Discussions
Categories
- 384.6K All Categories
- 2.5K Data
- 556 Big Data Appliance
- 1.9K Data Science
- 451.4K Databases
- 222.1K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 32 Multilingual Engine
- 562 MySQL Community Space
- 479 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3.1K ORDS, SODA & JSON in the Database
- 561 SQLcl
- 4K SQL Developer Data Modeler
- 187.5K SQL & PL/SQL
- 21.4K SQL Developer
- 296.9K Development
- 1 Application Development
- 18 Developer Projects
- 140 Programming Languages
- 293.6K Development Tools
- 112 DevOps
- 3.1K QA/Testing
- 646.2K Java
- 28 Java Learning Subscription
- 37K Database Connectivity
- 193 Java Community Process
- 106 Java 25
- 22.1K Java APIs
- 138.2K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 21 Java Essentials
- 166 Java 8 Questions
- 86K Java Programming
- 81 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.3K Java SE
- 13.8K Java Security
- 206 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 536 LiveLabs
- 39 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.7K Other Languages
- 2.3K Chinese
- 178 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 236 Portuguese
Integrate Oracle BI Publisher with Oracle Form [Authentication]
Oracle FMW Form & Report 11g R2 (11.1.2)
Oracle BI Publisher 11.1.1.6
Oracle Database 11g Release 11.2.0.4.0 - 64bit Production
With the help of below link, i want to integrating Oracle BI Publisher with Oracle form
http://www.pitss.eu/fileadmin/pitss/images/de/White_Papers/White_paper_BIPublisher_WebServices.pdf
But I need to know one thing, as mention in above link, weblogic user/pwd in the java code for authentication with BI Publisher,
My Question here, what is the best way to handle authentication with BI Publisher while integrating with Oracle Form?
Best Answer
-
I think, in a document, it just mention for example,
it won't be good practice if keep the weblogic user/pwd in Java code, at the end this java code become a jar file and deployed on server and then downloaded on client machine. which completely in secure and values are hard-coded, if password change then again issue, it means having user/pwd in jar never be a good solution.
For a quick view, I would advice keep the user/pwd in db in encrypted form and access on oracle form with decrypte and pass the value to the api ReportServiceClient.CallRunReport()
if you feel, every time you need to access user/pwd from db and decypte it, what i would advise here, get user/pwd once and set in db context, and then get it from the context with decrypte.
May other have better idea.
Answers
-
I think, in a document, it just mention for example,
it won't be good practice if keep the weblogic user/pwd in Java code, at the end this java code become a jar file and deployed on server and then downloaded on client machine. which completely in secure and values are hard-coded, if password change then again issue, it means having user/pwd in jar never be a good solution.
For a quick view, I would advice keep the user/pwd in db in encrypted form and access on oracle form with decrypte and pass the value to the api ReportServiceClient.CallRunReport()
if you feel, every time you need to access user/pwd from db and decypte it, what i would advise here, get user/pwd once and set in db context, and then get it from the context with decrypte.
May other have better idea.
-
The code called from forms already gets the username and password as parameters, so you have to store them somewhere "on the forms-side".
SOme options are:
1- Hardcoded in forms
2- stored in a table in the database
3- stored in the .env-file of the forms-application
I would tend to options 2 or 3 whereas i would store the values encrypted
-
Thanks for your time and help.
sfr.farhan.fani wrote: For a quick view, I would advice keep the user/pwd in db in encrypted form and access on oracle form with decrypte and pass the value to the api ReportServiceClient.CallRunReport() if you feel, every time you need to access user/pwd from db and decypte it, what i would advise here, get user/pwd once and set in db context, and then get it from the context with decrypte.
Sound better idea, common advise bu you and Andreas Weiden (2nd point).
Andreas Weiden wrote: 1- Hardcoded in forms 2- stored in a table in the database 3- stored in the .env-file of the forms-application
How could store user/pwd in the .env-file of the forms application and get access at form level. thanks.
I
-
How could store user/pwd in the .env-file of the forms application
Open the env-file with an editor of your choice. Create a new line and write something like
BI_ACCESS=user/password
and get access at form level.
Use TOOL_ENV.GET_VAR('BI_ACCESS', variable) to read the data.
To encrypt/decrypt you could use the db-packages DBMS_OBFUCSATION_TOOLKIT or DBMS_CRYPTO
-
Thanks & @sfr.farhan.fani for your time and help.
So, I have two ways to solve my problem.
1. Store user/pwd in DB with encryption and access it in application.
2. Define user/pwd in .env file with encryption and access it in application.
I tried the solution with DB and successfully implemented, working fine.
I need one more suggestion here,
Which solution is more effective in all aspect, security, performance and maintainability wise.
So that, I could go with best solution.
Thanks for your advise