My Oracle Support Banner

mod_osso's Final Redirect back to the Protected Application (Doc ID 269820.1)

Last updated on SEPTEMBER 26, 2019

Applies to:

Oracle HTTP Server - Version 9.0.2 to 10.1.4 [Release 9iAS to AS10gR2]
Oracle Application Server Single Sign-On - Version 9.0.4 to 10.1.4 [Release 10gR1 to 10gR3]
Information in this document applies to any platform.



This article explains how mod_osso makes the final redirect back to the
protected application and shows an example how to correct an unexpected
URL in the final redirect in a specific reverse proxy scenario.

Scope & Application

In a default Oracle Application Server 9i/10g installation or in installations
of Oracle Application Server 9i/10g where WebCache is the only reverse proxy,
this information will seldom be needed.

While this article includes a few general items about the working of SSO
as a whole and about SSO in reverse proxy environments, it is not intended
to be a tutorial how to set up SSO in general or with reverse proxies.

What we cover is solely what happens between mod_osso and the application
after the SSO login cycle is completed.

Implementing the configuration example in the end of this article without
fully understanding the environments for which it is suitable may break
working applications, however, it will be easy to back out that configuration


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.