Oracle Access Manager (OAM) - Authorization Response Cookies Not Flagged As HTTPONLY Or Secure
(Doc ID 2693344.1)
Last updated on SEPTEMBER 25, 2023
Applies to:
Oracle Access Manager - Version 11.1.2.3.0 and laterInformation in this document applies to any platform.
Symptoms
- Setup SSO Session Linking for OAuth Tokens as described here
- Authorization response cookies, including the OAUTH_TOKEN token cookie, are not flagged as HTTPONLY or Secure.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |