A fix is available
APAR status
Closed as program error.
Error description
You are using Basic Authentication, and server.xml with requireSec=false, requireAuth=True. A CICS program is exposed as a restful API through zCEE, using the swagger user interface embedded in API editor to call this API. This results in: java.lang.SecurityException: com.ibm.ws.kernel.security.thread.ThreadIdentityException: java.util.NoSuchElementException Additional Symptom(s) Search Keyword(s): KIXREVEAA
Local fix
CICS TS 5.3 tolerates this error with the PTF for PI58375 applied
Problem summary
**************************************************************** * USERS AFFECTED: All CICS users. * **************************************************************** * PROBLEM DESCRIPTION: CORS-preflight request causes AJ05 * * abend due to * * java.lang.SecurityException caused by * * java.util.NoSuchElementException. * **************************************************************** An API is deployed in z/OS Connect EE running in CICS and a CORS-preflight request is received. Authentication is disabled for this type of request, but CICS attempts to retrieve a WSCredential. As the set of WSCredentials is empty a java.util.NoSuchElementException occurs, causing a com.ibm.ws.kernel.security.thread.ThreadIdentityException which causes a java.lang.SecurityException and an AJ05 abend. Such a failure is reported in the Swagger UI as "Cross-Origin Request Blocked".
Problem conclusion
CICSThreadIdentityServiceImpl.java has been modified to only attempt to retrieve a WSCredential if one exists.
Temporary fix
Comments
APAR Information
APAR number
PI70467
Reported component name
CICS TS Z/OS V5
Reported component ID
5655Y0400
Reported release
900
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-10-10
Closed date
2016-12-19
Last modified date
2017-08-09
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UI43455
Modules/Macros
DFJ@H417
Fix information
Fixed component name
CICS TS Z/OS V5
Fixed component ID
5655Y0400
Applicable component levels
R90D PSY UI43455
UP16/12/29 P F612
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSGMGV","label":"CICS Transaction Server"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.2","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.2","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
09 August 2017