E-Business to Apex Authentication Problem - Redirection Loop?
Hi Folks,
I have a couple of EBS (11i) environments which successfully launch Apex Functions using the whitepaper delivered from Cabot Consulting (Extending Oracle Applications). I have created a new responsibility, menu and function on our live environment today which does exactly what the whitepaper suggests:
1. Send a cookie to the browser with Username and a generated hash.
2. Apex authentication checks for this cookie and if it does not exist, displays a login page.
3. IF the cookie exists, it takes the username and validates the hash, redirecting then to Page 1 of my application.
However, I have found that the first time the EBS function is clicked, Firefox throws a "Redirect Loop Error", Internet Explorer instead gives an unhelpful 404 error. If I click my back button to get back into Oracle Applications and click the function again, this time it works.
I can't release this to my userbase if there is a chance of redirect issues!
Has anyone had experience of this and is there a verified solution to resolve the issue? I am happy to post whichever code you wish.
Many thanks,
Pete
Hi Scott,
Your suggestion answered my question first time. My login page was not public for some reason!
I've changed this now and kerching, my applications all work a breeze!
Fantastic - so simple :-)
Many thanks.
Srini - thanks for the suggestion, I've read every bit of EBS integration I could find so this is a bit of an RTFM!
P
Similar Messages
-
Big authentication problem: not being redirected to the login page
Hello, everybody!
I've just noticed a big problem in the web application I'm developing. In this
application I'm using the FORM authentication method as you can see below in the
web.xml file:
<security-constraint>
<web-resource-collection>
<web-resource-name>permitido</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
<security-constraint>
<web-resource-collection>
<web-resource-name>restrito</web-resource-name>
<url-pattern>/confirmacaoreserva.jsp</url-pattern>
<url-pattern>/confirmacaoreserva.faces</url-pattern>
<url-pattern>/reservaconfirmada.jsp</url-pattern>
<url-pattern>/reservaconfirmada.faces</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>ADMINISTRADOR</role-name>
<role-name>USUARIO</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
<login-config>
<auth-method>FORM</auth-method>
<form-login-config>
<form-login-page>/login.jsp</form-login-page>
<form-error-page>/errologin.jsp</form-error-page>
</form-login-config>
</login-config>
<security-role>
<role-name>ADMINISTRADOR</role-name>
</security-role>
<security-role>
<role-name>USUARIO</role-name>
</security-role>If I type in the browser's address field any of the protected pages,
confirmacaoreserva.faces or reservaconfirmada.faces, the web container redirects
me to the login page as expected, as I was'n authenticated yet. Until till
this point everything is working without problem. But I noticed, to my surprise,
that when I click on a link in a web page like this:
<h:commandLink value="#{msg.reservar}" action="#{materiais.reservarMaterial}">
<f:setPropertyActionListener target="#{materiais.codigoMaterial}" value="#{material.codigo}" />
</h:commandLink>
// in the backing bean
public String reservarMaterial()
// some processing...
return "confirmacaoReserva";
// in faces-config.xml
<navigation-rule>
<navigation-case>
<from-outcome>confirmacaoReserva</from-outcome>
<to-view-id>/confirmacaoreserva.jsp</to-view-id>
</navigation-case>
</navigation-rule>it completely by-passes the web container authentication and redirects me to the
protected page (+confirmacaoreserva+) without asking me first to authenticate in
the login page. Of course this is unacceptable.
So, how can I solve this? How do I fix this problem?
Thank you.
MarcosMarcos_AntonioPS wrote:
BalusC wrote:
Which appserver implementation/version are you using?JBoss 4.2.3.GAOK.
Which JSF implementation/version are you using?The default JSF implementation that comes with JBoss 4.2.3.GAWhich one? Read the manifest file of the JSF implementation JAR.
Does it work if you redirect instead of forward in the navigation case (just add <redirect />) ?I haven't tested yetAnd? -
"This webpage has a redirect loop" "....resulted in too many redirects"
Hi, I am trying to connect to a cloud account for the first time.
BUT I get this error here...
This webpage has a redirect loop
The webpage at https://database-xxxxxx.db.us1.oraclecloudapps.com/apex/f?p=4500:1000:118209995883759 has resulted in too many redirects. Clearing your cookies for this site or allowing third-party cookies may fix the problem. If not, it is possibly a server configuration issue and not a problem with your computer.
Here are some suggestions:
Reload this webpage later.
Learn more about this problem.
Any help appreciated,
BillFound the problem!
Oracle - need to capture that error and make more descriptive.
maybe - "User does not have the proper role to view this page"
I went into the
Identity Management Console: https://idmconsole.us1.cloud.oracle.com/identity/faces/pages/Identity.jspx
for my Domain.
"Manage Roles" - hit search (because the roles don't show if you don't hit the search button)
and then Assigned the "Database Developer" and "Database Administrator" roles to the users that were getting the error. -
PL/SQL Page hangs in a Redirect Loop, after access from xdbconfig.xml
Hello
My Problem:
when i try to Access a PL/SQL Page, it seems that is in a redirect loop to himself.
In the Log File from $ORACLE_HOME/network/log/listener.log comes mass Messages from connects like:
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45720)) * handoff * http * 0
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45721)) * handoff * http * 0
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45722)) * handoff * http * 0
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45723)) * handoff * http * 0
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45724)) * handoff * http * 0
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45725)) * handoff * http * 0
26-FEB-2007 14:59:31 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=45726)) * handoff * http * 0
think the Problem is in the Configuration from mod_plsql.
When i try to access a PL/SQL Page through the Gateway, then it comes the same issue.
I can reconstruct the Problem on a fesh installed Database XE on Windows XP and on Linux.
After installation, i can Access the Login Page from APEX. The System works correct.
After i try to get the URL "http://127.0.0.1:8080/xdbconfig.xml" i get a Browser Login.
I typed in the System Account, then i can see the xdbconfig.xml.
After that i can't access APEX or any other PL/SQL Page
I can only access the XML DB Repository Directories.
Can someone help?
Thanks
Jan HoelscherI noticed the same issue with session info (after login in and then unlocking anonymous) still in the cookie or in memory (at least I think so).
After restarting the browser windows (all windows of the same "brand") - problem has disappeared -
Self password reset functionality (Apex Authentication)
Hi everyone,
I am using Apex 4.1 (can upgrade to 4.2 if any new feature helps solve my problem)
Oracle DB XE 10g
Authentication Scheme: Standard Apex Authentication
I have created a page for Resetting password of End Users which takes username in a txt box and runs the process with the code on clicking button as
APEX_UTIL.RESET_PW(:P102_USERNAME, 'Some custom message');After going through documentation (and also the message displayed on use), I found that it requires admin privileges to execute, while I want to use it for End users of application.
Is there a work around to this problem? Please help.
Thanks
SaurabhHi Saurabh,
another way to implement the forget password feature without seeing the standard APEX screens for this is call the standard reset form from PL/SQL and automatically SUBMIT it via the URL (so you don't have to show the form but you can use your own layout ).
The only downside I know so far is that the email cannot be formatted ( as far as I know ), but the first step for a customized reset pw feature is there :
Just call this URL :
http://<<SERVER>>:<<PORT>>/apex/f?p=4550:7::BRANCH_TO_PAGE_ACCEPT|resetpassword:NO:7:F4550_P7_EMAIL,F4550_P7_COMPANY:<MAILADRRESS>>,<<WORKSPACE>>
In a PL/SQL proc called from your reset password link this could look something like this :
declare
lv_rest_result varchar2(4000);
begin
lv_rest_result := wwv_flow_utilities.clob_to_varchar2 (
apex_web_service.make_rest_request( p_url => 'http://<<SERVER>>:<<PORT>>/apex/f?p=4550:7::BRANCH_TO_PAGE_ACCEPT|resetpassword:NO:7:F4550_P7_EMAIL,F4550_P7_COMPANY:<MAILADRRESS>>,<<WORKSPACE>>'
, p_http_method => 'GET'
end;You might have to tweak the code a bit, I've tested this a while ago and it should work but you might add some code to find the current workspace etc.
Regards
Bas -
Cookieless session causes redirect loop when deployed to Azure Website
I have a website that needs to use cookieless session. The website works fine locally and the session key gets passed into each request url as expected. However, when deployed to an Azure website, the website requests cause a redirect loop by reloading the
url over and over again with new session keys each time. I've tried setting regenerateExpiredSessionId to false but that does not have any effect. The Azure Website works okay with UseCookies, but I need to use cookieless session for other technical reasons.
What can be done to resolve this issue or get more insight into why it is happening?Hi,
Disabling the affinity can be done in two ways:
In your application
In a site configuration
Which one did you tried.
Regards,
Azam khan
I'm unmarking this as an answer. In no way does this answer the original question. In my previous reply I stated that I used web.config setting to disable ARR Infinity cookie. This did not resolve my problem. Also, could you please take a minute to describe
why you think disabling this feature would solve the problem? The original link you posted does not mention cookieless session or give any description of why that would be related to my problem.
Thanks for trying to help, but unfortunately this has not solved the problem. If you have more details, please provide them. -
Cant download Flash trial, says redirect loop
I want to try a trial of adobe flash but it will not let me even start downloading the software at all. It says redirect loop, i tried to dload on firefox and google chrome, internet explorer does not work on my comp. Also it told me to delete all my cookies from the list and i did but i get the same problem. please help.
That happened once to me when downloading a trial. I just tried it again after a few minutes and it worked. In Firefox, clear al private data including saved sessions. If it keeps up, email support.
-
AD FS - KB3003381 causes redirect loop on login
Hi,
I'm using AD FS 2.1 for SSO (2 IIS sites and several WCF services) but my users have been seeing redirect loops when they try to login. Once the user's browser recognises the loop and interrupts it, they are able to either resubmit the request with a page
refresh (depending on the browser) or navigate to the URL of the site and they are logged in, but this is not a good workaround. We are using SecurEnvoy for 2FA.
This behaviour started shortly after KB3003381 was applied to the production environment, and I have replicated the behaviour on our staging environment. Removing this patch from the staging environment causes the login mechanism to behave normally.
From Fiddler, once users have authenticated successfully using SecurEnvoy, they are directed to
https://<AD FS proxy URL>/adfs/ls/?wa=wsignin1.0&wtrealm=<site URL>&wctx=rm%3d0%26id%3dpassive%26ru%3d%252f&wct=<UTC timestamp>
which results in a 302 redirect to
https://<AD FS proxy URL>/adfs/ls/auth/basic/?wa=wsignin1.0&wtrealm=<site URL>&wctx=rm%3d0%26id%3dpassive%26ru%3d%252f&wct=<UTC timestamp>
This should return a 200, but instead returns a 302 redirect to the same URL, until stopped by the browser.It seems that you have already asked in another forum: http://serverfault.com/questions/658095/adfs-2-1-redirect-loop-on-login
Simply remove the installed update and contact Microsoft to report the issue: http://support.microsoft.com/ContactUs
This posting is provided AS IS with no warranties or guarantees , and confers no rights.
Ahmed MALEK
My Website Link
My Linkedin Profile
My MVP Profile -
JSF Web Application - endless redirecting loop
I've created a simple JSF WebApplication, just one page, one static text. When I deploy it to the bundled server, everything is OK. When I deploy it to a remote server, that I have access to (Sun Java System Application Server Enterprise Edition 8.1_02), and I browse to its URL (http://server:port//Webapplication), the browser shows me an error. IE just displays Page cannot be displayed error, Firefox tells me, that the app. ended up in a redirection loop.
When I browse to /Webapplication/faces/Page1.jsp, everything is ok.
What can be wrong?Hello
We are looking at doing the same thing (iviews in Sharepoint)
Any luck in solving the problem ?
thank you
Robin -
Infinite Redirect Loop when selecting group in Google Groups
When I sign in to Google groups, then select one of my groups, I get into an "infinite redirect loop." The page hangs, "Redirecting" appears in the page title, and at the bottom it says (alternating) "waiting for google.com" or "waiting for groups.google.com". I have Firefox 3.6.3, which I think is latest and greatest.
This problem has been reported to Google and you can see the discussion here:
http://groups.google.com/group/is-something-broken/browse_thread/thread/8fb760742f6ce7ba/f7065d7bd3499f65#f7065d7bd3499f65
You go to the Google Groups help forum, look at "Is something broken" discussion, and look further for "Infinite Redirect Loop." This may be a problem that only affects moderators.
I'm not sure if this is a problem with Firefox, Google groups, or the interaction.
== URL of affected sites ==
http://groups.google.com/Clearing out all cookies worked for me, too.
Not that it matters, but my tentative conclusion is that (a) this is a Google problem and (b) it has something to do with cookies, possibly a defective cookie creation mechanism or something like that. In any event, if it doesn't recur, I would further conclude that whatever-it-was has been fixed. -
Hi,
So I use the web player at work, at home and have the spotify app on my Android phone. I've logged into my premium account through facebook with no problems until yesterday. Suddenly, no matter what computer I'm on, I get a "redirect loop error." I can't log into my account to change my premium payment options and I can't log into my phone app. I've reinstalled the app, cleared all cookies, tried from multiple different browsers and still am getting the same error. What other things can I try?Hey there , welcome to the community!
I apologize for the late reply. If you are still experiencing this issue, contact the accounts team through the online contact form since you've already tried all troubleshooting steps. If you receive an automated e-mail directing you back to the community, just reply to it and you will be connected with an agent that can assist you. -
Hi,
When attempting to login to the new Azure portal (https://portal.azure.com), I end up getting stuck in an infinite redirect loop. I have tried clearing cache/cookies/local storage, tried using incognito-mode, and have tried using IE11, Chrome and Firefox. The
problem appears in all browsers. I am able to login to the old portal (https://manage.windowsazure.com) without any problems.
I was last able to successfully login to the new portal on Thursday, October 2, 2014. While in the new portal, I received a javascript alert saying that new updates had been applied to the portal. After I clicked "OK" on the alert, the redirect loop
issue started.
Does anyone have any suggestions on what else to try? I am using the new Azure Redis Cache and am unable to manage it without the new portal.
Thank you.Hi RJ Regenold,
I am glad to hear that the preview portal is working for you, this portal is a preview version, it will more
stable later. I will close this thread, if you have any issue in future, welcome to our forum.
Sorry for any inconvenience.
Best Regards,
Jambor
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey. -
Portal SRA 7.1 - Redirect Loop
Hi,
sometimes (approx. 50% of connections) get a 'Redirect Loop' when accessing gateway after sucessful login.
Did anybody know how to solve this problem, please?
Other info from logs:
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.0.8) Gecko/2009032713 Fedora/3.0.8-1.fc9 Firefox/3.0.8
Keep-Alive: 300
Connection: keep-alive
The difference in the logs are:
good connection in the: Gateway.toFromBrowser.0.0.log seems like:
GET HTTP/1.0
Allow: GET
GET /portal/dt HTTP/1.0
HTTP/1.0 200 OK
Server: Sun-Java-System/Application-Server
X-powered-by: Servlet/2.4
redirect loop problem log Gateway.toFromBrowser.0.0.log seems:
GET HTTP/1.0
Allow: GET
GET /portal/dt HTTP/1.0
HTTP/1.0 302 Moved Temporarily
Server: Redirector
Location: https://dgw.company.sk/http://dportal2.company.sk/amserver/UI/Login?gw=dgw.company.sk&org=dc%3Dcompany%2Cdc%3Dsk&goto=http://dportal2.company.sk/portal/dt
Content-Length: 292
Content-Type: text/html/html
Connection: Keep-Alive
Keep-Alive: timeout=50,max=6
GET /amserver/UI/Login?gw=dgw.company.sk&org=dc%3Dcompany%2Cdc%3Dsk&goto=http://dportal2.company.sk/portal/dt HTTP/1.0
<message>Response sent back to Browser:
HTTP/1.0 302 Moved Temporarily
Server: Sun-Java-System/Application-Server
Date: Wed, 15 Apr 2009 13:08:30 GMT
Content-type: text/html
X-powered-by: Servlet/2.4
Cache-control: private
Expires: 0
X-dsameversion: 7.1 patch 126357-01
Am_client_type: genericHTML
Content-Length: 0
Connection: Keep-Alive
Keep-Alive: timeout=50,max=7
Location: https://dgw.company.sk/http://dportal2.company.sk/portal/dt
And again the same:
GET /portal/dt HTTP/1.0
HTTP/1.0 302 Moved Temporarily
This continues 10 times both GET /portal/dt HTTP/1.0 and GET /amserver/UI/Login?gw=dgw.company.sk...
and than firefox and IE failed with redirect loop.
My configuration is:
2 x AS 8.2 with AM 7.1, Portal and SRA Gateways in the two non-global zones. AM with session failover and Portals are both in their own domain1 (non-cluster, non-portlet failover) with SRA Gateways configured on the different virtual IP and aliases.
JDK: 11866*-19
JavaDB: 125246-03
Cacao: 12389*-10
MQ: 12506*-05
AS: 124673-10
PS: 124302-12You can also try adding the host you are trying to access to "URLs to which User Session Cookie is Forwarded" under Secure Remote Access --> Profiles in psconsole.
-
Redirection loop detected while opening Exchange 2007 mailboxes through Exchange 2013 OWA page
Team, in our infra Exchange 2013 CU8 & Exchange 2007 SP3 RU15 running. Exchange 2013 recently deployed but while opening exchange 2007 users mailbox through 2013 OWA getting error "Redirection loop detected". Want to update you few things :
Public DNS record created as mail.myinfra.in with x.x.x.2 IP and legacy.myinfra.in with x.x.x.3 IP.
Virtual directory modified mail.myinfra.in for 2013 & legacy.myinfra.in for 2007.
All the OWA request need to pass through public DNS only no internal DNS record for OWA.
Through ISA already rule created and tested also like https://mail.myinfra.in/owa giving me 2013 OWA page & https://legacy.myinfra.in/owa giving 2007 owa page. Only problem while opening https://mail.myinfra.in/owa with 2013 mailbox id/pwd working fine
but with 2007 mailbox id/pwd giving error "Redirection loop detected".
Appreciate if you can help quickly.Hello
tip: check iis log on both of exch servers and check owa application haven't got "HTTP redirect" enabled.
sorry my english -
APEX 3.2: Switching between APEX authentication and LDAP?
I'm building an APEX 3.2 application that has to be deployed automatically to the target environments (by executing the APEX export SQL in the relevant parsing schema).
One problem is that different environments will have to use different authentication mechanisms:
Development and System Test will use simple APEX authentication (i.e. APEX users).
Acceptance Test and Production will use LDAP via OID for single sign-on.
So how do I set the application up so that it can switch from APEX authentication to LDAP authentication if it is in the Acceptance Test or Production environments?
My customers seem very reluctant to have a manual step in the process e.g. to switch the authentication scheme for the application after installation, so I need to find a way to do this automatically if possible.
Any suggestions?
Thanks.
ChrisChris,
We do something similar, in that we dynamically switch authentication based on the application you're trying to log in to. Basically, you need to set up a custom authentication procedure which checks which system you're in, and then validates the user appropriately.
Does that help?
-David
Maybe you are looking for
-
Error while deleting from BIA index
HI EXPERTS GETTING BELOW ERROR PLZ GIVE CLARITY ON THIS: 1.A communication error occured, with the TREX TcpIp 2.Error while deleting from BIA index; reconstruction required THANKS ®ARDS, rAMESH,
-
All I get when I turn iPod on is the USB connection to iTunes image. Then the system tells me that I have to restore the iPod. When I go through that process it says it cannot be restores because the device cannot be located. What do I do??
-
Problem in set selectedTextcolor in uitableview cell in iPhone SDK 3.1.2
Hello, I set selected text color in uitableview cell using cell.selectedTextColor = [UIColor whiteColor]; for iPhone SDK 2.2.1. Now i use iPhone SDK 3.1.2, So for that i make change as per documentation for that i use textLabel properties. But select
-
What to do after trying like all methods of deleting Blackberry Messenger!! HELP ASAP!!
Ok so basically, i am trying to delete bbm. I went to application management in options went to it and pressed delete as it was in the process of deleting my phone dropped and my battery fell out, so i put my battery back in and started my phone up a
-
No sound from Macbook Pro after restart or sleep
I know there are a lot of threads on this type of issue, but I haven't found a way to solve my problem. My computer: Late 2008 MBP 15" OSX 10.9.5 Whenever I shutdown or sleep the computer, the sound does not work when I start it up or wake it up. The