APAR status
Closed as program error.
Error description
PROBLEM:
With two roles under the authorization constraint, one
is called 'test1' and one is called "test2". After the
application is deployed to WebSphere from the admin console it
shows only one role.
This has been seen to occur on Windows 2000 and Solaris.
STEPS to RECREATE:
Create a role named test1, then create a second one named test2
then the web.xml file will show the entry which includes test2's
information:
<security-constraint>
<web-resource-collection>
<web-resource-name>test2</web-resource-name>
<description>test2 get and post method</description>
<url-pattern>/test2</url-pattern>
<http-method>
PA
GET</http-method>
<http-method>
POST</http-method>
</web-resource-collection>
<auth-constraint>
<description></description>
<role-name>system</role-name>
<role-name>test2</role-name>
</auth-constraint>
<user-data-constraint>
<transport-guarantee>NONE</transport-guarantee>
</user-data-constraint>
</security-constraint>
However, the admin console viewed the Deployment Descriptor for
the web module and under the PA Security Constraints --> Web
Resource Collection --> Authorization Constraint --> Role name:
test1 is the only one listed.
Local fix
No Work Around.
Problem summary
****************************************************************
* USERS AFFECTED: All users of the Admin Console for WebSphere *
* Application Server 5.0 and above, if the *
* user has more than one role name defined. *
****************************************************************
* PROBLEM DESCRIPTION: Only one role name is displayed under *
* the Authorization Constraint in the *
* Admin Console web deployment *
* discriptor, even though the user has *
* defined more than one role. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Even though user has more than one role name defined under
Expand Applications -> Enterprise Applications -> <user App> ->
Web Modules -> <user war> ->View Deployment Descriptor ->
Security Constraints -> Web Rresource Collection ->
Authorization constraint
Only one role name is displayed in the Admin Console.
Problem conclusion
The file web.xsl under was modified. Another recursive template
was added to allow for more than one role name to be displayed.
Temporary fix
The fix wil included in the next WAS Cum fix pack
Comments
APAR information |
APAR number |
PQ77548 |
Reported component name |
WAS BASE 5.0 |
Reported component ID |
5630A3600 |
Reported release |
00S |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2003-08-15 |
Closed date |
2003-09-18 |
Last modified date |
2003-09-18 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
|