APAR status
Closed as program error.
Error description
Complete exception information from a user registry is
propagated to a Java client by default. This should only occur
if a property is set.
See InfoCenter article at Security -> Securing applications and
their environment -> Managing security -> Configuring Java
Authentication and Authorization Service login -> Programmatic
Login for more information.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All WebSphere Application Server users who *
* have enabled security. *
****************************************************************
* PROBLEM DESCRIPTION: Detailed login failure exception *
* information is propagated to Java *
* clients. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Detailed login failure exception information is propagated to
Java clients. This should not occur by default but only if the
following property is set to true:
com.ibm.websphere.security.registry.propagateExceptionsToClient
Problem conclusion
Code was changed to properly honor the property value.
Temporary fix Comments
APAR information |
APAR number |
PQ76810 |
Reported component name |
WAS BASE 5.0 |
Reported component ID |
5630A3600 |
Reported release |
00A |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2003-07-25 |
Closed date |
2003-07-30 |
Last modified date |
2003-07-30 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
|