Security Constraint Block in Web.xml with <http-method-omission> tags are Not Working as Expected on WebLogic 12.2.1.x version (Doc ID 2331453.1)

Last updated on DECEMBER 16, 2023

Applies to:

Oracle WebLogic Server - Version 12.2.1.0.0 and later
Information in this document applies to any platform.

Symptoms

The <security-constraint> block in web.xml is not working correctly in WebLogic 12.2.1.x versions. More specifically, < http-method-omission> is not honored. We get error 403-forbidden for all the http methods enclosed in < http-method-omission> tags . This was working well in WebLogic 12.1.3.x version.

Changes

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Security Constraint Block in Web.xml with <http-method-omission> tags are Not Working as Expected on WebLogic 12.2.1.x version (Doc ID 2331453.1)

Applies to:

Symptoms

Changes

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!