PQ63020: ADD FUNCTIONALITY TO TOGGLE GETREMOTEUSER() TO RETURN ACTUAL USER ID INSTEAD OF THE DISPLAY NAME WHEN USING CUSTOM REGISTRY

APAR status
Closed as program error.

Error description
Environment:
WebSphere Application Server 4.0.3 AE
.
Description:
   A customer is implementing LTPA custom user registry. With
the
perform getRemoteUser() or getPrincipalName() methods, they get
the display name (as a result of getUserDisplayName() method
call) instead of the actual user ID.  There seems to be
no
alternative to acquire the user ID when the getUserDisplayName(
is implemented to return other than the user ID. The developer
suggests creating a configuration item to toggle getRemoteUser(
to return the user ID instead of the display name.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server users who use   *
*                 custom registry authentication.              *
****************************************************************
* PROBLEM DESCRIPTION: Wehn using a custom registry, the API   *
*                      getRemoteUser() returns display name    *
*                      rather than security name.              *
****************************************************************
* RECOMMENDATION: Apply this eFix, or use the display name     *
*                 as the same as the security name.            *
****************************************************************
When using a custom registry implementation, security returned
the user's display name for getRemoteUser() and
getPrincipalName() instead of the user's security name.
Problem conclusion
If getRemoteUser() and getPrincipalName() are required to
return the user's security name, a system property has been
added to enable this.

com.ibm.ejs.security.customregistry.useSecurityName=true
Temporary fix
test eFix provided.
Comments
APAR information
APAR number PQ63020
Reported component name WEBSPHERE AE NT
Reported component ID 5630A2201
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2002-07-10
Closed date 2002-07-23
Last modified date 2003-04-30

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
SECURITY          

Fix information
Fixed component name WEBSPHERE AE NT
Fixed component ID 5630A2201

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ63020
IBM Group: Software Group
Modified date: Apr 30, 2003