Version migration, shared ssl, session variables

I'm migrating a shopping cart application from Cold Fusion
4.5 to a new server running MX 7, and have run into a weird problem
transferring session variables.
Basically, there's two sites running on one physical server.
The catalog, and then the shared ssl checkout pages. I'll call them
catalog.com and sharedssl.com.
Under 4.5, if I passed CFID & CFTOKEN in a link from
identically named applications on catalog.com to sharedssl.com, the
session and all its associated variables would transition
seamlessly forward. Under MX, this is no longer happening. The
*very first page* on sharedssl.com (the one that was directly
passed CFID & CFTOKEN) will have access to those variables, but
any subsequent pages on sharedssl.com will just throw errors.
Looking at the debugging info, it's obvious that under MX a
new CFID and CFTOKEN are being assigned when the user goes to
sharedssl.com, regardless of the session id that was passed on; as
soon as the "old" CFID & CFTOKEN aren't being explicitly
mentioned, the "new" ones take over, resulting in a completely
blank session.
Has anyone else experienced anything similar? Is there a
simple fix?
I have some ideas on how to make this work, but I'd really
like to keep this projection a "migration," and not, ie., a
"rewrite." I guess I'm wondering whether there's a configuration
checkbox I'm unaware of, or perhaps some arcane option in
cfapplication that will restore the old behavior.
Thanks for any help,
Tim

On which page is the following code?
After login, user is validated and set values to those session.variables:
........user validation codes here......................
<cfif mylogin NEQ true>
      <cflocation url="/login/login.cfm">
      <cfabort
<cfelse>
      <cfset session.loggedin="Yes">
      <cfset session.username="#Trim(Form.username)#">
     <CFSET qUserRights = LoginObj.getUserRights('#Trim(Form.username)#')>
     <cfset session.userrights = qUserRights>
    <CFSET qUserGroup = LoginObj.getUserGroup('#Trim(Form.username)#')>
        <cfloop query="qUserGroup">
           <cfset session.usergroup = user_group>
           <cfbreak>
        </cfloop>
    
   <cfdump var="#session.loggedin#">
   <cfdump var="#session.username#">
   <cfdump var="#session.userright#">
   <cfdump var="#session.usergroup#">
</cfif>

Similar Messages

SESSION VARIABLES : HOW TO TEST FOR MULTIPLE USERS

I have a username session variable set up on a localhost testing envirnoment.
This works fine for one user, but when I open another occurence of the browser (or just another tab) to test for multiple users the system overwrites the session variable with the last username input.
So the question is:
Why doesn't dreamweaver hold an instance of the session variable for each browser session? and if not what are your suggestions?
Thanks
Adam.

Thanks for that.
After scouring the internet I found the only way of running 2 instances of firefox without them sharing the session variables is to create 2 new firefox profiles in windows + set the MOZ_NO_REMOTE environment variable.
Internet explorer is much easier as it has a 'new session' option in the file menu, but seems to have more trouble displaying tables correctly.
Hope this helps anyone with a similar problem.

Restricting particular session variables being shared

i am using weblogic 10.3.
I have an EAR with has 2 WAR in it , with session sharing enabled in the weblogic-application.xml . I understand that this will make all the variables that are added in the session to be shared by both WAR, but i want a particular variable added in the session not to shared by both WAR, it should be accessible by only WAR1.
Please help me
Zeeshan

"Restricting particular session variables being shared"
You can use the 'transient' keyword for this purpose, for example,
public class Example implements Serializable {
private String replicate;
private transient String notReplicate;
}The 'replicate' attribute is replicated when the Example object is put in the session, the 'notReplicate' attribute is not.

Multiple versions of Shared Variables on same network

I have 2 seperate reactors working on the same network each deploying ~50 shared variables (different names on each process) communicating with LV 8.5RT running on FP hardware. One of the reactors is requested for new features and to be upgraded. Is it possible to heve 2 different shared variable engines (8.5 and 2010) and versions on the same network and client computer, or am I asking for trouble.
Paul Falkenstein
Coleman Technologies Inc.
CLA, CPI, AIA-Vision
Labview 4.0- 2013, RT, Vision, FPGA
Solved!
Go to Solution.

I believe we address this here: http://forums.ni.com/t5/LabVIEW/multiple-versions-of-Shared-Variables-on-same-network/m-p/1487366#M5...
Sam S
Applications Engineer
National Instruments

HTTPS persistence SSL session, ACN 4.2.1

Customer is experiencing a problem resulting in the ACN software resolving the host.domain.com twice. Webapplication https://host.domain.com/webapp/index.jsp. The customer uses a ACN to proxy the https request. The host.domain gets resolve to 1 of 4 available application servers (webserver). At the application login page (index.jsp) the user is successfully authenticated by the application's Login servlet on webserver 1. The user is then redirected to the select application, local to the webserver 1. It appears that when the ACN receives the response from webserver 1 with the fully qualitfying URL. The redirection cause the ACN to resolve the host.domain against DNS and as a result, the user's browser is redirected to a different webserver. The users previous session is no longer valid, breaking the client/webserver trusted relationship
If the above user uses 1 of the 4 available IP address on the DNS entry, the users successfully maintains the SSL session. The customer is migrating to a Cisco Content Engine 560 running version 4.2.1 ACN software.
I understand there are ACN features that could effect the HTTP session persistence/SSL trust. The services/features include boomerang, Reverse Proxy, content balancing. I request information on the service or feature of the ACN that could cause the problem I speak of from above.
I understand there are different methods of implementing session persistence, like sticky session and SSL sticky, but believe the ACN does provide this feature.

The customer is experiencing network issues when attempting to access our application. The customer is experiencing has been seen with a previous customers that had a similar network devices.
The customer uses a Cisco Content Engine CE-560 with Application and Content Networking Software (ACNS) version 4.2.1. The problem seems to a result of the ACNS resolving the hostname.domain.com twice. The webserver's DNS (hostname.domain.com) entry resolves to one of four available webservers (DNS round robining).
nslookup hostname.domain.com
webserver1 webserver2 webserver3 webserver4
nslookup hostname.domain.com
webserver2 webserver3 webserver4 webserver1
and so on.
All client/webserver communication is through SSL. When the customer uses the FQDN URL (https://hostname.domain.com/webapp/index.jsp) to access the application login page, the server portion of the URL is resolved to webserver1. At this time, the customer has an established HTTPS session with webserver1. Once a login servlet running on webserver1, receives the customer supplied login credentials, the servlet sends a server response 302 redirecting the customer to the selected application.
This redirection response seems to cause the ACNS to resolve the hostname.domain.com and as a result, the customer's browser is redirected to a different webserver, webserver2. The users previous session is no longer valid, causing the application to generate a false inactivity timeout.
If the customer sends a HTTPS request using anyone of the four IP address from DNS, the session is maintained and the customer does not receive the false inactivity timeout, because the session is not "broken".
The customer is migrating off of a Netscape (iPlanet) Web Proxy solution and does not experience the problem accessing the application, using the FQDN URL.
DNS caching is enabled on the customer CE.

Purchased ColdFusion 10: Having problem with session variables

My Dept. has just bought CF10 and I'm finally updating my existing web app to CF10 from CF8. My First Problem with CF10 is using session variables.
When using the lower version of CF (since CF 4 to 8) I have never had any problem setting up session variables and getting or using these variables in other pages after a successful login but with CF 10 it seems setting session variables and using them in other pages are a major problems. I'm not sure where have I done wrong in the codes.
First I'm setting the session in my Application.cfc This way:
<cfcomponent displayname="Application" output="true">
<cfset THIS.Name ="MyNewApp"/>
<cfset THIS.ApplicationTimeout = CreateTimeSpan(0,0,20,0) />
<cfset THIS.SessionManagement ="YES"/>
<cfset THIS.SessionTimeout = CreateTimeSpan( 0, 0, 20, 0 ) />
<cfset THIS.SetClientCookies = false />
<cffunction name="OnApplicationStart" access="public" returntype="boolean" output="false">
<cfset application.Main_DSN = "TESTDB">
<cfreturn true />
</cffunction>
<cffunction name="onApplicationEnd" output="false">
      <cfargument name="applicationScope" required="true">
    </cffunction>
<cffunction name="OnSessionStart" access="public" returntype="void" output="false" hint="Fires when user session initializes.">
<cfset session.loggedin = "NO">
<cfset session.username = "">
<cfset session.userrights = "">
<cfset session.usergroup = "">
</cffunction>
</cfcomponent>
After login, user is validated and set values to those session.variables:
........user validation codes here......................
<cfif mylogin NEQ true>
      <cflocation url="/login/login.cfm">
      <cfabort
<cfelse>
      <cfset session.loggedin="Yes">
      <cfset session.username="#Trim(Form.username)#">
     <CFSET qUserRights = LoginObj.getUserRights('#Trim(Form.username)#')>
     <cfset session.userrights = qUserRights>
    <CFSET qUserGroup = LoginObj.getUserGroup('#Trim(Form.username)#')>
        <cfloop query="qUserGroup">
           <cfset session.usergroup = user_group>
           <cfbreak>
        </cfloop>
    
   <cfdump var="#session.loggedin#">
   <cfdump var="#session.username#">
   <cfdump var="#session.userright#">
   <cfdump var="#session.usergroup#">
</cfif>
In index.cfm, Before Login I got:
session.loggedin = NO
session.username = ["empty string"]
session.userrights = ["empty string"]
session.usergroup = ["empty string"]
After a successful Login:
session.loggedin = NO
session.username = ["empty string"]
session.userrights = ["empty string"]
session.usergroup = ["empty string"]
Have I done something wrong? These codes work on CF8. Please help.
I need to mentioned:
CF10 is in Linux and my web app is under https not http. But these session variables should be shared bentween http and https because some older application are still in http.

On which page is the following code?
After login, user is validated and set values to those session.variables:
........user validation codes here......................
<cfif mylogin NEQ true>
      <cflocation url="/login/login.cfm">
      <cfabort
<cfelse>
      <cfset session.loggedin="Yes">
      <cfset session.username="#Trim(Form.username)#">
     <CFSET qUserRights = LoginObj.getUserRights('#Trim(Form.username)#')>
     <cfset session.userrights = qUserRights>
    <CFSET qUserGroup = LoginObj.getUserGroup('#Trim(Form.username)#')>
        <cfloop query="qUserGroup">
           <cfset session.usergroup = user_group>
           <cfbreak>
        </cfloop>
    
   <cfdump var="#session.loggedin#">
   <cfdump var="#session.username#">
   <cfdump var="#session.userright#">
   <cfdump var="#session.usergroup#">
</cfif>

Compare data record to session variable

I am completely stumped. It should be easy.
I am trying to compare a field from a database to a sesssion variable on a JSP page and even though the fields print out the same when I call them in JSP, my "If" statement never gets activated.
Here's the last version of the code I tried:
String usernamev = UserSession.getValue("username").toString();
String custname = RS.getString("ORCUST");
if (usernamev.equals(custname))
userrole="Customer ";
I've also tried this:
String usernamev = UserSession.getValue("username").toString();
String custname = RS.getString("ORCUST").toString;
if (usernamev.equals(custname))
userrole="Customer ";
And I've also tried this:
if (RS.getString("ORCUST").equals(usernamev))
userrole= "Customer ";
And This:
And I've also tried this:
if (usernamev.equals(RS.getString("ORCUST")))
userrole= "Customer ";
When RILLI is the field I'm trying to compare this works:
if (usernamev.equals("RILLI"))
userrole= "Customer ";
Somehow my data type must be wrong but I can't figure out why. When I print out
<%=usernamev%>
and <%=RS.getString("ORCUST")%>
they show on my webpage as RILLI. I can also assign a constant value to userrole without a problem.
What the heck am I doing wrong?

I think limeybrit was on the right track and I hadn't trimmed because I got a no trim method error before because I hadn't converted session variable to a string.
When I used this:
String usernamev = UserSession.getValue("username").toString();
usernamev = usernamev.trim();
String custname = RS.getString("ORCUST").trim();
I think its working now. Thanks for help all.

Using Session Variables for User Login - sometimes they don't persist... what am I doing wrong?

Hi all,
I'm running a site that requires user login. I approached the building of this site as almost a complete newb to CF (and dynamic coding in general), and it's been a great learing experience (with lots of help from you guys).
However, I guess I never learned the correct way to handle a user login. It seemed to me that I could just test the user-entered credentials against those stored in a database, then set a session variable containg that user's record number. Then, not only would I have an easy way of knowing who this user was and therefore what info to serve him, but I could test for the existence of a valid login on every page in the protected folder, by adding this code to my application.cfc in that folder:
<cfset This.Sessionmanagement=true>
<cfset This.Sessiontimeout="#createtimespan(0,8,0,0)#">
   <cfif NOT isDefined ("session.username") or NOT isDefined ("session.password") or NOT isDefined ("session.storeID")>
     <cflocation url="../index.cfm" addtoken="no">
   </cfif>
...and it goes on to run a query and verify that the session.username and session.password match for the store defined by session.storeID. If not, all session variables are cleared and it bounces you back to the login page. When the user clicks Logout, all I do is delete all the session variables.
This seemed to work great for like a year, but lately I've been getting reports that the login doesn't seem to persist for longer than approx. 20 minutes of inactivity. You can see I specified session variables to remain active for 8 hours (I know that seems like a drastically long login, but it's what's necessary for this application). I've only gotten this report from a few people, and I myself can't seem to duplicate it... I've tested an inactive login for 45 minutes now and it held.
SO: any reason you can think of why session variables would be spontaneously clearing for some people? Would having your router reset its IP address invalidate the session or something? Also, the problem seemed to begin appearing after my host upgraded all their servers to CF9... could there be any relation?
And on a more general note... did I go about this completely the wrong way to begin with? If so, what's the standard way to manage a login?
Lots of questions, I know... thanks very much for any answers or suggestions!
Joe

Ian,
Thanks very much - very helpful information.
Sounds like passing the tokens in every request is probably the way to go for this. I don't think it's likely that any users will be sharing links, unless they actually intend for the recipient to see their info anyway.
Is that all I would have to do, is add the tokens to every path? Would that guarantee that all the session variables would remain valid until timeout or being cleared?
Again, thanks, you've been really helpful.
Joe
On Jun 23, 2010 4:37 PM, Ian Skinner <[email protected]> wrote:
Unfortunately this is the nature of HTTP web applications. There is NO state maintained from HTTP request to request. This is by design in the HTTP protocol specifications.
ColdFusion provides two methods to circumvent this limitation. Each method has limitations and caveats. They both rely on the passing of tokens between the client and the server with every request. These tokens can be passed as cookies OR URL (GET) variables. You are using the cookie method, which is the simpler and most common. You may be experiencing the limitation of this method. If something happens to the cookies the session can be lost.
You could pass the (CFID & CFTOKEN) OR JESSIONID tokens through the URL query string with every request. This requires one to add these values to every link, form action, cflocation or other request path in our application. ColdFusion provides the session.urltoken variable to make this easier to do. The tokens will be visible to the user. Also if the links with an individual token is share with other users, via e-mail, chat, social networks, etc and one of these users utilize the link during the life of a session (8 hours apparently in your case). Then that user will access the session of the original user.
Cookie session management is by far the most common choice by CF developers. If these methods do not meet your needs you would need to go beyond the HTTP limitations of web applications. One might be able to accomplish this with a Flex|Air|Flash applications that can be configured to use a continuous connection to the server. Thus not suffer the stateless nature of the normal HTTP request-response cycle.
I do not know if a router resetting would cause cookies to be discarded or otherwise invalidated. But I would not think it is beyond the relm of possibilities.

How to pass session variable value with GO URL to override session value

Hi Gurus,
We have below requirement.Please help us at the earliest.
How to pass session variable value with GO URL to override session value. ( It is not working after making changes to authentication xml file session init block creation as explained by oracle (Bug No14372679 : which they claim it is fixed in 1.7 version Ref No :Bug 14372679 : REQUEST VARIABLE NOT OVERRIDING SESSION VARIABLE RUNNING THRU A GO URL )
Please provide step by step solution.No vague answers.
I followed below steps mentioned.
RPD:
****-> Created a session variable called STATUS
-> Create Session Init block called Init_Status with SQL
select 'ACTIVE' from dual;
-> Assigned the session variable STATUS to Init block Init_Status
authenticationschemas.xml:
Added
<RequestVariable source="url" type="informational"
nameInSource="RE_CODE" biVariableName="NQ_SESSION.STATUS"/>
Report
Edit column "Contract Status" and added session variable as
VALUEOF(NQ_SESSION.STATUS)
URL:
http://localhost:9704/analytics/saw.dll?PortalGo&Action=prompt&path=%2Fshared%2FQAV%2FTest_Report_By%20Contract%20Status&RE_CODE='EXPIRED'
Issue:
When I run the URL above with parameter EXPIRED, the report still shows for ACTIVE only. The URL is not making any difference with report.
Report is picking the default value from RPD session variable init query.
could you please let me know if I am missing something.

Hi,
Check those links might help you.
Integrating Oracle OBIEE Content using GO URL
How to set session variables using url variables | OBIEE Blog
OBIEE 10G - How to set a request/session variable using the Saw Url (Go/Dashboard) | GerardNico.com (BI, OBIEE, O…
Thanks,
Satya

Use Session Variable with row-wise initialization

Hello,
I use an initialization block in order to load some translations in my repository (version is 11.1.1.6.BP1) :
SQL :
SELECT CODE_KEY, STRING_VALUE FROM "TABLES" WHERE LANGUAGE_KEY= 'VALUEOF(NQ_SESSION.USERLOCALE)'
Values :
CN_INCOMING, Incoming, en
CN_OUTGOING, Outgoing, en
CN_INCOMING, Réception, fr
CN_OUTGOING, Emission, fr
etc ...
I checked the row-wise intialization.
The query is correct and returns the right values (I check in the log file ..).
So far, So good.
But when I want to use session variables in a column expression (in repository) like :
CASE WHEN "column"="xx" THEN VALUEOF(NQ_SESSION."CN_INCOMING") ELSE VALUEOF(NQ_SESSION."CN_OUTGOING") END
I got the error: [nQSError: 23006] The session variable, NQ_SESSION.CN_OUTGOING, has no value definition.
If I used the same formula directly in Answers it's working correctly.
Do I have to necessarily do this in answers or is there a way to do this in the repository.
Thanks in advance
Regards
Benjamin

Yes I already tested this point, when I don't use a row wise initialization it's working, but I don't want to create one variable for each translations that I need to use in column formula if you know what I mean.
I don't understand why we can't use this kind of variable in this context ..but if I have to create the column in my analysis, I will do that, but it's not really user friendly
Anyway thanks for your time.

Session variables dropping

I've been having this problem for a long time so I thought
I'd post again and maybe get a hit this time.
We run off windows cfmx 7.x now fully patched, prior to that
we were on cfmx 6.x. We use session management only. Many times on
a new page hit the user loses about half of their session variables
up to all of them. Typically we have them test on the same machine
using different browsers. 99% of the time switching from IE to
firefox solves the problem, most of the users have had IE 6.x.
I experienced this problem myself for about 4 months time and
I could reproduce it daily when neccessary by simply opening a new
window to our application and the session information would persist
to the new window but the parent window would receive a new cfid
and lose all session information. New windows aren't the only
issue, we see a lot of lost session variables in one click, same
window, functionality. I've had hooks in place to test if the
domain was different on page hits removing the www or something but
so far have not found anything there. Each time a new CFID is being
issued and they are losing the original. We attempted to put CFID's
in the URL at all times but that leads to other issues and didn't
solve the problem for us anyhow.
This has been a serious issue for awhile and browsing these
forums I see others are experiencing it to some extent too. I'm
wondiner if anyone has any tips or can confirm the CF Admin/app.cfc
setup you use if you're not seeing any problems like this.

right... response.sendRedirect(). sendRedirect works by sending a repsonse to the browser with a location header. The browser sees that header and makes a new, separate request to the new location. It's no different then typing the location in the location bar in the browser or clicking a link.
But that doesn't matter. If you have 2 web applications (aka 2 servlet contexts) on the server, they are not going to share sessions between them. So the first page is working off one session in one context with some ID. Then the redirect sends it to another page in a different context. That session ID is not valid in that 2nd context, so a new session is created like it was a first time user. And if you redirect back, you may not get the same session for the first context, unless the session ID cookie defines the path as well (I'm not sure offhand).
The "application" object is the servlet context, specifically a javax.servlet.ServletContext object (or implementation of the interface, technically). Nothing is shared between contexts.
Now, you can always share things in one way or another. Store things in a database or in files. Use a messaging system like SOAP or JMS. Maybe the server allows for contexts to access each other (they aren't shared in that case, just that you can get a named context and read what's stored in it).
Or don't have your separate contexts, use subdirectories in the same context.

Filter recordset with session variable

This has never happened to me before, but for some reason, my
recordset that drives a dynamic table won't filter results based on
a session variable. I know session variables are working because I
have the session variable echo on the page (dragged-n-dropped my
session variable from the Bindings panel to my page), and that
works fine. So why can't I filter my recordset with the same
session variable??? What's going on?
PS: I've attached my result page's code to this
message.

Gabe the Animator wrote:
> <?php require_once('Connections/sales.php'); ?>
> <?php
> if (!function_exists("GetSQLValueString")) {
> function GetSQLValueString($theValue, $theType,
$theDefinedValue = "",
> $theNotDefinedValue = "")
> {
> $theValue = get_magic_quotes_gpc() ?
stripslashes($theValue) : $theValue;
>
> $theValue = function_exists("mysql_real_escape_string")
> mysql_real_escape_string($theValue) :
mysql_escape_string($theValue);
>
> switch ($theType) {
> case "text":
> $theValue = ($theValue != "") ? "'" . $theValue . "'" :
"NULL";
> break;
> case "long":
> case "int":
> $theValue = ($theValue != "") ? intval($theValue) :
"NULL";
> break;
> case "double":
> $theValue = ($theValue != "") ? "'" .
doubleval($theValue) . "'" :
> "NULL";
> break;
> case "date":
> $theValue = ($theValue != "") ? "'" . $theValue . "'" :
"NULL";
> break;
> case "defined":
> $theValue = ($theValue != "") ? $theDefinedValue :
$theNotDefinedValue;
> break;
> }
> return $theValue;
> }
> }
>
> $colname_rsSales = "-1";
> if (isset($_SESSION['state'])) {
> $colname_rsSales = $_SESSION['state'];
> }
> mysql_select_db($database_sales, $sales);
> $query_rsSales = sprintf("SELECT * FROM sales WHERE city
= %s",
> GetSQLValueString($colname_rsSales, "text"));
> $rsSales = mysql_query($query_rsSales, $sales) or
die(mysql_error());
> $row_rsSales = mysql_fetch_assoc($rsSales);
> $totalRows_rsSales = mysql_num_rows($rsSales);
>
> session_start(); ?>
The issue is that PHP doesn't "work" with session values
until the session has started, and that must be done on each page,
and must be done in the code *above* any reference to a session
variable. The code you posted has the session_start() after it
tries to use the session value ito filter the recordset. So move
this last line of code ( session_start(); ) above $colnam_rsSales =
"-1". Better yet, use:
if(!session_id()){
session_start();
To prevent some versions of PHP from generating a
warning/notice if you've called session_start() on the page already
and you call it again.
Danilo Celic
| Extending Knowledge Daily :
http://CommunityMX.com/
| Adobe Community Expert

Export Recordset As XML w/ session variable

I'm trying to use the Export Recordset As XML function. It works great for recordsets without any variables (such as a session variable), but as soon as a add a variable to the record set, I get a "Header already Sent!" Error.
The prior (non-adobe) version had a "variable" selection on the Advanced tab which seems to be gone now.
How do I add a session variable to the recordset and have it play nice with Export Recordset As XML? I need an XML doc that only includes a specific users information. The session variable is made when the user logs in to see the data.

I'm trying to use the Export Recordset As XML function. It works great for recordsets without any variables (such as a session variable), but as soon as a add a variable to the record set, I get a "Header already Sent!" Error.
The prior (non-adobe) version had a "variable" selection on the Advanced tab which seems to be gone now.
How do I add a session variable to the recordset and have it play nice with Export Recordset As XML? I need an XML doc that only includes a specific users information. The session variable is made when the user logs in to see the data.

DISPLAYNAME session variable

The documentation says that I can use the DISPLAYNAME session variable. However, in the server variable initialization block, it returns no value. In fact, it is not even recognized as a bind variable.
For example,
The query select ':USER' from dual returns
Variable Value
==== ========
mysessvar Administrator
However, select ':DISPLAYNAME' from dual returns
Variable Value
==== ========
mysessvar :DISPLAYNAME
I have read other threads dealing with the GROUP session variable, so it seems like this should be possible. However, I cannot get it to work. I am using OBIEE version 10.3.3.2. Thanks.

Sorry. Yes, usually the best thing to do is state your objective, rather than your method. I am using SSO, but I want to have the ability to filter records based on the user logging in. Here is one way I thought of doing this.
What I need to do is filter records based on a particular ID. Let's say my report table looks like this:
RID UID Amount
=== === =====
1 1 10
2 2 15
3 1 20
I also have a table mapping username to UID, let's call it USERS.
UID Username
== ========
1 Joe
2 Bob
We have set up OBI to use SSO and cookies. We will authenticate the user and then redirect to OBI. However, in OBI, I only want to show the records related to the user logging in. So, if Joe logs in, I only want to show records with RID =1,3. If Bob logs in, I only want to show records with RID=2.
Now, if I was to create 1 named user in OBI for each user in USERS, I could use an init block to query the USERS table, get the UID and set it to a session variable. I could then use this session variable to filter my records. However, even though we won't have that many users, I don't want to do it manually. I want to create one OBI user that has access to the report. To filter records, my thought was to set the DISPLAYNAME using a cookie and then use the DISPLAYNAME to retrieve the UID.
To answer the question asked by Turribeach, OBI is only looking at users defined in the rpd. We are using SSO, but OBI is not using external authentication.
To summarize, I am using SSO, but I want to have the ability to filter records based on the user logging in. I just want to know the best way of doing that. Thanks!

Shared java static variables

I have an application where I would like to
read from some small configuration tables
and cache them into java variables, in order to avoid each stored procedure call to redo
those queries. The configuration data is
pretty static, so I don't worry about refresh
problems.
My first attempt to do that was using static
final variables (like Vector). In our oracle
environment however (8.1.7) each session
seems to have its own copy of static final
variables, resulting in each session to
perform those queries for initializing all
over again.
firstly, i would like to find out if there is another way to share this data among java
sessions, but otherwise I am curious how
I can get the claims made in http://technet.oracle.com/products/oracle8i/pdf/8ir2java.pdf , page 6 to work.
Specifically, here is what the document says:
"In Oracel8i Release 2, JServer introduces the concept of "hotloaded" classes. Various core classes that
initialize static variables known to be constant are pre-initialized during database creation time. When you use
one of these classes in your program, the class loader loads the pre-initialized form. In many cases, the time
required to initialize the static variables is itself quite significant, and now with the introduction of hotloaded
classes that time is completely eliminated. In addition, the objects in these particular static variables are shared
among all sessions. Hotloaded classes therefore improve performance by eliminating class initialization and
they reduce per-user-session footprint by increasing the amount of data shared between sessions. Hotloaded
classes provide improved performance and scalability "for free", with no user intervention. "
the kind of initialization I have been
trying is like:
public static final int inti = func();
this also didn't seem to work:
public static final int inti;
static {
inti = ....;
thanks,
null

I have an application where I would like to
read from some small configuration tables
and cache them into java variables, in order to avoid each stored procedure call to redo
those queries. The configuration data is
pretty static, so I don't worry about refresh
problems.
My first attempt to do that was using static
final variables (like Vector). In our oracle
environment however (8.1.7) each session
seems to have its own copy of static final
variables, resulting in each session to
perform those queries for initializing all
over again.
firstly, i would like to find out if there is another way to share this data among java
sessions, but otherwise I am curious how
I can get the claims made in http://technet.oracle.com/products/oracle8i/pdf/8ir2java.pdf , page 6 to work.
Specifically, here is what the document says:
"In Oracel8i Release 2, JServer introduces the concept of "hotloaded" classes. Various core classes that
initialize static variables known to be constant are pre-initialized during database creation time. When you use
one of these classes in your program, the class loader loads the pre-initialized form. In many cases, the time
required to initialize the static variables is itself quite significant, and now with the introduction of hotloaded
classes that time is completely eliminated. In addition, the objects in these particular static variables are shared
among all sessions. Hotloaded classes therefore improve performance by eliminating class initialization and
they reduce per-user-session footprint by increasing the amount of data shared between sessions. Hotloaded
classes provide improved performance and scalability "for free", with no user intervention. "
the kind of initialization I have been
trying is like:
public static final int inti = func();
this also didn't seem to work:
public static final int inti;
static {
inti = ....;
thanks,
null

Version migration, shared ssl, session variables

Similar Messages

Maybe you are looking for