Principal mapping across domains -help!
Hi, I am trying to find a way to authenticate users on a WL6 domain
and then have these users' principal object mapped across to a
different domain so that I do not have to re-authenticate them (i.e.
they are trustworthy). Does anyone know how this is done?
Thanks, Stephen.
Have you tried making the system password the same under both domains?
See
http://edocs.bea.com/wls/docs70/secmanage/domain.html#1171534
Regards,
Jon
"Stephen" <[email protected]> wrote in message
news:[email protected]..
Hi, I am trying to find a way to authenticate users on a WL6 domain
and then have these users' principal object mapped across to a
different domain so that I do not have to re-authenticate them (i.e.
they are trustworthy). Does anyone know how this is done?
Thanks, Stephen.
Similar Messages
-
Auto-mapping across multiple domains
I originally posted this in an O365 Exchange forum and was redirected here. Any help is appreciated.
Single E1/E3 O365 account with multiple domains having hosted email. Automapping is working correctly only if the shared mailbox is from the first domain added to O365. The other 4 domains that were added to O365 are not able to utilize automapping.
I have recreated Outlook profiles, removed and recreated permissions with PowerShell and the O365 GUI. I also looked at the DNS settings required for O365 to work properly and everything looks correct. Mail is being delivered, Lync is working,
Example: [email protected] has full access to [email protected]'s mailbox. Automapping does not work and UserA is prompted to provide credentials to log into UserB's mailbox.
Any thoughts on why automapping would be failing across domains?Hi,
Generally, if the Automapping works, the msExchDelegateListLink value for the shared mailbox should contains all users who have full access permission to this shared mailbox. Please follow these steps to check this value:
1. Open Active Directory Users and Computers.
2. In Users, right-click the shared mailbox > Properties.
3. In Attribute Editor tab, double click msExchDelegateListLink attribute.
4. Make sure all users who have full access permissions are listed in the Values field.
Regards,
Winnie Liang
TechNet Community Support -
SQL Server 2005 Analysis Services across domains
Hi,
With SQL Server 2000, the Enterprise Edition was required to access
Analysis Services across domains.
Is this also the case in SQL Server 2005, that the Enterprise Edition
is needed?
Thanks, SSilver,
Do you still need help with this?
Thank you!
Ed Price, Power BI & SQL Server Customer Program Manager (Blog,
Small Basic,
Wiki Ninjas,
Wiki)
Answer an interesting question?
Create a wiki article about it! -
How do I enable "Access data sources across domains" in firefox?
Couple of links do not work on my firefox however they work fine on IE. This is because the "Access data sources across domains" is enabled in IE and i am not sure on how to make this setting enable on Firefox as well.
Please provide the steps to enable "Access data sources across domains" setting in Firefox.
Please help!This should add the permanent exception:
[https://support.mozilla.org/en-US/kb/connection-untrusted-error-message#w_bypassing-the-warning Connection Untrusted Error Message: Bypassing the Warning]
However if it is not staying until the next time that the user opens up Firefox, is it possible that they are in permanent private browsing? [[Private Browsing - Browse the web without saving information about the sites you visit]] - that should have instructions to get in and out of it. -
Hello. I have hit a real deadend with this problem. I would
appreciate some help.
I have designed a website in Flash (
http://www.clarkhulings.com).
Under "Store" on the navigation bar, it contains a PayPal "View
Cart" button that is not working. This is because the Flash does
not allow direct access to data on the PayPal site. For security
reasons, a Macromedia Flash movie playing in a web browser is not
allowed to access data that resides outside the exact web domain
from which the SWF originated. See
http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_14213
http://www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_16520
I have created a crossdomain.xml file and added it to the
webserver of clarkhuling.com. The file looks like this:
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "
http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.paypal.com"
secure="false"/>
</cross-domain-policy>
Because clarkhulings.com is not using SSL and PayPal is, I
have used secure="false" in the code above.
My Actionscript code that is attached to the View Cart
button, looks like this:
view_cart_btn.onRelease = function() {
var paypal_lv:LoadVars = new LoadVars();
paypal_lv.onLoad = function(p_success:Boolean) {
if (p_success) {
for (var i in this) {
trace("PayPal Responce "+i+": "+this
} else {
trace("PayPal Responce: Error connecting to server.");
paypal_lv.cmd = "_cart";
paypal_lv.business = "[email protected]";
paypal_lv.display = "1";
paypal_lv.page_style = "hulings";
paypal_lv.sendAndLoad("https://www.paypal.com/cgi-bin/webscr",
paypal_lv, "POST");
As you can see, by going to the website (
http://www.clarkhulings.com),
clicking "View Cart" under STORE does not work. What am I doing
wrong? I would appreciate the help of more learned developers out
there!
You can download a copy of one of my FLA files at
http://www.clarkhulings.com/gallery_affiliates.fla.zipالحمد لله
thanks for Allah,
and thans for Justin "Cartoon Smart" http://www.cartoonsmart.com/
i fix this problem using the proxy file which he upload with the RSS Reader tutorial,
http://www.cartoonsmart.com/rss_reader.html
so, for any people who have the same problem which is called
Loading data across domains
here you are the solution,
i used the proxy.php file
just Note if you are using Flash Player 10, you must upload it in the root domain
like :
www.yourdomain.com/proxy.php
Note that you don't need to make any modefications to this file at all, just upload it as it is
then you point to it in the flash file or in the XML fle which you control the flash form it,
im my case i control the flash form a xml file called controls.xml and i make variable to load rss feeds from a variable in it called LinkRss
so in this file i must point to the feed using this way
Code:
LinkRss="http://www.yourdomain.com/proxy.php?url=http://rss.news.yahoo.com/rss/topstories"
sure you will change yourdomain to be any domain name you are putting the flash in it,
for example
Code:
LinkRss="http://www.cartoonsmart.com/proxy.php?url=http://rss.news.yahoo.com/rss/topstories"
that's all, -
Share external jars across domains
Hello, I'm wondering what is the best practice or suggestion to share 3rd party jars across domains in JCAPS 5.1.3.
ThanksThanks for your insight moonsit.
Also, I would like to organize my dependencies into directories (i.e. localhost/is/lib/myPorject/ext/foo.jar and localhost/is/lib/myPorject/bar.jar) and I tried various bat file to set the classpath to my jar locations....could anyone help me point me to the right directions? Or is the intergration server administration config under jvm settings the right way to do it.
--Thanks. -
Google maps and google help not loading anymore! help!
Google maps and google help aren't loading since I've updated firefox. Works in Chrome no problem. Tried everything listed here: https://support.mozilla.com/en-US/kb/Error%20loading%20web%20sites, re-installed flash, cleared cache, etc... what am I missing?
Anyone have any ideas?
-
Java Error in RFC Lookup in XSLT Mapping usinf Java helper class
Hi All,
I am doing RFC Lookup in XSLT Mapping using Java Helper class.
The Lookup works fine when called one RFC at a time However my requirement is I want to do 2 Lookups.
Both Lookups works when done individually however when I call both lookups in one mapping I get following error "javax.xml.transform.TransformerException: DOMSource whose Node is null."
Following is the code I have written in XSLT for the lookup:
<xsl:template name="Lookup_1">
<xsl:param name="STDPN"/>
<rfc:RFC_READ_TABLE>
<QUERY_TABLE>KNA1</QUERY_TABLE>
<OPTIONS><item><TEXT>
<xsl:value-of select="$STDPN"/>
</TEXT></item>
</OPTIONS>
<FIELDS>
<item>
<FIELDNAME>KUNNR</FIELDNAME>
</item>
</FIELDS>
</rfc:RFC_READ_TABLE>
</xsl:variable>
<xsl:variable name="response" xmlns:lookup="java:urn.mt.pi" select="lookup:execute($request, 'BS_D, 'cc_RfcLookup', $inputparam)"/>
<xsl:element name="STDPN">
<xsl:value-of select="$response//DATA/item/WA"/>
</xsl:element>
</xsl:template>
<xsl:template name="Lookup_2">
<xsl:param name="BELNR"/>
<xsl:variable name="Query">AGMNT = '<xsl:value-of select="$BELNR"/>'</xsl:variable>
<xsl:variable name="request1">
<rfc:RFC_READ_TABLE>
<QUERY_TABLE>ZTABLE</QUERY_TABLE>
<OPTIONS><item><TEXT>
<xsl:value-of select="$Query"/>
</TEXT></item>
</OPTIONS>
<FIELDS>
<item>
<FIELDNAME>KUNAG</FIELDNAME>
</item>
</FIELDS>
</rfc:RFC_READ_TABLE>
</xsl:variable>
<xsl:variable name="response1" xmlns:lookup="java:urn.mt.pi" select="lookup:execute($request1, 'BS_D','cc_RfcLookup', $inputparam)"/>
<xsl:element name="BELNR">
<xsl:value-of select="$response1//DATA/item/WA"/>
</xsl:element>
</xsl:template>
My Question: Am I doing anything wrong? Or Is it possible to call multiple lookups in one XSLT?
Thanks and Regards,
AtulHi Atul,
I had the same problem like you had.
The main Problem is that with the example code the request variable is created as NodeList object. In XSLT a variable is somekind of a constant and can't be changed. As the request object is empty after the first request the programm fails at the following line:
Source source = new DOMSource(request.item(0));
So I've created a workaround for this problem.
In the call of the template I've put the request as a parameter object at the template call:
<xsl:with-param name="req">
<rfc:PLM_EXPLORE_BILL_OF_MATERIAL xmlns:rfc="urn:sap-com:document:sap:rfc:functions">
<APPLICATION>Z001</APPLICATION>
<FLAG_NEW_EXPLOSION>X</FLAG_NEW_EXPLOSION>
<MATERIALNUMBER><xsl:value-of select="value"/></MATERIALNUMBER>
<PLANT>FSD0</PLANT>
<VALIDFROM><xsl:value-of select="//Recordset/Row[name='DTM-031']/value"/></VALIDFROM>
<BOMITEM_DATA/>
</rfc:PLM_EXPLORE_BILL_OF_MATERIAL>
</xsl:with-param>
With this change the request will be provided as a String object and not as a NodeList object.
Afterwards the RfcLookup.java has to be changed to the following:
package com.franke.mappings;
import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.InputStream;
import java.io.PrintWriter;
import java.io.StringWriter;
import java.util.Map;
import javax.xml.parsers.DocumentBuilder;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.transform.Source;
import javax.xml.transform.Transformer;
import javax.xml.transform.TransformerFactory;
import javax.xml.transform.dom.DOMSource;
import javax.xml.transform.stream.StreamResult;
import org.w3c.dom.Document;
import org.w3c.dom.Node;
import org.w3c.dom.NodeList;
import com.sap.aii.mapping.lookup.Channel;
import com.sap.aii.mapping.api.StreamTransformationConstants;
import com.sap.aii.mapping.api.AbstractTrace;
import com.sap.aii.mapping.lookup.RfcAccessor;
import com.sap.aii.mapping.lookup.LookupService;
import com.sap.aii.mapping.lookup.XmlPayload;
* @author Thorsten Nordholm Søbirk, AppliCon A/S
* Helper class for using the XI Lookup API with XSLT mappings for calling RFCs.
* The class is generic in that it can be used to call any remote-enabled
* function module in R/3. Generation of the XML request document and parsing of
* the XML response is left to the stylesheet, where this can be done in a very
* natural manner.
* TD:
* Changed the class that request is sent as String, because of IndexOutOfBound-exception
* When sending multiple requests in one XSLT mapping.
public class RfcLookup {
* Execute RFC lookup.
* @param request RFC request - TD: changed to String
* @param service name of service
* @param channelName name of communication channel
* @param inputParam mapping parameters
* @return Node containing RFC response
public static Node execute( String request,
String service,
String channelName,
Map inputParam)
AbstractTrace trace = (AbstractTrace) inputParam.get(StreamTransformationConstants.MAPPING_TRACE);
Node responseNode = null;
try {
// Get channel and accessor
Channel channel = LookupService.getChannel(service, channelName);
RfcAccessor accessor = LookupService.getRfcAccessor(channel);
// Serialise request NodeList - TD: Not needed anymore as request is String
/*TransformerFactory factory = TransformerFactory.newInstance();
Transformer transformer = factory.newTransformer();
Source source = new DOMSource(request.item(0));
ByteArrayOutputStream baos = new ByteArrayOutputStream();
StreamResult streamResult = new StreamResult(baos);
transformer.transform(source, streamResult);*/
// TD: Add xml header and remove linefeeds for the request string
request = "<?xml version=\"1.0\" encoding=\"UTF-8\"?>"+request.replaceAll("[\r\n]+", "");
// TD: Get byte Array from request String to send afterwards
byte[] requestBytes = request.getBytes();
// TD: Not used anymore as request is String
//byte[] requestBytes = baos.toByteArray();
trace.addDebugMessage("RFC Request: " + new String(requestBytes));
// Create input stream representing the function module request message
InputStream inputStream = new ByteArrayInputStream(requestBytes);
// Create XmlPayload
XmlPayload requestPayload =LookupService.getXmlPayload(inputStream);
// Execute lookup
XmlPayload responsePayload = accessor.call(requestPayload);
InputStream responseStream = responsePayload.getContent();
TeeInputStream tee = new TeeInputStream(responseStream);
// Create DOM tree for response
DocumentBuilder docBuilder =DocumentBuilderFactory.newInstance().newDocumentBuilder();
Document document = docBuilder.parse(tee);
trace.addDebugMessage("RFC Response: " + tee.getStringContent());
responseNode = document.getFirstChild();
} catch (Throwable t) {
StringWriter sw = new StringWriter();
t.printStackTrace(new PrintWriter(sw));
trace.addWarning(sw.toString());
return responseNode;
* Helper class which collects stream input while reading.
static class TeeInputStream extends InputStream {
private ByteArrayOutputStream baos;
private InputStream wrappedInputStream;
TeeInputStream(InputStream inputStream) {
baos = new ByteArrayOutputStream();
wrappedInputStream = inputStream;
* @return stream content as String
String getStringContent() {
return baos.toString();
/* (non-Javadoc)
* @see java.io.InputStream#read()
public int read() throws IOException {
int r = wrappedInputStream.read();
baos.write(r);
return r;
Then you need to compile and upload this class and it should work.
I hope that this helps you.
Best regards
Till -
1 input file to 2 output file mapping. Please help!
Hi Experts,
I have a snenario where from one input file I have to generate two output files. My sender and receiver systems are the same since I want to generate the output files in the same location. I am using both the systems same just for testing purpose.
So in IR I have created
1. one outbound interface for the input file
2. two inbound interfaces for the output files
3. one message mapping containing one input message
transformation to two output messages.
4. one interface mapping containing one input interface
transformation to two output interfaces.
In ID I have created
1. one file sender channel and two receiver channels for two output files with different names.
2. two receiver agreements
3. one sender agreement
4. one interface determination of type "Enhanced".
5. one receiver determination
But when I run the scenario given one valid input file I am getting the error in the sxmb_moni : RuntimeException in Message-Mapping transformation: Cannot produce target element.
However message mapping and interface mapping works perfectly if I test it in IR with the same input file.
Can somebody help me understand what I might be doing wrong?
Have I done the configuration correctly for 1:N mapping?
Please help! I will be greatfull to you if you can help me.
Thanks
GopalIf my input file is like this:
<ns1:LocationMsg_MT xmlns:ns1="http://www.abc.com/Gopal">
<Location>
</Location>
</ns1:LocationMsg_MT >
Then my scenario is working.
But my input file will be like this:
<LocationMsg_MT>
<Location>
</Location>
<LocationMsg_MT >
This is giving problem.
How to handle this kind of file?
Thanks
Gopal
Edited by: gopalkrishna baliga on Mar 14, 2008 3:19 PM -
How to pass dynamic values to value mapping? please help!
Hi Experts,
I have requirement where I am using email adapter to send emails. Now the "To" email address is different for different environment. In other words:
DEV - [email protected]
TEST - [email protected]
PROD - [email protected]
When the XI code is migrated to TEST environment the email address will be [email protected] and in production it will be [email protected]
Similarly, there are many more environments.
Now to handle this I have decided to use value mapping where Agency refers to the type of environment.
Now my problem is how do I use it in message mapping.
I have wriiten a java function that returns me the type of environment. But now how to use this value for value mapping. I mean when using value mapping in message mapping we hardcode the agency (environment type).
Is it possibel to specify a variable in value mapping for agency. The variable will be populated by java function before connecting to value mapping?
Please help!
Thanks
GopalHi Gopal,
why don't you use a "if" after your UDF. Depending on the return parameter of the UDF you call different value mappings?
Regards Mario -
Suddenly I can't move files to trash, whe I try to drag them to it there is a cirle with a diagonal line across. HELP!
Back up all data. Don't continue unless you're sure you can restore from a backup, even if you're unable to log in.
This procedure will unlock all your user files (not system files) and reset their ownership and access-control lists to the default. If you've set special values for those attributes on any of your files, they will be reverted. In that case, either stop here, or be prepared to recreate the settings if necessary. Do so only after verifying that those settings didn't cause the problem. If none of this is meaningful to you, you don't need to worry about it.
Step 1
If you have more than one user account, and the one in question is not an administrator account, then temporarily promote it to administrator status in the Users & Groups preference pane. To do that, unlock the preference pane using the credentials of an administrator, check the box marked Allow user to administer this computer, then reboot. You can demote the problem account back to standard status when this step has been completed.
Triple-click the following line on this page to select it. Copy the selected text to the Clipboard (command-C):
{ sudo chflags -R nouchg,nouappnd ~ $TMPDIR.. ; sudo chown -R $UID:staff ~ $_ ; sudo chmod -R u+rwX ~ $_ ; chmod -R -N ~ $_ ; } 2> /dev/null
Launch the Terminal application in any of the following ways:
☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid.
Paste into the Terminal window (command-V). You'll be prompted for your login password. Nothing will be displayed when you type it. You may get a one-time warning to be careful. If you don’t have a login password, you’ll need to set one before you can run the command. If you see a message that your username "is not in the sudoers file," then you're not logged in as an administrator.
The command will take a noticeable amount of time to run. Wait for a new line ending in a dollar sign (“$”) to appear, then quit Terminal.
Step 2 (optional)
Take this step only if you have trouble with Step 1 or if it doesn't solve the problem.
Boot into Recovery. When the OS X Utilities screen appears, select
Utilities ▹ Terminal
from the menu bar. A Terminal window will open.
In the Terminal window, type this:
res
Press the tab key. The partial command you typed will automatically be completed to this:
resetpassword
Press return. A Reset Password window will open. You’re not going to reset a password.
Select your boot volume ("Macintosh HD," unless you gave it a different name) if not already selected.
Select your username from the menu labeled Select the user account if not already selected.
Under Reset Home Directory Permissions and ACLs, click the Reset button.
Select
▹ Restart
from the menu bar. -
Content Repository sharing across domains
Hello,
Is it possible to share a bea content repository across domains?
Thanks,
-- AnantOk,
But besides caching, would there be any other issues, like entitlements and delegated admin?
If the content cache timeout were to be set to say 20 minutes, then at the most the content would be 20 minutes out of date. So then could you set up a repository in multiple domains, with one domain having the entitlements and delegated admin setup for publishing content and the other domains being read only?
Thanks,
-- Anant -
JMS Messaging Bridge ( communication across domains)
Following is the Scenario
We have 2 Weblogic domains, Domain A ( running on port 2000) and Domain B (running on port 3000)
In Domain A I want to look up a Queue which is in Domain B and send a message on that that Queue.
So the requirement is to send message from one domain to other domain ( i.e sending message across domains )
I have read on forum that this is possible using JMS Messaging Bridge.Can any body please guide me or provide some sample code for this.
Thanks in advance.
Regards
~YogeshHi
You can define the same queue in both domains.
In domain A ( the source ) create the Origin of bridge
In domain A too ( the source) create the destination of bridge ( pointing to address and port of domain B)
In domain A create the bridge ( joining source and destination )
In domain A , deploy the connector ... a .rar file
Best Regards
Jin
PD: this doesn?t affect the code of your app. -
Is security-principal-map necessary
To use container-managed security, is the deprecated security-principal-map required
in the weblogic-ra.xml? The fact that
it's deprecated makes me think there must be an alternate
mechanism, but I can find none, and
http://edocs.beasys.com/wls/docs70/jconnector/security.html#1232806
states "To use container-managed sign-on ... WebLogic Server looks for a Security
Principal Mapping specified with the security-principal-map element in the weblogic-ra.xml"
On the other hand, if I don't have it in my weblogic-ra.xml everything seems to
work fine, except the log reports:
<Unable to determine Resource Principal for Container Managed
# Security Context>
We support access of RAs only from webapp/ejb.
prasen
Shreesh Ponkshe wrote:
>
> I have developed an RA and have deployed successfully on WLS6.0. However, I am
> having problems invoking it from remote clients. I need to set it's security such
> that any client be able to use the resource. I understand it is somethign to do
> with the <security-principal-map> in weblogic-ra.xml. Can anyone tell me HOW?
>
> One more important(?) detail : My RA does not implement the security contract
> . I assume it is OK 'coz it is an optional contract.
>
> Regards,
> Shreesh.
-
Setting cookies across domains
Hi there all,
I'm posting this in desperation to be honest, don't think
there is a cut'n'dried
answer to this one.
I've got a horrible situation, (don't ask why, it's far too
complex and to
be quite honest.. boring :) ).
I'm trying to "mesh" together a classic .asp with an asp.NET
site on 2
separate domains.
Basically I've got a page from the asp.NET site (eg.
www.something.co.uk)
displayed within an iframe on the .asp (eg
www.another.co.uk). So far so
good.
I need to set a cookie on www.another.co.uk and be able to
read it, or
replicate it on www.something.co.uk. Because they are not
sub-domains I can't
set the cookie direct because of security restrictions.
So, I thought I could pass a URL variable across to
www.something.co.uk via
the iframe URL, and then using javascript to read said URL
variable and set
a cookie on the www.something.co.uk domain. No go. Suspect
there is yet
again security restrictions to setting cookies across domains
using iframe.
So I'm kind of stuck. Can anybody suggest anything please,
bearing in mind I
have very limited control over the asp.NET
(www.something.co.uk) site, so
any solution I come up with needs to be using javascript.
Major sized thanks in advance.
@ndyBYou could also pass the id as a hidden field in a form.
Have the link call a JavaScript function. The JavaScript funcition could access the cookie and pull out the id. The function would then set a hidden field in a form to the id value and then Post the form to the secure server.
The form would only have hidden fields so it could be tagged on the end of the HTML page and the user would never know it was there.
Maybe you are looking for
-
DOM Parsing Exception in translator. Dequeuing is failing
Hi, -> I am working on EDI HIPPA File Protocol. -> My b2b configuration is working. I am getting the payload xml in IP_IN_QUEUE. But ESB with AQAdaptor is failing giving the below Exception. -> ORABPEL-11211 DOM Parsing Exception in translator. DOM p
-
Virus in safari after installing OS Lion
Shortly after installing OSX Lion, I downloaded content from three "Rorshach" sites, and now whenever I open Safari, three windows open and a dialogue box pops up in front saying I have won a free iPad. There is no way to close the pop-up, and I hav
-
I can't find anything directly related to what I'm hoping to do, so I'm back to ask more questions. I'm running a hardware timed analog input acquisition (80 kHz currently) using dma transfers, on-demand analog output, and on-demand DIO on an M-serie
-
Exit and BTE for MIRO T.code
Hi Guru, My requirment is like that when i am doing MIRO with reference to PO no. . In Detail Tab in MIRO default Inv. Party - (100077)is comming with reference to PO - Partner - Invoicing party Number. But Here in this MIRO - Detail Tab - Field N
-
Timezone (in Pan, Thunderbird,..)
Hi! I've got a bit of a problem with my timezone in Archlinux. Mails I send and receive with Thunderbird always have the wrong timestamp (and the same holds true for usenet articles): current time (Europe, Brussels), minus one hour. My BIOS clock i