SSO in APEX 4.1
Hi!
Can anybody tell me if there any difference in configuring SSO for APEX 4.1 depending on which HTTP Server it is using (Embedded PL/SQL Gateway or Oracle HTTP Server).
And also, if I have several applications in the same domain and I have created a custom authentication scheme that checks user credentials against LDAP, would that allow me to have a true SSO experience, whem user doesn't have to re-enter his credentials after having signed-in to the first application?
Or I will have to add some procedure that creates and stores user cookies and deletes them on logout?
After upgrading to APEX release 4.1.0.00.32 we received the following errors when attempt to authenticate to an application setup to use "Oracle Application Server Single Sign-On" as the Scheme Type.
Error message:
Error processing SSO authentication.
ORA-06550: line 2, column 1: PLS-00201: identifier 'WWSEC_SSO_ENABLER_PRIVATE' must be declared ORA-06550: line 1, column 45: PL/SQL: Statement ignored
ORA-06550: line 2, column 1: PLS-00201: identifier 'WWSEC_SSO_ENABLER_PRIVATE.GENERATE_REDIRECT' must be declared ORA-06550: line 1, column 45: PL/SQL: Statement ignored
This has been identified as BUG 12973090 - SSO WITH SPECIFIED PARTNER APPLICATION NAME FAILS WITH PLS-00201
Workaround:
The work around is to leave the “Partner Application Name” field blank in your authentication scheme. To do this go to: Application Builder > Your Application > Shared Components > Authentication Schemes > Click the Edit Icon on your authentication scheme that uses Single Sign-On > set the “Partner Application Name blank as follows > Apply Changes.
Oracle support says development is currently working the issue and the bug will not be fixed until APEX release 4.1.1.
Sean
Edited by: Sean Harris on Nov 2, 2011 7:59 AM
Similar Messages
-
Integrating SSO in APEX 3.0
Hi,
We're trying to integrate Oracle SSO with APEX follwing this how-to:
http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
We have two major issues:
1) We're following the instructions to create an authentication schema like "Oracle Application Server Single Sign On (My Application as Partner App)".
After completing all the steps with no apparent error, we created our custom procedure:
procedure process_success(urlc in varchar2) as
begin
wwv_flow_custom_auth_sso.process_success(urlc => urlc,
p_partner_app_name => 'MY_PARTNER_NAME');
end process_success;
But when we access the application we get the following error:
ORA-04067: not executed, package body "PROVES.WWV_FLOW_CUSTOM_AUTH_SSO" does not exist ORA-06508: PL/SQL: could not find program unit being called
Error ERR-10560 Error executing wwv_flow_custom_auth_sso.portal_sso_redirect.
It seems it is searching WWV_FLOW_CUSTOM_AUTH_SSO inside our custom schema PROVES, when it should call the PUBLIC SYNONYM. We've checked and the synonym exists and we've granted acces to it from our custom schema.
Any ideas?
2) It's not clear for us which URL we should use when registering the app via SSO. If we have application number 104 (in APEX), should we call this URL?
http://educacio-pc.es.oracle.com:7778/pls/apex/f?p=104
instead of this one:
http://educacio-pc.es.oracle.com:7778/pls/apex
Many thanks.Hi Scott,
First of all many thanks for your reply!
I'd like to understand better what's the difference between "My Application as Partner App" and "Oracle Application Express Engine as Partner App" because the documentation is not clear to me. I think I misunderstood its meaning, I though that using "Oracle Application Express Engine as Partner App" was for integrating the whole APEX with SSO and not just one application; Therefore, I thought that the other one was for integrating just one APEX application. Isn't that true? As a I read from your post I can see it's more than this but it's not clearly enough for me, could you, please, provide me a link with further information? By now, we just need to integrate one APEX application with a previous Portal & SSO environment, should we use "Oracle Application Express Engine as Partner App" instead of "My Application as Partner App"?
I finally managed to solve that error and my schema now recognizes WWV_FLOW_CUSTOM_AUTH_SSO perfectly. By now I'm having the following error: Error Unable to run portal_sso_redirect procedure as schema:
PROVES with partner app name: MY_PARTNER_NAME
Many thanks for your time & help!
Josep
Message was edited by:
[email protected] -
SSO with APEX anyone seen this before?
Hi,
I have followed the instructions from Metalink on
"Configuring an APEX Application to Use SSO With SDK in Separate Schema"
and have followed all the instructions but when I try and access application with SSO
turned on I am seeing this page
Thu, 3 Feb 2011 01:21:53 GMT
Bad parameter name: none specified
DAD name: apexwamsx
PROCEDURE : f
URL : http://lv700.light.ci.seattle.wa.us:7961/pls/apexwamsx/f?=
PARAMETERS :
===========
ENVIRONMENT:
============
PLSQL_GATEWAY=WebDb
GATEWAY_IVERSION=2
SERVER_SOFTWARE=Oracle-Application-Server-10g/10.1.2.2.0 Oracle-HTTP-Server
GATEWAY_INTERFACE=CGI/1.1
SERVER_PORT=7961
SERVER_NAME=lv700.light.ci.seattle.wa.us
REQUEST_METHOD=GET
QUERY_STRING==
PATH_INFO=/f
SCRIPT_NAME=/pls/apexwamsx
REMOTE_HOST=
REMOTE_ADDR=156.74.12.139
SERVER_PROTOCOL=HTTP/1.1
REQUEST_PROTOCOL=HTTP
REMOTE_USER=APEX_PUBLIC_USER
ORACLE_SSO_USER=
OSSO_IDLE_TIMEOUT_EXCEEDED=
OSSO_USER_GUID=
HTTP_CONTENT_LENGTH=
HTTP_CONTENT_TYPE=
HTTP_USER_AGENT=Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.6) Gecko/20100625 Firefox/3.6.6 (.NET CLR 3.5.30729)
HTTP_HOST=lv700:7961
HTTP_ACCEPT=text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
HTTP_ACCEPT_ENCODING=gzip,deflate
HTTP_ACCEPT_LANGUAGE=en-us,en;q=0.5
HTTP_ACCEPT_CHARSET=ISO-8859-1,utf-8;q=0.7,*;q=0.7
HTTP_COOKIE=ORA_WWV_REMEMBER_UN=ALBAM:commonws; ORA_WWV_USER=AC8796116B48095E; orasso=9.0.3+en-us+us+AMERICA+9B51BFB45D462A72E04400144FFABD7C+376A4AC4D470C5123650D53D83C6BF30A23BB27BB0F175D642AB7583249FBFF0B6AB6DAA9A2455BA6ACDA4CF36AD1646846B6E8310D16BDC569B61C08864631839C257F2EA1DD635005F1B4DE8B641FF755CFD4DAF89DA85
HTTP_IF_MODIFIED_SINCE=
HTTP_REFERER=http://lv700:7961/pls/apexwamsx/f?p=140:500:872061270446623:::::
HTTP_SOAPACTION=
HTTP_ORACLE_ECID=1296696113:156.74.21.244:28393:0:16,0
HTTP_ORACLE_CACHE_VERSION=
HTTP_AUTHORIZATION=
WEB_AUTHENT_PREFIX=
DAD_NAME=apexwamsx
DOC_ACCESS_PATH=docs
DOCUMENT_TABLE=wwv_flow_file_objects$
PATH_ALIAS=
REQUEST_CHARSET=WE8ISO8859P1
REQUEST_IANA_CHARSET=ISO-8859-1
SCRIPT_PREFIX=/pls
HTTP_IF_MATCH=
HTTP_CACHE_CONTROL=
SOAP_BODY=
HTTP_X_ORACLE_DEVICE_CLASS=
HTTP_X_ORACLE_DEVICE_ORIENTATION=
HTTP_X_ORACLE_DEVICE_MAXDOCSIZE=
HTTP_X_ORACLE_DEVICE=
HTTP_X_ORACLE_ORIG_ACCEPT=
HTTP_X_ORACLE_ORIG_USER_AGENT=
HTTP_X_ORACLE_USER_LOCALE=
HTTP_X_ORACLE_USER_NAME=
HTTP_X_ORACLE_USER_DISPLAYNAME=
HTTP_X_ORACLE_USER_USERKIND=
HTTP_X_ORACLE_USER_AUTHKIND=
HTTP_X_ORACLE_USER_DEVICEID=
HTTP_X_ORACLE_USER_LOCATION_ADDRESSLINE1=
HTTP_X_ORACLE_USER_LOCATION_ADDRESSLINE2=
HTTP_X_ORACLE_USER_LOCATION_ADDRESSLASTLINE=
HTTP_X_ORACLE_USER_LOCATION_BLOCK=
HTTP_X_ORACLE_USER_LOCATION_CITY=
HTTP_X_ORACLE_USER_LOCATION_COMPANYNAME=
HTTP_X_ORACLE_USER_LOCATION_COUNTY=
HTTP_X_ORACLE_USER_LOCATION_STATE=
HTTP_X_ORACLE_USER_LOCATION_POSTALCODE=
HTTP_X_ORACLE_USER_LOCATION_POSTALCODEEXT=
HTTP_X_ORACLE_USER_LOCATION_COUNTRY=
HTTP_X_ORACLE_USER_LOCATION_TYPE=
HTTP_X_ORACLE_USER_LOCATION_X=
HTTP_X_ORACLE_USER_LOCATION_Y=
HTTP_X_ORACLE_SERVICE_HOME_URL=
HTTP_X_ORACLE_SERVICE_PARENT_URL=
HTTP_X_ORACLE_HOME_URL=
HTTP_X_ORACLE_MODULE_CALLBACK_URL=
HTTP_X_ORACLE_MODULE_CALLBACK_LABEL=
HTTP_X_ORACLE_CACHE_USER=
HTTP_X_ORACLE_CACHE_SUBID=
HTTP_X_ORACLE_CACHE_AUTH=
HTTP_X_ORACLE_CACHE_DEVICE=
HTTP_X_ORACLE_CACHE_LANG=
HTTP_X_ORACLE_CACHE_ENCRYPT=
HTTP_X_ORACLE_ASSERT_USER=Thanks so much for any insight!Jonnycake please see AAM doesn't update to Creative Cloud desktop Application for information on how to enable the AAM Detect Plug-in within Safari.
-
Problem during configuring SSO with APEX 4.1
Hello everybody,
I'm trying to configure my APEX application to use SSO, but I have big problems with ssosdk902.zip file.
During execution of the loadsdk.sql script it creates package "wwsec_sso_enabler" but APEX 4.1 wants to have "wwsec_sso_enabler_private". For me it a clear sign, that I'm using some old SSOSDK.
Can somebody tell me where to find the current "ssosdk"?
I'm using OAS10gR2 and the interesting thing is that in the DB schema ORASSO package "wwsec_sso_enabler_private" exists, but it doesn't helps me. It is at the other machine. I must have it on the same instance, where APEX is running.
It looks like packaging error by Oracle. Can somebody help me?
Thanks,
IankoHi Anton,
that's why I added the IF statement around the code block, to guarantee that it only runs if the URL contains auto-login data (i.e. P101_UNAME). Setting FSP_AFTER_LOGIN_URL to null avoids a loop when the login fails. If we keep FSP_AFTER_LOGIN_URL, the wwv_flow_custom_auth_std.login procedure will redirect to page 101 and the before header process will run again, re-executing wwv_flow_custom_auth_std.login , etc.
It might be clearer to put the before header code into the authentication itself. The invalid session procedure is the right place for that, but it's use is very sparsely documented yet.
I created a 2nd copy of your original application (22274), where I removed the before header process and added this invalid session procedure:
procedure autologon_on_invalid_session
is
v_user VARCHAR2(4000);
v_pass VARCHAR2(4000);
v_fsp_after_login_url VARCHAR2(4000) := :FSP_AFTER_LOGIN_URL;
v_user_pos pls_integer := instr(v_fsp_after_login_url, 'P101_UNAME:');
BEGIN
if apex_application.g_flow_step_id != 101 and v_user_pos > 0 then
v_user := substr(v_fsp_after_login_url, v_user_pos+11);
wwv_flow_custom_auth_std.login(
P_UNAME => v_user,
P_PASSWORD => v_pass,
P_SESSION_ID => v('APP_SESSION'),
P_FLOW_PAGE => :APP_ID||':1' );
apex_application.stop_apex_engine;
end if;
END;If the current page is not 101 (the login page) and the URL (which was copied into the deep link item) contains the autologin credentials, call login. The finall call to apex_application.stop_apex_engine stops Apex from continuing it's default invalid session handling, which is to redirect to the login page.
Regards,
Christian -
SSO with Apex 4.1.1.00.23
Hello Apex community,
i want to implement a SSO solution between an apex and non-apex application. This solution worked with Apex 4.0 but seems not to work with current 4.1.1.00.23.
I've set up a test case on hosted environment.
Dev User:
Workspace: authtest
User: authtest
Pass: authtest
End User:
User: test
Pass: test1
Things i've done:
(1) Created a custom authentication scheme (marked as current) "auth_scheme" with following authentication function:
create or replace FUNCTION auth_function(
p_username IN VARCHAR2,
p_password IN VARCHAR2)
RETURN BOOLEAN
AS
v_is_authenticated BOOLEAN := false;
BEGIN
IF lower(p_username)= 'test' OR APEX_UTIL.IS_LOGIN_PASSWORD_VALID(p_username => p_username,
p_password => p_password)
THEN
v_is_authenticated := true;
ELSE
v_is_authenticated := false;
END IF;
RETURN v_is_authenticated;
END auth_function;(2) Created an "On Load - Before Header" process with sequence 5 on page 101:
DECLARE
v_user VARCHAR2(4000);
v_pass VARCHAR2(4000);
v_fsp_after_login_url VARCHAR2(4000) := :FSP_AFTER_LOGIN_URL;
BEGIN
SELECT SUBSTR(v_fsp_after_login_url, instr(v_fsp_after_login_url, 'P101_UNAME') + LENGTH('P101_UNAME') + 1)
INTO v_user
FROM dual;
wwv_flow_custom_auth_std.login(
P_UNAME => v_user,
P_PASSWORD => v_pass,
P_SESSION_ID => v('APP_SESSION'),
P_FLOW_PAGE => :APP_ID||':1'
END;Process condition: request = AUTOLOGON:
(3) Created a hidden item "P101_UNAME" on page 101.
(4) Expected behaviour: user loads following URL:
http://apex.oracle.com/pls/apex/f?p=30964:1::AUTOLOGON:YES::P101_UNAME:testuser schould be logged in without typing in his credentials.
What happens: user faces login page. What I don't understand: setting process condition to "none", autologon works. But if you have a look into debug report, apex recognizes the request "AUTOLOGON" even if autologon doesn't work. On my dev environment with Apex 4.1.1.00.23 changing process condition doesn't help.
I can't figure out what I'm doing wrong. With the patchset 4.1.1 there were certain changes concerning FSP_AFTER_LOGIN_URL Re: Deep Link (FSP_AFTER_LOGIN_URL) Not Working in APEX 4.1 I would appreciate any hint.
Thank you very much for your answers.
Kind regards,
Anton
Edit: Any ideas? I would appreciate any hint.
Edit2: Any hints maybe? Explicitly setting the FSP_AFTER_LOGIN_URL in the Url doesn't help either...
Edited by: anton on 20.08.2012 01:26Hi Anton,
that's why I added the IF statement around the code block, to guarantee that it only runs if the URL contains auto-login data (i.e. P101_UNAME). Setting FSP_AFTER_LOGIN_URL to null avoids a loop when the login fails. If we keep FSP_AFTER_LOGIN_URL, the wwv_flow_custom_auth_std.login procedure will redirect to page 101 and the before header process will run again, re-executing wwv_flow_custom_auth_std.login , etc.
It might be clearer to put the before header code into the authentication itself. The invalid session procedure is the right place for that, but it's use is very sparsely documented yet.
I created a 2nd copy of your original application (22274), where I removed the before header process and added this invalid session procedure:
procedure autologon_on_invalid_session
is
v_user VARCHAR2(4000);
v_pass VARCHAR2(4000);
v_fsp_after_login_url VARCHAR2(4000) := :FSP_AFTER_LOGIN_URL;
v_user_pos pls_integer := instr(v_fsp_after_login_url, 'P101_UNAME:');
BEGIN
if apex_application.g_flow_step_id != 101 and v_user_pos > 0 then
v_user := substr(v_fsp_after_login_url, v_user_pos+11);
wwv_flow_custom_auth_std.login(
P_UNAME => v_user,
P_PASSWORD => v_pass,
P_SESSION_ID => v('APP_SESSION'),
P_FLOW_PAGE => :APP_ID||':1' );
apex_application.stop_apex_engine;
end if;
END;If the current page is not 101 (the login page) and the URL (which was copied into the deep link item) contains the autologin credentials, call login. The finall call to apex_application.stop_apex_engine stops Apex from continuing it's default invalid session handling, which is to redirect to the login page.
Regards,
Christian -
How we can bypass SSO in apex 4.2
Hi Team,
We are in process of migrating new version of Apex from 3.2 to 4.2 version, we have exported apex sql in to new version and now when we try to run that application but it promting message as "
The server 10.156.0.100 at XDB requires a username and password.
Warning: This server is requesting that your username and password be sent in an insecure manner (basic authentication without a secure connection).
We would like to by pass the message, with out any authentication. Could you please help me how we can over come this.
Please find deatils below for version
Apex- 4.2.3.00.08
PLSQL_GATEWAY- webdb
Regards,
Sruthitamiri!!heres an example
Page 1 has items P1_SSN and P1_NAME as well as hidden items P1_TEXT and P1_TEXT2
The button affiliated with p1_NAME takes the user to page 2 that displaces a list of match names. it has a link which goes to page 3 where P3_SSN matches #SSN#
The button affiliated with p1_SSN takes the user directly to page 3 where p3_SSN matches #SSN#
If I log in and search by SSN first, when I get to page 3 I have the correct record
If I look up by name , I get the list and select a record by SSN I still have the correct record
then I go back to Page 1 and search by SSN, entering a new SSN. I always get what ever record I previously pulled up when searching by name and selecting from the list
On Page 1 , I have a process that says on load before regions clear items and I list all the items
Similarly on page 3 I have a process after submit and calculations that clears the items
When creating these processes it asks to list the items, separated by comma. The only place to enter PL/SQL is under conditions, this is not conditional on anything, it should always clear the cache.
I use this same logic on different pages in the same application - different tables but same flow. It works there. I don't see why it doesn't work here -
I was having issues with SSO and APEX.
I got error in portal_sso_redirect: missing application registration information.
we followed the APEX as partner app on how to site.
Problem was that in SSO sdk docs, they state that if ports 80 or 442 are used, do not include the in p_listener_token - so we followed that.
Looking through forums I tried rerunning regapp.sql and appending the 80 port for the listener token.
Now works.
I hope this helps others that are banging their heads against a wall trying to solve this.
These forums are a fabulous resource.
PeterI've just created a new instance on the same server, installed Apex 3.2, created a single page test app, used Application Express as Partner Application as SSO authorisation scheme, accessed the app's url and exactly the same thing happens... I just get a 404 page where the URL http://OID_HOST:port/sso/auth
I must be overlooking something somewhere but as far as I know, I've followed all the guidance and have created this based on previous installs.
Again, any help would be greatly appreciated!
Thanks. -
Advice Needed: Installing APEX 4.2.1 with SSO 10g
I am running in an environment here where it is mandatory that I run SSO 10g (the old verison 10.1.x.x OAS based). How do I go about enabling SSO in APEX 4.2.1? Can I use the same ssosdk902.zip I used with APEX 3.x.x or do I need a different one? There is no plans to go to upgrade off of our legacy 10g SSO or go to OAM based SSO. I would appreciate any information that can be offered.
Hi David,
yes, you can use the same SDK. You just have to take care to follow the same steps. It's easy to forget to re-create synonyms and do grants after an APEX upgrade.
Regards,
Christian -
Hi all,
I installed Oracle 11g, apex is 2.0
then i updraded to apex 3.1.
I want to enable sso for apex applications,
for that i followed the below steps:
step 1) Created authentication scheme for the application
step 2) in flows_030100 schema i ran loadsdk.sql script.
After that i ran regapp.sql script, but it is giving error : "numeric or value error; character buffer too small"
can you pls tell me how to fix this problem.regards
K M
Edited by: [email protected] on Apr 17, 2009 10:53 PMHi,
See also at metalink note
Note 562807.1
Configuring an APEX Application to Use SSO With SDK in
Kind regards,
Iloon -
Apex upgrade to 4.0 and existing Single-Sign-On settiongs
Hi,
I'm currently using SSO (Apex engine registered as partner application in Oracle SSO) with Apex 3.1 and have couple of Apex apps using Oracle SSO.
If I upgrade to Apex 4.0, will my current configuration be untouched or do I need to re-register Apex in SSO?
Thanks in advance,
AshaHi Jason,
Thank you very much for your prompt response. Yes. I did run those steps. I just reran all steps. See below output.
SQL> connect / as sysdba;
Connected.
SQL> alter session set current_schema = apex_sso;
Session altered.
SQL> grant execute on wwsec_sso_enabler_private to APEX_040000;
Grant succeeded.
SQL> grant select on wwsec_enabler_config_info$ to APEX_040000;
Grant succeeded.
SQL> alter session set current_schema = apex_040000;
Session altered.
SQL> create synonym wwsec_enabler_config_info$ for sso.wwsec_enabler_config_info$;
create synonym wwsec_enabler_config_info$ for sso.wwsec_enabler_config_info$
ERROR at line 1:
ORA-00955: name is already used by an existing object
SQL> create synonym wwsec_sso_enabler_private for sso.wwsec_sso_enabler_private;
create synonym wwsec_sso_enabler_private for sso.wwsec_sso_enabler_private
ERROR at line 1:
ORA-00955: name is already used by an existing object
SQL> @/u01/app/oracle/product/10.2.0/db_1/apex/core/custom_auth_sso_902.sql
...wwv_flow_custom_auth_sso
Package created.
No errors.
SQL> @/u01/app/oracle/product/10.2.0/db_1/apex/core/custom_auth_sso_902.plb
...wwv_flow_custom_auth_sso
Warning: Package Body created with compilation errors.
Errors for PACKAGE BODY WWV_FLOW_CUSTOM_AUTH_SSO:
LINE/COL ERROR
132/5 PL/SQL: Statement ignored
151/37 PLS-00201: identifier 'WWSEC_SSO_ENABLER_PRIVATE' must be
declared
287/9 PL/SQL: Statement ignored
287/9 PLS-00201: identifier 'WWSEC_SSO_ENABLER_PRIVATE' must be
declared
Thanks a lot,
Yi -
Calling BI Publisher Web Services from APEX
Hi,
Has anyone been able to run a BI Publisher report from APEX using the Web Service interface provided by BI Publisher?
I have created Web Service Reference in APEX using:
http://<host>:<port>/xmlpserver/services/PublicReportService?wsdl
I have then created a page rendering process that calls the web service, in particular calling the runReport operation.
When a try and run the page, I get the following error:
"ORA-20001: soapenv:Server.userExceptionjava.lang.NullPointerException"
Basically I want to be be able to call the BI Pub report and view the output straight away.
Appreciate any help.
Cheers,
MattHello,
I am using Jason's flex_ws_api and I have built an application that uses the BI Publisher web services to runReports. My service request looks like this (example)
<pre>
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:pub="http://xmlns.oracle.com/oxp/service/PublicReportService">
<soapenv:Header/>
<soapenv:Body>
<pub:runReport>
<pub:reportRequest>
<pub:attributeFormat>pdf</pub:attributeFormat>
<pub:attributeLocale></pub:attributeLocale>
<pub:attributeTemplate>New Template 1</pub:attributeTemplate>
<pub:flattenXML>1</pub:flattenXML>
<pub:parameterNameValues/>
<pub:reportAbsolutePath>/~rdpatric/Training/whoami/whoami.xdo</pub:reportAbsolutePath>
<pub:reportData></pub:reportData>
<pub:reportDataFileName></pub:reportDataFileName>
<pub:sizeOfDataChunkDownload>10000</pub:sizeOfDataChunkDownload>
</pub:reportRequest>
<pub:userID>user</pub:userID>
<pub:password>password</pub:password>
</pub:runReport>
</soapenv:Body>
</soapenv:Envelope>
</pre>
Obviously you would want to make a lot of these things variables...this is just an example...also sizeOfChunkDownload wasn't working for me at -1...idk...maybe it was something else...
Also if you use the flex_ws_api...you need to specify the namespace for your xpath statement ie.' xmlns="http://..."'
I am currently working on getting this working with the 'inSession' webservices as we have BI Pub set up SSO and APEX set up SSO so i need to be able to call the web services inSession...only problem is ssoCreateSession returns a 500 error and no xml...entered a TAR for this...sorry to digress. Use the above code and you should be able to get the runReport working. -
How to secure a PL/SQL procedure that is called from the web browser
If you have ever seen the sample document management application, and tried to download a file that was stored in the system, you are probably familiar with the apex_util.count_click URL that is used to download the file. If you copy that URL and paste it into a new browser, you will not be prompted to login to download the requested file. I'm using SSO with Apex as a partner application. How can I secure a pl/sql procedure like this to redirect to the login page before beginning the download?
Thanks,
KrisYou can use the second method described here:
http://apex.oracle.com/pls/otn/f?p=31517:15
You would use an application process instead of pasting the procedure call in the browser. In the case I describe, you don't need to grant execute to public on the download procedure.
Denes Kubicek
http://deneskubicek.blogspot.com/
http://www.opal-consulting.de/training
http://apex.oracle.com/pls/otn/f?p=31517:1
------------------------------------------------------------------- -
Errors for PACKAGE BODY WWV_FLOW_CUSTOM_AUTH_SSO
Hi All,
Running the below package so I can configure SSO...running into the below error.
Any help is appreciated
SQL> @custom_auth_sso_902.plb;
...wwv_flow_custom_auth_sso
Warning: Package Body created with compilation errors.
Errors for PACKAGE BODY WWV_FLOW_CUSTOM_AUTH_SSO:
LINE/COL ERROR
0/0 PL/SQL: Compilation unit analysis terminated
1/14 PLS-00304: cannot compile body of 'WWV_FLOW_CUSTOM_AUTH_SSO'
without its specificationYou need to ask Apex related questions in the Apex forum.
Include the 4 digit Oracle and Apex versions you are using when you post your problem.
