PQ82956: 5.0 AAT DOES NOT PROPERLY CHANGE ALL THE SECURITY ROLE-NAMES WHEN CHANGING THE "SECURITY ROLES" TAG UNDER APPLICATION. | |||||||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description Using the AAT of WAS 5.0x, the customer changes the EJB role name in 'Security Roles' tag under the application level. We can see the name change is propagated to the "Sercurity Roles" tag under each EJB module and Web Module. The references to the security role name in each EJB module such as in 'Permission' tag are also updated to use the new name. However, the references in 'Security Constrains' of the web modules are not updated. When the customer performs a 'Verify' to the application, the following error was displayed: AATL0077I: Validating EJB module extensions AATL0074I: Validating Web module deployment descriptor CHKJ3020E: Invalid Security role-name: <old role name>Local fix manually go and change the "Security Contrains" of the web module.Problem summary **************************************************************** * USERS AFFECTED: All users of WebSphere Application Server * * V5.0 for z/OS * **************************************************************** * PROBLEM DESCRIPTION: 'CHKJ3020E: Invalid Security role-name' * * error message issued during the * * verification of an Application via * * the Application Assembly Tool (AAT). * **************************************************************** * RECOMMENDATION: * **************************************************************** When changing the Security role-name via the Application Assembly Tool (AAT) on an application, references in the 'Security Constraints' section of web modules are not properly updated. As a result, the following message is displayed when trying to verify the application: AATL0077I: Validating EJB module extensions AATL0074I: Validating Web module deployment descriptor CHKJ3020E: Invalid Security role-name: <old role name>Problem conclusion WAS.prereq.clientdevkit/component.xml has been updated and Therefore the Application Assembly Tool is now equivalent to WebSphere Application Server Distributed's version 5.02.4 of the AAT. The following apars have also now been resolved: PQ77959 Transaction Support field in WAS5.02 AAT, changes to No Transaction after saving changes. PQ81733 In 5.02 when using AAT to change or add a web module's realm, then apply, a ClassCastException occurs and the apply never takes effect. PQ83016 WAS 5.0 AAT DOES NOT PROPERLY CHANGE ALL THE "SECURITY CONSTRAINWHEN CHANGING THE APPLICATION LEVEL "SECURITY ROLES" PQ79692 earconvert fails in WAS V5.0.2 PQ80081 Cannot modify Resource Ref Isolation Level value. APAR PQ82956 is associated with SERVICE LEVEL W502006 of WebSphere Application Server V5.0 for z/OS.Temporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: Modules/Macros
Publications Referenced
|
Document Information |
Current web document: swg1PQ82956.html
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ82956
IBM Group: Software Group
Modified date: May 5, 2004
(C) Copyright IBM Corporation 2000, 2009. All Rights Reserved.