[WLS 12.1.2] -Wrapped Request Established In a JASPIC ServerAuthModule Is Not Used In Downstream Processing -
(Doc ID 1642893.1)
Last updated on SEPTEMBER 11, 2020
Applies to:Oracle WebLogic Server - Version 22.214.171.124.0 to 126.96.36.199.0 [Release 12c]
Information in this document applies to any platform.
The JASPIC specification states: "When a ServerAuthModule returns a wrapped message in MessageInfo, or unwraps a message in MessageInfo, the message processing runtime must ensure that the HttpServletRequest and HttpServletResponse objects established by the ServerAuthModule are used in downstream processing".Please refer to JASPIC specification section 188.8.131.52
Based on above we developed own ServerAuthModule that wraps a servlet request in MessageInfo, however, when the request gets to the servlet, we see the original request and not the wrapped one.No exceptions are thrown.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document