OAM 10g: Protected Resource URL GET Parameters Are Lost After OAM Login

(Doc ID 762371.1)

Last updated on MARCH 08, 2017

Applies to:

COREid Access - Version: and later   [Release: 10g and later ]
Information in this document applies to any platform.


Oracle Access Manager (OAM) Single Sign-On (SSO) has been configured with Challenge Redirect set in the form authentication scheme.

First time login to the application protected by the non-authenticating (resource) WebGate always fails although valid credentials are entered. The application URL includes GET parameters.


The browser displays error HTTP-500 Internal Server Error, or if a proxy is in front of the resource WebGate webserver the error HTTP/1.x 502 Bad Gateway is displayed.

The URL displayed in the browser address bar when the error occurs is missing the URL parameters.

If a second attempt is made to access the resource in the same browser session then the application page is immediately displayed successfully with no prompt for login.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms