Public users, creation of accounts
I am developing a mobile application on Apex 5.0 and I want public users who visit my application developed for the first time be able to create an account. They would have no back end privileges, just to be able to use the application. Users will need to create an account by providing the user name and password, and then clicking "create." How do I do this?
Thank you
JIT
ReemaPuri wrote:
You can check the application
https://Apex.Oracle.com/pls/Apex/f?p=14652:1:16799248570102:
Yes, please do. It is a very good example of how including not implementation of the specification.
DB objects:
CREATE TABLE "USER_REGISTRATION"
( "USERID" NUMBER(*,0),
"USERNAME" VARCHAR2(30),
"PASSWORD" VARCHAR2(20),
"REPASSWORD" VARCHAR2(20),
"TOKENID" VARCHAR2(20),
"EMAILID" VARCHAR2(50),
"USERTYPE" VARCHAR2(20),
"ACTIVE" VARCHAR2(20),
"QUESTION" VARCHAR2(256),
"ANSWER" VARCHAR2(256),
PRIMARY KEY ("USERID")
USING INDEX ENABLE
)
/
CREATE OR REPLACE TRIGGER "TRG_USER_REGISTRATION"
BEFORE INSERT ON USER_REGISTRATION
FOR EACH ROW
BEGIN
SELECT SEQ_USER_REGISTRATION.NEXTVAL INTO :NEW.USERID FROM DUAL;
END;
/
ALTER TRIGGER "TRG_USER_REGISTRATION" ENABLE
/
Process page:
declare var_id number; begin select max(userid)+1 into var_id from user_registration ; insert into USER_REGISTRATION values(:var_id,:P5_USER_NAME,:P5_PASSWORD,:P5_RE_PASSWORD,:P5_TOKEN_ID,:P5_EMAIL_ID,NULL,NULL,:P5_QUESTION,:P5_ANSWER); end;
At first glance, it was line 4 of page process that caught my attention, but on the whole of the code review it turns out is not the obvious bug usually represented by this anti-pattern particular (he is left as an exercise for the reader to understand why...)
However, it is irrelevant that the really criminal issues are that there is no unique constraint on the user name or e-mail address, and passwords, tokens, and responses are stored in clear text. Ouch.
Tags: Database
Similar Questions
-
How to access another library to the user of the account root on mac 10.11
Hello experts, can you help me please know how to access the library of the user of an account when I am logged in as user root 10.11?
Open the users folder, and then his home folder, choose go to folder from the Finder menu and provide exactly the library as the path. If you wish, you can put the name of the follow-up folder a / at the beginning of the path instead of double-click this folder.
(139251)
-
Delete user for unknown accounts profiles in XP Pro SP3
I've got profiles user for unknown accounts in XP Pro SP3. In the past, I've deleted then recreated with the same account name administrator accounts. I have observed that no active administrator accounts have the same size and modification date user account unknown profile. Can I safely delete the profiles of unknown account or delete profiles delete profiles of active account?
Hello
The unknown user account can be a corrupt user profile. As there is no data to this account, it is safe to remove it from your administrator account.
To delete the user account, follow the steps from the link below:
http://www.Microsoft.com/resources/documentation/Windows/XP/all/proddocs/en-us/lsm_delete_user.mspx?mfr=true -
Error file is moved or deleted, cannot access the files on the public user profile
Original title; Public user file was deleted passage o
I can't access files stored on the users of public folder, I get the message that the file has been deleted or moved
Hello
1 are logged as administrator?
2 have you logged on a domain?
3 did you a recent software or changes to the material on the computer?
I suggest you to go through the steps mentioned in the link and the Coachman.
"Network or file permission" or "the folder does not exist" error
http://support.Microsoft.com/kb/934160
See also:
Sharing files with the Public folder
http://Windows.Microsoft.com/en-us/Windows-Vista/sharing-files-with-the-public-folder#section_1
File sharing essentials
http://Windows.Microsoft.com/en-us/Windows-Vista/file-sharing-essentials
-
How to connect to another user without password account, with the administrator account in Vista?
My son will connect to FB, then goes to bed and does not sign off the coast. I log in and the machine is really slow. I am administrator in Windows Vista. Can I disconnect it without password?
* original title - how I as an administrator can connect my son, another user of my computer. I can get her password, but is it a switch, so I can just cut him so my machine is not so slow? *Hello
Unfortunately, we are unable to disconnect another user without password account.
However, you can restart the computer that would disconnect the other accounts.
-
How to get information from a user on another account user account?
We have two user accounts on our computer (which is a shared computer). One, I'm going to call the 'A' and the second 'b '. I can't get on the account 'A' because it has got a virus or something, and we cannot log on to this one. But that account is the principal that we all use, we have our photos, music, documents, videos, EVERYTHING. And since it does not work, must use 'B', which is basically like a guest account. It has absolutely nothing about it. We cannot synchronize our iPods, otherwise it will just wipe and replace stuff on it with, well, nothing.
My question is, what can I (if so, how) to download our music, photos, etc., etc., on our account "B"?
Thank you for your help, but I got the stuff I needed. :) I just went to computer, local disk (c :)), users, then my account was, and he had all the photos, music, downloads and all the records! :)
-
My hard drive is currently filled by PC DM files in my folder/Public user folder. How can I safely remove the right files in this folder? Vista Home Premium 64 bit is my os.
Hi templar_39,
DM (Message Delivery) file types are not Windows files, they can be generated by a third-party program.
This particular file type is often associated with audio data and can be hosted on some cell phones to be used as ringtones or multimedia clips. To my knowledge, these files can be generated by your mobile phone.
Note: you can go ahead and remove these files only if you notice that the files do not contain any important information.
If this happens without connect you all devices (like mobile PHONES), this may be a virus or malware activity. You can run a virus scan to get rid of them
Step 1: A scanner online for any threat and try to correct
http://OneCare.live.com/site/en-us/Center/cleanup.htm
Thank you, and in what concerns:
Ajay K
Microsoft Answers Support Engineer
Visit our Microsoft answers feedback Forum and let us know what you think.
-
Cannot restore files from a user to another account.
Original title: resumption of Contact and e-mail and account sharing.
1. impossible to re-establish contacts and e-mail in Outlook after the computer crashed. In others, I can't import the pst file in my Outlook.
2. unable to give files, music, etc. on another account on my computer. I have two accounts (people) on my computer. After the computer crashed, I restore files, but may not give other people behind their files, the muisc, photos etc.
Hello
- You use Windows Backup and Restore feature, or any third-party backup software to backup & restore files?
- How do you try to restore files?
- Do you have any code or an error message when you try to restore data from one user to another account?
To restore contacts and emails in Outlook, you can ask your question in the Microsoft Office community on this link:
http://www.Microsoft.com/Office/Community/en-us/flyoutoverview.mspx
Please provide us with more information about the issue so that we can provide you with assistance.
Concerning
Joel S
Microsoft Answers Support Engineer
Visit our Microsoft answers feedback Forum and let us know what you think. -
I wanted to know if I could get the passwords for e-mail, facebook, etc for other users on my account? Please let me know. Thank you.
It's in the privacy of having the username and password of someone, but it is advisable to monitor the activity of your child on the internet. In Windows Vista, you have the parental control feature in Control Panel (it's available in some editions). I suggest to go Control Panel and user account and chose to activate and follow your child's account. For Parental control in Windows Vista, take a look on:
http://www.Microsoft.com/Windows/Windows-Vista/features/parental-controls.aspx
There is also another product of Windows Live, which calls the family safety, to use the mother and the child would need live account. You could learn more about it in view:
http://download.live.com/Familysafety
By these tools, you can monitor your child safety with respection of privacy. It is not a good practice to get the password of your children. Also, you should give it a safety advises on internet. I think it would be a good website to use resources for your daughter:
-
Why need Session timeout with the public user for public portal?
Hi all
I use WebCenter Portal 11.1.1.8 and I found that with the user public space WebCenter show still expire page and redirect them to the login page. I did not understand why Oracle do? If Oracle cannot remove the public user session timeout, but they must not give this event for public user. The end user, they don't care in this respect, it just feel discomfortable.
I really want a solution for this problem of Oracle. If the session is out of time, they only auto refresh page when the user doing anything on the new page (exp: moving the mouse, the key... event event) and the user will never know on this subject.
You have an idea about this?
Thank you!
Hello.
The patch allows just to use in file configuration web.xml depending the context-param:
oracle.adf.view.rich.sessionHandling.WARNING_BEFORE_TIMEOUT 0 This feature is STANDARD in newer versions.
He added the Web.XML WebCenter Portal (spaces).
I recommend that you add by using the project of PortalExtension instead of change manyally web.xml because when you apply patches manually changes in the web.xml file are lost.
Managing file web.xml in the WebCenter Portal (previously the WebCenter spaces) | VASSIT | UK
Kind regards.
-
Several users of computer account at home
Me and my GF both take and modify a large number of photographs and thought I m creative cloud for photographers as a replacement for Apple Aperture.
We use the same computer with a shared library but with 2 different computer accounts. Account management is a problem not in for example Office 365 where I simply add another user and the software is connected to 5 units, but with some connections. The same thing is possible with creative cloud, to add an additional user, or: can I connect with the same name user, but on different computer accounts: or do I just look elsewhere?
To be honest, the software is locked to a computer or computer user connection.
I plan to register for creative cloud but not until this has been resolved.
Hi Adam
I am afraid that we do not have a subscription service where you can add additional users to an account, but I thank you for your comments.
Concerning
Bev
-
How to add users to my account
I add users to my account how do I do that
Hi Chris,
In the case of the creative cloud for teams, please see the help below document:
https://helpx.Adobe.com/creative-cloud/help/manage-creative-cloud-teams-membership.html
Kind regards
Sheena
-
Move user profile my account to new LDAP settings
Hello
I have two related questions about authentication LDAP with OBIEE,
1. If we change the LDAP server in LDAP1 FMW-> LDAP2 dose (MSAD OID example) GUID will change?
2. If the GUID gets change how to move user profiles, my account settings?
Thank you!Hello
The idea of GUID is to link the user with its objects and when you refresh them, the user gets a new GUID number and its objects, even a new so it should have access to all of its current objects.
-
Problem running the application as a public user process
Hello
I proceeded on request PL - SQL that returns data to fill a selection list on the page with optional values. This process is called with a call from the event on a date object. When authenticated, it returns correctly and when it is called as a public user it fails with this in the XML declaration:
{XML Parsing Error: no element found the location: moz-nullprincipal:{1edfa653-8146-43f8-8ea9-a26d3e29cf8a} line number 1, column 1:
The call should return this:
With the help of this event on the date element:<select> 14-JUN-12 DSKYSTH <option value="Single">Single Rate = $10.00</option> </select>
call this code:onChange="get_AJAX_SELECT_FB(this,'P1_XBASIS');"function get_AJAX_SELECT_FB(pThis,pSelect){ var l_Return = null; var l_Select = html_GetElement(pSelect); var ajaxResult = new htmldb_Get(null,&APP_ID.,'APPLICATION_PROCESS=SetBasis',0); ajaxResult.add('P1_ID',$v('P1_TOUR_CODE')); ajaxResult.add('P1_XTD',pThis.value); gReturn = ajaxResult.get('XML'); if(gReturn && l_Select){ var options_Contents = gReturn.getElementsByTagName("option"); l_Count = options_Contents.length; l_Select.length = 0; for(var i=0; i<l_Count;i++){ var l_Opt_Xml = gReturn.getElementsByTagName("option");
appendToSelect(l_Select, l_Opt_Xml.getAttribute('value'), l_Opt_Xml.firstChild.nodeValue)
}
}
get = null;
}
function appendToSelect(pSelect, pValue, pContent) {
var l_Opt = document.createElement("option");
l_Opt.value = pValue;
if(document.all){
pSelect.options.add(l_Opt);
l_Opt.innerText = pContent;
}else{
l_Opt.appendChild(document.createTextNode(pContent));
pSelect.appendChild(l_Opt);
}
}When inspecting with Firebug I can only see a difference in the request headers between the public user and authenticated user where the cookie value is -1 on the public user. Public User: *Accept text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8* *Accept-Encoding gzip, deflate* *Accept-Language en-us,en;q=0.5* *Connection keep-alive* *Content-Length 181* *Content-Type application/x-www-form-urlencoded; charset=UTF-8* *Cookie LOGIN_USERNAME_COOKIE=roger; WWV_PUBLIC_SESSION_129=5245818196882971; ORA_WWV_REMEMBER_UN=ROGER:PTX-DEV; ORA_WWV_USER=A29423F6BE2220D0; WWV_CUSTOM-F_969127929331871_129=-1* *Host horta.prot.com.au:8080* *Referer http://horta.prot.com.au:8080/apex/f?p=129:1:547226222832513* *User-Agent Mozilla/5.0 (Windows NT 5.1; rv:13.0) Gecko/20100101 Firefox/13.0* Authenticated user: *Accept text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8* *Accept-Encoding gzip, deflate* *Accept-Language en-us,en;q=0.5* *Connection keep-alive* *Content-Length 182* *Content-Type application/x-www-form-urlencoded; charset=UTF-8* *Cookie LOGIN_USERNAME_COOKIE=roger; ORA_WWV_REMEMBER_UN=ROGER:PTX-DEV; ORA_WWV_USER=A29423F6BE2220D0; WWV_CUSTOM-F_969127929331871_129=A29423F6BE2220D0* *Host horta.prot.com.au:8080* *Referer http://horta.prot.com.au:8080/apex/f?p=129:1:1687129548869672:GET_TYPE:NO::P1_SEARCH_CAT,P1_XTD,P1_ADULT,P1_SEARCH_CODE:CABLE,,,* *User-Agent Mozilla/5.0 (Windows NT 5.1; rv:13.0) Gecko/20100101 Firefox/13.0* I'm it's probably something stupid that I'm doing and hope someone can help Rogeruser4101020 wrote:
Thank you, but my browser crashed and ended up with a double... I see that now, but the question remains unanswered.Close this message and wait for one response on the other.
-
APEX security with public users problem
Hi guys,.
I'm under Apex 3.2.1 and Oracle 10 g on a server which is protected (Web DMZ). Access to the Intranet is secured by a firewall. However, this is only for my internal users. What recommendations can you make on the Web Public users who go to APEX via regular HTTP? Secure HTTPS is and what other ways are there to secure my application?
Thank you
MauricioYou gave me a great idea... someone needs to write a book of Security Oracle tracing how these concepts are applied to daily applications, including 2 chapters on APEX ;)
You have users internal and external to the same instance of the APEX?
It is a long subject (I wrote about 100 pages to this subject), but I'll give it a try in a few bullet points:
- Equip your DMZ with firewall rules to limit traffic from the rest of the world to only http and https (ports 80 and 443) OSH, nothing else gets in. Use firewall rules so that the only system THAT OSH can call either your database and that the port 1521 (or whatever your listener is enabled.
- Make sure that all the security patches are applied to the BONE and the SST because it is a prime target. This should be a machine for single use with anything else on this topic. Each additional piece of software or service is a potential attack vector. My personal preference is a variant of Unix for facing internet, NOT of Windows or Linux servers.
- If possible, run all the applications of the internet in a database and all the intranet in another db. So, you have an external system and one for residents. It's so much easier to protect in this way. Careful with database links as you could end of linking these systems and very little gain.
The list is long, but I'm still not clear on the big picture.
Tyler Muth
http://tylermuth.WordPress.com
[Oracle security application: development of secure database and Middleware environments | http://sn.im/aos.book]
Maybe you are looking for
-
HP Envy 17-k151nr: software Coolsense do not install for HP Envy
Hello I could not install software for my HP Envy 17-k151nr coolsense. When I clicked on the link below and choose my operating system, it does not show the software and drivers. Also, I opened Assistant de Support Hp to detect updates or other optio
-
I just bought a HP Officejet 6700 Premium All In One Printer. If I put this printer I don't have WiFi. I was hoping to be able to print simply by connecting the USB cable to my computer. This does not work well... I do something wrong or isn't it pos
-
problem with the customization of the menu bar for the time of execution...!
I have created a user interface and want to give all selectable options to the user through cutomized launch time menu bar. However, I am facing a problem with that: If I click on any menu item in the bar, I'm not able to choose another option until
-
How the XP compatibility mode is accessible? Why Microsoft created an operating system that does not have the microsoft most older games to play? I have this computer high-dollar with all the bells and whistles and a backpack full of microsoft which
-
Problem with Canon scan lide70.
Windows canoscan lide70