OAM 12c - Looping on Authentication/Authorization Despite the Fact that Authentication Cookies are Set - caused by "serverSMEType" set to "COOKIE_BASED"
(Doc ID 2916831.1)
Last updated on DECEMBER 20, 2022
Applies to:
Oracle Access Manager - Version 12.2.1.4.0 and laterInformation in this document applies to any platform.
Symptoms
OAM 12.2.1.4
Authentication is performed ---------> OAM_ID cookie is set correctly and subsequently the WebGate also sets its cookie (OAMAuthnCookie)
But, on the Authorization, despite having the OAMAuthnCookie set, the WebGate doesn't accept the token and make a new trip to OAM Server ...... and the loop continues
..............
GET http://<webgate_host:port>/<application URL>
Accept: text/html, application/xhtml+xml, image/jxr, */*
Accept-Encoding: gzip, deflate
Cookie: OAMAuthnCookie_.....=739430ced88d113b505f74662f49f1c9............
HTTP/1.1 302 Found
Connection: Keep-Alive
Date: .......
Location: http://<OAM_server_host:port>/oam/server/obrareq.cgi?encquery%3Dys0NAZLY%2B8MvAsoUpPDdgMEGnB1Sg0YvZyPvXnVlbrPQDMzR9.......
Set-Cookie: OAMAuthnHintCookie=1; httponly; path=/; domain=.....
............
----------> here, the flow starts again -------> is sending back to OAM server, even the WebGate cookie is set (OAMAuthnCookie_......)
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |