I am running weblogic 12.2.1.3 , ORDS 19.2.0.r1991647 , APEX 19.2.0.00.18 with an Oracle 12c database. The Weblogic 12.2 middle tier is front ended by oracle httpd server (same 12.2 version) We implemented SAML 2 authentication for single sign on (using http header variable authentication scheme in APEX) with the the NetIQ Identity Manager. This is the error I get when upon first access of an APEX application URL from the Safari Browser (MacOS or IOS - does not matter). No such error in Firefox, Chrome or Edge. The error occurs after the apex URL is invoked, it is handed off to the identity manager and then comes back to the apex URL.
403 Forbidden
- The request cannot be processed because this resource does not support Cross Origin Sharing requests, or the request Origin is not authorized to access this resource. If ords is being reverse proxied ensure the front end server is propagating the host name, for mod_proxy ensure ProxyPreserveHost is set to On
If I open a new tab and try the apex URL it works fine (no hand off to identity manager since I've been authenticated already)
I have tried every solution proposed on the world wide web and cannot solve this problem. Last year when running ORDS 17.4 I opened a multi-month long service request with oracle support and did not get a solution.
I have endured this problem for a year + now and must solve. I am primarily an APEX developer but managing this infrastructure is 5% of my job.
Please anyone advise how I might approach solving this problem.
Thank you for your time.
Dave