tag:blogger.com,1999:blog-34020393.post2796556383762827347..comments2024-03-27T10:59:38.307-07:00Comments on Jim's PeopleSoft Journal: Going Mobile with PeopleSoftJim Marionhttp://www.blogger.com/profile/12995110203807924786noreply@blogger.comBlogger113125tag:blogger.com,1999:blog-34020393.post-21737745273400234152019-02-15T11:58:10.838-08:002019-02-15T11:58:10.838-08:00@Amando, regarding other tokens, options, and impl...@Amando, regarding other tokens, options, and implementation details, it is true that IB only gives a couple of options, but here is how we implement anything we want: First, we certainly want to enable a secure connection (SSL/TLS, etc). Second, any service operation can be set to public. A public setting doesn't mean every user will see data. It just means IB will invoke the service operation handler. Using PeopleCode, we can implement another layer of security to confirm the identity of the user. After validating, we SwitchUser to invoke CI's, code, etc, that a public user would not be able to access. Using this approach, of course, you must be extremely careful to ensure your code is written in a secure manner.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-61133090776045709092019-02-15T11:52:51.960-08:002019-02-15T11:52:51.960-08:00@Amado, I have seen customers use JWT and PS_TOKEN...@Amado, I have seen customers use JWT and PS_TOKEN as token-based solutions.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-44389616564233111322019-02-14T17:28:57.649-08:002019-02-14T17:28:57.649-08:00Hi Jim,
We have exposed some view and transnation...Hi Jim,<br /><br />We have exposed some view and transnational functionalities in our PS to 3rd Party (Mobile) using REST. Currently, we're using basic authentication and SSL for Application Layer Security. Is there a way we can implement token based request specifically for commercial impacting or payroll related transactions such as view payslip?.<br /><br />Thank you.Amado Dumpithttps://www.blogger.com/profile/09809862265216429071noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-23111159722605084262019-02-13T17:42:47.127-08:002019-02-13T17:42:47.127-08:00Hey Jim,
I'm following your PS Journal since ...Hey Jim,<br /><br />I'm following your PS Journal since then and I would like to say that the amount of information you have been providing is very helpful. <br /><br />We've recently deployed a project where PeopleSoft is the provider to a 3rd party mobile application using REST and currently, we are still looking ways to enhance the user experience and security of the data as we have exposed a view payslip functionality to the mobile. We only have a network layer security in place (Tunnel) and we are still exploring ways in implementing application layer security other than basic authentication and SSL as the options in PS. Would you be able to provide recommendation/s on other setups we can implement, we're leaning towards exploring OAuth or SAML though per OTN, this is not yet supported by our tools version (8.54).<br /><br />Appreciate you response on this one.Amado Dumpithttps://www.blogger.com/profile/09809862265216429071noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-61235503610707361412016-06-17T09:23:23.729-07:002016-06-17T09:23:23.729-07:00@ndgwva, I don't believe you can set CORS head...@ndgwva, I don't believe you can set CORS headers from PeopleSoft. You should ask on the PeopleSoft Genereal Discussion OTN forum just in case someone else figured it out. If it were me, I would use rules in the Apache conf to add CORS headers for specific URLs. You can also use a Weblogic ServletFilter if you need more logic, but if you can get away with just Apache conf, that is easiest to maintain and configure.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-91273741122219944562016-06-17T09:00:41.279-07:002016-06-17T09:00:41.279-07:00Sorry, I should of stated the server admin does no...Sorry, I should of stated the server admin does not wish to modify the Apache or WebLogic files on the PeopleSoft server. Just curious if there was a way to add these headers within PeopleSoft.ndgwvahttps://www.blogger.com/profile/12952795362803557787noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-91239614313987678392016-06-17T08:38:52.447-07:002016-06-17T08:38:52.447-07:00@ndgwva, I would have done it the exact same way. ...@ndgwva, I would have done it the exact same way. I am not aware of CORS support in 8.54... although, you may want to post your question in the OTN PeopleSoft General Discussion forum in case I missed something.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-35358022066146382442016-06-17T08:33:21.862-07:002016-06-17T08:33:21.862-07:00Hi Jim,
Thanks for all great information on develo...Hi Jim,<br />Thanks for all great information on developing mobile projects with PeopleSoft. Would you mind providing more information on the CORS issue with a PeopleSoft soap web service? Our mobile web app (based in Appcelerator) is subject to CORS and to get past this with other (non PS based web services), we've added the following in Apache on the web service's server:<br />Header: Access-Control-Allow-Origin Value: *<br />Header: Access-Control-Allow-Headers Value: X-Titanium-Id<br /><br />Could you please describe how this can be done for the PeopleSoft web service (based in 8.54)?<br />example endpoint of the PS web service: http://our.peoplesoft.server/PSIGW/PeopleSoftServiceListeningConnector<br /><br />ndgwvahttps://www.blogger.com/profile/12952795362803557787noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-38896758295492009952015-09-16T08:44:35.005-07:002015-09-16T08:44:35.005-07:00@Muthu, great question. You might want to ask it o...@Muthu, great question. You might want to ask it on the <a href="https://community.oracle.com/community/oracle-applications/peoplesoft_enterprise/peoplesoft_general_discussion" rel="nofollow">PeopleSoft OTN General Discussion forum</a>.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-70056505459611312212015-09-16T06:16:46.424-07:002015-09-16T06:16:46.424-07:00Hi Jim,
In PeopleTools 8.54, there is a delivered...Hi Jim,<br /><br />In PeopleTools 8.54, there is a delivered html file called "signin_fmode.html" for mobile signin page. I understand that the purpose of this new html is for having two different login pages for mobile and laptop devices and this html is displayed when we add an additional query string "&fmode=1" along with the signin URL. But my question is how can we render the respective html pages automatically based on the device used to login with single URL. Because we can't provide PeopleSoft users two different login URLs (one with fmode=1 and another one without it) for different devices. Is there any delivered approach/mechanism for handling this?Anonymoushttps://www.blogger.com/profile/06897829850466353989noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-35626607641712383382015-07-24T10:35:10.605-07:002015-07-24T10:35:10.605-07:00@Sachin, I have used JSONP with the HttpListeningC...@Sachin, I have used JSONP with the HttpListeningConnector, but not the RESTListeningConnector. With the HttpListeningConnector, you can use an XML result with a psnonxml attribute. PeopleSoft will strip the XML and just return the internal content.<br /><br />You can use CORS with a ServletFilter.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-46975781853930315302015-07-24T07:20:52.767-07:002015-07-24T07:20:52.767-07:00Hi Jim,
Thanks for sharing such valuable informat...Hi Jim,<br /><br />Thanks for sharing such valuable information as always .<br />I am having a scenario where we have exposed a REST service from peoplesoft 8.53 to third party site which uses ajax to call the WS , they are facing Cross domain issue when calling peoplesoft WS . i have used document to generate the JSON via REST . i believe JSONP should be able to take care of the issue but i am not sure how to generate JSONP from peoplesoft, any inputs you can offer ?<br />Thanks for all your help !<br />Sachin.Sachin Jhawarhttps://www.blogger.com/profile/11021302759884148048noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-5802141002712461932015-05-05T20:24:03.718-07:002015-05-05T20:24:03.718-07:00@Jim
No English words to describe my gratitude for...@Jim<br />No English words to describe my gratitude for your assistance. Not only have you clarified this technology and the 'vagueness' in some of the PeopleSoft documentation, but also provided me with next steps on tech to explore to create a 'compiled' 'PeopleSoft' mobile app.<br /><br />Thanks again,<br />Luke<br />Anonymoushttps://www.blogger.com/profile/02742349846971784124noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-63879043993470706842015-05-05T16:48:44.039-07:002015-05-05T16:48:44.039-07:00@Luke, #1, yes Oracle recommends MAP for light-wei...@Luke, #1, yes Oracle recommends MAP for light-weight user experience, especially when working with any type of integration. What makes MAP light is that it uses very simple HTML markup and then jQuery Mobile to "progressively enhance" pages based on device capabilities. Fluid's HTML is not nearly so simple.<br /><br />The documentation you are reading appears to be using the phrase "mobile application" very loosely. Both MAP and Fluid just create mobile web experiences. Neither of them generate compiled binaries.<br /><br />Oracle's Mobile Application Framework (MAF) offers one way to deploy a MAP (or fluid) mobile website as a hybrid application. MAF has this concept called a URL Feature that allows you to white list an external URL and display it as if it were a native application with access to device features. Another approach I have taken is to combine Integration Broker REST services with AngularJS and cordova to build hybrid "compiled" on-device applications.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-57754567840412780182015-05-05T16:34:15.949-07:002015-05-05T16:34:15.949-07:00@Jim
Sincerest thanks for your quick response as I...@Jim<br />Sincerest thanks for your quick response as I'm trying to conceptualize how MAP could fit in our enterprise mobile tech strategy and this was the closest post I could find about implementing PS mobile apps. <br /><br />I went to MyOracleSupport and found some docs that also helped (1949496.1, 1949528.1, 1949521.1)<br /><br />Would it be correct for me to say that I would use MAP over Fluid Interface if:<br />1. I wanted to generate the most 'light-weight' mobile experience (through use of created data-subset MAP documents instead of Fluid component record sets).<br />2. I wanted to include non PeopleSoft information on a page - i.e. external references.<br />These seem to be two key functional features of MAP.<br /><br />Final question, MAP talks about building a mobile application - but where does the application icon, compiled program, etc get generated to actually make a 'mobile application' available for download (Android/iOS/Win8). Or is it assumed that we do that and simply provide a browser interface within the app to connect to the MAP pages?<br /><br />I may be so so far off here.<br />Anonymoushttps://www.blogger.com/profile/02742349846971784124noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-55647260319010956932015-05-05T07:49:11.137-07:002015-05-05T07:49:11.137-07:00@Luke, I would not have written this blog post tod...