IBM Support

PH11186: HTTP INBOUND CHANNEL CUSTOM PROPERTIES TRUSTEDHEADERORIGIN AND TRUSTEDSENSITIVEHEADERORIGIN DO NOT WORK PROPERLY ON Z/OS

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • On z/OS systems, the HTTP inbound channel custom properties
    trustedHeaderOrigin and trustedSensitiveHeaderOrigin are not
    honored even if set properly.  Because of this, the private
    header processing controlled by those properties cannot be
    enabled.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED:  All z/OS users of the HTTP channel in IBM   *
    *                  WebSphere Application Server                *
    ****************************************************************
    * PROBLEM DESCRIPTION: HTTP INBOUND CHANNEL CUSTOM             *
    *                      PROPERTIES TRUSTEDHEADERORIGIN AND      *
    *                      TRUSTEDSENSITIVEHEADERORIGIN DO NOT     *
    *                      WORK PROPERLY ON Z/OS                   *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    On z/OS systems, the HTTP inbound channel's custom properties
    "trustedHeaderOrigin" and "trustedSensitiveHeaderOrigin" are
    not
    honored when set properly.  As a result, the HTTP inbound
    channel does not process a subset of WAS-specific headers sent
    by proxy servers, despite how these properties are configured.
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    PH11186

  • Reported component name

    WEBSPHERE FOR Z

  • Reported component ID

    5655I3500

  • Reported release

    850

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2019-04-17

  • Closed date

    2019-05-13

  • Last modified date

    2019-05-13

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WEBSPHERE FOR Z

  • Fixed component ID

    5655I3500

Applicable component levels

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSCWL8S","label":"General"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"850","Edition":"","Line of Business":{"code":"","label":""}}]

Document Information

Modified date:
13 May 2019