Unable to login using OAM Custom Authentication Plugin

Similar Messages

• How are OAM custom authentication plugins used for concurrent requests

  Custom authentication plug-ins are loaded by Access Server.
  I want to understand how they are used or how they work when multiple concurrent request start pouring in.
  Thanks.

  The access server is a multi-threaded application. The "Fn" function of the plugin is executed in each of the thread of the access server.

• Setting a OAM custom authentication response

  I'm working on OAM 11.1.1.5.0 BP03 and trying to use a custom authentication plugin to add a response to the HTTP header. I need to add information to the HTTP header that cannot be provided by a response on the Protected Resource Policy.
  I can see using log entries that my plugin is working but I have a sample JSP landing page that OAM redirects to that just dumps out request.getHeaderNames and I don't see the value set by the plugin.
  I was assuming that the PluginResponse class would suit my needs but I've tried every type of PluginAttributeContextType and cannot get it to work.
  Is this possible? What code should I have written?
  Here's a sample of what I tried:
            PluginResponse response = new PluginResponse();
            response.setName("OAM_TEST_KEY");
            response.setType(PluginAttributeContextType.CLIENT);
            response.setValue("TESTVALUE");
            context.addResponse(response);

  Hi Ewan,
  Instead of writing a custom plugin and maintaining it in case future upgrades is going to be cumbersome. I would suggest introduce OVD in your environment. Create a Join Adapter. This Adapter would join your LDAP server and AD Server users using employee ID. That way you can use a supported configuration and avoid writing a plugin. Now the user visible to OAM via OVD would have the LDAP attribute of AD username and hence you can set it as a header variable. Or you can setup Sync between your LDAP and AD. Most of the industry standard LDAP servers such as OID, ODSEE etc allow you to sync user information. That way you can fetch AD username attribute to your LDAP server. It doesn't need to have same attribute in your LDAP server. It can be stored in any attribute of LDAP server with a valid value. All you need to do is set header variable using attribute which contains the AD username attribute value.
  Regards,
  Yagnesh

• Unable to start several servers using the custom. authentication and authorization Provider

  I downloaded the Sample Security Providers (http://developer.bea.com/managed_content/direct/SampleSecurityProvidersUnmanaged.zip)
  and followed the user guide for installation.
  We have following configuration:
  - One domain with 3 servers :
  - ADM: admin, console
  - WTL_1 : WebTool server 1
  - WTL_2 : WebTool server 2
  WTL_1 and WT_2 are member of cluster WTL_Cluster
  I try to restart all servers. It worked fine for the first one (ADM), but for
  the other two I got followinf exception:
  ####<Nov 13, 2002 10:29:02 AM CET> <Emergency> <WebLogicServer> <isoit652.bbn.hp.com>
  <WTL_1> <main> <kernel i
  dentity> <> <000342> <Unable to initialize the server: Fatal initialization exception
  Throwable: java.lang.SecurityException: Authentication denied: Boot identity not
  valid
  java.lang.SecurityException: Authentication denied: Boot identity not valid
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(SecurityServiceManager.java:1024)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  Do you have any idea why it worked only for one server?
  Thanks for any help
  My Chi

  Hi John,
  Actually, thanks to your examples, I have my Authentication Scheme setup using a custom authentication function that first checks that the Username/Password are valid, and if so, then validates that the user has also been setup in AD with one of the groups used by my application. What I'm wondering is, when I replace the built-in Authentication Function it appears that the function that I code must have the correct signature (accepts UserName and Password, and returns a boolean)... but I really want to be able to also return the actual AD Group that the user is assigned to for use within my Authorization Schemes. I'm not sure if/how I can do this from my authentication function, or if I just need to re-query AD again in my Authorization Schemes to get the AD group that the user is assigned to.
  Appreciate the help,
  Lori

• Unable to Login to OAM after cloning

  Hi,
  I am unable to login to OAM after cloning. I am getting the message "The page cannot be displayed" when clicking on OAM front end link.
  Application version: 11.5.7
  Message from the error_log
  /apps/ts2aps/product/iAS/Apache/Apache/logs > tail -100 error_log
  DBC file :Applications
  DBC file :Applications
  log Message called
  log Message called
  log Message called
  log Message called
  log Message called
  log Message called
  *[Mon Apr  5 00:44:20 2010] [error] OPM: EW: Fail to start process with mod=JServ and grp=OACoreGroup, it's possible that your configuration file is not correct.*
  Please let me know for any other details.
  Regards,
  Mukarram

  http://<host_name>:32001/OA_HTML/jsp/fnd/aoljtest.jsp
  I am getting "The page cannot be displayed" for my hostname, after running the above URL.
  Error Message from error_log
  [Mon Apr  5 21:55:52 2010] [error] [client 64.100.24.42] client denied by server configuration: /apps/ts2aps/common_top/portal/oprocmgr-service
  [Mon Apr  5 21:55:53 2010] [error] [client 64.100.24.42] client denied by server configuration: /apps/ts2aps/common_top/portal/oprocmgr-service
  log Message called
  TransportAgentMain init called.
  Deug mode false
  Before loading jdbc drivers
  Before creating Connection Pool instance
  Setting INit Connections
  No of Connections to be created 5
  Connection no 0
  DBC file :Applications
  Connection no 1
  DBC file :Applications
  Connection no 2
  DBC file :Applications
  Connection no 3
  DBC file :Applications
  Connection no 4
  DBC file :Applications
  INit Connections done
  log Message called
  log Message called
  DBC file :Applications
  log Message called
  DBC file :Applications
  log Message called
  log Message called
  log Message called
  log Message called
  DBC file :Applications
  DBC file :Applications
  DBC file :Applications
  log Message called
  log Message called
  log Message called
  log Message called
  log Message called
  [Mon Apr  5 22:09:53 2010] [error] OPM: EW: Fail to start process with mod=JServ and grp=OACoreGroup, it's possible that your configuration file is not correct.
  Please let me know for any details.

• URGENT help required : Custom Authentication Plugin for validation of users

  Hi Experts.
  I'm a newbie and am stuck in middle of nowhere.
  I have been asked to develop a custom authentication plug-in which would validate a user using the attributes such as a userid and a shared-userid.
  shared-userid is just a custom id that would be generated on the basis of some logic.
  Currently I'm using OAM 10.1.4.3.0 on WINDOWS server and as everybody, I'm also not able to find any sample files or sample folder structure.
  As per one of the other threads https://forums.oracle.com/forums/thread.jspa?messageID=3838474, sample code and sample folders are removed from this particular version and were present in some previous version.
  So, can anyone please help me out with the following:
  1. How can I proceed to accomplish this task, i.e. to check whether a user-id and a shared-userid both are validated and a user is granted access.
  2. Are all of these files required to create a custom authentication plug-in or can we proceed only with the ".c" file (i.e. make file, authn.c, and a dll file made using the make file and .c file)
  3. Can anybody provide me with a sample file or a sample code written in "C" wherein the plug-in connects to the LDAP and searches for a particular dn for comparison or something. Also a sample make file for windows to convert the .c file to .dll.
  PLEASEEEE help me ASAP.
  Regards
  Edited by: 805912 on Nov 15, 2011 7:18 PM

  Hi,
  Regarding question 2, you also need the header file is supplied in the Access Server installation directory, under ...access\oblix\sdk\authn_api and is called authn_api.h. you need this to build the dll which must then be placed in the Access Server's ...\access\oblix\lib directory.
  Regarding question 3, if you install an earlier version of the Access Server, ie 10.1.4.2 or less, then you will get a \access\oblix\sdk\authentication\samples\authn_api directory that contains a basic sample authentication plugin. However, there is still documented in the 10.1.4.3 Developer Guide another sample plugin, simplapi.c, in the 10.1.4.3 Developer Guide with instructions on how to use it. It does work, but unfortunately requires a couple of edits to get it working after copy&pasting it (no code changes, just fairly obvious case changes eg changing ObanPlugin* to ObAnPlugin*). I used the following commands to get it to compile into a .so file on unix:
  g++44 -c -fPIC -Wno-deprecated -m32 simpleapi.c
  g++44 -shared -nostdlib -lc -m32 simpleapi.o -o simpleapi.so
  but I really would not know if or how these translate into a Windows environment.
  Regards,
  Colin
  Edited by: ColinPurdon on Nov 15, 2011 2:50 PM

• Intermittent issues with Login using OAM-OIF

  Hello
  We are using OIF (11.1.1.3), OAM (10.1.4.3) for authentication mechanism, it's observed that the login functionality fails intermittently when authnoam request redirects to the login form ( we are using form based authentication in OAM), the request /fed/usr/authnoam is being protected by the OAM in the policy configurations.
  Is there any pointer you can provide to pin point where the issue is occurring and why the authnoam request is resulting in the login form page.
  We do following
  1. The /fed/idp/initiatesso request is fired from webcenter along with returnurl and the providerid parameter are passed in the query string parameter
  2. OIF then redirects the request to the authnaom request
  3. the credentials are post for the authnoam request.
  Your inputs are highly appreciated.
  Regards
  Prashant

  Hello,
  BY enabling the trace logging on Webgate and AccessServer we found that the /fed/usr/authnoam request is getting malformed with credential information. Now we are looking as to why this malformed URL is getting generated and there by causing the authentication failure.
  Regards,
  Prashant

• Unable to login using weblogic in sample tutorial page

  I am trying to login using "weblogic" and "weblogic1" credentials to the tutorial page at http://docs.oracle.com/cd/E23943_01/webcenter.1111/e10273/createapp.htm
  But after I click the link "login", nothing is happening. I mean no response is coming and progress bar shows still waiting. Neither its saying invalid credentials.
  But using the same credentials I am able to successfully login into the console page at http://127.0.0.1:7101/console
  I even tried to delete the DefaultDomain and started Integrated Weblogic server and it again automatically created the domain. But still same problem exists.
  Please let me know. Thanks.

  Hi,
  You need to run the setup once to register the administrator user for discussion server. Open /Oracle/Middleware/user_projects/domains/yourdomain/config/fmwconfig/servers/WC_Collaboration1/owc_discussions/jive_startup.xml file and change "true" to "false"
  <jive>
  <!-- When setup is false, you can access the setup tool. -->
  <setup>true</setup> // Change it to false
  <!-- Database settings -->
  <database>
  Now access the http://host:port/owc_discussions/admin/setup and make the configuration and on last step specify weblogic or any other user as admin. Then you will be able to access it.
  Thanks

• OAM Post Authentication plugin

  Hi All,
  Can anybody please suggest me how to develop and configure Post Authentication plugin.
  Thanks

  Hi Sagar,
  Thanks For the Reply.
  Once the user accesses the protected resource then I have to store that UserID in some DataBase.
  And one more thing, Can we write plugin's in Java. As i know we can write in c but not sure about the java compatability.
  Thanks

• New Vision 12.1.1. Unable to login using IE (7 or 8). Firefox 3 & 4 OK

  Brand new, fresh 'out of the box' R12.1.1 vision install on Solaris 10. No additional EBS or tech stack patching done (yet!).
  Install went OK, no issues at all.
  On first connecting to the Apps using Internet Explorer - I get to the login page enter sysadmin/sysadmin, click Login. The browser thinks about it for a second and then returns to the login screen. No errors reported. It just doesn't progress to responsibility selection.
  I get this with the following PC's
  Win XP SP3 - IE7
  Win XP SP3 - IE8
  Win 7 SP1 - IE8
  Exactly the same procedure (on the same PC's) but using Firefox 3 and 4 - I can login fine. Select responsibilities and get into professional forms.
  The Apache logs ($LOG_HOME/ora/10.1.3/Apache) have nothing but the loading of the pages - no errors reported at all.
  I've tried the following so far - nothing has helped
  Bounced Apps
  Bounced DB
  Cleared browser caches
  Cleared EBS Cached (Functional Administrator > Core Services > Caching framework) - did this when using Firefox!
  Ran AutoCOnfig - completes status 0
  Cloned the VIS env to itself
  Anyone got any pointers on what to try next / what may be wrong here?
  Thanks
  Des
  Edited by: DesCollins on 25-Mar-2011 13:58
  Edited by: DesCollins on 25-Mar-2011 13:58

  Update on this issue
  This issue is related to note 420573.1 - Session Error Raised Direct After Login when Using Two-Letter Domain Segments
  Being in the UK it's not too uncommon for server names / addresses to end with .uk - I'd go as far as to say it's pretty common place.
  Looks like somthing in the way R12 works is not setting the cookie information correctly for an EBS sytsem on a server with .uk at the end of the address.
  This is worked around by;
  Editting 'SpecialDomains' in
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0
  I added - lp. rg. ku.
  This 'fix' has worked fine for my Windows XP/IE7 PC - and allows me to login to R12
  The same fix has NOT worked for Windows 7/ IE8.
  Weird thing is... on the same server on which we have this new Vision R12 system, we have many 11.5.10.2 environments. They work with or without the registry hack for WinXP or Win7 clients.
  The SR with Oracle is still ongoing. They're trying to determin what the difference is between how 11i handles the cookie setting and how R12 does.
  If any more progress is made I'll try update this thread.

• Error in custom OAM authentication plugin

  Hi All
  I am trying to build a custom OAM authentication plugin using JDeveloper. Here are the version information:
  OAM - 11.1.1.5 BP04
  WLS - 10.3.5
  Issue:
  I get the following error in the OAM logs when I try to activate the plugin.
  [2012-11-14T09:39:17.996-08:00] [oam_server1] [WARNING] [] [oracle.oam.extensibility.lifecycle] [tid: DistributedCache:DistributionCache:EventDispatcher] [userId: <anonymous>] [ecid: 0000Jfzyiy6EgKI5qrH7iY1GcxMc000002,0] [APP: oam_server] Activation failed due to felix bundle exception while installing and starting the bundle.Unresolved constraint in bundle oamCustomAuthPlugin [2]: Unable to resolve 2.0: missing requirement [2.0] package; (package=oracle.security.am.plugin.ExecutionStatus)[[
  org.osgi.framework.BundleException: Unresolved constraint in bundle oamCustomAuthPlugin [2]: Unable to resolve 2.0: missing requirement [2.0] package; (package=oracle.security.am.plugin.ExecutionStatus)
  at org.apache.felix.framework.Felix.resolveBundle(Felix.java:3404)
  The names of jar file, class file, plugin xml file etc are all same. My plugin code is very generic and I have the following values in the plugin's manifest and xml file
  Plugin xml file [oamCustomAuthPlugin.xml]:
  <Plugin name="oamCustomAuthPlugin" type="Authentication">
  <author>uid</author>
  <email>[email protected]</email>
  <creationDate>09:32:20, 2011-11-13</creationDate>
  <version>4</version>
  <description>OAM Custom Authentication plugin</description>
  <interface>oracle.security.am.plugin.authn.AbstractAuthenticationPlugIn</interface>
  <implementation>com.company.oam.oamCustomAuthPlugin</implementation>
  <configuration>
  <AttributeValuePair>
  <Attribute type="string" length="20">INPUT_PARAM1</Attribute>
  <mandatory>true</mandatory>
  <instanceOverride>false</instanceOverride>
  <globalUIOverride>true</globalUIOverride>
  <value>Param1</value>
  </AttributeValuePair>
  <AttributeValuePair>
  <Attribute type="string" length="20">INPUT_PARAM2</Attribute>
  <mandatory>true</mandatory>
  <instanceOverride>false</instanceOverride>
  <globalUIOverride>true</globalUIOverride>
  <value>Param2</value>
  </AttributeValuePair>
  </configuration>
  </Plugin>
  Manifest File [MANIFEST.MF]:
  Ant-Version: Apache Ant 1.7.1
  Bundle-Version: 1.0.0.4
  Bundle-Name: oamCustomAuthPlugin
  Bundle-Activator: oamCustomAuthPlugin
  Bundle-ManifestVersion: 2
  Created-By: 17.0-b17 (Sun Microsystems Inc.)
  Import-Package: oracle.security.am.plugin,oracle.security.am.plugin.authn
  Bundle-SymbolicName: oamCustomAuthPlugin
  Bundle-RequiredExecutionEnvironment: JavaSE-1.6
  Please let me know if you have faced a sinilar issues in the past. Please help !!

  Try with Import-Package: org.osgi.framework;version="1.3.0",oracle.security.am.plugin,oracle.security.am.plugin.authn,oracle.security.am.plugin.api If it doesn't work try with - Import-Package: org.osgi.framework;version="1.3.0",oracle.security.am.plugin,oracle.security.am.plugin.authn,oracle.security.am.plugin.api ,oracle.security.am.plugin.ExecutionStatus

• OAM 11gR2 Authentication using username/password/additional ldap field

  I want to add additional credential parameter along with username and password to be validated against LDAP.
  Is there any out of the box solution for authentication using username/password/additional ldap field in OAM 11gR2?
  This solutions exist in 10g and could not find any OOB feature in 11g.

  Do you need to accept additional parameter from user via login form & then use it in credential mapping step
  Not sure if %% syntax would work .. havent tried it. next option is to develop custom authentication plugin
  Additional ldap attribute against static value
  If you need to add additional ldap attribute (check against static value) that you can specify in LDAP search filter in "User Identification plugin" configuration
  Take a look at "MTLDAPPlugin" under custom authentication modules
  Hope this helps

• OAM 11g: Error while importing Custom Authentication Plug-in.

  We are trying to create a sample custom authentication plugin in OAM 11g as per the 11.1.1.5.0 doc.
  But while trying to import the plugin via oamconsole (system configuration->Plugins->Import Plugin) we receive an error "Invalid XML Structure".
  Do we have to embed the XSD (XML Schema Definition) as well ?
  -------------------------SamplePlugin.java-------------------------------------
  import oracle.security.am.plugin.ExecutionStatus;
  import oracle.security.am.plugin.MonitoringData;
  import oracle.security.am.plugin.PluginConfig;
  import oracle.security.am.plugin.authn.AuthenticationContext;
  import oracle.security.am.plugin.authn.AuthenticationException;
  import oracle.security.am.plugin.authn.AbstractAuthenticationPlugIn;
  import java.util.Map;
  import java.util.logging.Level;
  class SamplePlugin extends AbstractAuthenticationPlugIn {
       private static final String CLASS_NAME = "FirstTestClass";
       public ExecutionStatus initialize (PluginConfig config){
            super.initialize(config);
            if(LOGGER.isLoggable(Level.FINE)){
                 LOGGER.logp(Level.FINE,CLASS_NAME,"initialize","Entering initialize");
            return ExecutionStatus.SUCCESS;
       @Override
       public String getDescription() {
            // TODO Auto-generated method stub
            return null;
       @Override
       public Map<String, MonitoringData> getMonitoringData() {
            // TODO Auto-generated method stub
            return null;
       @Override
       public String getPluginName() {
            // TODO Auto-generated method stub
            return null;
       @Override
       public int getRevision() {
            // TODO Auto-generated method stub
            return 0;
       @Override
       public ExecutionStatus process(AuthenticationContext arg0)
                 throws AuthenticationException {
            if(LOGGER.isLoggable(Level.FINE)){
                 LOGGER.logp(Level.FINE,CLASS_NAME,"initialize","Entering process");
            return ExecutionStatus.SUCCESS;
       @Override
       public void setMonitoringStatus(boolean arg0) {
            // TODO Auto-generated method stub
       @Override
       public boolean getMonitoringStatus() {
            // TODO Auto-generated method stub
            return false;
  -------------------------SamplePlugin.java-------------------------------------
  ------------------------SamplePlugin.xml--------------------------------
  <?xml version="1.0" encoding="UTF-8" ?>
  <Plugin name="SamplePlugin" type="Authentication">
  <author>Self</author>
  <email>[email protected]</email>
  <creationDate>09:41:22, 2012-02-05</creationDate>
  <version>1</version>
  <description>SamplePlugin</description>
  <interface>oracle.security.am.plugin.authn.AbstractAuthenticationPlugIn</interface>
  <implementation>SamplePlugin</implementation>
  </Plugin>
  ------------------------SamplePlugin.xml--------------------------------
  ------------------------MANIFEST.MF--------------------------------
  Manifest-Version: 1.0
  Ant-Version: Apache Ant 1.8.2
  Bundle-Version: 1.0.0.qualifier
  Bundle-Name: SamplePlugin
  Bundle-Activator: SamplePlugin
  Bundle-ManifestVersion: 2
  Created-By: 1.6.0_24-b07 (Sun Microsystems Inc.)
  Import-Package: org.osgi.framework;version="1.3.0",oracle.security.am.
  plugin,oracle.security.am.plugin.authn,oracle.security.am.plugin.api,
  oracle.security.am.common.utilities.principal,oracle.security.idm,jav
  ax.naming,javax.sql,java.management,javax.security.auth
  Bundle-SymbolicName: SamplePlugin
  Bundle-RequiredExecutionEnvironment: JavaSE-1.6
  ------------------------MANIFEST.MF--------------------------------
  Contents of SamplePlugin.jar
  1. SamplePlugin.xml
  2. SamplePlugin.class
  3. META-INF/
  MANIFEST.MF

  I build the Plugin.jar file similarly as above(followed the same steps)..
  But when i log into OAM and trying to import the plugin (System Configuration->Plugins- Import Plugin) the browser goes to hung state and i see below error in logs (domain log and in diag log)
  I see the jar file created in this location (\Middleware\user_projects\domains\IAMdomain\oam\plugins)
  Please let me know if you have any idea..Thanks!
  ####<Feb 29, 2012 1:10:03 PM PST> <Warning> <oracle.adf.controller.internal.metadata.MetadataService> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-00000000000003fe> <1330549803273> <BEA-000000> <ADFc: /WEB-INF/adfc-config.xml: >
  ####<Feb 29, 2012 1:10:03 PM PST> <Warning> <oracle.adf.controller.internal.metadata.MetadataService> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-00000000000003fe> <1330549803274> <ADFC-52024> <ADFc: Duplicate managed bean definition for 'accessCheck' detected.>
  ####<Feb 29, 2012 1:10:03 PM PST> <Warning> <oracle.adfinternal.view.faces.renderkit.rich.RegionRenderer> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-0000000000000402> <1330549803479> <ADF_FACES-60099> <The region component with id: pt1:_lar has detected a page fragment with multiple root components. Fragments with more than one root component may not display correctly in a region and may have a negative impact on performance. It is recommended that you restructure the page fragment to have a single root component.>
  ####<Feb 29, 2012 1:10:33 PM PST> <Error> <javax.enterprise.resource.webcontainer.jsf.application> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-0000000000000593> <1330549833253> <BEA-000000> <java.lang.NullPointerException
  javax.faces.el.EvaluationException: java.lang.NullPointerException
       at org.apache.myfaces.trinidad.component.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:51)
       at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:102)
       at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:190
  ####<Feb 29, 2012 1:10:33 PM PST> <Warning> <oracle.adfinternal.view.faces.lifecycle.LifecycleImpl> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-0000000000000593> <1330549833316> <BEA-000000> <ADF_FACES-60098:Faces lifecycle receives unhandled exceptions in phase INVOKE_APPLICATION 5
  javax.faces.FacesException: #{FileProcessor.doUpload}: java.lang.NullPointerException
       at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:118)
       at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:190)
       at oracle.adf.view.rich.component.rich.RichPopup$BroadcastContextCallback.invokeContextCallback(RichPopup.java:666)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.invokeOnComponent(UIXComponentBa
  >
  ####<Feb 29, 2012 1:10:33 PM PST> <Error> <oracle.oam.admin.console.policy> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-0000000000000593> <1330549833361> <OAM-400016> <Failed to authenticate the user
  javax.servlet.ServletException: java.lang.NullPointerException
       at javax.faces.webapp.FacesServlet.service(FacesServlet.java:277)
  ####<Feb 29, 2012 1:10:34 PM PST> <Warning> <oracle.adf.view.rich.component.fragment.UIXRegion> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-000000000000059a> <1330549834008> <ADF_FACES-00009> <Error processing viewId: /plugin-taskflow/authplugins URI: /oracle/security/am/taskflows/authplugin.jsff actual-URI: /oracle/security/am/taskflows/authplugin.jsff.
  javax.el.ELException: java.lang.NullPointerException
       at javax.el.BeanELResolver.getValue(BeanELResolver.java:266)
       at com.sun.faces.el.DemuxCompositeELResolver._getValue(DemuxCompositeELResolver.java:173)
       at oracle.adfinternal.view.faces.renderkit.rich.PanelCollectionRenderer$PanelCollectionHelper._encodeAll(PanelCollectionRenderer.java:728)
       at oracle.adfinternal.view.faces.renderkit.rich.PanelCollectionRenderer$PanelCollectionHelper.access$500(PanelCollectionRenderer.java:537)
       at oracle.adfinternal.view.faces.renderkit.rich.PanelCollectionRenderer.encodeAll(PanelCollectionRenderer.java:402)
       at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1396)
       at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:335)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:767)
       at javax.faces.component.UIComponent.encodeAll(UIComponent.java:937)
  ####<Feb 29, 2012 1:10:34 PM PST> <Warning> <oracle.adfinternal.view.faces.lifecycle.LifecycleImpl> <spsolutions> <AdminServer> <[ACTIVE] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <weblogic> <> <d6305b57ff260991:700b4664:135ca3d69dc:-8000-000000000000059a> <1330549834020> <BEA-000000> <ADF_FACES-60098:Faces lifecycle receives unhandled exceptions in phase RENDER_RESPONSE 6
  javax.faces.FacesException: javax.el.ELException: java.lang.NullPointerException
       at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._renderResponse(LifecycleImpl.java:804)
       at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:294)
       at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:214)

• History Attributes when using Custom Authentication Type

  assigned all History Attributes (in the Entity Object Editor) to my audit columns.
  During run time, I find only Created By is assigned the SYSDATE, and Created On, Modified On, and Modified By are null.
  I am using Custom Authentication Type.
  I have read that the History Attributes only work the the JAAS authentication type. Appreciate any one confirming this.
  Also, how do you implement History Attributes if you are using the Custom Authentication Type? Do you need to write Java code?
  Thanks.
  John

  Hi,
  confirmed it only works with container managed authentication performed through JAZN. You can't use this with custom security as otherwise this feature could be overwritten. Still you can provide your own implementation:
  - create a custom table
  - use the setAttr method on the RowImpl class of a VO to store the username
  Frank

• User!UserID when using custom Authentication in SSRS2012

  We are using FormsAuthentication with SSRS2012 for our custom authentication in SSRS2012.
  What SSRS code determines User!UserID report expressionwhen using a custom authentication provider?
  I ask this because if the FormsAuthCookie.UserName determines the User!UserID value, then I need to use a more unique value than FirstName/LastName when building the forms auth cookie.
  thanks
  scott

  Hi scott,
  UserID is the ID of the user running the report. If you are using Windows Authentication, this value is the domain account of the current user(Domain/username).
  The value of User!UserID is determined by the Reporting Services security extension, which enables the authentication and authorization of users or groups; that is, it enables different users to log on to a report server and, based on their identities,
  perform different tasks or operations.
  By default, Reporting Services uses a Windows-based authentication extension, which uses Windows account protocols to verify the identities of users who claim to have accounts on the system. Reporting Services uses a role-based security system to authorize
  users. The Reporting Services role-based security model is similar to the role-based security models of other technologies.
  WorkFlow about authentication and authorization occur as follows:
  https://msdn.microsoft.com/en-us/library/ms152825.aspx
  The user credentials are submitted to the Reporting Services Web service through the
  LogonUser method.
  This member of the Reporting Services Web service can be used to pass user credentials to a report server for validation. Your underlying security extension implements
  IAuthenticationExtension.LogonUser which contains your custom authentication code. In the Forms Authentication sample,
  LogonUser, which performs an authentication check against the supplied credentials and a custom user store in a database. An example of an implementation of
  LogonUser looks like this:
  https://msdn.microsoft.com/en-us/library/ms152899.aspx
  If you still have any problem, please feel free to ask.
  Regards
  Vicky Liu
  If you have any feedback on our support, please click
  here.
  Vicky Liu
  TechNet Community Support