A Delay Of 10 Seconds Or More Before Submitting Credentials In OAM 10g Login Page Causes Failure To Redirect Back To Protected Resource
Last updated on MARCH 08, 2017
Applies to:COREid Access - Version 10.1.4.3.0 and later
Information in this document applies to any platform.
Oracle Access Manager (OAM) 10.1.4.3 has been configured to protect application resources and a WebGate has been installed on the application server.
When the protected application resource is accessed in a browser, the user is redirected to the OAM login page. If the user submits credentials immediately then they are successfully redirected back to the protected application resource after login, as expected.
However if the user delays more than 10 seconds before submitting credentials in the OAM login page, redirection to the application does not occur. A white page is displayed showing four non-ascii characters at the top left.
The URL shown in the browser address bar is http://<apphostname.domain:port>/obrar.cgi?cookie.....
If the user then types the application URL in the browser address bar they can access the application without being further prompted for OAM credentials.
Steps to reproduce
1. Access http://<apphostname.domain:port>/protectedresource
2. The OAM login page is displayed.
3. Wait for 10 seconds then submit valid OAM Credentials.
4. A white page is displayed showing four small square characters at the top left.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms