Register application with SSO

Similar Messages

• APEX 3.2 Associating application with SSO login page.

  Hi
  My requirement is to replace my login page of APEX3.2 application with an SSO login page. Also, the application uses some tables with some history columns like: "Last Updated by", "Created by", "Last Update Time", etc... While create/edit of any table, I want these columns to be automatically populated according to the credentials used in SSO login page to that application. Please help.
  The link given on this forum (http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html) for the purpose seems to be obsolete i.e. for previous versions of APEX.
  Thanks
  Bhavesh

  Bhavesh,
  That how-to explains all the steps you need to set up SSO with Application Express.
  As far as the audit columns, just create triggers on your tables. Referenced v('APP_USER') to get the authenticated username.
  Scott

• Registering a partner application with SSO SDK

  Good day
  Since 2 days, I am struggling for the issue of registering a Servlet application as a partner
  application using the SSO Login Server.
  As per the suggested note id 182701.1 in metalink , I implement the following steps :
  - Step A : Create the partner Application Schemas (Succesful & the name of the shemas is : ssopartner)
  - Step B : Load Packages for the partner application (Successful)
  - Step C : Obtain the registration information (Successful)
  - Step D : Run the regapp.sql (successful but they forgot to mention that I should load the
  SSOHash.class )
  - Step E : Compile and Run
  I deploy the application under 9iAS in order to test it.
  I add the ssosdk307.jar the the jserv.properties file.
  I invoke the SSOPartnerServlet java program by entering :
  http://name of the webserver/servlet/SSOPartnerServlet
  I got the message "redirecting to the login server" and I got the
  login page of the SSO Server.
  Once I submit the user/password , I got HTTP 400: Page cannot be
  displayed.
  I check the mod_jserv.log file and find out the following message :
  [08/04/2002 13:54:16:949] (ERROR) ajp12: Servlet Error: POST is not
  supported by this URL
  Could you please advise
  Your prompt feedback is highly appreciated
  regards

  I believe that this is not possible as the mod_osso realizes that the URL is below an URL that you want to protect.
  The only way I see that you can do this is the following modification in the mod_osso.conf:
  <Location /myApp/secure_partA>
  AuthType basic
  Require valid-user
  </Location>
  <Location /myApp/secure_partB>
  AuthType basic
  Require valid-user
  </Location>
  <Location /myApp/secure_partX>
  AuthType basic
  Require valid-user
  </Location>
  So your application /myApp/subApp will not be effected and people can just access this part. However you will have more administration in your mod_osso.conf
  cu
  Andreas

• Java Web application with SSO cookie

  Hello All,
  We are having a web-Java application which is interacting with SAP-Web As and then calling RFC'c to get data from backend.
  My scenario should get user name and password from the MYSAPSSO2 cookie generated by the server.
  There are few issues with the application.
  1)When I am launching the application from my browser , a small pop up comes up "The server at Upload Protected area requires a user name and password".When I am providing the user name which is existing on my Java and ABAP stack ,its saying  "403   Forbidden :You are not authorized to view the requested resource."
  But when I am logging in with super user j2ee_admin, its allowing me to enter the application.
  Please let me the what settings are required for my user on the server to bypass this small window of protected area.
  2) Do we have any option to generate MYSAPSSO2 cookie programmatically ?
  3) Do we have any option to modify /add username in existing MYSAPSSO2 cookie?
  Thanks & Regards,
  Abhivyakti
  Edited by: Abhivyakti Srivastava on Jun 17, 2011 8:27 AM

  sorry,I 've got this:
  http://sourceforge.net/forum/forum.php?thread_id=1731549&forum_id=399715
  The problem is solved!
  forget my question...Thanks a lot!

• Apex application registered with sso as partner application

  We have 1 apex app registered with sso and working properly.
  I just registered a new apex application with sso. when i authenticate through sso, it directs me to the originally registered application.
  I went in through the portal administrator app and verified my settings all pointed to the new application. I verified that my dad is set up correctly.
  Any ideas?
  APEX 2.0

  i did register and obtain the keys through portal admin.
  to ensure i used the proper keys (i guess there is a possibility i used the keys from db1 registration) i re-ran regapp with the right keys but recieved the following output:
  SQL> @regapp
  Partner Application Configuration
  Enter value for listener_token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
  Enter value for site_id: EFBE3E14
  Enter value for site_token: MSMXURH1EFBE3E14
  Enter value for login_url: https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admin.ls_login
  Enter value for encryption_key: 2EBDD126A3A40606
  Enter value for ip_check: N
  ERROR: Error in registration. Please try again
  User-Defined Exception
  Registration successful.
  Listener token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
  Site id : EFBE3E14
  Site token : MSMXURH1EFBE3E14
  Encryption key: 2EBDD126A3A40606
  Login URL :
  https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
  n.ls_login
  Logout URL :
  https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
  n.ls_logout
  IP check : N
  PL/SQL procedure successfully completed.
  Commit complete.
  No errors.
  SQL>
  ...in spite of the error, i aske the app developer to try and use sso for db2. he now recieves:
  User-Defined Exception
  Error Error in wwv_flow_custom_auth_sso.process_success:l_sso_user_name:l_sess_id:: Please contact administrator.
  OK
  any ideas?

• Problem with sso for asp applications

  Hi,
  i am using the web app integrator to integrate asp application with SSO, i am getting permission denied some times, the permission denied is a small html file on asp server side when userid is null.
  I am sure that the user id is not null because i have written small script to respond back with the passed user id like response.write(""), it is giving back the passed user id every time but at the same time i am getting Permission denied.
  The permission denied is a small html file on the .net server side when the ui=null in the pssing URL.
  How this is happening at the same time, one is giving back the user id and one is taking the user id as null.
  some times i am getting right page and some times giving permisssion denied.
  the basic URl is
  http://abc.xyz.com/sm_log.asp?userid=damodhar
  There is no great security behind this only passing user id, they are not passing the password even in the http header authentication. the simple logic is they are hiding the URL from the view source.
  if i pass the hard coded url from the browser i am getting the proper page at the same time if i pass the url  from portal it is working some times and some times not, i don't know when?
  I am using the web application integrator method.
  we are operating portal server from internet and .net server is on intranet.
  Thanks,
  Damodhar.

  If you lose sounds for keyboard clicks, games or other apps, email notifications and other notifications, system sounds may have been muted.
  System sounds can be muted and controlled two different ways. The screen lock rotation can be controlled in the same manner as well.
  Settings>General>Use Side Switch to: Mute System sounds. If this option is selected, the switch on the side of the iPad above the volume rocker will mute system sounds.
  If you choose Lock Screen Rotation, then the switch locks the screen. If the screen is locked, you will see a lock icon in the upper right corner next to the battery indicator gauge.
  If you have the side switch set to lock screen rotation then the system sound control is in the task bar. Double tap the home button and in the task bar at the bottom, swipe all the way to the right. The speaker icon is all the way to the left. Tap on it and system sounds will return.
  If you have the side switch set to mute system sounds, then the screen lock rotation can be accessed via the task bar in the same manner as described above.
  This support article from Apple explains how the side switch works.
  http://support.apple.com/kb/HT4085

• How i get user info from ldap using java after authenticating user with SSO

  Hi
  I have one jsp/bean application as a partner application with SSO.
  It works fine.
  Now i need to get other attributes of user from LDAP who has logged into the application through SSO.
  using SSO java APIs i only get username, userDN, subscriber info.
  To get user's other attribute i have to user LDAP APIs for that i have to create on Directory Context, for the same i need userpassword.
  so here i my question, how do i get user password after he has logged in thro SSO.
  regards..
  and thanking u in advance
  samir

  Valentina,
  there's no way to get the password value from the directory (it's one way). Of course you can get the hashed (MD4,MD5,SHA-1) base64 encoded value (i.e. the value you see in OiD) but not the 'password'.
  --Olaf                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

• Registering a Partner application with Oracle SSO 10gR2

  Hi Everybody
  I'd like to ask a question around registering a partner application with Oracle SSO.
  I have entered my home_url, logout_url and cancel_url e.g. home_url is https://vevopuitest1.co.uk/vevo_test1 and so on for the other fields.
  When I save the details some information is automatically created e.g. Site Id, Site Token etc.
  The bit that I am particularly interested in are the fields Single Sign-On URL and Single Sign-Off URL.
  For my purposes these fields are respectively: https://cwassotest1.co.uk/pls/orasso/orasso.wwsso_app_admin.ls_login and https://cwassotest1.co.uk/pls/orasso/orasso.wwsso_app_admin.ls_logout
  My questions are:
  1. Where do these values come from?
  2. Can I view them anywhere, say, in Oracle Directory Manager or using ldif queries?
  I would like to be able to verify these values.
  Many Thanks
  Andy

  I'm afraid this won't answer your question completely, but AFAIK in principle it does not matter on which machine SSO is running, as long as it passes the user id and credentials properly through the HTTP Header. Even more: in practice it is very common to have SSO running on a different machine than where your app runs.
  So what I would do is find out how to use ADF Faces with SSO. Perhaps someone else can provide pointers on that.
  Jan Kettenis

• Apex Application With Oralce SSO (inbuilt) application integration

  Hi,
  Installed oracle 11g, configured Application Express Release 3.0.
  I developed application in APEX.
  Now I want to authenticate my application with Oracle SSO login.
  Please help me on this.
  Thanks in advance.
  Thanks,
  Surya

  Hello Surya,
  If you follow the instructions here you should be able to connect to your SSO.
  http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
  Peter

• Browser back button not working with ADF Application integrated with SSO

  I have integrated an adf application with Oracle SSO Authentication. Application is running fine.
  Though, while navigating between pages, using browser back button , it is not redirecting the url properly
  Should Redirect it to : http://<hostname>:<port>/<contex-root>/<servlet>/<id>
  Presently Redirecting it to :http://<hostname>:<port>/<contex-root>
  As, directory browsing is not allowed, there is Error 403--Forbidden .
  Can anybody tell what changes needs to be made to make browser back button work.

  In some of the documentation I have read, they have mentioned that using the back button in a browser doesn't work too well with any JSF type of application (not just ADF and Jdeveloper apps).
  http://docs.oracle.com/cd/E15051_01/web.1111/b31974/web_form.htm#CFHHJGJH
  Instead, they suggest using buttons on the form.
  There is a video on using navigation between forms that may be of value: http://www.youtube.com/watch?v=bsPtmRID5XI&feature=plcp
  Stuart
  Edited by: Stuart Fleming on Sep 11, 2012 5:30 AM

• Integrating Application Express with SSO

  Hi,
  What's the difference between integrating Apex with SSO as a partner application, and integrating it as an external application. Are there any benefits / drawbacks to either? and in what situation would you use one or the other?
  Thanks,
  Lee

  Hi, I have one more question related to this.
  We are currently considering implementing the following:
  We are designing a system where the majority of users will have read only access to data. The read only users will NOT have to sign into the system in order to use the system at this privilege level. Other users will have to sign in and once they have done so will then be able to edit and access other functions of the system that are not available to regular read only users. Login links will be available on a number of different screens and once logged in they will be returned to the screen from which they logged in.
  We understand that we can use SSO or even Apex's own authentication to acheive this.
  There is also another system built using portal, forms and SSO. Once a user signs into the portal there is a main menu where various links to different applications are available/hidden depending on the OID groups that the user is a part of.
  Ideally we want to be able to provide a link from the portal system to the apex system from the portal main menu. If a user is signed into the portal then they should be able to enter the apex system without the requirement to sign in again, assuming that they have edit privileges for the apex system. However if the user is signed into the portal but they do not have edit privileges we want to be able to display the apex system in read only mode as we would for anybody else who is not an edit user complete with login links.
  Would this be possible using SSO bearing in mind that we do not want to have to create users for the read only users?
  Any help would be greatly appreciated.
  Thanks,
  Lee

• SSO Enabling a custom application with OAM

  Hi All !
  Am a bit stuck on a problem and need some urgent help. Actually we are trying to launch some custom-built (J2EE/.NET) web applications from the Oracle Portal with SSO i.e. once the user logs into the portal he would not have to log-in again to the applications which would be launched from the portal home page.
  We have successfully integrated the Oracle Portal with the OAM SSO, but facing some problems with SSO enabling the custom applications. Any help on what should be the ideal integration architecture and approach for SSO enabling the apps with minimum amount of modification of the application code.
  The licenses are available for OID, OVD, OAM.
  Thanks in advance. Any views/comments/links to useful material appreciated.
  Cheers
  Soumak

  If your custom application uses its own database for Authentication, then you have to modify the login process for your application. i.e. you have to trust the OAM to have done the authentication and then create any custom cookie that your application might use in its landing page.
  I am assuming that your custom application have some way of tracking if the user has logged in or not. You can protect the Custom application URL within OAM and once the user has logged in you can then generate your custom application cookie.
  Even if you use OVD, you stil have to modify login process in your custom appliation to trust the third party to have done the authentication.
  Thanks
  Ram

• Registering an application with Shared Services

  I just used HfmCopyApplication.exe to migrate an application from out production environment to a newly installed test environment. However, when I open in the HFM System 9 thick client in the test environment and try to "Open Application", I can see the new application listed (so I know the migration was successful), but I get a message saying "+This application is not registered with Hyperion Shared Services. Please contact your administrator.+"
  Can anyone provide some insight? I don't know how to register an application that was migrated from another environment, and I'm hesitant to create a new application with the same name because I don't want to accidentally wipe the one out that was just migrated over. I've looked through the documentation for the HfmCopyApplication, but it only says that I need to register the migrated app with Shared Services... It doesn't tell me how.
  Thanks.

  that usually means that Workspace has not been configured to know that HFM is in the environment as well, or that for some reason you don't have access to that option.
  On the machine where Workspace web component has been installed you will need to run the System 9 configuration utility and choose the task "Reporting and Analysis" and "Configure Web Server". When you get to the screen which asks you to specify the hostname and port of the individual web servers (Financial Reporting, Web Analysis etc) make sure that HFM is ticked on (checked) and that the hostname and port for the HFM web server are correct (should be port 80). Complete the steps with Next Next Next and Finish, then restart both the Apache http server and the Workspace web server (Tomcat/Weblogic/Websphere etc). After that, the next time you log in to Workspace and go to Navigate->Administer you should see the options relating to HFM.
  If it is still not there, go to Help->About->Version Details and check that a version for Financial Management component is displayed. If a version number is displayed then it something to do with your access rights (maybe a Creator / Administrator group has been set in the HFM Server / Web Config utility, try to remove it and try again?). If no version number is displayed then Workspace still doesn't know about HFM component (the above step hasn't worked).
  If you are not sure speak to the person who did the installation, or if you have a support contract with Oracle then contact Oracle support.

• HT4847 Why do I get the answer on trying to open this application, limit reached,want to use skygo on this device visit manage devices to replace a registered device with this one. How do I do that

  Why do I get the answer on trying to open the application skygo, limit reached, want to use skygo on this device visit manage devices to replace a registered device with this one. How do I do that. ?

  Please see http://help.sky.com/tv/sky-go/register-devices-on-sky-go . Note that if you have in the past already removed one device you will have to wait for a month to elapse before you can remove another.

• Need help in registering HFM Sample applications with Shared Services

  Hi all,
  I have installed HFM 9.3.1 on the server and I have issues in locating the sample application in the HFM console. I want to register the sample application with Hyperion shared services. But when I tried opening the application, I do not see the sample application and also got an error saying,"cannot connect to server".
  When I tried creating new application I got an error saying,"there is an error retrieving the user management project list.Please verify that the project exists".
  All I want to do is, to provision the shared services users to the HFM sample applications. Could you provide some suggestions to overcome this issue? I'll appreciate your quick response.
  Regards,
  Leo

  Try using the server name instead of the cluster name.