403 Forbidden Error Happens When Accessing URL with Query String Even Though Wildcard Option is Available Using Policy Agent

(Doc ID 1936763.1)

Last updated on SEPTEMBER 21, 2016

Applies to:

Oracle Access Manager - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

In setting wildcard option being available, accessing the URL with query string returns HTTP 403 Forbidden error.
Assuming the configuration by the following NOTE.

How to Configure a Resource Containing Query String with Policy Agent 3.0 (Doc ID 1931550.1)

After configuration, the below URL with query string(aaa=testaaa&bbb=testbbb) is successful.

http://hostname:port/agentsample/jsp/showHttpHeaders.jsp?aaa=testaaa&bbb=testbbb

However the URL with following query string(bbb=testbbb&aaa=testaaa) is returned as 403 Forbidden error.

http://hostname:port/agentsample/jsp/showHttpHeaders.jsp?bbb=testbbb&aaa=testaaa

Changes

The "com.sun.identity.policy.client.resourceComparators" parameter is added as the following value in Miscellaneous section of OpenSSO Agent setting of OAM Admin console.

serviceType=iPlanetAMWebAgentService|class=com.sun.identity.policy.plugins.HttpURLResourceName|wildcard=*|delimiter=/|caseSensitive=false

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms