As of December 1, 2020, Focal Point is retired and repurposed as a reference repository. We value the wealth of knowledge that's been shared here over the years. You'll continue to have access to this treasure trove of knowledge, for search purposes only.
Join the TIBCO Community TIBCO Community is a collaborative space for users to share knowledge and support one another in making the best use of TIBCO products and services. There are several TIBCO WebFOCUS resources in the community.
From the Home page, select Predict: WebFOCUS to view articles, questions, and trending articles.
Select Products from the top navigation bar, scroll, and then select the TIBCO WebFOCUS product page to view product overview, articles, and discussions.
Request access to the private WebFOCUS User Group (login required) to network with fellow members.
Former myibi community members should have received an email on 8/3/22 to activate their user accounts to join the community. Check your Spam folder for the email. Please get in touch with us at community@tibco.com for further assistance. Reference the community FAQ to learn more about the community.
That's exactly what I'm trying to avoid. In theory someone could forge the call, though in reality the chances of that in this current situation are just this side of absolute zero.
J.
Posts: 1012 | Location: At the Mast | Registered: May 17, 2007
My goal is to retrieve the MRE userid in Maintain so that it will be more difficult to forge. Passing it in the url or in the cookie on the MNTCON call is a bit of a gap in security. If the running Maintain could retrieve it once running . . . harder to fake the value in the database records.
Given the scope of the application this likely would never be an issue, but I'd like to close the discussion before it opens.
J.
Posts: 1012 | Location: At the Mast | Registered: May 17, 2007
I'd really just like to be able to request the MR User ID from Maintain. If the answer is no then that's fine. I can get it from WF so it's available. I just don't know if Maintain can get it.
J.
Posts: 1012 | Location: At the Mast | Registered: May 17, 2007
You could EXEC a focexec and grab the value of &IBIMR_user, and pass it back to your maintain. But since the focexec is running in a different agent, I'm not sure if you'll get the correct value.
Wow -- my wingman JL Chang just brought that same idea to my attention right now. Execute a focexec where the &IBIMR_user is embedded into a DEFINE field. This allows the Maintain file calling it to establish the userid completely separately from the parameters sent by the unit that is calling it. It also ensures that the MR session is still up and running.
NOT Working. Jeeze. Why is this so damn hard?
J.This message has been edited. Last edited by: John_Edwards,
Posts: 1012 | Location: At the Mast | Registered: May 17, 2007
Using EXEC will not work, as it just executes another agent session. It would have to be a Web call to have a chance at getting the MR User.
Because you do not want to pass the MR User to maintain, I can only suggest one option.
If you can pass the MRE session id during the login to MRE, and store it with the MR User, you may be able to send the MRE session id to maintain, then retrieve the ID.
Just trying to add to the confusion ... Isn't the MRE Userid just an HTTP variable? If so, then I think you might be able to use a maintain function to retrieve this variable from the http environment. Just can't seem to recall what the function is named...
GamP
- Using AS 8.2.01 on Windows 10 - IE11.
in Focus since 1988
Posts: 1961 | Location: Netherlands | Registered: September 25, 2007
What I recently discovered was that IWC.GetAppCgiValue will collect cookie values from WF_USER. These are values held in the WF_USER cookie and not passed in the form or URL calling the Maintain.
John, don't beat yourself. This is not a documented ability.
Alan. WF 7.705/8.007
Posts: 1451 | Location: Portugal | Registered: February 07, 2007
Yes Alan, you're right. If it was a non-cookie variable, you could just as easily have used the gethtmlfield function to retrieve the value. But that will not return the value, since it is not a 'normal' html variable, but a cookie one.
quote:
I need to take myself out back for a beating
ROFL!
GamP
- Using AS 8.2.01 on Windows 10 - IE11.
in Focus since 1988
Posts: 1961 | Location: Netherlands | Registered: September 25, 2007
Focal Point Forums 
