PQ76646: WEB AUTHENTICATION REQUESTS CAUSE UNNECESSARY RACF IO WHEN USING LOCAL OS REGISTRY AND SAF AUTHORIZATION

 A fix is available

Obtain the fix for this APAR



APAR status
Closed as program error.

Error description
Web Authentication requests cause unnecessary RACF IO when
using Local OS Registry and SAF Authorization.  When adding
security constraints to a web Application using a local OS
registry, a credential is built that contains the groups to
which the authenticated principal belongs.  This is an
expensive set of operations, and the results are not used if
SAF is also used as an authorization mechanism.  This APAR is
required to remove this additional overhead.  Code changes here
are in the SAFRegistryImpl. code
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V5.0 for z/OS                                *
****************************************************************
* PROBLEM DESCRIPTION: Performance improvement for Web         *
*                      Authentication requests when using      *
*                      Local  OS Registry and SAF              *
*                      Authorization.                          *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
Web Authentication requests cause unnecessary RACF IO when using
Local OS Registry and SAF Authorization.
Problem conclusion
Added changes not to generate group list when using SAF
Authorization.

APAR PQ76646 is associated with SERVICE LEVEL W500104 of
WebSphere Application Server V5.0 for z/OS.
Temporary fix Comments
APAR information
APAR number PQ76646
Reported component name WEBSPHERE FOR Z
Reported component ID 5655I3500
Reported release 500
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2003-07-22
Closed date 2003-08-30
Last modified date 2003-10-03

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
BBOUBINF          

Publications Referenced

Fix information
Fixed component name WEBSPHERE FOR Z
Fixed component ID 5655I3500

Applicable component levels
R500 PSY UQ79825    UP03/09/10 P F309

  Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.


Document Information


Current web document: swg1PQ76646.html
Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ76646
IBM Group: Software Group
Modified date: Oct 3, 2003