskanalysis.AnalysisDaemonBgJob.start(AnalysisDaemonBgJob.java:80)
     at com.virsa.cc.comp.BgJobInvokerView.wdDoModifyView(BgJobInvokerView.java:436)
     at com.virsa.cc.comp.wdp.InternalBgJobInvokerView.wdDoModifyView(InternalBgJobInvokerView.java:1225)
     at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.doModifyView(DelegatingView.java:78)
     at com.sap.tc.webdynpro.progmodel.view.View.modifyView(View.java:337)
     at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.doModifyView(ClientComponent.java:481)
     at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.doModifyView(WindowPhaseModel.java:551)
     at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequest(WindowPhaseModel.java:148)
     at com.sap.tc.webdynpro.clientserver.window.WebDynproWindow.processRequest(WebDynproWindow.java:335)
     at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:143)
     at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:319)
     at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingStandalone(ClientSession.java:713)
     at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:666)
     at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:250)
     at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:149)
     at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:62)
     at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doGet(DispatcherServlet.java:46)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
     at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
     at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
     at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
     at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
     at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102)
     at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172)
Jan 13, 2009 12:34:27 AM com.virsa.cc.xsys.bg.BgJob setStatus
INFO: Job ID: 13 Status: Error
Jan 13, 2009 12:34:27 AM com.virsa.cc.xsys.bg.BgJob updateJobHistory
FINEST: --- @@@@@@@@@@@ Updating the Job History -
2@@Msg is Error while executing the Job:Cannot assign an empty string to host variable 2.
Jan 13, 2009 12:34:27 AM com.virsa.cc.xsys.bg.dao.BgJobHistoryDAO insert
INFO: -
Background Job History: job id=13, status=2, message=Error while executing the Job:Cannot assign an empty string to host variable 2.
Jan 13, 2009 12:34:27 AM com.virsa.cc.xsys.riskanalysis.AnalysisDaemonBgJob scheduleJob
INFO: -
Complted Job =>13----
Please let us know how to resolve this error
Thanks and Best Regards,
Srihari.K

Error while assigning portal custom role

Hi All,
We have a custom role which we use to assign to the users. till now we are able to assign it without any problem. But now as i need to assign it to someone, i got an error stating that "An error occured while adding user assignments; to see the correct status, perform a new assigned user search".
Can anybody help us in finding out the reason of the error and in rectifying the error.
Thanks & Regards,
Ravi

Hi Raghu,
Thanks for your reply..
This role is existing in the PCD, and this error is coming, while assinging this role any users... it is working fine with the existing users, who are having this role before. This is happening only when we are assigning this role to some new user.
I dont think this has some relation with the backend, as the role assignment is part of the Portal itself.
And also here we dont have seperate UME, and we are using r3 users only with single sign on.....
Hi Jithendar,
Thanks fo your reply.....I will do that backend roles check also for those users and see whether any backend role variations happened for these users.
Thanks & Regards,
Ravi

Error while Assigning database level role (db_datareader) to SQL login (Domain Account)

Team,
I got an error while creating a User for Domain Account. Below is the screen shot of the error (error : 15401)
Database instance is on SQL 2000 SP3. ( I know it is out of support, But the customer is relutanct to upgrade)
On Google search, i found below article which is best matching for this error
http://support.microsoft.com/kb/324321
I have follows each step of troubleshooting. But still the issue persists.
Step 1. The login does not exist == The login is very much exist in the domain as i am able to add the same domain id to other database instances
Step 2. Duplicate security identifiers == i have used this query to find duplicate SID
/* SELECT name FROM syslogins WHERE sid = SUSER_SID ('YourDomain\YourLogin') */
But there was only one row returned with create date of today's.
Error while Assigning database level role (db_datareader) to SQL login (Domain Account)
Step 3. Authentication failure == Domain is available. User is able to login on other servers via RDP connection.
Step 4. Case sensitivity == Database collation is set to Case insensitivity. (CI)
Other two 5. Local Accounts & 6. Name resolution == is not applicable to me.
I tried other ways also.
A. Creating login and providing permission in one go only = User account is not created
B. Instead of GUI, use query to create login and provide required permission = Same error.
Does anybody has faced any such situation
Chetan

See the below output
srvid
sid
xstatus
xdate1
xdate2
name
password
dbid
language
isrpcinmap
ishqoutmap
selfoutmap
NULL
0x010500000000000515000000A1F66E1BFC1DC75D26E72530A2B80400
14
20:25.9
57:33.4
UKBAA\LHRAPPMuttavarapuS
NULL
1
us_english
0
0
0
Chetan

