OIF Global SSO Logout Fails With HTTP-500 Internal Server Error - Log Shows "Translation Exception: unable to translate message" (Doc ID 1527869.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version 11.1.1.1 and later
Information in this document applies to any platform.

Symptoms

Oracle Identity Federation (OIF) as Service Provider (SP) is being used to provide federated SSO to OAM-protected applications in the SP domain using a third party Identity Provider (IdP).

SSO login via the IdP is working, however SSO logout is failing with HTTP-500 Internal Server Error in the browser when the IdP sends the SAML logout response to OIF as SP.

HTTP Redirect Binding is being used.

The error in the OIF log is "unable to translate message..... java.util.zip.DataFormatException: too many length or distance symbols":



Steps to reproduce

1. Access OAM-OIF protected resource.
2. The IdP login page is displayed.
3. Submit valid IdP domain credentials.
4. The OAM-protected resource is displayed.
5. Click Logout: error HTTP-500 occurs.



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms