Url String For All OAM SSO Login Pages Contains The Following Value "sercure_string" (Doc ID 1996342.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Access Manager - Version 11.1.1.5.0 to 11.1.2.2.3 [Release 11g]
Information in this document applies to any platform.

Symptoms

url string for all OAM SSO login pages contains the following value "sercure_string"

The sso challenge url custom external login page for OAM contains a string value of "sercure_string" within the challenge url request.

Example challenge url request

https://servername.domain/capauth/Login.jsp?authn_try_count=0&contextType=external&username=string&contextValue=%2Foam&password=sercure_string&challenge_url=https%3A%2F%2Foamuat.cap.org%2Fcapauth%2FLogin.jsp&request_id=-2743444081797521431&OAM_REQ=&locale=en_US&resource_url=http%253A%252F%252Floginuat.domain%252Fcapauth%252Flogin%252FpostLogin.do%253FtargetURL%253Dhttp%253A%252F%252Fdomain%252Fapps%252Fcap.portal.

This string value is a type and should actually display "secure_string" vs "sercure_string".


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms