IBM Support

PI97486: LEFT PANEL OF ADMIN CONSOLE DOES NOT DISAPPEAR AFTER AUTO LOG-OFF DUE TO SESSION TIMEOUT

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • In the Admin Console, the current account will be logged out
    after clicking on anywhere in the console due to session
    timeout.
    But in WAS 8.5.5.13, the left navigaion panel does not
    disappear and merge with the login page.
    
    After logging in again, the unexpected navigation panel still
    exist until the user click on the panel, then the right side of
    page will shows a security warning of cross-site request
    forgery attack.
    

Local fix

  • Refresh the Admin Console.
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED:  All users of IBM WebSphere Application      *
    *                  Server using the administrative console to  *
    *                  manage WebSphere.                           *
    ****************************************************************
    * PROBLEM DESCRIPTION: When the admin console times out, the   *
    *                      left navigation panel remains after     *
    *                      the user logs in and the user gets      *
    *                      csrf errors.                            *
    ****************************************************************
    * RECOMMENDATION:  Refresh the login screen before logging in. *
    *                                                              *
    ****************************************************************
    The panels was closed correctly when the session timed out.
    

Problem conclusion

  • The console code was changed to correctly reload the entire
    panel when the user logged in.
    
    The fix for this APAR is currently targeted for inclusion in
    fix pack 8.5.5.14, 9.0.0.9.  Please refer to the Recommended
    Updates
    page for delivery information:
    http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
    

Temporary fix

Comments

APAR Information

  • APAR number

    PI97486

  • Reported component name

    WEBS APP SERV N

  • Reported component ID

    5724H8800

  • Reported release

    850

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2018-05-01

  • Closed date

    2018-10-15

  • Last modified date

    2018-10-15

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WEBS APP SERV N

  • Fixed component ID

    5724H8800

Applicable component levels

  • R850 PSY

       UP

  • R900 PSY

       UP

[{"Business Unit":{"code":"BU053","label":"Cloud \u0026 Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"850","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]

Document Information

Modified date:
18 October 2021