Please tell me your idea about my manner of using proxy user
Hello
Please say to me your idea about my manner of using proxy user , I don't know that my method is right , doesn't it has security weakness ?
Let me to say what I wanna do :
I want my application users authenticated by database , therefore in my database (Oracle database) I create a user for every application user for example if I have 10 application user I create 10 user in the database for them and I grant necessary privileges to them
Now I create a proxy user and grant to my users connect through the proxy user
for example
alter user user1 grant connect through user_proxy with role role1 authentication required;
alter user user2 grant connect through user_proxy with role role1 authentication required;
alter user user10 grant connect through user_proxy with role role1 authentication required;
And now in Weblogic I create a DataSource that connect to the database by that proxy user
My client Application (It's a stand alone application) obtain the DataSource from Weblogic and then get from operator its user name and password and then create a proxy session
in below I've written the application's code
Hashtable env = new Hashtable();
env.put( Context.INITIAL_CONTEXT_FACTORY, "weblogic.jndi.WLInitialContextFactory" );
env.put(Context.PROVIDER_URL, "t3://127.0.0.1:7001");
try{
Context context=new InitialContext( env );
ds=(javax.sql.DataSource) context.lookup ("OracleConnection2");
conn=(OracleConnection) ds.getConnection();
java.util.Properties prop = new java.util.Properties();
String username=getUserNameFromOperator(); //Operator enter user1
String password =getPasswordFromOperator(); //Operator enter its password
prop.put(OracleConnection.PROXY_USER_NAME, username);
prop.put(OracleConnection.PROXY_USER_PASSWORD,password);
conn.openProxySession(OracleConnection.PROXYTYPE_USER_NAME, prop);
stmt= conn.createStatement();
rs=stmt.executeQuery("select SYS_CONTEXT('USERENV','PROXY_USER') ||'--->' || user from dual");
My anxiety is that this section
String username=getUserNameFromOperator(); //Operator enter user1
String password =getPasswordFromOperator(); //Operator enter its password
prop.put(OracleConnection.PROXY_USER_NAME, username);
prop.put(OracleConnection.PROXY_USER_PASSWORD,password);
operator enter a real database username and password
don't you think it cause security weakness ?
do you have better suggestion for me ?
thank you
Gmail offers POP, which means you can use Mail.app like a regular ISP account. If you need an invite to GMail email me at the address on http://Gnarlodious.com/
Once yiou have a Gmail address you need to enable POP (which includes SMTP). There is a help link on the GMail page that allows you to enable POP and other features.
Once that is turned on, you need to set up the Mail.app for downloading your mail (and uploading). There are excellent instruction pages on Gmail, which I believe someone else gave you.
Similar Messages
-
Unable to publish in Swf format. Get error message reads: 'Swf compilation failed. Note: Please verify if any of the actionscript keywords is used as user variable name'. Anyone know how to fix?
Hi There,
Can you tell me the Operating System and Captivate version you are using?
Also can you confirm if you are getting this issue will this one project or all the projects? Try to copy paste this project on a new blank project and then try to publish.
Regards,
Mayank -
When publishing a captivate I get the message "Swf compilation failed. Note: Please verify if any of the actionscript keywords is used as user variable name." and it won't allow me to publish the Captivate, can anyone help?
Hi There,
Can you tell me the Operating System and Captivate version you are using?
Also can you confirm if you are getting this issue will this one project or all the projects? Try to copy paste this project on a new blank project and then try to publish.
Regards,
Mayank -
Please I want your help about Nokia 6670
Hi freinds,
I have nokia 6670 , by mestake and when am talking with some freind on the house phone and my mobile(6670) in my hand I recived a meesage and i want to delete it so by mestake i determine all the messages at in box and all my messages are deleted :"( , I lost avery much important messages, so
PLEASE any one can help me to returned my messages , is there any programmes to returned
regadrs
me_me_na
I WANA CRY :"(Only prfessional agencies (and law enforcement agencies) can dig deep into the phones file system and look at whats been deleted. The process usually damages the phone beyond repair.
This service is not available to the public without paying a very large sum of money.
There is no way that you can recover your deleted text messages. -
Please tell me some information about gmail
hi, everybody. I'm a long time OSX user but I never used the "mail." Now, I want to try mail with my gmail account but I found it's not that easy. First of all, what type of account is the gmail? IMAP, POP, or Exchange? Next, what is incoming mail server and outgoing mail server? Thanks so much!
Gmail offers POP, which means you can use Mail.app like a regular ISP account. If you need an invite to GMail email me at the address on http://Gnarlodious.com/
Once yiou have a Gmail address you need to enable POP (which includes SMTP). There is a help link on the GMail page that allows you to enable POP and other features.
Once that is turned on, you need to set up the Mail.app for downloading your mail (and uploading). There are excellent instruction pages on Gmail, which I believe someone else gave you. -
Where is autosave? I've lost my work twice now because the program crashed.
Hi jcthompson,
Can you Select "Generate Project backup' under Preferences:General Settings?
Thanks,
Sankaram. -
I really need help, my ipod shows to connect to the WiFi but then it will not let me use the interent it says no connection but according to my screen i have WiFi connection, i am very confused an i would really appriciate it if someone could help me sort out this problem so i can start using my iPod for work again.
Even though the iPod shows as been connected, it might not have actually received a valid IP address via DHCP from your Wi-Fi access point or router. Head to Settings -> Wi-Fi and tap the > next to the network you are connected. If 169.xxx.xxx.xxx is listed for an IP Address, then your iPod did not receive a valid IP address. To correct this you can reboot your router by unplugging it from power for about 30 seconds.
It wouldn't hurt to also reset your iPod. To do this, press and hold both the Sleep/Wake and Home buttons together long enough for the Apple logo to appear.
See here for more troubleshooting assistance.
iOS: Troubleshooting Wi-Fi networks and connections
B-rock -
Please tell any one which toll generally we are using for reports
hi evertybody, please give me this information regarding report generation, and can tell me the brief information reg segment, document splitting
thanking you.Hi
I think toll means total. in reporting you can have total at any level . The sum function allows you to select the block and you can set total there.
Segment is a part of company code for which separate balance sheet has to be prepared as per US Gaap, IFRS etc. This is supported by SAP by the document splitting function. You has to define scenario update for both profit center and segment, as segment is derived from the profit center master. All transactions are split according to the document splitting rule . Also you have to activate zero balancing in document splitting , so that balance sheet for segment can be generated.
Thanks
kamala -
Please your opinion about this book
I heard that this book is really good for beginers " How to program in java 5th edition by Deitel" can you please give my your opinion about this book ,.
thank you.I have Java How To Program 6th edition by Deitel and it's good but i think they could have used a little more plain English in the explanation of java.
-
Apple can you please tell us when you are fixing original iPhone?
can someone from apple please tell us your plan for fixing the original iphone and the "incorrect signal strength formula"?
yes you are correct in your statement but i was curious to see if that interpretation was correct so i called....after about 15 minutes a supervisor came on the phone and said the update is not available for the original iPhone because it is only for the 4.0 software which is not compatible with the original iPhone...and i may not have actually known what was going on but i did realize that i could not make phone calls at certain times even though I had 1 or 2 bars....now i realize this was because of the "incorrect signal strength formula" that has been present since the launch in the original iPhone as you stated....just becuase i could not pinpoint the problem (becuase i am not an engineer) does not mean i used the phone flawlessly with no problems...now that i now what the cause of the problem is i can identify it every time it happens...i used to just think that maybe the call was dropped but in fact i never had any service to begin with because the phone incorrectly displayed that i had service when i did not
-
The share button disappeared from my Facebook add-on just before I upgraded to Firefox 5.0. I thought that maybe by upgrading and reinstalling the add-on it might come back, but it didn't. All the other FB buttons are there, near as I can tell. Any ideas? I'm still using XP3.
Hello,
I had the same problem with finding this file.
There's no such file in Mac OS X version of Skype. But there's a directory for your Skype user account in /Users/%current_user_name%/Library/Application Support/Skype/
try:
quitting Skype
renaming old folder
signing into the Skype -
Let us know what you're running and how it's performing! We're running Portal Version 30980, soon to be 30983, soon to be 9iR2!
DB Version: 81720
OS: Solaris
Shared Pool: 286mb
Buffer Cache: 200mb
Large Pool: 0mb
Java Pool 20mb
Total SGA: 508mb
I'd like to see how much memory people are giving their db. I'm beginning to think our app server is fine, and we're just underpowered/misconfigured on the db side for portal. Any advice appreciated!Hi!
We have the following configuration:
Portal: 3.0.9.8.3
DB Version: 9i
OS: NT
Shared Pool: 112mb
Buffer Cache: 32mb
Large Pool: 80mb
Java Pool 54mb
and timeout's everywhere!!!!!
I4ve try to change this params.. but without success.
Please, tell us your suggest!!!
Adrian -
Beginner in java and need your help about DES
hello,
I m a new guy in java programming and learn from many books.I m making a website and portal right now and dying need your help about DES.my portal (using java) requires somebody to make a login name and a password.I m done with the server and client things and rite now stuck with this "DES" stuff.
so I make some conditions and algorithm below..
1. when a user login,the password is encrypted.at this point,cleartext(id) and encryption (M,N) are involve.
2. then the key is changed based on algorithm.
