APAR status
Closed as program error.
Error description
When a response message that contains security headers is sent
back through the Web Services Gateway, duplicate headers are
created which will cause security errors to occur and failure
of the response to reach the clients.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: User of the SOAP/HTTP Channel with gateway *
* service security enabled for a service *
* deployed to the gateway. *
****************************************************************
* PROBLEM DESCRIPTION: When a SOAP message containing *
* WS-Security headers (digital *
* signatures, encryption and security *
* tokens) is received at the gateway, *
* and the gateway service handling that *
* message has gateway service security *
* enabled, then the WS-Security headers *
* are processed at that point. However, *
* once processed, the headers are then *
* propagated through to the outgoing *
* request to the target service. In *
* this case, if the target service is *
* configured for WS-Security also, the *
* message may well fail due to invalid *
* security headers being present. *
****************************************************************
* RECOMMENDATION: To be applied by users of the SOAP/HTTP *
* Channel with gateway service security *
* enabled for a service deployed to the *
* gateway. *
****************************************************************
Security headers from the inbound client SOAP message to the
gateway service are not removed prior to sending the outbound
request to the target service.
Problem conclusion
This APAR removes any security headers from the client request
message if gateway service security is enabled for the gateway
service before the request to the target service is sent.
* Note:
PQ79693 is a pre-req for this APAR
Temporary fix Comments
APAR information |
APAR number |
PQ79945 |
Reported component name |
WAS NETWRK DEPL |
Reported component ID |
5630A3601 |
Reported release |
00W |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2003-10-22 |
Closed date |
2003-11-16 |
Last modified date |
2003-11-16 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
|