UCM ACL and SES search

Similar Messages

• WCP Framework 11g and SES 11g : search results are not secured

  Hello,
  We are integrating WCP 11.1.1.6 and SES 11.1.2.2
  we have quite a stunning issue here where the search results returned by a WCP Framework application are not secured, ie secured contents are returned in the search results for unauthenticated users and for users who have no permission on these contents.
  Though, the search results are well secured in the standard SES search interface (http://seshost/search/query/).
  The main concern is about results coming from WCC.
  Thanks for any help,
  Vince

  Hi Jiri,
  we managed to integrate UCM and WCP with Document Service taskflows and it works fine, ie security is well propagated for the roles we want.
  WCC/UCM and WCP authenticate users via WLS which is connected to an AD.
  SES has its own identity management system which authenticates users directly to the AD.
  We activated the SESCrawler component in WCC/UCM and the SES/UCM crawling process is OK.
  We can search for UCM contents in SES without issue and anonymous/unauthenticated search in SES doesn't return results from non-public security groups, which is what we want.
  WCP search is connected to SES (which is the default setting), eg from adf-config.xml:
  <searchC:adf-search-config xmlns="http://xmlns.oracle.com/webcenter/search/config">
  <display-properties>
  <common numSavedSearches="5" />
  <region-specific>
  <usage id="simpleSearchResultUIMetadata" numServiceRows="5" />
  <usage id="searchResultUIMetadata" numServiceRows="5" />
  <usage id="localToolbarRegion" numServiceRows="5" />
  </region-specific>
  </display-properties>
  <execution-properties timeoutMs="7000" prepareTimeoutMs="1000" />
  <crawl-properties fullCrawlInterval="P5D" enableWcServicesCrawl="true" enableWcDiscussionsCrawl="true" enableWcUcmCrawl="true" />
  <ses-properties>
  <connection>ses</connection>
  <data-group>SourceGroup</data-group>
  </ses-properties>
  </searchC:adf-search-config>
  So the problem is that anonymous/unauthenticated search in WCP does return results from non-public security groups, which is not what we want.
  eg: access to the WCP app (don't logon)
  run a search
  in the search results, you can see contents which are not assigned in the public security group. Though, the WCC/UCM guest role doesn't have any permission on these SG.
  I can't raise SR myself.
  Thanks for any help,

• Integrate UCM 11g with SES 10g

  Hi all,
  Does anyone know if it is possible to connect SES 10g with UCM 11g? In the certification matrix of ECM 11g it says:
  Installation Type               Version Supported     Category                    Product                    Version                    Additional Comments / Exceptions                    
  "Oracle UCM Oracle URM"     11gR1 (11.1.1.3+)     Search Crawler Integration     Secure Enterprise Search     10g (10.1.8.4) 11g (11.1.2)     Crawler integration.                    
  "Oracle UCM Oracle URM"     11gR1 (11.1.1.3+)     Search (Full-text)               Secure Enterprise Search     11g (11.1.2)               For use as full-text search engine for UCM.                    
  Does this mean that SES 10g cannot be used as full text search engine with UCM 11g?
  Another related question: I seem to recall that starting from UCM 11g documents are stored in the database instead of on the file system by default. Is this true, and does this also require an 11g database version? I cannot find anything about this in the installation guide.
  Regards,
  Stijn

  Hi Bill,
  Unfortunately we're dealing with a Windows stack, and SES 11g isn't out yet for Windows.
  Regarding your second point: you guys at Fishbowl really have a solution for everything ;-).
  Have you also been able to solve the question I posted here: Region templates from Site Studio used  in Webcenter applicaton
  @Stijn wrote:
  Basically we're developing a portal application in WebCenter and we want to store pages as content in UCM. We also want to make use of the Site Studio
  contribution editor as this is the only way I see to be able to have a rich text editor with inline images.
  Btw: what I'm still looking for is a way for a user to easily upload and use an image from within the rich text editor. The basic feature is that when you want to
  insert an image, a search result of images is shown. This isn't really useful, as the number images might also increase to a 1000 or more.

• SES search ECM

  hi all,
  Can I use SES11g with wc11g to search ECM11g? the data returned from ECM should be filtered according to security control in webcenter and ECM.
  Best regards

  Hi
  Yes , SES can be used to do the search for contents . It can be set to the user security as well so all the 3 entities viz WC , UCM and SES are hooking up to same identity store for user security lookup .
  Hope this helps .
  Thanks
  Srinath

• Peopletools 8.52 and SES configuration

  Hi all,
  This is a fresh SES installation with Demo database Peopletools 8.52 and HCM 9.1. With RDBMS Oracle 11.2.0.3.0 (unicode database).
  I downloaded the software from edelivery and installed complete installation using the reference guide.
  http://docs.oracle.com/cd/E26530_01/psft/acrobat/PeopleTools_8.52_Installation_Oracle.pdf
  Configuring Integration Between PeopleSoft PeopleTools and Oracle SES
  After performing all the steps in the chapter, It failed in the verification when performing the peopletools> search framework > administration> diagnostics
  It fails in deployment stage.
  Undeploying. Cleaning up any data previous run
  Undeploy completed
  Deploying search definition
  Exception caught while adding peoplesoft source SES Login Failed. Error with IdentityPlugin.validateUser:
  oracle.search.sdk.common.PluginException: oracle.j2ee.ws.saaj.ContentTypeException: Not a valid SOAP Content-Type: text/plain; charset=UTF-8
  at oracle.search.plugin.security.identity.psft.PsftIdentityPlugin.validateUser(PsftIdentityPlugin.java:334)
  at oracle.search.query.internal.AuthnTask.run(AuthnTask.java:136)
  (262,129)
  I saw one support article 1478247.1 and verified the password are same in Peoplesoft and SES. But still seeing the error.
  E-SES: Getting "Exception Caught While Adding PeopleSoft Source SES Login Failed. (262,129)" During Round-Trip Test [ID 1478247.1]
  Also I created a SR with Oracle support, As this one is not in Production, it may take few days to address. If anyone had similar issues and resolved, please respond. Thanls.

  Hi
  Have a look this blog and see if you have missed any steps:
  http://bloggingaboutoracleapplications.org/peoplesoft-oracle-secure-enterprise-search-ses/
  Like the MOS doc says your already found verify if you use the correct password in PeopleSoft and SES for the Federated trusted entity.
  Also after I had configured PeopleSoft & SES, I was able to deploy the search indexes, but no search results were returned regardless of what I was searching.
  My issue was that I had defined the HTTPS target location on the service configuration whereas PIA was not configured for HTTPS.
  Feed framework was sending the header in HTTP, but the search details were defined as HTTPS.
  After removing the HTTPS target location in PeopleSoft and rebuilding the search index I was able to get search result.
  Hope this helps.
  Hakan

• Need info regarding Oracle UCM Accounts and Security Groups behaviour

  Need information regarding Oracle UCM Accounts and Security Groups behaviour.
  Oracle UCM version: 11.1.1.5.0
  Steps:
  1. Log in with "weblogic" user and created a content with id "content1"
  2. Applied "@acc1(R)" and "TestGroup1" to the cotent created in step 1
  3. Log out
  4. Log in as "acc1user1", the user is not able to see the "content1"
  5. Log out
  6. Log in as "role1user1", the user is not able to see the "content1"
  Account and Group information:
  1. User "acc1user1" is part of "@acc1(R)"
  2. User "role1user1" is part of "role1(R)" and is mapped to "TestGroup1" in UCM
  Expected:
  Both "acc1user1" and "role1user1" should be able to see "content1" as they have at least Read permission.
  Please help me understand why the users are not able to see the content.

  ACLs, like Accounts, are optional security setting which may add on some extra functionality to mandatory security groups. Likewise, the resulting permission is taken as an intersection of SG and ACLs.
  But in the second part the number of set of users is huge (approx say 600)I don't get this completely. Does this mean that those "sets of users" (users who see the same data) are distinct and that there is 600 of such groups?
  If you read thoroughly the manual I sent earlier, there is a recommendation that there should be maximum 50 security groups, and you should use accounts, should this number be exceeded. This means you could have all the documents in one security group (and have one common role with Read permission), but combine it with accounts. ACLs are not a good choice here - their performance and manageability is much worse than of accounts. ACLs are primarily used if you expect security settings to change during the lifetime (e.g. a project manager adds temporarily rights to access an item to another user, and revokes it when the user finishes his or her work).
  Note that accounts as well as permissions of users within accounts can also be mapped externally (from LDAP/AD) and it usually follows some kind of org chart.
  I'd feel more comfortable not to speak about users, security groups, roles, etc., but about some real-life objects and scenarios.

• Hide Search and Quick Search

  Is it possible to show/hide Search and Quick Search depending on who logs in to UCM?

  Hi Malky,
  I had a similar requirement and i tried to hide the standard search link.I am not able t restrict and its on 11g.
  please find the snippet of code and let me know your sugessions.
  thanks in advance.
  <@dynamichtml std_add_search_links@>
  <$include super.std_add_search_links$>
            // Add search links
            var count = 0;
            if (typeof pneSearchDocProfiles != "undefined" && pneSearchDocProfiles)
                 count = pneSearchDocProfiles.length;
                 if (count > 0)
                      navBuilder.addChildNodeTo('NAVTREE', 'collection', 'id==SEARCH', 'label=='+lc('wwSearch'));
                      for (var i = 0; i < count; i++)
                           navBuilder.addChildNodeTo('SEARCH', 'item', 'id==MY_PERSONAL_SEARCHES_'+i, 'label=='+pneSearchDocProfiles[0],
                                'url=='+pneSearchDocProfiles[i][1]);
            if (count > 0)
                 // Add the standard search link to the drop down menu link. Commented to disable
                 if(userIsAdmin)
                      navBuilder.addChildNodeTo('SEARCH', 'item', 'id==MY_PERSONAL_SEARCHES_'+count, 'label=='+lc('wwStandardSearch'),
                      'url=='+httpCgiPath+'?IdcService=GET_DOC_PAGE&Action=GetTemplatePage&Page=STANDARD_QUERY_PAGE');
            else
                 // Just add the link to the top menu.
                 navBuilder.addChildNodeTo('NAVTREE', 'item', 'id==SEARCH', 'label=='+lc('wwSearch'),
                      'url=='+httpCgiPath+'?IdcService=GET_DOC_PAGE&Action=GetTemplatePage&Page=STANDARD_QUERY_PAGE');
  <@end@>

• Get rid babylon and delta search, uninstall wont work because it doesn't show up, please help

  I want to keep my firefox but have caught this babylon and delta search and no matter what i do it will not go

  Remove Babylon Features:
  Remove Toolbar (from Extensions)
  1. Open Mozilla Firefox. Go to FF menu button.
  2. Select Add-ons & than select Extensions. (delete excess text)
  3. Remove/Disable the Babylon Toolbar 1.5.0.
  4. Restart your browser.
  Remove Toolbar (from Add/Remove Programs)
  1. Click the Start button on your computer.
  2. Select Add-ons & than select Extensions. (delete excess text)
  3. Select Programs and Features.
  4. Select Babylon Toolbar from the Programs list.
  5. Right click to uninstall.
  6. Press YES on the popup message.
  Remove Search Provider
  1. Open Mozilla Firefox. Click on the Search bar, located on the right side of your address bar
  2. Press the F4 key and select Manage Search Engines from the drop down list that appears.
  3. Select Search the Web (Babylon) and click on the Remove button.
  4. Click OK to save your changes.
  Remove/Change Home Page:
  5. Open Mozilla Firefox. Click on the FF menu button.
  6. Select Options.
  7. Now select the General tab.
  8. In the section of the popup labeled "Home Page," insert the URL of your desired Home Page.
  9. Click OK to save the changes.
  Remove Babylon Search from New Tab
  If when you open a new tab in Firefox, Babylon Search still appears:
  1. Type in the address bar line about:config and press enter.
  2. Confirm the popup message.
  3. In the search field, type "browser.search.selectedEngine". (remove excess text here)
  5. Restart your Browser.

• Okay, i have 2 bugs with maverick.  First, when I delete a file within a window, the files deletes but the preview doesn't delete until I close the window and reopen it.  Second, I work on a network of computers and the search feature is now buggy...

  Okay, i have 2 bugs with maverick.  First, when I delete a file within a window, the files deletes but the preview doesn't delete until I close the window and reopen it.  Second, I work on a network of computers and the search feature is now buggy...  When I search for a file, A) it asks me if it's a name, or it wont produce anything, and B), its slower than in prior OS versions and in some instances I have to toggle to a different directory and go back to my original directory in the search: menu bar or the search wont produce anything...  Very buggy. 

  It appears to me that network file access is buggy in Maverick.
  In my case I have a USB Drive attached to airport extreme (new model) and when I open folders on that drive they all appear empty. If I right click and I select get info after a few minutes! I get a list of the content.
  It makes impossible navigate a directory tree.
  File access has been trashed in Maverick.
  They have improved (read broken) Finder. I need to manage a way to downgrade to Lion again.

• How to create a Windows 8.1 Desktop icon from the Metro/Start and/or Search Tool?

  I'm a Desktop user, but often find myself needing to go to the Metro/Start and Search Tool to find programs and App(let)s in order to run them.  However, after doing this several times for many programs, I find myself wanting to create
  Desktop icons to run the programs more easily.  Is there a way to do this from the Metro/Start Icon and/or Search Tool results?
  If not, Microsoft, please consider adding the ability to do this.
  It would be very nice if this ability supported all of the icon types shown in the Metro/Start, Search Tool, and Control Panel interfaces, e.g.: Metro Apps, Desktop Programs, Charms, and Control Panel Applets.
  Currently, there is a way to pin the Metro/Start Icon to the Desktop, but the Taskbar will get very cluttered with even only a handful icons.
  It would be very nice if the desktop icon created by this also supported the context options that the program/app(let) now shows as Tasks when the icon is pinned to the Desktop Taskbar.
  Additionally, it would be nice if I could also simply drag a Pinned Taskbar icon onto the Desktop area, again, retaining it's Tasks as context menu options when the Desktop Taskbar icon is right clicked.
  This ability would be very helpful for people needing to get to programs and App(let)s, without having to resort the Metro/Start and Search Tool, because when there are a lot of Metro/Start icons, I have well over a hundred icons, it
  can be very hard to find one simply eye-balling lot.  The Search feature is much better, provided I know the name to look for and can remember it.
  Finally, this ability would be very helpful, because the kinds of desktop shortcut icons that I can create using the New Shortcut option, assuming that can I find the program/App(let)'s name and path information, do not support the context options
  that the icons could in Windows 7 when an icon is created while installing the program.
  Thanks,
  Howard Brown 
  hrb

  Hi Howard Brown,
  Thanks for your suggestions about Windows user experience. Actually, we are glad to hear more feedback
   about Windows operating system so that we can improve Windows to make it be more easier to
   use.
  As a suggestion for your current situation, you can use Windows Charm Bar to search Apps, it is also easy to use.
  Alex Zhao
  TechNet Community Support

• My drop-down list won't appear anymore so every time I want to go to a new site I have to type it in where before my drop-down box would appear and I could just click it and hit search and go there how do I make my drop-down box come back

  somehow I must've clicked a button that took away my drop down box when I go to use my Google search so different sites that I go to a lot I would always just click it when the drop-down box came up I would click again and hit search and you would bring that page up but even if I go to a site once I leave that I try to click and make the drop-down box come up again with the new search and it nothing happens so the problem is I need my drop down box to come back up to all the places that I visit kind of like a history of like I said I would just click and it would come up by itself now the drop-down box won't come up anymore so I need somebody to tell me what to do to bring my drop-down box back also I am new to computers so I don't know a lot so don't be real technical thanks for the help merry Christmas from Joe

  It's not a matter of me assuming to restore it, once the error comes up, the only next step I can do is to restore it. I can't access any of the iphones settings in itunes or anything, it's a mandatory restore. If I just cancel the sync (before restoring) and disconnect the phone, all my apps crash on opening: aka unusable phone. So I have literally no choice but to restore every time the error shows up if I want my phone to work.
  I have no idea where I may have duplicate files as it doesn't tell me, so if that is the problem (which I don't think it is) then I don't know where I have to go to delete the duplicates.
  And the duplicate file error still doesn't explain why leaving iTunes to restore the phone doesn't work and me having to drag the window around. I know it sounds utterly ridiculous, my friend didn't believe me when I told him either but then I showed him and he was as confused as I am. If I just leave the restore to do its own thing at it's own pace, it will loa maybe 20% then fail for whatever reason.

• Is there a way to view current playlist during airplay to apple TV and perhaps search and add to queue? So there are no interruptions between videos?

  We are having a karaoke night and have all the songs as videos in iTunes, would be great to select the  item and edit the current playlist.
  so we have a seamless transition to the next abba video
  Is this possible? Perhaps there are other products / apph able to suppor this?
  Thanks
  CM

  No, Apple very rarely make advance announcements of bug fixes.
  You can restore much of the look & feel of the previous version with these shortcuts:
  Ctrl-B to turn on the menu bar.
  Ctrl-S to turn on the sidebar.
  Ctrl-/ to turn on the status bar.
  Click the magnifying glass top right and untick Search Entire Library for the old search behavior.
  Alternatively you roll back to iTunes 10.7. If so, first download a copy of the 32 bit installer or 64 bit installer as appropriate, uninstall iTunes and supporting software, i.e. Apple Application Support & Apple Mobile Device Support. Reboot. Restore the pre-upgrade version of your library database as per the diagram below, then install iTunes 10.7.
  See iTunes Folder Watch for a tool to scan the media folder and catch up with any changes made since the backup file was created.
  You might also want to use iTunes Feedback.
  tt2

• How can I restore the search bar drop down list and current search engine icon as it was in FF version 33?

  Is there a way to restore the search bar from version 33?
  I like seeing which search engine I have selected and the ability to change it with a drop down list BEFORE I highlight text, right-click, and select ' Search Google for "xxxx" '
  Any way to roll back this latest "improvement"?

  If you miss being able to switch search engines without going
  crazy with menus, try this out;
  '''[https://addons.mozilla.org/en-US/firefox/addon/context-search/ Context Search]''' {web link}
  Expands the context menu's 'Search for' item into a list of
  installed search engines, allowing you to choose the engine
  you want to use for each search.

• How to implement Quick Query and Saved Searches in ADF?

  We are using 11gR2 ADF.
  The requirement is to enable Quick Search and save the Searches.
  In the Oracle ADF documentation, it is mentioned that
  - Create a view with view criteria named.
  - In the .jspx drag and drop the view criteria and Select Quick Query
  Upon doing the above, we see that a Search panel is getting created, but with a message 'No Search Fields Added'.
  In the named view criteria, Under 'UI Hints' we have set
  -- execution mode as Both
  -- Search region mode is Basic
  -- Show Operators in Basic
  Under 'Criteria Definition'
  the attributes are added in a group with OR condition.
  Thanks for your reply. Oracle ADF developer guide does not help!!
  If you have any other documentation that helps in implementing this Quick Query and Saved Search, your help is greatly appreciated.

  Set the following on your af:query component
  SaveQueryMode = hidden
  ModeChangeVisible = false
  This should work for you ..
  Regards,

• Lost all my built in apps on my Iphone3GS, i have checked restrictions and spotlight search and i do not have phone,imessage,or appstore apps anymore,please help me!

  Lost my phone,imessage,and app store apps and when i try to restore it,its still showing up like this,i have checked restrictions and spotlight search but still no luck,please help!

  Settings > General > Reset > Reset Home Screen Layout