My Oracle Support Banner

REST Adapter With OAUTH2 Policies Not Persisting The Access Token Expires_in (Doc ID 2894617.1)

Last updated on JANUARY 08, 2024

Applies to:

Oracle Service Bus - Version 12.2.1.4.0 and later
Oracle Web Services Manager - Version 12.2.1.4.0 and later
Information in this document applies to any platform.

Symptoms

This is an Oracle Web Service Manager (OWSM) issue which is impacting SOA thus this KM is created as reference

ACTUAL BEHAVIOR
---------------
I has been implemented OAUTH2.0 with Azure AD as authentication provider.

In doing so customer has used a REST adapter as an OSB business service with security policies (oracle/http_oauth2_token_client_policy and oracle/oauth2_config_client_policy) attached.

This setup successfully invokes the token endpoint, fetches the token and passes it to the resource endpoint in header.

All works OK, but it has been noticed that the token is being fetched for all consecutive calls. Meaning the expires_in parameter in the token response is not being considered for consecutive calls.

EXPECTED BEHAVIOR
-----------------------
The token should be persisting during the Access Token EXPIRES_IN parameter value.


BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, the system's performance is affected.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.