mod_osso's Final Redirect back to the Protected Application
(Doc ID 269820.1)
Last updated on SEPTEMBER 26, 2019
Applies to:Oracle HTTP Server - Version 9.0.2 to 10.1.4 [Release 9iAS to AS10gR2]
Oracle Application Server Single Sign-On - Version 9.0.4 to 10.1.4 [Release 10gR1 to 10gR3]
Information in this document applies to any platform.
This article explains how mod_osso makes the final redirect back to the
protected application and shows an example how to correct an unexpected
URL in the final redirect in a specific reverse proxy scenario.
Scope & Application
In a default Oracle Application Server 9i/10g installation or in installations
of Oracle Application Server 9i/10g where WebCache is the only reverse proxy,
this information will seldom be needed.
While this article includes a few general items about the working of SSO
as a whole and about SSO in reverse proxy environments, it is not intended
to be a tutorial how to set up SSO in general or with reverse proxies.
What we cover is solely what happens between mod_osso and the application
after the SSO login cycle is completed.
Implementing the configuration example in the end of this article without
fully understanding the environments for which it is suitable may break
working applications, however, it will be easy to back out that configuration
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!