@Luke, I would not have written this blog post today. It was written 5 years ago when PeopleSoft did not have a mobile strategy.<br /><br />MAP is designed to create completely new mobile applications. It is a point-click editor that builds REST services and a jQuery Mobile user interface. Data binding and event handling happens through PeopleCode app class handlers.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-85263687192947035072015-05-05T00:37:36.116-07:002015-05-05T00:37:36.116-07:00Hi Jim, Im confused with PT8.54 Mobile Application...Hi Jim, Im confused with PT8.54 Mobile Application Platform. Can you create a mobile app from scratch using it, or is it just a way for a custom (e.g. .net) mobile app to connect to PS? I imagine this blog post would change if the above functionality was employed?Anonymoushttps://www.blogger.com/profile/02742349846971784124noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-11215168678244343682015-03-18T21:27:45.929-07:002015-03-18T21:27:45.929-07:00Thanks Jim.Thanks Jim.Shivahttps://www.blogger.com/profile/13071613512114970964noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-31195602519254621062015-03-18T13:12:00.577-07:002015-03-18T13:12:00.577-07:00@Shiva, PeopleTools 8.53 is supported on iPad, but...@Shiva, PeopleTools 8.53 is supported on iPad, but it looks exactly the same as it does on a desktop, so it isn't really mobile friendly. For PeopleTools 8.53 it is recommended that you build mobile applications some other way rather than app designer pages. For example, in this post I am using Integration Broker. Another option is to use iScripts.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-63333492652652653112015-03-18T04:22:54.786-07:002015-03-18T04:22:54.786-07:00Hi Jim,
I have a requirement where I need to rend...Hi Jim,<br /><br />I have a requirement where I need to render the existing peoplesoft page which is designed on 8.53 tools as per the mobile devices/Tablets display.<br /><br />How I need to develop this requirement and what should my approach will be?<br /><br />How can I include the CSS into on top of peoplesoft pages? is this is possible? or should I redesign whole peoplesoft page into an HTML page and call it with Iscripts?<br /><br />Please advise.<br /><br />Thanks,<br />Shiva.Shivahttps://www.blogger.com/profile/13071613512114970964noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-60391933274165471432014-12-11T01:48:02.787-08:002014-12-11T01:48:02.787-08:00Hi Jim,
Very Useful. U r The Man.
Is it possible ...Hi Jim,<br /><br />Very Useful. U r The Man.<br />Is it possible to Generate One time Password SMS Token from Peoplesoft?<br />Thanks!<br />ChandruAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-34020393.post-3354840085326440232013-09-30T12:17:53.767-07:002013-09-30T12:17:53.767-07:00@Kevin, yes, that would be a great presentation. G...@Kevin, yes, that would be a great presentation. Good work figuring out the answer as well!Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-37211847666494589982013-09-30T06:45:56.263-07:002013-09-30T06:45:56.263-07:00I figured out that the Internal URL was not set on...I figured out that the Internal URL was not set on the Transaction Registry for Absence. This book you wrote is quite handy! Thanks!Kevin Weaverhttps://www.blogger.com/profile/09237087594753403371noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-47809595053404851172013-09-28T20:52:09.261-07:002013-09-28T20:52:09.261-07:00I think this would make a great presentation, but ...I think this would make a great presentation, but I will have to write it up this week as they are due this Friday.<br /><br />I have been playing around with it, and I cannot get absence request to approve from the Application Package, I keep getting this error:<br /><br /><br />Integration Broker Response202716URL Catalog entry "" not found. (2,716) EOAW_UTILITIES.Portal.portalURL.OnExecute Name:getServletURL_ PCPC:5279 Statement:79 Called from:EOAW_UTILITIES.Portal.portalURL.OnExecute Name:GenerateComponentPortalURL Statement:53 Called from:EOAW_CORE.DEFN.AWTxn.OnExecute Name:GetNotifyURLOverride Statement:366 Called from:EOAW_CORE.NOTIFICATION.InlineStrategy.OnExecute Name:ProcessNotifications Statement:78 Called from:EOAW_CORE.NotificationEventHandler.OnExecute Name:ProcessNotifications Statement.<br /><br />However, I did get my custom workflow to approve, via the service.Kevin Weaverhttps://www.blogger.com/profile/09237087594753403371noreply@blogger.comtag:blogger.com,1999:blog-34020393.post-8960193128156995752013-09-18T12:58:32.012-07:002013-09-18T12:58:32.012-07:00@Kevin, I think you should sign up to demonstrate ...@Kevin, I think you should sign up to demonstrate this in a session at Collaborate. It is a good approach for pre-8.52. Once you move to 8.52, you will get REST with basic auth over SSL. With REST and basic auth, you can map inbound parameters (from a URL, for example) into a document and access them from the structured document. You won't need to authenticate (SwitchUser) because the basic auth part of the REST service definition takes care of that for you. You also won't need the external service to change the content-type header. REST service operations have a configuration for changing the response content-type header.<br /><br />Prior to 8.52, the way I handled the content-type header was through our reverse proxy server (apache httpd) and mod_headers.Jim Marionhttps://www.blogger.com/profile/12995110203807924786noreply@blogger.com