Focal Point Banner


As of December 1, 2020, Focal Point is retired and repurposed as a reference repository. We value the wealth of knowledge that's been shared here over the years. You'll continue to have access to this treasure trove of knowledge, for search purposes only.

Join the TIBCO Community
TIBCO Community is a collaborative space for users to share knowledge and support one another in making the best use of TIBCO products and services. There are several TIBCO WebFOCUS resources in the community.

  • From the Home page, select Predict: WebFOCUS to view articles, questions, and trending articles.
  • Select Products from the top navigation bar, scroll, and then select the TIBCO WebFOCUS product page to view product overview, articles, and discussions.
  • Request access to the private WebFOCUS User Group (login required) to network with fellow members.

Former myibi community members should have received an email on 8/3/22 to activate their user accounts to join the community. Check your Spam folder for the email. Please get in touch with us at community@tibco.com for further assistance. Reference the community FAQ to learn more about the community.


Focal Point    Focal Point Forums  Hop To Forum Categories  WebFOCUS/FOCUS Forum on Focal Point     [CASE-OPENED]How to prevent URL Sharing (redirect URL)

Read-Only Read-Only Topic
Go
Search
Notify
Tools
[CASE-OPENED]How to prevent URL Sharing (redirect URL)
 Login/Join
 
Master
posted
Hi,

We are using On-Demand Pagination for our HTML report outputs and few reports in PDF.

WebFOCUS generates below URL as it changes the URL due to redirection.

https://webserver/ibi_apps/WFS....htm&vcp_need_close=

I tried with IBIWF_redirect to LEN - but still it creates redirection URL..
Also tried to change EXPIRE_REPORTS and _TempFileTimeout to 1. But with that pagination was not working as expected.

When a different user access this URL, he is able to see the HTML report output.
But we need this to be avoided. Please let us know if this can be achieved.

Version: WF 8005(both server/client)

Thanks,
Ram

This message has been edited. Last edited by: Ram Prasad E,
 
Posts: 542 | Location: Dearborn, MI | Registered: June 03, 2009Report This Post
Master
posted Hide Post
Hi,

I found REDIRECT_COOKIE until 7705 to solve this issue. But in WF 8, I do not see any setting of this functionality.

I tried with both IBIWF_redirect=NEVER and IBIWF_redirect=LEN. But when I share the URL of PDF/HTML report and other user was able to see those reports from server cache.


Thanks,
Ram
 
Posts: 542 | Location: Dearborn, MI | Registered: June 03, 2009Report This Post
<Kathryn Henning>
posted
Hi Ram,

I found one reference to REDIRECT_COOKIE in the WebFOCUS Security and Administration Manual Release 8.0 Version 05 which says "You should set WF_ENCRYPT_USER to YES and set REDIRECT_COOKIE to ON so that all cookies are encrypted." I also see #REDIRECT_COOKIE=ON
in the WebFOCUS 8 cgivars.wfs file, but I don't see this as a configurable option.

Since it's difficult to diagnose a security issue like this in a forum like this, would you please open a case on InfoResponse Online so that one of our WebFOCUS 8 security specialists can review this?

Thanks and regards,

Kathryn
 
Report This Post
Master
posted Hide Post
Hi Kathryn,

Thanks for sharing the details. I have raised a case for this issue.

-Ram
 
Posts: 542 | Location: Dearborn, MI | Registered: June 03, 2009Report This Post
  Powered by Social Strata  

Read-Only Read-Only Topic

Focal Point    Focal Point Forums  Hop To Forum Categories  WebFOCUS/FOCUS Forum on Focal Point     [CASE-OPENED]How to prevent URL Sharing (redirect URL)

Copyright © 1996-2020 Information Builders