IBM Support

IT30931: ADD CONFIGURABLE SESSION TIMEOUT TO WEBUI

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as requirement.

Error description

  • When admin security is enabled, a user / password is required
    to log into the webui. This session remains open for 24 hours
    or until the browser is closed. This feature will allow the
    session timeout to be configurable for improved security.
    

Local fix

  • NA
    

Problem summary

  • ****************************************************************
    USERS AFFECTED:
    <span style="background-color:rgb(255, 255, 255)">All Users of
    App Connect Enterprise v11.0 who use web user interface.</span>
    
    
    Platforms affected:
    MultiPlatform
    
    ****************************************************************
    PROBLEM DESCRIPTION:
    App Connect Enterprise V11 does not provide session timeout
    option for web user interface.
    The session timeout is required to invalidate a logged-in
    session after a certain period of inactivity.
    

Problem conclusion

  • App Connect Enterprise now provides a new property named '<span
    style="background-color:rgb(255, 255, 255)">sessionTimeout'
    </span>under  RestAdminListener section in
    server.conf.yaml(stand-alone integration servers) or
    node.conf.yaml(integration nodes), as below
    
    #sessionTimeout: 86400
                                                 # Set the timeout
    in seconds that REST API/Web UI sessions can be inactive before
    becoming invalid. Default is 86400 seconds (24 hours).
    
    One can configure this property to invalidate the web user
    session after a certain period of inactivity
    

Temporary fix

Comments

  •  providing session timeout option for web user interface
    

APAR Information

  • APAR number

    IT30931

  • Reported component name

    APP CONNECT ENT

  • Reported component ID

    5724J0550

  • Reported release

    B00

  • Status

    CLOSED REQ

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2019-11-13

  • Closed date

    2020-04-17

  • Last modified date

    2020-04-17

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

Applicable component levels

[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSDR5J","label":"IBM App Connect Enterprise"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB36","label":"IBM Automation"}}]

Document Information

Modified date:
20 April 2020