on 09-11-2012 1:58 PM
Hello experts,
We want only webdynpro for java application of our portal to be viewed via internet and al the other content within irj/portal to be used only by our internal users.
Is there any way by which we can achieve this.
Thanks and Regards,
Vivek
Vivek for this you need to create 2 separate role,,
Role 1- For internal usres
Role 2 - For external users
Create 2 separate desktops...which I believe must exist in your case....
Desktop1 for internal users
Desktop2 for external users
Specify rules in main rule section to load desktop2 when external users access portal...you can use URL alias for the same....
Now use desktop filtering feature of EP to map your Role 2 with Desktop2...
Thus whenever user access portal from internet, desktop2 will be loaded and because of mapping he will only be able to see Role 2.....which will contain your WDJava iviews.
Assign both roles to a user....
Now when he access portal from intranet....Desktop1 is loaded...and thus Role 1 is only displayed due to desktop filtering feature.....
when he access from internet.....Desktop2 is loaded and thus Role 2 is only displayed due to desktop filtering feature.....
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I guess this will not work in my case. Let me explain in detail. Our client have an internal portal for their employees.In the same server we have made an application which need to be accessed by external customer. There is no i-view for this. They access that application through the link http://host:port/webdynpro/dispatcher/xxx.com/abc/abcApp
Now we need to restrict these external customers to open http://host:port/irj/portal.
Thanks and Regards,
Vivek
Hi Anja,
We tried to allow only the url http://host:port/webdynpro/dispatcher/xxx.com/abc/abcApp for external access but we could not able to logged in to the portal. It always redirect to the login page.It would be great if you explain in detail how to rstrict external access by proxy.
Regards,
Vivek Saraogi
Hi Vivek,
You should use the Web Dispatcher for this and place it in your DMZ. In the web dispatcher you can specify which url's are allowed to be accessed. You should then also allow the login page to be accessed through the web dispatcher.
In your configuration you can add the following line:
icm/HTTP/auth_0 = PREFIX=/,PERMFILE=permissions.txt
in the permissions.txt you can specify which url's are allowed and which are not:
#P/D/S <URI pattern> <USER> <GROUP> <CLIENT IP> <SERVER IP>
P /irj/* * * * *
kind regards
Ted
My problem is solved by using the proxy to restrict external access.The problem was that when we were using IP(192.168.xxx.xxx) instead of host name we could not able to login but after using host name(xxx.xxx.com) it worked. Thanks all of you.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
What is your ultimate goal behind this requirement ? Can you give more details?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
83 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.