APAR status
Closed as program error.
Error description
After a CSR runs the RunAsUserSetInSession URL to act on behalf of a registered shopper, the cookie is updated, but the database is not updated. When a local binding REST request comes without WCToken and WCTrusttoken, the cookie is used but the 'foruserId' value that is in the cookie is not respected by REST. Therefore, the REST request is actually running under the session of the CSR. This behavior is different from non-REST requests.
Local fix
Problem summary
USERS AFFECTED: WebSphere Commerce Version 7 and Version 8 environments that leverage the CSR feature for "run-as" business actions. PROBLEM ABSTRACT: 'foruserId' value in the cookie is not respected by REST requests BUSINESS IMPACT: Customer service representative (CSR) cannot act on behalf of shoppers. RECOMMENDATION:
Problem conclusion
Updated logic so that REST requests respect the 'forUserId' value that is in the cookie.
Temporary fix
Comments
APAR Information
APAR number
JR55106
Reported component name
WC BUS EDITION
Reported component ID
5724I3800
Reported release
800
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-01-13
Closed date
2016-02-21
Last modified date
2016-02-21
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
WC BUS EDITION
Fixed component ID
5724I3800
Applicable component levels
R800 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYSYL","label":"WebSphere Commerce Enterprise"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"8.0","Line of Business":{"code":"LOB31","label":"WCE Watson Marketing and Commerce"}}]
Document Information
Modified date:
12 December 2021