00D30063
Explanation
Db2 received a Db2 REST services request that included cross-origin resource sharing (CORS) authorization header fields, but the origin host identified in the request is not authorized.
System action
Db2 REST services request processing is allowed to continue, but without returning any CORS origin authorization content in the response.
System programmer response
Examine the console or SYSLOG output for RACF messages (ICH408I) issued when a Db2 REST services CORS authorization request is denied. Collect and examine Db2 IFCID 416 exception trace record contents for additional information related to this failure.
User response
Verify that the correct CORS origin host was specified in the Db2 REST service request. If necessary, request Db2 subsystem CORS authorization for the origin from your Db2 security administrator.
Problem determination
During REST service request CORS authorization processing, Db2 invokes the RACROUTE service to verify the CORS origin host is authorized for this Db2 subsystem. The RACF return code indicates that the origin host is not authorized for this Db2 subsystem. The Db2 REST service request is allowed to continue processing, but it does not include CORS authorization header fields in the generated REST service response. Db2 will also have attempted to capture the host origin and related information to an IFCID 416 exception trace record. Any messages issued by RACF(ICH408I) and the content of the IFCID 416 exception trace can then be used to determine the reason for the CORS origin authorization failure.
