Search for existing answers to your product and support questions.
Familiarize yourself with our support site and learn best practices in working with our team.
Manage Service Requests, View and update service requests submitted by you and others in your organization.
Submit a new issue to our technical support team.
Oracle B2C Service insights from our Technical Support team subject matter experts
Browse resources to assist you in launching your implementation and ensure a successful go-live.
Access your OCI account.
Find product documentation for supported versions of B2C and documentation libraries for related service solutions.
You will have the tools to improve your customers' experience when you learn about all the things our products can do.
Find links for API documentation, Custom Processes, Customer Portal, and Agent Browser UI Extensibility Framework.
Explore how accelerators are designed to demonstrate how an integration scenario could be built using the public integration and extension capabilities of the Oracle B2C Service.
Prepare for a successful transition by reviewing upcoming release changes and enhancements.
Explore webinars, events, and feature kits to learn about B2C Service features, functionality, and best practices from the technical experts.
Oracle MyLearn offers a portfolio of free and paid subscription-based learning resources to help you gain valuable skills, accelerate cloud adoption, increase productivity, and transform your business.
Empower your team with the skills to implement, configure, manage, and use your applications with Customer Experience Cloud Training.
Our goal is to facilitate a friendly, supportive environment where members can easily collaborate with each other on solutions and best practices.
Ask and answer questions specific to B2C.
This is an exciting resource intended to help with your Oracle Service Cloud Analytics.
Share product improvement ideas and enhancement requests with Oracle Development, while collaborating with other Oracle customers and partners.
Update your phone number, email notification preferences, and severity 1 and severity 2 contact preferences.
View the contact managers within your organization.
Find contact information of the Technical Account Manager (TAM) and Client Success Manager (CSM) for your organization.
Environment:
Customer Portal, Oracle B2C Service
Issue:
End users can log in to the Customer Portal and the log in is successful (cp_profile cookie is set). However, after around 2 minutes, the end user is being logged out, potentially while he/she is in the middle of submitting an incident on the ask page.
Resolution:
Customer Portal login data is stored in the contacts table. Contact passwords can expire. The expiration settings can be configured here:
Defining Customer Password Requirements
When a password expires, the default behavior is:
The end user will try to log in with the expired password. The out-of-the-box login form widget (standard/login/LoginForm2) will grant the user a special 2-minute cp_profile cookie and redirect him/her to the password reset page (defined by the configuration verb CP_CHANGE_PASSWORD_URL). The user then has 2 minutes to reset his/her password and submit the reset request from that page, at which point the user will be granted a normal cp_profile cookie with the expected expiration time (defined by the configuration verb CP_LOGIN_COOKIE_EXP).
The above problem can occur if you have customized the LoginForm widget and have not preserved the functionality to handle an "expired password" response from the server.
Sample login response from /ci/ajaxRequest/doLogin in expired password scenario: {"w_id":"*Your custom widget ID*","success":1,"addSession":false,"sessionParm":"","url":"\/app\/utils\/login_form\/redirect\/home","message":"Redirecting...","forceRedirect":"\/app\/account\/change_password\/msg\/Your current password has expired. Please set a new one."} The out-of-the-box login form widget JavaScript (standard/login/LoginForm2/logic.js) handles the forceRedirect parameter by prioritizing this redirect over any others in the _getRedirectURL function: /** * Function used to parse out the URL where we should redirect to * after a successful login * @param result Object The response object returned from the server * @return String The URL to redirect to */ _getRedirectUrl: function(result){ var redirectUrl; if(this.data.js && this.data.js.redirectOverride) redirectUrl = RightNow.Url.addParameter(this.data.js.redirectOverride, 'session', result.sessionParm.substr(result.sessionParm.lastIndexOf("/") + 1)); else redirectUrl = (this.data.attrs.redirect_url || result.url) + ((result.addSession) ? result.sessionParm : ""); redirectUrl += this.data.attrs.append_to_url; if (result.forceRedirect) redirectUrl = RightNow.Url.addParameter(result.forceRedirect, 'redirect', encodeURIComponent(redirectUrl)); return redirectUrl; }, If your custom login form widget is not handling the "forceRedirect" parameter then your users with expired passwords are going to be given the 2-minute cookie but won't be redirected to the reset password page in order to be able to update their password. Consequently, they will be inexplicably (in their eyes anyway) logged out after 2 minutes. The proper way to resolve this is to update your custom login form widget to handle the "forceRedirect" parameter appropriately.