The Incident Archive

Ok so a bit of background the following is our project stucture and all works well between applications that are deployed on one weblogic server they share sessions and user principals and roles. This setup allows us seperate jazn files across projects and to keep everything contained. Our base application is common which contains a set of projects for view, model, and common java code Common >     LoginModule (JAAS stuff)     Common (java code)     Model (company wide common model components)     View (company wide common model components) Shared Model     Model (All common lov, eo, vo files used across projects : NO Application Modules here) Various applications deployed as ears like finance, reports etc that contain Model and View projects   Home - this is the glue that binds all our applications together in a single menu etc it has NO dependacies on the other ear applications.   View...

Note: using basic authentication on external system. This leaves you open to XSS attacks SO TAKE NOTE, it is not for production code without modification. This little bit of javascript although insecure (but you can work with this) can give you single sign on like behaviour (if the site you are calling is using Basic Auth) using the XMLHttpRequest object. For the ADF stuff deployed on weblogic using the same realm this is not really a problem. function createRequest() {   if (typeof XMLHttpRequest != 'undefined') {     return new XMLHttpRequest();   }   try {     return new ActiveXObject("Msxml2.XMLHTTP");   }   catch (e) {     try {       return new ActiveXObject("Microsoft.XMLHTTP");     }     catch (e) {     }   }   return false; } function performRedirect() {   xmlhttp = createRequest();   xmlhttp.op...