Proxy User Overview Enabling and Configuring Proxy Users
9.6 Enabling and Configuring Proxy Users
This section contains the following: ■ Section 9.6.1, Proxy User Overview ■ Section 9.6.2, Enabling Proxy User Connections ■ Section 9.6.3, Enabling SSO in formsweb.cfg ■ Section 9.6.4, Accessing the Forms Application ■ Section 9.6.5, Changes in Forms Built-ins ■ Section 9.6.6, Reports Integration with Proxy Users9.6.1 Proxy User Overview
Many large applications, including Oracles own E-Business Suite, use a single username for all connections. This makes it possible to manage users in a way that often suits large companies better but it creates a problem with auditing. All inserts, updates and removals of records appear, from the databases perspective, to have been done by a single user. To restore auditing, the application developers must write and implement customized auditing code in the database that requires a user name to be passed to the database from the application. This step not only takes development time, but also duplicates functionality that is already implemented in the Oracle Database. The second issue is security. If that single user access is ever compromised, the compromised user will have access to the entire application schema. To address these two issues, Oracle Database supports proxy user authentication, which allows a client user to connect to the database through an application server, as a proxy user. Figure 9–3 describes the authentication of a Forms proxy user. Figure 9–3 Proxy User Authentication Using Forms Services with Oracle Single Sign-On 9-13 ■ Oracle Forms authenticates the user through Oracle Internet Directory or LDAP, as shown in the center of the image. ■ Forms then connects as the proxy user with or without a password, passing in the real username from the Oracle Internet Directory repository. ■ Typically, the proxy user is configured with least set of privileges. In the following procedure, the proxy user has connect and create session privileges. ■ The database accepts the create session action for the proxy user and uses the real username in audits and access control. ■ The Oracle Internet Directory user cannot connect to the database independently without configuration of the proxy user account. ■ The proxy user account isolates the client from direct SQLPlus connections.9.6.2 Enabling Proxy User Connections
Parts
» Oracle Fusion Middleware Online Documentation Library
» Oracle Forms Developer Oracle Forms Services
» Oracle Database Oracle WebLogic Server Oracle Fusion Middleware
» Forms Listener Servlet Forms Runtime Process
» About Installing or Upgrading Oracle Forms Oracle Forms Services in Action
» default.env Oracle Forms Configuration Files
» Forms Java EE Application Deployment Descriptors Standard Fonts and Icons File baseHTML Files
» Deploying Your Application Application Deployment
» Default Behavior in the Current Release
» Accessing Forms Services with Fusion Middleware Control
» Common Tasks in the Web Configuration Page
» Managing Parameters Configuring Forms Services
» Basic Configuration Parameters Single Sign-On Configuration Parameters
» Trace Configuration Parameters Plug-in Configuration Parameters HTML Page Configuration Parameters
» Applet Configuration Parameters Forms Configuration Parameters
» Advanced Configuration Parameters Forms Configuration Parameters
» Managing Environment Configuration Files Configuring Environment Variables
» Managing User Sessions Oracle Fusion Middleware Online Documentation Library
» Securing the Oracle Forms Test Form
» Managing Registry.dat with Fusion Middleware Control Managing Application Fonts
» Creating a Jar File for Images Using Files Within the Jar File
» DocumentBase codebase Search Path for Icons and Images
» Example change: Swapping Enter and Execute Mappings Exceptions Special Key Mappings
» About the Oracle WebLogic Managed Server
» Prerequisite Steps Custom Deployment of Forms Java EE Application
» Override the Default Servlet Alias and the Context Root
» Expanding Forms Managed Server Clusters Registering Forms Java EE Applications
» Modification of Forms J2EE Application Deployment Descriptors
» Load Balancing Oracle WebLogic Server
» Enabling SSL with a Load Balancing Router
» Integrating JavaScript and Oracle Forms Configuration of formsweb.cfg
» Configuration of Environment Variables About Oracle Forms and Server Events
» About the When-Event-Raised Trigger About Trigger Definition Level and Scope
» Creating Events Subscribing to Events Publishing Database Events
» About Synchronous Communication About Asynchronous Communication
» ssoErrorURL ssoCancelUrl Enabling OracleAS Single Sign-On for an Application
» Proxy User Overview Enabling and Configuring Proxy Users
» Enabling Proxy User Connections
» Enabling SSO in formsweb.cfg Accessing the Forms Application Changes in Forms Built-ins
» OracleAS Single Sign-On Components Used By Oracle Forms Configuring Oracle Internet Directory
» About Multiple JVM Controllers JVM Pooling Usage Examples
» Re-importing Your Java Code About Sharing Static Variables Across Multiple JVMs
» JVM Controller Command Examples
» Click Delete. Deleting a Named Configuration
» Common Tasks in the JVM Configuration Page Managing Parameters
» Forms Configuration File Settings Startup Example
» Overview of JVM Configuration Integrating Forms and Reports JVM Pooling Error Messages
» Configuring Forms Trace Specifying URL Parameter Options
» Starting and Stopping Forms Trace
» Specifying Logging Specifying Logging Levels Using Fusion Middleware Control
» none session sessionperf perf
» debug Example Output for Each Level of Servlet Logging
» Upgrading Common Gateway Interface CGI to the Oracle Forms Servlet
» Upgrading the Forms 6i Listener to the Forms Listener Servlet
» Upgrading the Forms Listener Servlet Architecture to Oracle Forms Services
» Creating Forms Listener Servlet Alias Names Accessing the Listener Servlet Administration Page
» Configuring Prestart Parameters Forms Services Web Runtime Pooling
» Using Java Files Using Oracles Java Plug-in Using Caching
Show more