Restrict access to connection pool in Weblogic?

Posted by Andrew White on Stack Overflow See other posts from Stack Overflow or by Andrew White
Published on 2010-02-22T16:28:18Z Indexed on 2010/03/27 5:03 UTC
Read the original article Hit count: 434

Filed under:

weblogic

|

jdbc

|

pool

|

authz

In short, how can I restrict access to connection pool X based on application name or JAR name? A simple use case might help...

A business web-app (call it WEB_APP_A) uses pool Y to do basic look-up SQL. Some users of this web-app have access to also update some sensitive data in the database. This code is provided by a JAR file (call it HR_JAR) that can be dropped in where needed. This JAR uses pool X for all of it's connections.

We don't want developers of WEB_APP_A using pool X. We only want HR_JAR using pool X. This is to keep devs of WEB_APP_A from accidentally or intentionally abusing the access pool X provides.

Some considerations:

This is legacy code so HR_JAR is here to stay
We are running on Weblogic 9.2
We can not keep passwords in any from in the source code
We have researched weblogic user level authn/authz for JDBC resources but then this begs the question; how do we secure the user creds we use to become a user per app/jar?

Ideas? Thoughts? I can elaborate more on what I have tried, but I wanted fresh ideas.

© Stack Overflow or respective owner

Related posts about weblogic

????·???????! ?WebLogic Scripting Tool????WebLogic Server???/???????|WebLogic Channel|??????

as seen on Oracle Blogs - Search for 'Oracle Blogs'
Web???????????/?????????????????????????????????????????????? ??????????????????????????????????????????????????????????????????????????????WebLogic Server?????????????????WebLogic Scripting Tool??????????2011?11????????Oracle DAB & Developers Days 2011?????????????????????????!WebLogic Scripting… >>> More
??·???|WebLogic Channel|??????

as seen on Oracle Blogs - Search for 'Oracle Blogs'
Java?????????????????????Oracle WebLogic ??????????????????????????WebLogic?????????????????????????WebLogic????????????????????????????????????????????JPA 2?EJB 3.1?JSF 2????????! WebLogic Server 12c?????????Java EE 6?????? [ 2012/05/22 ]???????????! Java EE 6???????????????/???????!!――… >>> More
???????Java EE??????WebLogic Server 12c??????3???????Oracle WebLogic Server 12c Forum?????|WebLogic Channel|??????

as seen on Oracle Blogs - Search for 'Oracle Blogs'
???????2012?2?7??Java EE??????????·???????Oracle WebLogic Server 12c?????????????????????1?25????????????Oracle WebLogic Server 12c Forum - ????????Java??????????? -????Java EE 6?Java SE 7???????Java???????WebLogic Server 12c?????????????????·?????????????????????3??????????????????????(???)?Java… >>> More
Weblogic JMS System Error

as seen on Stack Overflow - Search for 'Stack Overflow'
We're getting a JMS error which we don't have a lot to go with: org.springframework.jms.UncategorizedJmsException: Uncategorized exception occured during JMS processing; nested exception is weblogic.jms.common.JMSException:[JMSClientExceptions:055039] A system error has occurred. The… >>> More
OTN Virtual Developer Day for WebLogic Server and WebLogic Developer Broadcasts

as seen on Oracle Blogs - Search for 'Oracle Blogs'
To further move the new year of 2011 underway for WebLogic Server, quite a series of hands on technical online events and broadcasts are about to get underway from the WebLogic team. The first is Virtual Developer Day: Oracle WebLogic Server which is an online event that combines hands on labs with… >>> More

Related posts about jdbc

JDBC: What is the correct JDBC URL to connect to a RAC database

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi, We were connecting to Oracle from our code with a simple (custom) JDBC connector class. This class reads the connection properties from a resource file and tries to make a connection to Oracle (thin connection). However, recently the database have moved to a RAC and now the application is unable… >>> More
JDBC Licensing - Packaging jdbc in jar

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi there. I'm packaging my open-source non-commercial java application in a .jar and I'd like to package the JDBC mysql-connector with it as it is a dependency. The issue that I am having is that I'm uncertain whether or not this is frowned upon or even illegal due to the JDBC license. I've also… >>> More
jdbc:jtds:sqlserver driver problem

as seen on Stack Overflow - Search for 'Stack Overflow'
sonar.jdbc.url: jdbc:jtds:sqlserver://127.0.0.1/SQL2008:1433/Sonar sonar.jdbc.driverClassName: net.sourceforge.jtds.jdbc.Driver sonar.jdbc.validationQuery: select 1 sonar.jdbc.username: Sonar sonar.jdbc.password: … >>> More
Memory Leak Issue in Weblogic, SUN, Apache and Oracle classes Options

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi All, Please find below the description of memory leaks issues. Statistics show major growth in the perm area (static classes). Flows were ran for 8 hours , Heap dump was taken after 2 hours and at the end. A growth in Perm area was identified Statistics show from our last run 240MB growth… >>> More
?????????????????????????|WebLogic Channel|??????

as seen on Oracle Blogs - Search for 'Oracle Blogs'
Java EE????????·????????????????/??????????????????????·?????????????????????????WebLogic Server?????????????WebLogic Server???????????????????·??????????????????????????????????????????????????????????(???)???????WebLogic Server???????　????WebLogic Server 11g(10.3.5)??????????????????????… >>> More