| 目次|索引 |   |
| Oracle Business Intelligence Enterprise Editionデプロイメント・ガイド > Directory Integration Platform(DIP)によるプロビジョニングを行うためのファイルのサポートこの付録では、Directory Integration Platform(DIP)によるOracle BIのプロビジョニングを設定するために使用される次のファイルについて説明します。 このプロビジョニング設定は、「Oracle Internet DirectoryとOracle Business Intelligenceとの統合」に記載されています。 注意: これらのファイルの内容はサンプルです。使用する前に、これらのファイルを確認し、実際の環境に基づいて変更してください。 参照:$host: OIDとDIPがインストールされているマシンのホスト名です。 $passwd: スーパーユーザーorcladminのパスワードです。 $db_host: プロビジョニングが実行されるOracleデータベース・サーバーのホスト名です。 $connect: Oracle SID(ディレクトリ・データベース接続文字列またはtnsnames.oraのネット・サービス名)です。 $db_userpassword: DBユーザーのパスワードです。 ADD(*): 新しいエントリをOIDに追加するときにDIPを介してプロビジョニングする属性です。アスタリスク(*)を使用してすべての属性を指定するか、必要な属性のリストを指定します。 Uspapp.datの内容:dn: cn=DUMMYAPP,cn=Products,cn=OracleContext dn: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext objectclass: orclApplicationEntity orclapplicationcommonname: DummyappOnline orclappfullname: Oracle Dummyapp Online description: This is a test Appliction instance protocolInformation: Dummy Information orclaci: access to entry by group="cn=odisgroup,cn=DIPAdmins,cn=Directory Integration Platform,cn=Products,cn=Oraclecontext" (browse,pr oxy) by group="cn=User Provisioning Admins,cn=Groups,cn=OracleContext" (add,delete,browse) orclaci: access to attr=(*) by group="cn=User Provisioning Admins,cn=Groups,cn=OracleContext" (search,read,write,compare) dn: cn=User Properties,orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext appriv.datの内容:dn: cn=OracleDASCreateUser,cn=Groups,cn=OracleContext uniquemember: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext dn: cn=OracleDASDeleteUser,cn=Groups,cn=OracleContext uniquemember: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext dn: cn=OracleDASEditUser,cn=Groups,cn=OracleContext uniquemember: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext dn: cn=OracleDASCreateGroup,cn=Groups,cn=OracleContext uniquemember: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext dn: cn=OracleDASDeleteGroup,cn=Groups,cn=OracleContext uniquemember: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext dn: cn=OracleDASEditGroup,cn=Groups,cn=OracleContext uniquemember: orclApplicationCommonName=DummyappOnline,cn=DUMMYAPP,cn=Products,cn=OracleContext ldap_ntfy_30.sqlの内容:Rem Rem Rem NAME Rem Rem Rem DROP TABLE APP_TO_OID_EVENT_MASTER ; DROP TABLE APP_TO_OID_EVENT_DETAILS ; DROP TABLE APP_TO_OID_EVENT_STATUS; DROP TABLE OID_TO_APP_RECEIVED_EVENTS ; DROP TABLE OID_TO_APP_EVENTS_COUNT ; DROP TABLE OID_PROV_PARAMS_STATUS ; REM This is the Table For the Canned Data To be Propagated From APP to OID REM Used only for INBOUND profiles CREATE TABLE APP_TO_OID_EVENT_MASTER ( EVENT_ID NUMBER, -- Numeric Event Identifier EVENT_TYPE VARCHAR2(32), -- Type of Event like SUBSCRIPTION_ADD EVENT_SRC VARCHAR2(1024), -- Modifier's Name.Used only from OID OBJECT_NAME VARCHAR2(1024), -- Used only in Events from OID OBJECT_GUID VARCHAR2(32), -- Unique Global Identifier OBJECT_DN VARCHAR2(1024), -- Used only in Events from OID OBJECT_TYPE VARCHAR2(32), -- Type Of Object.App specific PROFILE_ID VARCHAR2(256), -- Used only in Events from OID DESCRIPTION VARCHAR2(256)) -- Description CREATE UNIQUE INDEX APP_TO_OID_EVENT_MASTER_I ON APP_TO_OID_EVENT_MASTER (EVENT_ID) REM This is the Table For the Canned Data To be Propagated From APP to OID REM This contains the event details.Used only for INBOUND profiles CREATE TABLE APP_TO_OID_EVENT_DETAILS ( EVENT_ID NUMBER, -- Foreign Key REM This is the Table used to put the STATUS events received from DIP REM Used only for INBOUND profiles CREATE TABLE APP_TO_OID_EVENT_STATUS ( EVENT_STATUS_MSG VARCHAR2(1024), REM This is the Table used to put the EVENTS received from DIP. REM Used only for OUTBOUND profiles CREATE TABLE OID_TO_APP_RECEIVED_EVENTS( CREATE TABLE OID_TO_APP_EVENTS_COUNT( CREATE TABLE OID_PROV_PARAMS_STATUS( LAST_EVENT_PROCESSED_BY_OID NUMBER, --Used to keep track of INBOUND sync LAST_EVENT_PROCESSED_BY_APP NUMBER, --Used to keep track of OUTBOUND sync EVENT_BATCH_SIZE NUMBER, -- These packages uses this to simulate bulk -- events for INBOUND profiles.Should match ENCRYPTION_KEY VARCHAR2(32)) -- Used to encrypt/decrypt data. -- Should match with what is in the profile. INSERT INTO OID_PROV_PARAMS_STATUS VALUES (0,0,'1','ABCDDCBA') CREATE SEQUENCE PROV_TEST_DBG START WITH 1; CREATE TABLE OID_PROV_DEBUG_LOG( ldap_ntfy_30.pksの内容:-- The PL/SQL Interface Specification for interface version 3.0 -- The OID 9.0.2 used the interface version # 1.1 -- The OID 9.0.4 used the interface version # 2.0 -- The OID 9.0.?(OCSr3) will use the interface version # 3.0 DROP TYPE LDAP_EVENT_STATUS_LIST_V3; DROP TYPE LDAP_EVENT_STATUS_V3; DROP TYPE LDAP_ATTR_VALUE_LIST_V3; CREATE TYPE LDAP_ATTR_VALUE_V3 AS OBJECT ( GRANT EXECUTE ON LDAP_ATTR_VALUE_V3 to public; CREATE TYPE LDAP_ATTR_VALUE_LIST_V3 AS TABLE OF LDAP_ATTR_VALUE_V3; GRANT EXECUTE ON LDAP_ATTR_VALUE_LIST_V3 to public; CREATE TYPE LDAP_ATTR_V3 AS OBJECT ( attr_values LDAP_ATTR_VALUE_LIST_V3 GRANT EXECUTE ON LDAP_ATTR_V3 to public; CREATE TYPE LDAP_ATTR_LIST_V3 AS TABLE OF LDAP_ATTR_V3; GRANT EXECUTE ON LDAP_ATTR_LIST_V3 to public; CREATE TYPE LDAP_EVENT_V3 AS OBJECT ( attr_list LDAP_ATTR_LIST_V3 ) ; GRANT EXECUTE ON LDAP_EVENT_V3 to public; CREATE TYPE LDAP_EVENT_LIST_V3 AS TABLE OF LDAP_EVENT_V3; GRANT EXECUTE ON LDAP_EVENT_LIST_V3 to public; CREATE TYPE LDAP_EVENT_STATUS_V3 AS OBJECT ( event_status_msg VARCHAR2(2048), GRANT EXECUTE ON LDAP_EVENT_STATUS_V3 to public; CREATE TYPE LDAP_EVENT_STATUS_LIST_V3 AS TABLE OF LDAP_EVENT_STATUS_V3; GRANT EXECUTE ON LDAP_EVENT_STATUS_LIST_V3 to public; -- A Test Package.The name of the package is configurable.The the procedure -- definitions are interface spec. compliant. CREATE OR REPLACE PACKAGE PRASA_LDAP_NTFY AS ENTRY_ADD CONSTANT VARCHAR2(32) := 'ENTRY_ADD'; ENTRY_DELETE CONSTANT VARCHAR2(32) := 'ENTRY_DELETE'; ENTRY_MODIFY CONSTANT VARCHAR2(32) := 'ENTRY_MODIFY'; USER_ADD CONSTANT VARCHAR2(32) := 'USER_ADD'; USER_DELETE CONSTANT VARCHAR2(32) := 'USER_DELETE'; USER_MODIFY CONSTANT VARCHAR2(32) := 'USER_MODIFY'; IDENTITY_ADD CONSTANT VARCHAR2(32) := 'IDENTITY_ADD'; IDENTITY_DELETE CONSTANT VARCHAR2(32) := 'IDENTITY_DELETE'; IDENTITY_MODIFY CONSTANT VARCHAR2(32) := 'IDENTITY_MODIFY'; GROUP_ADD CONSTANT VARCHAR2(32) := 'GROUP_ADD'; GROUP_DELETE CONSTANT VARCHAR2(32) := 'GROUP_DELETE'; GROUP_MODIFY CONSTANT VARCHAR2(32) := 'GROUP_MODIFY'; SUBSCRIPTION_ADD CONSTANT VARCHAR2(32) := 'SUBSCRIPTION_ADD'; SUBSCRIPTION_DELETE CONSTANT VARCHAR2(32) := 'SUBSCRIPTION_DELETE'; SUBSCRIPTION_MODIFY CONSTANT VARCHAR2(32) := 'SUBSCRIPTION_MODIFY'; SUBSCRIBER_ADD CONSTANT VARCHAR2(32) := 'SUBSCRIBER_ADD'; SUBSCRIBER_DELETE CONSTANT VARCHAR2(32) := 'SUBSCRIBER_DELETE'; SUBSCRIBER_MODIFY CONSTANT VARCHAR2(32) := 'SUBSCRIBER_MODIFY'; -- The Attribute Modification Type ATTR_TYPE_STRING CONSTANT NUMBER := 0; ATTR_TYPE_BINARY CONSTANT NUMBER := 1; ATTR_TYPE_ENCRYPTED_STRING CONSTANT NUMBER := 2; ATTR_TYPE_DATE_STRING CONSTANT NUMBER := 3; -- The Attribute Modification Type MOD_DELETE CONSTANT NUMBER := 1; MOD_REPLACE CONSTANT NUMBER := 2; -- The Event dispostions constants EVENT_SUCCESS CONSTANT VARCHAR2(32) := 'EVENT_SUCCESS'; EVENT_ERROR_IGNORE CONSTANT VARCHAR2(32) := 'EVENT_ERROR_IGNORE'; EVENT_ERROR_RESEND CONSTANT VARCHAR2(32) := 'EVENT_ERROR_RESEND'; EVENT_ERROR_FATAL CONSTANT VARCHAR2(32) := 'EVENT_ERROR_FATAL'; -- PUTOIDEVENTS : DIP Server invokes this API in the remote Database to -- propagate a bunch of events to the application. -- DIP server expects an event_status_list object in response as an OUT -- parameter.If valid event status object is not sent back or it -- indicates a RESEND, DIP server will keep resending from that event PROCEDURE PutOIDEvents (event_list IN LDAP_EVENT_LIST_V3, event_status_list OUT LDAP_EVENT_STATUS_LIST_V3); -- GETAPPEVENT : DIP Server invokes this API in the remote Database. -- It is up to the appliction to respond with an event list -- Once DIP gets the event , it processes the event and sends the status -- The return value indicates whether any more event is returned or not. FUNCTION GetAppEvents (event_list OUT LDAP_EVENT_LIST_V3) EVENT_FOUND CONSTANT NUMBER := 0; EVENT_NOT_FOUND CONSTANT NUMBER := 1403; PROCEDURE PutAppEventStatus (event_status_list IN LDAP_EVENT_STATUS_LIST_V3); FUNCTION Decrypt(inputStr IN VARCHAR2) RETURN VARCHAR2; PROCEDURE LogTrace(inputStr IN VARCHAR2) ; ldap_ntfy_30.pkbの内容:CREATE OR REPLACE PACKAGE BODY PRASA_LDAP_NTFY AS -- ========================================================================== PROCEDURE LogTrace(inputStr IN VARCHAR2) INSERT INTO OID_PROV_DEBUG_LOG VALUES (PROV_TEST_DBG.NEXTVAL,inputStr); DBMS_OUTPUT.PUT_LINE(inputStr); -- ========================================================================== FUNCTION Encrypt(inputStr IN VARCHAR2) SELECT ENCRYPTION_KEY INTO key FROM OID_PROV_PARAMS_STATUS; inputStrLen := LENGTH(inputStr); paddingRqd := 8 - (MOD(inputStrLen,8)); IF (paddingRqd = 0 OR paddingRqd = 8) inputStrCopy := RPAD(inputStr,inputStrLen+paddingRqd); LogTrace('Padding :' || paddingRqd); outputStr := RAWTOHEX(UTL_RAW.CAST_TO_RAW(DBMS_OBFUSCATION_TOOLKIT.DESENCRYPT(INPUT_STRING = inputS LogTrace('Encrypted Value :(' || outputStr || ')' ); -- ========================================================================== FUNCTION Decrypt(inputStr IN VARCHAR2) SELECT ENCRYPTION_KEY INTO key FROM OID_PROV_PARAMS_STATUS; outputStr := DBMS_OBFUSCATION_TOOLKIT.DESDECRYPT(INPUT_STRING = UTL_RAW.CAST_TO_RAW(HEXTORAW(inputS LogTrace('Decrypted Value :(' || outputStr || ')' ); -- ========================================================================== FUNCTION GetAppEvents (event_list OUT LDAP_EVENT_LIST_V3) attr_value_list LDAP_ATTR_VALUE_LIST_V3; CURSOR c_EVTS(StartNum IN NUMBER) IS CURSOR c_EVT_DTLS (EVENTID IN NUMBER) IS ORDER BY ATTR_NAME,ATTR_MOD_OP; v_EVENT_ID APP_TO_OID_EVENT_MASTER.EVENT_ID%TYPE; v_EVENT_TYPE APP_TO_OID_EVENT_MASTER.EVENT_TYPE%TYPE; v_EVENT_SRC APP_TO_OID_EVENT_MASTER.EVENT_SRC%TYPE; v_OBJECT_NAME APP_TO_OID_EVENT_MASTER.OBJECT_NAME%TYPE; v_OBJECT_TYPE APP_TO_OID_EVENT_MASTER.OBJECT_NAME%TYPE; v_OBJECT_GUID APP_TO_OID_EVENT_MASTER.OBJECT_TYPE%TYPE; v_OBJECT_DN APP_TO_OID_EVENT_MASTER.OBJECT_DN%TYPE; v_PROFILE_ID APP_TO_OID_EVENT_MASTER.PROFILE_ID%TYPE; v_DESCRIPTION APP_TO_OID_EVENT_MASTER.DESCRIPTION%TYPE; v_ATTR_NAME APP_TO_OID_EVENT_DETAILS.ATTR_NAME%TYPE; v_ATTR_TYPE APP_TO_OID_EVENT_DETAILS.ATTR_TYPE%TYPE; v_ATTR_VALUE APP_TO_OID_EVENT_DETAILS.ATTR_VALUE%TYPE; v_ATTR_MOD_OP APP_TO_OID_EVENT_DETAILS.ATTR_MOD_OP%TYPE; curAttrName APP_TO_OID_EVENT_DETAILS.ATTR_NAME%TYPE := '%APPNAME%'; curAttrType APP_TO_OID_EVENT_DETAILS.ATTR_TYPE%TYPE := 0 ; curAttrModOp APP_TO_OID_EVENT_DETAILS.ATTR_MOD_OP%TYPE := 0; LogTrace('New Call to GetApp Events....'); attr_list := LDAP_ATTR_LIST_V3 (); attr_value_list := LDAP_ATTR_VALUE_LIST_V3 (); event_list := LDAP_EVENT_LIST_V3(); SELECT NVL(LAST_EVENT_PROCESSED_BY_OID,0) saveStartID := LastEventProcByOID; SELECT NVL(EVENT_BATCH_SIZE,1) LogTrace('Getting ' || batchSize || ' Events From ID : ' OPEN c_EVTS(LastEventProcByOID); LogTrace('Opened c_EVTS Cursor'); FETCH c_EVTS INTO v_EVENT_ID,v_EVENT_TYPE,v_EVENT_SRC, v_OBJECT_NAME,v_OBJECT_TYPE,v_OBJECT_GUID, v_OBJECT_DN,v_PROFILE_ID,v_DESCRIPTION; LogTrace('Got Event ID: ' || v_EVENT_ID); LogTrace('Opened c_EVT_DTLS Cursor'); curAttrName := 'FIRST_ATTR_TAG'; FETCH c_EVT_DTLS INTO v_ATTR_NAME,v_ATTR_TYPE, EXIT WHEN c_EVT_DTLS%NOTFOUND; LogTrace('Fetched Attribute : ' || v_ATTR_NAME); IF (v_ATTR_TYPE = PRASA_LDAP_NTFY.ATTR_TYPE_ENCRYPTED_STRING) LogTrace('Encrypting Attribute: ' || v_ATTR_NAME); v_ATTR_BVALUE := Encrypt(v_ATTR_VALUE); v_ATTR_VALUE := Encrypt(v_ATTR_VALUE); IF (curAttrName != 'FIRST_ATTR_TAG') -- Not the First row being fetched IF (curAttrName != v_ATTR_NAME) -- New Attribute Encountered.Need to store the existing values -- for the previous attribute and start a new one. LogTrace('Added attr :' || curAttrName); attr_value_list(attr_value_idx) := LDAP_ATTR_VALUE_V3 (v_ATTR_VALUE, attr_value_idx := attr_value_idx+1; LogTrace('Added Value to attr :' || v_ATTR_NAME); curAttrModOp := v_ATTR_MOD_OP; LogTrace('curAttrName:' || v_ATTR_NAME); LogTrace('Fetched All Attributes for Event : ' || v_EVENT_ID); LogTrace('Added Last attr :' || curAttrName); attr_idx := attr_idx+1; -- Not Required attr_value_idx := 1; -- Not Required event_list(evt_idx) := LDAP_EVENT_V3( v_EVENT_TYPE, LogTrace('Constructed Event ' || evt_idx); LogTrace('Accumulated ' || evt_idx || ' Events.Exiting.'); LastEventSentByAPP := v_EVENT_ID; LogTrace('Out Of Outer Loop ' ); -- startEventID := saveStartID ; -- LogTrace(' Error code : ' || TO_CHAR(SQLCODE)); -- LogTrace(' Error Message : ' || SQLERRM); -- LogTrace(' Exception encountered .. exiting'); -- ========================================================================== PROCEDURE PutAppEventStatus (event_status_list IN LDAP_EVENT_STATUS_LIST_V3) IF (event_status_list IS NOT NULL) FOR idx in event_status_list.first .. event_status_list.last LOOP INSERT INTO APP_TO_OID_EVENT_STATUS VALUES ( event_status_list(idx).event_id, event_status_list(idx).event_status, event_status_list(idx).event_status_msg, event_status_list(idx).orclguid); UPDATE OID_PROV_PARAMS_STATUS SET LAST_EVENT_PROCESSED_BY_OID = TO_NUMBER(event_status_list(idx).event_id); LogTrace('Setting Event Success for :' || event_status_list(idx).event_id); -- ========================================================================== PROCEDURE PutOIDEvents ( event_list IN LDAP_EVENT_LIST_V3, event_status_list OUT LDAP_EVENT_STATUS_LIST_V3) event_status LDAP_EVENT_STATUS_V3; prasa_uid varchar2(40) := NULL; prasa_gid varchar2(40) := NULL; event_status_list := LDAP_EVENT_STATUS_LIST_V3(); FOR idx in event_list.first .. event_list.last LOOP IF ((event_list(idx).attr_list IS NULL) OR (event_list(idx).attr_list.count = 0)) INSERT INTO OID_TO_APP_RECEIVED_EVENTS(EVENT_TYPE, VALUES (event_list(idx).event_type, IF ( (event_list(idx).attr_list IS NOT NULL ) AND (event_list(idx).attr_list.count 0 ) ) FOR i in event_list(idx).attr_list.first .. event_list(idx).attr_list.last IF ( (event_list(idx).attr_list(i).attr_values IS NOT NULL ) AND (event_list(idx).attr_list(i).attr_values.count 0 ) -- prasa_uid varchar2(4000) := ''; FOR j in event_list(idx).attr_list(i).attr_values.first .. event_list(idx).attr_list(i).attr_values.last /* if (event_list(idx).attr_list(i).attr_name = 'cn') prasa_cn := event_list(idx).attr_list(i).attr_values(j).attr_value; elseif (event_list(idx).attr_list(i).attr_name = 'sn') prasa_sn := event_list(idx).attr_list(i).attr_values(j).attr_value; elseif (event_list(idx).attr_list(i).attr_name = 'uid') prasa_uid := event_list(idx).attr_list(i).attr_values(j).attr_value; if (event_list(idx).attr_list(i).attr_name = 'uid') prasa_uid := event_list(idx).attr_list(i).attr_values(j).attr_value; insert into sa_user(logon) values (event_list(idx).attr_list(i).attr_values(j).attr_value); elsif (event_list(idx).attr_list(i).attr_name = 'employeetype') prasa_gid := event_list(idx).attr_list(i).attr_values(j).attr_value; select count(*) into prasa_groupname from sa_group where group_name = prasa_gid; insert into sa_group values (event_list(idx).attr_list(i).attr_values(j).attr_value); if (prasa_uid is not null) and (prasa_gid is not null) insert into sa_user_group(logon,group_name) values (prasa_uid,prasa_gid); INSERT INTO OID_TO_APP_RECEIVED_EVENTS(EVENT_TYPE, VALUES (event_list(idx).event_type, event_list(idx).attr_list(i).attr_name, event_list(idx).attr_list(i).attr_values(j).attr_value, event_list(idx).attr_list(i).attr_values(j).attr_value_len, event_list(idx).attr_list(i).attr_mod_op); event_status_list(evt_sts_idx) := LDAP_EVENT_STATUS_V3( event_list(idx).event_id, SET LAST_EVENT_PROCESSED_BY_APP = TO_NUMBER(event_list(idx).event_id); INSERT INTO OID_TO_APP_EVENTS_COUNT(ID,EVENT_COUNT) -- ========================================================================== |
| |
| Oracle Business Intelligence Enterprise Editionデプロイメント・ガイド | Copyright © 2006, Oracle. All rights reserved. | |