Web service - transmission of NTLM authentication user
APEX 4.0.2All our defined applications APP_USER in header REMOTE_USER CGI which is defined by the OHS mod_ntlm module to the logged in Windows user. Is it possible to invoke web service references (REST) defined in the application to behave as if this user is calling the web service? As if the service request was made directly from the browser (IE).
Hard code credentials into the definition of APEX app, pass them through a URL, the service accessible to anonymous users, etc., are unacceptable alternatives.
Any ideas?
Thank you
Vikas:
You can use the APEX_WEB_SERVICE API to set HTTP headers (in this case, you can set CGI_REMOTE_USER). The following documentation describes how to configure the request headers. Note that when you set the header via APEX_WEB_SERVICE, interactions of web service uses the headers, not just those invoked through APEX_WEB_SERVICE.
http://docs.Oracle.com/CD/E23903_01/doc/doc.41/e21676/apex_web_service.htm#BABDFEJG
Kind regards
Jason
Tags: Database
Similar Questions
-
JDeveloper Web Service Client/Proxy basic authentication
Hi, I recently migrated a 10g Web Service to a Web Service that uses authentication of database 11g.
Then I generated the proxy/client by using the WSDL for my consumer application in JDeveloper 11 g. However, I can't find all the functions that will allow me to set the user name and password to access the web service.
For example, in 10g Client, I had simply to this:
myPort = new SoapHttpPortClient();
myPort.setUsername ("username");
myPort.setPassword ("password");
I don't know how to do the same thing in the Web Service client generated in 11g.
Thanks in advance.Hello
See the beginning of this blog entry: http://biemond.blogspot.de/2009/04/jax-ws-web-service-proxy-client-and.html
Frank
BTW. : I used Google
-
A web service for windows authentication
HelloI have a number of web services on a windows server.These web services are for a program client (in vb.net), access and retrieve data.This client program are launching for the PC of the individual user.The above configuration is in a windows domain.Currently, web services allow anonymous access. This means that anyone in the Organization, with the correct URL is able to trigger the web service.We are asked to remove anonymous access and all forms authentication configuration.Questions1. What is the best practice for configuration for a web service for windows authentication.
2. We also have a couple of unix servers. They are required to access the web services (with the correct authentication). How can I get a cross-environment configuration?Thanks in advance.Hey Wee Hoe Chiang,
The question you have posted is related to Windows Server and would be better suited to the TechNet community.
Please visit the link below to find a community that will provide the support you want.
http://social.technet.Microsoft.com/forums/en-us/category/WindowsServerI hope this helps.
-
BPEL to invoke the secure with HTTP Basic authentication Web service
I call a synchronous web service in a BPEL process. The web service expects basic http authentication. How can I set/generate the user name and password in the BPEL process? I use Oracle Fusion Middleware 11g (11 g, WebLogic 11 g JDeveloper). Any help is appreciated.For more easily go to em console click on your composite deployed, you will find all the components in your bpel process below .click on component webservice invocation then clck on properties you can mentioned username, password I would like to know if this helps u
-
[JDev 12 c] How do I imply a Web service (with authentication) method?
Hallo,
in my merger ADF Web Application I have to call some methods of a REST Web service, but I have no way to have the WSDL or w.
I only know the URL of the container methods and the name (and parameters) of each method.
How can I call the webservice methods in JDeveloper?
The RESTful Client and Proxy JDeveloper component is not useful for me: he needs the URL of the WSDL/w but, as I said before, I did not.
I also tried to use JDeveloper Webservice data control , but I had problems configuring.
Would you kindly suggest me a way - also in pure Java (so without using a component JDevelpoer) - to call a Web service method and read his answer?
The Web service needs to the authentication of the client so I would like to know also how do I do the authentication (username + password) by programming.
Many thanks in advance,
Federico
Hi - I did using this approach: https://blogs.oracle.com/imc/entry/adf_mobile_the_specific_of
If you need to pass the security credentials, see: http://blog.teaminformatics.com/tag/mobile-application/
Rich.
-
Test a REST based Web Service for Oracle R12.2.3
Using the Oracle Support document,
Installation of Oracle E-Business Suite integrated SOA Gateway, version 12.2 (Doc ID 1311068.1()
I was able to deploy the REST web service based to FND_USER_PKG as FndUsrPkgSvc.
I am able to view the file w.
How once on the test REST based Web service?
There is everything by deploying a REST Service Secuirty next note
How this only plays a role in testing the web service.
REST service security
REST Web service is secure basic authentication HTTP to the HTTP Transport level. Send any of the following in the "Authorization" header according to the basic HTTP scheme:
-Username:Passwod
-Security token.
Tip: Use connection Service to get a token of security for account taken of the user credentials.
Thank you
Rohit
The guidance provided in the Guide of the SOA (156 Pg) developer are very useful, and once followed step by step allows not only to deploy, but also test the REST web service.
Rohit-
-
ADF Mobile | call web service from Java. non-reflecting values in the AMX page
Hi all
I am using JDEv11124 with ADF Mobile extensions39.62.64.
My use case is as follows.
1. my application has 2 Pages a. Login home b.
2. in the user login Page between user name and click on the "submit" button.
3. on the homepage I displayed the company they joined.
4. in the "submit" button is clicked, action defined in the support bean method will be called.
5. by supporting the action bean method, I'll call the method of the Web Service to validate the entered user name, if the entered user name is valid, that I have to post its company name in the home page.
6. I am moving back from the web service of datacontrol in Home.amx page
7. calling web services from Java as follows:
GenericType = result
(GenericType) AdfmfJavaUtilities.invokeDataControlMethod ("Comp", null, "getCompany",
pNames, params,
PTypes);
System.out.println ("after the call to the service" + result.getAttributeCount ());
8. in the Java class, I get the response correctly (as the company designating the username entered as 'SOCIETY'), where when I navigate to the home page, I don't see any results for the method return (name of the company that dropped like OutputText in Home.amx)
Did I miss something for this. or something more that I need to do to make it work?
Please suggest.
Thank you
Vieira
Hi all
I was able to achieve this by executing my method in bean support.
This code is as follows:
AdfELContext adfELContext = AdfmfJavaUtilities.getAdfELContext ();
MethodExpression me =.
() AdfmfJavaUtilities.getMethodExpression
"#{bindings.retreiveLocationInformation.execute}".
(, Object.class, Class [] {}) new;
me. Invoke (adfELContext, new Object [] {});
Thanks to Luc Bors WebLog Luc Bors Weblog: ADF Mobile: implementation of "Pull to refresh" model
Kind regards
Vieira
-
How to access AAU Web Service in Oracle.
Hi all
I try to call the AAU Web Service (CheckIn.wsdl) using oracle.
But these web services are the name of user and password secure and expected.
Someone has an idea to pass the name of user and password based on the oracle.
My Code: -.
CREATE OR REPLACE FUNCTION checkin (dDocName IN VARCHAR2, dDocTitle IN VARCHAR2, dDocType IN VARCHAR2,
dDocAuthor IN VARCHAR2, dSecurityGroup IN VARCHAR2, dDocAccount IN VARCHAR2,
primaryFile IN VARCHAR2)
Return number
AS
l_service SYS. UTL_DBWS.service;
l_call SYS. UTL_DBWS. Call;
newurl VARCHAR2 (32767).
l_wsdl_url VARCHAR2 (32767).
l_namespace VARCHAR2 (32767).
l_service_qname SYS. UTL_DBWS. QName;
l_port_qname SYS. UTL_DBWS. QName;
l_operation_qname SYS. UTL_DBWS. QName;
l_xmltype_in SYS. XMLTYPE;
l_xmltype_out SYS. XMLTYPE;
BEGIN
l_wsdl_url: = ' http://localhost:16200 / cs/groups/fix/wsdl/custom/CheckIn? WSDL ";
l_namespace: = 'http://www.stellent.com/CheckIn/ ';
l_service_qname: = SYS. UTL_DBWS.to_qname (l_namespace, ' CheckIne);
l_port_qname: = SYS. UTL_DBWS.to_qname (l_namespace, 'CheckInSoap');
l_operation_qname: = SYS. UTL_DBWS.to_qname (l_namespace, 'CheckInUniversal');
l_service: = SYS. () UTL_DBWS.create_service
wsdl_document_location = > URIFACTORY.getURI (l_wsdl_url).
service_name = > l_service_qname);
l_call: = SYS. () UTL_DBWS.create_call
service_handle = > l_service,
port_name = > l_port_qname,
operation_name = > l_operation_qname);
l_xmltype_in: = SYS. XMLTYPE ("<?") XML version = "1.0" encoding ="utf - 8"? >
"< CheckInUniversal xmlns =" "|" l_namespace | "" >
< VARCHAR2 > ' | dDocName | ' < / VARCHAR2 >
< VARCHAR2 > ' | dDocTitle | ' < / VARCHAR2 >
< VARCHAR2 > ' | dDocType | ' < / VARCHAR2 >
< VARCHAR2 > ' | dDocAuthor | ' < / VARCHAR2 >
< VARCHAR2 > ' | dSecurityGroup | ' < / VARCHAR2 >
< VARCHAR2 > ' | dDocAccount | ' < / VARCHAR2 >
< VARCHAR2 > ' | primaryFile | ' < / VARCHAR2 >
(< / CheckInUniversal > ');
l_xmltype_out: = SYS. UTL_DBWS. Invoke (call_Handle = > l_call,)
request = > l_xmltype_in);
SYS. UTL_DBWS.release_call (call_handle = > l_call);
SYS. UTL_DBWS.RELEASE_SERVICE (service_handle = > l_service);
END;
Is compiled successfully.
Whenever I'm running using
SELECT the checkin ('WEBSERVICE009', 'WEBSERVICE009', 'Document','weblogic','Private','IT/EBA/Distributor_testuser','D:/ucmfiles/test_WebService_11.txt') FROM dual;
He expects the name of user and password...
Anyone with an idea.If you use apex, you have access to the wwv_flow_web_services package that has all the procs, you need to do this work. Otherwise, you can use flex_ws_api, which, although a bit outdated, should always work. This can be found at: http://jastraub.blogspot.com/2009/11/flexwsapi-no-on-samplecodeoraclecom.html
I hope that will get you the start you need. Don't forget soapUI. This has proved to be very useful for my development just to prove that something works. It becomes a very simple way, when I often hear, "UCM does not work... '. ».
Check-In
-- Modify and create select that will get filename and content from a table. -- set serverouput on -- make sure flex_ws_api package is installed in same schema that you run this. declare l_filename varchar2(100); l_login varchar2(20); l_ddocname varchar2(20); l_BLOB BLOB; l_CLOB CLOB; l_envelope CLOB; l_response_msg varchar2(32767); begin select name, content, ddocname into l_filename, l_BLOB, l_ddocname from pdfs where id = 1; l_login := 'kalee'; l_CLOB := flex_ws_api.blob2clobbase64(l_BLOB); l_envelope := ''; l_envelope := l_envelope || 'Search
declare l_envelope CLOB; l_xmltype XMLTYPE; l_response varchar2(100); ecode NUMBER; emesg VARCHAR2(200); cursor searchresults_cur(p_xmltype xmltype) is SELECT extractvalue(column_value, '/idc:SearchResults/idc:dDocName','xmlns:idc="http://www.stellent.com/Search/"') DOCNAME, extractvalue(column_value, '/idc:SearchResults/idc:dDocTitle','xmlns:idc="http://www.stellent.com/Search/"') DOCTITLE FROM TABLE(XMLSequence(p_xmltype.extract('//idc:QuickSearchResponse/idc:QuickSearchResult/idc:SearchResults','xmlns:idc="http://www.stellent.com/Search/"'))); searchresults_rec searchresults_cur%ROWTYPE; begin l_envelope := ''; l_envelope := l_envelope || ' -
Hello
Is it possible to maintain a session on the server for the duration of a series of web service for an individual consumer requests?
What I want to do, it is something like this:
1. the consumer to invoke the Web service with a name of user and password combination in the SOAP header.
2. the web service authenticates the user on the database and inserts a session id in the SOAP header.
3. the consumer makes another call to the webservice for some data, and if the session id matches the session stored on the server, the web service returns data for this and all subsequent applications that have the id correct session stored in the SOAP header.
Does anyone know if there is any way I can do this or do I must write the data to a database and the text for each call?
The first links of Google when I searched for the service coldfusion web
cookies.http://tjordahl.blogspot.com/2006/06/how-to-set-cookies-in-ColdFusion-SOAP.html
http://tjordahl.blogspot.com/2006/06/how-to-get-Web-service-response.html -
ADF Mobile access protected web service with the user name and password
With Jdev 11.1.2.4 (with the extension of the ADF Mobile) I am creating a data control that uses a SOAP web service. The web service is not protected by a policy of wss, but its point of endpoint URL is only protected by simple HTTP authentication (internal weblogic server is not accessible public.) We use an Apache server that is configured with a location that is a simple proxypass on url of the web service endpoint weblogic. This apache location apply simple HTTP authorization). I can invoke successfully the methods with parser HTTP by simply adding to the request HTTP header "authorization: xxxxxxxxxxxxxxxxxx base =" (where xxx = user name and encrypted password).
In the mobile application of ADF, I used the DataControls.dcx-> window to connect to the Web Service change and provided the username and password to the URL of the endpoint. The problem is that after the deployment and execution of this application on the emulator (or the device itself), I get no data by the web service since with the HTTP 401 error http server responses. It seems that that the credentials are not deployed to the device, so while the application is running can not find them.
I searched a lot and found a similar article (quite old) in the RTO by Frank Nimphius here access_protected_web_services_from_adf.htm
Is there a way to do this, or if I'm missing the entire image?
Thank you very much.
Christos
Check out blog Shay https://blogs.oracle.com/shay/entry/accessing_secure_web_services_from
or Andrejus http://andrejusb.blogspot.de/2012/11/adf-mobile-secured-web-service-access.html
Timo
-
How do you provide web service user name and password configurable WLS?
Hey everybody,
I have an ADF application that communicates with a web service through a Web Service Proxy. Currently we handle authentication read the username and password of a file encrypted properties and passing in the SOAP header using a javax.xml.ws.handler.soap.SOAPHandler. It works very well, however, what power does the username and password are configurable when running through the WLS.
I read this blog to configurable web service endpoint while running: http://Biemond.blogspot.com/2012/02/changing-your-ADF-connections-in.html . Is there something similar that can be done to the user name and password?
I use JDeveloper and OEM 11.1.1.6.0.
Thank you
Hello
Here are your options: Configuring Policies
Its less of an ADF problem how yo configure authentication WS
Frank
-
Basic authentication with the RESTful WEb service and a Web Service reference
Hi all
We have made significant progress on getting an application to work with RESTful web services, but are now trying to understand how to lock a RESTful Web service while making it available for a particular application.
We use one of the 'emp' table sample web services come with Apex 4.2 and are trying to apply the Basic Auth to the WEb Service using Weblogic filter defined in the web.xml file. Which works very well. I now get challenged when I try to go to:
https://wlogic.edu/Apex/BNR/ACE/HR/empinfo/
And when I authenticate this challenge, I am able to get the data. (we are usiing the Weblogic-level LDAP authentication)
However, I'm not sure how to get even basic authentication to work with Web Service reference in my application. I see the error message in the application when I try to call this Web Service:
401 Unauthorized <
And I see:
"The request requires user authentication. It MUST contain a header field WWW-Authenticate (section 14.46) containing a fault that is applicable to the requested resource. The client MAY repeat the request with a suitable authorization (section 14.8) header field. If the request already includes identification of the authorization information»
How can I provide the credentials in the Web reference or provide credentials in the Application?
Web service works fine if I remove the auth basic RESTful web service in the Web.xml file.
We should NOT use basic auth and auth Weblogic web service definition basic RESTful Workspace use instead. If so, how would we implement THIS basic authentication in the definition of Web Service and the Web SErvice reference on the application?
Thank you
PatHello Scott,
Thank you. There is a function for rest in the package:
function make_rest_request( -- -- This function invokes a RESTful Web service with the supplied name value pairs, body clob, or body blob -- the response as an clob. -- -- Arguments: -- p_url The url endpoint of the Web service -- p_http_method The HTTP Method to use, PUT, POST, GET, HEAD or DELETE -- p_username The username if basic authentication is required for this service -- p_password The password if basic authentication is required for this service -- p_proxy_override The proxy to use for the request -- p_body The HTTP payload to be sent as clob -- p_body_blob The HTTP payload to be sent as binary blob (ex., posting a file) -- p_parm_name The name of the parameters to be used in name/value pairs -- p_parm_value The value of the paramters to be used in name/value pairs -- p_wallet_path The filesystem path to a wallet if request is https -- ex., file:/usr/home/oracle/WALLETS -- p_wallet_pwd The password to access the wallet -- p_url in varchar2, p_http_method in varchar2, p_username in varchar2 default null, p_password in varchar2 default null, p_proxy_override in varchar2 default null, p_transfer_timeout in number default 180, p_body in clob default empty_clob(), p_body_blob in blob default empty_blob(), p_parm_name in wwv_flow_global.vc_arr2 default empty_vc_arr, p_parm_value in wwv_flow_global.vc_arr2 default empty_vc_arr, p_wallet_path in varchar2 default null, p_wallet_pwd in varchar2 default null ) return clob;My point was that using the API makes things easier if you have to look for a solution.
Denes Kubicek
-------------------------------------------------------------------
http://deneskubicek.blogspot.com/
http://www.Apress.com/9781430235125
http://Apex.Oracle.com/pls/Apex/f?p=31517:1
http://www.Amazon.de/Oracle-Apex-XE-Praxis/DP/3826655494
------------------------------------------------------------------- -
Basic authentication for the WSDL Web Service for load test
I am trying to load test a web service; the URL of the WSDL is behind a user name and password using http basic authentication. I can add the URL of the WSDL without problem with the user name and password, but when I read the script, I receive a "401 Unauthorized" errors
I looked at the preferences > recording > Web Services > the Proxy Configuration, and then refer you to the preferences > recording > HTTP > the Proxy settings. I also looked at similar settings under Preferences > reading.
I'm running OpenScript (9.1), how to configure it...?
Thank you very much!
KM
Published by: KM 14 Sep, 2011 12:12Hello
You can right click on the section to initialize your script and then:
Add-> other-> HTTP-> authentication.
You need 3 parameters:
A - http://someurl - url that will authenticate any url that contains the http://someurl string for example http://someurl.com/index.html
A password
A userThe following code should be added in your script:
http.addAuthentication("http://someurl", "username", deobfuscate("5blNah5kX/XuZnepYwInFw=="));Hope this helps
Alex
-
Consume peoplesoft Web services using Jdeveloper authentication failure
Hello
I use Jdeveloper 11 g to consume the webservice of peoplesoft and following the exact steps in the following article.
http://www.Oracle.com/technology/tech/fmw4apps/PeopleSoft/OFM-PSFT-blog-postings.HTML#Web-services
The Web service I use is different from the example I use the production version of the wsdl file.
After following all the steps, the generated proxy creates not poseurs of the getter for user name, password (Basic authentication).
Is it supposed to auto generate or what I need to encode?
I did the code of the getter set username and password and provide the credentials, but I get an error authentication failed.
java.rmi.RemoteException: SOAPFaultException - FaultString FaultCode [http://schemas.xmlsoap.org/soap/envelope/ {} Client.Authentication] [did not receive message weblogic.wsee.util.AccessException: a code of 401 error (unauthorized) was returned by the server to http://ps-dev-web.kc.lan:30710/PSIGW/HttpListeningConnector.] Please check that the username and password are set correctly and that you are authorized to access the requested method.
-> Http://ps-dev-web.kc.lan:30710/PSIGW/HttpListeningConnector server returned a code of 401 error (unauthorized). Please check that the username and password are set correctly and that you are authorized to access the requested method.
] FaultActor detail [null] [< detail > < bea_fault:stacktrace xmlns:bea_fault = "http://www.bea.com/servers/wls70/webservice/fault/1.0.0" > weblogic.wsee.util.AccessException: a code of 401 error (unauthorized) was returned by the server to http://ps-dev-web.kc.lan:30710/PSIGW/HttpListeningConnector.] Please check that the username and password are set correctly and that you are authorized to access the requested method.
at weblogic.wsee.connection.transport.http.HTTPClientTransport.handleErrorResponse(HTTPClientTransport.java:373)
The code I used to generate getter, setter is
-These methods have not generated-
public String getPassword() {}
(String) return ((heel) port). getProperty (Stub.PASSWORD_PROPERTY);
}
public void setPassword (String password) {}
((Heel) port). setProperty (Stub.PASSWORD_PROPERTY, password);
}
public String getUsername() {}
(String) return ((heel) port). getProperty (Stub.USERNAME_PROPERTY);
}
{} public void setUsername (String username)
((Heel) port). setProperty (Stub.USERNAME_PROPERTY, username);
}
I don't know where I'm going wrong, credentials, I used the work normally but do not work with this application.
I'd appreciate if I can get some light on this issue.
Thank you
Ash
Published by: [email protected] on June 2, 2010 07:56In your case, the settings are not IN/OUT but OUTSIDE.
To create the owner and get the values after the operation, you must do something like this:Create the parameters of the licensee
Holdernt new holder = ();
Holderdet holder new = (); Make the call
port.createCompIntfcKCMWEBCASECI (nt, det);Get the value
System.out.println ("Value is" + nt.) Value();Thank you
Vishal -
Authentication customized using the Web Service construction
Our requirement is that we want to create an application that uses the web service for authentication. How is it possible. A how to do this will help.
We create a Web Service with an applicationLogin method that takes the user name and password input and returns true or false. I want to use this web service to authenticate the application connection.Hello
Ok.
Can you check Home > Application Builder > application 100 > shared components > authentication schemes > change the authentication scheme
in the select field Invalid Page Session list
what page 2.
Check this page 101 a: APP_USER filled when you browse it.It seems that you have created a reference to Web Service manually by copy - paste SOAP envelope?
And region of SOAP response with field response Collection store
When you create a Web service reference with the location of the WSDL document, you are not asked for the name of the collection.
Only when you create processes on submit type Web service on page 101, there is an option to use the collection or the item.And if you manually create the Web service, it seems that you cannot choose between the collection and the element, you should use the collection that you specified during the creation of reference.
Anyway, you can use the collection to this approach to page dummy connection since: APP_USER is populated by anyone on page 101.
I updated most of the page and creates a Web service reference manually the SOAP envelope (from the same Web service)
and put the second region with the result. Collection is specified in a Web service reference.I hope that will solve your problem.
Kind regards
Oleg
Maybe you are looking for
-
xBox is disconnect from the internet and sign me
For the past 2 weeks or so my xbox has been randomly signing me internet and me signing in why is it? I looked at the connection to my computor and internet card runs through the gateway to my xbox and then to an 'unknown' and then the computor how c
-
Original title: window update problem. Error code: 80246008 error Code 0 x: 0 x 80246007, error Code: 0 x 80200010 and error Code: 0 x 80246002 what its means? And how to solve this problem to? (merged thread)
-
Access to Windows Explorer problem
I have Windows Vista and yesterday after downloading a text file of my bank on my computer, I have been unable to launch Windows Explorer or my control panel, etc. I access programs such as Excel and access files via Excel. I get the error message
-
Terminal Services in windows sbs 2008
How re-insall Terminal Services in Windows SBS 2008? We weren't able to connect these days. Thank you.
-
11.1.2.3, clean the existing UDA Member, members should have no UDA at all.
Hello(Essbase 11.1.2.3)I want to clean the existing of the UDA member (account), so that in the end there is no UDA at all.The docu says:"Note: to delete a UDA value, UDA allow the changesof use and, in the data source, leave the field empty UDA".htt