Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-10614

OIDC consent page not working with HttpOnly iPlanetDirectoryPro cookie

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 13.5.0
    • Fix Version/s: 13.5.1
    • Component/s: XUI
    • Labels:
    • Sprint:
      AM Sustaining Sprint 34
    • Story Points:
      1
    • Support Ticket IDs:

      Description

      • preparation *
        1. login to admin console
        2. [Deployment] -> [Servers] -> select server -> [Advanced]
        3. add "com.sun.identity.cookie.httponly = true" and click [Save]
        4. got to the realm you want to run OAuth2
        5. [Configure OAuth Provider] -> [Configure OpenID Connect] from Common Tasks
        6. [Agents] -> [OAuth 2.0 / OpenID Connect Client] and create new client
        7. deploy openid sample app https://github.com/ForgeRock/openid and configure
      • recreation steps *
        1. access http://<host>:<port>/openid
        2. start "Basic Client Profile" flow
        3. login to authorization provider (OpenAM)
        4. on "OAuth authorization page", click "Allow"
        5. you will receive error

        Attachments

          Activity

            People

            • Assignee:
              sachiko Sachiko Wallace
              Reporter:
              sachiko Sachiko Wallace
              QA Assignee:
              Andrew Vinall
            • Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: