XML Log out API
Hi
how can i log out the session using XML API? anybody have sample code for log out session using XML API through either javascript or c#?
Thanks
Palani
you need to use the logout api
here is the format for the api call :
https://<connect server url>.com/api/xml?action=logout
for your code :
1. call above api
2. parse the xml status and check if it returns " ok"
hope this helps!!
Similar Messages
-
Implementing XAdES in Java XML Digital Signature API
Hi,
I've got some problems with implementing XAdES standard with Java XML Digital Signature API. Below is a code (SignatureTest1), that produces a digital signature with some XAdES tags placed in <ds:Object> tag. The signature is later validated with a Validator class. Everything works fine, until I set a XAdES namespace (SignatureTest1.xadesNS="http://uri.etsi.org/01903/v1.3.2#"). In this case validation of XAdES elements fails.
The reason of validation failture is a difference between arguments passed to a digest method when document is being signed and validated. When the document is being signed a log looks like this:
FINER: Pre-digested input:
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.DigesterOutputStream write
FINER: <SignedProperties xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="SignP"></SignedProperties>
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.dom.DOMReference digest
FINE: Reference object uri = #SignP
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.dom.DOMReference digest
FINE: Reference digesting completed,but while validating:
FINER: Pre-digested input:
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.DigesterOutputStream write
FINER: <SignedProperties xmlns="http://uri.etsi.org/01903/v1.3.2#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="SignP"></SignedProperties>
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.dom.DOMReference validate
FINE: Expected digest: MAQ/vctdkyVHVzoQWnOnQdeBw8g=
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.dom.DOMReference validate
FINE: Actual digest: D7WajkF0U5t1GnVJqj9g1IntLQg=
2007-08-21 15:38:44 org.jcp.xml.dsig.internal.dom.DOMXMLSignature validate
FINE: Reference[#SignP] is valid: falseHow can I fix this?
Signer class:
import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.io.OutputStream;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.util.ArrayList;
import java.util.Collections;
import java.util.Iterator;
import java.util.List;
import javax.xml.crypto.dom.DOMStructure;
import javax.xml.crypto.dsig.CanonicalizationMethod;
import javax.xml.crypto.dsig.DigestMethod;
import javax.xml.crypto.dsig.Reference;
import javax.xml.crypto.dsig.SignatureMethod;
import javax.xml.crypto.dsig.SignedInfo;
import javax.xml.crypto.dsig.Transform;
import javax.xml.crypto.dsig.XMLObject;
import javax.xml.crypto.dsig.XMLSignature;
import javax.xml.crypto.dsig.XMLSignatureFactory;
import javax.xml.crypto.dsig.dom.DOMSignContext;
import javax.xml.crypto.dsig.dom.DOMValidateContext;
import javax.xml.crypto.dsig.keyinfo.KeyInfo;
import javax.xml.crypto.dsig.keyinfo.KeyInfoFactory;
import javax.xml.crypto.dsig.keyinfo.KeyValue;
import javax.xml.crypto.dsig.spec.C14NMethodParameterSpec;
import javax.xml.crypto.dsig.spec.TransformParameterSpec;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.transform.Transformer;
import javax.xml.transform.TransformerFactory;
import javax.xml.transform.dom.DOMSource;
import javax.xml.transform.stream.StreamResult;
import org.w3c.dom.Document;
import org.w3c.dom.Element;
import org.w3c.dom.NodeList;
import com.sun.org.apache.xml.internal.security.utils.IdResolver;
public class SignatureTest1 {
public static String xadesNS=null;//"http://uri.etsi.org/01903/v1.3.2#";
public static String signatureID="Sig1";
public static String signedPropID="SignP";
public static void main(String[] arg) {
try{
XMLSignatureFactory fac = XMLSignatureFactory.getInstance("DOM");
List<Reference> refs = new ArrayList<Reference>();
Reference ref1 = fac.newReference
("", fac.newDigestMethod(DigestMethod.SHA1, null),
Collections.singletonList
(fac.newTransform
(Transform.ENVELOPED, (TransformParameterSpec) null)),
null, null);
refs.add(ref1);
Reference ref2 = fac.newReference("#"+signedPropID,fac.newDigestMethod(DigestMethod.SHA1,null),null,"http://uri.etsi.org/01903/v1.3.2#SignedProperties",null);
refs.add(ref2);
SignedInfo si = fac.newSignedInfo
(fac.newCanonicalizationMethod
(CanonicalizationMethod.INCLUSIVE_WITH_COMMENTS,
(C14NMethodParameterSpec) null),
fac.newSignatureMethod(SignatureMethod.DSA_SHA1, null),
refs);
KeyPairGenerator kpg = KeyPairGenerator.getInstance("DSA");
kpg.initialize(512);
KeyPair kp = kpg.generateKeyPair();
KeyInfoFactory kif = fac.getKeyInfoFactory();
KeyValue kv = kif.newKeyValue(kp.getPublic());
KeyInfo ki = kif.newKeyInfo(Collections.singletonList(kv));
DocumentBuilderFactory dbf = DocumentBuilderFactory.newInstance();
dbf.setNamespaceAware(true);
Document doc =
dbf.newDocumentBuilder().parse("purchaseOrder.xml");
DOMSignContext dsc = new DOMSignContext
(kp.getPrivate(), doc.getDocumentElement());
dsc.putNamespacePrefix(XMLSignature.XMLNS, "ds");
Element QPElement = createElement(doc, "QualifyingProperties",null,xadesNS);
QPElement.setAttributeNS(null, "Target", signatureID);
Element SPElement = createElement(doc, "SignedProperties", null,xadesNS);
SPElement.setAttributeNS(null, "Id", signedPropID);
IdResolver.registerElementById(SPElement, signedPropID);
QPElement.appendChild(SPElement);
Element UPElement = createElement(doc, "UnsignedProperties", null,xadesNS);
QPElement.appendChild(UPElement);
DOMStructure qualifPropStruct = new DOMStructure(QPElement);
List<DOMStructure> xmlObj = new ArrayList<DOMStructure>();
xmlObj.add(qualifPropStruct);
XMLObject object = fac.newXMLObject(xmlObj,"QualifyingInfos",null,null);
List objects = Collections.singletonList(object);
XMLSignature signature = fac.newXMLSignature(si, ki,objects,signatureID,null);
signature.sign(dsc);
OutputStream os = new FileOutputStream("signedPurchaseOrder.xml");
TransformerFactory tf = TransformerFactory.newInstance();
Transformer trans = tf.newTransformer();
trans.transform(new DOMSource(doc), new StreamResult(os));
}catch(Exception e){
e.printStackTrace();
try{
Validator.main(null);
}catch(Exception e){
System.out.println("Validator exception");
e.printStackTrace();
public static Element createElement(Document doc, String tag,String prefix, String nsURI) {
String qName = prefix == null ? tag : prefix + ":" + tag;
return doc.createElementNS(nsURI, qName);
}Validator class:
import javax.xml.crypto.*;
import javax.xml.crypto.dsig.*;
import javax.xml.crypto.dom.*;
import javax.xml.crypto.dsig.dom.DOMValidateContext;
import javax.xml.crypto.dsig.keyinfo.*;
import java.io.FileInputStream;
import java.security.*;
import java.util.Collections;
import java.util.Iterator;
import java.util.List;
import javax.xml.parsers.DocumentBuilderFactory;
import org.w3c.dom.Document;
import org.w3c.dom.NodeList;
* This is a simple example of validating an XML
* Signature using the JSR 105 API. It assumes the key needed to
* validate the signature is contained in a KeyValue KeyInfo.
public class Validator {
// Synopsis: java Validate [document]
// where "document" is the name of a file containing the XML document
// to be validated.
public static void main(String[] args) throws Exception {
// Instantiate the document to be validated
DocumentBuilderFactory dbf = DocumentBuilderFactory.newInstance();
dbf.setNamespaceAware(true);
Document doc =
dbf.newDocumentBuilder().parse(new FileInputStream("signedPurchaseOrder.xml"));
// Find Signature element
NodeList nl =
doc.getElementsByTagNameNS(XMLSignature.XMLNS, "Signature");
if (nl.getLength() == 0) {
throw new Exception("Cannot find Signature element");
// Create a DOM XMLSignatureFactory that will be used to unmarshal the
// document containing the XMLSignature
XMLSignatureFactory fac = XMLSignatureFactory.getInstance("DOM");
// Create a DOMValidateContext and specify a KeyValue KeySelector
// and document context
DOMValidateContext valContext = new DOMValidateContext
(new KeyValueKeySelector(), nl.item(0));
// unmarshal the XMLSignature
XMLSignature signature = fac.unmarshalXMLSignature(valContext);
// Validate the XMLSignature (generated above)
boolean coreValidity = signature.validate(valContext);
// Check core validation status
if (coreValidity == false) {
System.err.println("Signature failed core validation");
boolean sv = signature.getSignatureValue().validate(valContext);
System.out.println("signature validation status: " + sv);
// check the validation status of each Reference
Iterator i = signature.getSignedInfo().getReferences().iterator();
for (int j=0; i.hasNext(); j++) {
boolean refValid =
((Reference) i.next()).validate(valContext);
System.out.println("ref["+j+"] validity status: " + refValid);
} else {
System.out.println("Signature passed core validation");
* KeySelector which retrieves the public key out of the
* KeyValue element and returns it.
* NOTE: If the key algorithm doesn't match signature algorithm,
* then the public key will be ignored.
private static class KeyValueKeySelector extends KeySelector {
public KeySelectorResult select(KeyInfo keyInfo,
KeySelector.Purpose purpose,
AlgorithmMethod method,
XMLCryptoContext context)
throws KeySelectorException {
if (keyInfo == null) {
throw new KeySelectorException("Null KeyInfo object!");
SignatureMethod sm = (SignatureMethod) method;
List list = keyInfo.getContent();
for (int i = 0; i < list.size(); i++) {
XMLStructure xmlStructure = (XMLStructure) list.get(i);
if (xmlStructure instanceof KeyValue) {
PublicKey pk = null;
try {
pk = ((KeyValue)xmlStructure).getPublicKey();
} catch (KeyException ke) {
throw new KeySelectorException(ke);
// make sure algorithm is compatible with method
if (algEquals(sm.getAlgorithm(), pk.getAlgorithm())) {
return new SimpleKeySelectorResult(pk);
throw new KeySelectorException("No KeyValue element found!");
//@@@FIXME: this should also work for key types other than DSA/RSA
static boolean algEquals(String algURI, String algName) {
if (algName.equalsIgnoreCase("DSA") &&
algURI.equalsIgnoreCase(SignatureMethod.DSA_SHA1)) {
return true;
} else if (algName.equalsIgnoreCase("RSA") &&
algURI.equalsIgnoreCase(SignatureMethod.RSA_SHA1)) {
return true;
} else {
return false;
private static class SimpleKeySelectorResult implements KeySelectorResult {
private PublicKey pk;
SimpleKeySelectorResult(PublicKey pk) {
this.pk = pk;
public Key getKey() { return pk; }
}PurchaseOrder.xml
<?xml version="1.0" encoding="UTF-8"?>
<PurchaseOrder>
<Item number="130046593231">
<Description>Video Game</Description>
<Price>10.29</Price>
</Item>
<Buyer id="8492340">
<Name>My Name</Name>
<Address>
<Street>One Network Drive</Street>
<Town>Burlington</Town>
<State>MA</State>
<Country>United States</Country>
<PostalCode>01803</PostalCode>
</Address>
</Buyer>
</PurchaseOrder>signedPurchaseOrder.xml with XAdES namespace:
<?xml version="1.0" encoding="UTF-8" standalone="no"?><PurchaseOrder>
<Item number="130046593231">
<Description>Video Game</Description>
<Price>10.29</Price>
</Item>
<Buyer id="8492340">
<Name>My Name</Name>
<Address>
<Street>One Network Drive</Street>
<Town>Burlington</Town>
<State>MA</State>
<Country>United States</Country>
<PostalCode>01803</PostalCode>
</Address>
</Buyer>
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="Sig1"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments"/><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/><ds:Reference URI=""><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tVicGh6V+8cHbVYFIU91o5+L3OQ=</ds:DigestValue></ds:Reference><ds:Reference Type="http://uri.etsi.org/01903/v1.3.2#SignedProperties" URI="#SignP"><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MAQ/vctdkyVHVzoQWnOnQdeBw8g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lSgzfZCRIlgrgr6YpNOdB3XWdF9P9TEiXfkNoqUpAru/I7IiyiFWJg==</ds:SignatureValue><ds:KeyInfo><ds:KeyValue><ds:DSAKeyValue><ds:P>/KaCzo4Syrom78z3EQ5SbbB4sF7ey80etKII864WF64B81uRpH5t9jQTxeEu0ImbzRMqzVDZkVG9
xD7nN1kuFw==</ds:P><ds:Q>li7dzDacuo67Jg7mtqEm2TRuOMU=</ds:Q><ds:G>Z4Rxsnqc9E7pGknFFH2xqaryRPBaQ01khpMdLRQnG541Awtx/XPaF5Bpsy4pNWMOHCBiNU0Nogps
QW5QvnlMpA==</ds:G><ds:Y>p48gU203NGPcs9UxEQQQzQ19KBtDRGfEs3BDt0cbCRJHMh3EoySpeqOnuTeKLXuFr96nzAPq4BEU
dNAc7XpDvQ==</ds:Y></ds:DSAKeyValue></ds:KeyValue></ds:KeyInfo><ds:Object Id="QualifyingInfos"><QualifyingProperties Target="Sig1" xmlns="http://uri.etsi.org/01903/v1.3.2#"><SignedProperties Id="SignP"/><UnsignedProperties/></QualifyingProperties></ds:Object></ds:Signature></PurchaseOrder>I believe the problem is that you are not explicitly adding the xades namespace
attribute to the SignedProperties element before generating the signature. Thus,
the namespace attribute is not visible when canonicalizing, but when you serialize the
DOM tree to an output stream, (for reasons I'm not entirely sure why), the namespace
attribute is visible and is added to the SignedProperties element, which breaks the
signature.
You must always explicitly add namespace attributes using the Element.setAttributeNS
method. Try changing the following code from:
Element SPElement = createElement(doc, "SignedProperties", null,xadesNS);
to:
Element SPElement = createElement(doc, "SignedProperties", null,xadesNS);
SPElement.setAttributeNS("http://www.w3.org/2000/xmlns/", "xmlns", xadesNS); -
Log Out Page is Not working in R12.1.3 DMZ
Hi Everyone ,
Good Evening.
Apps Version : 12.1.3
DB Version 11.2.0.3
PLatform : AIX 6.1
Arch : LBR ---> Reverse Proxy ----> EXternal Middle Tier (DMZ) --- DB
I am able to login to External Middle tier using the URL ( https://LBR.Domain/OA_HTML/AppsLocalLogin.jsp. I am able to navigate the links like preferences , Diagnostic , Home. But As soon as I am clicking on the log out link , I am getting http 500 error.
One this Which I have Observer that Lou out Url is changing to the host name of the server instead of LBR Name as
( https://hostname.domain/OA_HTML/AppsLocalLogin.jsp?cancelUrl=/OA_HTML/AppsLocalLogin.jsp&_logoutRedirect=y&langCode=US)
I have already followed the doc on Metalinks but no luck. Have tried to run the Autoconfig and bouncing of application but no luck. Enabled the Debug for OC4J but couldn't get any thing
Advanced Configurations and Topologies for Enterprise Deployments of E-Business Suite 11i [ID 217368.1]
Oracle E-Business Suite R12 Configuration in a DMZ (Doc ID 380490.1)
MOS Doc 380489.1 (Using Load-Balancers with Oracle E-Business Suite Release 12)
Tips and Queries for Troubleshooting Advanced Topologies (Doc ID 364439.1)
Enabling SSL in Oracle E-Business Suite Release 12 (Doc ID 376700.1)
Case History: Implementing a Reverse Proxy Alone in a DMZ Configuration - R12 (Doc ID 726953.1)
Regards
Sourabh GuptaAccess LOG
192.25.91.72 - - [12/Jan/2013:03:19:51 -0800] "GET /OA_HTML/AppsLocalLogin.jsp HTTP/1.1" 302 654
192.25.91.72 - - [12/Jan/2013:03:20:09 -0800] "GET /OA_HTML/RF.jsp?function_id=33375&resp_id=-1&resp_appl_id=-1&security_group_id=0&lang_code=US¶ms=Qs-5KmFWI7wTvCh5zUbV0Q&oa
s=kukIe_oeKd3-mIFqpYDc-g.. HTTP/1.1" 200 36832
192.25.91.72 - - [12/Jan/2013:03:20:12 -0800] "GET /OA_MEDIA/nlsgb.gif HTTP/1.1" 404 224
192.25.91.72 - - [12/Jan/2013:03:20:13 -0800] "GET /favicon.ico HTTP/1.1" 404 217
192.25.91.72 - - [12/Jan/2013:03:20:43 -0800] "POST /OA_HTML/OA.jsp?page=/oracle/apps/fnd/sso/login/webui/MainLoginPG&_ri=0&_ti=1178971693&language_code=US&requestUrl=&oapc=2&oa
s=yYEcdVDqcyn1J76kQdGvIg.. HTTP/1.1" 302 297
192.25.91.72 - - [12/Jan/2013:03:20:49 -0800] "GET /OA_HTML/OA.jsp?OAFunc=OAHOMEPAGE HTTP/1.1" 200 23961
192.25.91.72 - - [12/Jan/2013:03:20:51 -0800] "GET /favicon.ico HTTP/1.1" 404 217
192.25.91.72 - - [12/Jan/2013:03:20:51 -0800] "POST /OA_HTML/RF.jsp?function_id=MAINMENUREST&security_group_id=0 HTTP/1.1" 200 527
192.25.91.72 - - [12/Jan/2013:03:20:58 -0800] "GET /OA_HTML/OALogout.jsp?menu=Y HTTP/1.1" 302 255
192.25.91.72 - - [12/Jan/2013:03:20:59 -0800] "GET /OA_HTML/AppsLogout HTTP/1.1" 302 474
192.25.91.72 - - [12/Jan/2013:03:21:21 -0800] "GET /OA_HTML/xxatatgibeCAcdLogin.jsp HTTP/1.1" 200 4955
192.25.91.72 - - [12/Jan/2013:03:21:22 -0800] "GET /favicon.ico HTTP/1.1" 404 217
Error-Log ====================
[Sat Jan 12 05:27:42 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997262:192.25.89.136:17825804
:0:16,0] mod_oc4j: Response header 3, Key: Location, Value: https://LBR:443/OA_HTML/AppsLogout
[Sat Jan 12 05:27:42 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1748): [client 192.25.91.72] [ecid: 1357997262:192.25.89.136:17825804
:0:16,0] mod_oc4j: sending response chunk to client: 243 bytes
[Sat Jan 12 05:27:42 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_main.c(554): [client 192.25.91.72] [ecid: 1357997262:192.25.89.136:17825804:0:16,0]
mod_oc4j: Successfully serviced the request by worker: home.
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(845): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Sending request to: hostname.cos.domain.com:21530
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(900): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: num request headers: 13
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 0, Key: Accept, Value: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 1, Key: Accept-Charset, Value: ISO-8859-1,utf-8;q=0.7,*;q=0.3
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 2, Key: Accept-Encoding, Value: gzip,deflate,sdch
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 3, Key: Accept-Language, Value: en-US,en;q=0.8
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 4, Key: Connection, Value: Keep-Alive
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 5, Key: Cookie, Value: OTST_pses=ZGF3942C49577C19434B20BB2BFC38217F24B83798344666F7EBDA8A2CE821953ED87BB7860DF6137DC51AB7F3AB1DD1D7; JSESSIONID=
1d74eb5633089116f24c2c69ae565cbadc116765f9bbba7ef053c2d31f9f18a2.e38QahiPbxuObi0LbxeKaN0Kch0Re0; rvprod=; AGRL=thcgn_ivteb36%40lnubb.pb.va%7C%3A%3Bbde49ffdb22662e94721e6e73d7c20
f4%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D%3A%3B57f4c9dc1bf265e6378a7ea00a65338f%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D%3A%3B4ed5d2eaed1a1fadcc41ad1d58ed603e%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D
%3D%3A%3Bdb486e4cdf8b2048591e59f683319c4c%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D%3A%3B459d9fca17e3a950deae755d13578292%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D%3A%3Bed89387bcd11937a7a92a99a
2cbfb5d7%3A%3Dox20hZArLI714LpPDtK%2Fhw%3D%3D%3A%3Bef21925fada6dfb684b5d8ec72114bb1%3A%3DATXmBagSN%2B8f817OiRKOyg%3D%3D%3A%3Bf7a42fe7211f98ac7a60a285ac3a9e87%3A%3DUmaluUp4qT5fgOw
L8NFUGg%3D%3D%3A%3B851f5ac9941d720844d143ed9cfcf60a%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D%3A%3B9ed39e2ea931586b6a985a6942ef573e%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D%3A%3Becfdd0a8fcb7da
c5ef0e651b7a6bb24c%3A%3DUmaluUp4qT5fgOwL8NFUGg%3D%3D; AGWL=; s_vi=[CS]v1|2834C339851633B7-600001A68017C480[CE]; treemenu1=none open; OTST=t3ThpFHMpGPbJV3neU811CUwTg; oracle.uix=
0^^GMT+5:30^p
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 6, Key: Host, Value: hostname.cos.domain.com:4493
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 7, Key: Referer, Value: https://LBR/OA_HTML/OA.jsp?OAFunc=OAHOMEPAGE
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 7, Key: Referer, Value: https://LBR/OA_HTML/OA.jsp?OAFunc=OAHOMEPAGE
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 8, Key: User-Agent, Value: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.52 Safari/537.17
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 9, Key: X-Forwarded-For, Value: 192.25.91.88
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 10, Key: X-Forwarded-Host, Value: LBR
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 11, Key: X-Forwarded-Server, Value: LBR
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(914): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: Request header 12, Key: Oracle-ECID, Value: 1357997264:192.25.89.136:12451862:0:52,0
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(980): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:
0:52,0] mod_oc4j: jvm_route: e38QahiPbxuObi0LbxeKaN0Kch0Re0
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1117): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: uri4oc4j: /OA_HTML/AppsLogout
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1668): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] Number of response headers: 8
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 0, Key: Date, Value: Sat, 12 Jan 2013 13:27:43 G
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 1, Key: Content-Type, Value: text/html
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 2, Key: Set-Cookie, Value: JSESSIONID=1d74eb5633089116f24c2c69ae565cbadc116765f9bbba7ef053c2d31f9f18a2.e38QahiPbxuObi0LbxeKaN0Kch0Re0; path=/O
A_HTML; secure
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 3, Key: Set-Cookie, Value: OTST=-1; Domain=.domain.com; Path=/; Secure
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 4, Key: Cache-Control, Value: no-cache
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 5, Key: Pragma, Value: no-cache
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 6, Key: Expires, Value: Thu, 01 Jan 1970 00:00:00 GMT
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1700): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: Response header 7, Key: Location, Value: https://hostname.cos.domain.com/OA_HTML/AppsLocalLogin.jsp?cancelUrl=/OA_HTML/AppsLocalLogin.jsp&_logoutRedirect=y&l
angCode=US
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_ajp13_worker.c(1748): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862
:0:52,0] mod_oc4j: sending response chunk to client: 462 bytes
[Sat Jan 12 05:27:44 2013] [debug] /ade/plebld_ascore_467553/oracle/asg_apache/oc4j/src/oc4j_main.c(554): [client 192.25.91.72] [ecid: 1357997264:192.25.89.136:12451862:0:52,0]
mod_oc4j: Successfully serviced the request by worker: home. -
Wallpaper defaults to 'Galaxy' after log out + now stuck on grey screen
Hi all,
Hope someone can help with this one.
Basically, like many others, I've been trying to get around
the wallpaper problem that Lion has brought with it.
By this, I mean how if you change the wallpaper to a custom
image, as soon as you log out and back in it changes back
to the galaxy one from Lion.
So after searching the solutions on the forums I decided to
act on the following troubleshooting advice from a member
commenting on the problem... (advice I followed in bold)
(Originally posted by member: Ahmed21788)
One basic solution for this is to save your wallpapers in the HDD where you've installed the MAC OS X..
but I didnt want to save all my wallpapers in Native Mountain Lion HDD, so i figured out my perfect fix..!!
This is how i fixed..
I found this file in my Lion install drive.. autodiskmount.plist
Library/Preferences/SystemConfiguration/autodiskmount.plist
If you can't find it on your OS X Install Drive then you can make one by typing
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="0.9">
<dict>
<key>AutomountDisksWithoutUserLogin</key><true/>
</dict>
</plist>
rename ur txt file to autodiskmount.plist
save this in your MAC OS X HDD
Library/Preferences/SystemConfiguration/autodiskmount.plist
restart your system..
So... after following this advice I haven't been able to get my machine back on!
It just gets to the grey screen with apple and spinning wheel and goes no further.
It won't even safe boot.
However I did manage to get to repair disk permissions via cmd+option+p+r.
But when I restarted it still wouldn't go any further than the grey screen/spinning wheel.
Any help/ideas would be greatly appreciated.
Cheers,
Ben.Hi keithos27,
I have a macbook pro early 2011 15" like you, and unfortunately something identical happened to me: "... the computer went black and an audio was stuck on a loop over and over..." - "...grey screen on for a few minutes and eventually the computer's fan spins up and runs at full speed".
I followed the article mentioned too, but nothing solved the problem.
Eventually I took the mac to the local authorized service provider. It turns out that the problem is due to the notorious GPU failure of the 2011 macbook pro.
It means that unless I replace the entire logic board, I end up with a marvellous piece of aluminium...
This is my experience, I can't say that's 100% your case. I hope it isn't. Try to check at an apple store.
Good luck! -
hello
Has anyone tried to use the xml digital signature api on an application deployed on appserver 8.2 bundled with stucio?
I am trying to,,but it seems i cannot work it out,.Here is what i do,,i ve built a sample application where when i clik a button the following code runs.I have imported the xmldsig.jar file i found on jwsdp-1.5 that includes the needed classes and i am using jdk 1.4.2.07.
I should mention that when i deploy the application on tomcat 4.1.31 everything works fine and the xml file is properly signed.But it never works on when i run it on appserver.for ANY help i would be grateful!!!!!!!!
the following code is on the click button action
ypografi ob2 =new ypografi();
boolean ok ;
ok = ob2.ypegrapse("C:/attach.xml");
the following code is the ypografi.java file
package dokimi;
import javax.xml.crypto.*;
import javax.xml.crypto.dsig.*;
import javax.xml.crypto.dom.*;
import javax.xml.crypto.dsig.dom.DOMSignContext;
import javax.xml.crypto.dsig.keyinfo.*;
import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.io.OutputStream;
import java.security.*;
import java.util.Collections;
import java.util.Iterator;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.transform.*;
import javax.xml.transform.dom.DOMSource;
import javax.xml.transform.stream.StreamResult;
import org.w3c.dom.Document;
public class ypografi {
/** Creates a new instance of ypografi */
public ypografi() {
public boolean ypegrapse(String nameoffile){
// Create a DOM XMLSignatureFactory that will be used to generate the
// enveloped signature
try {
String providerName = System.getProperty("jsr105Provider", "org.jcp.xml.dsig.internal.dom.XMLDSigRI");
XMLSignatureFactory fac = XMLSignatureFactory.getInstance("DOM",(Provider) Class.forName(providerName).newInstance());
// Create a Reference to the enveloped document (in this case we are
// signing the whole document, so a URI of "" signifies that) and
// also specify the SHA1 digest algorithm and the ENVELOPED Transform.
Reference ref = fac.newReference("", fac.newDigestMethod(DigestMethod.SHA1, null),Collections.singletonList(fac.newTransform(Transform.ENVELOPED, null)),null, null);
// Create the SignedInfo
SignedInfo si = fac.newSignedInfo(fac.newCanonicalizationMethod(CanonicalizationMethod.INCLUSIVE_WITH_COMMENTS, null),fac.newSignatureMethod(SignatureMethod.DSA_SHA1, null),Collections.singletonList(ref));
// Create a DSA KeyPair
KeyPairGenerator kpg = KeyPairGenerator.getInstance("DSA");
kpg.initialize(512);
KeyPair kp = kpg.generateKeyPair();
// Create a KeyValue containing the DSA PublicKey that was generated
KeyInfoFactory kif = fac.getKeyInfoFactory();
KeyValue kv = kif.newKeyValue(kp.getPublic());
// Create a KeyInfo and add the KeyValue to it
KeyInfo ki = kif.newKeyInfo(Collections.singletonList(kv));
// Instantiate the document to be signed
DocumentBuilderFactory dbf = DocumentBuilderFactory.newInstance();
dbf.setNamespaceAware(true);
Document doc = dbf.newDocumentBuilder().parse(new FileInputStream(nameoffile));
// Create a DOMSignContext and specify the DSA PrivateKey and
// location of the resulting XMLSignature's parent element
DOMSignContext dsc = new DOMSignContext(kp.getPrivate(), doc.getDocumentElement());
// Create the XMLSignature (but don't sign it yet)
XMLSignature signature = fac.newXMLSignature(si, ki);
// Marshal, generate (and sign) the enveloped signature
signature.sign(dsc);
// output the resulting document
OutputStream os;
os = new FileOutputStream(nameoffile);
TransformerFactory tf = TransformerFactory.newInstance();
Transformer trans = tf.newTransformer();
trans.transform(new DOMSource(doc), new StreamResult(os));
}catch(Exception e){
System.out.println(e);
return false;
return true;
}Something like this should work:
Text text = doc.createTextNode("testContent");
SignatureProperty sp = fac.newSignatureProperty
(Collections.singletonList(new DOMStructure(text)),
"#testTarget", "testID");
SignatureProperties sps = fac.newSignatureProperties
(Collections.singletonList(sp), null);
objs.add(fac.newXMLObject(Collections.singletonList(sps), null,
null, null)); -
[SOLVED] JAZN log out not working
Hi,
I'm having a problem with JAZN security in an ADF Faces application, particularly with logging out. I'll minimize the set of pages involved in order to explain the problem, it is as follows:
The application has HTML form authentication managed by a JAZN XML file. The pages involved are
- Login.jspx (login page)
- Main.jspx (secured page with a "log out" button)
When the log out button is clicked the session is terminated and the user is redirected to the login page. After this, when I try to log in again nothing happens so I can't log in again.
Here is the code:
<< Login.jspx >>
<?xml version='1.0' encoding='windows-1252'?>
<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.0" xmlns:h="http://java.sun.com/jsf/html"
xmlns:f="http://java.sun.com/jsf/core" xmlns:af="http://xmlns.oracle.com/adf/faces"
xmlns:afh="http://xmlns.oracle.com/adf/faces/html">
<jsp:output omit-xml-declaration="true" doctype-root-element="HTML" doctype-system="http://www.w3.org/TR/html4/loose.dtd"
doctype-public="-//W3C//DTD HTML 4.01 Transitional//EN"/>
<jsp:directive.page contentType="text/html;charset=windows-1252"/>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252"/>
<title>login</title>
</head>
<body><form action="j_security_check" method="post">
<table cellspacing="3" cellpadding="2" border="0" width="100%">
<tr>
<td width="120">
<b style="whitespace:nowrap">User</b>
</td>
<td>
<input type="text" name="j_username"/>
</td>
</tr>
<tr>
<td width="120">
<b>Password</b>
</td>
<td>
<input type="password" name="j_password"/>
</td>
</tr>
<tr>
<td><jsp:text><![CDATA[ ]]></jsp:text></td>
<td>
<input type="submit" name="logon" value="Sign On"/>
</td>
</tr>
</table>
</form></body>
</html>
</jsp:root><< Main.jspx >>
<?xml version='1.0' encoding='windows-1252'?>
<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.0" xmlns:h="http://java.sun.com/jsf/html"
xmlns:f="http://java.sun.com/jsf/core" xmlns:af="http://xmlns.oracle.com/adf/faces"
xmlns:afh="http://xmlns.oracle.com/adf/faces/html" xmlns:cust="http://xmlns.oracle.com/adf/faces/customizable">
<jsp:output omit-xml-declaration="true" doctype-root-element="HTML" doctype-system="http://www.w3.org/TR/html4/loose.dtd"
doctype-public="-//W3C//DTD HTML 4.01 Transitional//EN"/>
<jsp:directive.page contentType="text/html;charset=windows-1252"/>
<f:view>
<afh:html>
<afh:head title="Main">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252"/>
</afh:head>
<afh:body>
<h:form>
<af:commandButton text="Logout" action="#{login.logout}"/>
</h:form>
</afh:body>
</afh:html>
</f:view>
</jsp:root><< jazn-data.xml >>
<?xml version = '1.0' encoding = 'windows-1252' standalone = 'yes'?>
<jazn-data xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-data-10_0.xsd" filepath="" OC4J_INSTANCE_ID="">
<jazn-realm>
<realm>
<name>jazn.com</name>
<users>
<user>
<name>user</name>
<credentials>{903}dn3x1m8PHXf4z1+aLjhNH3+9HIVSWd3l</credentials>
</user>
<user>
<name>anotherUser</name>
<credentials>{903}nhz/q14H8m4cmZ2KRBDBSDzCgFn4EQ3nA/b788Egorg=</credentials>
</user>
</users>
<roles>
<role>
<name>authenticatedUsers</name>
<members>
<member>
<type>user</type>
<name>user</name>
</member>
<member>
<type>user</type>
<name>anotherUser</name>
</member>
</members>
</role>
</roles>
</realm>
</jazn-realm>
<jazn-policy/>
</jazn-data><< web.xml >>
<?xml version = '1.0' encoding = 'windows-1252'?>
<web-app xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd" version="2.4"
xmlns="http://java.sun.com/xml/ns/j2ee">
<description>web.xml file for Web Application</description>
<filter>
<filter-name>adfFaces</filter-name>
<filter-class>oracle.adf.view.faces.webapp.AdfFacesFilter</filter-class>
</filter>
<filter-mapping>
<filter-name>adfFaces</filter-name>
<servlet-name>Faces Servlet</servlet-name>
<dispatcher>FORWARD</dispatcher>
<dispatcher>REQUEST</dispatcher>
</filter-mapping>
<servlet>
<servlet-name>Faces Servlet</servlet-name>
<servlet-class>javax.faces.webapp.FacesServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet>
<servlet-name>adfAuthentication</servlet-name>
<servlet-class>oracle.adf.share.security.authentication.AuthenticationServlet</servlet-class>
<init-param>
<param-name>success_url</param-name>
<param-value>faces/Main.jspx</param-value>
</init-param>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet>
<servlet-name>resources</servlet-name>
<servlet-class>oracle.adf.view.faces.webapp.ResourceServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>Faces Servlet</servlet-name>
<url-pattern>/faces/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>adfAuthentication</servlet-name>
<url-pattern>/adfAuthentication/*</url-pattern>
</servlet-mapping>
<servlet-mapping>
<servlet-name>resources</servlet-name>
<url-pattern>/adf/*</url-pattern>
</servlet-mapping>
<session-config>
<session-timeout>35</session-timeout>
</session-config>
<mime-mapping>
<extension>html</extension>
<mime-type>text/html</mime-type>
</mime-mapping>
<mime-mapping>
<extension>txt</extension>
<mime-type>text/plain</mime-type>
</mime-mapping>
<jsp-config/>
<security-constraint>
<web-resource-collection>
<web-resource-name>adfAuthentication</web-resource-name>
<url-pattern>/adfAuthentication</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>oc4j-administrators</role-name>
</auth-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>Secure Zone</web-resource-name>
<url-pattern>/faces/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>authenticatedUsers</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>login.jspx</form-login-page>
<form-error-page>error.html</form-error-page>
</form-login-config>
</login-config>
<security-role>
<role-name>authenticatedUsers</role-name>
</security-role>
</web-app><< orion-application.xml >>
<?xml version = '1.0' encoding = 'windows-1252'?>
<orion-application xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/orion-application-10_0.xsd">
<jazn provider="XML" location="./jazn-data.xml" default-realm="jazn.com" jaas-mode="doAsPrivileged"/>
</orion-application><< faces-config.xml >>
<?xml version="1.0" encoding="windows-1252"?>
<!DOCTYPE faces-config PUBLIC
"-//Sun Microsystems, Inc.//DTD JavaServer Faces Config 1.1//EN"
"http://java.sun.com/dtd/web-facesconfig_1_1.dtd">
<faces-config xmlns="http://java.sun.com/JSF/Configuration">
<application>
<default-render-kit-id>oracle.adf.core</default-render-kit-id>
</application>
<managed-bean>
<managed-bean-name>login</managed-bean-name>
<managed-bean-class>view.LoginBean</managed-bean-class>
<managed-bean-scope>request</managed-bean-scope>
</managed-bean>
</faces-config><< LoginBean.java >>
package view;
import java.io.IOException;
import javax.faces.context.ExternalContext;
import javax.faces.context.FacesContext;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
public class LoginBean {
public LoginBean() {
public String logout() throws IOException {
FacesContext ctx = FacesContext.getCurrentInstance();
ExternalContext ectx = ctx.getExternalContext();
HttpServletResponse response = (HttpServletResponse)ectx.getResponse();
HttpSession session = (HttpSession)ectx.getSession(false);
session.invalidate();
response.sendRedirect("Login.jspx");
ctx.responseComplete();
return null;
}Is there anything wrong or missing?
Thanks,
YoelHi,
in BASIC authentication the browser autenticates the user (browser sso). A new session is created - wich means that all session information of the previous application run are deleted. To avoid browser sso you need to close the browser process. The BASIC authentication issue is not caused by JAZN but the way this authentication is speced by teh W3C
Frank -
'Messages' logs out my AIM account every 10 minutes, help ??
Since updating to OS X Mountain Lion, my AIM accounts keep logging out and disconnecting, I tried deleting and re-adding the account but there hasn't been any change, has anyone else been experiencing this?
Hi,
I would check the Preferences or Messages and then the Server Settings tab for the AIm Logins you have.
The server should be api.oscar.aol.com and the SSL option is normally On.
There have been issues with the AIM SSL server in the past.
It may pay to try it without SSL and see if there is any difference.
Also Messages will tend to reconnect if the connection gets dropped when not using SSL (SSL has to be manually reconnected for Security purposes).
Previously the iChat App uses the login.oscar.aol.com servers and when using SSL the software would change the server name by adding a leading s (slogin.oscar.aol.com).
This was on port 5190.
You have to Log Out to change any of these settings
7:51 PM Tuesday; August 7, 2012
Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"
iMac 2.5Ghz 5i 2011 (Lion 10.7.2)
G4/1GhzDual MDD (Leopard 10.5.8)
MacBookPro 2Gb (Snow Leopard 10.6.8)
Mac OS X (10.6.8),
"Limit the Logs to the Bits above Binary Images." No, Seriously -
Automatically logged out from SQL tool on update queries
This is a local instance configuration issue. Our current setup has the unfortunate feature that whenever you attempt to run an "update" statement in the SQL query tool, you get automatically logged out. I was guessing that it's a permissions issue , but the DBA says it's not. Has anyone else seen this behavior and know what causes it?
thanks
[email protected]PLSQL_GATEWAY = WebDb
GATEWAY_IVERSION = 3
SERVER_SOFTWARE = Oracle-Application-Server-10g/9.0.4.0.0 Oracle-HTTP-Server
GATEWAY_INTERFACE = CGI/1.1
SERVER_PORT = 7777
SERVER_NAME = irt-lab-01
REQUEST_METHOD = GET
QUERY_STRING = p=106:3:17582993408477916936
PATH_INFO = /f
SCRIPT_NAME = /pls/htmldb
REMOTE_ADDR = 171.65.65.151
SERVER_PROTOCOL = HTTP/1.1
REQUEST_PROTOCOL = HTTP
REMOTE_USER = HTMLDB_PUBLIC_USER
HTTP_USER_AGENT = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0
HTTP_HOST = irt-htmldb:7777
HTTP_ACCEPT = text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
HTTP_ACCEPT_ENCODING = gzip,deflate
HTTP_ACCEPT_LANGUAGE = en-us,en;q=0.5
HTTP_ACCEPT_CHARSET = ISO-8859-1,utf-8;q=0.7,*;q=0.7
HTTP_REFERER = http://htmldb.stanford.edu/pls/htmldb/wwv_flow.accept
HTTP_ORACLE_ECID = 1100647738:171.65.64.22:4707:0:27727,0
WEB_AUTHENT_PREFIX =
DAD_NAME = htmldb
DOC_ACCESS_PATH = docs
DOCUMENT_TABLE = wwv_flow_file_objects$
PATH_ALIAS =
REQUEST_CHARSET = WE8ISO8859P1
REQUEST_IANA_CHARSET = ISO-8859-1
SCRIPT_PREFIX = /pls
HTTP_COOKIE = LOGIN_USERNAME_COOKIE=sweber; ORACLE_PLATFORM_REMEMBER_UN=SWEBER:Obstet_Anes; WWV_FLOW_USER2=52D2AD1E7A3F75FB; SUNetCookieBrowser=TRUE; WebloginTestCookie=True%40%40; WWV_CUSTOM-F_1059203611149176_106=5A0AE6B864E55BC3 -
Preventing the User from going back to the main page after logging out.
Hi all,
In my project I want to prevent the User from going back to the Main page, by clicking the back button of the browser, after the user has loggged out.I had invalidated the session so the user will not be able to do any operations, but he can vew the infos. I want to redirect to the login page if the user tries to go back using the back button after he has logged out.
I tried the same in this forum after loging out. Surprisingly it is the same. I can browse through all the operations i did even after logging out from here.
Is it not possible to do that in Servlets?Could somebody help?
Thanks,
Zach.Hi,
You can use a servlet filter to do this , as it can interceptany request to your application you can decide to allow user access or not to any page/servlet.
public class Test implements Filter{
public void destroy() {
public void doFilter(ServletRequest arg0, ServletResponse arg1, FilterChain arg2) throws IOException,
ServletException {
System.out.println("filter");
HttpServletRequest request = (HttpServletRequest) arg0;
if(!request.getRequestURI().contains("index")){ // set condition that will be checked to verify if the user is logged in
System.out.println("redirecting ... ");
RequestDispatcher d = arg0.getRequestDispatcher("/index.jsp");
d.forward(arg0, arg1);
arg2.doFilter(arg0, arg1);
public void init(FilterConfig arg0) throws ServletException {
}in you web.xml add :
<filter>
<filter-name>test</filter-name>
<filter-class>test.Test</filter-class>
</filter>
<filter-mapping>
<filter-name>test</filter-name>
<url-pattern>/*</url-pattern>
</filter-mapping> -
Why does a LaunchDaemon stop when user logs out?
Hi,
We have an application that uses an older version of Jetty that I am trying to configure as a LaunchDaemon on OS X 10.7.5
I've created a org.mortbay.jetty.plist and placed this in the /Library/LaunchDaemons, set permission 644 and owner root:wheel. This can be loaded via launchctl and all is happy. I can connect to the server and browse the pages on the server. However, if I log out, the service stops responding and only starts responding when I log in again. It appears to stop jetty and then restart it when I log in.
As this is being run as the root user, I would not have expected a user logout to stop this process. From what I can see there are no per-user overrides for this.
Upgrading Jetty is not currently an option.
Any help/ideas would be appreciated.
Dave
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>Disabled</key>
<false/>
<key>Label</key>
<string>org.mortbay.jetty</string>
<key>ServiceDescription</key>
<string>Jetty 5</string>
<key>RunAtLoad</key>
<true/>
<key>KeepAlive</key>
<true/>
<key>EnvironmentVariables</key>
<dict>
<key>JAVA_HOME</key>
<string>/Library/Java/Home</string>
</dict>
<key>WorkingDirectory</key><!-- required! -->
<string>/usr/local/myApp/Jetty/extra/OSX/</string>
<key>ProgramArguments</key>
<array>
<string>/usr/bin/java</string>
<string>-Djava.io.tmpdir=/tmp</string>
<string>-Djetty.port=2000</string>
<string>-Djetty.home=/usr/local/myApp/Jetty/</string>
<string>-Djetty.logs=/usr/local/myApp/Jetty/logs/</string>
<string>-d32</string>
<string>-jar</string>
<string>../../start.jar</string>
<string>/usr/local/myApp/Jetty/jetty.xml</string>
</array>
<key>UserName</key>
<string>root</string>
<key>StandardErrorPath</key>
<string>/tmp/launchd_myprogram_stderr.log</string>
<key>StandardOutPath</key>
<string>/tmp/launchd_myprogram_stdout.log</string>
</dict>
</plist>Thought I had an answer...but no.
Maybe this reference will help: Daemons and Services
Message was edited by: g_wolfman -
Issue with logging out in adf security
I have three pages. Login, error and welcome.
The first page visible during runtime is login.
I have username, password fields and login button in it.
the action of login button is mapped to this :
public String doLogin() {
byte[] pw = getSPassword().getBytes();
FacesContext ctx = FacesContext.getCurrentInstance();
HttpServletRequest request =
(HttpServletRequest)ctx.getExternalContext().getRequest();
CallbackHandler handler =
new SimpleCallbackHandler(getSUserName(), pw);
try {
Subject mySubject = Authentication.login(handler);
ServletAuthentication.runAs(mySubject, request);
ServletAuthentication.generateNewSessionID(request);
String loginUrl =
"/adfAuthentication?success_url=/faces" + "/Welcome.jspx";
HttpServletResponse response =
(HttpServletResponse)ctx.getExternalContext().getResponse();
sendForward(request, response, loginUrl);
} catch (FailedLoginException fle) {
FacesMessage msg =
new FacesMessage(FacesMessage.SEVERITY_ERROR, "Incorrect Username or Password",
"An incorrect Username or Password" +
" was specified");
ctx.addMessage(null, msg);
} catch (LoginException le) {
reportUnexpectedLoginError("LoginException", le);
return null;
}This takes me to welcome page.
I have a golink control in this page.
The destination of golink is:
"#{securityContext.authenticated ? "/adfAuthentication?logout=true&end_url=/faces/Error.jspx"
: "/adfAuthentication?success_url=/faces/Login.jspx"} "
(I dont know what this el means. i believe it sets logout to false)
It takes me to error page.
I believe I should be logged out now. But when I press back in browser it takes me back to welcome page.
I put an af:output text with value security.authenticated and it shows true.
So created a servlet
public class LogoutServlet extends HttpServlet {
public void init(ServletConfig config) throws ServletException {
super.init(config);
public void doGet(HttpServletRequest request,
HttpServletResponse response) throws ServletException,
IOException {
request.getSession(true).invalidate();
response.sendRedirect("faces/Error.jspx");
public void doPost(HttpServletRequest request,
HttpServletResponse response) throws ServletException,
IOException {
doGet(request, response);
}registerd it in web.xml as url pattern logout.
Set the destination of golink as logout.
But still the same results.
Where did i go wrong?
the role of welcome.jspx is authenticated-role
Edited by: josetuttu on Jul 7, 2011 2:17 AMHi , your problem is arising when user presses the back button of the browser , web browser shows the page from its cache. If you want that
on pressing the back button users should not view the previous pages you must stop web browser from caching the page to its local memory.
It can be done by adding the following code in the jsp:root tag of jsf (.jspx) page.
<jsp:scriptlet>
// Set to expire far in the past.
response.setDateHeader("Expires", 0);
// Set standard HTTP/1.1 no-cache headers.
response.setHeader("Cache-Control", "no-store, no-cache, must-revalidate");
// Set IE extended HTTP/1.1 no-cache headers (use addHeader).
response.addHeader("Cache-Control", "post-check=0, pre-check=0");
// Set standard HTTP/1.0 no-cache header.
response.setHeader("Pragma", "no-cache");
</jsp:scriptlet>Now when ever page is loaded the web browser will never cache the local copy of web pages and hence users will not be allowed to view previous pages when clicking back button
on browser .
Hope this helps. -
Sun AppServer7 shuts down on log out
Hello,
I successfully installed AS7 Platform Edition on a new Windows 2000 (DELL) and verified with sample webapps. I upgraded the license so that I can access remotely and verified this as well. However, when I log out of the machine on which I installed AS7 PE, the AppServer shuts down. I am the administrator for this machine and I set the service for both admin-server and the default server1 to start automatically. All this does is start automatically when I log back in, which is not what I want - I would expect not to be required to be logged into a machine in order for the server to be running.
Does anyone know if this is possible?
NCI had the same problem, but I solved it by adding the JVM option "-Xrs" to both the admin server and my production server instance. In the admin case, the option must be added by manually editing the server.xml file.
-
Notification when logged out [email...?]
Hi!
I have two Skype accounts, one for business and one for private use.
Is there a possibility to receive notifications about calls, new contact request etc while logged out [i.e.: while being logged in with the other account]?
It would really help me continue using Skype as my communication tool for my business.
Thanks in advance!
Gabriel
hebrew-tattoos.comHello,
I got my issue resolved.
With jboss, there is another file to edit in addition to OIM_HOME/config/xlconfig.xml file.
It's located in JBOSS_HOME/server/default/deploy.
Filename is: xell-ds.xml
I fixed the connection string in this file, restarted the jboss and it worked for me.
Khanh -
Java XML Digital Signature API, how to sign different files
Hello,
I need to sign several files: binary and/or xml (in some cases just part of xml), and to implement digitla signatures in xAdes standard. So I'm looking to use Java XML Digital signature API, but can't find any examples, that would cover issues I encountered:
How to sign binary file?
Just to sign some simple "aaa.png" file and have it's signature in XML. How in right way to create referece?
(should it be something like: Reference ref = fac.newReference("aaa.png", fac.newDigestMethod(DigestMethod.SHA1, null), null, null, null); )
And how to pass file for signing? what to add/change to this code:
Document doc = dbf.newDocumentBuilder().parse(new FileInputStream("aaa.png"));
DOMSignContext dsc = new DOMSignContext(keyEntry.getPrivateKey(), doc.getDocumentElement());
(I have only found some information about needing to "dereference" or so - but no examples, how to make things work.)
How to sing several different files?
As I wrote before, several files needs to be signed, but in all examples, it's only one Document object (and only one file), how/where to add more files and if API will be capable to deal with such thing?
In one of examples what I have to achive was such code:
<Reference URI="aaa.png" xmlns="http://www.w3.org/2000/09/xmldsig#">
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>8rl/xzjAnE4yQQ2LTBvFTU2JH+c=</DigestValue>
</Reference>
If I do write code like: "fac.newReference("aaa.png", <...> );
I'll get an error during signing: signature.sign(dsc);
*"java.net.MalformedURLException: no protocol: aaa.png"*
How to avoid this?
Also, from exmaple (what to reach) above:
<Reference URI="aaa.png" xmlns="http://www.w3.org/2000/09/xmldsig#">
There is additional attribute "xmlns=<...>" - the question is if it is possible to add it by XMLSignatureFactory.newReference ?
Java API adds a lot of prefixes "ds:" , like:
<...>
<ds:Reference URI="file:/D:/try5/SignableMetadata0.xml">
<ds:Transforms>
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
</ds:Transforms>
<...>
Is it possible to avoid them?
Any help on any of these questions would be very appreciatedHi,
I would like to sign a specific part of a xml message [Only the contents under the <Buyer> tag]. I have also pasted the code which i used to do this. I am getting an output xml after the xml is signed, but when I validate the xml , the xml is valid even after I change the xml contents. Could you pls tell me what I am doing wrong here. I want to know whether the xpath implementation which I have done is correct.
<?xml version="1.0" encoding="UTF-8"?>
<PurchaseOrder>
<Item number="130046593231">
<Description>Video Game</Description>
<Price>10.29</Price>
</Item>
*<Buyer id="8492340">*
*<Name>My Name</Name>*
*<Address>*
*<Street>One Network Drive</Street>*
*<Town>Burlington</Town>*
*<State>MA</State>*
*<Country>United States</Country>*
*<PostalCode>01803</PostalCode>*
*</Address>*
*</Buyer>*</PurchaseOrder>
// The code which i have used to perform the xpath transformation.
XMLSignatureFactory fac = XMLSignatureFactory.getInstance("DOM");
XPathFilterParameterSpec xpathFilter = new XPathFilterParameterSpec("PurchaseOrder/Buyer");
javax.xml.crypto.dsig.Reference ref = fac.newReference
("", fac.newDigestMethod(DigestMethod.SHA1, null),
Collections.singletonList
(fac.newTransform
(Transform.XPATH, xpathFilter)),
null, null);
SignedInfo si = fac.newSignedInfo
(fac.newCanonicalizationMethod
(CanonicalizationMethod.INCLUSIVE,
(C14NMethodParameterSpec) null),
fac.newSignatureMethod(SignatureMethod.DSA_SHA1, null),
Collections.singletonList(ref));
// Load the KeyStore and get the signing key and certificate.
KeyStore ks = KeyStore.getInstance("JKS");
char[] password = "changeme".toCharArray();
ks.load(new FileInputStream("c:\\KeyStore"), password);
KeyStore.PrivateKeyEntry keyEntry =
(KeyStore.PrivateKeyEntry) ks.getEntry
("EISKeys", new KeyStore.PasswordProtection(password));
X509Certificate cert = (X509Certificate) keyEntry.getCertificate();
// System.out.println("X509Certificate:"+cert);
// Create the KeyInfo containing the X509Data.
KeyInfoFactory kif = fac.getKeyInfoFactory();
List x509Content = new ArrayList();
x509Content.add(cert.getSubjectX500Principal().getName());
x509Content.add(cert);
X509Data xd = kif.newX509Data(x509Content);
KeyInfo ki = kif.newKeyInfo(Collections.singletonList(xd));
// Instantiate the document to be signed.
DocumentBuilderFactory dbf = DocumentBuilderFactory.newInstance();
dbf.setNamespaceAware(true);
Document doc = dbf.newDocumentBuilder().parse
(new FileInputStream("C:\\Life2012\\DigSign\\ACORD_Request.xml"));
NodeList rootChildList = doc.getDocumentElement().getChildNodes();
Node bodyNode = null;
for(int i=0;i<rootChildList.getLength();i++){
if("Buyer".equalsIgnoreCase(rootChildList.item(i).getLocalName())){
bodyNode = rootChildList.item(i);
System.out.println("Body Node is obtained"+bodyNode);
break;
// Create a DOMSignContext and specify the RSA PrivateKey and
// location of the resulting XMLSignature's parent element.
//DOMSignContext dsc = new DOMSignContext
// (keyEntry.getPrivateKey(), doc.getDocumentElement());
// Sign only the body node
DOMSignContext dsc = new DOMSignContext
(keyEntry.getPrivateKey(), bodyNode);
// Create the XMLSignature, but don't sign it yet.
XMLSignature signature = fac.newXMLSignature(si, ki);
// Marshal, generate, and sign the enveloped signature.
signature.sign(dsc); -
JD3.2; BC4J; JSP; logging out connections
We have developed user connections by building on Juan's application pool example
[href] http://technet.oracle.com:89/ubb/Forum2/HTML/006025.html
[href]
But we would like to be able to log users out. Is there a way of doing this cleanly?
We would like to present the users with a log-out button that resolves any uncompleted transactions, closes down the session and frees any outstanding database locks.
The biggest single problem we have with BC4J on the database is that it doesn't tidy up its locks if the transaction fails for any reason. And given that JServ only supports Servlet API 2.0 session failures happen all too frequently.
There seems to have been a couple of postings on this issue, but no replies for the JDev team.
rgds, APCpublic void setReleaseApplicationResources(boolean release){
m_rsBrowser.setReleaseApplicationResources(release);
}the last thing i do in the render method of the RS bean is: m_rsBrowser.render(); which in turn the last thing this bean do is: releaseApplicationResources(); so my code is equivalent to the recomendation you did.
but ph is subclassing ViewCurrentRecord so the equivalent of your recomendation is:
ph.render();
RS.render();
ph.setReleaseApplicationResources(true);
ph.releaseApplicationResources();
Right? I did it this way and throws me the same error.
Q. remains:
1)What does mean the Error Message: Component object XXXX has no parent?
2) Under what circumstances the previous error throws?
3) How I can recover my application from this error?
4) is My application is going to degrade?(i've changed all the setReleaseApplicationResources to false) to make it work.
Thank you for your interest. Help please.
Maybe you are looking for
-
I have found a way to organize photos for a slideshow (windows based)
I had searched for a while for this answer and never came up with exactly what I needed. My problem was that when I synched photos to my iPad (I have a PC), they wouldn't play in the proper order even though I had numbered all the photos. Apparentl
-
Ever since I made a one-to-one replacement,my ipod touch 4g has been appearing a apple logo and it stays for a very long time.Now its even more worst,the apple logo jsut keep appearing and the white screen comes out.Please do help.
-
Just today when i plugged my iPad into my MacBook Pro aluminum unibody 13" the screen went black no it won't charge or show any indication of life it's brand new 2 months old. I can't open the back don't have the tools at the moment. Don't know what
-
Remote panels with the application builder
I have no experience with the remote panels, but just enabled it in the project window. Is this sufficient? Do I have to add all VI's to the 'visible vi' list? I have a whole bunch of VI's and pop-ups so that'll be a lot of work. I am also wondering
-
SSRS MHTML formatting problem when using gmail
Hi, I have several reports on my SSRS report server 2008 R2. All display great and subscriptions as MHTML display great too. But when the email is viewed on gmail report display do not keep any formatting and look out of shape. and it is fine for out