My Oracle Support Banner

Oracle Access Manager (OAM) - Federation Proxy Does Not Work When "serverRequestCacheType" Is Set On BASIC (Doc ID 2850073.1)

Last updated on AUGUST 04, 2023

Applies to:

Oracle Access Manager - Version 12.2.1.4.0 and later
Information in this document applies to any platform.

Symptoms

After SAML Response is received from the Remote IdP, on OAM (set as Federation Proxy) is redirecting to a wrong URL ending with ...... null/user/logins, as this URL doesn't exist, it retunrs an HTTP 404 Not Found error.

POST http(s)://<OAM_SERVER_FQDN:PORT>/oam/server/fed/sp/sso HTTP/1.1
Host: <OAM_SERVER_FQDN:PORT>
.............

HTTP/1.1 302 Moved Temporarily

Location: http(s)://<OAM_SERVER_FQDN:PORT>/oam/server/fed/sp/null/user/loginsso

Set-Cookie: ORA_OSFS_SESSION=id-<VALUE>
Set-Cookie: OAM_ID=VERSION_5<VALUE>

  ------------> session is made correctly (cookies are set correctly)

 -----------> just redirection is wrong ----------> Location: http://<OAM_SERVER_FQDN:PORT>/oam/server/fed/sp/null/user/loginsso

 

 

Steps
  • User access the protected URL on Service Provider (SP) side
  • On OAM (set as Federation Proxy) the request is sent to the Remote Identity Provider (IdP) for Authentication
  • After Authentication is made on Remote IdP, a SAML Request is sent back to the OAM (set as Federation Proxy)
  • Here the 404 error is thrown, as is redirecting to a wrong URL - http://<OAM_SERVER_FQDN:PORT>/oam/server/fed/sp/null/user/loginsso

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.