WLS 12 JACC: FORM Login Doesn't Work If JACC Policy Provider Is Enabled
(Doc ID 1567630.1)
Last updated on MARCH 09, 2020
Applies to:Oracle WebLogic Server - Version 188.8.131.52 to 184.108.40.206 [Release 12c]
Information in this document applies to any platform.
If the WLS JSR-115 Simple JACC Policy Provider is enabled, FORM login via httpServletRequest.authenticate(httpServletResponse) always returns true, although no user principal is established in the servlet request, that is calling httpServletRequest.getUserPrincipal() returns null.
However, the method documentation of httpServletRequest.authenticate(response) that:
true when non-null values were or have been established as the values
returned by getUserPrincipal, getRemoteUser, and getAuthType. Return false
if authentication is incomplete and the underlying login mechanism has
committed, in the response, the message (e.g., challenge) and HTTP status
code to be returned to the user.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document