OIF SP Integration With OAM Gives 500 Internal Error When Enabling Proxy For OIF

(Doc ID 1066892.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version: 11.1.1.0
Information in this document applies to any platform.

Symptoms

After enabled proxy for OIF 11g, you no longer able to perform SP Federation as you are getting 500 Internal Error.

This is the document you are following to setup OIF Proxy:
http://download.oracle.com/docs/cd/E12839_01/oim.1111/e13400/advtopics.htm#BABFCGJB

SP Test URL:
http://oif-proxy.oracle.com/fed/idp/initiatesso?providerid=http%3A%2F%2Foif-noproxy.oracle.com:7499/fed/sp&returnurl=http://oif-proxy.oracle.com/PSWDtest/protected/snoop.jsp

OIF Diagnostic log shows the following error:
[2010-02-23T13:41:57.557-06:00] [wls_oif1] [ERROR] [FED-12064] [oracle.security.fed.controller.ApplicationController] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid:0000IRwMQ6R3NAO6yjYfMG1BTU8z00008G,0] [APP: OIF#11.1.1.1.0] Exception: {0}[[
oracle.security.fed.event.EventException: com.oblix.access.ObAccessException: Unprotected resource GET http://oif-proxy.oracle.com:80/fed/user/oam/OIF-password-protected used in an ObAuthenticationScheme or ObUserSession constructor.
        at oracle.security.fed.eventhandler.authn.engines.oam.OAMFinishSPSSOEventHandler.perform(Unknown Source)
...

Changes

The Proxy Server Host and Port are completely different from the non-proxy.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms