security stuff's

Below section of info is from the docs. >>At design time, JDeveloper saves all policy store and identity store changes in a single file for the entire application. In the development environment, this is the jazn-data.xml file. After you configure the jazn-data.xml file using the editors, you can run the application in Integrated WebLogic Server and the contents of the policy store will be added to the domain-level store, the system-jazn-data.xml file, while the test users will be migrated to the embedded LDAP server that Integrated WebLogic Server uses for its identity store. The domain-level store allows you to test the security implementation by logging on as test users that you have created.<< >>References to the identity store are always in the context of test user identities that you create for the purpose of running in Integrated WebLogic Server. Typically, you would not migrate these users to the staging environment when you deploy to Oracle WebLogic Server<< looks like above part didn't went well with me, apart from following all instruction provided in doc, I need to create users from adminconsole in security->realms->Users and Groups sections to successfully login in to the pages. what is missing ? Right click the application and select application properties, then select the Users and Groups check box from deployments in the wizard as shown in screen shot below that's it. Now you don't need to create users through AdminConsole if your app is running through integrated server, users ceated using ADF Security wizard automatically migrate to emb LDAP.
security.PNG
other tips Define the grant for the task flow. Do not define grants for individual page definition files associated with the web pages of the bounded task flow. If the web page is part of a bounded task flow, define the grant for the task flow. Define the grant for the page definition only when the web page is not contained by an unbounded task flow. Note that the unbounded task flow is not an ADF security-aware component and allows no grants. sendRedirect method seems not working as expected for me, other alternative is below. replace with below sendForward method. private void sendForward(HttpServletRequest request,HttpServletResponse response, String forwardUrl) { FacesContext ctx = FacesContext.getCurrentInstance(); ExternalContext ectx = ctx.getExternalContext(); forwardUrl = request.getContextPath() + forwardUrl; try { ectx.redirect(forwardUrl); } catch(IOException ioe){ reportUnexpectedLoginError("IOException",ioe); } } public String dologout() { FacesContext fctx = FacesContext.getCurrentInstance(); HttpServletRequest request = (HttpServletRequest)fctx.getExternalContext().getRequest(); HttpServletResponse response = (HttpServletResponse)fctx.getExternalContext().getResponse(); String logoutUrl = "/adfAuthentication?logout=true&end_url=/faces/been_loggout.jspx"; sendForward(request, response, logoutUrl); return "null"; } }
Comments:

Post a Comment:
Comments are closed for this entry.
About

bocadmin_ww

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today