3.the key changed by key(id) is received and the original text should be encrypted.
the algorithm
1. the original text x1.x2.x3.x4.x5.x6.x7.x8 (64 bits)
2. encypt the password
a. Each character is changed into an int type by the ASCII code, and let the 1st bit be an odd number parity bit.
b.The 1st bit of the 1st character in (IP) is set to '1', and the 8th bit of the 8th character as '64'.
c.the rest (IP) is like this
1 2 3 4 5 6 7 8
0 # 58 50 42 34 26 18 10 2
8 # 60 52 44 36 28 20 12 4
16 # 62 54 46 38 30 22 14 6
24 # 64 46 48 40 32 24 16 8
32 # 57 49 41 33 25 17 9 1
40 # 59 51 43 35 27 19 11 3
48 # 61 53 45 37 29 21 13 5
56 # 63 55 47 39 31 23 15 7
d. and lastly,from above,,it should be done like this
1 2 3 4 5 6 7
0 # 40 8 48 16 56 24 64 32
8 # 39 7 27 15 55 23 53 31
16 # 38 6 26 14 54 22 52 30
24 # 37 5 25 13 53 21 51 29
32 # 36 4 24 12 52 20 50 28
40 # 35 3 23 11 51 19 49 27
48 # 34 2 21 10 50 18 48 26
56 # 33 1 20 9 49 17 47 25
e. key y1,y2,y3,y4,y5,y6,y7,y8 (64bit)
f. generate the key based on ID
a. Each character is changed into an int type by the ASCII code, and let the 1st bit be an even number parity bit.
b.the process is repeat again.
anybody has an idea to help me with the sample program?
thanks in advance...just ask about a simple program how to receive a
password from somebody and change it to a key..and
then confirm it with DES.Once again I have a problem understanding what you are asking.
Are you trying to use the password as a key to encrypt some 'standard thing' and place this encrypted value in a database? If so then look in the JCE for 'password based encryption' such as PBEWithMD5AndDes. This seems back to front to me but I can see nothing wrong with the approach since the 'standard thing' you would encrypt is in effect a key. If this is for a commercial application then I would find a security expert to evaluate your proposal!
In my experience it is more normal to encrypt the user's password with DES and store the result in the database. To do this just look in the JCE for DES encryption and consider using DES with CBC and PKCS5 padding. Also, consider encrypting the concatenation of the user's 'user name' with the password as this will (almost certainly) avoid having two encrypted values in the database that are the same even if two users have the same password.
For both of these you might consider using Base64 or Hex to turn you encrpted bytes into ASCII characters before trying to store them in your DB. -
Can you please tell us why our API fails
Can you please tell us why our API fails when we use this timezone of Slovakia?
API Name: jtf_tasks_pub.create_task
This standard oracle API fails with the error : TIMEZONE FOR 483 IS EITHER DISABLED OR INVALID
But we do have the Timezone record number 483 in Oracle.
If we run this query, we see UPGRADE_TZ_ID 483 assigned to Europe/Bratislava
select * from apps.fnd_timezones_vl
where UPGRADE_TZ_ID=483
Please let us know why it fails.I'd suggest you log a SR for this issue.
Thanks,
Hussein -
everyone is saying go settings>iCloud>account
but but my phone doesn't have the account option and I can't change my bl**dy number and it's really beginning to drive me insain.
Someone please help :,(If your trying to change the number used for iCloud keychain, you change it on an iOS device or Mac that is using your keychain as follows:
iOS 7.0.3 or later: Tap Settings > iCloud > Account, then tap Keychain. Make sure the phone number under Verification Number is correct. If not, enter another phone number.
OS X Mavericks v10.9 or later: Choose Apple () > System Preferences. Click iCloud, then click Account Details. Make sure the phone number listed under Verification number is correct. If not, enter another phone number.
Otherwise, please explain what number you are trying to change and what version of iOS you're running.
Maybe you are looking for
-
Gurus, I have copied a plant & created.When i try to raise a PO,the system is asking to enter the plant.When i press F4 the plant is not listed?.What might be the issue?
-
Creation of EDI 820 fromat for outgoing payments in SAP
Hi Experts, We have a requirement where in we need to create an outgoing payment file in EDI820 with in SAP. We basically need to create specifications in EDI820 format for the bank to print checks and make wires and EFT payments. That EDI820 file w
-
Columns repeating in excel sheet
Hi guys, I am trying to download context data into excel file using WD binary cache. I am using Office 2003 suite for this case. The text data is getting downloaded properly but all numeric data (though there actual data type is string) is getting re
-
Exchange 2013- Outlook will stop working intermittently but OWA works that time
Hello everyone. Hope someone can help me with this issue. We are experiencing a strange issue with our exchange 2013 server. We only have one exchange 2013 server and it is up to the CU2 level. The issue is sometimes the outlook clients will stop wo
-
Its urgent regarding Blob field
I have a stored proc trying to retrieve blob field(a binary file) from a View(in schema1) in oracle10g. After retrieving I am sending it to another databsase(schema2) through a dblink which is in oracle9i. I am using TOAD for this. My code is Insert