tags:

views:

390

answers:

7
+1  Q: 

How do I unlock an Oracle user's account from Java?

I'm trying to figure out why my application is unable to unlock a user's Oracle account successfully. Here's a snippet from my code:

OracleDataSource ods = new oracle.jdbc.pool.OracleDataSource();

Properties props = new Properties();
props.put("user", "sys");
props.put("password", "sys");
props.put("internal_logon", "sysdba");

ods.setConnectionProperties(props);
ods.setURL("jdbc:oracle:thin:@localhost:1523:TEST_DB");

Connection conn = ods.getConnection();
Statement stmt = conn.createStatement();
stmt.execute("ALTER USER SCOTT ACCOUNT UNLOCK");
stmt.close();

At no point does it raise an SQLException or report any problems, but the user's account doesn't actually get unlocked. Am I missing something obvious here or is there some cunning way of getting this to work?

A: 

I would be curious to see if this resolves the issue:

stmt.execute("BEGIN EXECUTE IMMEDIATE 'ALTER USER SCOTT ACCOUNT UNLOCK'; END;");

Brian  2009-10-22 01:50:56
Sadly not. It runs, but doesn't affect the account status change.
ninesided  2009-10-22 02:20:45
A: 

try using executeUpdate rather than just execute. e.g.

stmt.executeUpdate("ALTER USER SCOTT ACCOUNT UNLOCK")
Michael Rutherfurd  2009-10-22 03:14:26
I thought you might have been on to something here, but it makes no difference...
ninesided  2009-10-22 06:59:16
A: 

Try to set 'autocommit' property to 'true' for your jdbc connection. May be it's just set to 'false' by default and your sql is not committed.

denis.zhdanov  2009-10-22 04:31:37
a commit is not required for an ALTER USER
ninesided  2009-10-22 06:59:52
+1  A: 

It is not a "commit" issue since this statement does not need a commit. Things to consider:

Does the statement unlock the account when you run it in SQLPLUS? Are you logging onto the correct database from java? Is there some process trying to logon into the account whith the wrong credentials resulting in a locked account?

Rene  2009-10-22 05:32:03
Thanks for the advice. The statement works perfectly in SQL*Plus, I have checked the connection details for the database dozens of time and it is definitely the correct database and there are no other processes that could make this change other than the one I'm trying to test.
ninesided  2009-10-22 07:10:15
+2  A: 

I'd be very nervous about having an application connect as sysdba like this.

I would prefer to have a privileged user with permission to ALTER USER, remove the CREATE SESSION privilege from it, and have this schema contain an account_unlock pl/sql procedure for which execute privilege is granted to the user that your application connects with. ALTER USER is powerful stuff, and you probably want to restrict the attributes and even the individual users that your application can alter.

And that might also solve this problem.

David Aldridge  2009-10-22 06:58:46
I agree wholeheartedly, unfortunately I have a specific requirement which necessitates this approach. The application is intended as a simple support tool and will only ever be able to lock/unlock a user account and change a user's password.
ninesided  2009-10-22 07:03:58
I've changed the application to use a priviledged user rather than connecting as sysdba as you suggested, I figured out a different way to meet the other requirements that necessitated using sysdba. Whilst I can't explain why it didn't work before, it does now. Ta muchly!
ninesided  2010-01-27 17:44:54
A: 

The good news is that your code should work - I just did a quick test of it and the target account was unlocked. Two questions come to mind:

  • How are you determining the account is still locked? Are you using *SELECT username, account_status FROM DBA_USERS*?

  • Is there an Oracle profile in place that locks the account for failed logon attempts? Perhaps there is another process trying and failing to connect with an incorrect password that is re-locking the account.

Sorry to ask such basic questions, but again, your code does work.

dpbradley  2009-10-22 14:01:14
A: 

Perhaps you are running into a case-sensitivity issue with Oracle 11?

Adam Hawkes  2009-10-22 15:29:29

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java