[Home] [Help]
95: where SESSION_ID = l_session_id;
96:
97: commit;
98:
99: l_validate := icx_sec.validateSessionPrivate
100: (c_session_id => l_session_id,
101: c_resp_appl_id => l_resp_appl_id,
102: c_security_group_id => l_security_group_id,
103: c_responsibility_id => l_responsibility_id,
103: c_responsibility_id => l_responsibility_id,
104: c_function_id => l_function_id,
105: c_update => FALSE);
106:
107: icx_sec.g_validateSession_flag := false;
108:
109: OracleApps.runFunction
110: (c_function_id => l_function_id,
111: n_session_id => l_session_id,
115: p_security_group_id => l_security_group_id,
116: p_menu_id => l_menu_id,
117: p_function_type => l_function_type);
118:
119: icx_sec.g_validateSession_flag := true;
120: */
121:
122: exception
123: when others then
120: */
121:
122: exception
123: when others then
124: icx_sec.g_validateSession_flag := true;
125: htp.p('User does not have access to this function');
126: htp.nl;
127: --NEED TO DO!::
128: --if this is portal/sso, send to oraclesswa.convertsession
281: l_timeout NUMBER;
282:
283: begin
284:
285: icx_sec.ServerLevel;
286:
287: l_listener_token := OracleSSWA.listener_token;
288: fnd_profile.get_specific(
289: name_z => 'APPS_SSO',
306: ',p_sso_timeremaining => :l_sso_time_remaining'||
307: ',p_site_timestamp => :l_site_time_stamp'||
308: ',p_url_requested => :l_url_requested)';
309:
310: icx_sec.g_window_cookie_name := 'Y';
311:
312: dbms_sql.parse(l_call,'begin '||l_procedure_call||'; exception when wwsec_sso_enabler.COOKIE_EXPIRED_EXCEPTION then icx_sec.g_window_cookie_name := ''X''; raise; when others then raise; end;' ,dbms_sql.native);
313:
314: l_sso_user_name := '1234567890123456789012345678901234567890';
308: ',p_url_requested => :l_url_requested)';
309:
310: icx_sec.g_window_cookie_name := 'Y';
311:
312: dbms_sql.parse(l_call,'begin '||l_procedure_call||'; exception when wwsec_sso_enabler.COOKIE_EXPIRED_EXCEPTION then icx_sec.g_window_cookie_name := ''X''; raise; when others then raise; end;' ,dbms_sql.native);
313:
314: l_sso_user_name := '1234567890123456789012345678901234567890';
315: l_ip_address := '123.456.678.901';
316: l_sso_time_remaining := 1234567890;
362: and (END_DATE is NULL or END_DATE > sysdate);
363:
364:
365: --begin code for preservation of session_id when switching from anonymous user to authenticated user.
366: l_session_id := icx_sec.getsessioncookie; -- get the cookie if there is one.
367: l_session_status := icx_sec.check_session(l_session_id); -- check to see if cookie is for valid session
368: BEGIN
369: SELECT user_id
370: INTO c_user_id
363:
364:
365: --begin code for preservation of session_id when switching from anonymous user to authenticated user.
366: l_session_id := icx_sec.getsessioncookie; -- get the cookie if there is one.
367: l_session_status := icx_sec.check_session(l_session_id); -- check to see if cookie is for valid session
368: BEGIN
369: SELECT user_id
370: INTO c_user_id
371: FROM icx_sessions
408: owa_util.redirect_url(l_url_requested);
409: owa_util.http_header_close;
410: ELSIF ((l_session_status<>'INVALID') AND (c_user_id = l_anon_id) AND (l_anon_id <> -999) AND (c_user_id <> l_user_id)) THEN
411:
412: icx_sec.setUserNLS
413: (l_user_id,
414: l_language,
415: l_language_code,
416: l_date_format,
456: l_mode := '115J';
457: ELSE
458: l_mode := '115X';
459: END IF;
460: l_session_id := icx_sec.createSession
461: (p_user_id => l_user_id,
462: c_mode_code => l_mode);
463: owa_util.mime_header('text/html', FALSE);
464: owa_cookie.send(name=>'DEBUG_COOKIE', value=>'-1', expires=>'', path=>'/');
462: c_mode_code => l_mode);
463: owa_util.mime_header('text/html', FALSE);
464: owa_cookie.send(name=>'DEBUG_COOKIE', value=>'-1', expires=>'', path=>'/');
465: owa_cookie.send(name=>'WF_WORKLIST_MODE', value=>'-1', expires=>'', path=>'/');-- mputman added for 1903545
466: icx_sec.sendsessioncookie(l_session_id);
467: owa_util.redirect_url(l_url_requested);
468: owa_util.http_header_close;
469:
470: END IF;
472: exception
473: when others then
474: IF ((nvl(l_apps_sso,'SSWA')='SSO_SDK') OR
475: (nvl(l_apps_sso,'SSWA')='SSWA_SSO')) AND
476: (icx_sec.g_window_cookie_name = 'X')
477: THEN
478: l_url_requested := fnd_sso_manager.getLoginUrl;
479: owa_util.mime_header('text/html', FALSE);
480: owa_util.redirect_url(l_url_requested);
495: into l_function_id
496: from FND_FORM_FUNCTIONS
497: where FUNCTION_NAME = 'FND_NAVIGATE_PAGE';
498:
499: if icx_sec.validateSession
500: then
501: l_session_id := icx_sec.getID(icx_sec.pv_session_id);
502:
503: OracleApps.runFunction(c_function_id => l_function_id,
497: where FUNCTION_NAME = 'FND_NAVIGATE_PAGE';
498:
499: if icx_sec.validateSession
500: then
501: l_session_id := icx_sec.getID(icx_sec.pv_session_id);
502:
503: OracleApps.runFunction(c_function_id => l_function_id,
504: n_session_id => l_session_id);
505: end if;
630: l_recreate_code varchar2(240);
631:
632: begin
633:
634: icx_sec.ServerLevel;
635:
636: --add parameter for sgid and init it here.
637:
638: IF e IS NOT NULL THEN
696: p_nls_language => l_language);
697: -- p_nls_territory =>'AMERICA');
698: -- l_language := L;
699:
700: l_session_id := icx_sec.getsessioncookie;
701:
702: --IF (icx_sec.validatesession(c_validate_only=>'Y')) THEN --there is a session cookie
703:
704: IF (l_session_id >0 AND l_session_id IS NOT NULL) THEN --there is a session cookie
698: -- l_language := L;
699:
700: l_session_id := icx_sec.getsessioncookie;
701:
702: --IF (icx_sec.validatesession(c_validate_only=>'Y')) THEN --there is a session cookie
703:
704: IF (l_session_id >0 AND l_session_id IS NOT NULL) THEN --there is a session cookie
705:
706: select multi_org_flag
731: MENU_ID = l_menu_id,
732: NLS_LANGUAGE = nvl(l_language,NLS_LANGUAGE),
733: LANGUAGE_CODE = nvl(L,LANGUAGE_CODE)
734: where SESSION_ID = l_session_id;
735: --where SESSION_ID = icx_sec.getsessioncookie;
736:
737: commit;
738:
739: ELSE
761: l_mode := '115J';
762: ELSE
763: l_mode := '115X';
764: END IF;
765: l_session_id:=icx_sec.CREATESession(l_user_id, l_mode);
766: /*
767: fnd_profile.get_specific(
768: name_z => 'APPS_WEB_AGENT',
769: responsibility_id_z => l_responsibility_id,
782: c_anchor := 'OracleSSWA.Execute?F='||F||'&E='||E||'&P='||P||'&L='||L;
783:
784: owa_util.mime_header('text/html', FALSE);
785: owa_cookie.send(name=>'WF_WORKLIST_MODE', value=>'-1', expires=>'', path=>'/');-- mputman added for 1903545
786: icx_sec.sendSessionCookie(l_session_id);
787: owa_util.http_header_close;
788:
789: RAISE e_refresh_4_cookie;
790:
791: END IF;--cookie
792:
793: --need to do validate_only so if fails, we can still run if public
794: --set a global to -999 to fnd_global will verify user-resp relationship
795: icx_sec.g_prog_appl_id := -999;
796: IF icx_sec.VALIDATESession(c_validate_only => 'Y') THEN
797: icx_sec.g_prog_appl_id := -1;
798:
799: -- IF (fnd_function.test_id(l_function_id))
792:
793: --need to do validate_only so if fails, we can still run if public
794: --set a global to -999 to fnd_global will verify user-resp relationship
795: icx_sec.g_prog_appl_id := -999;
796: IF icx_sec.VALIDATESession(c_validate_only => 'Y') THEN
797: icx_sec.g_prog_appl_id := -1;
798:
799: -- IF (fnd_function.test_id(l_function_id))
800: -- THEN
793: --need to do validate_only so if fails, we can still run if public
794: --set a global to -999 to fnd_global will verify user-resp relationship
795: icx_sec.g_prog_appl_id := -999;
796: IF icx_sec.VALIDATESession(c_validate_only => 'Y') THEN
797: icx_sec.g_prog_appl_id := -1;
798:
799: -- IF (fnd_function.test_id(l_function_id))
800: -- THEN
801: --either current user or anonymous user has access to this function.. run it.
798:
799: -- IF (fnd_function.test_id(l_function_id))
800: -- THEN
801: --either current user or anonymous user has access to this function.. run it.
802: IF E IS NOT NULL and icx_sec.g_login_id is not null THEN
803: fnd_signon.audit_web_responsibility(icx_sec.g_login_id,
804: l_responsibility_id,
805: l_resp_appl_id,
806: l_responsibility_id); -- mputman added for 1941776
799: -- IF (fnd_function.test_id(l_function_id))
800: -- THEN
801: --either current user or anonymous user has access to this function.. run it.
802: IF E IS NOT NULL and icx_sec.g_login_id is not null THEN
803: fnd_signon.audit_web_responsibility(icx_sec.g_login_id,
804: l_responsibility_id,
805: l_resp_appl_id,
806: l_responsibility_id); -- mputman added for 1941776
807: END IF;
852: p_responsibility_id => l_responsibility_id,
853: p_security_group_id => nvl(l_security_group_id,'0'),
854: p_function_type => f_type,
855: c_function_id => l_function_id,
856: n_session_id => icx_Sec.g_session_id,
857: c_parameters => l_params);
858: ELSE
859: OracleApps.runfunction(p_resp_appl_id => l_resp_appl_id,
860: p_responsibility_id => l_responsibility_id,
860: p_responsibility_id => l_responsibility_id,
861: p_security_group_id => nvl(l_security_group_id,'0'),
862: p_function_type => f_type,
863: c_function_id => l_function_id,
864: n_session_id => icx_Sec.g_session_id);
865: END IF;
866: END IF;
867:
868: icx_sec.g_prog_appl_id := -1; --set global back to -1
864: n_session_id => icx_Sec.g_session_id);
865: END IF;
866: END IF;
867:
868: icx_sec.g_prog_appl_id := -1; --set global back to -1
869:
870: ELSIF icx_sec.check_session(p_session_id => l_session_id) = 'EXPIRED'
871: THEN
872: icx_sec.g_prog_appl_id := -1;
866: END IF;
867:
868: icx_sec.g_prog_appl_id := -1; --set global back to -1
869:
870: ELSIF icx_sec.check_session(p_session_id => l_session_id) = 'EXPIRED'
871: THEN
872: icx_sec.g_prog_appl_id := -1;
873:
874: select USER_NAME
868: icx_sec.g_prog_appl_id := -1; --set global back to -1
869:
870: ELSIF icx_sec.check_session(p_session_id => l_session_id) = 'EXPIRED'
871: THEN
872: icx_sec.g_prog_appl_id := -1;
873:
874: select USER_NAME
875: into l_user_name
876: from FND_USER fu,
894:
895: --function available to current or anonymous with a valid session
896: ELSIF (fnd_function.test_id(l_function_id)) -- OR (l_function_id=2594)
897: THEN -- VS Failed.. if function is public, create session and go!
898: icx_sec.g_prog_appl_id := -1;
899: --get anonymous user info
900: -- fnd_profile.get(name => 'GUEST_USER_PWD',
901: -- val => l_guest_profile_value);
902: -- Using new api to retrieve GUEST credentials.
920: l_mode := '115J';
921: ELSE
922: l_mode := '115X';
923: END IF;
924: l_session_id:=icx_sec.CREATESession(l_user_id, l_mode);
925: fnd_profile.get_specific(
926: name_z => 'APPS_WEB_AGENT',
927: responsibility_id_z => l_responsibility_id,
928: application_id_z => l_resp_appl_id,
932: c_anchor := 'OracleSSWA.Execute?E='||wfa_html.conv_special_url_chars(icx_call.encrypt(l_resp_appl_id||'*'||l_responsibility_id||'*'||l_security_group_id||'*'||l_function_id||'*'||'**]'));
933:
934: owa_util.mime_header('text/html', FALSE);
935: owa_cookie.send(name=>'WF_WORKLIST_MODE', value=>'-1', expires=>'', path=>'/');-- mputman added for 1903545
936: icx_sec.sendSessionCookie(l_session_id);
937: owa_util.http_header_close;
938:
939: select multi_org_flag
940: into l_multi_org_flag
958: commit;
959: htp.p('');
960:
961: ELSE
962: icx_sec.g_prog_appl_id := -1;
963: -- session not valid... or current user cannot access function
964: -- function is not public... need to login.
965: IF ((nvl(l_apps_sso,'SSWA')='SSO_SDK') OR
966: (nvl(l_apps_sso,'SSWA')='SSWA_SSO'))THEN
980: into l_user_id
981: from fnd_user
982: where user_name = l_guest_name;
983: ----
984: l_session_id:=icx_sec.getsessioncookie;
985: IF ((l_user_id <> icx_sec.g_user_id) OR (icx_sec.check_session(icx_sec.getsessioncookie) = 'INVALID')) THEN
986: --create anonymous session
987:
988: --Need to check apps_sso profile and determine if we are Portal or PHP and set mode accordingly
981: from fnd_user
982: where user_name = l_guest_name;
983: ----
984: l_session_id:=icx_sec.getsessioncookie;
985: IF ((l_user_id <> icx_sec.g_user_id) OR (icx_sec.check_session(icx_sec.getsessioncookie) = 'INVALID')) THEN
986: --create anonymous session
987:
988: --Need to check apps_sso profile and determine if we are Portal or PHP and set mode accordingly
989: IF (nvl(l_apps_sso,'SSWA')='SSWA')
994: l_mode := '115J';
995: ELSE
996: l_mode := '115X';
997: END IF;
998: l_session_id:=icx_sec.CREATESession(l_user_id, l_mode);
999: -- l_url := FND_WEB_CONFIG.TRAIL_SLASH(fnd_profile.value('APPS_WEB_AGENT'));
1000: -- c_anchor := 'OracleSSWA.Execute?E='||wfa_html.conv_special_url_chars(icx_call.encrypt(l_resp_appl_id||'*'||l_responsibility_id||'*'||l_security_group_id||'*'||l_function_id||'*'||'**]'));
1001:
1002: owa_util.mime_header('text/html', FALSE);
1000: -- c_anchor := 'OracleSSWA.Execute?E='||wfa_html.conv_special_url_chars(icx_call.encrypt(l_resp_appl_id||'*'||l_responsibility_id||'*'||l_security_group_id||'*'||l_function_id||'*'||'**]'));
1001:
1002: owa_util.mime_header('text/html', FALSE);
1003: owa_cookie.send(name=>'WF_WORKLIST_MODE', value=>'-1', expires=>'', path=>'/');-- mputman added for 1903545
1004: icx_sec.sendSessionCookie(l_session_id);
1005: owa_util.http_header_close;
1006: --- end create new session
1007:
1008: END IF;
1052: c_login_msg := fnd_message.get;
1053: OracleApps.displayLogin(c_error_msg||' '||c_login_msg,'IC','Y');
1054:
1055: WHEN OTHERS THEN
1056: icx_sec.g_prog_appl_id := -1;
1057:
1058: -- fnd_message.set_name('ICX','ICX_SESSION_FAILED');
1059: -- c_error_msg := fnd_message.get;
1060: -- fnd_message.set_name('ICX','ICX_SIGNIN_AGAIN');
1156: owa_util.mime_header('image/gif', FALSE);
1157: -- Reset cookie
1158: owa_cookie.send
1159: (
1160: name => icx_sec.getsessioncookiename,
1161: value => '-1',
1162: path => '/',
1163: domain => icx_sec.getsessioncookiedomain
1164: );
1159: (
1160: name => icx_sec.getsessioncookiename,
1161: value => '-1',
1162: path => '/',
1163: domain => icx_sec.getsessioncookiedomain
1164: );
1165: --htp.p('Content-Length: ' || length(l_img));
1166: htp.p('Expires: Thu, 29 Oct 1970 17:04:19 GMT');
1167: htp.p('Pragma: no-cache');