Using Custom Authentication

Hi
I am using a std login page with username password to call a simple custom authentication package.
It works fine if you push the button to fire the authentication however i have noticed that if after entering the password you hit the enter key its bypassing the button and triggered process the page branches to a blank page. ends up going to wwv_flow.accept with blank page
Is there an easy way to make the use of the enter key trigger the process the button would normally fire?
TIA
Richard.

The blank page appears when im trying to login with an invalid username password combo that i would expect to fail.
If its valid it branches correctly the same as if you'd used the button. For the invalid combo to goes to the blank page apon pressing the enter key. If you used the button it would not branch as the authentication failed as expected.
Richard.

Similar Messages

  • Interactive Report - search does not work when using custom authentication

    Apex 3.2.x
    I can authenticate fine with my custom authentication and all of my pages work okay except for one page that uses the Interactive Report feature. When I click 'Filter' then enter the column name, operation (contains, =, like, etc.) and the expression, then click the 'Apply' button, the page just re-displays and my filter information is missing?
    If I first login to Apex, select and run my application, the Interactive Report features work just fine. What's missing?

    More information:
    After login into my Apex workspace (development environment), when I display the Interactive Report and click debug I see this debug message:
    "using existing session report settings"
    When I login using my application's custom authentication and click debug I see this debug message:
    "creating session report settings as copy of public saved report"
    Based on this, it appears that my session info in not set correctly when using custom authentication... but I'm not sure what needs to be set.
    Edited by: user9108091 on Oct 22, 2010 6:44 AM

  • History Attributes when using Custom Authentication Type

    assigned all History Attributes (in the Entity Object Editor) to my audit columns.
    During run time, I find only Created By is assigned the SYSDATE, and Created On, Modified On, and Modified By are null.
    I am using Custom Authentication Type.
    I have read that the History Attributes only work the the JAAS authentication type. Appreciate any one confirming this.
    Also, how do you implement History Attributes if you are using the Custom Authentication Type? Do you need to write Java code?
    Thanks.
    John

    Hi,
    confirmed it only works with container managed authentication performed through JAZN. You can't use this with custom security as otherwise this feature could be overwritten. Still you can provide your own implementation:
    - create a custom table
    - use the setAttr method on the RowImpl class of a VO to store the username
    Frank

  • Strange problem when using custom authentication schema

    Hello,
    I'm building a custom authentication system for the application. Basically, I followed the blog post from Martin: http://www.talkapex.com/2009/03/custom-authentication-status.html
    However, the authentication seems working fine at the beginning when running the page 101 from Application Builder and log in, but when I log out from the application (redirect back to page 101) and try to log in with the same credentials, it gives error message "Invalid Login Credentials ". Also, when the application is accessed from public (open page 101 directly using another computer), the authentication doesn't work at all.
    Furthermore, I checked the table apex_workspace_access_log and found out that it has "AUTH_SUCCESS" even if using the fake credentials and the login failed (I use "apex_util.set_authentication_result (p_code => 3);" when auth function return false).
    I couldn't find the cause of the problem, then I created the same custom authentication in apex.oracle.com. The problem doesn't appear anymore. To make sure they are same, I have double checked the custom authentication in both the development environment and the apex.oracle.com.
    This is very strange to me and I don't know where to looking for the problem. Could you give me some advice of what may cause this problem. Thanks in advance!

    I found the problem myself. The cause is the VPD, the account table has VPD policy applied, which prevented public access.

  • User!UserID when using custom Authentication in SSRS2012

    We are using FormsAuthentication with SSRS2012 for our custom authentication in SSRS2012.
    What SSRS code determines User!UserID report expressionwhen using a custom authentication provider?
    I ask this because if the FormsAuthCookie.UserName determines the User!UserID value, then I need to use a more unique value than FirstName/LastName when building the forms auth cookie.
    thanks
    scott

    Hi scott,
    UserID is the ID of the user running the report. If you are using Windows Authentication, this value is the domain account of the current user(Domain/username).
    The value of User!UserID is determined by the Reporting Services security extension, which enables the authentication and authorization of users or groups; that is, it enables different users to log on to a report server and, based on their identities,
    perform different tasks or operations.
    By default, Reporting Services uses a Windows-based authentication extension, which uses Windows account protocols to verify the identities of users who claim to have accounts on the system. Reporting Services uses a role-based security system to authorize
    users. The Reporting Services role-based security model is similar to the role-based security models of other technologies.
    WorkFlow about authentication and authorization occur as follows:
    https://msdn.microsoft.com/en-us/library/ms152825.aspx
    The user credentials are submitted to the Reporting Services Web service through the
    LogonUser method.
    This member of the Reporting Services Web service can be used to pass user credentials to a report server for validation. Your underlying security extension implements
    IAuthenticationExtension.LogonUser which contains your custom authentication code. In the Forms Authentication sample,
    LogonUser, which performs an authentication check against the supplied credentials and a custom user store in a database. An example of an implementation of
    LogonUser looks like this:
    https://msdn.microsoft.com/en-us/library/ms152899.aspx
    If you still have any problem, please feel free to ask.
    Regards
    Vicky Liu
    If you have any feedback on our support, please click
    here.
    Vicky Liu
    TechNet Community Support

  • Cannot log into Business Process Workspace using Custom Authenticator

    Hello,
    I have set-up a SQLAuthenticator on my WL10.3.5 and defined a number of users which can successfully login to console and em.
    My problem is that these users are not able to login to Oracle BP workspace.
    Note 1: Control flags are all set to sufficient (In addition to DefaultAuthenticator I have only the custom SQLAuthenticator in providers list).
    Note 2: Ordering of Authenticators is: SQLAuthenticators, DefaultAuthenticator
    Note 2: user 'weblogic' can login to workspace without any problem.
    Any help would greatly be appreciated as this problem has taken more than a week of my time.
    Regards
    Edited by: user3106291 on Feb 23, 2013 4:27 AM

    Hi
    1. I hope workspace you are refering is: http://soahost:soaport/bpm/workspace.
    2. User "weblogic" can login. And I hope he can see adminstrator link on top right hand corner etc.
    3. Others Users say "userxyz" CANNOT login. NOW what do you mean with this. What Error do they get.
    a) Does it say invalid username/password. If so, check the user account and verify the details.
    b) Do they login, BUT do NOT see any link on Left Side to initiate a new instance. If so, is this User in the Role of Initiator. See below notes
    NOW, what application is Deployed and what exactly are you trying to test
    1. For any BPM Application, you will have a Start Node and End Node. Usually there will be a first Human Task (generally but not always) who can Instantiate or create a new prrocess Instance. And there are Swimlanes where we put all Tasks.
    2. Then we map these Swimlanes to bunch of Users or AD Groups or Roles etc etc. Quick test is, create some users in Default Authenticator itself like weblogic1, weblogic2, weblogic3 etc and map these Users to these Roles.
    3. If you have EXTERNAL Authenticator, that is also fine. This is how most of the times. Within JDeveloper itself, for Each Role you can Map users or groups from this External Authenticator. this means your application should be deployed and SOA Server is Up and Running. Only theny you can fetch the list of users and groups. Generally I do NOT recommend this. Do not do any mapping at JDeveloper side.
    4. Instead, after you Deploy your application say to bpmDomain1. Go to EM Console and there under application BPMProcessRoles, map the application roles to each User or AD Group from your SQL Authenticator. See docs for detailed steps.
    In EM Console, if you do NOT see your Swimlanes or Roles thats ok. You should see them by default after deployment. If not, create manually Each Role and name should Match exactly with what you gave in JDeveloper BPM Application. Find it under Organization.xml file under your soa project folder. And for each Role map users or ad groups. Also, Initiator Role should have a Human Task of type like Initiator.
    So have you done anyof the above things. But most important, what Errors or Exceptions are you facing. Look at the log files and specially the output file or log where you start your soa server.
    Thanks
    Ravi Jegga

  • Custom Authentication using WebService

    Hi,
    I am trying to create a way to Authenticate my users after calling a Webservice using Custom Authentication so that they don't have to Log on twice (SSO).
    Here is a brief description of what I'm trying to do:
    - End Users Login and get Authenticated in an iPlanet Portal.
    - Once in - they hit a link which calls my APEX Application in a new window.
    - I call the Web Service that return a response telling me if they have a valid Portal session along with username etc.
    - If they are logged in to our Portal - I authenticate them in APEX using Custom Authentication and allow them to continue.
    I have done this so far:
    - Created an After Footer Process in the Login Page(101) that calls the Web Service.
    - Created an automatic Page submit on page 101 with Javascript.
    - Changed the After Submit Process 'Set Username Cookie' to use the Login returned in the Web Service.
    - Changed the After Submit Process 'Login' to use the Login returned in the Web Service.
    - Custom Authentication is run after Page is submitted.
    - The user can then run the Application.
    Everything was working fine when I was already logged in to APEX as a Developer, but when I tried to run the application as a non-developer I get the Error:
    ORA-01400: cannot insert NULL into ("FLOWS_030100"."WWV_FLOW_COLLECTIONS$"."USER_ID")
    I now realize that my Webservice Process is trying to store the result of the Web Service call before the Login has occured - so there is no APEX User at this point.
    Does anyone have a way to accomplish what I'm trying to do?
    Thanks,
    Bill

    You should create a page sentry function based on the often-cited ntlm page sentry function discussed in this forum. That has the framework you need. Here is an example, although it's kind of old:
    function modntlm_page_sentry return boolean as
        l_current_sid            number;
        l_authenticated_username varchar2(256) := OWA_UTIL.GET_CGI_ENV('REMOTE_USER');
    begin
        if l_authenticated_username is null then
            return false;
        end if;    
        l_current_sid := wwv_flow_custom_auth_std.get_session_id_from_cookie;
        if wwv_flow_custom_auth_std.is_session_valid then
            htmldb_application.g_instance := l_current_sid;
            if l_authenticated_username = wwv_flow_custom_auth_std.get_username then
                wwv_flow_custom_auth.define_user_session(
                    p_user=>l_authenticated_username,
                    p_session_id=>l_current_sid);     
                return true;
            else -- username mismatch. Unset the session cookie and redirect back here to take other branch
                wwv_flow_custom_auth_std.logout(
                    p_this_flow=>v('FLOW_ID'),
                    p_next_flow_page_sess=>v('FLOW_ID')||':'||nvl(v('FLOW_PAGE_ID'),0)||':'||l_current_sid);
                htmldb_application.g_unrecoverable_error := true; -- tell htmldb engine to quit           
                return false;
            end if;
        else -- application session cookie not valid; we need a new htmldb session
            wwv_flow_custom_auth.define_user_session(
                p_user=>l_authenticated_username,
                p_session_id=>wwv_flow_custom_auth.get_next_session_id);
            htmldb_application.g_unrecoverable_error := true; -- tell htmldb engine to quit
            if owa_util.get_cgi_env('REQUEST_METHOD') = 'GET' then
                wwv_flow_custom_auth.remember_deep_link(p_url=>'f?'||wwv_flow_utilities.get_cgi_query_string_decoded);
            else
                wwv_flow_custom_auth.remember_deep_link(p_url=>'f?p='||
                    to_char(htmldb_application.g_flow_id)||':'||
                    to_char(nvl(htmldb_application.g_flow_step_id,0))||':'||
                    to_char(htmldb_application.g_instance));
            end if;
            wwv_flow_custom_auth_std.post_login( -- register session in htmldb sessions table,set cookie,redirect back
                p_uname     => l_authenticated_username,
                p_flow_page => htmldb_application.g_flow_id||':'||nvl(htmldb_application.g_flow_step_id,0));
            return false;       
        end if;   
    end modntlm_page_sentry;You would replace this:
    l_authenticated_username varchar2(256) := OWA_UTIL.GET_CGI_ENV('REMOTE_USER');
    ...with whatever statement will allow you to get the authentication status and authenticated user name from the environment, from HTTP headers, or from some other external source.
    Then you would put this into the page sentry function attribute of the authentication scheme for your application:
    return modntlm_page_sentry;
    Of course you can name it anything you like but it should be compiled in your applicaiton's parsing schema.
    Scott

  • When use custom authetication it shows some characters on screen after logo

    Dear All,
    I have developed a application and use custom authentication schema for that. It works fine on my local pc and then I have moved it to another pc (export and then import) it works fine on that as well.
    Now I have moved it to the production server. When authentication failed it shows error message and stay in log on page. But when I provide the correct user name and password, then it shows multiple occurance of login url in page body.
    Did anyone has any idea about this.
    When authenticate success I get below output.
    Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 Location: f?
    p=ETLUI:COM_LOGIN:2888953545161107 Location: f?p=ETLUI:COM_LOGIN:2888953545161107 * ETLUI means my application alias and COM_LOGIN is my login page alias. So basically it shows link to the login screen multiple time. At this time url is looks like below
    http://prodsrv:8080/apex/wwv_flow.accept Development and Production Apex Version: 4.0.2.00.07
    Development OS: Windows 2000
    Production OS : Linux
    Thanks in advance.

    Works ok after using Apex Listener.

  • How can i set  "Createdby" attribute  When using Custom JheadStart Security

    Hello
    We do not use JASS for Authentication , please help us how can i set createtby attributes with jhs.username in application for any entity object?
    thanks

    See a similar question at History Attributes when using Custom Authentication Type

  • Enable Custom Authentication for License Server for Packager Server

    How to enable processing of Custom Authentication for License Server for Packager Server?
    Please give examples.

    If I understand your question, you want to use the Flash Access Manager and/or the Watched Folder Packager (both are components of the Reference Implementation) to package content for a license server that uses Custom Authentication. To accomplish this, you need to use the Flash Access SDK to create a policy that specifies Custom Authentication is used.  For example:
    Policy pol = new Policy(false);
    LicenseServerInfo licServer = new LicenseServerInfo(AuthenticationType.Custom);
    pol.setLicenseServerInfo(licServer);
    // set rights and other policy attributes
      Once you create the policy, place the policy file on the Packager Server, and you can use this policy to package content.

  • Glassfish 3.1 Container managed security - custom authentication

    I have used custom authentication with tomcat and it works great. I am moving to glassfish 3.1 and want to set it up there now. I haven't found any specifics for glassfish 3.1. Anybody got it working in GF 3.1?
    Thanks,
    John

    To follow up ...
    I am using container managed security and form based authentication. My custom SJSAS login realm, however, never fails to authenticate users. Instead of failing authentication when a username and password match cannot be found, I add the user to an 'unknown-user' group who has no rights to the application.
    I do this because I can then catch 403 errors for users who have failed authentication (because they are not authorized to access any pages), or for users who are not in the right role to access part of the application.
    It's not the way that I would prefer to handle login 'failures', but it works.

  • Authentication_Type for custom authenticator

    Hi,
    I need to use custom authentication, For this I have to change the nqsconfig.ini Authentication type.what is the type I should give…
    Could you sent some useful link or document about this authentication.
    Thank you,
    karthikeyan

    Hi Dann,
    Thank you for your reply, I gone through those documents and I think there is no need to specify Authentication_Type for custom authenticator.
    Have you did custom authentication earlier, If you know the configuration please let me know how to do.
    According to this document http://www.rittmanmead.com/files/OBIEE_Access_Control.pdf , I configured everything but custom authentication is not working.
    Help me if you can.
    Thank you,
    karthikeyan

  • TMG Web listener - Custom Authentication

    We are using TMG as a reverse proxy. We want to use custom authentication (out of band SMS or email) to authenticate users. We intend to achieve this by directing the user to a custom web app which handles authentication.
    From what I understand TMG supports authentication integration with AD, SecurID etc. Does it also support authentication from a custom web application. What are the possible ways this can be achieved?

    You'll have to send the users to the "custom web app" anonymously (no auth performed by the TMG) and let the "custom web app handle it from there.  If the "custom web app" does not fit into the Publishing Rule then you would need two publishing rules,
    one for the main site the user is trying to get to and one for the "custom web app" which is also technically a "web site" as well.  In other words if the main site and the custom one have different FQDNs then they would be considered different "sites"
    would each require its own Publishing Rule.

  • Oracle ADF 11g – Authentication using Custom ADF Login Form Problem

    Hi Guys,
    I am trying to Authenticate my adf application using custom Login Form.
    following this..
    http://www.fireboxtraining.com/blog/2012/02/09/oracle-adf-11g-authentication-using-custom-adf-login-form/#respond
    But my Login Page is not Loading.I think its sending request in chain.my jdev version is 11.1.1.5.Any Idea.
    Thanks,
    Raul

    Hi Frank,
    I deleted bounded code and In another Unit Test I created a simple login.jspx page and applied form based authentication but still facing same problem means something wrong in starting.
    My login.jspx page is
    <?xml version='1.0' encoding='UTF-8'?>
    <jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.1"
              xmlns:f="http://java.sun.com/jsf/core"
              xmlns:h="http://java.sun.com/jsf/html"
              xmlns:af="http://xmlns.oracle.com/adf/faces/rich">
      <jsp:directive.page contentType="text/html;charset=UTF-8"/>
      <f:view>
        <af:document id="d1" >
          <af:form id="f1" >
            <af:panelFormLayout id="pfl1">       
              <af:inputText label="USERNAME" id="it1"
                            />       
              <af:inputText label="PASSWORD" id="it2"
                              />
              <af:commandButton text="LOG IN" id="cb1" />
              <f:facet name="footer">       
              </f:facet>                 
            </af:panelFormLayout>
          </af:form>
        </af:document>
      </f:view>
    </jsp:root>
    Don't know wht real problem is

  • Forms based authentication in sharepoint 2013 using custom membership provider

    I am developing  FBA  for SP2013 using custom membership provider using the following link 
    http://benredl.wordpress.com/2012/10/03/creating-forms-based-authentication-and-user-profiles-in-sharepoint-2013-using-custom-membership-and-role-providers-and-a-custom-user-profile-synchronization-utility/
    the feature i am trying to develop is that the user is created using a homegrown asp.net  application which uses sql server 
    and then When that user goes to SP2013 he should be able to login with the username and password created using the homegrown asp.net application 
    my questions are following 
    If I follow the article in the link should i be taking the assembly(dll) and deploying it to GAC or will VS2013 automatically do it
    Do I have to implement  FindUserByEmail and FindUserByName methods ?
    if the connectionstring for an asp.net application is in the web.config file  where would the connection for the sqlserver go if this application is for SharePoint 
    TIA

    Hi TIA,
    try this it contains the code for you and it is ready
    http://sharepoint2013fba.codeplex.com/
    Kind Regards, John Naguib Technical Consultant/Architect MCITP, MCPD, MCTS, MCT, TOGAF 9 Foundation

Maybe you are looking for

  • Yahoo Mail Worm/Virus?

    This morning my Yahoo mail account sent out a series of Spam emails to random people from my address list. No one was logged into the account at the time this happened. My wife and I routinely access the account from a PC running Norton 360 and from

  • Can't open iWeb website

    I have spent several days creating  a website in iWeb. Today when I opened iWeb I couldn't see my website. the files are in a folder on the desktop, but can't work out how to access these again via iWeb. every time I clicked 'save' on a finished page

  • Everyone needs to check their Watch List and Forum Settings

    Recently Sun's Java and Developer forums were consolidated into a single, large instance of the Jive forums infrastructure. Some users are no longer getting automatic email notifications on topics they have posted to. If your settings in Developer fo

  • Mysql cluster load balancing

    Hi there ! Could somebody guide me a bit on how to load balance Mysql servers ? Actually we can do read-only querys but on other operations the Mysql client we use says that "can't lock file". I think the balancer send that stream to one Mysql server

  • How can i compare if string1 is substring of string2?

    seems subString() is not helpful here?