Re: Reports Security info in url

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

papalphaus_at_yahoo.com wrote:
> We are running/displaying our reports from forms with a
> 'web.show_document' command. This brings up Adobe with the userid/
> password_at_instance name (expressed in hex) included in the url. When
> we then tell Adobe to email this report it puts the url with the
> userid_at_instance name in ASCII in the subject line of the email. Is
> there a way we can still generate the report without the user info and
> instance name being part of the url?
> Product information is:
> Built using:
> Forms [32 Bit] Version 10.1.2.0.2 (Production)
> Oracle9i Enterprise Edition Release 9.2.0.7.0 - Production
> With the Partitioning option
> JServer Release 9.2.0.7.0 - Production
> Oracle Toolkit Version 10.1.2.0.2 (Production)
> PL/SQL Version 10.1.0.4.2 (Production)
> Oracle Procedure Builder V10.1.2.0.2 - Production
>
>
> The actual command we are using is:
> web.show_document ('/reports/rwservlet?' || l_repurl, '_blank');
>
> Where the l_repurl variable equals= 'server=' || l_reportserver ||
> '+report=' || lv_report_path ||LOWER (p_repname) || '.rep'||
> '+destype=CACHE' || '+' || l_userid || '+paramform=no' ||
> '+desformat=PDF';
>
> And the l_userid variable contains the username/
> password_at_connect_string.
>
Yes - you can hide it - see docco/Metalink - it's been a while since I saw it, can't exactly tell where.

• -- Regards, Frank van Bortel

Top-posting is one way to shut me up...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (MingW32)

iD8DBQFGaabhLw8L4IAs830RAixsAJ9RPG8imK0zmfxEt8xvkW46p62eBQCePMWx MYoBF8jSEnYVahSFMwIbzRM=
=IDc/
-----END PGP SIGNATURE----- Received on Fri Jun 08 2007 - 20:58:41 CEST