0 Replies Latest reply: Oct 31, 2012 4:58 AM by 971638 RSS

    OPSS authorization Logs

    971638
      Hi
      I have set the logger oracle.security.jps.dbg.logger to finest. And some of the log entries aren't making much sense to me like what is subjectresolver

      <JpsAbsSubjectResolver> <resolveSubject> [JpsAbsFilter.doFilter] Final jpsSubject = Subject:
           Principal: king
           Principal: authenticated-role
           Principal: ApplicationRoleopssDemo/kingrole,uname:cn=kingrole,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:7894FE60233711E2BFD89991225B906E
           Principal: anonymous-role
           Principal: ApplicationRoleopssDemo/kingtiger,uname:cn=kingtiger,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:789C2A50233711E2BFD89991225B906E
           Private Credential: king
           Private Credential: Subject:
           Principal: king
           Private Credential: king

      , Cache-Hit:true



      getPermissions: Context:null Runtime Grantee (Principals+codesource):[SubjCSGrantee: file:/C:/Users/neeshsha.ST-IDC/AppData/Roaming/JDeveloper/system11.1.2.3.39.62.76.1/DefaultDomain/servers/DefaultServer/tmp/_WL_user/adf.oracle.domain/ipbkss/APP-INF/lib/adfmweb.jar [king, authenticated-role, ApplicationRoleopssDemo/kingrole,uname:cn=kingrole,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:7894FE60233711E2BFD89991225B906E, anonymous-role, ApplicationRoleopssDemo/kingtiger,uname:cn=kingtiger,cn=Application Role,cn=opssDemo,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot,guid:789C2A50233711E2BFD89991225B906E]]Requested Permissions: null
      ResourceType: null
      isTypedPermission: false
      Simple Permissions:
      Deny
      Grant
      (oracle.security.jps.service.policystore.PolicyStoreAccessPermission Context:SYSTEM Context Name:null Actions:getConfiguredApplications)
      (oracle.security.jps.service.policystore.PolicyStoreAccessPermission Context:APPLICATION Context Name:* Actions:getApplicationPolicy)
      (oracle.security.jps.service.credstore.CredentialAccessPermission context=SYSTEM,mapName=default,keyName=* read,write)
      (java.util.PropertyPermission line.separator read)
      (java.util.PropertyPermission java.vm.version read)
      (java.util.PropertyPermission java.vm.specification.version read)
      (java.util.PropertyPermission java.vm.specification.vendor read)
      (java.util.PropertyPermission java.vendor.url read)
      (java.util.PropertyPermission java.vm.name read)
      (java.util.PropertyPermission os.name read)
      (java.util.PropertyPermission java.vm.vendor read)
      (java.util.PropertyPermission path.separator read)
      (java.util.PropertyPermission java.specification.name read)
      (java.util.PropertyPermission os.version read)
      (java.util.PropertyPermission os.arch read)
      (java.util.PropertyPermission java.class.version read)
      (java.util.PropertyPermission java.version read)
      (java.util.PropertyPermission file.separator read)
      (java.util.PropertyPermission java.vendor read)
      (java.util.PropertyPermission java.vm.specification.name read)
      (java.util.PropertyPermission java.specification.version read)
      (java.util.PropertyPermission java.specification.vendor read)
      Policy_Perms
      Complex Permissions:


      Any help ??