Roles and Membership in stored

Similar Messages

• Web login (JSP, Servlet) with roles and users list stored using db4o

  Dear all,
  I would be grateful if someone of you (the masters out there) could help me with the build of an application where the first page will be a login page.
  The users will be devided in 3 categories (user, editor, administrator) and there member information will be saved in db4o database.
  If the user has not been registered in the past then a registration page should come up allowing him to be registered and keep his details in a db4o database on the same site.
  I am using JSEE8 and the site will be sent to a Tomcat server on the net.
  Please please please HELP

  I am giving some code for to redirect as the user is, But before that you have to made a extra coloumn "role" in your security table. and put admin, user as respective roles.
  doPost(HttpReq...........)
  String user = req.getParameter("UserName"):
  String pass= req.getParameter("Password");
  Then Connect the database with ur code ie class.forName etc
  String sql= "Select * from security_table where Username= ' "+user+" ' and Password= ' "+pass+" ' ";
  Statement stmt = conn.createStatement();
  ResultSet rs= stmt.exequteQuary(sql);
  if(rs.next)
  String S1=rs.getString("Username");
  String S2= rs.getString("Password");
  String S3= rs.getString("Role");
  if(S1.equals(user) && S2.equals(pass) && S3.equals.(admin)){
  req.sendRedirect(http:// full path name of the page)
  else if( S1.equals(user) && S2.equals(pass) && S3.equals.(user))
  req.sendRedirect(http:// full path name of the page)
  }else
  req.sendRedirect(http:// full path name of the Error page)
  }

• Roles and Database

  Hi All,
  When ever u create roles and groups where these are getting stored ?
  What is the use of MAX DB or Oracle What exactly we are storing in these databases?
  Thanks and Regards,
  Phanikumar

  Hi Phanikumar,
  The portal users, roles and groups are stored in the UME Datasource configured in your portal.
  If your UME Datasource is database, then All user, user account, role, and group data is stored in the database of the SAP NetWeaver Application Server (AS) Java.
  For more on UME Data Sources:
  http://help.sap.com/saphelp_nw70/helpdata/EN/7e/a2d475e5384335a2b1b2d80e1a3a20/frameset.htm
  Database Only as Data Source:
  http://help.sap.com/saphelp_nw70/helpdata/EN/38/caeaf49cce45d0a11fb8d7fef151b0/frameset.htm
  So it all depends how you configured your UME.
  Regards,
  Praveen Gudapati

• Why do we need to specify Role baseprovider and membership provider in Central Admin and security config files?

  Hi,
  why do we need to specify role base provider and membership provider files in central admin and securiy config files.
  thanks,
  gaurav

  We use 3 settings in Forms based auth:
  1 Membership = This contains Users and groups information. (This table also has username and password)
  2 ConnectionString = Connetion details to connect to database is stored here(servername, databasename, username, password, port )
  3 Role = This table contains all the Roles (Admin, contibutor, etc of the data source)

• Business Partner Role  and Business Partner Grouping

  Hello Everybody!
  Business Partner Role  and Business Partner Grouping.
  Which correlation ist between this attributes existing.
  In which table are this infos stored, In order create I can use
  e.g. BUPA_CREATE_FROM_DATA
  but how is the way inversely. Suppose I want to abtain the information
  about a existing business partner which group he has etc.
  Regards
  sas

  Dear Sas,
  Business Partner Grouping is used to determine the number ranges to be used by the business partner at the time of creation.
  Business Partner Role determines the subset of all the data available to be shown and edited.
  I will give you a very simple (but imaginary) example for understanding the role concept: the business partner in a role of employee might allow you to enter a department id. So this field should be available to you for input when you edit the business partner in the role of employee. But suppose the same business partner is also a person who is your customer. And your customer will require a default payment term. So this field should be available for input when you edit the business partner in the role of a customer. Also, some applications use these roles to determine if the business partner is suitable for particular transaction. In the above example, Payroll application will only allow those Business Partner to be used if they are maintained as an employee. Similarly the sales application can mandate that you can only sell a product to a business partner if he is maintain in a 'customer' role.
  Please understand the example above is not real but given for the understanding of the concept of role.
  You can use the function module 'BUPA_CENTRAL_GET_DETAIL' to find the business partner group. And you can use the function 'BUPA_ROLES_GET' to find the role assigned to a Business Partner.
  Regards, Rakesh

• Where are role and administrator settings saved?

  We have had issues in the past that have caused us to have to
  re-setup our site, including all administrative settings and all
  roles and users. Surely all of this is saved somewhere. If we just
  knew where, we could backup the info for an easier restore if
  further problems ensue.
  Anyone know how to backup site settings?

  I got the following reply on a separate forum:
  quote:
  For a website that has been administered by Contribute
  (Publishing server is not enabled), you would find an _mm folder in
  the website root on the remove server. This is a contribute
  specific folder and it contains the administrative settings, role
  information and users.
  For CPS managed sites, the _mm folder still holds the
  information about the administrative settings and role information.
  The user information of the sites are stored in the Database folder
  of CPS. The Database folder can be found in the following location,
  <CPS Install Path>\Database.

• Table that stores the business role and user id mapping

  Hi,
  i want to know the table that stores the Business role and the business role and user id mapping in CRM system.
  Thanks in Advance.
  Regards,
  Pricy

  Hi Mary,
  There is no direct table but there is a way to find it.
  HRP1263 is the table where business roles are stored when maintained at org level. These are stored against the Position.
  For getting user ID and position linkage refer table HRP1001.
  In HRP1001 table use below criteria to get the User and Position.
  OTYPE = CP
  SCLAS = US
  SOBID = User ID
  ENDDA = 31.12.9999
  Get the OBJID
  Query the HRP1001 table again with following
  OTYPE = CP
  OBJID = OBJID from above Query
  ENDDA = 31.12.9999
  SCLAS = S
  SOBID = Thats Position.
  Pass the position to HRP1263 as below.
  OTYPE = S
  OBJID = POSITION
  PROFILE - Thats business role assigned for the given position and user.
  Hope this is helpful.
  Regards,
  Naresh

• Implementing roles and rules based authorisation with Azure AD

  Hi all,
  I would greatly appreciate some input on feasibility and patterns I should look at for a complex technical requirement that I am currently tasked with designing.
  We have a system that comprises a web and mobile app. In the past we have implemented session based authentication through ADAM and authorisation through custom business rules contained within the applications. The authentication mechanism is in the process
  of being migrated to Azure AD and authorisation is planned to be moved to Azure AD for our next release.
  Existing authorisation within our web application is already complex. We have users that belong to different groups with a range of permissions such as read, write or admin. Additionally each user is granted access to N customers and also N locations within
  each customer. We have a requirement that any number of combinations of customers and locations be supported. Users also need to have different permissions for each entity, i.e. read access to customer 1 location 2, write access to customer 4 and administer
  customer 7. Currently these privileges are maintained within a relational database and enforced as part of each PageLoad(). Essentially this is a combination of roles and rules based authorisation.
  We are struggling to represent this complex matrix structure within Azure AD and efficiently implement the authorisation decision in Azure AD. The driver for this technical requirement is to provide re-usability of the authorisation component to other (as
  yet unidentified) applications.
  Currently the best option we have come up with is implementing custom attributes for each class of permissions and storing within this 2048 bit field a bitmask that represents whether this permission is granted for a given location (which has a many to one
  relationship with customer).
  Any help or comment would be gratefully received,
  Phil

  Hi
  When "Advance routing" is used for Task assignment; the task service asserts the folllowing fact types : Task, PreviousOutcome and TaskAction to the rules engine. These facts gives all the reqd info about the task (like outcome of the participant, task stage .. etc)
  Now in the defined ruleset; we can have rules as per our requirement that can extract info from the asserted fact types and assign task to the required/next participant.
  Also note that we write the advance rules for exception cases only.
  For example; let's say all participants have 2 possible Outcomes [COMPLETE, RECHECK]. We have defined the ideal task routing flow as :
  Participant A -> Participant B -> Participant C. This is the flow when all participant selects "COMPLETE"
  Now suppose B selects outcome as "RECHECK" then the task shld move back to A. So for this case only we need to write a advance rule.
  Pls refer to the code sample at : http://download.oracle.com/technology/sample_code/hwf/workflow-106-IterativeDesign.zip
  Also dev guide : refer to section 28.3.7.2 http://download.oracle.com/docs/cd/E14571_01/integration.1111/e10224/bp_hwfmodel.htm#BABBFEJJ
  Thanks
  Edited by: Kania on May 19, 2010 2:41 AM

• Role and Privileges for OLAP metadata

  Hi,
  Is there any document which specifies what all roles and privileges are required for creating any OLAP meta data ( Dimension, Cube, Measure and Catalog etc)?
  I think these are impt roles:-
  SELECT_CATALOG_ROLE
  EXECUTE_CATALOG_ROLE
  DELETE_CATALOG_ROLE
  RECOVERY_CATALOG_OWNER
  OLAP_DBA
  OLAP_USER
  Through system/manager I created one user TEST_BI_OLAP and granted CONNECT.
  After login as TEST_BI_OLAP I am able to create dimension. Why it is possible whereas doc says user should have OLAP_USER or OLAP_DBA role associated with it.
  OR only CONNECT is sufficient for creating OLAP metadata!!!!!
  regds
  P

  The difference is in what the end user sees. Say you want to deploy an analytical workspace based off of a ROLAP dimensional cube. Here is how I've been approaching the problem:
  1. Create a new user with the OLAP_USER role to hold the AW (say "AW_USER")
  2. Now log in with a userid that has OLAP_DBA role, and create the AW utilizing the ROLAP cube - but direct the AW to be stored in the AW_USER schema. Note that because it is in a separate schema from the ROLAP cube, you will not need to append characters to the dimension or measure names.
  3. Have end users log in using the AW_USER name. Then they will see the AW information, but they will not have access to the ROLAP cube data.
  Hope this helps,
  Scott

• Configuring roles and users (adf security) application context wise.

  Dear All,
  I referred this tutorial (http://biemond.blogspot.com/2008/12/using-database-tables-as-authentication.html) which shows how to hook up adf security with database schema but at domain level which will be common to all applications in that domain. I want to make it different to each application. (i.e each application will use differene database schema for storing user credientials i.e enterprise roles,application roles and users.)
  Can any one please point me to proper way..
  Regards,
  Santosh
  jdev 11.1.1.2.0

  Dear Frank,
  <i>
  Instead you have a single identity management system and have the application policies being different for the applications.Using ADF Security, users and groups can have different privileges in different applications
  </i>
  suppose i have 3 applications that use adf security, the users will be common to all applications. right..?Roles and group can be different for applications.
  application polices means roles and group..?
  So how it(application polices) can be made different for applications? is it inbuilt or some configurations needed ?. Can you point me to some blogs or tutorials for more reference.
  Bet: Incase i hook up adf security with database schema.
  Regards,
  Santosh.

• Roles and Workbooks

  Hi,
  How to create a Role and make it available for the end-users so that they can share the workbooks among themselves. Right they are allowed to save only under favourites, which are not visible for all.
  What kind of security or authorisations or setting, that should be done in order for the role to be seen in the query/workbook save window.
  Any help would be appriciated
  Thanks
  Ace

  Hi Ace,
  The roles created for users to save workbooks into are dummy or empty roles. The way this is managed is that workboosk relevant for a group of users are stored under this role, and then the role is assigned to different users accordingly. Usually all users are not given the ability to save into a role. All are allowed to save to favourites and a few can create workbooks and save them to roles.
  As an otion for users not allowed to save workbooks ot roles, yet needing to share them, the workbook can be saved as an Excel file and emailed. The receiver can then log into BW and refresh the data.
  Hoep this helps...

• BP Role and status in CRM problem

  Hello everybody ,
       i am new in CRM and i have to read the Business partner value,role as sold to party and its status(here Blocking reason is the field)in transaction BP and i have to use this status value in other transaction here i am seeing this bp value and status is the structure field,so can any one tell me database table
  where the BP number, role and status field(here Blocking reason is the field) is being stored.
  Thanx. your reply is valuable for me and eagerly waiting.
  Regards
  Prince

  Hi Prince,
  I guess the Field Status as a attribute of BP,As you told BP is nothing but Sold-To-Party.Then Sold-To-Party is refrenced character or 0Customer.So that you can check the Status field in 0customer attributes, or Sold-To-Party attributes.
  Then the table you can get is the Master Data Table of 0Customer.Go to /BI0/MCUSTOMER
  Hope this helps
  Regards
  Happy Tony
  <b>Points == Thanks</b>

• VIRSA tables for users, roles and profiles sync?

  Hello,
  I am in a customer, implementing CC 5.2. At the first time, we tried CC 5.2 in DEV environment, and when everything was OK, we redirect RFC connectors to QA environment.
  After doing user, roles and profiles sync in DEV and in QA environment too, I have 4.500 user (1.100 from DEV + 3.400 from QA) when I recover all users "*" with "user level - risk analysis" from the "Informer" tab.
  It seems that "users, roles, profiles, sync" works like and "APPEND", but I did a COMPLETE syncronization not an INCREMENTAL.
  If I start an analysis for QA environment, CC works properly and only analyse QA users (3.400). But I would like to clean CC tables (users, roles and profiles) in order to have a clean copy of QA in CC.
  Which VIRSA tables (users, roles and profiles) I need to clean?
  It is necessary to do the same with authorization and text objects? Which would be these tables?
  Thanks in advance,
  Victor

  Hi all,
  SAP GRC Support provides a script which allows you to remove a connector since it does delete all data link to it. Anyway, I would recommend a deep analysis of it and find out if it does what you really want to do.
  Víctor, if what you want to do it is just to remove all user, role and profile master data (stored in tables VIRSA_CC_SYSUSR and VIRSA_CC_GENOBJ) you could upload a text file using data extractor functionality with the delete field set to X. Doing so user, role and profile master data will be removed from CC database.
  In order to use data extraction functionlaity you connector must be of type "File Local".
  Be careful about removing data directly from DB since, as Prem states, you might loose the DB consistency.
  Hope it helps. Best regards,
     Imanol

• Query user roles and access

  hi,
  How can query user roles and access in whole database? I want to list username, status, rights, and role
  thanks
  P

  Hi,
  The data dictionary view dba_users has one row per user.
  The data dictionary view dab_role_privs has one row for every distinct combination of user and role that actually occurs ion your database,
  Are you interested in system privileges? See dba_sys_privs.
  Are you interested in individual grants, like the privilege to UPDATE a given table, or the privilege to execute a given stored procedure? See dba_tab_privs. (Don't be fooled by the name; it's not just for tables.)
  I hope this answers your question.
  If not, post some CREATE statements, that create tables, roles, and whatever else you want, and some GRANT statmeents that grant privileges on those objects. Pos the results that you would want to get from those objects and grants.

• Use roles and/or cos for delegated administration?

  I am using iDS 5.1 SP1. I want managers of departments to be able to modify certain attributes of people in their department. I am aware of the userdnattr aci keyword but I read in the 5.1 admin manual that it is being deprecated.
  Here is our current set up. We have an ou=people and an ou=departments. People are in ou=people and their entries have an attribute that denotes their department membership by a department code. The departments are in ou=departments with an entry for each department listing basic information like name, address, telephone, and the department code. They could contain other attributes like mamanger to make a roles and/or cos mechanism for delegated admin work. So fee free to suggest anything. The departments are there merely for lookup purposes now and are not connected to the people entries.
  The main issue I cannot grasp is how to easily enable managers to modify entries in their respective departments. I could add managers to the department entries and based on the department code in the department entry somehow match that to a department code in a people entry? I am thinking there is a cool way to do this with roles and/or cos, but can't figure out how and what aci to create.
  Also if there is an easy way to do this with groups let me know.

  I am using iDS 5.1 SP1. I want managers of
  departments to be able to modify certain attributes
  of people in their department. I am aware of the
  userdnattr aci keyword but I read in the 5.1 admin
  manual that it is being deprecated.The new "userattr" ACI keyword should be used instead. It does everything that userdnattr did and much more.