My Oracle Support Banner

Unable To Define Complex Security For Crawling Through SES A Custom Component Exposed By Spaces (Doc ID 1521288.1)

Last updated on APRIL 28, 2021

Applies to:

Oracle WebCenter Portal - Version to [Release 11g]
Information in this document applies to any platform.


An extension is being developed for Oracle WebCenter in order to create a new custom component.

A custom taskflow has been deployed for WebCenter Spaces.

This custom taskflow deals with PDF documents that are stored within Oracle Content Server where security is defined by mean of LDAP groups and, eventually, ACLs.

However information on who can access each resource is stored also on a database.

For instance all crawlable information is retrieved from the db and set in the custom service exposed for crawling. Following is the custom attribute map defined for this service:

Map> attributesMap = new HashMap>();
List flyerIds = getFlyersIds();
List flyerTitles = getFlyersTitles();
List flyerFilenames = getFlyersFilenames();
Map attributes = new HashMap();
String flyerId = flyerIds.get(i);
attributes.put("Title", flyerTitles.get(i));
attributes.put("Filename", flyerFilenames.get(i));
attributes.put("Stores", getFlyerStores(flyerId));
attributes.put("Focuses", getFlyerFocuses(flyerId));
attributes.put("Channels", getFlyerChannels(flyerId));
attributes.put("Signs", getFlyerSigns(flyerId));
attributesMap.put(flyerId, attributes);

This now needs to be integrated with the search service (SES).
The procedure is described in Using Spaces Extension Samples on page 34.

Everything has been accomplished except setting the security options on the crawler for the custom component.
E.g. the code was customized in the Samples Workspace.
The last row was set to security anonymous.

Is it possible to define a more complex security system made of specifications on groups and users retrieved from an LDAP?
There is the AUTH_CUSTOM option, but how can you use it for setting group and user level security?

So the question is how to configure the security in order to meet the visibility requirements of this custom taskflow.
Does it have to be done through the AUTH_CUSTOM option or is there another procedure for doing it? If it is the latter, is there any guide on how to do this?


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.