Ignoring request not on consumer URL or redirect URL

Similar Messages

• OIM - Redirection URL in a Authentication Rule Action must not contain "?"?

  Hello,
  we run OAM to secure some APEX-Application. For one or two reasons we have to use a redirection URL to forward after successfull authentication with Form-Based-Authentication to the application. This works wonderfull with "normal" HTML-Pages. But as soon there is a parameter to be delivered, the Parameter Redirection URL isn't interpreted correct anymore.
  An Example:
  Redirection URL: https://test.net/test/index.htm
  works wonderful, after authentication user is forwarded to the specified URL.
  Redirection URL: https://test.net/pls/htmldb/f?p=300
  does not work, after authentication user is forwarded to https://test.net/pls/htmldb/f. Everything after the "?" (within ?) is being cut off.
  Is it possible to enter a URL for redirection with parameter identifiers like "?" ?
  Regards
  Hans

  Already found a solution,
  when entering only /pls/htmldb/f?p=300 it works...
  strange..

• Redirecting URL Servlet not working

  Hi all,
  All my JSPs are located in pages folder of my Application's Web Context. I need to redirect JSP URLs to the pages folder. For example if user requests http://localhost:8080/RedirectJSPApp/test.jsp then I need to redirect to http://localhost:8080/RedirectJSPApp/pages/test.jsp. But if user request http://localhost:8080/RedirectJSPApp/pages/test.jsp then i dont need to do any redirection.
  So I define a Servlet:
  package com.srh.servlet;
  public class RedirectServlet
        extends javax.servlet.http.HttpServlet
     public void doGet(HttpServletRequest request, HttpServletResponse response)
           throws ServletException, IOException
        doPost(request, response);
     public void doPost(HttpServletRequest request, HttpServletResponse response)
           throws ServletException, IOException
        String contextPath = request.getContextPath();
        String requestUrl = request.getRequestURL().toString();
        String targetRequestUrl = null;
        String jspRequested = null;          
        int index = -1;
        index = requestUrl.indexOf("/pages/");
        // The JSP is not called properly;
        if (index == -1)
           // Call the JSP properly
           index = requestUrl.indexOf(contextPath);
           if (index != -1)
              targetRequestUrl = requestUrl.substring(0, index+contextPath.length());
              jspRequested = requestUrl.substring(index+contextPath.length()+1);
              targetRequestUrl += "/pages/" + jspRequested;
              response.sendRedirect(targetRequestUrl);
  }In the web.xml I wrote:
     <servlet>
        <description>This Servlet redirects JSP URLs to appropriate lcoation w.r.t. Server</description>
        <display-name>RedirectServlet</display-name>
        <servlet-name>RedirectServlet</servlet-name>
        <servlet-class>com.srh.servlet.RedirectServlet</servlet-class>
     </servlet>
     <servlet-mapping>
        <servlet-name>RedirectServlet</servlet-name>
        <url-pattern>*.jsp</url-pattern>
     </servlet-mapping>I have a test.jsp in pages folder:
  <html>
     <head>
        <title>Test</title>
     </head>
     <body>
        Inside test.jsp
     </body>
  </html>I deployed on JBoss 4.2.0. I type http://localhost:8080/RedirectJSPApp/test.jsp in my browser and it changes to http://localhost:8080/RedirectJSPApp/pages/test.jsp which is perfect but it never prints "Inside test.jsp" on the page. Why this is happening?
  If I remove RedirectServlet entries from web.xml and just type in http://localhost:8080/RedirectJSPApp/pages/test.jsp then it prints "Inside test.jsp" on the page. What I am missing here?
  TIA
  TV

  I tried forward of RequestDispatcher but still same problem:
  package com.srh.servlet;
  public class RedirectServlet
        extends javax.servlet.http.HttpServlet
     public void doGet(HttpServletRequest request, HttpServletResponse response)
           throws ServletException, IOException
        doPost(request, response);
     public void doPost(HttpServletRequest request, HttpServletResponse response)
           throws ServletException, IOException
        String contextPath = request.getContextPath();
        String requestUrl = request.getRequestURL().toString();
        String targetRequestUrl = null;
        String jspRequested = null;          
        int index = -1;
        index = requestUrl.indexOf("/pages/");
        // The JSP is not called properly;
        if (index == -1)
           // Call the JSP properly
           index = requestUrl.indexOf(contextPath);
           if (index != -1)
  //          targetRequestUrl = requestUrl.substring(0, index+contextPath.length());
  //          jspRequested = requestUrl.substring(index+contextPath.length()+1);
  //          targetRequestUrl += "/pages/" + jspRequested;
  //          response.sendRedirect(targetRequestUrl);
              jspRequested = requestUrl.substring(index+contextPath.length()+1);
              RequestDispatcher rd = request.getRequestDispatcher("/pages/" + jspRequested);
              rd.forward(request, response);
  }

• Web Auth Type: Customized(downloaded) Redirect URL after login not working.

           5508WLC as anchor controller with WLC1 and WLC2 with WCS. I have 2 public ssids set up to go directly to the internet.
  Everything is working as it should.  I downloaded the web auth bundle from Cisco and  will just use a disclaimer page and then if the user clicks on the accept button they will be redirected to our company web page, and then they can get out to the internet.
  I have edited the aup.html and login.html to say what I want it to.  I have 2 different login.html pages and bundle to a .tar file like the documentation says.  I download it via tftp to the controller and it is successful. The disclaimer page opens up when I connect and it looks as it should.  The problem is I cannot seem to get the accept button to work. It redirects to a web page but it is undefined. 
     I must be missing some setting somewhere, but I just can not seem to find it.  Is there any line I need to edit in the login.html files that will redirect the page.    The config on the Web Login Page  Redirect URL after login is http://www.mccg.org which is our home page.
  Any help will be appreciated.  I cannot seem to fine very good documentation, or I am just overlooking something.
  Thanks
  John   

  Your HTML code is wrong. Attach your code if your okay with it and I can check.
  Sent from Cisco Technical Support iPhone App

• Cisco ISE guest portal redirect not working after successful authentiation and URL redirect.

  Hi to all,
  I am having difficulties with an ISE deployment which I am scratching my head over and can't fathom out why this isn't working.
  I have an ISE 3315 doing a captive webportal for my guest users who are on an SSID.  The users are successfully redirected by the WLC to the following URL:https://x.x.x.x:8443/guestportal/Login.action?portalname=XXX_Guest_Portal
  Now when the user passes through the user authentication splash screen they get redirected to https://x.x.x.x:8443/guestportal/guest/redir.html and recieve the following error:
  Error: Resource not found.
  Resource: /guestportal/
  Does anyone have any ideas why the portal is doing this?
  Thanks
  Paul

  Hello,
  As you are not able to  get the guest portal, then you need to assure the following things:-
  1) Ensure that the  two  Cisco av-pairs that are configured on the  authorization profile should  exactly match the example below. (Note: Do  not replace the "IP" with the  actual Cisco ISE IP address.)
  –url-redirect=https://ip:8443/guestportal/gateway?...lue&action=cpp
  –url-redirect-acl=ACL-WEBAUTH-REDIRECT (ensure that this ACL is also  defined on the access switch)
  2) Ensure that the URL redirection portion of the ACL have been  applied  to the session by entering the show epm session ip   command on the switch. (Where the session IP is the IP address  that is  passed to the client machine by the DHCP server.)
  Admission feature : DOT1X
  AAA Policies : #ACSACL#-IP-Limitedaccess-4cb2976e
  URL Redirect ACL : ACL-WEBAUTH-REDIRECT
  URL Redirect :
  https://node250.cisco.com:8443/guestportal/gateway?sessionId=0A000A72
  0000A45A2444BFC2&action=cpp
  3) Ensure that the preposture assessment DACL that is enforced from  the  Cisco ISE authorization profile contains the following command  lines:
  remark Allow DHCP
  permit udp any eq bootpc any eq bootps
  remark Allow DNS
  permit udp any any eq domain
  remark ping
  permit icmp any any
  permit tcp any host 80.0.80.2 eq 443 --> This is for URL redirect
  permit tcp any host 80.0.80.2 eq www --> Provides access to internet
  permit tcp any host 80.0.80.2 eq 8443 --> This is for guest portal
  port
  permit tcp any host 80.0.80.2 eq 8905 --> This is for posture
  communication between NAC agent and ISE (Swiss ports)
  permit udp any host 80.0.80.2 eq 8905 --> This is for posture
  communication between NAC agent and ISE (Swiss ports)
  permit udp any host 80.0.80.2 eq 8906 --> This is for posture
  communication between NAC agent and ISE (Swiss ports)
  deny ip any any
  Note:- Ensure that the above URL Redirect has the proper Cisco ISE FQDN.
  4) Ensure that the ACL with the name "ACL-WEBAUTH_REDIRECT" exists on  the switch as follows:
  ip access-list extended ACL-WEBAUTH-REDIRECT
  deny ip any host 80.0.80.2
  permit ip any any
  5) Ensure that the http and https servers are running on the switch:
  ip http server
  ip http secure-server
  6) Ensure that, if the client machine employs any kind of personal  firewall, it is disabled.
  7) Ensure that the client machine browser is not configured to use any  proxies.
  8) Verify connectivity between the client machine and the Cisco ISE IP  address.
  9) If Cisco ISE is deployed in a distributed environment, make sure  that  the client machines are aware of the Policy Service ISE node FQDN.
  10) Ensure that the Cisco ISE FQDN is resolved and reachable from the  client machine.
  11) Or you need to do re-image again.

• Redirect URL rewriting in WLS8.1 and WLS9.2

  Hi,
  I am looking for help to solve the redirect URL issue for the following configuration:
  A hardware load balancer sits between the web clients and a weblogic cluster (one managed server at this moment, will add more later). The web clients use HTTPS to access the server; the load balancer converts the HTTPS to HTTP and then forwards the request to weblogic cluster.
  The problem I am trying to solve is, when a redirect is sent back to the web client, it should be in HTTPS and use virtual host name, not the actual host name which sends the redirect response.
  I've tried the "frontend host" parameters in the admin console; but could not see any effect. Any help will be greatly appreciated.
  Harry

  Problem solved by configuring the webapp to send relative (instead of absolute, which is the default) redirect URL back to the web client.
  Thanks.

• Portal Logoff redirection URL

  Hi,
  I want to redirect the URL to another page from the default log on page when the user logs off. I know we can change it in ume.logoff.redirect.url and give the desired URL. But the problem is we have two different sites and each sites should return to different screens once the logoff is clicked. So the URL cannot be maintained in this property. We have two mastheads for both this sites.
  I tried to figure it out in the code. The URL to be mentioned is present in logOutComponent which is part of the jar file which comes with masthead. I cant change the desired URL in that component. Where can i change the URL to get the desired result?
  Regards,
  p188071

  Hi <name>,
  I decompiled the "logOutComponent" .class and it containts the following code:
  // Decompiled by DJ v3.6.6.79 Copyright 2004 Atanas Neshkov  Date: 19-1-2008 18:04:06
  // Home Page : http://members.fortunecity.com/neshkov/dj.html  - Check often for new version!
  // Decompiler options: packimports(3)
  // Source File Name:   LogOutComponent.java
  package com.sapportals.portal.navigation;
  import com.sap.security.api.UMFactory;
  import com.sap.security.api.util.IUMParameters;
  import com.sapportals.portal.prt.component.*;
  import com.sapportals.portal.prt.pom.IEvent;
  import com.sapportals.portal.prt.runtime.IPortalRuntimeResources;
  import com.sapportals.portal.prt.runtime.PortalRuntime;
  // Referenced classes of package com.sapportals.portal.navigation:
  //            INavigationGenerator
  public class LogOutComponent extends AbstractPortalComponent
      public LogOutComponent()
      public void doOnNodeReady(IPortalComponentRequest request, IEvent event)
          String externalUrl = UMFactory.getProperties().get("ume.logoff.redirect.url");
          boolean silent = UMFactory.getProperties().getBoolean("ume.logoff.redirect.silent", false);
          if(externalUrl != null && !externalUrl.equals("") && !silent)
              request.redirect(externalUrl);
          } else
              INavigationGenerator navigationService = (INavigationGenerator)PortalRuntime.getRuntimeResources().getService("com.sap.portal.navigation.service.navigation");
              String URL = navigationService.getPortalURL(request, null);
              request.redirect(URL);
      public void doContent(IPortalComponentRequest iportalcomponentrequest, IPortalComponentResponse iportalcomponentresponse)
  As you can see this module just gets the property "ume.logoff.redirect.url", does an adittional check and then gives back this url..
  Not that fancy..
  My suggestion to you would be to edit the portalapp.xml, look for the component "default" and extend it with an additional component property called "MyCustomLogOffURL" for example. To do this just copy the allready excisting "Help URL" property and rename.
  Example:
  <property name="MyCustomLogOffURL" value="http://yourloggofurlforthismasthead.com">
    <property name="plainDescription" value="My Custom Logoff URL" />
    <property name="category" value="Navigation" />
  </property>
  Adding this property here makes you set it seperately for both the masterheads you use, because you can just set it in the Property editor of the PCD
  In addition you now need to modify the "HeaderiView.jsp" a bit to use your custom parameter instead of the "logOutComponent".
  To do that add the following initialisation at the beging of the jsp file:
  final String MY_CUSTOM_LOG_OFF_URL = "MyCustomLogOffURL";
  ....and change the function GetLogoffURL so that it will look like this:
  private String GetLogoffURL(IPortalComponentRequest request)
       String value = (String)request.getNode().getValue(MY_CUSTOM_LOG_OFF_URL);
       return value;
  <h3>PLEASE TAKE NOTICE OF THE FOLLOWING</h3>
  <h5>Never change the SAP component always create a copy and rename it to your own namespace!!!</h5>
  Good Luck,
  Benjamin Houttuin

• LoginActions PEI defeats / breaks redirect url

  This post is 2 years old (http://forums.bea.com/bea/message.jspa?messageID=500021277&tstart=0) but names my exact problem:<br><br>
  <i>"If the user is not currently logged in and they click on a link which brings them to some page within the portal (like a folder in the directory), they are successfully logged in, but my PEI then fires and it has no knowledge that they came to the portal via any URL other than the default one. So the PEI does what it is intended to do, but not what the user expected.
  I can't seem to find anything in the two objects I have in my hand in the PEI (IPTSession and ApplicationData) which lets me find out what original URL was requested ... if it's different from the default portal URL, then I can have my PEI exit without redirecting the user anywhere else.
  Is there any way to find the requested URL while in a login PEI? Thanks in advance.</i><br><br>
  Where the portal wants to go is not specified in the url - much like in our current 4.5 deployment it flat out says 'RedirectUrl' in the querystring. In 6.1, that's not there. But the redirect location is held somewhere because if I turn off my login pei, the out of the box redirect works just fine. Does anyone know where the redirect community id is saved in the _appData object passed into the OnAfterLogin()? The only other object passed into this method is an IPTSession object, but I don't think it would be there. Any help would be appreciated.

  Got it:<br><br>
  IXPRequest xpRequest = _appData.GetRequest();
                 string redirectAfterLogin = xpRequest.GetParameterValue(ASConstants.REDIRECT_AFTER_LOGIN_INPUT);
  <br><br>
  Enjoy!

• Change the redirect URL sent to reverse proxy

  Hi all,
  My system is composed of a reverse proxy(Apache 2.046) and a backend webserver (Oracle HTTP Server).
  To connect to a web application on the back end web server, the Internet user connect to reverse proxy via HTTPS and the reverse proxy forward the request to backend webserver via HTTP.
  Example :
  Internet user type :
  https://myreverseproxy/myWebApp
  The reverse proxy translate this to :
  http://mybackendserver/myWebApp
  The problem is myWebApp do a redirect like this:
  http://myreverseproxy/myWebApp/login.jsp
  How can I config the reverse proxy to change the redirect URL to :
  https://myreverseproxy/myWebApp/login.jsp
  Thank you in advance

  Hi Ove
      That is working fine.. Only thing i did is mapping node to /author . But is it possible to hit the author instance only wen i type http://localhost:4502/author . Ie: if I type http://localhost:4502 it should not resolve to my login page
  Thanks
  veena

• ISE 1.2 CWA Redirect URL

  Hi,
  Just wondered was there anyway to manipulate what webauth URL is sent to a client in the redirect string. Currently my ISE sends clients the internal machine name, I was wondering if there was anyway I can change this.
  I know on local webauth on the WLC you can set external URL's, does this feature exist in the ISE?
  TIA
  -G
  Sent from Cisco Technical Support iPad App

  Users Are Not Appropriately Redirected to URL
  Symptoms or Issue
  Administrator   receives one or more "Bad URL" error messages from Cisco ISE.
  Conditions
  This   scenario applies to 802.1X authentication as well as guest access sessions.
  Click   the magnifying glass icon in Authentications to launch the Authentication   Details. The authentication report should have the redirect URL in the RADIUS   response section as well as the session event section (which displays the   switch syslog messages).
  Possible   Causes
  Redirection   URL is entered incorrectly with invalid syntax or a missing path component.
  Resolution
  Verify   that the redirection URL specified in Cisco ISE via Cisco-av pair "URL   Redirect" is correct per the following options:
  •CWA   Redirection URL:   https://ip:8443/guestportal/gateway?sessionId=SessionIdValue&action=cwa
  •802.1X   Redirection URL:   url-redirect=https://ip:8443/guestportal/gateway?sessionId=SessionIdValue&action=cpp

• GRC 10 - SSO via Portal - how to redirect url in notification variables

  Dears,
  I am in the process of designing our GRC 10 machine to be accessed via SSO in the Enterprise Portal. Yet I cannot find any info on what will happen with the URLs that are placed by ARM MSMP workflow in the variables of notifications/approvals.
  I typically would (as in 5.3) expect a redirect URL to be made available as an option.
  As an example: the Firefighter Log notification standard holds a variable pointing the URL to :
  http://GRC10server:GRC10port/sap/bc/webdynpro/sap/grac_ui_spm_log_email?sap-client=001&sap-language=EN&WF_ID=53FB8FEAC9E260D6E10000000AF90C44&APP_TYPE=1
  Yet now with SSO via the portal we also want this URL to go via the portal instead of directly to the GRC machine. How can we achieve that?
  Is there a configuration way to have GRC10server:GRC10port adjusted to the portal address..
  (mind that the WF_ID segment in this url is dynamically generated, so directly sqeezing in a static portal url is not an option)
  Cheers,
  Jim

  Hi Neeraj,
  Thx for your reaction. This unfortunately will not do the job as pasting the URL in the notification template will make it static. The problem is that the URL inserted by default is a dynamically created one which holds a variable pointer to a workflow object id.
  Now i am researching if a custom build portal redirect application will do the job. But there must be others having the same problem if you want the GRC iview in the portal to be the 'one-stop-shop' for your GRC users...
  Cheers,
  Jim

• When I add an opendocument login token, it wipes out my parameter/prompt response in the Redirect URL

  I am having this issue and I wonder if anyone has any pointers?
  When I send the URL with the single prompt response &lsSPrompt0=1234567 it works fine but I have to login to InfoView.
  So I created a login token .jsp and that took care of the login for InfoView, but it also killed my prompt value.
  The code that I got from another site that does the same thing I WANT to do seems to create a cookie to store the passed prompt value in, then it creates a login token, then it assembles it all in the redirect URL and sends it to the openDocument.jsp.
  The login token works like a champ, but the prompt value (initially passed in to the cookie as "Prompt0") ends up passing from the Redirect URL to the openDocument.jsp with a value of NULL (lsSPrompt0=NULL).
  In my lack of knowledge, I am thinking maybe it has something to do either with how the cookie is being created, how it is being passed, or how/if it is getting stored at the target.  The cookie/token.jsp and the openDocument.jsp are in different folders on the same domain.
  So, I pass this URL:
  http://server:8080/InfoViewApp/token.jsp?&lsSPrompt0=1234567
  The token.jsp that it hits looks like this:
  So, the redirect winds up hitting the target looking like this:
  http://server:8080/OpenDocument/opendoc/openDocument.jsp?token=logonToken&iDocID=45227708&sKind=FullClient&lsSPrompt0=NULL&NAII=N&buttonrefresh=hide&buttonexport=hide
  Obviously, my problem is this:  lsSPrompt0=NULL
  Any pointers or nuggets of wisdom are GREATLY appreciated?
  Also of note, I wasn't sure if I needed to publish this token.jsp as a Webapp to Tomcat.
  I just placed the .jsp file in the folderTomcat5.5/webapps/InfoViewApp (same location as the client who has it working).
  Do I need to publish it?  Is that part of the problem?
  I am a little out of my realm here but trying to learn!
  We are on BOXI R2, Tomcat 5.5, JAVA, and I am having the same behavior on my personal XI 3.0 server too
  Thanks in advance,
  Randy

  I believe it's storing the info in a cookie so that it can be used later.  You don't mention which version of BO you're using, but I've sometimes found that the logon tokens created in 4.x contain special characters and may need to be URL encoded.  Also, I've found that it helps to put the logon token at the end of the URL after any parameters instead of in the middle before the parameters.
  -Dell

• Getting Warning about Redirection url

  Hi,
  we have the the portal application running on the weblogic 11g and upon login, home page of our app is loaded, but I do see the following warning message on the portal server logs. Any idea how we can supress this warning?
  <Warning> <netuix> <BEA-423420> <Redirect is executed in begin or refresh action. Redirect url is https://<servername>.arccorp.com:443/PortalApp/ARCGateway.portal?_nfpb=true&amp;_st=&amp;_pageLabel=ARC_Home&amp;_nfls=false
  Thanks
  sravi

  Hi Sravi,
  I am not sure if this is your situation or not, but hopefully it could be helpful for you.
  It is not supported for a remote pageflow portlet (WSRP producer) to redirect from its pageflow begin or refresh action. Because of this limitation, WebLogic Portal logs a warning when any portlet's pageflow attempts to redirect from either of these two actions.
  It is legal to redirect from these actions if the portlet is not a WSRP producer. If this is the case, Oracle has added a utility method that can be called prior to the redirect which can suppress these warning messages:
  - Class: com.bea.netuix.servlets.controls.content.PageflowLoggingHelper
  - Method: public static void dontLogRedirectWarning(HttpServletRequest req)
  Calling this method from the pageflow's begin or refresh action prior to the redirect will suppress the Netuix redirect warnings.
  Thanks,
  Cris

• No destination URL is defined. Use the followind redirect URL in Transactio

  Hi,
  I am new BSP, I have to display logon screen in my BSP application, i was copied SYSTEM bsp application and tried to run it, but it is throwing error "No destination URL is defined. Use the followind redirect URL in Transaction SICF:  /sap(====)/public/bsp/sap/login/default.htm?sap-url= " . Please let us know what has to be done for the same
  Message was edited by:
          Rams BSP

  Hi Rams,
  see http://help.sap.com/saphelp_47x200/helpdata/en/33/8351f1f3351c41853ea3508cbef0cf/frameset.htm
  and
  http://help.sap.com/saphelp_47x200/helpdata/en/1d/13c73cee4fb55be10000000a114084/frameset.htm
  It sounds like you have not configured the redirect correctly in the ICF.
  Cheers
  Graham

• Form Based Authentication Redirect URL

  I'm using form based authentication in standalone OC4J 10.1.3.1. I have set the system property oc4j.formauth.redirect to true to force OC4J to redirect using 302 any successful authentication to j_security_check.
  The problem is that the redirect URL loses any query parameters. Here's the raw HTTP being posted:
  POST http://localhost:8988/manage/j_security_check HTTP/1.1
  Host: mvakoc-pc.peoplesoft.com:8099
  User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.1) Gecko/20061204 Firefox/2.0.0.1
  Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
  Accept-Language: en-us,en;q=0.5
  Accept-Encoding: gzip,deflate
  Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
  Keep-Alive: 300
  Connection: keep-alive
  Referer: http://mvakoc-pc.peoplesoft.com:8099/manage/target?instanceName=denlcmlx1_entserver_1&targetType=entserver
  Cookie: JSESSIONID=0a8b7ff6231c049914997fdb4ebb93b4854b0956862b; SignOnDefault=18438; e1AppState=
  Content-Type: application/x-www-form-urlencoded
  Content-Length: 62
  X-Forwarded-For: 10.139.127.246
  j_username=username&j_password=password&url=%2Fmanage%2Fhome
  However the response back drops off the query parameters:
  HTTP/1.1 302 Moved Temporarily
  Date: Fri, 05 Jan 2007 21:59:22 GMT
  Server: Oracle Containers for J2EE
  Content-Length: 231
  Connection: Keep-Alive
  Keep-Alive: timeout=15, max=100
  Location: http://mvakoc-pc.peoplesoft.com:8099/manage/target
  <HTML><HEAD><TITLE>Redirect to http://mvakoc-pc.peoplesoft.com:8099/manage/target</TITLE></HEAD><BODY>http://mvakoc-pc.peoplesoft.com:8099/manage/target</BODY></HTML>
  Any workaround?

  It does not appear to be quite the same issue. That bug indicates that everything works fine in a standalone OC4J environment. This would be true with the use case specified as the original URL (/em/console/ias) does not include any query parameters. In my case the original URL contains query parameters so the ultimate redirected URL should also contain those.