Forum Stats

  • 3,817,472 Users
  • 2,259,339 Discussions
  • 7,893,790 Comments

Discussions

OPSS authorization Logs

Hi
I have set the logger oracle.security.jps.dbg.logger to finest. And some of the log entries aren't making much sense to me like what is subjectresolver

<JpsAbsSubjectResolver> <resolveSubject> [JpsAbsFilter.doFilter] Final jpsSubject = Subject:
Principal: king
Principal: authenticated-role
Principal: ApplicationRoleopssDemo/kingrole,uname:cn=kingrole,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:7894FE60233711E2BFD89991225B906E
Principal: anonymous-role
Principal: ApplicationRoleopssDemo/kingtiger,uname:cn=kingtiger,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:789C2A50233711E2BFD89991225B906E
Private Credential: king
Private Credential: Subject:
Principal: king
Private Credential: king

, Cache-Hit:true



getPermissions: Context:null Runtime Grantee (Principals+codesource):[SubjCSGrantee: file:/C:/Users/neeshsha.ST-IDC/AppData/Roaming/JDeveloper/system11.1.2.3.39.62.76.1/DefaultDomain/servers/DefaultServer/tmp/_WL_user/adf.oracle.domain/ipbkss/APP-INF/lib/adfmweb.jar [king, authenticated-role, ApplicationRoleopssDemo/kingrole,uname:cn=kingrole,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:7894FE60233711E2BFD89991225B906E, anonymous-role, ApplicationRoleopssDemo/kingtiger,uname:cn=kingtiger,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:789C2A50233711E2BFD89991225B906E]]Requested Permissions: null
ResourceType: null
isTypedPermission: false
Simple Permissions:
Deny
Grant
(oracle.security.jps.service.policystore.PolicyStoreAccessPermission Context:SYSTEM Context Name:null Actions:getConfiguredApplications)
(oracle.security.jps.service.policystore.PolicyStoreAccessPermission Context:APPLICATION Context Name:* Actions:getApplicationPolicy)
(oracle.security.jps.service.credstore.CredentialAccessPermission context=SYSTEM,mapName=default,keyName=* read,write)
(java.util.PropertyPermission line.separator read)
(java.util.PropertyPermission java.vm.version read)
(java.util.PropertyPermission java.vm.specification.version read)
(java.util.PropertyPermission java.vm.specification.vendor read)
(java.util.PropertyPermission java.vendor.url read)
(java.util.PropertyPermission java.vm.name read)
(java.util.PropertyPermission os.name read)
(java.util.PropertyPermission java.vm.vendor read)
(java.util.PropertyPermission path.separator read)
(java.util.PropertyPermission java.specification.name read)
(java.util.PropertyPermission os.version read)
(java.util.PropertyPermission os.arch read)
(java.util.PropertyPermission java.class.version read)
(java.util.PropertyPermission java.version read)
(java.util.PropertyPermission file.separator read)
(java.util.PropertyPermission java.vendor read)
(java.util.PropertyPermission java.vm.specification.name read)
(java.util.PropertyPermission java.specification.version read)
(java.util.PropertyPermission java.specification.vendor read)
Policy_Perms
Complex Permissions:


Any help ??
This discussion has been closed.