PK16915: Web service invocation via the web services gateway gives proxy authentication error when SSL is enabled

 Fixes are available

5.1.1.10: WebSphere Application Server V5.1.1 Cumulative Fix 10 for Windows
5.1.1.10: WebSphere Application Server V5.1.1 Cumulative Fix 10 for AIX
5.1.1.10: WebSphere Application Server V5.1.1 Cumulative Fix 10 for HP-UX
5.1.1.10: WebSphere Application Server V5.1.1 Cumulative Fix 10 for Linux
5.1.1.10: WebSphere Application Server V5.1.1 Cumulative Fix 10 for Solaris



APAR status
Closed as program error.

Error description
This problem is similar to that addressed by 
PK16489 except
that, in this case, the problem occurs with SSL enabled.

An SLL web service invocation via the Web Services Gateway
using an authenticating proxy with the Gateway configured to
use gateway proxy credentials returns the following error to
the client: java.io.IOException:
WSWS3090E: Error: Unable to tunnel through xx.xx.xx.xx:xxxx.
Proxy returns 'HTTP/1.0 407 Proxy Authentication Required'
Local fix
The problem can be circumvented by setting the https.proxyUser
and https.proxyPassword JVM properties via the WebSphere Admin
Console (select Application Servers > your_server_name >
Process Definition > Java Virtual Machine > Custom Properties
and set the https.proxyUser and https.proxyPassword properties
then restart the application server).
Problem summary
****************************************************************
* USERS AFFECTED: Users of the web services gateway with an    *
*                 authenticating proxy and with SSL enabled.   *
****************************************************************
* PROBLEM DESCRIPTION: An SSL Web service invocation via the   *
*                      web services gateway gives proxy        *
*                      authentication error.                   *
****************************************************************
* RECOMMENDATION: Users of the web services gateway with an    *
*                 authenticating proxy and with SSL enabled    *
*                 should apply this fix.                       *
****************************************************************
An SSL web service invocation via the Web Services Gateway
using an authenticating proxy with the Gateway configured to
use gateway proxy credentials returns the following error to
the client:
java.io.IOException:  WSWS3090E:
Error: Unable to tunnel through xx.xx.xx.xx:xxxx.
Proxy returns
'HTTP/1.0 407 Proxy Authentication Required'
Problem conclusion
This fix is targeted for inclusion in 5.1.1.10: WebSphere
Application Server 5.1.1 Cumulative Fix 10.
Please refer to the recommended updates page for delivery
information:

http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Temporary fix Comments
APAR information
APAR number PK16915
Reported component name WAS NETWRK DEPL
Reported component ID 5630A3601
Reported release 10S
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2005-12-16
Closed date 2006-02-08
Last modified date 2006-02-08

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
SIB WEBSVCS        

Publications Referenced

Fix information
Fixed component name WAS NETWRK DEPL
Fixed component ID 5630A3601

Applicable component levels
R00A PSN    UP
R103 PSY    UP
R10A PSY    UP
R10H PSY    UP
R10I PSY    UP
R10P PSY    UP
R10S PSY    UP
R10W PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 10S
Software edition:
Reference #: PK16915
IBM Group: Software Group
Modified date: Feb 8, 2006