SSOConfig.xml protectedMappingIncludes Values for Vanity URLs Fail to Require Login (Doc ID 2101787.1)

Last updated on OCTOBER 05, 2017

Applies to:

Oracle WebCenter Sites - Version 11.1.1.8.0 and later
Information in this document applies to any platform.

Symptoms

Even though the SSOConfig.xml is configured with the correct URL patterns parameters for Vanity URLs, attempting to use the Vanity URL fails to require a login. 

Using the Avisports Sample site, sample Vanity URL: http://<hostname>:<port>/cs/avi/avisection/surfing.html

WebRoot:  Avi
Host Name: Avi
Root URL: http://<hostname>:<port>/cs/avi

SSOConfig.xml:
<property name="protectedMappingIncludes">
     <list>
          <value>wem/fatwire/**</value>
          <value>/faces/jspx/**</value>
           ...
           <value>/avi/**</value>
     </list>
</property>

Web Server mod_rewrite configuration:
RewriteEngine On
RewriteLog /opt/logs/rewrite.log
ReWriteLogLevel 16
RewriteCond %{REQUEST_URI} !^/cs/(.*)$
RewriteCond %{REQUEST_URI} !^/cas/(.*)$
RewriteRule ^(.*)$ /cs/avi$1 [QSA,P,L]

Sites URLRewriteFilter web.xml configuration

<filter>
<filter-name>URLRewriteFilter</filter-name>
<filter-class>COM.FutureTense.Servlet.URLRewriteFilter</filter-class>
<init-param>
<param-name>SitePrefix</param-name>
<param-value>fsii,avi</param-value>
</init-param>
</filter>

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms