Direct links to fixes
2.3.0.1-CSI-ISCO-IF0009
IBM SmartCloud Orchestrator Interim Fix 7 for 2.3.0.1
IBM SmartCloud Orchestrator Interim Fix 6 for 2.3.0.1
IBM SmartCloud Orchestrator Interim Fix 5 for 2.3.0.1
IBM SmartCloud Orchestrator Interim Fix 3 for 2.3.0.1
IBM SmartCloud Orchestrator Interim Fix 4 for 2.3.0.1
IBM SmartCloud Orchestrator Interim Fix 8 for 2.3.0.1
APAR status
Closed as program error.
Error description
While processing selfservice interaction, processing REST calls are initiated by GenericREST library code. The GenericREST code generates a new SimpleToken for session authentication if the existing one is just before timeout or if a matching token can not be found. While creating a new SimpleToken the given user information is incomplete and the generated token is invalid. This leads to a return code 401 Unauthorized.
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: All users of SmartCloud Orchestrator 2.3.0.1 **************************************************************** * PROBLEM DESCRIPTION: Offerings initiated by a user which does not use the default domain fail with RC 401 when a new simple token is created and following exception will be created: [4/2/14 11:05:49:862 EST] 000000f5 wle E CWLLG0594E: An exception occurred while initializing the runnable thread. Error: com.lombardisoftware.component.common.workflow.WorkflowProcessIt emException: java.io.IOException: { "errorStatusCode": 401, "message": null, "errorMessage": null} responseCode=Unauthorized in com.ibm.orchestrator.restcall.GenericREST com.lombardisoftware.component.common.workflow.WorkflowProcessIt emException: java.io.IOException: { "errorStatusCode": 401, "message": null, "errorMessage": null} responseCode=Unauthorized in com.ibm.orchestrator.restcall.GenericREST Caused by: java.lang.Exception: java.io.IOException: { "errorStatusCode": 401, "message": null, "errorMessage": null} responseCode=Unauthorized in com.ibm.orchestrator.restcall.GenericREST at com.ibm.orchestrator.restcall.GenericREST.jsonRestOperation2(Gen ericREST.java:285)
Problem conclusion
**************************************************************** PROBLEM CONCLUSION: When a token expired a new token is created but the domain and project name was not included. Therefore an authorization check is done for the default domain of the user which fails if the user is not defined in the default domain.
Temporary fix
Comments
APAR Information
APAR number
ZZ00240
Reported component name
SMRTCLOUD ORCHS
Reported component ID
5725H2800
Reported release
230
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2014-04-03
Closed date
2014-04-07
Last modified date
2014-04-07
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SMRTCLOUD ORCHS
Fixed component ID
5725H2800
Applicable component levels
R230 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SS4KMC","label":"IBM Cloud Orchestrator"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"230","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
03 November 2021