I assume that you have read how to implement SSO for Apex applications to be partner applications for Oracle App Server single sign-on authentication? If not, I suggest that you search http://tahiti.oracle.com for the relevant instructions. (cannot recall the exact manual reference - I did this 3 or 4 years ago myself) -
Move from one application to another without Logging in again
Hi,
I have two standalone applications app1 and app2.
When the user clicks on a particular link in app1, He would be directed to another page in app2.
Is there a way to avoid the second login that is currently being requested when moving to app2?
Both the applications are in the same workspace.
Thanks,
RajeshRajesh,
If you use Single Sign On(SSO) to authenticate your users in every app then you will only have to log in once. Here is a link that should be able to get you started.
http://becomeappsdba.blogspot.com/2007/01/configure-sso-for-apex-application.html
Once SSO is configured you can create a new authorization scheme using the pre configured option called Oracle Application Server Single Sign-On (Application Express Engine as Partner App) make that the current authentication for your apps and you should be good to go.
Hope this helps..
Tyson -
Apex application registered with sso as partner application
We have 1 apex app registered with sso and working properly.
I just registered a new apex application with sso. when i authenticate through sso, it directs me to the originally registered application.
I went in through the portal administrator app and verified my settings all pointed to the new application. I verified that my dad is set up correctly.
Any ideas?
APEX 2.0i did register and obtain the keys through portal admin.
to ensure i used the proper keys (i guess there is a possibility i used the keys from db1 registration) i re-ran regapp with the right keys but recieved the following output:
SQL> @regapp
Partner Application Configuration
Enter value for listener_token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
Enter value for site_id: EFBE3E14
Enter value for site_token: MSMXURH1EFBE3E14
Enter value for login_url: https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admin.ls_login
Enter value for encryption_key: 2EBDD126A3A40606
Enter value for ip_check: N
ERROR: Error in registration. Please try again
User-Defined Exception
Registration successful.
Listener token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
Site id : EFBE3E14
Site token : MSMXURH1EFBE3E14
Encryption key: 2EBDD126A3A40606
Login URL :
https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
n.ls_login
Logout URL :
https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
n.ls_logout
IP check : N
PL/SQL procedure successfully completed.
Commit complete.
No errors.
SQL>
...in spite of the error, i aske the app developer to try and use sso for db2. he now recieves:
User-Defined Exception
Error Error in wwv_flow_custom_auth_sso.process_success:l_sso_user_name:l_sess_id:: Please contact administrator.
OK
any ideas?
Maybe you are looking for
-
My ipod was stolen and things were bought off of my account and i want the money back
I had lost my ipod about a month ago and i had got home today and seen that my account had been used to by 34.78$ worth of things off of my account from my ipod. So naturally i got angry and wanted answers but apple has so many useless numbers that a
-
Error on executing fpclose.vi when using FP-1000 and two FP-TC-120 modules
I have an error occuring in my LabVIEW program when closing the Field Point connections. I am using LV8.5 and im connecting to a FP-1000 controller (RS-232 native port) which connects to two FP-TC-120 modules, under XP. The error i get is 'Error 3358
-
Set the value of a object in request scope
I have the object in my req scope. I need to set value to one of the object attributes if that attribute is blank. How can I set its value. <c:set var="benefitVO" value="${requestScope.BenefitVO}" />I need to set the following Object attribute value,
-
Reset ASA 5510 back to MFG Settings - Please help??
A network engineer was in the middle of setting up a customer ASA 5510 Firewall and left. We don't know the IP/UN/PW. Is there a way to hard reset the firewall back to manufacture settings? Thanks in advance.
-
Revision: 11880 Revision: 11880 Author: [email protected] Date: 2009-11-16 17:37:51 -0800 (Mon, 16 Nov 2009) Log Message: Update to add filtering tags for platform unified ASLR as follows: @langversion 3.0 @playerversion Flash 10