Registering a Partner application with Oracle SSO 10gR2
Hi Everybody
I'd like to ask a question around registering a partner application with Oracle SSO.
I have entered my home_url, logout_url and cancel_url e.g. home_url is https://vevopuitest1.co.uk/vevo_test1 and so on for the other fields.
When I save the details some information is automatically created e.g. Site Id, Site Token etc.
The bit that I am particularly interested in are the fields Single Sign-On URL and Single Sign-Off URL.
For my purposes these fields are respectively: https://cwassotest1.co.uk/pls/orasso/orasso.wwsso_app_admin.ls_login and https://cwassotest1.co.uk/pls/orasso/orasso.wwsso_app_admin.ls_logout
My questions are:
1. Where do these values come from?
2. Can I view them anywhere, say, in Oracle Directory Manager or using ldif queries?
I would like to be able to verify these values.
Many Thanks
Andy
I'm afraid this won't answer your question completely, but AFAIK in principle it does not matter on which machine SSO is running, as long as it passes the user id and credentials properly through the HTTP Header. Even more: in practice it is very common to have SSO running on a different machine than where your app runs.
So what I would do is find out how to use ADF Faces with SSO. Perhaps someone else can provide pointers on that.
Jan Kettenis
Similar Messages
-
Registering a partner application with SSO SDK
Good day
Since 2 days, I am struggling for the issue of registering a Servlet application as a partner
application using the SSO Login Server.
As per the suggested note id 182701.1 in metalink , I implement the following steps :
- Step A : Create the partner Application Schemas (Succesful & the name of the shemas is : ssopartner)
- Step B : Load Packages for the partner application (Successful)
- Step C : Obtain the registration information (Successful)
- Step D : Run the regapp.sql (successful but they forgot to mention that I should load the
SSOHash.class )
- Step E : Compile and Run
I deploy the application under 9iAS in order to test it.
I add the ssosdk307.jar the the jserv.properties file.
I invoke the SSOPartnerServlet java program by entering :
http://name of the webserver/servlet/SSOPartnerServlet
I got the message "redirecting to the login server" and I got the
login page of the SSO Server.
Once I submit the user/password , I got HTTP 400: Page cannot be
displayed.
I check the mod_jserv.log file and find out the following message :
[08/04/2002 13:54:16:949] (ERROR) ajp12: Servlet Error: POST is not
supported by this URL
Could you please advise
Your prompt feedback is highly appreciated
regardsI believe that this is not possible as the mod_osso realizes that the URL is below an URL that you want to protect.
The only way I see that you can do this is the following modification in the mod_osso.conf:
<Location /myApp/secure_partA>
AuthType basic
Require valid-user
</Location>
<Location /myApp/secure_partB>
AuthType basic
Require valid-user
</Location>
<Location /myApp/secure_partX>
AuthType basic
Require valid-user
</Location>
So your application /myApp/subApp will not be effected and people can just access this part. However you will have more administration in your mod_osso.conf
cu
Andreas -
ApEx 2.1.0.00.39 as Partner Application in Oracle AS Single Sign-On
Hi,
I've installed the last Application Express 2.1.0.00.39 (oracle-xe-10.2.0.1-1.0.i386.rpm and oracle-xe-univ-10.2.0.1-1.0.i386.rpm) but, when I try to "create an authentication scheme" for configure an ApEx application to use SSO under
Home>Application Builder>Application xxx>Shared Components>Authentication Schemes>Create Authentication Scheme
in the second step of the procedure I don't find the choice "Oracle Application Server Single Sign-On (Application Express engine as Partner App)".
I found only these:
- Show Built-In Login Page and Use Open Door Credentials
- Show Login Page and Use Application Express Account Credentials
- Show Login Page and Use Database Account Credentials
- Show Login Page and Use LDAP Directory Credentials
- No Authentication (using DAD)
even if under the help voice "V Information" the others two are describes:
Oracle Application Server Single Sign-On (Application Express engine as Partner App) delegates authentication to the Oracle Application Server Single Sign-On (SSO) Server. This Application Express site must have already been registered as a partner application with the SSO server. For more information, contact your administrator.
Oracle Application Server Single Sign-On (My application as Partner App) delegates authentication to the SSO server. In this case, you must register an application with SSO as a partner application. See the next page for more details.
Does Someone know how to resolve it?
Thanks
EmanueleThanks for all your help Scott
I've added the -PORTAL_SSO- .....
After this I've had a new problem same to this: Re: SSO Authentication Not Working
"get the error below and it then directs me to http://hostx/htmldb/f? and the "p=" is missing"
But after a lot of tests I discovered where was the problem: "The apache configuration for the proxy!!"
This an extract from the installation doc :
SetEnv force-proxy-request-1.0 1
ProxyPass /htmldb http://127.0.0.1:8080/htmldb
ProxyPassReverse /htmldb http://127.0.0.1:8080/htmldb
ProxyPass /i http://127.0.0.1:8080/i
ProxyPassReverse /i http://127.0.0.1:8080/i
ProxyPass /sys http://127.0.0.1:8080/sys
ProxyPassReverse /sys http://127.0.0.1:8080/sys
where you replace 127.0.0.1 with the name OR ip address of your XE installation. 8080 is the default http port of your XE installation. "
Well, I used the IP ADDRESS and in the @regapp > listener_token the NAME!!! (HTML_DB:servername.domain:80)
I changed the IP ADDRESS with the NAME, restarted the httpd service and now all works fine.
Emanuele -
Apex Application With Oralce SSO (inbuilt) application integration
Hi,
Installed oracle 11g, configured Application Express Release 3.0.
I developed application in APEX.
Now I want to authenticate my application with Oracle SSO login.
Please help me on this.
Thanks in advance.
Thanks,
SuryaHello Surya,
If you follow the instructions here you should be able to connect to your SSO.
http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
Peter -
HOW TO SET UP PARTNER APPLICATION TO USE SSO OUTSIDE OF PORTAL
If anyone knows how Portal switches context to run as the db user mapped to the lightweight schema and how it knows the db schema password please let me know.
Should you have any queries please do not hesitate to contact me on 07775 896738.
From document Oracle Portal Security Overview on PortalStudio.oracle.com:
In Single Sign On mode (EnableSSO=Yes in the DAD), mod_plsql determines the name of the light-weight user and mapped database schema by calling
WPG_SESSION_PRIVATE.GET_LW_USER and WPG_SESSION_PRIVATE.GET_DB_USER respectively.
** These calls are done using the Portal Schema (PORTAL30) and Portal schema password **
mod_plsql then executes the procedure in the requested URL by using the N-Tier Authentication feature to connect to the database as the user returned from
WPG_SESSION_PRIVATE.GET_DB_USER. ..... Note that N-Tier Authentication requires all schemas to be used for Portal user mappings to be granted 'connect
through' privleges to the Portal schema (PORTAL30).
The WWCTX packages are also used.
So this is how it works with standard Portal
- the document states that the WPG_SESSION_PRIVATE package is only accessible to the Portal schema
- but I checked and it is also available to PORTAL30_SSO
SQL> desc WPG_SESSION_PRIVATE
PROCEDURE CREATE_SESSION
Argument Name Type In/Out Default?
P_COOKIE_NAME VARCHAR2 IN
FUNCTION GET_DB_USER RETURNS VARCHAR2
FUNCTION GET_LW_USER RETURNS VARCHAR2
PROCEDURE GET_SESSION_INFO
Argument Name Type In/Out Default?
NUM_PARAMS NUMBER OUT
PARAM_NAMES TABLE OF VARCHAR2(32000) OUT
PARAM_VALUES TABLE OF VARCHAR2(32000) OUT
PROCEDURE RESET_SESSION
Argument Name Type In/Out Default?
P_COOKIE_NAME VARCHAR2 IN
In my case only the Login Server (PORTAL30_SSO) is going to be used/installed
- the SAMPLE_SSO_PAPP application will only work if the DAD used to access is it set to use Basic authentication, i.e. the actual integration with the Login Server
is done in the sample application code calls, stored in the database
- when a DAD has enableSSO=yes it automatically accesses Portal (PORTAL30) packages to implement N-Tier authentication
I'm currently testing:
1. Configuring the SAMPLE_SSO_PAPP sample as documented with a DAD with Basic authentication
2. Amending the ssoapp procedure to set context to another (db) user on successful authentication:
wwctx_api.set_context (
p_user_name => 'SCOTT',
p_password => 'TIGER' );
3. If this works then set_context with get_lw_user instead
I have now amended the ssoapp procedure as follows to print out
1. The userid entered when the login box is presented
2. The Database user which the Portal Lightweight user is mapped to
3. The Lightweight user Portal has used for authentication
Amendments to papp.pkb:
(ssoapp procedure, declare db_user_info and lw_user_info as VARCHAR2 in declare section)
htp.p('Congratulations! It is working!<br>');
db_user_info := wwctx_api.get_db_user;
lw_user_info := wwctx_api.get_user;
htp.p('User Information:' || l_user_info || '<br>');
htp.p('DB User Information:' || db_user_info || '<br>');
htp.p('LW User Information:' || lw_user_info || '<br>');
The following shows the interesting results from my testing:
- if the user owning the sample_sso_papp package is PORTAL30_SSO then the call to wwctx_api.get_db_user succeeds
- if the user owning the sample_sso_papp package is a non-portal schema e.g. SSOAPP below the call to wwctx_api.get_db_user generates a User Defined exception
Steps to test:
Created new schema SSOAPP on the database
- edited it in Portal and checked the use this schema for Portal users checkbox
- created new Lightweight user SSO_LW in Portal, mapped it to SSOAPP schema
- created new Lightweight user SSO_SCOTT in Portal, mapped to SCOTT schema
- loadjava -user ssoapp/ssoapp@portal30 SSOHash.class
- sqlplus portal30/portal30@portal30
@provsyns ssoapp
- sqlplus ssoapp/ssoapp@portal30
@loadsdk.sql
@loadpapp.sql
Created DAD with basic authentication SAMPLE_SSO_PAPP
- username: ssoapp
- default home page: sample_sso_papp.ssoapp
Registered the Sample SSO Partner Application with the Login Server and ran regapp.sql
Commented out the calls to get_db_user in papp.pkb to avoid exception
- called http://<server>/pls/sample_sso_papp
- logged on as SSO_LW/sso_lw
- got output:
Congratulations! It is working!
User Information: SSO_LW
LW User Information: PUBLIC
So the Portal lightweight user is not returned as SSO_LW
if anyone knows why the Lightweight User in my test is returned as PUBLIC not SSO_LW
Best Regards
MIchaelhttp://support.mozilla.com/en-US/kb/Changing+the+e-mail+program+used+by+Firefox
-
Creating partner application in Oracle
$ORACLE_HOME/sso/bin/ssoreg.sh
-oracle_home_path <oracle_home_path>
-config_sdk_papp TRUE -site_name SSO_APEX
-home_url http://hal-00-dbs-08.hal.net:7777/pls/apex
-success_url http://hal-00-dbs-08.hal.net:7777/pls/apex/wwv_flow_custom_auth_sso.pro
cess_success
-logout_url http://hal-00-dbs-08.hal.net:7777/pls/apex
-u cn=orcladmin
-papp_schema <apex schema>
-cancel_url http://hal-00-dbs-08.hal.net:7777/pls/apex
-papp_schema <apex schema> what goes here?Please tell us your first name and update your forum profile with it to assist us. Thanks.
Where did you get that script and what are you trying to do, exactly (generally, I got that your aim is "creating partner application in Oracle").
Scott -
Creating partner application in Oracle Portal
$ORACLE_HOME/sso/bin/ssoreg.sh
-oracle_home_path <oracle_home_path>
-config_sdk_papp TRUE -site_name SSO_APEX
-home_url http://hal-00-dbs-08.hal.net:7777/pls/apex
-success_url http://hal-00-dbs-08.hal.net:7777/pls/apex/wwv_flow_custom_auth_sso.pro
cess_success
-logout_url http://hal-00-dbs-08.hal.net:7777/pls/apex
-u cn=orcladmin
-papp_schema <apex schema>
-cancel_url http://hal-00-dbs-08.hal.net:7777/pls/apex
-papp_schema <apex schema> what goes here?Please tell us your first name and update your forum profile with it to assist us. Thanks.
Where did you get that script and what are you trying to do, exactly (generally, I got that your aim is "creating partner application in Oracle").
Scott -
Upload file in JSP with Oracle Database 10gR2
How to upload file with oracle database 10gR2??
i can't find how to upload..
i've tried to create a procedure in oracle and execute in netbeans but the file save in directory and then from directory save to database.
it means the file save in 2 location, in directory and database..
does anybody know how to save file direct from the JSP file into database without save in directory?
this is the procedure..
create or replace PROCEDURE load_file (
p_id number,
p_photo_name in varchar2) IS
src_file BFILE;
dst_file BLOB;
lgh_file BINARY_INTEGER;
BEGIN
src_file := bfilename('DIR_TEMP', p_photo_name);
-- insert a NULL record to lock
INSERT INTO temp_photo
*(id, photo_name, photo)*
VALUES
*(p_id , p_photo_name ,EMPTY_BLOB())*
RETURNING photo INTO dst_file;
-- lock record
SELECT photo
INTO dst_file
FROM temp_photo
WHERE id = p_id
AND photo_name = p_photo_name
FOR UPDATE;
-- open the file
dbms_lob.fileopen(src_file, dbms_lob.file_readonly);
-- determine length
lgh_file := dbms_lob.getlength(src_file);
-- read the file
dbms_lob.loadfromfile(dst_file, src_file, lgh_file);
-- update the blob field
UPDATE temp_photo
SET photo = dst_file
WHERE id = p_id
AND photo_name = p_photo_name;
-- close file
dbms_lob.fileclose(src_file);
END load_file;Well your Oracle procedure is designed to load a file, so that's what it does. If you want it to load from a data stream such as an upload, you need to rewrite it accordingly.
So far this is not a Java question at all. -
Need help in registering HFM Sample applications with Shared Services
Hi all,
I have installed HFM 9.3.1 on the server and I have issues in locating the sample application in the HFM console. I want to register the sample application with Hyperion shared services. But when I tried opening the application, I do not see the sample application and also got an error saying,"cannot connect to server".
When I tried creating new application I got an error saying,"there is an error retrieving the user management project list.Please verify that the project exists".
All I want to do is, to provision the shared services users to the HFM sample applications. Could you provide some suggestions to overcome this issue? I'll appreciate your quick response.
Regards,
LeoTry using the server name instead of the cluster name.
-
Is it possible to run Oracle 6i application with Oracle 11g?
HI,
We are running oracle developer 6i (6.0) application with oracle 10g database.
Due to some management decisions we are in planning to upgrade the database to 11g.
So, tell us that Is it possible to run Oracle 6i application with Oracle 11g?
Regards,
fazijeeAlso see Oracle Support note
Is Forms/Reports 6i Certified to Work Against Oracle Server 10g Rel 1, Rel 2 or 11gRel 1, Rel 2? [ID 338513.1]
6i isn't certified nor will be certified against 10.2 and 11.x
Hemant K Chitale -
Integrate Web application with Oracle BPM
Hi,
Can you guide me in achieving the following scenario:
1. Integration web application with oracle BPM
Say, I have a application where I need to trigger an event to call Oracle BPM. For ex: On click of submit button call the Oracle BPM workflow to do some process and then revert back to the same application with an alert or status message. Please let me know the steps to acheive this.
Thanks
STHi,
I take from this description that you currently have your Web Application and you would possibly like to trigger or create an instance into an OBPM business process. If this is the case, you have several options available here:
a) Use PAPI (Java API).
b) Use PAPI-Ws (SOAP API).
c) Use some sort of communication channel that the process is implemented to listen (for example a JMS Queue or Topic).
For the first 2, you can try to take a look into the official Documentation page for OBPM through this link: http://download.oracle.com/docs/cd/E13154_01/bpm/docs65/index.html (Check the For Developers section).
If I have miss interpreted your question, please do not hesitate to provide more details.
Cheers,
eduardoc. -
Integrating a jsp application with oracle workflow
Hi,
I would like to integrate a jsp application with oracle workflow.
My jsp application use BC4J, and if i want to use the java
interface of workflow i need to have the java.Sql.Connection of
my application.
