Configuring a second Facebook Internet Identity Provider in OAM Mobile and Social result in INVALID OAUTH ACCESS TOKEN VALUE (Doc ID 1998417.1)

Last updated on APRIL 06, 2016

Applies to:

Oracle Mobile and Social - Version 11.1.2.1.0 and later
Information in this document applies to any platform.

Symptoms

Configuring  a second Facebook Internet Identity Provider in OAM Mobile and Social result in INVALID OAUTH ACCESS TOKEN VALUE

Changes

 Steps to reproduce:

1. Create a new Internet Identity Provider for Facebook that is the same as the Out of the Box one from OAM. Use a new Consumer key and Consumer secret
   from Facebook.
2. Create a new Application profile.
3. Create a new User Profile Service Provider to be used by the new Application profile
4. Create a new Auth scheme
5. Protect resource with new Auth Scheme.
6. Hit protected resource and enter Facebook creds. Gets redirected to the error page  message.


Error Message in Browser-
Were sorry, the page you requested was not found.
We have recorded the following error message to help fixing the problem:
oracle.security.idaas.rp.RPException: oracle.security.idaas.rp.RPException:
oracle.security.idaas.rp.RPException: Invalid OAuth access token value.

 

Logs -

 

[2015-01-29T09:34:25.781+10:00] [oamServer2] [ERROR] [] [oracle.idaas.rp] [tid: [ACTIVE].ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 000003Fp_Sc8how5GFp2if00UW0u0000nU,0:2] [APP: oam_server#11.1.2.0.0] [URI: /oic_rp/return] There is an error while getting access token for the user from the identity provider[[
oracle.security.idaas.rp.RPException: Invalid OAuth access token value.
        at oracle.security.idaas.rp.oauth.provider.FacebookImpl.getAccessToken(FacebookImpl.java:241)
        at oracle.security.idaas.rp.IDPResponseHandler.getAccessToken(IDPResponseHandler.java:659)
        at oracle.security.idaas.rp.IDPResponseHandler.processIDPResponse(IDPResponseHandler.java:151)
        at oracle.security.idaas.rp.RPReturnServlet.processRequest(RPReturnServlet.java:123)
        at oracle.security.idaas.rp.RPReturnServlet.doGet(RPReturnServlet.java:159)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:821)
        at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
        at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
        at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
        at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
        at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)


[2015-01-29T09:34:25.782+10:00] [oamServer2] [ERROR] [] [oracle.idaas.rp] [tid: [ACTIVE].ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 000003Fp_Sc8how5GFp2if00UW0u0000nU,0:2] [APP: oam_server#11.1.2.0.0] [URI: /oic_rp/return] Exception in processRequest method[[
oracle.security.idaas.rp.RPException: oracle.security.idaas.rp.RPException: oracle.security.idaas.rp.RPException: Invalid OAuth access token value.
        at oracle.security.idaas.rp.IDPResponseHandler.getAccessToken(IDPResponseHandler.java:663)
        at oracle.security.idaas.rp.IDPResponseHandler.processIDPResponse(IDPResponseHandler.java:151)
        at oracle.security.idaas.rp.RPReturnServlet.processRequest(RPReturnServlet.java:123)
        at oracle.security.idaas.rp.RPReturnServlet.doGet(RPReturnServlet.java:159)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:821)
        at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
        at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
        at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
        at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
        at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
        at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)
        at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:315)
        at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:442)
        at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:103)
        at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:171)
        at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
        at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
        at oracle.security.wls.filter.SSOSessionSynchronizationFilter.doFilter(SSOSessionSynchronizationFilter.java:322)
        at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
        at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.doFilter(OAMServletAuthenticationFilter.java:265)
        at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilter(OAMValidationSystemFilter.java:134)
        at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
        at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
        at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:139)
        at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
        at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3730)
        at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3696)
        at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
        at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2273)
        at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2179)
        at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1490)
        at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused by: oracle.security.idaas.rp.RPException: oracle.security.idaas.rp.RPException: Invalid OAuth access token value.
        at oracle.security.idaas.rp.oauth.provider.FacebookImpl.getAccessToken(FacebookImpl.java:256)
        at oracle.security.idaas.rp.IDPResponseHandler.getAccessToken(IDPResponseHandler.java:659)
        ... 32 more
Caused by: oracle.security.idaas.rp.RPException: Invalid OAuth access token value.
        at oracle.security.idaas.rp.oauth.provider.FacebookImpl.getAccessToken(FacebookImpl.java:241)

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms