Posts Tagged ‘Security’

image

I have promised to attendees of my OOW’16 session (Building Enterprise-Grade Mobile Apps with Oracle JET and Cordova [CON5731]) to post a blog about ADF BC REST security and integration with Oracle JET. This post is to demonstrate how we could reuse cookie ID generated by ADF BC REST Web session for REST requests from JET.
First thing first, here you can download source code – jet_adfbc_security.zip. This archive contains ADF BC REST application and JET source code (you need to copy it into your local JET application).
Take a look first into JET login form. This is where we collect username/password and call login function. One important detail – invalidComponentTracker, this allows to report required validation error, when user hits login button with empty username or password:

Here is the login function in JET. If there are no validation errors, it executes POST against ADF BC REST service custom method. In response we could return user info, preferences, etc. This is the only one request where we are using username/password. Key point of this request is to get JSESSIONID from ADF BC REST server, so we could use it for subsequent requests, without sending username/password again. This is similar concept to ADF Faces, it is also using JSESSIONID to track web user and HTTP session on the server. If login is successful, we are reading custom parameter from response with JSESSIONID value. JET router is updated to render different menu structure after login: Read the complete article here.

WebLogic Partner Community

For regular information become a member in the WebLogic Partner Community please visit: http://www.oracle.com/partners/goto/wls-emea ( OPN account required). If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn Forum Wiki

Advertisements

imageThe April critical patch update includes a list of middleware products:

Oracle WebLogic Server, version(s) 10.3.6, 12.1.2, 12.1.3, 12.2.1
Fusion Middleware

Oracle Traffic Director, version(s) 11.1.1.7.0, 11.1.1.9.0
Fusion Middleware

Oracle Tuxedo, version(s) 12.1.1.0
Fusion Middleware

Oracle API Gateway, version(s) 11.1.2.3.0, 11.1.2.4.0
Fusion Middleware

Oracle BI Publisher, version(s) 12.2.1.0.0
Fusion Middleware

Oracle Business Intelligence Enterprise Edition, version(s) 11.1.1.7.0, 11.1.1.9.0, 12.2.1.0.0
Fusion Middleware

Oracle Exalogic Infrastructure, version(s) 1.0, 2.0
Fusion Middleware

Oracle GlassFish Server, version(s) 2.1.1
Fusion Middleware

Oracle HTTP Server, version(s) 12.1.2.0, 12.1.3.0
Fusion Middleware

Oracle iPlanet Web Proxy Server, version(s) 4.0
Fusion Middleware

Oracle iPlanet Web Server, version(s) 7.0
Fusion Middleware

Oracle OpenSSO, version(s) 3.0-0.7
Fusion Middleware

Oracle Outside In Technology, version(s) 8.5.0, 8.5.1, 8.5.2
Fusion Middleware

Oracle WebCenter Sites, version(s) 11.1.1.8.0, 12.2.1
Fusion Middleware

WebLogic Partner Community

For regular information become a member in the WebLogic Partner Community please visit: http://www.oracle.com/partners/goto/wls-emea ( OPN account required). If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn Forum Wiki

image

 

We’re pleased to invite you to attend a launch webcast on Security at every layer – New imperative & New opportunities for Oracle EMEA Partners on Wednesday 2nd December at 1:00pm UK / 2:00pm CET.

At recent Oracle OpenWorld, Larry explained why Security must be pushed down the stack and always on.

The new imperative for security is more than firewall, more than network, more than application…It is EVERY layer of the Stack, on premise and in the Cloud and Only one company offers this.

In this webcast, we will discuss how to transform the Security challenge into a Business opportunity with our partners and will cover the following topics:

» Data privacy & security new challenges
» Database security
» Identity management
» Software in Silicon
» Partner opportunities: enablement, assessment, services

Wednesday, 2nd December, 2015 1:00pm UK / 2:00pm CET Duration: 1 hour

Register for the webcast here: Register here

WebLogic Partner Community

For regular information become a member in the WebLogic Partner Community please visit: http://www.oracle.com/partners/goto/wls-emea ( OPN account required). If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn Forum Wiki

Oracle Critical Patch Update Advisory – January 2015

A Critical Patch Update (CPU) is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update advisories should be reviewed for information regarding earlier published security fixes. Please refer to: Critical Patch Updates and Security Alerts for information about Oracle Security Advisories.

Affected Products and Versions include the following Fusion Middleware solutions:

Oracle Fusion Middleware, version(s) 10.1.3.5, 11.1.1.7, 11.1.2.1, 11.1.2.2, 12.1.2, 12.1.3

Oracle Access Manager, version(s) 11.1.1.5, 11.1.1.7, 11.1.2.1, 11.1.2.2

Oracle Adaptive Access Manager, version(s) 11.1.1.5, 11.1.1.7, 11.1.2.1, 11.1.2.2

Oracle BI Publisher, version(s) 10.1.3.4.2, 11.1.1.7

Oracle Business Intelligence Enterprise Edition, version(s) 10.1.3.4.2, 11.1.1.7

Oracle Containers for J2EE, version(s) 10.1.3.5

Oracle Directory Server Enterprise Edition, version(s) 7.0, 11.1.1.7

Oracle Exalogic Infrastructure, version(s) 2.0.6.2.0 (for all X2-2, X3-2, X4-2)

Oracle Forms, version(s) 11.1.1.7, 11.1.2.1, 11.1.2.2

Oracle GlassFish Server, version(s) 3.0.1, 3.1.2

Oracle HTTP Server, version(s) 10.1.3.5.0, 11.1.1.7.0, 12.1.2.0, 12.1.3.0

Oracle OpenSSO, version(s) 8.0 Update 2 Patch 5

Oracle Real-Time Decision Server, version(s) 11.1.1.7, RTD Platform 3.0.x

Oracle Reports Developer, version(s) 11.1.1.7, 11.1.2.2

Oracle SOA Suite, version(s) 11.1.1.7, 12.1.3.0

Oracle Waveset, version(s) 8.1.1

Oracle WebCenter Content, version(s) 11.1.1.8.0

Oracle WebLogic Portal, version(s) 10.0.1.0, 10.2.1.0, 10.3.6.0

Oracle WebLogic Server, version(s) 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, 12.1.3.0

For more information please visit the OTN here.

WebLogic Partner Community

For regular information become a member in the WebLogic Partner Community please visit: http://www.oracle.com/partners/goto/wls-emea ( OPN account required). If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn Forum Wiki

Technorati Tags: ,,,,,,