Unsolicited Login OAM

Unsolicited Login OAM

Unsolicited Login is used when we want to authenticate user without any request_id or resource.

• We need only username, password and successURL for unsolicited login.
• If we are doing unsolicited login OAM will use default domain IAMSuite.
• We post username, password and successURL action to http://OAMHost:Port/oam/server/authentication.
• Once user successfully logged in, it will redirect user to successURL.
• Only Post will supported, GET and DELETE won’t be supported.

Implementation:

Navigate to oam-config.xml located in C:\Oracle\Middleware\user_projects\domains\base_domain\config\fmwconfig and edit following property.

DirectAuthenticationServiceDescriptor  to true

Restart both Admin and managed servers.

Example Unsolicited Login Form:

<form id="loginForm" name="loginForm" action="http://CHINNI-PC:14100/oam/server/authentication" method="post" hidden="true" >

<input id="username" type="text" name="username" />

<input id="password" type="password" name="password" />

<input id="successurl" type="text" name="successurl" value="http://chinni-pc:7777/"/>

<input type="submit" value="submit" />

</form>

Once user logs in, user will be redirected to successurl.

More here: http://docs.oracle.com/cd/E27559_01/dev.1112/e27134/custpages.htm#AIDEV6382