Part 2: EFS Viewer
---------------------------
Now... for those of you on the Internal EFS Viewer:
Below are instructions (provided by Pictometry and posted with permission) for getting the token out of your SQL Server in order to embed into your Javascript code that passes credentials into the URL in the new window opened by my Pictometry Widget. Disclaimer: for either EFS or IPA refer to Pictometry tech support for any questions/comments/concerns and I take no liability for any use of either of these instruction sets or the widget code, yada yada. Pictometry has provided excellent support by the way if anyone needs to contact them.
Implementing a Pictometry Server Edition link with Embedded Credentials
As designed, it is necessary for all users of the Server Edition POL Web Solution to enter credentials to allow access to the application. This works fine under most circumstances, but for some groups (such as public access), it is not always possible to create unique login credentials to allow access across a broad number of users.
A work-around to enable simplified access is to create a link to the Server Edition application with the login ID and password embedded, allowing the user to simply click on the link. The URL will contain both the path to the Server Edition application, the user ID, and the password in an encrypted format.
This process can be used for both one user and multiple users using an account that allows concurrent login’s1. It would be challenging to maintain such links for individual users due to the need to enter the back-end database to obtain the encrypted user password, particularly if there is a mandate to change passwords periodically.
The instructions presume the use of MySQL Server 5.1 as the back-end database for Server Edition. If your implementation utilizes another database server (Oracle 11g, MS SQL Server 2008), the principles are similar but the location of certain tools and commands may be different; it may be necessary to consult with your database administrator to obtain the required information.
In order to implement a link with embedded credentials, please do the following;
Identify the Encrypted Credentials
- Open and log in to the MySQL Administration application on the server using the credentials established during the installation
- Click on ‘Tools’-> ‘MySQL Query Browser’
- From the Schemata pane on the right, expand the ‘pol_user’ schema
- Locate the ‘users’ table, click it four times with the left mouse button to expand it to view the current properties of all users
- Locate the ‘user_email’ field, and scroll down to the user name of interest-
- Look to the field ‘user_password’ to the immediate right to identify the encrypted password-
- Click ‘Edit’ at the bottom of the screen, then highlight-and copy that encrypted password for later use. It will be a long hexadecimal string such as:
Create the Link with Embedded Credentials
- Create a new web shortcut
- In the location field, enter the following;
https://serverURL/efs/default.php?user=abc%40xyz.com&pass=5f4dcc3b5aa765d61d8327deb882cf992
- Test the link by opening it- it should open without the need for user intervention
- You can then use that URL as a free-standing link or use it in other applications or other web pages to bring up the Server Edition application
1 Please see your Server Edition Administrative Training material for information on how to create an account that allows concurrent logins, and limitations of those accounts.
2 ‘ServerURL/efs’ would be replaced with the URL to access the Server Edition application in your environment, ‘user=’ needs to be populated with the e-mail formatted user ID of the designated user(s), and ‘pass’ would be populated with the encrypted password for that account derived from the database.