There are a way of getting this Connection in the BC4J?
thanks
rjcYou can check the source code at:
http://otn.oracle.com/docs/products/oracle9i/doc_library/release2/text.920/a96517/acase.htm#632511
You can also use the JDeveloper wizards that can generate JSP code. You can download them from: http://otn.oracle.com/products/text/
and then click on software (left frame). -
Register the partner application through SSO Administer Partner Application
When should I use the "Administer Partner Applications" link on the SSO Server Administration page to register the application among the following cases?
1. sign-on SDK integrated application
2. mod_osso integrated applicationWere you able to resolve the issue???
Can you pls try Rerunning ssodatan/x with the correct data. The ssodatan script is located in the directory ORACLE_HOME/portal30/admin/plsql/ssodatan.
Refer following link for more info on SSODATAN , SSODATAX and DIAGNOSTICS scripts in Portal 3.0.x:
http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=136138.1 -
Hi All,
I am trying to implement SSO authentication for my APEX application. I have registered the application as a SSO partner application.
I have set the authentication scheme to Oracle Application server Single Sign On.
When i run the application i am getting the below error.
Error in portal_sso_redirect: missing application registration information: p_partner_app_name:g_listener_token:HTML_DB:ofss220104.in.oracle.com:5050Please register this application as described in the installation guide.
Please help me to resolve this.
Thanks and Regards,
SuhasSuhas,
After you registered your application as a SSO partner application did you use the information from Oracle SSO (home URL, success URL, Logout URL, app_name etc) and loaded it into the APEX_SSO schema using the regapp.sql script from the ssosdk?
Step 4 of http://www.oracle.com/technetwork/testcontent/sso-partner-app-100552.html#INSTALL
Ricker -
Writing Partner Application Using Java SSO APIs
Hi
Following the document "Oracle9iAS Single Sign-On Application Developer's Guide" to implement Single Sign on
for Partner Applications.
When try to login into the application for the first time they successfully get redirected to the Login Server. The login page for the
Login Server is displayed and prompts for a username and password to be entered. On entering the details for a valid user
get redirected to the SSOSignOnServlet as expected. This servlet then calls the method
setPartnerAppCookie(request, response) on the SSOEnablerServletBean.
This in turn calls the setPartnerAppCookie(request, response) method on the SSOEnablerBean.
This method requests a parameter from the HTTPRequest object which it appears should be added to the request by the Login Server.
However, the request for the parameter returns NULL. This prevents the Servlet from setting the
application cookie and causes the application to fall over.
Error: oracle.security.sso.enabler.SSOEnablerException: java.lang.NullPointerException
Since the example was going into a continuous loop of redirecting to the login
server and then back to the application the following change has been made to the
SSOEnablerServletBean.java file.
// Requested URL (User requested page)
private static String requestUrl =
"http://10.0.7.105:8888/servlet/SSOPartnerServlet";
// Requested URL (User requested page)
private static String requestUrl =
"http://10.0.7.105:8888/servlet/SSOSignOnServlet";
Any reply will be highly appreciated.I have the same problem here.
Any ideas?
Thank You in advance
Justinas
Maybe you are looking for
-
How to Open a rar file with downloaded software
I was bothering this forum yesterday trying to find some way to get a file opened that I had downloaded. Today I discovered that my problem was that "rar" files need their own software to enable them to be opened....So I downloaded the software UnRar
-
ITunes keeps wiping my library.
This is the 4th time this has happened. I have several playlists and albums, along with many songs from CDs and some LEGALLY downloaded for free from Nico Nico Douga (it has a sister site that allows you to download their videos as MP3s.) What happen
-
I'm wondering how to display "bullets" from the bottom to the top (last to first) in a slideshow. Can anyone help?
-
How to import photos on ipad series 1 created in old windows pc into new imac?
Just taken delivery of new iMac and trying to import (and save) the photos on my iPad Series 1 into iPhoto or iTunes on the iMac. Understand that photos on iPad are stored as Saved Photos Album but don't know how to find the album and copy it inti iM
-
Adobe Captivate 5.5 and Neo Speech: issue to use Paul voice
Hello, I have installed succesfully Adobe Captivate 5.5 and then Neo speech Add-on. But unfortunately, when using Speech management function, I can't find Paul and Kate voice. These voices are not proposed in the voice list while the installation has