OAM 11g: Resource URL

Just in case if you have a requirement to retrieve the resource URL or the original URL the user accessed during authentication process in OAM 11g, then this post is for you. If you wish to redirect the user to different page post authentication/authorization success or failure and you would like to know the original URL in the redirected page then you will most likely hit this issue I am talking about.

Here is the typical use case:

  1. User access URL say http://www.sso-test.com/oam
  2. User gets login page.
  3. User submits credentials.
  4. Login is successful.
  5. Authentication Policy is configured to redirect to http://www.sso-success.com upon authentication success.
  6. User is redirected to http://www.sso-success.com
  7. User would like to do some processing in http://www.sso-success.com application and wish to finally redirect to http://www.sso-test.com/oam.

OAM 11g provides res_url header in response headers. To do this, goto authentication/authorization policy, goto Responses. Specify the response name, response type (header) and response value ($request.res_url). See the documentation for more details.

The expected value of the response header is http://www.sso-test.com/oam, provided if you had configured host variation in webgate host identifier as www.sso-test.com.

However if you don’t have this host variation, all you would get is the host identifier ie., http://<<host-identifier>>:0/oam.

This seems more like a product bug, hence for a work around, make sure to add host variation in host identifier.

Please leave your comments if you witness different behavior.

If you want to learn more in Oracle Access Manager then register for our free minicourse by clicking on below image.

OAM_img

About the Author Mahendra

I am engulfed in Oracle Identity & Access Management domain. I have expertise on providing the optimized solutions for user provisioning, web access management, Single Sign-On and federation capabilities etc., I am also well versed with complex integrations within Identity Management and other product domains. I have expertise on building demos and implementation experience on products Oracle Access Manager, Oracle Adaptive Access Manager, Oracle Entitlement Server, Oracle Virtual Directory, Oracle Internet Directory etc., Look @ my blog: http://talkidentity.blogspot.com

Leave a Comment:

4 comments
Surya Ch says March 27, 2015

Hi Mahendra,

This is a good post. I want to know if it is possible to retrieve the HTTP referer field and send it back in the policy response headers. Please assist.

Thanks,
Surya

Reply
Mahendra says March 27, 2015

I’m not sure if we can send custom headers in response . You can try though…

Reply
Surya Chirravuri says April 1, 2015

Thanks Mahendra. Any specific way you want me to try to achieve that?

Reply
Add Your Reply