8 Replies Latest reply on Jan 25, 2013 3:41 AM by remmer

    Site Studio migration 10g>11g Security Changes

      Hi there - we're conducting a migration of 10g UCM to 11g, inclusive of migrating Site Studio - developed sites.

      The issue we face is that our custom login form in the 10g site uses Extranetlook/idcplg for authentication; the form code being:

      <form name="loginForm" action="/idc/idcplg?cookieLogin=1" method="POST">
      <label for="login-email">User Name</label>
      <input type="text" name="username"/>
      <label for="login-password">Password</label>
      <input type="password" name="password"/>
      <input type="hidden" name="redirecturl" value="/OurSite/index.htm"/>
      <input type="submit" name="edit" />

      We know that 11g uses ADF authentication, and we can use /j_security_check as the form target and rename the fields to j_username and j_password, however there's no parameter for URL redirect.

      We also know that we can target the form to /adfAuthentication and use the success_url parameter to give us a URL redirect, but this target doesn't have a username or password parameter.

      Does anyone have a simple solution for changing the 10g Extranetlook-based authentication targets/options for 11g to include both credentials and a URL redirect - without having to hack ADF or something.

      Oracle Support are unwilling to help as it is 'custom code', and the doco only describes how 11g security works but doesn't guide 10g site studio security migration issues like this.

      THanks in advance.

      Edited by: remmer on Jan 22, 2013 10:52 AM