Digital Cookie Not Rotating

(Doc ID 889795.1)

Last updated on APRIL 12, 2010

Applies to:

Oracle Adaptive Access Manager - Version: 3.5.2.10 to 10.1.4.5.1
Information in this document applies to any platform.

Symptoms

On 3.5.2 natively integrated environment in Production:
When attempting to enable flash cookie it was observed that the digital cookie is always coming
back as the same value that was passed in.
the following error occurs:

ERROR
Digital Cookie not Rotating

The issue can be reproduced at will with the following steps:
With flash enabled in 3.5.2 natively integrated environment, login with same user from same device
multiple times and see that the digital cookie does not rotate.

Important test scenarios:
1. From my machine, logged in and logged-out as “ctorres” 3 times. No cookie rotation. The cookie
value is same as what was there yesterday (user “howiele”). Secure cookie rotating.

2. From my machine, logged in and logged-out as “alex1” 3 times. No cookie rotation. The cookie
value is same as what was there yesterday (user “howiele”), or same as “ctoress”’s today. Secure
cookie rotating.

3. From another machine, logged in and logged-out as “alex1” 3 times. First session shows Dig
Cookie & Expected Cookie empty, then second session with new value, and 3rd session the value
remains same (no more rotation). Secure cookie rotating.


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms