PQ82956: 5.0 AAT DOES NOT PROPERLY CHANGE ALL THE SECURITY ROLE-NAMES WHEN CHANGING THE "SECURITY ROLES" TAG UNDER APPLICATION.

 A fix is available

Obtain the fix for this APAR



APAR status
Closed as program error.

Error description
Using the AAT of WAS 5.0x, the customer changes the EJB role
name in 'Security Roles' tag under the application level. We can
see the name change is propagated to the "Sercurity Roles" tag
under each EJB module and Web Module.
The references to the security role name in each EJB module such
as in 'Permission' tag are also updated to use the new name.
However, the references in 'Security Constrains' of the web
modules are not updated.
When the customer performs a 'Verify' to the application, the
following error was displayed:
AATL0077I: Validating EJB module extensions
AATL0074I: Validating Web module deployment descriptor
CHKJ3020E: Invalid Security role-name: <old role name>
Local fix
manually go and change the "Security Contrains" of the web
module.
Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V5.0 for z/OS                                *
****************************************************************
* PROBLEM DESCRIPTION: 'CHKJ3020E: Invalid Security role-name' *
*                      error message issued during the         *
*                      verification of an Application via      *
*                      the Application Assembly Tool (AAT).    *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
When changing the Security role-name via the Application
Assembly Tool (AAT) on an application, references in the
'Security Constraints' section
of web modules are not properly updated. As a result, the
following message is displayed when trying to verify the
application:
   AATL0077I: Validating EJB module extensions
   AATL0074I: Validating Web module deployment descriptor
   CHKJ3020E: Invalid Security role-name: <old role name>
Problem conclusion
WAS.prereq.clientdevkit/component.xml has been updated
and Therefore the Application Assembly Tool is now equivalent
to WebSphere Application Server Distributed's version 5.02.4
of the AAT. The following apars have also now been resolved:
   
PQ77959 Transaction Support field in WAS5.02 AAT, changes
            to No Transaction after saving changes.
   
PQ81733  In 5.02 when using AAT to change or add a web
            module's realm, then apply, a ClassCastException
            occurs and the apply never takes effect.
   
PQ83016  WAS 5.0 AAT DOES NOT PROPERLY CHANGE ALL THE
            "SECURITY CONSTRAINWHEN CHANGING THE APPLICATION
            LEVEL "SECURITY ROLES"
   
PQ79692  earconvert fails in WAS V5.0.2
   
PQ80081  Cannot modify Resource Ref Isolation Level value.

APAR PQ82956 is associated with SERVICE LEVEL W502006 of
WebSphere Application Server V5.0 for z/OS.
Temporary fix Comments
APAR information
APAR number PQ82956
Reported component name WEBSPHERE FOR Z
Reported component ID 5655I3500
Reported release 500
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2004-01-07
Closed date 2004-04-08
Last modified date 2004-05-05

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
BBOUBINF          

Publications Referenced

Fix information
Fixed component name WEBSPHERE FOR Z
Fixed component ID 5655I3500

Applicable component levels
R500 PSY UQ87201    UP04/04/19 P F404

  Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.


Document Information


Current web document: swg1PQ82956.html
Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ82956
IBM Group: Software Group
Modified date: May 5, 2004