Using WebLogic Server Embedded LDAP

Recently, I've had the need to setup user authentication with webcenter and noticed that weblogic had it's own built in LDAP server. I didn't find my information around on the OTN or google about it so I thought I'd share what I learnt. Below is how to setup LDAP on a WLS and authenticate against it in Java.

Setting up Embedded LDAP on the Intergrated WLS

You will need to set the credential and confirm credential to a new password and check the Anonymous Bind Allowed check box. In this example we will use “welcome1”.

All the below methods can be used to interface with the WLS Embedded LDAP.

If you need to explore the WLS embedded LDAP directory structure you can download JXpolrer and use the following details.

Localhost Details:

Host: 127.0.0.1:7101

Base DN: dn=DefaultDomain

User DN: cn=Admin

Password: welcome1

Variables

private String ldapServer = "ldap://127.0.0.1:7101"; private String ldapPassword = "welcome1"; private String ldapDC = "DefaultDomain";

Change Password

public String changePassword(String username, String oldPassword, String newPassword, String confirmNewPassword) { if (oldPassword.equals(newPassword)) { System.out.println("new and old passwords match"); return "Your new password must be different from your old password."; } if (!newPassword.equals(confirmNewPassword)) { System.out.println("new password and confirmed password don't match"); return "Your new password must match your confirmed password."; } if (!isAuthenticated(username, oldPassword)) { System.out.println("old password was not authenticated"); return "Your old password is incorrect."; } String ldapUri = ldapServer; String admindn = "cn=Admin"; String admincred = ldapPassword; String usersContainer = "ou=people,ou=myrealm,dc=" + ldapDC; Hashtable env = new Hashtable(); env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory"); env.put(Context.PROVIDER_URL, ldapUri); env.put(Context.SECURITY_PRINCIPAL, admindn); env.put(Context.SECURITY_CREDENTIALS, admincred); try { InitialDirContext initialContext = new InitialDirContext(env); DirContext ctx = initialContext; ModificationItem[] mods = new ModificationItem[1]; Attribute mod0 = new BasicAttribute("userpassword", newPassword); mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE, mod0); ctx.modifyAttributes("uid=" + username + "," + usersContainer, mods); ctx.close(); return "Password Changed!"; } catch (NamingException e) { System.out.println(e); return "Woops! Something went wrong!"; } }

Create User

public String createUser(String firstname, String lastname, String username, String password, String confirmPassword) { if (!password.equals(confirmPassword)) { return "Passwords do not match."; } String ldapUri = ldapServer; String admindn = "cn=Admin"; String admincred = ldapPassword; String usersContainer = "ou=people,ou=myrealm,dc=" + ldapDC; Hashtable env = new Hashtable(); env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory"); env.put(Context.PROVIDER_URL, ldapUri); env.put(Context.SECURITY_PRINCIPAL, admindn); env.put(Context.SECURITY_CREDENTIALS, admincred); try { DirContext ctx = new InitialDirContext(env); Attributes attrs = new BasicAttributes(true); Attribute objclass = new BasicAttribute("ObjectClass"); objclass.add("top"); objclass.add("inetorgperson"); objclass.add("wlsuser"); Attribute surname = new BasicAttribute("sn"); surname.add(lastname); Attribute givenname = new BasicAttribute("givenname"); givenname.add(firstname); Attribute cn = new BasicAttribute("cn"); cn.add(username); Attribute mail = new BasicAttribute("mail"); mail.add(username); Attribute name = new BasicAttribute("displayname"); name.add(firstname + " " + lastname); Attribute pwd = new BasicAttribute("userpassword"); pwd.add(password); attrs.put(objclass); attrs.put(mail); attrs.put(givenname); attrs.put(name); attrs.put(cn); attrs.put(surname); attrs.put(pwd); ctx.createSubcontext("uid=" + username + "," + usersContainer, attrs); ctx.close(); return "success"; } catch (NameAlreadyBoundException e) { System.out.println(e); return "User already exists."; } catch (NamingException e) { System.out.println(e); return "Woops! Something went wrong!"; } }

Reset Password

public String resetPassword(String username) { SecureRandom random = new SecureRandom(); String randomString = new BigInteger(130, random).toString(32); String newPassword = randomString.substring(0, 8); String ldapUri = ldapServer; String admindn = "cn=Admin"; String admincred = ldapPassword; String usersContainer = "ou=people,ou=myrealm,dc=" + ldapDC; Hashtable env = new Hashtable(); env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory"); env.put(Context.PROVIDER_URL, ldapUri); env.put(Context.SECURITY_PRINCIPAL, admindn); env.put(Context.SECURITY_CREDENTIALS, admincred); try { InitialDirContext initialContext = new InitialDirContext(env); DirContext ctx = initialContext; ModificationItem[] mods = new ModificationItem[1]; Attribute mod0 = new BasicAttribute("userpassword", newPassword); mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE, mod0); ctx.modifyAttributes("uid=" + username + "," + usersContainer, mods); ctx.close(); return newPassword; } catch (NamingException e) { System.out.println(e); return ""; } }

Check Authenticated

public boolean isAuthenticated(String username, String password) { Hashtable env = new Hashtable(); env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory"); env.put(Context.PROVIDER_URL, ldapServer); env.put(Context.SECURITY_AUTHENTICATION, "simple"); env.put(Context.SECURITY_PRINCIPAL, "uid=" + username + ",ou=people,ou=myrealm,dc=" + ldapDC); env.put(Context.SECURITY_CREDENTIALS, password); try{ DirContext ctx = new InitialDirContext(env); String authorised = ctx.AUTHORITATIVE; ctx.close(); return true; }catch(NamingException e){ System.out.println(e); return false; } }

Custom WebService Headers (DataControl and Proxy)

 I've recently stumbled across a situation where I have had the need to call a web service which required custom HTTP headers and noticed there wasn't a lot of information around on how to do this in ADF in regards to using Data Controls or a Web Service Proxy.

Below are the two snippets of code I used and a brief description of how to implement them.

1)      Simply copy and paste the below snippet of code into your class right before you call the webservice. (The below snippet of code adds two headers into the HTTP request.)

Map<String, Object> reqCtx = ((BindingProvider)iditInterface).getRequestContext(); Map<String, List> reqHttpHeader = (Map<String, List>)reqCtx.get(MessageContext.HTTP_REQUEST_HEADERS); if (null == reqHttpHeader) { reqHttpHeader = new Hashtable<String, List>(); } List userName = new ArrayList(); userName.add("header1Value"); reqHttpHeader.put("header1", header1Value); List password = new ArrayList(); password.add("header2Value "); reqHttpHeader.put("header2", header2Value); reqCtx.put(MessageContext.HTTP_REQUEST_HEADERS, reqHttpHeader);

In order to add additional HTTP headers to a web service call using a data control you must override the existing SOAPProvider class.

1)      Create a new SOAP Provider Class “MySOAPProvider”

2)      Use the below code to override the Provider class

3)      Override the existing references to the SOAPProvider in the DataBindings.

import javax.xml.soap.MimeHeaders; import javax.xml.soap.SOAPMessage; import oracle.adf.model.adapter.AdapterException; public class CustomSOAPProvider extends oracle.adfinternal.model.adapter.webservice.provider.soap.SOAPProvider{ public CustomSOAPProvider() { super(); } public void handleRequest(SOAPMessage soapMessage) throws AdapterException { MimeHeaders hd = soapMessage.getMimeHeaders(); hd.addHeader("[header1]", "[header1value]"); hd.addHeader("[header2]", "[header2value]"); super.handleRequest(soapMessage); } public void handleResponse(SOAPMessage soapMessage) throws AdapterException { super.handleResponse(soapMessage); } }