Oracle Access Manager (OAM) - SameSite Behavior In Chrome Browser In Mixed SSL/TLS And Non-SSL/TLS Deployments
(Doc ID 2771243.1)
Last updated on OCTOBER 19, 2021
Applies to:Oracle Access Manager - Version 18.104.22.168.200804 and later
Information in this document applies to any platform.
Due to new Security Restrictions imposed by Chrome browser, in some OAM involved scenarios (Mixed SSL/TLS And Non-SSL/TLS Deployments), the browser is not sending the cookies along with cross-site requests; consequently the OAM flow is not completed.
- Oracle Access Manager (OAM)
- Chrome Browser
- More details are here at Chromium Blog - Developers: Get Ready for New SameSite=None; Secure Cookie Settings Wednesday, October 23, 2019
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document