Securing Parameters send over Http (Reports 9i)

Similar Messages

• Security and Permissions over the reports created

  Hi:
  I have created 3 reports, 2 end users and One Group. But i dont know what i have to do to complete this task, i mean, i do not know how to share this reports to end users.
  Can somebody help me please.

  Strongly suggest posting to a windoze server forum.
  …is there any way to get full permissions like Windows when we go to: Right Click on folder -> Properties -> Security -> Advanced -> Permissions. is there something like that in Mac??
  Select the file/folder and CMD+I allows you to change permissions. Alternatively, see System Preferences->Shariing and Accounts (unlock the lock and CONTROL-click an account->Advanced Settings.

• How to call discoverer report with parameters over http link?

  Hi!
  I'm using oracle application server 9.0.4 (incl. discoverer).
  I have an oracle portal report where I want to call a discoverer report for each line over a http link. It is always the same discoverer report - with each line I want to pass parameters to my discoverer report.
  How can I pass parameters to the report? Is there another way rather than using GET parameters?
  Thanks
  Markus

  Hi Markus
  You need to determine whether you can in fact call a Discoverer report using a URL before linking it in Portal. You need to run the report in Viewer first and then see copy the URL from the address line of the browser. Then you open another browser and paste the URL. You may well be prompted for a username and password but hopefully the correct report with the right parameters will then execute.
  Assuming this works you then paste the same URL link into Portal and you should be able to get the report to run.
  Best wishes
  Michael

• Need help : how to send 3 parameters over http using Java POST

  I am trying to sending some data to agency company over http using Java POST
  They need 3 parameters and some contents like below
  1. Cmd : cmd=_RequestInsertNewLead
  2 Live : False
  3 XMLData : 3C%3Fxml+version%3D%........
  I already have XML done ,but I don't know how to send these guy over http
  is that like
  this.out = new DataOutputStream(os);
  out.writeBytes("Cmd");
  out.writeBytes(" cmd=_RequestInsertNewLead");
  out.writeBytes(" Live ");
  out.writeBytes("False");
  anyone could give help :)

  First of all, are you getting any exception?
  You didn't put much logging information in your code.
  You can also try this.Instead of doing sos.println(".....") try to build the output string using string buffer.
  Like:
  StringBuffer sb = new StringBuffer();
  sb.append("Some output");
  sb.append("More output");
  sos.print(sb.toString());
  sos.flush();Let me know if this works.

• Acknowledgement sent over http on 'secure' channel

  Hi,
  I have configured a 'secure' eMS 2.0 channel with a https url of my partner: https://partner/eindpunt
  When I use this channel for outbound messages it works ok, the message is sent over https.
  When I use this channel for inbound messages it sends an ack over http, so http://partner/eindpunt
  I suspect this is because we use a proxy that does SSL handling, it receives messages over https and sends these over http to B2B.
  Well, we tested without the proxy, so inbound messages arrive over https directly to B2B, same result: ack is sent over http...
  Is there a switch to turn on https for the ack?
  I use SOA Suite 11.1.1.4.0
  Groeten,
  HJH
  Edited by: HJHorst on Apr 15, 2011 4:02 AM

  When you create an inbound ebMS agreement, you have to create a ebMS channel under Remote Trading Partner configuration and select that channel while creating the agreement (in Remote TP channel drop-down list). This channel will be used to post the acknowledgement back to trading partner. You may specify HTTP/HTTPS URL, whatever you want, in that channels configuration.
  Regards,
  Anuj

• MAPI over HTTP not working correctly, Outlook 2013 clients prompting for credentials during profile creation or opening depending on security of virtual directory

  ENVIRONMENT
  -1 Exchange 2013 SP1 CU7 server with all roles that is also a hybrid server with Office 365 tenant, mailboxes are all on premise only LYNC online is being utilized right now.
  -Exchange 2013 public folders
  -Mix of Outlook 2013 SP1 and Outlook 2010 SP3 clients all fully update to day as of Feb 2015
  Outlook anywhere is working perfectly across all clients both internally and externally using autodiscover.  Both Outlook 2013 and 2010 clients can open the program and create a profile automatically via autodiscover and no additional logon prompts
  are seen.
  We set the internal and external mapi virtual directory URLs to a valid URL that also matches the Exchange 2013 SSL certificate.  We set the security to ntlm, negotiate on the mapi virtual directory.  We reset IIS and enabled mapi over http in
  the org config.  We run in to problems here.
  Outlook 2010 clients appear to be working fine.  We can create a new profile and open and close Outlook without any logon prompts and verify that MAPIHTTP and Negotiate are used to connect to Exchange.
  Outlook 2013 clients are having problems.  As soon as we try to create a profile it says your administrator has made a change that requires you to restart outlook and then a windows logon prompt appears. If we authenticate Outlook will open and connect.
    This logon prompt should not occur.    We can confirm that it is connecting via MAPI HTTP and Negotiate.
  If we set the mapi virtual directory to NTLM only then a logon prompt also appears during every open of Outlook 2013.  We can confirm that it is trying to connect with MAPIHTTP via NTLM in the outlook connection test screen.
  I do not understand this behavior by Outlook 2013 which was supposed to be designed with MAPI HTTP in mind.  I would think the same issues would occur with Outlook 2010 but they do not.  I am not sure how to resolve this and I am looking for help.

  I have the same problem. Exchange and Outlook are both up to date. After creating a new profile Outlook prompts for username/password. A lot of users also get this prompt while
  working - the profiles have been "migrated" from Exchange server 2010. <o:p></o:p>
  Niko, as i can see in your screenshot you do not have Mapi over HTTP enabled. Why? You can change settings in the security tab – if you have Mapi over
  HTTP enabled all options are grayed out (please correct me if I
  am wrong):
  This is a very annoying thing – does anybody else have the same problem?
  Any suggestions on this?
  Marc

• AS2 over HTTP Send port question.

  I have an application that builds and  sends flat and EDI files to FTP, FILE, SqlAdapter send ports and now they want AS2 over an HTTP port, I understand the AS2 settings (using party resolution, etc.) what I don't get is how/what exactly is receiving
  the message on the other side... They don't have a web service nor a page, I created a site to test but what do I do? Send an edi file to a url????
  Bico Bielich

  From your question I understand, you have been asked to send message through AS2. Do they also going to receive message through AS2 from their party? Is your question is about how to receive the message through AS2 which you also want to send over AS2?
  You can configure
  BTSHTTPReceive.dll to receive messages over HTTP and configure the Receive location with AS2 EDI pipeline component to receive messages over AS2 into BizTalk which can be subscribed by your send port filter or Orchestration ( if you have any process
  to be applied before sending the message over AS2 send).
  Check the Tutorial-3 part of AS2 which illustrate an example which receives an AS2 message through BTSHTTPReceive.dll. 
  Tutorial 3: AS2 Tutorial
  And following references shall help you configure the BTSHTTPReceive.dll:
  How to Configure IIS for an HTTP Receive Location
  Configuring BTSHTTPReceive.dll to work on IIS 7 
  If this answers your question please mark it accordingly. If this post is helpful, please vote as helpful by clicking the upward arrow mark next to my reply.

• Server to Rich Client sending XML over Http

  I need to send XML data from a Servlet to a rich client over http.
  Currently I am using HttpURLConnection and SaxTransformerFactory to do this.
  Is it better to use SOAP or XML-RPC in this scenario?
  Are there any good online tutorials comparing SOAP, XML-RPC and AXP-Java Net API?
  What are the factors that I need to consider for choosing between these alternatives?
  Please advice. Thanks in advance.

  XML-RPC and SOAP use XML as a way to communicate, but they are used to invoke certain function calls in an application independend manner, not to be used to send XML data. So I'd say it depends on:
  a) what do you do with the XML data?
  b) will you be expanding the application?
  c) how difficult is it to rework the current implementation?

• Java library to send a payload over HTTP

  Hi All,
  I want to create a stand alone Java application which should be able to send a payload(XML doc) over HTTP to a server (an Integration Server). Are there any APIs which can create this HTTP request given a payload and send it to a specified URL over the network.
  This doesn't need to be a SOAP message, just an HTTP request with a payload. And this should be asynchronous too, ie no response is required from the server. Can this be specified in the QoS?
  Any thoughts?
  Thanks,
  Sandeep

  Hi, your idea seems to be interesting. I guess you have a web site, and you want to feed the Http request to a specific URI under the web site. This is nothing new, since WSDL supports HTTP Binding, you can use HTTP Binding to send your HTTP requests to the web site. As to the java library, I thinks JAXWS can do the job. you may turn to WSDL specification for further details about HTTP Binding. I didn't write something like this, but I think it is practical. And if you work it out, it would be very kind of you to tell me how you do it in details by sending me an email: [email protected]
  Best Regards:)
  @smile@

• Sending audio data over http problem

  Hi Guys,
  We are trying to create a little servlet in Tomcat, which is capable to send audio files over http to an embedded media player. The definition of the player looks like:
  <OBJECT ID="Mp" CLASSID="CLSID:6BF52A52-394A-11d3-B153-00C04F79FAA6" TYPE="application/x-oleobject" WIDTH="0" HEIGHT="0">
  <PARAM name="uiMode" value="none">
  <PARAM NAME="ShowControls" VALUE="0">
  <PARAM NAME="AutoStart" VALUE="1">
  <PARAM NAME="ShowPositionControls" VALUE="0">
  <PARAM NAME="ShowStatusBar" VALUE="0">
  <PARAM NAME="ShowDisplay" VALUE="0">
  </OBJECT>
  <script language="javascript">document.Mp.URL = "here comes the url of the servlet with item ID";</script>
  The servlet reads the audio file and writes its content to the response with the following http header settings:
  getResponse().setContentType("audio/x-wav");
  getResponse().setHeader("Content-Transfer-Encoding", "binary");
  getResponse().setHeader("Pragma", "Public");
  getResponse().setHeader("Cache-Control", "must-revalidate, post-check=0, pre-check=0");
  getResponse().setHeader("Content-Disposition", "inline; filename=Media.wav");
  getResponse().setHeader("Content-Length", new Integer(MediaBytes.length).toString());
  getResponse().setHeader("Accept-Ranges", "bytes");
  So, everything works fine for wav files in Internet Explorer, but we are facing problems with Firefox, where it does not work. The embedded Media Player says that "Windows Media Player cannot play the file. One or more codecs required to play the file could not be found."
  But if we set the url to directly to the file on the server, everything works fine.
  We have analyzed the HTTP traffic in both situation, but we cannot understand how Internet Explorer/Firefox and Media Player works together:
  - how does Media Player know that the audio file is playable?
  - if the url points directly to the file, the HTTP headers does not contain any kind of information about the file type, only the extension is available; Media Player checks the file extenion in the url?
  - if the url points to the servlet, why Media Player in Firefox cannot determine the file type and throws error?
  Any help is greately appreciated!
  Thanks!
  Gabor

  If you haven't already, I would try breaking down the problem. First confirm you're getting serial data then confirm that netcat can send some data. Like this:
  xxd < /dev/tty.usbmodemfa121 | less
  nc -u 10.0.1.3 7000 <<< 'hello over there'

• Can we send  XML  over HTTPS ?

  Can we send XML over HTTPS ?

  malcolmmc wrote:
  meacod wrote:
  rabbits?
  Rabbits
  http://www.rabbitmq.com/
  They wrote
  +RabbitMQ is designed from the ground up to interoperate with other messaging systems: it is the leading implementation of AMQP, the open standard for business messaging, and, through adapters, supports XMPP, SMTP, STOMP and HTTP for lightweight web messaging.+
  They mentioned only HTTP ....Does HTTPS implied here ?

• No switch to HTTPS occurred, so it is not secure to send a password

  Hi,
  I have created one SAP Transaction iview with Tcode “HRESSIN_F16” which is accessed through ESS service in portal.  This iview uses system with logon ticket say ESS. When we access this iview in our local LAN using HTTP URL it works fine.
  But when we access it through HTTPS (https://www.mycompany.com) we get a logon popup saying “No switch to HTTPS occurred, so it is not secure to send a password” even though we have implemented SSO with logon tickets.
  What are the possible causes?
  Regards,
  Bharat Mistry.

  Hi Joerg,
  Thanks for your quick reply.I will do as you suggest and then let you know whatever result
  Ok I am explaning you in detail.
  I have created one SAP Transaction iview with Tcode “HRESSIN_F16” which is accessed through ESS service in portal. This iview uses system with logon ticket say ESS. When we access this iview in our local LAN using HTTP URL it works fine.We have Web dispatcher also.
  In our case their is situation of (SSL termination without metadata exchange).Means upto Web dispatcher HTTPS then from it to WEB AS HTTP.
  When we access it through HTTPS , we get a logon popup saying “No switch to HTTPS occurred, so it is not secure to send a password” even though we have implemented SSO with logon tickets.
  But even after this warning if We provide username and password set on ECC6,it gives error either user name or password is incorrect.
  And I am sure that username and password are same as ECC6.
  There is also no problem of authorization,we had also tried with SAP_ALL.
  Here it is web dispatcher profile parameter
  SAPSYSTEM = 8
  wdisp/shm_attach_mode = 6
  rdisp/mshost = ....
  ms/http_port = 8101
  DIR_INSTANCE = /secudir
  ssl/ssl_lib=/secudir/libsapcrypto.so
  ssl/server_pse=/secudir/sec/.....pse
  wdisp/auto_refresh = 120
  wdisp/max_servers = 100
  wdisp/server_info_location = /msgserver/text/logon
  icm/server_port_0 = PROT=HTTPS,PORT=443
  icm/server_port_1 = PROT=HTTP,PORT=0
  icm/HTTP/admin_0 = PREFIX=/sap/wdisp/admin,DOCROOT=/webdisp/admin
  wdisp/HTTPS/dest_logon_group = APPS
  wdisp/ssl_encrypt = 0
  wdisp/add_client_protocol_header = true
  icm/HTTPS/verify_client = 0
  icm/HTTP/redirect_0 = PREFIX=/, TO=/irj/index.html
  #icm/HTTP/redirect_0 = PREFIX=/, TO=/APPS~irj
  is/HTTP/show_detailed_errors = false
  icm/HTTP/error_templ_path = /webdisp/error
  icm/HTTP/file_access_0 = PREFIX=/images/,DOCROOT=/webdisp/images
  Thanks & Regards,
  Sunny
  Edited by: Sunny Patel on Jan 21, 2008 2:07 PM

• Is it possible to call API over http(not on ssl) from inside a secure page which is on HTTPS

  Hi Guys
  We are running a httplistner on localhost exposing http based end point. can we call this url from a website which is exposed over https when it opens from the same machine.
  Note: the site is being opened in browser is using HTTPS and is on SSL.
  if possible can some one please help.
  regards
  Mukesh V

  hjuarez wrote:
  Please re-read my first post. I think it is clear.I disagree.
  I want to import a dll It is not clear if you are aware that .dll files are a windows thing.
  but I have to run the java code on a solaris box
  in order to use its methods in java, It is not clear if you are aware using .dll files in a Solaris environment has nothing to do with Java.
  My question was if there is a solution -or not- that faces this kind of issues.It is not clear if you are talking about Sun Solaris or x86 Solaris.
  I don't know if it makes any difference, but it might.
  Maybe your question is: why this guy wants to do something like this?No. I am not concerned with that.
  Just trying to help you ask the right questions.
  And maybe you will find the answers yourself once you have the right questions.
  I'm integrating some biometric solutions on Sun Access Manager. But the biometrics vendor only provides windows ocx's and DLL's. And Access Manager is running in a Solaris box.
  I want to know if I can do something by myself or just tell the biometrics vendor that they must provide a Java solution.
  I have been trying to find something on the web, but I asked this forum because maybe someone has tried to do something similar.The suggestion by jschell is probably your most promising option.
  Integrating the .dll files with Java on a Windows box
  and communicating between Access Manager / Java on the Solaris box and your Java code on the Windows box
  (possibly using RMI).

• Windows Integrated Security with SSRS, Sharepoint 2013 and SSAS over http

  I have the following setup and problem:
  Sharepoint 2013 with SSRS in Sharepoint integrated mode
  SSAS 2012 SP1 with http access (IIS + msmdpump) enabled on the same box as SSAS
  Every component I have tried works fine with this (PerformancePoint, .bism connections, SSIS packages etc.), connecting over http using Kerberos and windows integrated authentication.
  SSRS (.rsds) connections in Sharepoint fail a connection test when using the same http connection string + Windows integrated authentication which works for everything else. The error is: "Unsupported data format: -> Microsoft.ReportingServices.DataExtensions.AdomdTestConnectionException:
  Unsupported data format:"
  SQL server profiler shows that the windows username is reaching the SSAS server is all cases.
  Kerberos delegation is set up for SSAS and is working.
  Switching the .rsds connection to saved credentials (same user as I tried with Windows integrated auth) works fine and SQL server profile logs look the same as the Windows integrated case.
  So, everything seems to work with Kerberos + http apart from SSRS ... any idea welcome. I did read that SSPI is not supported for http connections but then again, there are sites which give examples of exactly such connection strings. I can't find any
  mention of this case or exact problem anywhere ...

  For information, this was fixed by applying the .NET 4.5.1 patch as advised by MS support. Now http connections from integrated mode SSRS work ok.

• Design Choices and is LiveCycle needed? best practices for using RTMP/AMF over HTTP/XML communicatio

  Hi,
  I am new to flex/RIA. I am exploring different design choices especially in client server communication. On client side we will be using Flash based RIA (using Actions scripts).
  There will be some simple forms (like for login, registration, payments etc) and some simple reports including with several graphs and charts. Each chart might have 1000 to 1500 data points etc. There are not video or audio content as such. On server side we have Servlets, java API and some EJBs to provide the business logic and real time prices/content (price update is usually every 10 seconds) /data. Some of the content will be static as well.
  I have following questions in my mind. Is it worth it to use RTMP/AMF channels for the followings?
  1. For simple forms processing (Mapping Actions scripts classes to Java classes). Like to display/retrieve/update data for/from registration forms.
  a. If yes, why? Am I going to be stuck with LCDS? Is it worth it? What could be the cons for heavy usage/traffic scenarios
  b. If not what are the alternates? Should I create the web services? Or only servlets are sufficient (ie. Only HTTP+Java based server side with no LCDS+RTMP+AMF)? All forms need to communicate on secure channel.
  2. For pushing the real time prices/content which we may need to update every 15 seconds on user interface using graphs and charts. Can I do it with some standard J2EE/JMS way with RIA (Flex) on front-end? i.e. Flash application will keep pulling data from some topic. Data can be updated after few secs or few minutes which cant be predicted.
  3. Are there any scalability issues for using RTMP? What happens if concurrent users increase 10 times within a year?
  4. What are the real advantages of using RTMP/AMF instead of simple HTTP/HTTPS probably using xml based objects
  5. Do I need to use LCDS if I am using AMF only on client side? Basically I mean if I am sending an object in form of xml from a servlet. Can some technology in Flash (probably AMF) in client side map it an Action script object?
  6. What are the primary advantages of using LCDS in a system? Is there any alternate solutions? Can I use some standard solutions for data push technologies?
  I would like that my server side implementation can be used by multiple types of clients e.g. RIA browser based, mobile based, third party software (any technology) etc.
  I appreciate if you can kindly refer me to some reading materials which can help me deciding the above. If this is not the right place to post this message then please do refer me to the place where I can post such questions.
  Thanks and Kind regards,
  Jalal

  Hi Jalal,
  Let me see if I can help with some of your questions
  1. Yes, you can use LCDS for simple forms processing. Any time you want to
  move data between the Flex client and the server, LCDS (or its free Open
  source cousin BlazeDS) is going to help. I would expect you would use the
  mx:RemoteObject MXML tag to invoke server side code, passing it the form
  data input by the application user.
  2. If you need to push near real-time data, LCDS gives you the RTMP channel
  which can scale quite nicely. You can then use the mx:Consumer MXML tag to
  subscribe the clients to the messages, which can come from almost anywhere,
  include JMS topics or queues.
  3. RTMP (included in LCDS) is the best option for scaling to tens of
  thousands of users and the LCDS servers can be clustered to proved better
  scaling.
  4. The AMF3 protocol used over the RTMP channels performs much faster than
  simple XML over HTTP. See this blog posting for some tests:
  http://www.jamesward.org/census/.
  5. If you are sending a Flex application XML, then I would recommend using
  the E4X API to work with the XML. This is a pretty nice and powerful way to
  work with XML. If you want Actionscript objects (and probably better
  performance), then using AMF serialization to Actionscript objects is the
  way to go.
  6. Primary advantages? There are many, but mainly you can avoid thinking
  about the plumbing and concentrate on solving your application and business
  logic problems.
  Hope this helps you a little
  Tom Jordahl
  Adobe