My Oracle Support Banner

Oracle Access Manager WebGate issue with httponly (Doc ID 1520583.1)

Last updated on MARCH 08, 2017

Applies to:

COREid Access - Version and later
Information in this document applies to any platform.


Oracle Access Manager 10g r3 (OAM

ssocookie:httponly/disablehttponly as set in the authentication scheme setting
OAM 10g: What is the Purpose of the OAM Authentication Scheme Parameter "ssocookie:httponly"

Setting the ssocookie:httponly flag does not cause the obssocookie to refresh immediately leaving it visible to clients if the obssocookie was previously set without httponly



To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

This document is being delivered to you via Oracle Support's Rapid Visibility (RaV) process and therefore has not been subject to an independent technical review.
My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.