Oracle Access Manager (OAM) 12c Does Not Adhere To RFC 7517 4.3. "key_ops" (Key Operations) Parameter "key_ops=verify"
(Doc ID 2945837.1)
Last updated on MAY 02, 2023
Applies to:
Oracle Access Manager - Version 12.2.1.3.0 and laterInformation in this document applies to any platform.
Symptoms
Oracle Access Manager (OAM) 12c access_token contains invalid key_ops value "sign" instead of "verify"
- Application libraries do not accept access_tokens with key_ops=sign instead of key_ops=verify.
- OAM 12 access_tokens always contain key_ops=sign which is reserved for privatekeys.
- PublicKey validation of signatures requires key_ops=verify which is equivalent to OAM 11 use=sign.
- RFC 7517 -4.3. "key_ops" (Key Operations) Parameter
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |