I have oracle apex 19.2 installed on ORDS
we face issue in download csv due to Authorization when set
"Validate authorization scheme" to once per page ,
but when set to per session , download work without issue .
Note: we create Authorization scheme to validate privilege for user on the page to read from database based on sql query
Related
Is there a way to export the SQL of all the reports of a project in MicroStrategy?
Get the SQL view of a previously created report instance, using the in-memory report instance created by a POST /reports/{reportId}/instances request. You obtain the authorization token needed to execute the request using POST /auth/login; you obtain the project ID using GET /projects. You pass the authorization token and the project ID in the request header. You specify the report ID and report instance ID in the path of the request.
Use below open API,
https://demo.microstrategy.com/MicroStrategyLibrary/api-docs/index.html#/Reports/getReportSqlView
Environment:
Oracle 11g database
Weblogic 11.3.6
Webgate 3
Forms&reports 11 g (11.1.2.0)
WebTier 11.1.1.9.0
Problem :
When trying to access form with :
http://localhost:7777/forms/frmservlet
i have this error:
Error 500--Internal Server Error
From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
10.5.1 500 Internal Server Error
The server encountered an unexpected condition which prevented it from fulfilling the request.
but when i set ssoMode = false in formsweb.cfg froms's config file, the forms welcome page displays well.
Any idea?
Thank you.
ssoMode (Single Sign-On parameter) indicates whether the URL is
protected in which case mod_osso, which is Oracle Single Sign-On
Module, will be given control for authentication or continue in the
FormsServlet if not.
It is false by default. It may be set to true in an
application-specific section to enable Single Sign-On for that application.
formsweb.cfg,in which ssoMode parameter may also be overridden , defines parameter values used by the FormsServlet (frmservlet)
The mod_osso component is a module that plugs into Oracle HTTP
Server. It enables the HTTP listener as a partner application that can
use the Single Sign-On server to authenticate users. Once mod_osso is
installed and configured, Web applications can register URLs that
require SSO authentication with the module. Then when URL requests are
received by the HTTP server, mod_osso detects which requests require
SSO authentication and redirects them to the Single Sign-On server.
After the Single Sign-On server authenticates the user, it passes the
user's authenticated identity back to mod_osso in a secure token, or
cookie. The module retrieves the user's identity from the cookie and
propagates the user's identity information to applications running in
the HTTP server instance. The module can propagate the user's identity
information to applications running in the CGI, those running in
Oracle9iAS Containers for J2EE, and it can also authenticate users for
access to static files.
Oracle Forms Services applications can be run in a single sign-on
(SSO) environment using Oracle Login Server (Single Sign-On Server)
and Oracle Internet Directory (OID) to store user name and password
information. For Single Sign-On implementation Oracle Forms is
considered as an 'External Application'.
In Forms, it is possible to obtain the Single Sign-On username via :
GET_APPLICATION_PROPERTY(sso_userid);
This returns a string containing the Single Sign On user ID if the user has been authenticated via the Login Server. A NULL value is returned if SSO was not used.
It is possible to also obtain the user distinguished name (dn) and the subscriber distinguished name (subscriber dn) e.g.
GET_APPLICATION_PROPERTY(sso_usrdn);
GET_APPLICATION_PROPERTY(sso_subdn);
I have Oracle APEX 5.1 and Oracle Forms 6i installed.
Now I am wondering how can I call Oracle APEX application from my Forms menu.
Option 1: Full URL to aplication + parameters username/password - not safe
Option 2: Full URL to aplication log in - not elegant.
What I am looking for is function that will take parameters username,password, aplication ID, ... and return full URL to aplication.
Is that possible / best approach?
You would probably do best to look at a new way of authenticating that avoids needing the password altogether, yet remains secure. One way is to call a procedure from the Forms application that generates a single-use, short-lived token specific to the user, then pass that token to APEX along with the username. The APEX authentication scheme then checks that the token is current and valid for the user, and if so allows access.
For example, the token could be generated as a random string, and stored on the user database record in hashed form (combined with the username as salt) along with a timestamp of when it was generated. The authentication scheme checks that the token passed is the same as the one on the user record and that the timestamp on the user record is within the last N seconds. It might then reset the token to NULL in the database. The key point is that it must be "impossible" (read: very hard) for anyone to guess what the token is even if they can see the hashed value in the table.
We have a web app that has a security setting where it checks the referrer to allow access. We need to open this website from an Oracle Form. Currently we are using the web.show_document command to achieve this. Trouble is that this command doesn't report any referrer and thus the web app is refusing access. Does anyone know of a way to specify a referrer when opening a website from Oracle Forms? Or another command that sets the INB Server's domain as the referrer?
We are using Forms [32 Bit] Version 10.1.2.0.2 and this is an Ellucian Banner 7.2 forms app. The app we are trying to access is Evisions Argos.
After a lot of trial and error, and back and forth with the Evisions Support Desk, it appears that it's impossible to use the Check Referrer security in this setup. Oracle Forms 10 only has the web.show_document function to launch websites on the client computer. And this function creates a new http request with no "referer" http header. Argos specifically uses that header to check for the referrer. What we ended up doing was disable this security check.
In Oracle Forms 11g it is possible to use this Argos security feature with the web.javascript_eval_expr built in. This function allows to run a javascript window.open function which actually adds a referer header.
Here's an example of the call:
web.javascript_eval_expr('window.open("https://someargosserver/mrr?report=LONGREPORTIDKEYVALUE¶m1=some_text¶m2=some_other_value", "_blank");');
So far, we have a Joomla website deployed which, among others, have installed the plugin JomSocial. The default Joomla registration process is overriden by that of JomSocial. So far, this is working properly.
The problem comes when trying to integrate the login / registration process with LDAP. For this purpose, I have installed the JMapMyLDAP plugin:
http://shmanic.com/tools/jmapmyldap/documentation.htm
I have been following the documentation for installing the second version as described in the documentation. I have configured the LDAP host properly, and it is connecting to LDAP, as described in the step Configuring LDAP Settings (Version 2)
After that, I've been following the step Setting up the Creation Plug-in (Version 2), including modifying the default XML template so that the form fields correspond to the actual names of the fields in the JomSocial registration form (they are different from those in the default Joomla registration).
While the registration proccess is performed correctly, no entry is added to LDAP at all. Moreover, after the registration process is completed, an extra screen is shown, with no styling at all, where the fields 'Name', 'Username', 'Email', 'Password' and 'Verify Password' are requested (they were already requested before). Even if these are fulfilled and sent, the error "Invalid Token" is displayed.
I appreciate any help in order to effectively connect the registration proccess with LDAP.
Regards.
UPDATE 1:
Hi. I update with new information.
So far I'm trying to connect the Joomla registration form instead of the JomSocial one. I'm obtaining the next error:
An LDAP add operation failed.
In the debug log I find the next information
2014-04-10T14:07:36+00:00 101 Attempting connection to LDAP with host $IP$
2014-04-10T14:07:36+00:00 101 Successfully connected to $IP$. Setting the following parameters: ldapV3
2014-04-10T14:07:36+00:00 101 Successfully connected.
2014-04-10T14:07:36+00:00 101 Attempt to retrieve user distinguished name using '(cn=asd)' with search.
2014-04-10T14:07:36+00:00 101 Closed connection.
2014-04-10T14:07:36+00:00 101 Attempting connection to LDAP with host $IP$
2014-04-10T14:07:36+00:00 101 Successfully connected to $IP$. Setting the following parameters: ldapV3
2014-04-10T14:07:36+00:00 101 Successfully connected.
2014-04-10T14:07:36+00:00 101 Attempt to retrieve user distinguished name using '(cn=asd)' with search.
2014-04-10T14:07:36+00:00 12802 An LDAP add operation failed.
2014-04-10T14:07:36+00:00 101 Closed connection.