AUTHORIZATION RESPONSE HEADER VARIABLE BASED ON SESSION DATA NOT SET (Doc ID 1561412.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.0.0 and later
Information in this document applies to any platform.

Symptoms

An authentication or authorization response of type session is configured.

If an authorization response of type header is configured to use the session information set via the session response,
the header variable shows the value "NOT_FOUND" , if the user is not authenticated to OAM.

Subsequent access of the protected resource when authenticated to OAM shows the expected header value.

The problem occurs , if the session response is configured for authentication or authorization.

 

Example setup:

 

In the authentication policy define a response as:

 

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms