User Redirected To Login Page Instead Of Access Denied Page After Upgrading OAM 11.1.2.1.0 to 11.1.2.3.160419 (Doc ID 2167928.1)

Last updated on AUGUST 15, 2016

Applies to:

Oracle Access Manager - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

Customer have upgraded OAM 11.1.2.1.0 to 11.1.2.3.0 BP 160419. And their environment is using OAM integrated with OpenSSO Web Agent 3.0.0.6 on IIS7.
After the upgrade, when a user access a page without the privilege, the end user is got redirected to OAM login page instead of a access denied page on IIS.
The behaviour is different from OAM 11.1.2.1.0.

The test case is very simple as following,
- access a protected page on IIS
- end user got redirected to OAM login page
- login as a test user, which doesn't have the privilege to access the protected page
- after successful login, it is redirected to OAM login page again instead of access denied page on IIS.

ENVIRONMENT DETAILS
================
OAM: 11.1.2.3.0 BP 160419
OpenSSO Agent: 3.0.0.6 on IIS 7
ODSEE 11.1.1.7.0

ERROR DETAILS
===========
[2016-05-26T15:04:44.057+08:00] [OAMServer1] [NOTIFICATION] [OAM-15005] [oracle.oam.proxy.opensso] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 8497474b84222203:46340e7b:154ebc213b5:-8000-00000000000005da,0] [APP: oam_server#11.1.2.0.0] Opensso user session token created with oam session ID 4be3240e-0a88-49fc-8e3e-b772f59575d4|uliiNM23xxbvJuQS0EW+r07kOes= as extention
[2016-05-26T15:04:44.058+08:00] [OAMServer1] [ERROR] [] [oracle.oam.proxy.opensso] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 8497474b84222203:46340e7b:154ebc213b5:-8000-00000000000005da,0] [APP: oam_server#11.1.2.0.0] Invalid success redirect url[[
java.net.MalformedURLException
at java.net.URL.<init>(URL.java:608)
at java.net.URL.<init>(URL.java:471)
at java.net.URL.<init>(URL.java:420)
at oracle.security.am.proxy.opensso.pbl.LoginResponseHandler.process(LoginResponseHandler.java:121)
at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.java:175)
at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.java:107)
at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServlet.java:217)
at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java:173)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)

\\

\\

[2016-05-26T17:56:37.123+08:00] [OAMServer1] [ERROR] [] [] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: eeeef4bea92ff54c:4e0774b2:154ec7bd1f6:-8000-000000000000004f,0] [APP: cityuLogin] Failed to communicate with any of configured Access Server, ensure that it is up and running.
[2016-05-26T17:56:37.124+08:00] [OAMServer1] [WARNING] [OAMAGENT-00410] [oracle.oam.agent-default] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: eeeef4bea92ff54c:4e0774b2:154ec7bd1f6:-8000-000000000000004f,0] [APP: cityuLogin] OAM Server can not be accessed, fallback to container policy: fetchConfig failed, will keep trying ...
[2016-05-26T17:56:37.146+08:00] [OAMServer1] [ERROR] [] [] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: eeeef4bea92ff54c:4e0774b2:154ec7bd1f6:-8000-0000000000000051,0] [APP: cityuLogin] Failed to communicate with any of configured Access Server, ensure that it is up and running.
[2016-05-26T17:56:37.351+08:00] [OAMServer1] [ERROR] [] [] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: eeeef4bea92ff54c:4e0774b2:154ec7bd1f6:-8000-0000000000000053,0] [APP: cityuLogin] Failed to communicate with any of configured Access Server, ensure that it is up and running.
[2016-05-26T17:56:48.724+08:00] [OAMServer1] [ERROR] [] [] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: eeeef4bea92ff54c:4e0774b2:154ec7bd1f6:-8000-0000000000000055,0] [APP: oam_server#11.1.2.0.0] Failed to communicate with any of configured Access Server, ensure that it is up and running.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms