We are using Apache web agent 4.0.0 with OpenAM 13.0.
Everything works fine, except when the session Timeout and I try to access the protected URLI got 403 forbidden access. If I close the browser and go the protected URL everything is working fine again. It should expect that showing session timeout page when session expired.
Checked the agent and fond message below:
validate_policy: remote session/policy call to validate 'https://xxxxxxx' failed (max 3 reties exhausted)
To replicate the issue:
1. Login OpenAM and access an agent protected URL
2. Under OpenAM console, remove the login user session
3. Refresh the browser in step 1. Then the 403 error will occur