Security Page

Similar Messages

• Why would Safari try to insert an s, as in https, into the facebook log in.  Safari won't open the secure page. Advice?

  Why would Safari try to insert an s, as in https, into the facebook log-in page.  "Safari can't connect to this secure page."  I've checked preferences and cannot find a reason for this change to the regular facebook address. Safari 5.0.5 on MacbookAir.  I can't even download the updated software.

  If you leave your session idle for a while, the site might log you out due to inactivity, but... I wouldn't trust that, either.
  Usually your bank will have a link, menu, or some other way to log out. Certainly that is the best thing if you can do it. Sometimes if a site is not fully compatible with Firefox its style rules will result in a jumbled layout. You can disable all the style rules and view the site in a plainer layout to see whether you can spot the missing link. To do that:
  tap the Alt key > View menu > Page Style > No Style
  (The tab will remain unstyled going forward. You can use the same menu to reapply the page's style sheets later.)
  Also, if you want to break the connection between Firefox and your banking session, you can clear your cookies for the bank site. This won't necessarily have any effect on your banking session ''on the server'' but should make it impossible for someone to use your Firefox to do anything in that session. To clear cookies for the current site, you can use the Page Info dialog. Here are 3 ways to open it:
  * right-click and choose View Page Info > Security > "View Cookies"
  * Alt+t (open the classic Tools menu) > Page Info > Security > "View Cookies"
  * click the padlock on the address bar > More Information > "View Cookies"
  In the dialog that opens, you can remove the site's cookies individually.
  Then reload the page and the site should behave as though you are not logged in.

• Why are security issues at bottom of security page

  When first using firefox noticed at bottom of security page several security issues.

  I'm pretty sure you want the iTunes support forum here:
  https://discussions.apple.com/community/itunes
  This is for iTunes U (iTunes for Universities).

• Self secured page not working in multiple sessions of same browser

  Hi
  I have created a selfsecured page by making security mode of page 'selfsecured' and adding validateParameter() in page controller.I didnt do guest user/resp setup as I want user to manually provide user id and choose responsibility,XLA_LINESINQ_GL_DRILLDOWN is a seeded function so no changes there.
  I am seeing very inconsistent behavior.
  1)At some times when I invoke function through url
  http://rws60180rems.us.oracle.com:8049/OA_HTML/RF.jsp?function_id=XLA_LINESINQ_GL_DRILLDOWN&jeHeaderId=64524&jeLineNum=1&jeSource=Payables&searchType=customize
  I get error "You are not authorized to access the function SLA: View Subledger Journal Entry Linesfrom a GL Journal Line. Please contact your System Administrator."
  2)On other times url works and user is taken to Ebs R12 login page,after providing login credentials user is able to view the page.But If I invoke same url or url with different parameters in different tab of browser or different window of same browser,get following error.Basically user can invoke this function and use this url only one at a time which is not practical in real world
  "You are trying to access a page that is no longer active.
  - You may have attempted to access to this page directly by bookmarking the page or copying the URL. This page does not support bookmarking.
  - The referring page may have come from a previous session. Please select Home to proceed."
  Am I missing something in my implementation?Are there any fnd profiles which control page behavior.Does OAF support that self secured pages successfully open in multiple browser windows.
  Preeti

  Hi,
  Is there any specific requirement to make the page as self secured, as most of the self selcured pages are build for guest user account. If there is any, kindly share.
  Now lets talk about the behaviour of the pages in different scenarios
  1) I get error "You are not authorized to access the function SLA: View Subledger Journal Entry Linesfrom a GL Journal Line. Please contact your System Administrator."
  Comment: As OAF pages does certain initialization like setting org_id, language etc based on the login user. But as you are trying to access the page by directly hitting the URL on browser, this might be one of the reason that you are getting above error.
  2) On other times url works and user is taken to Ebs R12 login page,after providing login credentials user is able to view the page.But If I invoke same url or url with different parameters in different tab of browser or different window of same browser,get following error.Basically user can invoke this function and use this url only one at a time which is not practical in real world
  Comment: As there is an active transaction and session for the browser, so it won't allow you to start with another transaction. But still can you try to do the same in another machine. Some of the browser allows you to have different session.
  Regards,
  Gyan

• Making sure you can't use back button to go back to a secure page

  I am wondering how I can go about ensuring that the user of my application can not use the back button to go back to a secure page after leaving it.
  What is the easiest way to implement this added security?
  Thank you.

  I think the easiest way would be to put in a javascript that opens a page of your choice (such as the home page of a site, for example) and another javascript that closes the browser window. You can get the new window script by clicking here. I'm not sure about the close browser window javascript, but I know that there is a close browser (kills the whole browser, and all the open windows) available here, but that may be a bit overkill. I think you could redo the javascript on the first one so it says something like close_window , but I'm new to javascript and wouldn't know for sure...
  Hope this helps!

• FLASH CMS websites - secured pages

  Hi,
  I’m looking for a way to build FLASH websites, which the user will be able to edit and control its content himself. You know, a CMS website, but then totally build in FLASH. I already started Googling on this a bit and came across these 2 things
  -          www.flashcontentmanager.com
  -          www.flashloaded.com/flashcomponents/fcmspro/
  especially that last one looks interesting, but it does cost a 300 dollars for 1 website, which maybe isn’t that expensive, given it’s apparent completeness and easy to use interface, but I still want to explore other potential possibilities.
  What is needed on the website, is the possibility to add text, pictures , videos and extra pages by the user himself. Also, and maybe this is the most important / difficult, there has to be the possibility to make secured pages where the client can view his pictures without downloading them à the man that’s needs this website is a photographer that wants to offer his albums to the respective client for which he made the pictures, online. 1 client should be able to watch his pictures on 1 secured page of the site, another client should be able to watch his pics on another secured page of the site, without being able to download them... I hope you know what I mean, I’m sure you know what I mean.
  I believe this is possible with FCMSPRO on the flashloaded website (between the keyfeatures list on the website I see: ‘Allows for multiple users with different file upload permissions’ – so I assume that the man will be able to provide costumers a password with which they can watch their pics online, without down- or uploading something themselves?)
  Is there someone that can help me on this? Is there anyone that has had some experience with FCMSPRO, Flashcontentmanager or other CMS systems already? I’m curious if I’m going to get out of this. If it will be worth deepening myself in this, or if it will be best to tell the photographer to find someone else for this job.
  Thanks

  The method i showed above does have a front end and a back end. The code i posted above would be part of the image module in the back end for deleting images.
  1. You don't put images and files in the database, you create an uploader that uploads the files (pictures, whatever) onto the server and then writes an entry into the database telling it where the picture is stored, what the name of the file is, what type it is, whatever you need. Then when your website connects to the database and downloads the info and stuffs it into arrays, it iterates through the photo array and downloads the photos as needed using the URL you stored.
  2. Loading into the database is covered with the above tutorial but i'll post my database retrieval code anyway.
  This connects to a database and stuffs each column of a database into an Array. Then if i wanted to actually download the photos i mentioned by the urls just retrieved i'd use:
  3. Some people put them in seperate swfs at password protected URLs because its more secure but you don't necessarily have to.
  flash CMS isn't well covered, i spent a long time looking for tutorials and i definitely didnt find any that worked well. If you're still working through the basics like AS3 tweens, loaders, and loops, then you're going to want to figure those out first. Those are supported well online, though.
  Finally, here's a good example of some flash CMS: http://group94.com/#/flash94/
  Good luck.
  EDIT: Sorry for retracting my code, the client i did it for wasn't happy.

• The lock symbol does not appear when I open a secure page in firefox 4.0. Has this been removed?

  Previously, using firefox 3.6.1, when I opened a secure or encrypted page, the lock icon appeared on that page.
  When I upgraded to firefox 4.0, the lock icon is no longer appearing when I open a secure page. Please confirm whether this has been removed or in the alternative whether there is a way to determine that the secure or encrypted page is indeed secure to use.

  In Firefox 4 you no longer have the Status bar that showed the padlock in previous Firefox versions.<br />
  The padlock only shows that there is a secure connection and doesn't guarantee that you are connected to the right server.<br />
  So you might still be connected to the wrong server if you make a typo in the URL and someone has claimed that mistyped URL.<br />
  The functionality of the padlock has been replaced by the [[Site Identity Button]] on the left end of the location bar.
  See also:
  * http://www.dria.org/wordpress/archives/2008/05/06/635/
  * https://support.mozilla.com/kb/Site+Identity+Button

• Airport Extreme Not Loading Secure Pages

  I have two machines, a Macbook Pro connected by WiFi and a Mac Pro connected by Ethernet Cable to an Airport Extreme. The Airport Extreme is connected to a Cable Modem. The symptom is a failure to completely load a Secure page. A typical example was trying to make a donation to Wikipedia. The succesion of pages load OK until loading  https://paypal. The page load then hangs with 39 of 40 items loaded. However, some Secure pages load OK. I've also noticed a slowdown for all page loads, secure and non secure. These symptoms dissappear when I connect my machines directly to the Cable Modem via Ethernet cable. I've power cycled the Airport Extreme and the Cable Modem, and reloaded software onto the Airport Extreme with no change in symptoms.
  Message was edited by: Lawrence of Berkley

  Have you tried clearing your cache, and cookies?
  Try that first before anything else if you haven't.

• Moving from secure https page to non secure page on same site

  Secure https page navigation to a non secure http page still has you in a secure url when navigating within the same site, when user clicks to leave the secure page to go to a non secure page the address bar still has them in a secure https url. Is there a way to code the nav to not allow this to occur? Tried adding a full url to the non secure pages and that worked but then my active states of the nav stops working. Any ideas or scripts that may help here? Thanks!

  There's a script for that! Here's a link to it...
  http://kb.worldsecuresystems.com/598/bc_598.html#main_Returning_a_customer_to_a_default_UR L_after_viewing_the_receipt_page
  @webmosphere
  www.webmosphere.co.uk

• Loads part of secure page

  Logging into Schwab brokerage all views are secure.
  Type in Symbol for a Stock: I get back the chart.
  Type in Symbol for an ETF: I get nothing...well a blank page anyway.
  PPC or INTEL same result. {Safari 2.0.4}
  Dumped Safari Cache. Tiger Cache Cleaned. Same result. Stocks 1 ETFs 0.
  Thanks for the discussion "won't load secure page" below since it will give me some other ideas to try. I'll probably keep my broker and wait for the next version of Safari till this thing plays out. If anything works...will report.
  Firefox? Loads everything on both PPC & Intel. No Problem
  -wbajr tbc
  eMac DVD & iMac intel   Mac OS X (10.4.8)  

  Hi Wesley!
  Yes that was going to be my suggestion too is how does Firefox handle it? The only other thing I can think of is do you have pop-up blocking disabled? That might not have anything to do with it but I've noticed on several bank sites and also Ameritrade that with pop-up blocking on it gives some problems. By the way, Ameritrade is mostly ok but has a glitch or two with Safari as well. Funny thing is the home page doesn't even load properly with Safari. You would think their designer took a look at something other than windows huh???
  Reg

• Recommended way to secure page

  Hi Experts,
  Can u tell me what is the recommended way to secure a page??
  1. secure page def
     or
  2. I have to add page in bounded taskflow and secure TF.
  Thanks

  If you have to restrict access to a whole page which is not part of a BTF, it will be enough to secure the page's PageDef. It is not necessary to wrap the page in a BTF.
  If the page is part of a BTF, you cannot secure it alone but you can secure the whole BTF only. Permissions on a BTF are propagated to all the TF activities within the BTF (including the view activities - pages and fragments).
  If you need to apply security policies only on particular components within a page, then you can use EL expressions like #{securityContext.userInRole['MyRole']} in order to exclude the necessary components from the view tree (e.g. using components' "rendered" attribute), to hide or disable them (e.g. using their "visible" and "disabled" attributes), to make them read-only (e.g. using their "readonly" attribute), etc. Have a look here for other useful EL expressions:
  http://docs.oracle.com/cd/E23943_01/web.1111/b31974/adding_security.htm#BGBIFHDF
  For example, you can use this approach to secure menu items and command components (e.g. buttons and links) in other pages that navigate to a secured page or BTF. You should disable or hide these components conditionally if the user has no rights to access the corresponding secured page or BTF. If you do not disable/hide these components, an user could use them, the framework would try to navigate to the page and an exception would be thrown because the user had no rights to access the page.
  Dimitar

• Self secure page always displaing Login User Name as GUEST

  Hi,
  We need a self secure page which doesn't prompt for oracle username and password in OAF
  We devloped such page in OAF but every time it is displaying Login User Name As Guest.
  By using below site i did developed self secure page
  https://blogs.oracle.com/manojmadhusoodanan/entry/self_secured_page_creation_in
  I want to find out my OSUSER Name from OAF .my requiremnet is based on login user i need to restrisct or display data on page.
  If i execute below query from database is giving my OSUSER name but same is giving Server name if i execute same sql through OAF.
  SELECT sys_context('USERENV', 'OS_USER') BUN FROM dual;
  SYS_CONTEXT('USERENV','OS_USER')         IN OAF   ------------  oracusd(Server name)
  prkaduri
  Please guide me on this .Its very urgent requiremnet.
  Regards
  Panduranga reddy

  If you are using BIP11g and using the default installation then BIP11g security mode is set to Fusion Middleware.
  All users and groups are controlled by Fusion Middleware Security.
  Any authenticated user will be able to run reports as in former BIP releases "guest".
  But also noticed the authenticated user will also have a privilege you want to remove
  as for example permission to delete report.
  Take a look at this link:
  http://download.oracle.com/docs/cd/E14571_01/bi.1111/e10543/authentication.htm
  Cheers
  Jorge
  p.s
  1. In 11g you will have to read a lot before you can properly use the software, sorry.
  2. If this answers your question please grant the points and close the thread
  Edited by: Jorge Anicama on Mar 23, 2011 10:15 AM

• Locking/password securing pages documents

  Is there a way to lock or password secure pages documents? I am starting to journal in pages and I'd like to keep the files private. I know there's a way to restrict privileges for other user accounts but I'd like to be able to password secure the file on my account as well. Is there a way pages would allow me to do that?

  passing a record id in the url is not a problem as long as
  you use
  <cfqueryparam> in your queries to prevent sql injection
  attacks. passing
  sensitive info in url (usernames, passwords) is not a good
  idea at all.
  you may also want to set the scriptprotect attribute of
  <cfapplication>
  tag in your Application.cfm to appropriate value ("all" is
  good).
  on your hosting server they should have robust error
  reporting turned
  off - if they don't consider finding another host...
  Azadi Saryev
  Sabai-dee.com
  http://www.sabai-dee.com

• Unable to view secure pages

  Guys - I am trying to view private/secure pages of our site via Browserlab and not having any luck.
  Steps taken:
  1. Logged into Browserlab (Firefox 7.0)
  2. Logged into our private site in a different tab
  3. Pressed the shortcut key (Ctrl+Shift+Tab) and NOTHING happens as no pages are rendered in BL
  Notes: I have Firebug for FF installed as an add-on and in the 'Options' settings, the 'Allow Read Access' & 'Preserve HSS Hacks' are selected.
  By simply using Browserlab for an external site, I am able to view the pages, but cannot interact, let's say if I have to login to Gmail.
  So ultimately, I have two problems - I cannot interact with external sites, other than view them and I cannot view internal sites AT ALL!
  Is there any type specific authentication I need set in FF to allow Browserlab to work? Any advice would be apprecatied.
  Thx

  Hey Mark – It seems that was the issue. I did not have firebug installed but the add-on to firebug installed.
  I am all set now.
  Thx for the response.
  Tauhid Rehman
  Quality Assurance
  Prosper Marketplace Inc.
  111 Sutter Street, 22nd Floor
  San Francisco, CA 94104
  www.prosper.com <http://www.prosper.com/

• Where is the lock symbol that tells me I am on a secure page in Firefox 5.0

  I just recently upgraded to Firefox 5.0. The old version had a little lock in the bottom right hand corner that signified that I was on a secure page (for banking, shopping checkout, etc). I do not know where to check on the page of this new version to be sure that I am on a secure page before entering the required checkout info.
  Thanks for your help.

  The padlock only shows that there is a secure connection and doesn't guarantee that you are connected to the right server. So you might still be connected to the wrong server if you make a typo in the URL and someone has claimed that mistyped URL. The functionality of the padlock has been replaced by the Site Identity Button on the left end of the location (address) bar.
  https://support.mozilla.com/en-US/kb/Site+Identity+Button
  http://www.mozilla.com/en-US/firefox/security/identity/
  This has actually existed since Firefox 3.0
  If you still want a padlock icon also then
  https://addons.mozilla.org/en-US/firefox/addon/padlock-icon/

• You have attempted to access a secure page without the appropriate authorization. I have used this website every week and today received this error message. I can access it with Internet Explorer.

  I received an error message after attempting to log in to a website. Access prohibited. You have attempted to access a secure page without the appropriate authorization.
  I access this website at least twice a week and now I get this error message. I am able to access this website through Internet Explorer. Is there something I can do to fix this problem, so I can use Firefox?

  Maybe:<br />
  Dafizilla Table2Clipboard: https://addons.mozilla.org/firefox/addon/1852