IV62586: TSAM 7245 - IF A STRING WITH A DOT (.) IS USED FOR DESCRIPTION IN A PROJECT IN SSUI, THE REQUEST CANNOT BE SUBMITTED

APAR status

• Closed as program error.

Error description

• PROBLEM:
  
  In TSAM 7245, if a string with a dot (.) or similar other
  special characters are used in the project description, the
  request will not be submitted, the following warning will be
  displayed in the UI 'Special Characters are not allowed'
  
  In TSAM 7242, however, this is not an issue, the request is
  submitted correctly.
  
  STEPS TO REPRODUCE:
  Attempt to submit a request in SSUI with a description
  containing a dot (.), the request will not be submitted
  correctly.
  
  ERRONEOUS RESULTS: A warning message is displayed 'Specila
  Characters are not alowed'
  
  EXPECTED RESULTS: Request is submitted successfully
  
  ENVIRONMENT:
  TSAM 7245
  Note: with TSAM 7242, this issue did not exist.
  

Local fix

• N/A
  

Problem summary

• SimpleSRM fails on 7245 but works OK on 7242 We have in the
  decription of a project a string with a dot (.) and it fails, we
   cannot provision. The customer is using dot (.) in the
  description current descriptions used: IIS .net 3.5 IIS .net 4.0
   WebSphere 8.5 We tried the out of the box UI and it fails with
  7245 but it is OK in 7242
  

Problem conclusion

• In TSAM 7242 this worked (allowed dots in project description in
   the UI), but in TSAM 7244 this was changed due to security
  reason (XSS vulnerability). This is also fixed at server side to
   avoid the vulnerability so we can allow special characters in
  UI. This is breaking custom UI for client. APAR IV62586 opened,
  7.2.4.5-TIV-TSAM-LA0002.zip provided and applied by client, it
  worked for them.
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Fix information

• Fixed component name

  TSAM (& INSTALL

• Fixed component ID

  5724W7800

Applicable component levels