Username in web apps
Hi, I am making a recipe app allowing users to upload their own recipes. How can I display their username alongside their uploaded recipes?
You make a web app custom field for username.
When they log in and go to add a reciepe and you have your web app item submission form you will have that custom field input on the form.
Set the value of that to value="{module_fullname}"
Ideally a username should be an email or you can run into a few issues with usernames being the same and you do not want to show their username as it is one step to knowing that persons login details anway.
If you just want a nickname you can make a custom CRM field and set that as the input value when logged in... Lots of options.
Basically your storing a value based on the modules availible when someone is logged in into an input field of the web app item
http://helpx.adobe.com/business-catalyst/kb/modules-quick-reference.html#id_17279
Similar Messages
-
Hi ,
I am trying to create a new web app using Central Administration in Sharepoint 2010 and getting an error "The password supplied with the username was not correct. Verify that it was entered correctly and try again".
I tried running this command also "stsadm -o updatefarmcredentials -userlogin <domain\username> -password <newpassword>" but when it got executed it showed me "Access Denied".
What should i do ??
Thanks in advance.
Regards, AnuragHI,
right click on command icon and click run as administrator then use above stsadm commend to update credential. If still you face same issue then try with powershell as mention in below link: (make sure that you open sharepoint powershell as run as administrator)
http://smartrider.wordpress.com/2010/07/15/powershell-script-to-create-web-application-and-site-collection-in-sharepoint-2010/
let us know your result
Hemendra: "Yesterday is just a memory,Tomorrow we may never see"
Whenever you see a reply and if you think is helpful, click "Vote As Helpful"! And whenever
you see a reply being an answer to the question of the thread, click "Mark As Answer -
SSO to Web App using Application Integrator - not working
Hi,
I've set up App Integrator for my web application, following the Yahoo example in the guide. My URL template is <System.protocol>://<System.server><System.uri>?<Authentication> and the fraction for user mapping is op=<MappedUser>&pwd=<MappedPassword>.
It doesn't log me in. Even if I change the URL template to the actual address of my web app and use a real user & password (rather than <Mapped..>), it still doesn't work.
I've got SSO to my web app working using a HTTP system and URL iview but I would really like to see the App Integrator working as well. Any ideas?
Many thanks
JaneCan anyone please help with this? I installed a http sniffer so maybe I could see what was going on. My HTTP System simply goes to the URL with the parameters added as expected, but the app integrator one is a bit more complex - I can see the URL & parameters in this function:
function requestTargetURL() {
var theURL = "<b>HTTPS://(myserver)/log-in.htm?op=(####)&pwd=(####)</b>";
var dsmObj;
if (hasNestedFrameStructure()) {
location.replace(theURL);
dsmObj = parent.EPCM.DSM;
} else {
document.body.scroll = "no"; // for IE only
var theIframe = document.getElementById("iframe_GETRedirect_1593748234");
theIframe.style.visibility = "visible";
theIframe.src = theURL;
dsmObj = EPCM.DSM;
document.title = 'JDS';
function onloadhandler(){
setTimeout("requestTargetURL()",1);
and the server/username/password are all correct but there's a lot of other stuff in there which I'm not sure how affects it. Anyone know have any ideas why this isn't working? Does it matter that my web app is https but the portal is http?
Any help greatly appreciated!
Thanks in advance
Jane -
Web app security ... i don't get it
I do not get it how do one configure web.xml
I want every page to be protected against unlogged user and some pages only to some of them
From what I read it's only necessary to have only one root role that every user is part of and then any sub-role is recognized
My use case:
every page should be protected against unauthorized user
<security-constraint>
<display-name>Restrictie de vizualizare pe orice pagina jsf</display-name>
<web-resource-collection>
<web-resource-name>JSF Pages</web-resource-name>
<url-pattern>/faces/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>fullaccess</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>and I want that managers only to have access to /managers so I guess that a new </security-constraint> must be issued to allow the users that have managers role to access the resource.
<security-constraint>
<display-name>Restrictie de vizualizare pe orice pagina jsf</display-name>
<web-resource-collection>
<web-resource-name>JSF Pages</web-resource-name>
<url-pattern>/faces/manager/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>managers</role-name> ????
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint> What are the roles that must be declared in web.xml knowing that
<security-role-assignment>
<role-name>fullaccess</role-name>
<principal-name>public</principal-name>
</security-role-assignment>
</weblogic-web-app> and in the realm public group has a member 'managers' (that in my opp must not be mapped)?
..on the moment there is only
<security-role>
<description>acces pe toate paginile web</description>
<role-name>fullaccess</role-name>
</security-role>thanks, Florin POPHi guys.
A username and password info to connect to BC is the following:
Username - Your adobe ID email
Password - Your password.
To connect to SFTP its...
Server: Just the address (yoursite.businesscatalyst.com)
username - yoursite.businesscatalyst.com/[email protected]
Password - your password. -
Cannot preview attachments using Office Web App Server 2013 ( Preview )
Got a lab environment to test Office Web App Server integration with Exchange 2013
i have followed the instructions given here
http://technet.microsoft.com/en-US/jj219455
http://technet.microsoft.com/library/2591b1be-92c4-4192-9f5e-e4e6b319170a
After all required configuration , i am still unable to preview the office documents from OWA
Receiving the following messages by clicking on the Preview link next to the attachment:
Word Document : "Sorry, there was a problem and we can't open this document. If this happens again, try opening the document in Microsoft Word."
Excel Document: "We couldn't find the file you wanted. It's possible the file was renamed, moved or deleted"
PowerPoint: "Sorry, we ran into a problem. Please try again"
As suggested i even see the Application Log the 140 and 142 Event IDs for MSExchange OWA
Already configured to enable the rendering of attachments through OWAS both on public and private computers:
This is what I can see in the ULS log on the Web App Server
WAC Server HttpModule: Beginning request at target [/p/PowerPointFrame.aspx?PowerPointView=SlideShowView&ui=en-US&rs=en-US&WOPISrc=https%3a%2f%2f<Server>%3a443%2fowa%2fuser02%2540<Domain>%2fwopi%2ffiles%2f%40%2fowaatt%3fowaatt%3dLFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%252bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%253d&]
in session [b373a48e-9fca-445b-a7b2-2966f11b18de]
b373a48e-9fca-445b-a7b2-2966f11b18de
UserSessionId=b373a48e-9fca-445b-a7b2-2966f11b18de
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI CheckFileInfo: Start [url:https://<Server>:443/owa/user02%40<Domain>/wopi/files/@/owaatt?owaatt=LFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%2bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%3d]
b373a48e-9fca-445b-a7b2-2966f11b18de
URL generated for WOPI CheckFile Request: https://<Server>:443/owa/user02%40<Domain>/wopi/files/@/owaatt?owaatt=LFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%2bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%3d&access_token=REDACTED_1086&access_token_ttl=0
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI Proof Data: AccessToken Hash '669582051' [1086 bytes], URL 'HTTPS://<Server>/OWA/USER02%40<Domain>/WOPI/FILES/@/OWAATT?OWAATT=LFMTMS01LTIXLTIWODU5NZU2NJITMTE4ODQ1NZE5NY04MDY2NJG5MC0XMTI5VUTGXJ%2BT0AGBAQEAQE1JDE5TSELQZJBHWWTXUTFTZI8YQ3HTSGZXS3IZB1GWZGVFWVHJDKLHBGWWC3F0DNJIQJBZZ0D2EXBDVCTAEEU%3D&ACCESS_TOKEN=REDACTED_1086&ACCESS_TOKEN_TTL=0'
[1354 bytes], TimeStamp '635169449614353585' [8 bytes]
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI Proof: Using Current private key (to sign) that matches Current public key BgIAAACkAABSU0ExAAgAAAEAAQDhPcfARgzhUlTFzo1jhCPHeoylNWp6pBbq6QM6CVQkbFyp4/I+mDzK4JA+AA3BFWLtpQEB7zIEbdjzhdsuYWYAJWBfvfX/3m2E3WRNhcPV8I2rA2T6qWj5Fb6eMNnoz4n2/1sqUXfyIA8mADXUebe9JNyJ+icPluUX+vTNm4m2IWbEgWmJNkgi9OUAq2hmd2lJifbJW8jNr1qzqBCE3ITFwr0L2svMrxfe5nKXVHbZa0EBYxMwHoc3ZkE0dZ0NPle9pq3MObg2+D5RN/w/B0axTJD7G/fQDpZbdsfvKA8mlyCn/vbNpooq5LgvGowTAWmG/tr1kWetfjePAbjBkIK5
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI Proof - Successfully signed the data with the Current private key [4 ms]
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI Proof Keys - WS Farm State has no Old key (this is expected if recently installed)
b373a48e-9fca-445b-a7b2-2966f11b18de
Cannot create WOPI Proof Token - could not find valid Old proof key data
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync (WOPICheckFile,WACSERVER) Starting [mode: GET, url: https://<Server>:443/owa/user02%40<Domain>/wopi/files/@/owaatt?owaatt=LFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%2bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%3d&access_token=REDACTED_1086&access_token_ttl=0]
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync (WOPICheckFile,WACSERVER) End Called
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync::GetResponseCallback - ContentLength:9327
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync::FProcessReadReturn - cbRead:9327
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync::FProcessReadReturn - cbRead:0
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync (WOPICheckFile,WACSERVER) Setting Completion [Time in ms: 3, Bytes Read: 9327 ContentLength: 9327]
b373a48e-9fca-445b-a7b2-2966f11b18de
HttpRequestAsync (WOPICheckFile,WACSERVER) SetCompletion Track start | setting trackers | WebRequest.Create() | Create() returned | setting request headers | setting user agent | setting keep alive | setting timeout callback | Start calling StartResponseProcessing
| StartResponseProcessing._req.BeginGetResponse() | BeginGetResponse() returned | StartResponseProcessing RETURNS | Start RETURNS | End.AsyncWaitHandle.WaitOne() | GetResponseCallback isSync:False | _req.EndGetResponse() | EndGetResponse() returned | RecordResponse
OK | _response.GetResponseStream() | _response.GetResponseStream() RETURNED | DoReadLoopFinished | _getStream.BeginRead() | ReadCallback.sync returning | BeginRead() -> sync:True | DoReadLoopFinished.FProcessReadReturn() | FProcessReadReturn._getStream.EndRead()
| EndR... b373a48e-9fca-445b-a7b2-2966f11b18de
...ead() -> 9327 | FProcessReadReturn._responseStream.Write() | FProcessReadReturn RETURNS True | FProcessReadReturn() -> true | _getStream.BeginRead() | ReadCallback.sync returning | BeginRead() -> sync:True | DoReadLoopFinished.FProcessReadReturn()
| FProcessReadReturn._getStream.EndRead() | EndRead() -> 0 | FProcessReadReturn._responseStream.Write() | FProcessReadReturn RETURNS False | FProcessReadReturn() -> false | DoReadLoopFinished RETURNS true | GetResponseCallback DoReadLoopFinished ->
TRUE | SetCompletion False | b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI Http Request Completed [host machine name:, version:, host correlation:]
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI: Could not deserialize file metadata [url:https://<Server>:443/owa/user02%40<Domain>/wopi/files/@/owaatt?owaatt=LFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%2bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%3d,
e:There was an error deserializing the object of type Microsoft.Office.OpenWebApplication.WopiCheckFileResponse. Encountered unexpected character '<'.]
b373a48e-9fca-445b-a7b2-2966f11b18de
WOPI: Invalid file metadata [url:https://<Server>:443/owa/user02%40<Domain>/wopi/files/@/owaatt?owaatt=LFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%2bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%3d,
triggers:(No Version No FileName No OwnerId), data:<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <!-- Copyright (c) 2011 Microsoft Corporation. All rights reserved. --> <!-- OwaPage = ASP.auth_logon_aspx -->
<!-- {57A118C6-2DA9-419d-BE9A-F92B0F9A418B} --> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="X-UA-Compatible" content="IE=10"
/> <link rel="shortcut icon" href="/owa/auth/15.0.775/themes/resources/favicon.ico" type="image/x-icon"> <meta ...
b373a48e-9fca-445b-a7b2-2966f11b18de
...http-equiv="Content-Type" content="text/html; CHARSET=utf-8"> <meta name="Robots" content="NOINDEX, NOFOLLOW"> <title>Outlook Web App</title> <link type="text/css"
rel="stylesheet" href="/owa/auth/15.0.775/themes/resources/logon.css"> <script type="text/javascript" src="/owa/auth/15.0.775/scripts/premium/flogon.js"></script> <script type="text/javascript"
src="/owa/auth/15.0.775/scripts/premium/flayout.js"></script> <script type="text/javascript"> <!-- var a_fRC = 1; var g_fFcs = 1; var a_fLOff = 0; var a_fCAC = 0;
var a_fEnbSMm = 0; /// <summary> /// Is Mime Control installed? /// </summary> function IsMimeCtlInst(progid) { if (!a_fEnbSMm) return false; var oMimeVer = null; try
{ // TODO: ingore this on none IE browser // //oMimeVer = new ...
b373a48e-9fca-445b-a7b2-2966f11b18de
...ActiveXObject(progid); } catch (e) { } if (oMimeVer != null) return true; else return false; } /// <summary> /// Render out the S-MIME control
if it is installed. /// </summary> function RndMimeCtl() { if (IsMimeCtlInst("MimeBhvr.MimeCtlVer")) RndMimeCtlHlpr("MimeNSe2k3", "D801B381-B81D-47a7-8EC4-EFC111666AC0", "MIMEe2k3",
"mimeLogoffE2k3"); if (IsMimeCtlInst("OwaSMime.MimeCtlVer")) RndMimeCtlHlpr("MimeNSe2k7sp1", "833aa5fb-7aca-4708-9d7b-c982bf57469a", "MIMEe2k7sp1", "mimeLogoffE2k7sp1");
if (IsMimeCtlInst("OwaSMime2.MimeCtlVer")) RndMimeCtlHlpr("MimeNSe2k9", "4F40839A-C1E5-47E3-804D-A2A17F42DA21", "MIMEe2k9", "mimeLogoffE2k9"); } /// <summary>
/// Helper function to factor out the rendering of the S/MIME control. /// </summary> func...
b373a48e-9fca-445b-a7b2-2966f11b18de
...tion RndMimeCtlHlpr(objid, classid, ns, id) { document.write("<OBJECT id='" + objid + "' classid='CLSID:" + classid + "'></OBJECT>"); document.write("<?IMPORT namespace='"
+ ns + "' implementation=#" + objid + ">"); document.write("<" + ns + ":Logoff id='" + id + "' style='display:none'/>"); } --> </script>
<script> var mainLogonDiv = window.document.getElementById("mainLogonDiv"); var layout = DetermineLayout(); var
showPlaceholderText = false; var mainLogonDivClassName; if (layout == LayoutTypeEnum.Mouse) { mainLogonDivClassName = "mouse";
} else if (layout == LayoutTypeEnum.TouchNarrow) { mainLogonDivClassName = "tnarrow"; showPlaceholderText
= true; ...
b373a48e-9fca-445b-a7b2-2966f11b18de
... // Output meta tag for viewport scaling document.write('<meta name="viewport" content="width = 320, initial-scale = 1.0, user-scalable = no" />'); }
else { mainLogonDivClassName = "twide"; showPlaceholderText = true; }
function setPlaceholderText() { window.document.getElementById("username").placeholder = "domain\\user name";
window.document.getElementById("password").placeholder = "password"; window.document.getElementById("passwordText").placeholder = "password";
} function showPasswordClick() { var showPassword = window.document.getElementById("showPasswordCheck").checked;
window.document.getElementById("password"...
b373a48e-9fca-445b-a7b2-2966f11b18de
...).type = showPassword ? "input" : "password"; } </script> </head> <body class="signInBg" style="background: #f2f2f2 url('/owa/auth/15.0.775/themes/resources/bg_gradient_login.png')
repeat-x"/> <noscript> <div id="dvErr"> <table cellpadding="0" cellspacing="0"> <tr> <td><img src="/owa/auth/15.0.775/themes/base/warn.png"
alt=""></td> <td style="width:100%">To use Outlook Web App, browser settings must allow scripts to run. For information about how to allow scripts, consult the Help for your browser. If your browser doesn't
support scripts, you can download <a href="http://www.microsoft.com/windows/ie/downloads/default.mspx">Windows Internet Explorer</a> for access to Outlook Web App.</td> </tr> </table>
</div> </noscript> <form action...
b373a48e-9fca-445b-a7b2-2966f11b18de
...="/owa/auth.owa" method="POST" name="logonForm" ENCTYPE="application/x-www-form-urlencoded" autocomplete="off"> <input type="hidden" name="destination" value="https://<Server>/owa/user02@<Domain>/wopi/files/@/owaatt?owaatt=LFMtMS01LTIxLTIwODU5NzU2NjItMTE4ODQ1NzE5Ny04MDY2Njg5MC0xMTI5VUtGxj%2bT0AgBAQEAQE1jdE5tSElqZjBHWWtXUTFtZi8yQ3htSGZxS3Izb1gwZGVFWVhjdklhbGwwc3F0dnJiQjBzZ0d2eXBDVCtaeEU%3d&access_token=REDACTED_1086&access_token_ttl=0">
<input type="hidden" name="flags" value="4"> <input type="hidden" name="forcedownlevel" value="0"> <!-- Default to mouse class, so that things don't
look wacky if the script somehow doesn't apply a class --> <div id="mainLogonDiv" class="mouse"> <script> var mainLogonDiv = window.document.getElementById("mainLogonDiv");
... b373a48e-9fca-445b-a7b2-2966f11b18de
... mainLogonDiv.className = mainLogonDivClassName; </script> <div class="sidebar"> <div class="owaLogoContainer">
<img src="/owa/auth/15.0.775/themes/resources/olk_logo_white.png" class="owaLogo" aria-hidden="true" /> <img src="/owa/auth/15.0.775/themes/resources/olk_logo_white_small.png"
class="owaLogoSmall" aria-hidden="true" /> </div> </div> <div class="logonContainer"> <div id="lgnDiv" class="logonDiv"
onKeyPress="return checkSubmit(event)"> <div class="signInImageHeader" role="heading" aria-label="Outlook Web App ">
<img class="mouseHeader" src="/owa/auth/15.0.775/themes/resources/owa_text_blue.png" alt="Outlook Web App " /> </div>
<div class="signInInp...
b373a48e-9fca-445b-a7b2-2966f11b18de
...utLabel" id="userNameLabel" aria-hidden="true">Domain\user name:</div> <div><input id="username" name="username" class="signInInputText" role="textbox" aria-labelledby="userNameLabel"/></div>
<div class="signInInputLabel" id="passwordLabel" aria-hidden="true">Password:</div> <div><input id="password" onfocus="g_fFcs=0" name="password" value=""
type="password" class="signInInputText" aria-labelledby="passwordLabel"/></div> <div class="showPasswordCheck signInCheckBoxText">
<input type="checkbox" id="showPasswordCheck" class="chk" onclick="showPasswordClick()" /> <span>Show password</span>
</div> <div class="signInError" role="alert" tabIndex="0"> </div> <div id="expltxt"
class="signInExpl" role="alert"> ...
b373a48e-9fca-445b-a7b2-2966f11b18de
... </div> <div class="signInEnter"> <div onclick="clkLgn()" class="signinbutton" role="button" tabIndex="0" >
<img class="imgLnk"
src="/owa/auth/15.0.775/themes/resources/Sign_in_arrow.png" alt=""><span class="signinTxt">sign
in</span> </div> <input name="isUtf8" value="1" type="hidden"/> </div>
<div class="hidden-submit"><input type="submit" tabindex="-1"/></div> </div> </div> <div id="cookieMsg" class="logonDiv"
style="display:none"> <div class="signInHeader">Outlook Web App </div> <div class="signInExpl">Please enable cookies for this Web site.<br><br>Cookies are
currently disabled by your browser. Outlook Web...
b373a48e-9fca-445b-a7b2-2966f11b18de
... App requires that cookies be enabled. <br><br>For information about how to enable cookies, see the Help for your Web browser.<br><br><br></div> <div class="signInEnter" >
<div onclick="clkRtry()" style="cursor:pointer;display:inline"> <img class="imgLnk" src="/owa/auth/15.0.775/themes/resources/Sign_in_arrow.png"
alt=""><span class="signinTxt" tabIndex="0">retry</span> </div> </div> </div> </div> </form>
<script> if (showPlaceholderText) { setPlaceholderText(); } </script> </body> </html> ]
b373a48e-9fca-445b-a7b2-2966f11b18de
FileUnknownException loading powerpointframe: Microsoft.Office.Web.Common.EnvironmentAdapters.FileUnknownException: WOPI Check File at Microsoft.Office.Web.Apps.Common.WopiDocument.CheckWopiFile() at Microsoft.Office.Web.Common.BaseDocumentCache.CheckBaseDocumentInternal(BaseDocument
baseDoc, BaseUser user, Boolean requiresVersion, String canary, Boolean checkCanary, Boolean fUseCacheLookup) at Microsoft.Office.Server.Powerpoint.Web.UI.PptWebControl.CheckFileInfo()
b373a48e-9fca-445b-a7b2-2966f11b18de
ViewOpenEarlyHelper: no presentation Id, failing.
b373a48e-9fca-445b-a7b2-2966f11b18de
IsAuthenticated: False, IsAnonymous: False, AuthType:
b373a48e-9fca-445b-a7b2-2966f11b18de
Secure connection detected, redirecting service endpoint from ppt/view.svc/jsonAnonymous to ppt/view.https.svc/jsonAnonymous
b373a48e-9fca-445b-a7b2-2966f11b18de
WACServer HttpModule: EndRequest Called b373a48e-9fca-445b-a7b2-2966f11b18de
Any suggestions ...Hi,
Here is a similar thread for your reference:
http://social.technet.microsoft.com/Forums/en-US/ded515c8-cc0f-4ad4-bed6-e56a0636be79/exchange-office-web-apps-preview-does-not-work-in-owa-web?forum=exchangesvrclients
Hope it hleps you!
Thanks.
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
When I pull up the Term store in CA or any MySite collection, it works.
When I do so in any other site collection (HNSCs, incidentally), It doesn't return any term stores.
My ULS log immediately before and after the "/_vti_bin/taxonomyinternalservice.json/CheckPermission" POST on termstore .aspx triggers the WCF call:
Claims Authentication af30y Verbose Claims Windows Sign-In: Successfully signed-in the the user 'contoso\domainUser' for request url 'https://sp13-root-prd.contoso.com/_vti_bin/taxonomyinternalservice.json/CheckPermission'.
Claims Authentication af30q Verbose Updating header 'LOGON_USER' with value '0#.w|contoso\domainUser' for the request url 'https://sp13-root-prd.contoso.com/_vti_bin/taxonomyinternalservice.json/CheckPermission'.
Authentication Authorization agb9s Medium Non-OAuth request. IsAuthenticated=True, UserIdentityName=0#.w|contoso\domainUser, ClaimsCount=77
Logging Correlation Data xmnv Medium Site=/
Topology e5mc Medium WcfSendRequest: RemoteAddress: 'http://CONTOSOFE3:32843/00e6d55691824965ac223f1d1cfae6d2/MetadataWebService.svc' Channel: 'Microsoft.SharePoint.Taxonomy.IMetadataWebServiceApplication' Action: 'http://schemas.microsoft.com/sharepoint/taxonomy/soap/IDataAccessReadOnly/GetChanges2' MessageId: 'urn:uuid:590e916c-c89a-4f89-9819-a82c97fabcaa'
Claims Authentication bz7l Medium SPSecurityContext: Could not retrieve a valid windows identity for username 'contoso\domainUser' with UPN '[email protected]'. UPN is required when Kerberos constrained delegation is used. Exception: System.ServiceModel.FaultException`1[System.ServiceModel.ExceptionDetail]: WTS0003: The caller is not authorized to access the service. (Fault Detail is equal to An ExceptionDetail, likely created by IncludeExceptionDetailInFaults=true, whose value is: System.UnauthorizedAccessException: WTS0003: The caller is not authorized to access the service. at Microsoft.IdentityModel.WindowsTokenService.CallerSecurity.CheckCaller(WindowsIdentity callerIdentity) at Microsoft.IdentityModel.WindowsTokenService.S4UServiceContract.PerformLogon(Func`1 logonOperation, Int32 pid) at SyncInvokeUpnLogon(Object , Object[] , Object[] ) at System.ServiceModel.Dispatcher.SyncMethodInvoker.Invoke(Object instance, Object[] inputs, Object[]& outputs) at System.ServiceModel.Dispatcher.DispatchOperationRuntime.InvokeBegin(MessageRpc& rpc) at System.ServiceModel.Dispatcher.ImmutableDispatchRuntime.ProcessMessage5(MessageRpc& rpc) at System.ServiceModel.Dispatcher.ImmutableDispatchRuntime.ProcessMessage31(MessageRpc& rpc) at System.ServiceModel.Dispatcher.MessageRpc.Process(Boolean isOperationContextSet))..
Claims Authentication g220 Unexpected No windows identity for contoso\domainUser.
The "The caller is not authorized to access the service." message seems pertinent.
Both web apps are using only NTLM auth.
The url for both web apps ends in the same contoso.com domain.
I get the same errors no matter what account I use, including the install account.
Things I've tried:
Deleting and building a new HNSC root web app and site. Error happens in all sites in all web apps except the PBSC hosting MySites.
Giving the root site app pool identity full control of the metadata service app (even though the MySite identitiy doesn't have it)
Giving the root site app pool identity full permissions on the metadata service app.
Comparing database and web app config permissions between dev (where everything works perfectly) and prod (where it does not).
Made sure IIS auth settings on both sites are identical
Both sites are using the same SSL certificate (though the call to the web service appears to be http)
Reprovisioned the metadata service app with a new database and new app pool identity.
Made sure C2WT is running. Tried it with the service stopped as well.
Web.configs are identical between working and non-working apps.
I'm stumped but still Googling. I'm hoping to avoid having to call Micrososft. Any help would be appreciated!
UPDATE:
Interestingly, when I restored the web application from backup (via CA), I ended up with 3 identical "Windows Authentication" authentication providers assigned to the problem web app. Since there was more than one, I was directed to the provider-chooser
page when visiting the site. Upon choosing 1 of the 3, I was authenticated, and *poof*, no more authentication errors and the term store loaded term sets as expected.
Of course, 3 providers was not an ideal state, so I grabbed the one that worked (#1) via get-spauthenticationprovider, and assigned it to the web app via set-spwebapplication, and my problem returned.
I am currently updating the farm to SP1 from June 2013 CU. Fingers crossed.
Update:
The update to SP1 went smoothly, but did not resolve the issue. Also related (I believe) are the random authentication errors when trying to upload images to some libraries, and 401-errors on the accessdenied.aspx page itself.
Update:
The problem is resolved, seemingly after making 4 changes. I'm trying to narrow down which change was the cure, if any:
I installed SP1 on all 6 servers, rebooted and upgraded. This appeared to have no effect.
Removed an old login from SQL that no longer existed in AD because of this ULS error:
System.Runtime.InteropServices.COMException: The user or group contoso\svc_xxxxxxxxx' is unknown., StackTrace: at Microsoft.SharePoint.Utilities.SPUtility.GetFullNameFromLoginEx(String loginName, Boolean&
bIsDL)
This login was the identity of the application pool that used to run the web app in question.
This login was the schema owner of a schema named after itself on every SharePoint database so I changed the schema owner to dbo but left the schema attached.
The problem may have surfaced initially when the app pool identity was changed in CA, but went unnoticed?
Note that the web app had been deleted and recreated many times with a new identity and pool to no avail, but the URL remained the same throughout each attempted fix. Relevant?
Grasping at straws, I changed the app pool identity for this web app to the same one that runs the MySite web app pool as per this only slightly related problem: http://www.planetsharepoint.org/m/preview.php?id=372&rid=34764&author=Vlad+Catrinescu
I changed the authentication method from NTLM to Negotiate.
I am rolling back #3 and #4 to see if the issue resurfaces.
Update:
It doesn't appear to have been the NTLM/Negotiate setting. Web app is currently set to NTLM and all is well. No strange accessdenies, and term Store is still manageable from all sites.
Update: Sorry for the delay. I am administering 6 farms these days. Will update as soon as the final phase of rollbacks happens.
I think I can. I think I can.maybe that web app was accidentally created with classic auth?
here's an example of how to create claims based, with classic, and then "doing 2013" claims
#Create the example web application, as mentioned above, either with gui, and pick later, or
New-SPWebApplication-ApplicationPool$applicationPool-ApplicationPoolAccount$serviceAcct-Name$WebApp-Port
5050
-databaseName$contentDB-securesocketslayer
#If doing for 2013
New-SPWebApplication-ApplicationPool$applicationPool-ApplicationPoolAccount$serviceAcct-Name$WebApp-Port
5050
-AuthenticationProvider(new-spauthenticationprovider)
-databaseName$contentDB-secureSocketsLayer -
Web app Connection.close()...how to prevent
Hello
I am somewhat new to this, but I am developing an web application that will be a help desk of sorts for clients to log on and create trouble tickets, plus many other features. I have completed the project and it works fine when I first start tomcat but an unexpected state keeps occurring and I can't seem to figure it out.
After a while (I say a while cause I'm not sure exactly how long, but I'd say +5 hours) my application no longer will work and in the tomcat log I get the following message.
Could not execute a query statement!Connection.close() has already been called. Invalid operation in this state.
java.sql.SQLException: Connection:close() has already been called.
at com.mysql.jdbc.Connection.getMutex(Connection.java:1906)
at com.mysql.jdbc.Statement.executeQuery(Statement.java:1115)
at brokers.RelationalBroker.query(RelationalBroker.java:171)
the RelationalBroker.java is
package brokers;
* Created on May 12, 2004
* Class: RelationalBroker
* Package: brokers
* On-Track, Ticket Tracking System
* @author
* @version
* This Class is used as the super class for all of the child brokers
* for the database. The main purpose if this class is to allow all the
* child classes to share the open connection to the database and execute
* queries and updates on the database. This class is part of the brokers
* package.
//imports
import java.sql.*;
public class RelationalBroker {
//Instance Attributes
* The attribute con represented by a Connection object is used to hold
* the active connection to the database. This connection is shared with
* all of the child brokers.
private Connection con = null;
* The attribute statement represented by a Statement object is used to
* execute the query and update statements on the database by the child
* brokers.
private Statement statement = null;
* The attribute results represented by a ResultSet is used to hold
* the results of a query executed on the database.
private ResultSet results = null;
//Constructors
* Default constructor used to create a RelationalBroker object.
public RelationalBroker(){
// Getters
* The Getter getCon is used to get the Connection object.
* @return Connection con.
public Connection getCon() {
return con;
* The Getter getResults is used to get the ResultSet results.
* @return ResultSet results.
public ResultSet getResults() {
return results;
* The Getter getStatement is used to get the Statement object.
* @return Statement statement.
public Statement getStatement() {
return statement;
//Methods
* The method connect is used to connect to the database given a username
* password, location of driver, and URL of the database. This method also
* creates the Statement object to be used for queries ans updates on the database.
* @param driver A String containing the location of the database driver.
* @param URL A String containing the location of the database on a netowrk.
* @param user A String containing the username of the database account.
* @param pass A String containing the password of the database account.
public void connect(String driver, String URL, String user, String pass){
try{
Class.forName(driver);
con = DriverManager.getConnection(URL, user, pass);
statement = con.createStatement();
catch (ClassNotFoundException cExp){
System.out.println("Cannot find class for driver");
catch (SQLException sqle){
System.out.println("Error opening table or creating statement!: " + sqle.getMessage());
sqle.printStackTrace();
System.exit(0);
* The method closeConnection is used to close the active connection
* to the database.
* @return A boolean containing the status of the connection, True if closed
* false if open.
public boolean closeConnection(){
boolean isClosed = false;
try{
con.close();
isClosed = con.isClosed();
catch(SQLException sqle){
System.out.println("Error closing connection!" + sqle.getMessage());
//finally{
return isClosed;
* The method rollBack is used to execute a rollback statement on
* the database, to undo any changes since the last commit.
* @return void
public void rollBack(){
try{
con.rollback();
catch(SQLException sqle){
System.out.println("Could not execute a Rollback statement!" + sqle.getMessage());
sqle.printStackTrace();
* The method commit is used to execute a commit statement on the
* database, to make any changes final.
* @return void
public void commit(){
try{
statement.executeUpdate("commit");
catch (SQLException sqle){
System.out.println("Could not execute a commit statement!" + sqle.getMessage());
sqle.printStackTrace();
* The method query is used to exceute a query statement on the
* database to get back some results.
* @param query A String containing the query to be executed on the database
* @return a ResultSet containing the results.
public ResultSet query(String query){
results = null;
try{
//System.out.println("query: "+query);
results = statement.executeQuery(query);
catch(SQLException sqle){
System.out.println("Could not execute a query statement!" + sqle.getMessage());
sqle.printStackTrace();
//finally{
return results;
* The method update is used to persist or remove information
* from the database.
* @param update String containing the update string to be exceuted;
public void update(String update){
try{
statement.executeUpdate(update);
catch(SQLException sqle){
System.out.println("Could not execute an update statement!" + sqle.getMessage());
sqle.printStackTrace();
}//end classmy web.xml file to initialize with the database is as follows
<servlet>
<servlet-name>Connection</servlet-name>
<servlet-class>servlets.ConnectionServlet</servlet-class>
<init-param>
<param-name>url</param-name>
<param-value>jdbc:mysql://localhost/TICKETTRACK</param-value>
</init-param>
<init-param>
<param-name>driver</param-name>
<param-value>com.mysql.jdbc.Driver</param-value>
</init-param>
<init-param>
<param-name>user</param-name>
<param-value>---</param-value>
</init-param>
<init-param>
<param-name>password</param-name>
<param-value>---</param-value>
</init-param>
<load-on-startup>1</load-on-startup>
</servlet>
the ConnectionServlet.java is
package servlets;
import javax.servlet.http.*;
import javax.servlet.*;
import java.io.*;
import java.sql.*;
import java.util.*;
import problemDomain.*;
import brokers.*;
* Title:
* Description: This servlet is used to create a connection with .
* @author
* @version 1.0
public class ConnectionServlet extends HttpServlet{
private UserBroker uBroker;
private TicketBroker tBroker;
private CompanyBroker cBroker;
public void init() throws ServletException{
ServletConfig config = getServletConfig();
String user = config.getInitParameter("user");
String pass = config.getInitParameter("password");
String url = config.getInitParameter("url");
String driver = config.getInitParameter("driver");
uBroker = UserBroker.getUserBroker();
tBroker = TicketBroker.getTicketBroker();
cBroker = CompanyBroker.getCompanyBroker();
uBroker.connect(driver,url,user,pass);
tBroker.connect(driver,url,user,pass);
cBroker.connect(driver,url,user,pass);
/* This method is used to close the connection.
* @param none
* @return none.
public void destroy() {
try{
}catch(Exception ec){
System.err.println(ec);
}I hope this is enough information for someone to help out. I'm out of ideas and my searches on the web didn't turn up much.
I was thinking it was something to do with ConnectionPooling but I have never done that, or maybe its something to do with how I set up Connections or maybe its my Tomcat config or something to do with Mysql. I'm not even calling a Connection.close(), maybe that is my problem.
Any help would be greatly appreciated, I'm not just looking for an answer I really would like to know why this occurs and how it can be prevented.
Thanks,I really appreciate your reply and I can understand what you mean in theory(I think) but to actually implement it I'm having a little trouble.
So for this database pool, in my ConnectionServlet which gets initialized on startup, should I create a Collection of connections for each instance(make them local), and than create another method to retrieve one of these connection when needed and when finished release it back to the collection(close)? Or is there some built in mechanism that can easily do this?
I'm also reading up on that keep-alive you mentioned...it applies to the HTTP Connector element right? Is there a way to tell if this is an issue? I'm using Tomcat 5 and mySQL 3. I was talking with another guy here about using a connector to apache so it will work with the static pages and Tomcat do the servlet stuff, but I'm still trying to grasp all that.
I don't know if this matters but many instances/windows of the web app can be opened at one time with seemingly no problems.
Hope this made sense, like I said I'm pretty new to this so all I'm used to is simple configurations of web apps but hopefully I can advance further.
Thanks again, -
The test encountered an error while signing in to Outlook Web App. HTTP code: 200
Infrastructure: Exchange 2010 SP3 RU2 environment on 17 servers worldwide with CAS, MB, HUB and UM roles. Server 2008 R2 VM's on Hyper-V 2008 R2.
Trying to run the following command to test OWA connectivity on a server in the same Active Directory domain but in a different AD site:
Get-ClientAccessServer -Identity Server1 | test-owaconnectivity -AllowUnsecureAccess -TrustAnySSLCertificate
I get the reponse:
WARNING: [11:04:51.276] : An Outlook Web App page wasn't received.
WARNING: [11:04:51.276] : The test encountered an error while signing in to Outlook Web App.
HTTP code: 200
WARNING: [11:04:51.276] : Test failed for URL 'https://server1.domain.com/owa/'.
ClientAccessServer MailboxServer URL
Scenario Result Latency Error
Server1.domain.com Server2.domain.com https://server1.domain.com/owa Logon Failure
The test encountered an error while signing in to Outlook Web App. HTTP code: 200
This is the same error message received from SCOM on its tests also.
I have created a test account on all 17 servers using ./new-TestCasConnectivityUser and ensured their mailboxes reside on the correct server in the correct database.
All internal servers are set for OWA and ECP for Windows Authentication. Only public facing CAS servers are set to Forms based. That said, have checked the 'Microsoft Exchange Forms-Based Authentication service' is running on both Server1 and Server2 as
are all Exchange services except 'Microsoft Exchange IMAP4' (not used) or 'Microsoft Exchange POP3' (not used).
However, if I run this command:
test-owaconnectivity -AllowUnsecureAccess -TrustAnySSLCertificate -URL
https://server1.domain.com/owa
I get the following success after I have entered my correct credentials:
Windows PowerShell Credential Request : cmdlet Test-OwaConnectivity at command pipeline position 1
Warning: This credential is being requested by a script or application on the Server2.domain.com remote computer.
Enter your credentials only if you trust the remote computer and the application or script requesting it.
Supply values for the following parameters:
MailboxCredential
ClientAccessServer MailboxServer URL
Scenario Result Latency Error
(ms)
https://server1.domain.com/owa
Logon Success 6282.13
So if I login with my domain username, it works and logs in. If the script runs using the 'extest....' user account created by the above ./new-TestCasConnectivityUser.ps1 , it does not work.
Has anyone got any ideas please? I know its not the network as it works under my username, I know all fo the services required are running as it works under my username. There are no entries at all in the receiving server's error logs for Application, System,
Exchange or Powershell at all.
Any help greatly appreciated.
DannyDid you read this? http://support.microsoft.com/kb/2277649/en-us
Did you run Test-MapiConnectivity? If not, can you run and post results?
HossFly, Exchange Administrator -
Download Pull-Down Menu in Web App Olive ActivePaper Daily 4.0 No Longer "Works" in Firefox 10
I have a paid subscription to the online edition (aka "e-edition") of the Raleigh News & Observer, http://www.newsobserver.com/. In Firefox 10, I am no longer able to download the pdf of the paper; the download pull-down menu in web app "Olive ActivePaper Daily 4.0" no longer "works" in Firefox 10 on Win XP or Win 7. This was not a problem in Firefox 9 and earlier. The pull-down menu continues to "work" in IE8. A valid username & password is required to do the download. The ''only ''change made to my Windows XP system was the upgrade from Firefox 9 to Firefox 10.
The thread "Keynote Cancelled Shutdown: how do I troubleshoot?" has recently posted a possible solution but is there an explanation or a fix planned?
-
I used to have my emails at home look exactly like my govt outlook emails. Somehow I changed it on my home computer to using Outlook Web App and I hate it. It's slower, totally foreign to me and I get many error messages. I would like to sign in with my BC govt. username/password and have it look exactly like it does at the office. I tried for weeks to get it back but I don't know how. Please help me. I log into https:\\[email protected] for my govt website.
Thank you.
Marlene Reichert
[email protected]Microsoft Office Outlook does not run inside the browser. If you have it installed on your home computer, you should be able to find it on the Windows Start menu and run it from there. If you were previously remote controlling your work computer, you probably need to work with your IT on getting that set up again if it stopped working.
-
Single form for secure zone registration and web app submission?
Hi
Is it possible to setup a form where a user can simultaneously register for a secure zone and submit a web app entry? The knowledge base / tutorials describe a two step process (web form for secure zone registration and web app input form for web app submission), but I would like users to be able to do both with a single form
Thanks in advance for any suggestions
mlsIn order to have a customer create a web app item they must be logged into the secure zone already. I've seen some instructions on how to let users submit web app items outside a secure zone but that requires creating a dummy anonymous user and logging them into the secure zone via javascript. You could use this method and once it's submitted you'll have to manually attach the web app item to the correct user in the BC Admin. That might not work for you but you can read more about that at http://forums.adobe.com/docs/DOC-1784
You can't use the above solution with the current user's username and password because those tags are only available when the user is logged into a secure zone already. If your signup form needs to be filled out first, the user isn't logged in.
Your best bet is to have the public signup form redirect the user after submission to an "Add item" form you have created. Maks sure that form is in a secure zone so when they add the item it is attached to their account.
If you don't want to redirect them to a secure zone and want it more seamless you could try to use some javascript/ajax to submit the form via javascript and after the form is submitted, use the javascript code in the above to log them in (be careful to use the https://yoursite.worldsecuresystems.com url if you are passing username and password info gathered from your form to log them in via javascript/ajax). Once they are logged in via the javascript you can use more ajax to fetch a page's HTML that resides in a secure zone. This HTML returned from the javascript can be your "add web app item" form and since they were logged in via javascript (securely, right?) this HTML should contain the right information. Insert this returned HTML into your form container that held the original signup form and they can continue to add a web app item without having to log in.
This is theory and might work but you'll have to start experimenting with it via javascript. I haven't actually tried to do this so hopefully some other community members who might have tried this can weigh in here as well.
Good luck! -
Session persistence across web apps
Hi,
I am working on a project where we have two web applications deployed in single enterprise application. I want the session object to be shared across the web applications.
Does weblogic had any mechanism to allow for the session object to be shared across the multiple Servlet contexts inside a single enterprise application?
I am using Weblogic 8.1
Thanks,
AnilSession data is not shared between web applications. User data is definantly important to share between applications. The single-sign-on security option is an example of this. But that's kindof a black box. If you use single-sign-on, then simply getting the remote user from the request in your servlet can be used as a key to get user data from your persistance layer (ejb's or jdbc or even jms).
If you don't want to use single-sign-on, you can use a filter. There's some url prestidigitation, also, but otherwise this approach is pretty simple:
1. Protect access to all of your web-app's urls with some naming convention /webappname/secure*. However, don't use these urls in any web page. All servlets and jsps you use should map names beginning with "secure".
2. Filter all access to your webapp (this is a new feature in servlet spec 2.3). Within the filter, use the session id as a key to find out if the user is already login to any other web application. You will need a stateless session bean to do this. The doFilter would be something like this:
SecurityBean securitybean = Utilities.getSecurityBean();
HttpSession session = request.getSession(true);
if (session.getAttribute("myuserdata") == null){
UserData userdata = securitybean.getUserdata(sessionid);
if(userdata != null)
session.setAttribute("myuserdata",userdata);
... now forward the request to the "secure*" url in the filter. If the user was logged in with the slsb securitybean, then your web app will have all of your user data. If the user is not logged in by the securitybean, then the login prompt established in your web.xml will pop-up.
The only extra work is to have a slsb securitybean. This can use the RoleManager in oc4j or it can use the jaas implementation in oc4j to log the user in, using the sessionid to get the username.
The shared="true" attribute should be used for all application in the *-web-site.xml, so that the sessionid's are the same.
regards,
the elephantwalker
www.elephantwalker.com -
Guide to developing SECURE TOMCAT/JSP web apps - ??
Hi,
It would be very useful to have a checklist or guidelines to ensure a JSP/tomcat web site one develops is secure, in particular for the scenario where the web application is not huge/complex &/or is developed by part-time developers. That is I guess I'm generally asking for the easiest way of ensuring one develops a secure JSP/tomcat app.
Q1 - Does anyone know of a tutorial/checklist for ensuring a JSP/tomcat web app is secure? The types of things I'm thinking of include the following items, which I've put forward as specific questions to the mail group in their own right.
Q2 - How do you ensure directory's under doc root can't be viewed? (ie users see a directory listings)
- is putting in an index.html in each sub-directory a solid answer?
- can this be handled in one hit via WEB.XML entries? if so an example if possible?
Above and beyond basic User Authentication checking (eg username/password check at beginning of session) what is an easy but secure way of checking -:
Q3 check that user (ie specific) is allowed to access a specific JSP page? (assuming the web app is a totally JSP based solution, ie no controller servlet frontend, ie and that all JSP pages are effectively assessable under docroot). Easy way of doing this?
eg (a) put specific check at beginning of each JSP page?
(b) other?
and
Q4 given that a user is allowed to access that JSP page, check that he is allowed to view the data which he has requested? (ie stop people determining how the URL with parameters is constructed and manually changing the parameters - eg changing "http://www.test/test.jsp?id=3", manually "http://www.test/test.jsp?id=4". Easy way of doing this?
eg (a) put specific check at beginning of JSP page?
(b) other
Q5 Is it generally acceptable, given appropriate precautions are taken, to setup a web site with all JSP files assessable under doc root, and that the manner in which the user navigates around the application is based on direct calls from the browser to the next JSP page with parameters? (again one concern I have is eg changing "http://www.test/test.jsp?id=3", manually "http://www.test/test.jsp?id=4"). If this is not acceptable what is recommended?
(a) as above put a specific check at the beginning of the JSP page
(b) for example having to specifically put a controller servlet as a front end, and then direct to JSP pages which are hidden?
- in this case how can one hide specific directories under doc root?
(c) other??
Q6. Regarding image security I assume one really does have to store them outside doc root and develop a small "getImage" servlet so that requests to images can be verified to ensure that (assuming the app lets users load images) the end user can't see another user's image?
Q7. Any other general checklist items for a simple JSP/tomcat web site re security one should check for???
Thanks in Advance
GregHave you ever looked at the Jakarta struts framework for developing web apps? You could then incorporate your custom designed security both into your own extension of the controller servlet (check if particular user has access to certain pages / actions). You can also design your own custom tags which determine whether a particular user has access to certain parts of the page. You cal also perform additional checks in the actions, to ensure that the user does have access to certain actions (i.e. checking parameters etc.)
-
I am getting an invalid login message as I attempt to login to Self-Service Web Apps.
I have done all the necessary things I know, to resolve the problem, but it is still coming with the same error.
Username and password screen.
I am on Apps rel 11
Please help
nullYou might want to monitor icx_sessions table, but I can't remember how reliable it is in terms on reflecting responsibility changes. You might find some notes on metalink regarding user session management that could help you with what you are trying to achieve.
-
Cannot Publish Web App to Azure VM from VS 2013
I inherited a web app from another developer, that has been previously deployed to an Azure VM I have access to.
When I try to invoke his publishing profile to publish the web app to the Azure VM, I get the error:
Connected to <<our url>> using the Web Deployment Agent Service, but could not authorize.
Make sure you are an administrator on <<our url>>.. ERROR_USER_NOT_ADMIN.
How do I fix this? Is there a way to fix this in the Azure dashboard? I'm listed as co-administrator on the client's subscription. When I go to the VM, there's no place to tie accounts with roles on the VM and there's no place to reset the password.
I'm fairly certain the username I'm attempting to connect with is correct, but I wonder if the password might have expired or been locked.Hi Bob,
From your description, It seems that this is a authentication issue. When we deploy website on Azure VM, we need use the VM's username and password or you may have installed the VM certificate. For this error message, I suggest you can follow this resolution
to fix it.
Error Code
Error Message
Diagnosis
Resolution
ERROR_USER_UNAUTHORIZED
Connected to the destination computer ("remote-server.com") using the Web Management Service, but could not authorize. Make sure
that you are using the correct user name and password, that the site you are connecting to exists, and that the credentials represent a user who has permissions to access the site.
This error code can surface because of a number of different reasons. It typically indicates an authentication or authorization problem,
and can happen because of any of the following reasons: 1) User does not exist 2) User does not have IIS Manager access to site if connecting using Web Management Service 3) Site does not exist 4) Password is incorrect
If connecting using the Web Management Service: 1) Verify that the username and password are correct 2) Verify that the site exists 3) Verify
that the user has IIS Manager Permissions to the site's scope 4) If connecting using the Remote Agent Service: 5) Verify that the username and password are correct 6) Verify that the user account you specified is a member of the Administrators
group on the remote computer. NOTE: Because of a bug in Web Deploy 2.0, the user must be either the built-in Administrator or a member of the Domain Administrators security group. Attempts to sync with any other user account, even if it
is an administrator, will see this error code. 7) Verify that the site exists
ERROR_USER_NOT_ADMIN
Connected to 'remote-server.com' using the Web Deployment Agent Service, but could not authorize. Make sure you are an admin on 'remote-server.com'.
This happens if you try to connect to the Remote Agent Service but have not provided appropriate administrator credentials.
The Remote Agent Service accepts either built-in Administrator or Domain Administrator credentials. Because of a bug in Web Deploy, any other
administrator credentials (e.g. member of the local Administrators group) will not work and will cause this error.
Any questions about this issue, please let me know.
Regards,
Will
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey.
Maybe you are looking for
-
Why does my iPhone 5 iOS 7 drain the battery from full to empty over night when its in flight mode?
-
Hi! I wonder why the link for the details screen of documents ans folders is only visible for users which have write permissions to these folders and documents. In my opinion every user who has read permissions should have the possibility to look at
-
Changing all Layer names to Uppercase
I have been trying to clean up the layers in a document(s) with the following script. It all works except for the UPPERCASE line. Does anyone have any ideas? function standardizeLayerNames() var myDoc7=app.activeDocument
-
The version of PL/SQL in Forms6i is different from the PL/SQL of database server. Is the same with Forms9i and Forms 10g?
-
App window locations on restart
Why doesn't Yosemite remember where app windows were located at shutdown when I restart a 2 display iMac system?