IBM Support

JR45752: CMVC 227202 - CHANGE LOGONCOMPLETE METHOD IN MANAGEMENT CENTER TO ENSURE THAT THE LOGON ID IS NOT OVERRIDDEN

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • CMC will use the logon id to check permissions for certain
tasks. If your logon id is not case sensitive this can cause
some tasks not to show up for users. This code change allows you
to pass a normalized logon id to the CMC without it being
overwritten.

Local fix

  • 



Problem summary


    

  • USERS AFFECTED:
Users who have case in-sensitive authentication to CMC

PROBLEM ABSTRACT:
This fix changes the logonComplete method in Management Center
to ensure that the logon ID returned by a customized
AuthenticationSuccess.jsp is not overridden.

BUSINESS IMPACT:
If the case used to log in does match what is stored inthe
USERREG table some user task may not be available as expected

RECOMMENDATION:

    



Problem conclusion


    

  • After the logon is complete, Management Center will update the
logonId context value with the logon ID returned in the
response. The out-of-the-box response provided by
AuthenticationSuccess.jsp returns the same logon Id that was
entered by the user.

A customized AuthenticationSuccess.jsp could normalize the logon
Id and return a different response. For example if the
normalized logon ID is all uppercase, then the customized
AuthenticationSuccess.jsp could be coded as follows:

<?xml version="1.0" encoding="UTF-8"?>

<%@page contentType="text/xml;charset=UTF-8"%>
<%@ taglib uri="http://java.sun.com/jsp/jstl/core" prefix="c"%>
<%@ taglib uri="http://commerce.ibm.com/foundation"
prefix="wcf"%>
<%@ taglib uri="http://java.sun.com/jsp/jstl/functions"
prefix="fn"%>
<c:set var="responseMap"
value="${requestScope['com.ibm.commerce.responseMap']}"/>
<values>
  <identityId><wcf:cdata
data="${responseMap.identityTokenID[0]}"/></identityId>
  <identitySignature><wcf:cdata
data="${responseMap.identityTokenSignature[0]}"/></identitySigna
ture>
  <logonId><wcf:cdata
data="${fn:toUpperCase(param.logonId)}"/></logonId>
</values>


-------------------------------------------------------------
The latest available maintenance information can be obtained
from the Recommended Fixes for WebSphere Commerce technote:
http://www.ibm.com/support/docview.wss?rs=3046&uid=swg21261296

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    JR45752
    • 

  • Reported component name
    WC BUS EDITION
    • 

  • Reported component ID
    5724I3800
    • 

  • Reported release
    700
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    YesSpecatt / New Function
    • 

  • Submitted date
    2013-02-15
    • 

  • Closed date
    2013-03-04
    • 

  • Last modified date
    2013-03-04
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    WC BUS EDITION
    • 

  • Fixed component ID
    5724I3800
    • 



Applicable component levels


    

  • R700  PSY
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYSYL","label":"WebSphere Commerce Enterprise"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.0","Edition":"","Line of Business":{"code":"","label":""}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            04 March 2013
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback