Skip to Content
Former Member
Jan 29, 2007 at 10:03 PM

STS: Portal HTTPS to BSP HTTP transfer issue


Hi Experts,

We have the following issue.

We use portal with SSL, and we put SSL on out BW backend system. We also use STS, and we created a BSP iView in the portal to use STS inside portal.

The problem occurs when a link to the iView is clicked. What happens is that when the iView is being loaded, all the session cookies are getting blocked for some reason, so that clicking on any link in STS results in timeout error.

My observation is that STS only uses SSL for the login page. So when a request comes through the portal that uses SSL it goes to a BSP iView without an SSL (you get the warning that you are about to display non-secure items).

A workaround solution is to goo to IE properties, security/privacy and click the "Allow all session cookies" checkbox. This a bad solution because it involves telling users to configure their browser. I am wondering if anybody had the same or similar issue, and if there is any other resolution then just explicitly allowing cookies in the browser.

We have another environment setup in QA that does NOT use SSL for either portal or a backend BW, and this problem with cookies does not happen there. I am guessing it has something to do with a switch from HTTPS to an HTTP request when it comes through the portal.

Please let me know if you know how to resolve this.

Thank you,