Securing some parts of a WebApp in WebLogic


These are the steps to protect some urls of a web application deployed in WebLogic: AUTHENTICATION PROVIDERS Create appropiate authentication provider configuration. Restart WebLogic AdminServer and check that you are getting users, groups and user/groups membership from the external ldap repository DEPLOYMENT DESCRIPTORS Supose: You have a group in LDAP called extranetgroup. User joe belongs […]

More

ApacheDS, user groups membership and WebLogic


In ApacheDS, the ldap search for getting the group names a user (for instance cn=juan,ou=usuarios,0=acmecorp) belongs to is as follows: (& (objectClass=groupofuniquenames) (uniqueMember=2.5.4.3=juan,2.5.4.11=usuarios,2.5.4.10=acmecorp) ) In weblogic, for the supported ldap auth providers, the user membership configuration pattern setting is: (&(<someattribute>=%M)(objectclass=<someobjectclass>)) Therefore a custom authenticator provider is needed in order to get it working. Enjoy 😉 […]

More

Why WebSites Fail?


Simple answer is a question, what have you done to avoid failures? I’ve been working for years working for Customers to help resolve loss of service in their internal and public applications and I have to say it is a little surprising the lack of understanding of what is really happening or what are the […]

More

Oracle BPM 12.2.1 | BPM with DBadapter | Error deploying archive sca_XXXX.jar to partition “yyyyy” on server ZZZZZZ [http://server:port] HTTP error code returned [500]


Hi, When deploying BPM artifact that utilizes DBAdapter created with Database Adapter Creator Wizard, take care about the JNDI name that the “Browse JNDI tree” magnifying glass tool retrieves, because the name must match case sensitive the name configured in the Deployments>DBAdapter>Configuration>Outgoing Connections Pool>”Connection Name”: Otherwise you’ll get a deployment error: [11:09:32 PM] —-  Deployment […]

More

Bandwidth control when transfering files with sftp/scp


OpenSSH doesn’t support bandwidth control (no -l option at all) sftp -oIdentityFile=/home/oracle/mykey-open.ppk opc@12x.14x.2x.17x On the other hand scp does have the -l option: scp -l 400 -i /home/oracle/mykey-open.ppk fmw_12.2.1.0.0_bpm_quickstart.jar opc@12x.14x.2x.17x:/home/opc Please note that -l is informed in Kbits (400=50Kb/sec) COMMENTS Setting -l after -i didn’t work for me Renice is not a solution If you […]

More

Store Files Securely in Oracle Storage Cloud Service


SCS supports encryption. With this mechanism you can store your files in SCS with an encryption key that you provide. Here you are a java example: package es.jmu.testscsencrypt; import oracle.cloud.storage.*; import java.io.*; import java.security.KeyPair; import java.security.KeyPairGenerator; import java.security.SecureRandom; import java.util.UUID; public class TestEncrypt { public static void main(String[] args) { try { Long t0 = […]

More