[svn] 1705: 1) Add a security constrain for MBeanObjectNameResolver destination in remoting-config .xml for WebSphere deployment

Similar Messages

• In Firefox 4.0 with a Server with a self signed certificate using IPv6 I can not add a "Security Exception" for this certificate.

  In Firefox 4.0 I have a server ... it contains a self signed certificate. Using IPv6 I can not add a "Security Exception" for this certificate.
  1. I log onto the server (using IPv6). I get the "Untrusted connection page" saying "This connection is Untrusted"
  2. I click on "Add Exception.." under the "I understand the Risks" section.
  3. The "Add Security Exception" dialog comes up. soon after the dialog comes up I get an additional "Alert" dialog saying
  An exception occured during connection to xxxxxxxxx.
  Peer's certificate issuer has been marked as not trusted by the User.
  (Error code sec_error_untrusted_issuer).
  Please note that this works in Firefox 3.6.16 (in IPv4 and IPv6). It also works in Firefox 4.0 in IPv4 only IPv6 has an issue. What's wrong?

  Exactly the same problem, except I'm using FF v6 for Windows, not FF v4 as for the lead post. This is for a self-cert which IS trusted, although the error message says it isn't.

• [svn] 3867: Add new user-agent info to the sample services-config.xml file.

  Revision: 3867
  Author: [email protected]
  Date: 2008-10-24 07:13:10 -0700 (Fri, 24 Oct 2008)
  Log Message:
  Add new user-agent info to the sample services-config.xml file.
  Modified Paths:
  blazeds/trunk/resources/config/services-config.xml

  Resolved! The problem was in the php code the wizard had generated as an example and that I had edited in Dreamweaver. I had tried to start a session and set session objects in the php code. I developed if() { statements} to check the session variable before executing the function in some of my data services. Apparently the wizard does not like this. I removed all references to session. I reconfigured the input types and the return types for each service. With the code now clean the wizard created the example code and placed the proper package in the scr.services package. I still have custom php code and it executes.
  Things I learned:
  If the php code stops when a session variable is not available in the if statement and the data service is refreshed, the wizard will not "look" beyond the if statement.
  Functions downstream of a session variable misshap will show in the data services window but the functions will have a circle icon to the left of the function name and each variable to be passed to the php code will be declared as type = Object in Flashbuilder. The input types and return types will have to be reconfigured for each non-functioning function. Simply commenting out a portion of the php code and attempting a refresh will not make it work again.
  When the wizard is unable to refresh properly because of a stop in the php code it stops working completely so additional refreshes or creation of code is not carried out.
  I decided to create a My SQL table for user and other identifiers rather than attempting the session object again.
  Sorry, I did not make screen shots as I solved this problem. I hope the solution is not hard to visualize.
  Thanks for looking and considering how to help me. I hope my solution works for you.

• [svn:osmf:] 17080: Add basic unit tests for MulticastNetLoader

  Revision: 17080
  Revision: 17080
  Author:   [email protected]
  Date:     2010-07-27 16:03:01 -0700 (Tue, 27 Jul 2010)
  Log Message:
  Add basic unit tests for MulticastNetLoader
  Modified Paths:
      osmf/trunk/framework/OSMFTest/org/osmf/OSMFTests.as
  Added Paths:
      osmf/trunk/framework/OSMFTest/org/osmf/net/multicast/
      osmf/trunk/framework/OSMFTest/org/osmf/net/multicast/TestMulticastNetLoader.as

• [svn:osmf:] 10425: Add initial unit tests for VASTParser.

  Revision: 10425
  Author:   [email protected]
  Date:     2009-09-18 17:35:58 -0700 (Fri, 18 Sep 2009)
  Log Message:
  Add initial unit tests for VASTParser.  Minor changes to parsing code.
  Modified Paths:
      osmf/trunk/libs/VAST/org/openvideoplayer/vast/model/VASTAd.as
      osmf/trunk/libs/VAST/org/openvideoplayer/vast/model/VASTAdPackageBase.as
      osmf/trunk/libs/VAST/org/openvideoplayer/vast/parser/VASTParser.as
      osmf/trunk/libs/VASTTest/org/openvideoplayer/vast/VASTTests.as
  Added Paths:
      osmf/trunk/libs/VASTTest/org/openvideoplayer/vast/parser/
      osmf/trunk/libs/VASTTest/org/openvideoplayer/vast/parser/TestVASTParser.as

• [svn:osmf:] 10447: Add more unit tests for VAST validation.

  Revision: 10447
  Author:   [email protected]
  Date:     2009-09-20 19:59:57 -0700 (Sun, 20 Sep 2009)
  Log Message:
  Add more unit tests for VAST validation.
  Modified Paths:
      osmf/trunk/libs/VAST/org/openvideoplayer/vast/parser/VASTParser.as
      osmf/trunk/libs/VASTTest/org/openvideoplayer/vast/parser/TestVASTParser.as

  Abuse reported.

• [svn:osmf:] 10477: Add ListenerProxyElement, utility class for listening to trait-level changes on a wrapped element.

  Revision: 10477
  Author:   [email protected]
  Date:     2009-09-21 17:04:28 -0700 (Mon, 21 Sep 2009)
  Log Message:
  Add ListenerProxyElement, utility class for listening to trait-level changes on a wrapped element.  Refactor proxy unit tests to make them more extensible.
  Modified Paths:
      osmf/trunk/framework/MediaFramework/.flexLibProperties
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/MediaFrameworkTests.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestProxyElement. as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestTemporalProxy Element.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/utils/DynamicProxyElement .as
  Added Paths:
      osmf/trunk/framework/MediaFramework/org/openvideoplayer/proxies/ListenerProxyElement.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestListenerProxy Element.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestListenerProxy ElementAsSubclass.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestProxyElementA sDynamicProxy.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/utils/DynamicListenerProx yElement.as

  Revision: 10477
  Author:   [email protected]
  Date:     2009-09-21 17:04:28 -0700 (Mon, 21 Sep 2009)
  Log Message:
  Add ListenerProxyElement, utility class for listening to trait-level changes on a wrapped element.  Refactor proxy unit tests to make them more extensible.
  Modified Paths:
      osmf/trunk/framework/MediaFramework/.flexLibProperties
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/MediaFrameworkTests.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestProxyElement. as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestTemporalProxy Element.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/utils/DynamicProxyElement .as
  Added Paths:
      osmf/trunk/framework/MediaFramework/org/openvideoplayer/proxies/ListenerProxyElement.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestListenerProxy Element.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestListenerProxy ElementAsSubclass.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/proxies/TestProxyElementA sDynamicProxy.as
      osmf/trunk/framework/MediaFrameworkFlexTest/org/openvideoplayer/utils/DynamicListenerProx yElement.as

• 2 security constrains for just one servlet

  I'm running weblogic 6.1 and when i secure two different methods of a
  servlet
  I only get the promp for user and pwd for the last method
  Could anybody tell me if I'm forgetting somethig or wheter this is a
  bug.
  <security-constraint id="security_1">
  <display-name>GET Collection</display-name>
  <web-resource-collection>
  <web-resource-name>GETMethod</web-resource-name>
  <description>We secured the get method</description>
  <url-pattern>/SecuredServlet</url-pattern>
  <http-method>GET</http-method>
  </web-resource-collection>
  <auth-constraint>
  <description>users allowed to get</description>
  <role-name>GETUsers</role-name>
  </auth-constraint>
  </security-constraint>
  <security-constraint id="security_2">
  <display-name>POST Collection</display-name>
  <web-resource-collection>
  <web-resource-name>POSTMethod</web-resource-name>
  <description>We secured the post method</description>
  <url-pattern>/SecuredServlet</url-pattern>
  <http-method>POST</http-method>
  </web-resource-collection>
  <auth-constraint>
  <description>users allowed to post</description>
  <role-name>POSTUsers</role-name>
  </auth-constraint>
  </security-constraint>

  Application and web servers base their authentication mode on Listeners and not Servlets. Since Listeners listen on ports, and and can direct client calls to any number of Servlets, all Servlets served by a Listener will default to the authentication mode of the Listener.
  If you want to have selective authentication based on Servlets, then you should use a non-ClientAuth port for most of your Servlets, and redirect the client request to port 443 for the one Sevlet that needs ClientAuth. As a result, you will get the same effect.

• [svn] 1706: Merge svn-1705 to 3.0.x branch

  Revision: 1706
  Author: [email protected]
  Date: 2008-05-14 09:00:31 -0700 (Wed, 14 May 2008)
  Log Message:
  Merge svn-1705 to 3.0.x branch
  1) Add a security constrain for MBeanObjectNameResolver destination in remoting-config.xml for WebSphere deployment
  2) Update the MBean tests accordingly and correct a typo
  3) Also make some additional ProxyServiceMBeanTest to solve a timing issue when getting MBean attributes on WAS
  4) update the jgroups-udp.xml and set bind_to_all_interfaces to fall since it prevents server from startup when IPv6 is enabled on Windows
  Ticket Links:
  http://bugs.adobe.com/jira/browse/svn-1705
  Modified Paths:
  blazeds/branches/3.0.x/qa/apps/qa-regress/WEB-INF/flex/jgroups-udp.xml
  blazeds/branches/3.0.x/qa/apps/qa-regress/WEB-INF/flex/remoting-config.mods.xml
  blazeds/branches/3.0.x/qa/apps/qa-regress/testsuites/mxunit/tests/MBean/proxyservice/HTTP DestinationTest.mxml
  blazeds/branches/3.0.x/qa/apps/qa-regress/testsuites/mxunit/tests/MBean/proxyservice/Prox yServiceMBeanTest.mxml
  blazeds/branches/3.0.x/qa/apps/qa-regress/testsuites/mxunit/tests/MBean/proxyservice/SOAP DestinationTest.mxml

• [svn] 1053: Basic and custom security-constraint samples were added to the team app mainly for the doc team to have a reference .

  Revision: 1053
  Author: [email protected]
  Date: 2008-04-01 11:35:28 -0700 (Tue, 01 Apr 2008)
  Log Message:
  Basic and custom security-constraint samples were added to the team app mainly for the doc team to have a reference. The custom authentication sample uses the new ChannelSet.login and ChannelSet.logout methods.
  Modified Paths:
  blazeds/branches/3.0.x/apps/team/WEB-INF/flex/remoting-config.xml
  blazeds/branches/3.0.x/apps/team/WEB-INF/flex/services-config.xml
  Added Paths:
  blazeds/branches/3.0.x/apps/team/features/security-constraints/
  blazeds/branches/3.0.x/apps/team/features/security-constraints/README.txt
  blazeds/branches/3.0.x/apps/team/features/security-constraints/securityConstraint_Basic.m xml
  blazeds/branches/3.0.x/apps/team/features/security-constraints/securityConstraint_Custom. mxml
  Removed Paths:
  blazeds/branches/3.0.x/apps/team/features/remoting/remoting_AMF_SecurityConstraint_Basic. mxml

  Congrats to Carmelo!
   Windows Phone and Windows Store Apps Technical Guru - February 2015  
  Carmelo La Monica
  Windows Phone 8: control Nokia Maps (Part 3)
  JH: "Part 3 of the series how to work with the Nokia maps control. As the previous articles this one contains a lot of code snippets and some pictures. Good work!"
  Ed Price: "A great topic, a fantastic breakdown of sections with clear descriptions, and a nice mix of code formatting and helpful images! Another stellar article from Carmelo! Great job including the link back at the end to the portal
  article!"
  Ed Price, Azure & Power BI Customer Program Manager (Blog,
  Small Basic,
  Wiki Ninjas,
  Wiki)
  Answer an interesting question?
  Create a wiki article about it!

• I am unable to add a security device in Firefox 27.

  When I fill in the dialog box for a new device and click Ok, absolutely nothing happens.

  The problem seems to have resolved itself, somehow. I wanted to add a security device for my ActiveClient CAC reader software. I opened the Security Devices sheet, clicked Load, filled out the Module name and filename fields in the dialog box, clicked OK, and ABSOLUTELY nothing happened. It just sat there staring at me. But after a shutdown on Friday and a boot-up today, my device is present and working.

• Anyone know how to add a spam filter for my webpage?

  Does anyone know how i can add a Security checkpoint for my site? Im getting to much SPAM mail in our page.
  PLEASE HELP

  Hi,
  Are you getting spams from the webform submission?
  Have you added capthca to your form?
  Regards,
  Aish

• Configure remote-config for calling java class

  Hi...all
  i'm newbie, i got trouble for configure remote-config in flex project
  how to configure remote-config.xml, if i have java class like below
  package org.springframework.flex.samples.secured;
  import java.util.Map;
  import org.springframework.flex.security.AuthenticationResultUtils;
  public class SecurityHelper {
      public Map<String, Object> getAuthentication() {
          return AuthenticationResultUtils.getAuthenticationResult();
  please help me.....i'm newbie and wanna learnin
  thanks

  Hi,
  May be this could be of good help to you
  http://livedocs.adobe.com/blazeds/1/blazeds_devguide/
  Thanks,
  Balaji

• Clarification on services-config.xml files for RemoteObject services

  I am currently preparing an AMFPHP environment for exchanging
  data with Flex and AIR applications. I can connect to the services
  via Netconnection, but using RemoteObject won't work.
  Documentation for the necessary configuration files
  (services-config.xml, remoting-config.xml and the like) is, um,
  sparse and seems to be slightly incorrect or misleading at times.
  So I'm looking for clarification about
  changes in the syntax of services-config.xml · in
  examples for Flex 2.01, there are "class" attributes with values
  beginning with "flex.", in Flex 3 examples the attribute name has
  changed to "type", values beginning with "flex." have mostly
  vanished and been replaced with similar looking values beginning
  with "mx.". Are "flex." and "mx." prefixes interchangable?
  correct syntax for linking other files into
  services-config.xml · the livedocs state that Adobe
  prefers linking files into services-config.xml (using something
  like <service-include file-path="remoting-config.xml"/>)
  instead of defining all service parameters there. But in the
  example from the Flex 2.01 livedocs, the root element of the
  service-config.xml file is <services> instead of
  <services-config>. Assuming that <services> is meant as
  a
  child of the <services-config> root element, there
  seems to be a mandatory <service> child element missing.
  That's either intended, illogical, and misleading, or simply
  erroneous.
  which classes are still valid in Flex 3, which have changed?
  · Most of the examples for using RemoteObjects out there are
  for FlexBuilder 2 (e.g.
  here)
  and don't seem to work with FlexBuilder 3 Beta 2. But there is no
  statement to be found in the Flex 3 documentation about what has
  changed.
  a meaningful example for services-config.xml · In the
  Flex 3 Beta 2 documentation here are plenty of references to using
  services-config.xml, as I can find even information about the
  ServerConfig class in the ActionScript 3 Language Reference, a sort
  of wrapper class for the information provided in
  service-config.xml, but there is no information about what
  constitutes a
  working service-config.xml configuration (which XML tags of
  what names containing what attributes need to be present).
  As I'd really like to create cutting-edge Flex and AIR OCC
  applications, I'm eager to have those ambiguities clarified.
  Best regards,
  Cathness

  From the docs it looks like this is used for web services as
  well:
  http://livedocs.adobe.com/flex/201/html/dataservices_config_100_3.html#260186
  If this isn't the right config file, which file should I be
  looking at?
  Mike

• WS-Security and proxy service: Unable to add security token for identity

  What the reason of "Unable to add security token for identity" fault in this situation (10.3.1):
  I did simple "hello word" proxy service and tried to apply custom policy binding.
  WS-Policy is next:
  <wsp:Policy wsu:Id="WS-Policy-Siebel"
       xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702"
       xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
       xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
       <wssp:Identity
            xmlns:wssp="http://www.bea.com/wls90/security/policy">
            <wssp:SupportedTokens>
                 <wssp:SecurityToken
                      TokenType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#UsernameToken">
                      <wssp:UsePassword
                           Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText" />
                 </wssp:SecurityToken>
            </wssp:SupportedTokens>
       </wssp:Identity>
  </wsp:Policy>
  Process WS-Security is setted to "yes".
  While debugging I see that all works fine - I can authenticate with defined credentials and breakpoints in proxy service flow works fine.
  But at the end I get the fault:
  Soap fault:
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/">
  <env:Header/>
  <env:Body>
  <env:Fault>
  <faultcode>env:Server</faultcode>
  <faultstring>Unable to add security token for identity</faultstring>
  </env:Fault>
  </env:Body>
  </env:Envelope>
  In console:
  <09.06.2010 17:39:18 MSD> <Error> <OSB Security> <BEA-387023> <An error ocurred during web service security inbound response processing [error-code: F
  ault, message-id: 1721282272521583996--57dc4ccc.1291cc2282d.-7fab, proxy: OSB Project WS-Security/WSSecurityService, operation: NewOperation]
  --- Error message:
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"><env:Header/><env:Body><env:Fault><faultcode>env:Server</faultcode><faultstring>Un
  able to add security token for identity</faultstring></env:Fault></env:Body></env:Envelope>
  weblogic.xml.crypto.wss.WSSecurityException: Unable to add security token for identity
  at weblogic.wsee.security.wss.SecurityPolicyDriver.processIdentity(SecurityPolicyDriver.java:175)
  at weblogic.wsee.security.wss.SecurityPolicyDriver.processOutbound(SecurityPolicyDriver.java:73)
  at weblogic.wsee.security.wss.SecurityPolicyDriver.processOutbound(SecurityPolicyDriver.java:64)
  at weblogic.wsee.security.WssServerHandler.processOutbound(WssServerHandler.java:88)
  at weblogic.wsee.security.WssServerHandler.processResponse(WssServerHandler.java:70)
  Truncated. see log file for complete stacktrace
  Incoming soap message is:
  <soapenv:Envelope      xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
  <soap:Header      xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
  <wsse:Security      soap:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
  <wsse:UsernameToken      wsu:Id="unt_TNNp0cBwU7HyPKoq" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
  <wsse:Username>testuser</wsse:Username>
  <wsse:Password      Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">testuser</wsse:Password>
  </wsse:UsernameToken>
  </wsse:Security>
  </soap:Header>
  <soapenv:Body>
  <wss:NewOperation      xmlns:wss="http://www.troika.ru/Enterprise/WSSecurityService/">
  <in>string</in>
  </wss:NewOperation>
  </soapenv:Body>
  </soapenv:Envelope>
  Edited by: Andrey L. on Jun 9, 2010 5:55 PM

  I thought you were getting that exception when accessing the proxy.
  No. Authentification works fine. Proxy body works fine. But at the end of proxy appears the exception.
  Sorry for my english - I tried to show this situation on image: http://imglink.ru/show-image.php?id=9c0e0c1719f00289faf11696c6703bc3
  Are you getting this exception when routing to a business service which is configured for WS-Security ??
  I don't use business service in this test project - only simple proxy service with all logic inside.
  PS transformation in replace action is very simple too:
  (:: pragma bea:global-element-parameter parameter="$newOperation1" element="ns0:NewOperation" location="WSSecurityService.wsdl" ::)
  (:: pragma bea:global-element-return element="ns0:NewOperationResponse" location="WSSecurityService.wsdl" ::)
  declare namespace ns0 = "http://www.troika.ru/Enterprise/WSSecurityService/";
  declare namespace xf = "http://tempuri.org/OSB%20Project%20WS-Security/Hello/";
  declare function xf:Hello($newOperation1 as element(ns0:NewOperation))
  as element(ns0:NewOperationResponse) {
  <ns0:NewOperationResponse>
  <out>Hello, { data($newOperation1/in) }!</out>
  </ns0:NewOperationResponse>
  declare variable $newOperation1 as element(ns0:NewOperation) external;
  xf:Hello($newOperation1)
  Edited by: Andrey L. on Jun 10, 2010 12:21 PM