Error while assigning roles to java users

Hi Experts,
I am trying to create a user on a Java system ( databse not LDAP) and assign a role. I am able to create a user successfully but it fails with following error;
Pass: SetJavaRole&GroupForUser.
Error putNextEntry failed storingtestidm123
Exception from Add operation:com.sap.idm.ic.ToPassException: No such objectclass defined
Exception from Modify operation:com.sap.idm.ic.ToPassException: SPML exception: No valid id to modify defined
ACCOUNTD1U testidm123
MXREF_MX_PRIVILEGE 316
MX_ENTRYTYPE MX_PERSON
DISPLAYNAME test user
MX_LASTNAME idm
MX_FIRSTNAME test
ACCOUNTD1E testidm123%
TEMPACCOUNTD1E testidm123
MSKEY 6179
MSKEYVALUE testidm123
The pass reads as follows;
SPMLID : %MSKEYVALUE%
assignedrole : PRIV:ROLE:SID:idm.authenticated
Regards,
Shailesh
Edited by: Shailesh Deshpande on May 3, 2011 6:43 PM

Hi Shailesh,
Can you please take a look at note 1476301. I hope it helps.
Thanks,
Anderson

Error while updating a custom Windows Azure Diagnostics configuration xml from powershell. "Invalid update to extension reference for role"

I am attempting to upload a manually edited WADConfig xml to my VM. The WAD service is functioning correctly, I needed to add some custom WinEventLogs. The prescribed steps result in an error.
What am I overlooking?
I am following these instructions:
Step 5: Remotely install Diagnostics on your Azure Virtual Machine
azure.microsoft.com/en-in/documentation/articles/cloud-services-dotnet-diagnostics/#virtual-machine
$storage_name = "wadexamplevm"
$key = "<StorageAccountKey>"
$config_path="c:\users\<user>\documents\visual studio 2013\Projects\WadExampleVM\WadExampleVM\WadExample.xml"
$service_name="wadexamplevm"
$vm_name="WadExample"
$storageContext = New-AzureStorageContext
-StorageAccountName $storage_name -StorageAccountKey $key
$VM1 = Get-AzureVM
-ServiceName $service_name -Name $vm_name
$VM2 = Set-AzureVMDiagnosticsExtension
-DiagnosticsConfigurationPath $config_path
-Version "1.*"
-VM $VM1 -StorageContext $storageContext
$VM3 = Update-AzureVM
-ServiceName $service_name -Name $vm_name
-VM $VM2.VM
Unfortunately, I am receiving this error:
Update-AzureVM : BadRequest: Invalid update to extension reference for role: XXXXXX and reference: IaaSDiagnostics.
What's missing from the above script?

Hi,
Since Azure SDK 2.5 uses the extension model the diagnostics extension, the configuration and the connection string to the diagnostic storage are no longer part of the deployment package and cscfg. All the diagnostics configuration is contained within the
wadcfgx. The advantage with this approach is that diagnostics agent and settings are decoupled from the project and can be dynamically enabled and updated even after your application is deployed.
Due to this change some existing workflows need to be rethought – instead of configuring the diagnostics as part of the application that gets deployed to each environment you can first deploy the application to the environment and then apply the diagnostics
configuration for it. When you publish the application from Visual Studio this process is done automatically for you. However if you were deploying your application outside of VS using PowerShell then you have to install the extension separately through
PowerShell.
There PowerShell cmdlets for managing the diagnostics extensions on a Cloud Service are -
Set-AzureServiceDiagnosticsExtension
Get-AzureServiceDiagnosticsExtension
Remove-AzureServiceDiagnosticsExtension
You can use the Set-AzureServiceDiagnosticsExtension method to enable diagnostics extension on a cloud service. One of the parameters on this cmdlet is the XML configuration file. This file is slightly different from the diagnostics.wadcfgx file. You can
create this file from scratch by either following the article that you are referring to or you can modify the wadcfgx file and pass in the modified file as a parameter to the powershell cmdlet.
To modify the wadcfgx file –
Make a copy the .wadcfgx.
Remove the following elements from the Copy:
<DiagnosticsConfiguration xmlns="http://schemas.microsoft.com/ServiceHosting/2010/10/DiagnosticsConfiguration">
<PrivateConfig xmlns="http://schemas.microsoft.com/ServiceHosting/2010/10/DiagnosticsConfiguration">
<StorageAccount name=" " endpoint="https://core.windows.net/" />
</PrivateConfig>
<IsEnabled>false</IsEnabled>
</DiagnosticsConfiguration>
Make sure the top of the file still has xml version and encoding –
<?xml version="1.0" encoding="utf-8"?>
Effectively you are stripping down the Wadcfgx to only contain the <PublicConfig> section and the <?xml> header. You can then call the PowerShell cmdlet along with the appropriate parameters for the staging slots and roles:
$storage_name = ‘
<storagename>’
$key= ‘<key>’
$service_name = '<servicename>'
$public_config = '<thepublicconfigfrom_diagnostics.wadcfgx>'
$storageContext = New-AzureStorageContext –StorageAccountName $storage_name –StorageAccountKey $key
Set-AzureServiceDiagnosticsExtension -StorageContext $storageContext -DiagnosticsConfigurationPath $public_config –ServiceName $service_name -Slot ‘Staging’ -Role ‘WebRole1’
Hope this helps !
Regards,
Sowmya

Placeholder in roles

Similar Messages

Maybe you are looking for