am geting this error when runing application in oracle ohs hhtp server

The website declined to show this webpage

HTTP 403

Most likely causes:
•This website requires you to log in.

What you can try:

Go back to the previous page.

More information More information

this my config

# This is the main Oracle HTTP Server configuration file. It contains the
# configuration directives that give the server its instructions.
# See <URL:http://httpd.apache.org/docs/2.4/> for detailed information.
# In particular, see
# <URL:http://httpd.apache.org/docs/2.4/mod/directives.html>
# for a discussion of each configuration directive.

# Directives specific to Oracle HTTP Server are documented in Oracle
# Fusion Middleware Documentation.

# Do NOT simply read the instructions in here without understanding
# what they do. They're here only as hints or reminders. If you are unsure
# consult the online docs. You have been warned.

# Configuration file names:

# If the filenames you specify for many of the server's control files begin
# with "/" (or "drive:/" for Win32), the server will use that explicit path.
# Otherwise, the filenames are relative to the value of ServerRoot.

# Log file names:

# Use absolute paths outside of the domain directory, or use

"${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/"

# as the directory portion of the log file name.

# ServerRoot: The top of the directory tree under which the server's
# configuration, error, and log files are kept.

# Do not add a slash at the end of the directory path.

#serverroot "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances${COMPONENT_NAME}"
ServerRoot "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/instances/ohs1"

# DefaultRuntimeDir controls the location of shared memory, lock files, etc.
DefaultRuntimeDir "${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs"

# Listen: Allows you to bind Apache to specific IP addresses and/or
# ports, instead of the default. See also the <VirtualHost>
# directive.

# Change this to Listen on specific IP addresses as shown below to
# prevent Apache from glomming onto all bound IP addresses.

# Listen 12.34.56.78:80
# The Listen directive below has a comment preceding it that is used
# by tooling which updates the configuration. Do not delete the comment.
#[Listen] OHS_LISTEN_PORT

#listen 7777
Listen 8888

# Dynamic Shared Object (DSO) Support

# To be able to use the functionality of a module which was built as a DSO you
# have to place corresponding `LoadModule' lines at this location so the
# directives contained in it are actually available _before_ they are used.
# Statically compiled modules (those listed by `httpd -l') do not need
# to be loaded here.

# Example:
# LoadModule foo_module "${PRODUCT_HOME}/modules/mod_foo.so"

LoadModule ora_audit_module "${PRODUCT_HOME}/modules/mod_ora_audit.so"
LoadModule env_module "${PRODUCT_HOME}/modules/mod_env.so"
LoadModule log_config_module "${PRODUCT_HOME}/modules/mod_log_config.so"
LoadModule mime_magic_module "${PRODUCT_HOME}/modules/mod_mime_magic.so"
LoadModule mime_module "${PRODUCT_HOME}/modules/mod_mime.so"
LoadModule negotiation_module "${PRODUCT_HOME}/modules/mod_negotiation.so"
LoadModule status_module "${PRODUCT_HOME}/modules/mod_status.so"
LoadModule info_module "${PRODUCT_HOME}/modules/mod_info.so"
LoadModule include_module "${PRODUCT_HOME}/modules/mod_include.so"
LoadModule autoindex_module "${PRODUCT_HOME}/modules/mod_autoindex.so"
LoadModule dir_module "${PRODUCT_HOME}/modules/mod_dir.so"
<IfDefine OHS_MPM_WINNT>
LoadModule cgi_module "${PRODUCT_HOME}/modules/mod_cgi.so"
</IfDefine>
<IfDefine OHS_MPM_EVENT>
LoadModule cgid_module "${PRODUCT_HOME}/modules/mod_cgid.so"
</IfDefine>
<IfDefine OHS_MPM_PREFORK>
LoadModule cgi_module "${PRODUCT_HOME}/modules/mod_cgi.so"
</IfDefine>
<IfDefine OHS_MPM_WORKER>
LoadModule cgid_module "${PRODUCT_HOME}/modules/mod_cgid.so"
</IfDefine>
LoadModule asis_module "${PRODUCT_HOME}/modules/mod_asis.so"
LoadModule imagemap_module "${PRODUCT_HOME}/modules/mod_imagemap.so"
LoadModule actions_module "${PRODUCT_HOME}/modules/mod_actions.so"
LoadModule speling_module "${PRODUCT_HOME}/modules/mod_speling.so"
LoadModule userdir_module "${PRODUCT_HOME}/modules/mod_userdir.so"
LoadModule alias_module "${PRODUCT_HOME}/modules/mod_alias.so"
LoadModule auth_basic_module "${PRODUCT_HOME}/modules/mod_auth_basic.so"
LoadModule authn_anon_module "${PRODUCT_HOME}/modules/mod_authn_anon.so"
LoadModule authn_core_module "${PRODUCT_HOME}/modules/mod_authn_core.so"
LoadModule authn_file_module "${PRODUCT_HOME}/modules/mod_authn_file.so"
LoadModule authz_core_module "${PRODUCT_HOME}/modules/mod_authz_core.so"
LoadModule authz_groupfile_module "${PRODUCT_HOME}/modules/mod_authz_groupfile.so"
LoadModule authz_host_module "${PRODUCT_HOME}/modules/mod_authz_host.so"
LoadModule authz_user_module "${PRODUCT_HOME}/modules/mod_authz_user.so"
LoadModule proxy_module "${PRODUCT_HOME}/modules/mod_proxy.so"
LoadModule proxy_http_module "${PRODUCT_HOME}/modules/mod_proxy_http.so"
LoadModule proxy_ftp_module "${PRODUCT_HOME}/modules/mod_proxy_ftp.so"
LoadModule proxy_connect_module "${PRODUCT_HOME}/modules/mod_proxy_connect.so"
LoadModule proxy_balancer_module "${PRODUCT_HOME}/modules/mod_proxy_balancer.so"
LoadModule cern_meta_module "${PRODUCT_HOME}/modules/mod_cern_meta.so"
LoadModule expires_module "${PRODUCT_HOME}/modules/mod_expires.so"
LoadModule headers_module "${PRODUCT_HOME}/modules/mod_headers.so"
LoadModule usertrack_module "${PRODUCT_HOME}/modules/mod_usertrack.so"
LoadModule unique_id_module "${PRODUCT_HOME}/modules/mod_unique_id.so"
LoadModule setenvif_module "${PRODUCT_HOME}/modules/mod_setenvif.so"
LoadModule context_module "${PRODUCT_HOME}/modules/mod_context.so"
LoadModule rewrite_module "${PRODUCT_HOME}/modules/mod_rewrite.so"
LoadModule log_forensic_module "${PRODUCT_HOME}/modules/mod_log_forensic.so"
LoadModule version_module "${PRODUCT_HOME}/modules/mod_version.so"

#loadmodule authz_owner_module "${PRODUCT_HOME}/modules/mod_authz_owner.so"

#loadmodule cache_module "${PRODUCT_HOME}/modules/mod_cache.so"
LoadModule file_cache_module "${PRODUCT_HOME}/modules/mod_file_cache.so"
LoadModule vhost_alias_module "${PRODUCT_HOME}/modules/mod_vhost_alias.so"

#apache 2.4 specific modules

#loadmodule proxy_fcgi_module "${PRODUCT_HOME}/modules/mod_proxy_fcgi.so"

#loadmodule authnz_fcgi_module "${PRODUCT_HOME}/modules/mod_authnz_fcgi.so"

#loadmodule cache_disk_module "${PRODUCT_HOME}/modules/mod_cache_disk.so"

#loadmodule lbmethod_bybusyness_module "${PRODUCT_HOME}/modules/mod_lbmethod_bybusyness.so"

#loadmodule lbmethod_byrequests_module "${PRODUCT_HOME}/modules/mod_lbmethod_byrequests.so"

#loadmodule lbmethod_bytraffic_module "${PRODUCT_HOME}/modules/mod_lbmethod_bytraffic.so"

#loadmodule macro_module "${PRODUCT_HOME}/modules/mod_macro.so"

#loadmodule remoteip_module "${PRODUCT_HOME}/modules/mod_remoteip.so"

#loadmodule sed_module "${PRODUCT_HOME}/modules/mod_sed.so"

#loadmodule proxy_wstunnel_module ${PRODUCT_HOME}/modules/mod_proxy_wstunnel.so

<IfModule !mpm_winnt_module>
LoadModule unixd_module "${PRODUCT_HOME}/modules/mod_unixd.so"
</IfModule>
LoadModule slotmem_shm_module "${PRODUCT_HOME}/modules/mod_slotmem_shm.so"
LoadModule odl_log_module "${PRODUCT_HOME}/modules/mod_odl_log.so"
LoadModule socache_shmcb_module "${PRODUCT_HOME}/modules/mod_socache_shmcb.so"

<IfDefine OHS_MPM_EVENT>
LoadModule mpm_event_module "${PRODUCT_HOME}/modules/mod_mpm_event.so"
</IfDefine>
<IfDefine OHS_MPM_WORKER>
LoadModule mpm_worker_module "${PRODUCT_HOME}/modules/mod_mpm_worker.so"
</IfDefine>
<IfDefine OHS_MPM_PREFORK>
LoadModule mpm_prefork_module "${PRODUCT_HOME}/modules/mod_mpm_prefork.so"
</IfDefine>

# Comment this out to globally disable client SSL.

#loadmodule ossl_module "${PRODUCT_HOME}/modules/mod_ossl.so"
LoadModule ossl_module "/u01/Oracle/Middleware/Oracle_Home/ohs/modules/mod_ossl.so"

# Uncomment this LoadModule directive to enable mod_dumpio:
# LoadModule dumpio_module "${PRODUCT_HOME}/modules/mod_dumpio.so"

# mod_dumpio configuration. mod_dumpio logs at level trace7,
# so set log level of mod_dumpio to trace7 to see the output.

<IfModule dumpio_module>
DumpIOInput On
DumpIOOutput On
DumpIOLogLevel warn
</IfModule>

# Some sources consider exposing the Options method a low security risk
# because malicious clients could use it to determine the methods supported
# by a web server.
# The following lines disable the Options method by default.
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteCond %{REQUEST_METHOD} ^OPTIONS
RewriteRule .* . [F]
</IfModule>

# 'Main' server configuration

# The directives in this section set up the values used by the 'main'
# server, which responds to any requests that aren't handled by a
# <VirtualHost> definition. These values also provide defaults for
# any <VirtualHost> containers you may define later in the file.

# All of these directives may appear inside <VirtualHost> containers,
# in which case these default settings will be overridden for the
# virtual host being defined.

# ServerAdmin: Your address, where problems with the server should be
# e-mailed. This address appears on some server-generated pages, such
# as error documents. e.g. admin@your-domain.com

#serveradmin you@example.com

# ServerName gives the name and port that the server uses to identify itself.
# This can often be determined automatically, but we recommend you specify
# it explicitly to prevent problems during startup.

# If your host doesn't have a registered DNS name, enter its IP address here.

#servername http://localhost:7777
ServerName hostname

# Deny access to the entirety of your server's filesystem. You must
# explicitly permit access to web content directories in other
# <Directory> blocks below.

<Directory />
AllowOverride none
Require all denied
</Directory>

# Note that from this point forward you must specifically allow
# particular features to be enabled - so if something's not working as
# you might expect, make sure that you have specifically enabled it
# below.

# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.

#documentroot ${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/htdocs
DocumentRoot "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/htdocs"

<Directory "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/htdocs">

Possible values for the Options directive are "None", "All",

or any combination of:

Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews

Note that "MultiViews" must be named *explicitly* --- "Options All"

doesn't give it to you.

The Options directive is both complicated and important. Please see

http://httpd.apache.org/docs/2.4/mod/core.html#options

for more information.

Options Indexes FollowSymLinks

AllowOverride controls what directives may be placed in .htaccess files.

It can be "All", "None", or any combination of the keywords:

AllowOverride FileInfo AuthConfig Limit

AllowOverride None

Controls who can get stuff from this server.

Require all granted
</Directory>

# DirectoryIndex: sets the file that Apache will serve if a directory
# is requested.

<IfModule dir_module>
DirectoryIndex index.html
</IfModule>

# The following lines prevent .htaccess and .htpasswd files from being
# viewed by Web clients.

<FilesMatch "^\.ht">
Require all denied
</FilesMatch>

# Logging mode is set to odl-text mode by default.
# If you wish to use the apache type log instead then uncomment the
# ErrorLog and LogLevel lines below and set OraLogMode to apache

# ErrorLog "${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/error_log"

# LogLevel: Control the number of messages logged to the error_log.
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.

# The LogLevel directive will take effect only when OraLogMode is set to apache

# LogLevel warn

# Directives to setup logging via ODL
OraLogDir "${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs"
OraLogMode odl-text
OraLogSeverity WARNING:32
OraLogRotationParams S 10:70

# Set OraAuditEnable to On here and also configure specific events in
# auditconfig.xml or in Fusion Middleware Control to enable Audit Logs
OraAuditEnable On

# The following directives define some format nicknames for use with
# a CustomLog directive (see below).

LogFormat "%h %l %u %t %E \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t %E \"%r\" %>s %b" common

<IfModule logio_module>

You need to enable logio_module to use %I and %O

LogFormat "%h %l %u %t %E \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
</IfModule>

# The location and format of the access logfile (Common Logfile Format).
# If you do not define any access logfiles within a <VirtualHost>
# container, they will be logged here. Contrariwise, if you *do*
# define per-<VirtualHost> access logfiles, transactions will be
# logged therein and *not* in this file.

CustomLog "||${PRODUCT_HOME}/bin/odl_rotatelogs ${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/access_log 43200" common

# If you prefer a logfile with access, agent, and referer information
# (Combined Logfile Format) you can use the following directive.

#customlog "||${PRODUCT_HOME}/bin/odl_rotatelogs ${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/access_log 43200" combined

<IfModule alias_module>

Redirect: Allows you to tell clients about documents that used to

exist in your server's namespace, but do not anymore. The client

will make a new request for the document at its new location.

Example:

Redirect permanent /foo http://www.example.com/bar

Alias: Maps web paths into filesystem paths and is used to

access content that does not live under the DocumentRoot.

Example:

Alias /webpath /full/filesystem/path

If you include a trailing / on /webpath then the server will

require it to be present in the URL. You will also likely

need to provide a <Directory> section to allow access to

the filesystem path.

ScriptAlias: This controls which directories contain server scripts.

ScriptAliases are essentially the same as Aliases, except that

documents in the target directory are treated as applications and

run by the server when requested rather than as documents sent to the

client. The same rules about trailing "/" apply to ScriptAlias

directives as to Alias.

#scriptalias /cgi-bin/ "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/cgi-bin/"
ScriptAlias /cgi-bin/ "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/cgi-bin"

</IfModule>

<IfModule cgid_module>

ScriptSock: On threaded servers, designate the path to the UNIX

socket used to communicate with the CGI daemon of mod_cgid.

Scriptsock "${ORACLE_HOME}/network/log/cgisock"
</IfModule>

# "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/cgi-bin" should be changed to whatever your ScriptAliased
# CGI directory exists, if you have that configured.

<Directory "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/cgi-bin">
AllowOverride None
Options None
Require all granted
</Directory>

<IfModule mime_module>

TypesConfig points to the file containing the list of mappings from

filename extension to MIME-type.

#typesconfig "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/mime.types"

TypesConfig "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/mime.types

AddType allows you to add to or override the MIME configuration

file specified in TypesConfig for specific file types.

#addtype application/x-gzip .tgz

AddEncoding allows you to have certain browsers uncompress

information on the fly. Note: Not all browsers support this.

#addencoding x-compress .Z
#addencoding x-gzip .gz .tgz

If the AddEncoding directives above are commented-out, then you

probably should define those extensions to indicate media types:

AddType application/x-compress .Z
AddType application/x-gzip .gz .tgz

AddHandler allows you to map certain file extensions to "handlers":

actions unrelated to filetype. These can be either built into the server

or added with the Action directive (see below)

To use CGI scripts outside of ScriptAliased directories:

(You will also need to add "ExecCGI" to the "Options" directive.)

#addhandler cgi-script .cgi

For type maps (negotiated resources):

#addhandler type-map var

Filters allow you to process content before it is sent to the client.

To parse .shtml files for server-side includes (SSI):

(You will also need to add "Includes" to the "Options" directive.)

#addtype text/html .shtml
#addoutputfilter INCLUDES .shtml
</IfModule>

# The mod_mime_magic module allows the server to use various hints from the
# contents of the file itself to determine its type. The MIMEMagicFile
# directive tells the module where the hint definitions are located.

#mimemagicfile "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/magic"

# Customizable error responses come in three flavors:
# 1) plain text 2) local redirects 3) external redirects

# Some examples:

#errordocument 500 "The server made a boo boo."

#errordocument 404 /missing.html

#errordocument 404 "/cgi-bin/missing_handler.pl"

#errordocument 402 http://www.example.com/subscription_info.html

# MaxRanges: Maximum number of Ranges in a request before
# returning the entire resource, or one of the special
# values 'default', 'none' or 'unlimited'.
# Default setting is to accept 200 Ranges.

#maxranges unlimited

# EnableMMAP and EnableSendfile: On systems that support it,
# memory-mapping or the sendfile syscall may be used to deliver
# files. This usually improves server performance, but must
# be turned off when serving from networked-mounted
# filesystems or if support for these functions is otherwise
# broken on your system.
# Defaults: EnableMMap On, EnableSendfile Off

#enablemmap off

#enablesendfile on

# Supplemental configuration

###### Server-pool management (MPM specific) ######

# PidFile: The file in which the server should record its process
# identification number when it starts.

PidFile "${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/httpd.pid"

# prefork MPM
# StartServers: number of server processes to start
# MinSpareServers: minimum number of server processes which are kept spare
# MaxSpareServers: maximum number of server processes which are kept spare
# MaxRequestWorkers: maximum number of server processes allowed to start
# MaxConnectionsPerChild: maximum number of requests a server process serves

before terminating

<IfModule mpm_prefork_module>
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxRequestWorkers 250
MaxConnectionsPerChild 0
Mutex fcntl:${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs
</IfModule>

# worker MPM
# StartServers: initial number of server processes to start
# MinSpareThreads: minimum number of worker threads which are kept spare
# MaxSpareThreads: maximum number of worker threads which are kept spare
# ThreadsPerChild: constant number of worker threads in each server process
# MaxRequestWorkers: maximum number of simultaneous client connections
# MaxConnectionsPerChild: maximum number of requests a server process serves

before terminating

# Specify "ServerLimit nnn" before MaxRequestWorkers if

MaxRequestWorkers/ThreadsPerChild > 16.

# Specify "ThreadLimit nnn" before MaxRequestWorkers if ThreadsPerChild > 64.
<IfModule mpm_worker_module>
StartServers 3
MinSpareThreads 75
MaxSpareThreads 250
ThreadsPerChild 25
MaxRequestWorkers 400
MaxConnectionsPerChild 0
Mutex fcntl:${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs
</IfModule>

# event MPM
# StartServers: initial number of server processes to start
# MinSpareThreads: minimum number of worker threads which are kept spare
# MaxSpareThreads: maximum number of worker threads which are kept spare
# ThreadsPerChild: constant number of worker threads in each server process
# MaxRequestWorkers: maximum number of worker threads
# MaxConnectionsPerChild: maximum number of connections a server process serves

before terminating

# Specify "ServerLimit nnn" before MaxRequestWorkers if

MaxRequestWorkers/ThreadsPerChild > 16.

# Specify "ThreadLimit nnn" before MaxRequestWorkers if ThreadsPerChild > 64.
<IfModule mpm_event_module>
StartServers 3
MinSpareThreads 75
MaxSpareThreads 250
ThreadsPerChild 25
MaxRequestWorkers 400
MaxConnectionsPerChild 0
AsyncRequestWorkerFactor 2
Mutex fcntl:${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs
</IfModule>

# WinNT MPM
# ThreadsPerChild: constant number of worker threads in the server process
# MaxConnectionsPerChild: maximum number of requests a server process serves
<IfModule mpm_winnt_module>
ThreadsPerChild 150
MaxConnectionsPerChild 0
Mutex default:${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs
</IfModule>

# The maximum number of free Kbytes that every allocator is allowed
# to hold without calling free(). In threaded MPMs, every thread has its own
# allocator. When not set, or when set to zero, the threshold will be set to
# unlimited.
MaxMemFree 2048

###### Multi-language error messages ######

# The configuration below implements multi-language error documents through
# content-negotiation.

# Required modules: mod_alias, mod_authz_core, mod_authz_host,

mod_include, mod_negotiation

# Uncomment the following line to enable the errordoc configuration below.
# Define ENABLE_ERRORDOC
<IfDefine ENABLE_ERRORDOC>

We use Alias to redirect any /error/HTTP_<error>.html.var response to

our collection of by-error message multi-language collections. We use

includes to substitute the appropriate text.

You can modify the messages' appearance without changing any of the

default HTTP_<error>.html.var files by adding the line:

Alias /error/include/ "/your/include/path/"

which allows you to create your own set of files by starting with the

"${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/error/include/" files

and copying them to /your/include/path/,

even on a per-VirtualHost basis. The default include files will display

your Apache version number and your ServerAdmin email address regardless

of the setting of ServerSignature.

Alias /error/ "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/error/"

<Directory "${ORACLE_INSTANCE}/config/fmwconfig/components/${COMPONENT_TYPE}/instances/${COMPONENT_NAME}/error">
AllowOverride None
Options IncludesNoExec
AddOutputFilter Includes html
AddHandler type-map var
Require all granted
LanguagePriority en cs de es fr it ja ko nl pl pt-br ro sv tr
ForceLanguagePriority Prefer Fallback
</Directory>

ErrorDocument 400 /error/HTTP_BAD_REQUEST.html.var
ErrorDocument 401 /error/HTTP_UNAUTHORIZED.html.var
ErrorDocument 403 /error/HTTP_FORBIDDEN.html.var
ErrorDocument 404 /error/HTTP_NOT_FOUND.html.var
ErrorDocument 405 /error/HTTP_METHOD_NOT_ALLOWED.html.var
ErrorDocument 408 /error/HTTP_REQUEST_TIME_OUT.html.var
ErrorDocument 410 /error/HTTP_GONE.html.var
ErrorDocument 411 /error/HTTP_LENGTH_REQUIRED.html.var
ErrorDocument 412 /error/HTTP_PRECONDITION_FAILED.html.var
ErrorDocument 413 /error/HTTP_REQUEST_ENTITY_TOO_LARGE.html.var
ErrorDocument 414 /error/HTTP_REQUEST_URI_TOO_LARGE.html.var
ErrorDocument 415 /error/HTTP_UNSUPPORTED_MEDIA_TYPE.html.var
ErrorDocument 500 /error/HTTP_INTERNAL_SERVER_ERROR.html.var
ErrorDocument 501 /error/HTTP_NOT_IMPLEMENTED.html.var
ErrorDocument 502 /error/HTTP_BAD_GATEWAY.html.var
ErrorDocument 503 /error/HTTP_SERVICE_UNAVAILABLE.html.var
ErrorDocument 506 /error/HTTP_VARIANT_ALSO_VARIES.html.var
</IfDefine>

###### Fancy directory listings ######

# Directives controlling the display of server-generated directory listings.

# Required modules: mod_authz_core, mod_authz_host,

mod_autoindex, mod_alias

# Uncomment the following line to enable the fancy indexing configuration
# below.
# Define ENABLE_FANCYINDEXING
<IfDefine ENABLE_FANCYINDEXING>

To see the listing of a directory, the Options directive for the

directory must include "Indexes", and the directory must not contain

a file matching those listed in the DirectoryIndex directive.

IndexOptions: Controls the appearance of server-generated directory

listings.

IndexOptions FancyIndexing HTMLTable VersionSort

We include the /icons/ alias for FancyIndexed directory listings. If

you do not use FancyIndexing, you may comment this out.

#alias /icons/ "${PRODUCT_HOME}/icons/"
Alias /icons/ "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/icons"

<Directory "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/icons">
Options Indexes MultiViews
AllowOverride None
Require all granted
</Directory>

AddIcon* directives tell the server which icon to show for different

files or filename extensions. These are only displayed for

FancyIndexed directories.

AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip

AddIconByType (TXT,/icons/text.gif) text/*
AddIconByType (IMG,/icons/image2.gif) image/*
AddIconByType (SND,/icons/sound2.gif) audio/*
AddIconByType (VID,/icons/movie.gif) video/*

AddIcon /icons/binary.gif .bin .exe
AddIcon /icons/binhex.gif .hqx
AddIcon /icons/tar.gif .tar
AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
AddIcon /icons/a.gif .ps .ai .eps
AddIcon /icons/layout.gif .html .shtml .htm .pdf
AddIcon /icons/text.gif .txt
AddIcon /icons/c.gif .c
AddIcon /icons/p.gif .pl .py
AddIcon /icons/f.gif .for
AddIcon /icons/dvi.gif .dvi
AddIcon /icons/uuencoded.gif .uu
AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
AddIcon /icons/tex.gif .tex
AddIcon /icons/bomb.gif core

AddIcon /icons/back.gif ..
AddIcon /icons/hand.right.gif README
AddIcon /icons/folder.gif ^^DIRECTORY^^
AddIcon /icons/blank.gif ^^BLANKICON^^

DefaultIcon is which icon to show for files which do not have an icon

explicitly set.

DefaultIcon /icons/unknown.gif

AddDescription allows you to place a short description after a file in

server-generated indexes. These are only displayed for FancyIndexed

directories.

Format: AddDescription "description" filename

#adddescription "GZIP compressed document" .gz
#adddescription "tar archive" .tar
#adddescription "GZIP compressed tar archive" .tgz

ReadmeName is the name of the README file the server will look for by

default, and append to directory listings.

HeaderName is the name of a file which should be prepended to

directory indexes.

ReadmeName README.html
HeaderName HEADER.html

IndexIgnore is a set of filenames which directory indexing should ignore

and not include in the listing. Shell-style wildcarding is permitted.

IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t
</IfDefine>

###### Language settings ######

# Settings for hosting different languages.

# Required modules: mod_mime, mod_negotiation

# DefaultLanguage and AddLanguage allows you to specify the language of
# a document. You can then use content negotiation to give a browser a
# file in a language the user can understand.

# Specify a default language. This means that all data
# going out without a specific language tag (see below) will
# be marked with this one. You probably do NOT want to set
# this unless you are sure it is correct for all cases.

# * It is generally better to not mark a page as
# * being a certain language than marking it with the wrong
# * language!

# DefaultLanguage nl

# Note 1: The suffix does not have to be the same as the language
# keyword --- those with documents in Polish (whose net-standard
# language code is pl) may wish to use "AddLanguage pl .po" to
# avoid the ambiguity with the common suffix for perl scripts.

# Note 2: The example entries below illustrate that in some cases
# the two character 'Language' abbreviation is not identical to
# the two character 'Country' code for its country,
# E.g. 'Danmark/dk' versus 'Danish/da'.

# Note 3: In the case of 'ltz' we violate the RFC by using a three char
# specifier. There is 'work in progress' to fix this and get
# the reference data for rfc1766 cleaned up.

# Catalan (ca) - Croatian (hr) - Czech (cs) - Danish (da) - Dutch (nl)
# English (en) - Esperanto (eo) - Estonian (et) - French (fr) - German (de)
# Greek-Modern (el) - Hebrew (he) - Italian (it) - Japanese (ja)
# Korean (ko) - Luxembourgeois* (ltz) - Norwegian Nynorsk (nn)
# Norwegian (no) - Polish (pl) - Portugese (pt)
# Brazilian Portuguese (pt-BR) - Russian (ru) - Swedish (sv)
# Turkish (tr) - Simplified Chinese (zh-CN) - Spanish (es)
# Traditional Chinese (zh-TW)

AddLanguage ca .ca
AddLanguage cs .cz .cs
AddLanguage da .dk
AddLanguage de .de
AddLanguage el .el
AddLanguage en .en
AddLanguage eo .eo
AddLanguage es .es
AddLanguage et .et
AddLanguage fr .fr
AddLanguage he .he
AddLanguage hr .hr
AddLanguage it .it
AddLanguage ja-JP .ja
AddLanguage ko .ko
AddLanguage ltz .ltz
AddLanguage nl .nl
AddLanguage nn .nn
AddLanguage no .no
AddLanguage pl .po
AddLanguage pt .pt
AddLanguage pt-BR .pt-br
AddLanguage ru .ru
AddLanguage sv .sv
AddLanguage tr .tr
AddLanguage zh-CN .zh-cn
AddLanguage zh-TW .zh-tw

# LanguagePriority allows you to give precedence to some languages
# in case of a tie during content negotiation.

# Just list the languages in decreasing order of preference. We have
# more or less alphabetized them here. You probably want to change this.

LanguagePriority en ca cs da de el eo es et fr he hr it ja-JP ko ltz nl nn no pl pt pt-BR ru sv tr zh-CN zh-TW

# ForceLanguagePriority allows you to serve a result page rather than
# MULTIPLE CHOICES (Prefer) [in case of a tie] or NOT ACCEPTABLE (Fallback)
# [in case no accepted languages matched the available variants]

ForceLanguagePriority Prefer Fallback

# Commonly used filename extensions to character sets. You probably
# want to avoid clashes with the language extensions, unless you
# are good at carefully testing your setup after each change.
# See http://www.iana.org/assignments/character-sets for the
# official list of charset names and their respective RFCs.

AddCharset us-ascii.ascii .us-ascii
AddCharset ISO-8859-1 .iso8859-1 .latin1
AddCharset ISO-8859-2 .iso8859-2 .latin2 .cen
AddCharset ISO-8859-3 .iso8859-3 .latin3
AddCharset ISO-8859-4 .iso8859-4 .latin4
AddCharset ISO-8859-5 .iso8859-5 .cyr .iso-ru
AddCharset ISO-8859-6 .iso8859-6 .arb .arabic
AddCharset ISO-8859-7 .iso8859-7 .grk .greek
AddCharset ISO-8859-8 .iso8859-8 .heb .hebrew
AddCharset ISO-8859-9 .iso8859-9 .latin5 .trk
AddCharset ISO-8859-10 .iso8859-10 .latin6
AddCharset ISO-8859-13 .iso8859-13
AddCharset ISO-8859-14 .iso8859-14 .latin8
AddCharset ISO-8859-15 .iso8859-15 .latin9
AddCharset ISO-8859-16 .iso8859-16 .latin10
AddCharset ISO-2022-JP .iso2022-jp .jis
AddCharset ISO-2022-KR .iso2022-kr .kis
AddCharset ISO-2022-CN .iso2022-cn .cis
AddCharset Big5.Big5 .big5 .b5
AddCharset cn-Big5 .cn-big5
# For russian, more than one charset is used (depends on client, mostly):
AddCharset WINDOWS-1251 .cp-1251 .win-1251
AddCharset CP866 .cp866
AddCharset KOI8 .koi8
AddCharset KOI8-E .koi8-e
AddCharset KOI8-r .koi8-r .koi8-ru
AddCharset KOI8-U .koi8-u
AddCharset KOI8-ru .koi8-uk .ua
AddCharset ISO-10646-UCS-2 .ucs2
AddCharset ISO-10646-UCS-4 .ucs4
AddCharset UTF-7 .utf7
AddCharset UTF-8 .utf8
AddCharset UTF-16 .utf16
AddCharset UTF-16BE .utf16be
AddCharset UTF-16LE .utf16le
AddCharset UTF-32 .utf32
AddCharset UTF-32BE .utf32be
AddCharset UTF-32LE .utf32le
AddCharset euc-cn .euc-cn
AddCharset euc-gb .euc-gb
AddCharset euc-jp .euc-jp
AddCharset euc-kr .euc-kr

#not sure how euc-tw got in - IANA doesn't list it???
AddCharset EUC-TW .euc-tw
AddCharset gb2312 .gb2312 .gb
AddCharset iso-10646-ucs-2 .ucs-2 .iso-10646-ucs-2
AddCharset iso-10646-ucs-4 .ucs-4 .iso-10646-ucs-4
AddCharset shift_jis .shift_jis .sjis

###### User home directories ######

# Settings for user home directories

# Required module: mod_authz_core, mod_authz_host, mod_userdir

# Uncomment the following line to enable the userdir configuration below.
# Define ENABLE_USERDIR
<IfDefine ENABLE_USERDIR>

UserDir: The name of the directory that is appended onto a user's home

directory if a ~user request is received. Note that you must also set

the default access control for these directories, as in the example below.

#userdir public_html

Control access to UserDir directories. The following is an example

for a site where these directories are restricted to read-only.

#<Directory "/home/*/public_html">
#allowoverride FileInfo AuthConfig Limit Indexes
#options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
#require method GET POST OPTIONS
#</Directory>
</IfDefine>

###### Real-time info on requests and configuration ######

# Get information about the requests being processed by the server
# and the configuration of the server.

# Required modules: mod_authz_core, mod_authz_host,

mod_info (for the server-info handler),

mod_status (for the server-status handler)

# Allow server status reports generated by mod_status,
# with the URL of http://servername/server-status
# Change the ".example.com" to match your domain to enable.

#<Location /server-status>

SetHandler server-status

Require host .example.com

Require ip 127

#</Location>

# The ExtendedStatus directive tracks additional data per worker
# about the currently executing request and creates a utilization summary.
# But the collection of extended status information can slow down the server.
# So we are setting this to Off to match the Apache httpd 2.2 default.
ExtendedStatus Off

# Allow remote server configuration reports, with the URL of
# http://servername/server-info (requires that mod_info.c be loaded).
# Change the ".example.com" to match your domain to enable.

#<Location /server-info>

SetHandler server-info

Require host .example.com

Require ip 127

#</Location>

###### Virtual hosts ######

# Virtual Hosts

# If you want to maintain multiple domains/hostnames on your
# machine you can setup VirtualHost containers for them. Most configurations
# use only name-based virtual hosts so the server doesn't need to worry about
# IP addresses. This is indicated by the asterisks in the directives below.

# Please see the documentation at
# <URL:http://httpd.apache.org/docs/2.4/vhosts/>
# for further details before you try to setup virtual hosts.

# VirtualHost example:
# Almost any Apache directive may go into a VirtualHost container.
# The first VirtualHost section is used for all requests that do not
# match a ServerName or ServerAlias in any <VirtualHost> block.

#<VirtualHost *:80>

ServerAdmin webmaster@dummy-host.example.com

DocumentRoot "/usr/local/apache2/docs/dummy-host.example.com"

ServerName dummy-host.example.com

ServerAlias www.dummy-host.example.com

ErrorLog "${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/dummy-host.example.com-error_log"

CustomLog "${ORACLE_INSTANCE}/servers/${COMPONENT_NAME}/logs/dummy-host.example.com-access_log" common

#</VirtualHost>

###### Local access to the Apache HTTP Server Manual ######

# Provide access to the documentation on your server as
# http://yourserver.example.com/manual/

# Required modules: mod_alias, mod_authz_core, mod_authz_host,

mod_setenvif, mod_negotiation

# Uncomment the following line to enable the manual configuration below.
# Define ENABLE_MANUAL
<IfDefine ENABLE_MANUAL>

AliasMatch ^/manual(?:/(?:da|de|en|es|fr|ja|ko|pt-br|ru|tr|zh-cn))?(/.*)?$ "${PRODUCT_HOME}/manual$1"

<Directory "/u01/Oracle/Middleware/Oracle_Home/ohs/manual">
Options Indexes
AllowOverride None
Require all granted

<Files *.html>
SetHandler type-map
</Files>

.tr is text/troff in mime.types!

<Files *.html.tr.utf8>
ForceType text/html
</Files>

AddLanguage da .da

SetEnvIf Request_URI ^/manual/(da|de|en|es|fr|ja|ko|pt-br|ru|tr|zh-cn)/ prefer-language=$1
RedirectMatch 301 ^/manual(?:/(da|de|en|es|fr|ja|ko|pt-br|ru|tr|zh-cn)){2,}(/.*)?$ /manual/$1$2

LanguagePriority en da de es fr ja ko pt-br ru tr
ForceLanguagePriority Prefer Fallback
</Directory>
</IfDefine>

###### Various default settings ######

# Timeout: The number of seconds before receives and sends time out.

Timeout 60

# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.

KeepAlive On

# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We recommend you leave this number high, for maximum performance.

MaxKeepAliveRequests 100

# KeepAliveTimeout: Number of seconds to wait for the next request from the
# same client on the same connection.

KeepAliveTimeout 5

# UseCanonicalName: Determines how Apache constructs self-referencing
# URLs and the SERVER_NAME and SERVER_PORT variables.
# When set "Off", Apache will use the Hostname and Port supplied
# by the client. When set "On", Apache will use the value of the
# ServerName directive.

UseCanonicalName On

# AccessFileName: The name of the file to look for in each directory
# for additional configuration directives. See also the AllowOverride
# directive.

AccessFileName .htaccess

# ServerTokens
# This directive configures what you return as the Server HTTP response
# Header. The default is 'Minimal' which sends information about server name
# and version
# Set to one of: Full | OS | Minor | Minimal | Major | Prod | Custom | None
# where Full conveys the most information, and Prod the least.
# The syntax for the custom argument is
# ServerTokens Custom <value>
# Set to "None" to hide server information
ServerTokens None

# Optionally add a line containing the server version and virtual host
# name to server-generated pages (internal error documents, FTP directory
# listings, mod_status and mod_info output etc., but not CGI generated
# documents or custom error documents).
# Set to "EMail" to also include a mailto: link to the ServerAdmin.
# Set to one of: On | Off | EMail

ServerSignature Off

# Disable the TRACE HTTP method by default
TraceEnable off

# HostnameLookups: Log the names of clients or just their IP addresses
# e.g., www.apache.org (on) or 204.62.129.132 (off).
# The default is off because it'd be overall better for the net if people
# had to knowingly turn this feature on, since enabling it means that
# each client request will result in AT LEAST one lookup request to the
# nameserver.

HostnameLookups Off

# Add this response header to disable content sniffing
<IfModule mod_headers.c>
Header always set X-Content-Type-Options nosniff
</IfModule>

# Add this response header to enable Cross-site scripting (XSS) filter built
# into most recent web browsers.
<IfModule mod_headers.c>
Header setifempty X-XSS-Protection "1; mode=block"
</IfModule>

# HttpOnly is an additional flag included in a Set-Cookie HTTP response header.
# Using the HttpOnly flag when generating a cookie helps mitigate the risk of client
# side script accessing the protected cookie (if the browser supports it).
# As a fix for "Bug 27455010 - Set httponly attribute for cookies as per security best practices",
# Oracle HTTP Server adds the HttpOnly flag for all cookies that it sends to the client
# through the Set-Cookie response header.
# If a cookie is not a candidate for the HttpOnly attribute, then replace
# the string IGNOREME with the cookie name in the configuration below
# Example, to avoid the HttpOnly flag from being added to the response cookie called MYCOOKIE1,
# replace IGNOREME with MYCOOKIE1 such that you have -
# Header edit Set-Cookie ^(?!MYCOOKIE1).*$ $0;HttpOnly;
# You can exclude multiple cookies by following the example below -
# Header edit Set-Cookie ^(?!(IGNOREME=|IGNOREME1=)).*$ $0;HttpOnly;

# Uncomment the lines below in order to uptake the fix for
# Bug 27455010 - Set httponly attribute for cookies as per security best practices
# <IfModule mod_headers.c>
# Header edit Set-Cookie ^(?!IGNOREME=).*$ $0;HttpOnly;
# </IfModule>

# mod_reqtimeout can help control slow HTTP connections
# Comment out the load for mod_reqtimeout if other methods are in place
LoadModule reqtimeout_module "${PRODUCT_HOME}/modules/mod_reqtimeout.so"
<IfModule reqtimeout_module>

Use RequestReadTimeout to set a timeout for how long the client may take

to send the request header and body.

The default setting is the following:

RequestReadTimeout header=20-40,MinRate=500 body=20,MinRate=500

This means to wait for the headers for up to 20 seconds.

Then increase this time limit one second at a time as long as data

for the request header arrives at a rate of 500 bytes/sec or higher,

but not above 40 seconds.

Then wait for the request body the same way but with no upper time limit.

The following settings have been shown to be more effective.

RequestReadTimeout header=5-40,MinRate=500 body=10,MinRate=500

Adjust the settings depending on expected traffic patterns

</IfModule>

# The following directives modify normal HTTP response behavior to
# handle known problems with browser implementations.

BrowserMatch "Mozilla/2" nokeepalive
BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
BrowserMatch "RealPlayer 4\.0" force-response-1.0
BrowserMatch "Java/1\.0" force-response-1.0
BrowserMatch "JDK/1\.0" force-response-1.0

# Include the configuration files needed for mod_weblogic
include "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/mod_wl_ohs.conf"

# Include the SSL definitions and Virtual Host container
include "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/ssl.conf"

# Include the admin virtual host (Proxy Virtual Host) related configuration
include "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/admin.conf"

IncludeOptional "moduleconf/*.conf"
Alias /cgi-bin/ "/u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/instances/ohs1/cgi-bin"

Listen 8080
<VirtualHost *:8080>
ServerName hostname
DocumentRoot /u01/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/components/OHS/ohs1/htdocs
#directoryindex calmis.htm
DirectoryIndex index.htm
<IfModule ossl_module>
SSLEngine off
</IfModule>
</VirtualHost>
12.2.0.1.210119