OAM 10g : How To Protect Resource With Character / In The Query String (Doc ID 1339458.1)

Last updated on OCTOBER 13, 2011

Applies to:

COREid Access - Version: 10.1.4.3.0 and later   [Release: and later ]
Information in this document applies to any platform.

Goal

There is a "/" character in the query string. When you create policy using "Query String" pattern , "/" is treated as special character and thus resource is not protected correctly.

Example:

http://host:port/?string1=RandomValue&string2=Random/Value

In the above example, along with query string set to "string1=*&string2=*" , the resource is not protected correctly. The resource is only protected when there is no "/" in the value for string2.

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms