0 Replies Latest reply: Apr 17, 2013 6:47 PM by 773020 RSS

    Error 403--Forbidden- From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1

    773020
      I am getting the following error

      From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
      10.4.4 403 Forbidden
      The server understood the request, but is refusing to fulfill it. Authorization will not help and the request SHOULD NOT be repeated. If the request method was not HEAD and the server wishes to make public why the request has not been fulfilled, it SHOULD describe the reason for the refusal in the entity. This status code is commonly used when the server does not wish to reveal exactly why the request has been refused, or when no other response is applicable.

      It throws an error when I click on a button which in turn calls form authentication[edit.do] and it fails. LDAP server is configured for group- My Admin. We are using AMAgentFilter

      Its currently working in PRODUCTION WL8 with given configurations, please be noted that we have not changed anything in config files[web.xml/weblogic.xml]

      WEBLOGIC is configured for LDAP Server , i used same credetials to login , i am able to login to welcome screen, but when there is FORM AUTHENTICATION [edit.do], it fails.


      This edit button calls [edit.do]. It fails there. What we need to check for making it working . We are upgarding from WL 8 to WL 10. its working fine in WL8.

      Do we need to provide anything in WEBLOGIC server to configure the group name My Admin


      WEB.XML

           <!-- AM filter used for SSO -->
           <filter>
           <filter-name>Agent</filter-name>
           <display-name>Agent</display-name>
           <filter-class>com.sun.identity.agents.filter.AmAgentFilter</filter-class>
           </filter>

           <filter-mapping>
           <filter-name>Agent</filter-name>
           <url-pattern>/*</url-pattern>
           </filter-mapping>

      <security-constraint>
           <web-resource-collection>
           <web-resource-name>saveAction</web-resource-name>
           <url-pattern>edit.do</url-pattern>
           <url-pattern>update.do</url-pattern>     
           <http-method>POST</http-method>
           <http-method>GET</http-method>
           </web-resource-collection>     
           <auth-constraint>
           <role-name>Admin</role-name>
           </auth-constraint>
           
      </security-constraint>

      <security-role>
      <description>Admin</description>
      <role-name>Admin</role-name>
      </security-role>




      WEBLOGIC.XML

      <security-role-assignment>
      <role-name>Admin</role-name>
      <principal-name>My Admin</principal-name>
      </security-role-assignment>


      please provide me the checklist to find out the reason for this error.

      1, weblogic server configuration checklist
      2. LDAP Server configuration checklist

      Thanks